RESTRICT AUTOMERGE: Fix HMAC Compare time attack (ca8d670c) · Commits · e / os / android_frameworks_native-old

services/inputflinger/dispatcher/InputDispatcher.cpp

+2 −1

Original line number	Diff line number	Diff line
		@@ -27,6 +27,7 @@
		#include <ftl/enum.h>
		#include <gui/SurfaceComposerClient.h>
		#include <input/InputDevice.h>
		#include <openssl/mem.h>
		#include <powermanager/PowerManager.h>
		#include <unistd.h>
		#include <utils/Trace.h>
		@@ -4422,7 +4423,7 @@ std::unique_ptr<VerifiedInputEvent> InputDispatcher::verifyInputEvent(const Inpu
		if (calculatedHmac == INVALID_HMAC) {
		return nullptr;
		}
		if (calculatedHmac != event.getHmac()) {
		if (0 != CRYPTO_memcmp(calculatedHmac.data(), event.getHmac().data(), calculatedHmac.size())) {
		return nullptr;
		}
		return result;