wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/crypto/rsa
History
Emilia Kasper 9bed73adaa RT3066: rewrite RSA padding checks to be slightly more constant time. 
Also tweak s3_cbc.c to use new constant-time methods.
Also fix memory leaks from internal errors in RSA_padding_check_PKCS1_OAEP_mgf1

This patch is based on the original RT submission by Adam Langley <agl@chromium.org>,
as well as code from BoringSSL and OpenSSL.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

Conflicts:
	crypto/rsa/rsa_oaep.c
	crypto/rsa/rsa_pk1.c
	ssl/s3_cbc.c
2014-09-24 12:47:19 +02:00
..
.cvsignore
Makefile RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa.h RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa_ameth.c RT2626: Change default_bits from 1K to 2K 2014-09-08 17:23:37 -04:00
rsa_asn1.c CMS RSA-OAEP and RSA-PSS support. 2013-10-01 14:01:18 +01:00
rsa_chk.c Check for missing components in RSA_check. 2013-11-09 15:09:22 +00:00
rsa_crpt.c Redirection of low level APIs to FIPS module. 2011-06-02 18:22:42 +00:00
rsa_depr.c
rsa_eay.c Return smaller of ret and f. 2014-07-05 22:38:17 +01:00
rsa_err.c RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa_gen.c Use method rsa keygen first if FIPS mode if it is a FIPS method. 2011-06-09 13:18:07 +00:00
rsa_lib.c Don't set default public key methods in FIPS mode so applications 2011-06-20 19:41:13 +00:00
rsa_locl.h
rsa_none.c
rsa_null.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
rsa_oaep.c RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa_pk1.c RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa_pmeth.c CMS RSA-OAEP and RSA-PSS support. 2013-10-01 14:01:18 +01:00
rsa_prn.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
rsa_pss.c Backport extended PSS support from HEAD: allow setting of mgf1Hash explicitly. 2011-06-02 18:13:33 +00:00
rsa_saos.c
rsa_sign.c An incompatibility has always existed between the format used for RSA 2012-02-15 14:00:09 +00:00
rsa_ssl.c
rsa_test.c
rsa_x931.c Update obsolete email address... 2008-11-05 18:39:08 +00:00