Remove flags for disabling constant-time operations.

This removes support for DSA_FLAG_NO_EXP_CONSTTIME, DH_FLAG_NO_EXP_CONSTTIME, and RSA_FLAG_NO_CONSTTIME flags, making all of these operations unconditionally constant-time. Based on the original patch by César Pereid. ok beck@
author: bcook <> 2016-06-30 02:02:06 +0000
committer: bcook <> 2016-06-30 02:02:06 +0000
commit: 3ce2fddbbb0fbded19721d5da476dfdfecb1e48b (patch)
tree: 0ceecace65c38593a01c1d41cce469bd98529f43 /src/lib/libcrypto/dsa/dsa_key.c
parent: eac403b2ae70a8e948d7db823d992cc131392d78 (diff)
download: openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.tar.gz
openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.tar.bz2
openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.zip
1 files changed, 4 insertions, 10 deletions
diff --git a/src/lib/libcrypto/dsa/dsa_key.c b/src/lib/libcrypto/dsa/dsa_key.c
index 4732c471ed..fc4eb9c433 100644
--- a/src/lib/libcrypto/dsa/dsa_key.c
+++ b/src/lib/libcrypto/dsa/dsa_key.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: dsa_key.c,v 1.21 2016/06/21 04:16:53 bcook Exp $ */
+/* $OpenBSD: dsa_key.c,v 1.22 2016/06/30 02:02:06 bcook Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -104,18 +104,12 @@ dsa_builtin_keygen(DSA *dsa)
                pub_key=dsa->pub_key;
        
        {
-                BIGNUM *prk = BN_new();
+                BIGNUM prk;
-                if (prk == NULL)
+                BN_with_flags(&prk, priv_key, BN_FLG_CONSTTIME);
-                        goto err;
-                BN_with_flags(prk, priv_key, BN_FLG_CONSTTIME);
-                if (!BN_mod_exp(pub_key, dsa->g, prk, dsa->p, ctx)) {
+                if (!BN_mod_exp(pub_key, dsa->g, &prk, dsa->p, ctx))
-                        BN_free(prk);
                        goto err;
-                }
-                BN_free(prk);
        }
        dsa->priv_key = priv_key;
author	bcook <>	2016-06-30 02:02:06 +0000
committer	bcook <>	2016-06-30 02:02:06 +0000
commit	3ce2fddbbb0fbded19721d5da476dfdfecb1e48b (patch)
tree	0ceecace65c38593a01c1d41cce469bd98529f43 /src/lib/libcrypto/dsa/dsa_key.c
parent	eac403b2ae70a8e948d7db823d992cc131392d78 (diff)
download	openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.tar.gz openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.tar.bz2 openbsd-3ce2fddbbb0fbded19721d5da476dfdfecb1e48b.zip