summaryrefslogtreecommitdiff
path: root/src/lib/libtls/tls_server.c
diff options
context:
space:
mode:
authorjsing <>2017-01-05 13:25:52 +0000
committerjsing <>2017-01-05 13:25:52 +0000
commit0db76d5ede53251eb5b0b76b42c77155e92beab7 (patch)
tree40146ee9aa4cb2d6bc8f6f1870125a0e4e35277e /src/lib/libtls/tls_server.c
parent9110fc62cadfc13e5651a5cf57372fc1b73ec875 (diff)
downloadopenbsd-0db76d5ede53251eb5b0b76b42c77155e92beab7.tar.gz
openbsd-0db76d5ede53251eb5b0b76b42c77155e92beab7.tar.bz2
openbsd-0db76d5ede53251eb5b0b76b42c77155e92beab7.zip
Avoid a side-channel cache-timing attack that can leak the ECDSA private
keys when signing. This is due to BN_mod_inverse() being used without the constant time flag being set. This issue was reported by Cesar Pereida Garcia and Billy Brumley (Tampere University of Technology). The fix was developed by Cesar Pereida Garcia.
Diffstat (limited to 'src/lib/libtls/tls_server.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-10-11 22:50:20 +0000