Implement coordinate blinding for EC_POINT as an additional mitigation

for the portsmash vulnerability. OpenBSD 6.4 errata 003
author: tb <> 2018-11-17 18:55:41 +0000
committer: tb <> 2018-11-17 18:55:41 +0000
commit: eaa93660fa7be62891e2623769b71e381fdff5ff (patch)
tree: c70676f4f94a5865e7ea3502c754e74b4684f1fc /src/lib/libcrypto/ec/ecp_nist.c
parent: e8561a7d6bfdc3b60901ab2b0b05aeccef9e8cac (diff)
download: openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.tar.gz
openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.tar.bz2
openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/src/lib/libcrypto/ec/ecp_nist.c b/src/lib/libcrypto/ec/ecp_nist.c
index 6ae1170808..6f1c857799 100644
--- a/src/lib/libcrypto/ec/ecp_nist.c
+++ b/src/lib/libcrypto/ec/ecp_nist.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ecp_nist.c,v 1.14 2018/07/16 17:32:39 tb Exp $ */
+/* $OpenBSD: ecp_nist.c,v 1.14.2.1 2018/11/17 18:55:41 tb Exp $ */
 /*
 * Written by Nils Larsch for the OpenSSL project.
 */
@@ -107,7 +107,8 @@ EC_GFp_nist_method(void)
                .mul_single_ct = ec_GFp_simple_mul_single_ct,
                .mul_double_nonct = ec_GFp_simple_mul_double_nonct,
                .field_mul = ec_GFp_nist_field_mul,
-                .field_sqr = ec_GFp_nist_field_sqr
+                .field_sqr = ec_GFp_nist_field_sqr,
+                .blind_coordinates = ec_GFp_simple_blind_coordinates,
        };
        return &ret;
author	tb <>	2018-11-17 18:55:41 +0000
committer	tb <>	2018-11-17 18:55:41 +0000
commit	eaa93660fa7be62891e2623769b71e381fdff5ff (patch)
tree	c70676f4f94a5865e7ea3502c754e74b4684f1fc /src/lib/libcrypto/ec/ecp_nist.c
parent	e8561a7d6bfdc3b60901ab2b0b05aeccef9e8cac (diff)
download	openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.tar.gz openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.tar.bz2 openbsd-eaa93660fa7be62891e2623769b71e381fdff5ff.zip