From: Cesar Pereida Garcia Date: Fri, 6 Sep 2019 07:48:00 +0000 (+0300) Subject: [crypto/rsa] Set the constant-time flag in multi-prime RSA too X-Git-Tag: openssl-3.0.0-alpha1~1454 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=d2baf88c43e5a40cfc3bcd4ca35cbae53161941c;p=oweals%2Fopenssl.git [crypto/rsa] Set the constant-time flag in multi-prime RSA too Reviewed-by: Bernd Edlinger Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/openssl/pull/9779) --- diff --git a/crypto/rsa/rsa_lib.c b/crypto/rsa/rsa_lib.c index e7fdbc2aab..c6e570089f 100644 --- a/crypto/rsa/rsa_lib.c +++ b/crypto/rsa/rsa_lib.c @@ -409,12 +409,15 @@ int RSA_set0_multi_prime_params(RSA *r, BIGNUM *primes[], BIGNUM *exps[], if (pinfo == NULL) goto err; if (primes[i] != NULL && exps[i] != NULL && coeffs[i] != NULL) { - BN_free(pinfo->r); - BN_free(pinfo->d); - BN_free(pinfo->t); + BN_clear_free(pinfo->r); + BN_clear_free(pinfo->d); + BN_clear_free(pinfo->t); pinfo->r = primes[i]; pinfo->d = exps[i]; pinfo->t = coeffs[i]; + BN_set_flags(pinfo->r, BN_FLG_CONSTTIME); + BN_set_flags(pinfo->d, BN_FLG_CONSTTIME); + BN_set_flags(pinfo->t, BN_FLG_CONSTTIME); } else { rsa_multip_info_free(pinfo); goto err;