Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	beck <>	2017-01-25 06:15:44 +0000
committer	beck <>	2017-01-25 06:15:44 +0000
commit	fe6f3fc2532579fc0941a1603d5e19a11a013179 (patch)
tree	f47c7a81955397655f194db5ae669044f33423bd /src/regress/lib/libcrypto/rsa/rsa_test.c
parent	994be17488e885953ca1fef89bbc4d5fb24eba71 (diff)
download	openbsd-fe6f3fc2532579fc0941a1603d5e19a11a013179.tar.gz openbsd-fe6f3fc2532579fc0941a1603d5e19a11a013179.tar.bz2 openbsd-fe6f3fc2532579fc0941a1603d5e19a11a013179.zip

Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested

by Alejandro Cabrera <aldaya@gmail.com> to avoid the possibility of a sidechannel timing attack during RSA private key generation. Modify BN_gcd to become not visible under LIBRESSL_INTERNAL and force the use of the _ct or _nonct versions of the function only within the library. ok jsing@

Diffstat (limited to 'src/regress/lib/libcrypto/rsa/rsa_test.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: