CVSROOT: /cvs Module name: src Changes by: js...@cvs.openbsd.org 2018/06/13 09:07:19
Modified files:
lib/libcrypto/dsa: Tag: OPENBSD_6_2 dsa_ossl.c
lib/libcrypto/ecdsa: Tag: OPENBSD_6_2 ecs_ossl.c
Log message:
MFC: Avoid a timing side-channel leak when generating DSA and ECDSA
signatures.
This is caused by an attempt to do fast modular arithmetic, which
introduces branches that leak information regarding secret values.
Issue identified and reported by Keegan Ryan of NCC Group.
ok beck@ tb@
