diff options
author | tb <> | 2023-07-28 10:05:16 +0000 |
---|---|---|
committer | tb <> | 2023-07-28 10:05:16 +0000 |
commit | 6cc5955271563c498eb75bea6798690a380d43cf (patch) | |
tree | 9d9e5e88058fce53bb18a48739125946a2639657 /src/lib/libcrypto/hidden/openssl/bn.h | |
parent | 8d8ca2c8c440c1df72455fe4055627e4110c3973 (diff) | |
download | openbsd-6cc5955271563c498eb75bea6798690a380d43cf.tar.gz openbsd-6cc5955271563c498eb75bea6798690a380d43cf.tar.bz2 openbsd-6cc5955271563c498eb75bea6798690a380d43cf.zip |
Make BN_BLINDING internal
RSA is pretty bad. In my most optimistic moments I dream of a world that
stopped using it. That won't happen during my lifetime, unfortunately.
Blinding is one way of making it a little less leaky. Unfortunately this
side-channel leak mitigation leaked out of the library for no good reason.
Let's at least fix that aspect of it.
ok jsing
Diffstat (limited to 'src/lib/libcrypto/hidden/openssl/bn.h')
-rw-r--r-- | src/lib/libcrypto/hidden/openssl/bn.h | 13 |
1 files changed, 1 insertions, 12 deletions
diff --git a/src/lib/libcrypto/hidden/openssl/bn.h b/src/lib/libcrypto/hidden/openssl/bn.h index 6c23a5c6d8..d58bd10672 100644 --- a/src/lib/libcrypto/hidden/openssl/bn.h +++ b/src/lib/libcrypto/hidden/openssl/bn.h | |||
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: bn.h,v 1.1 2023/07/08 12:21:58 beck Exp $ */ | 1 | /* $OpenBSD: bn.h,v 1.2 2023/07/28 10:05:16 tb Exp $ */ |
2 | /* | 2 | /* |
3 | * Copyright (c) 2023 Bob Beck <beck@openbsd.org> | 3 | * Copyright (c) 2023 Bob Beck <beck@openbsd.org> |
4 | * | 4 | * |
@@ -131,17 +131,6 @@ LCRYPTO_USED(BN_MONT_CTX_free); | |||
131 | LCRYPTO_USED(BN_MONT_CTX_set); | 131 | LCRYPTO_USED(BN_MONT_CTX_set); |
132 | LCRYPTO_USED(BN_MONT_CTX_copy); | 132 | LCRYPTO_USED(BN_MONT_CTX_copy); |
133 | LCRYPTO_USED(BN_MONT_CTX_set_locked); | 133 | LCRYPTO_USED(BN_MONT_CTX_set_locked); |
134 | LCRYPTO_USED(BN_BLINDING_new); | ||
135 | LCRYPTO_USED(BN_BLINDING_free); | ||
136 | LCRYPTO_USED(BN_BLINDING_update); | ||
137 | LCRYPTO_USED(BN_BLINDING_convert); | ||
138 | LCRYPTO_USED(BN_BLINDING_invert); | ||
139 | LCRYPTO_USED(BN_BLINDING_convert_ex); | ||
140 | LCRYPTO_USED(BN_BLINDING_invert_ex); | ||
141 | LCRYPTO_USED(BN_BLINDING_thread_id); | ||
142 | LCRYPTO_USED(BN_BLINDING_get_flags); | ||
143 | LCRYPTO_USED(BN_BLINDING_set_flags); | ||
144 | LCRYPTO_USED(BN_BLINDING_create_param); | ||
145 | LCRYPTO_USED(get_rfc2409_prime_768); | 134 | LCRYPTO_USED(get_rfc2409_prime_768); |
146 | LCRYPTO_USED(get_rfc2409_prime_1024); | 135 | LCRYPTO_USED(get_rfc2409_prime_1024); |
147 | LCRYPTO_USED(BN_get_rfc2409_prime_768); | 136 | LCRYPTO_USED(BN_get_rfc2409_prime_768); |