Source-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[src/trunk]: src/crypto/external/bsd/openssl/dist/crypto/rsa CVE-2018-0737: S...
details: https://anonhg.NetBSD.org/src/rev/ed9f16b89198
branches: trunk
changeset: 322094:ed9f16b89198
user: christos <christos%NetBSD.org@localhost>
date: Tue Apr 17 14:48:48 2018 +0000
description:
CVE-2018-0737: Set constant time for rsa computation:
https://www.openssl.org/news/vulnerabilities.html
This needs to be pulled up to -8 using:
https://github.com/openssl/openssl/commit/349a41da1ad88ad87825414752a8ff5fdd6a6c3f
diffstat:
crypto/external/bsd/openssl/dist/crypto/rsa/rsa_gen.c | 2 ++
1 files changed, 2 insertions(+), 0 deletions(-)
diffs (12 lines):
diff -r e4f82aac8a22 -r ed9f16b89198 crypto/external/bsd/openssl/dist/crypto/rsa/rsa_gen.c
--- a/crypto/external/bsd/openssl/dist/crypto/rsa/rsa_gen.c Tue Apr 17 12:34:04 2018 +0000
+++ b/crypto/external/bsd/openssl/dist/crypto/rsa/rsa_gen.c Tue Apr 17 14:48:48 2018 +0000
@@ -89,6 +89,8 @@
if (BN_copy(rsa->e, e_value) == NULL)
goto err;
+ BN_set_flags(rsa->p, BN_FLG_CONSTTIME);
+ BN_set_flags(rsa->q, BN_FLG_CONSTTIME);
BN_set_flags(r2, BN_FLG_CONSTTIME);
/* generate p and q */
for (;;) {
Home |
Main Index |
Thread Index |
Old Index