Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:yukoff:openSUSE:Leap:42.1:Backports
libressl.6292
ecs.diff
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File ecs.diff of Package libressl.6292
Avoid possible side-channel leak of ECDSA private keys when signing. References: https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/016_libcrypto.patch.sig References: http://bugzilla.novell.com/show_bug.cgi?id=1019334 --- crypto/ecdsa/ecs_ossl.c | 2 ++ 1 file changed, 2 insertions(+) Index: libressl-2.5.0/crypto/ecdsa/ecs_ossl.c =================================================================== --- libressl-2.5.0.orig/crypto/ecdsa/ecs_ossl.c +++ libressl-2.5.0/crypto/ecdsa/ecs_ossl.c @@ -142,6 +142,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX * if (!BN_add(k, k, order)) goto err; + BN_set_flags(k, BN_FLG_CONSTTIME); + /* compute r the x-coordinate of generator * k */ if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) { ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_EC_LIB);
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor