CVSROOT: /cvs
Module name: src
Changes by: b...@cvs.openbsd.org 2017/01/24 23:15:44
Modified files:
lib/libcrypto/bn: bn.h bn_gcd.c bn_lcl.h bn_x931p.c
lib/libcrypto/rsa: rsa_chk.c rsa_gen.c
Log message:
Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested
by Alejandro Cabrera <ald...@gmail.com> to avoid the possibility of a
sidechannel timing attack during RSA private key generation.
Modify BN_gcd to become not visible under LIBRESSL_INTERNAL and force
the use of the _ct or _nonct versions of the function only within
the library.
ok jsing@
