projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b96beba) | patch
Address a timing side channel whereby it is possible to determine some
authorPauli <paul.dale@oracle.com>
Tue, 31 Oct 2017 23:47:13 +0000 (09:47 +1000)
committerMatt Caswell <matt@openssl.org>
Wed, 1 Nov 2017 16:43:06 +0000 (16:43 +0000)
commit23f7e974d59a576ad7d8cfd9f7ac957a883e361f
tree30b1f7a1d1bd8e461f392822ebe51115cb967130tree | snapshot
parentb96bebacfe814deb99fb64a3ed2296d95c573600commit | diff
Address a timing side channel whereby it is possible to determine some

information about the length of the scalar used in ECDSA operations
from a large number (2^32) of signatures.

Thanks to Neals Fournaise, Eliane Jaulmes and Jean-Rene Reinhard for
reporting this issue.

Refer to #4576 for further details.

Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4623)
crypto/ecdsa/ecs_ossl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.