02/10/2025 17:32, Kai Ji: > Replace memcmp() with rte_timingsafe_memcmp() in cryptographic > authentication verification operations across iipsec-mb drivers. > > Note: OpenSSL crypto driver already uses CRYPTO_memcmp() which > provides equivalent timing attack resistance and is left unchanged. > > Note: scheduler driver memcmp stays unchanged as its not secret data > comparison and actually faster with no timing attack risk. > > Bugzilla ID: 1773 > https://bugs.dpdk.org/show_bug.cgi?id=1773 > > Signed-off-by: Kai Ji <[email protected]>
Applied with few minor edits, thanks.
