projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 621eaf4) | patch
More fix DSA, preserve BN_FLG_CONSTTIME
authorMatt Caswell <matt@openssl.org>
Tue, 7 Jun 2016 08:12:51 +0000 (09:12 +0100)
committerMatt Caswell <matt@openssl.org>
Tue, 7 Jun 2016 08:14:32 +0000 (09:14 +0100)
commitb7d0f2834e139a20560d64c73e2565e93715ce2b
tree8930600e56892e462ba6a692939455b4658afa61tree | snapshot
parent621eaf49a289bfac26d4cbcdb7396e796784c534commit | diff
More fix DSA, preserve BN_FLG_CONSTTIME

The previous "fix" still left "k" exposed to constant time problems in
the later BN_mod_inverse() call. Ensure both k and kq have the
BN_FLG_CONSTTIME flag set at the earliest opportunity after creation.

CVE-2016-2178

Reviewed-by: Rich Salz <rsalz@openssl.org>
crypto/dsa/dsa_ossl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.