MFC: Avoid a side-channel cache-timing attack that can leak the ECDSA - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2017-01-05 13:28:48 +0000
committer	jsing <>	2017-01-05 13:28:48 +0000
commit	a2d70b7b01cdc4662d8c565eab94f74fdf2c028a (patch)
tree	5a94d924db2998e9cad74b50b40358989f248fe7 /src/lib/libcrypto/objects/objects.README
parent	748f6c09914720e5da2253a30e83a8147729ec22 (diff)
download	openbsd-a2d70b7b01cdc4662d8c565eab94f74fdf2c028a.tar.gz openbsd-a2d70b7b01cdc4662d8c565eab94f74fdf2c028a.tar.bz2 openbsd-a2d70b7b01cdc4662d8c565eab94f74fdf2c028a.zip

MFC: Avoid a side-channel cache-timing attack that can leak the ECDSA

private keys when signing. This is due to BN_mod_inverse() being used without the constant time flag being set. This issue was reported by Cesar Pereida Garcia and Billy Brumley (Tampere University of Technology). The fix was developed by Cesar Pereida Garcia.

Diffstat (limited to 'src/lib/libcrypto/objects/objects.README')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: