From: Bodo Möller <bodo@openssl.org>
Date: Mon, 16 May 2005 19:14:34 +0000 (+0000)
Subject: Change wording for BN_mod_exp_mont_consttime() entry
X-Git-Tag: OpenSSL_0_9_8-beta1~13^2~9
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=91b17fbad4eed87b7fcd2fbc4d0cba73cf34668c;p=oweals%2Fopenssl.git

Change wording for BN_mod_exp_mont_consttime() entry
---

diff --git a/CHANGES b/CHANGES
index 54df558352..d02d20e161 100644
--- a/CHANGES
+++ b/CHANGES
@@ -800,10 +800,10 @@
  Changes between 0.9.7g and 0.9.7h  [XX xxx XXXX]
 
   *) Make a new fixed-window mod_exp implementation the default for
-     RSA, DSA, and DH private-key operations to mitigate the
-     hyper-threading timing attacks pointed out by Colin Percival
-     (http://www.daemonology.net/hyperthreading-considered-harmful/),
-     and potential related attacks.
+     RSA, DSA, and DH private-key operations so that the sequence of
+     squares and multiplies and the memory access pattern are
+     independent of the particular secret key.  This will mitigate
+     cache-timing and potential related attacks.
 
      BN_mod_exp_mont_consttime() is the new exponentiation implementation,
      and this is automatically used by BN_mod_exp_mont() if the new flag