openssl/crypto/bn
Dr. Stephen Henson 2198be3483 Fix for CVE-2014-0076
Fix for the attack described in the paper "Recovering OpenSSL
ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
by Yuval Yarom and Naomi Benger. Details can be obtained from:
http://eprint.iacr.org/2014/140

Thanks to Yuval Yarom and Naomi Benger for discovering this
flaw and to Yuval Yarom for supplying a fix.
2014-03-12 14:16:19 +00:00
..
asm x86_64 assembly pack: keep making Windows build more robust. 2013-02-05 16:46:19 +00:00
.cvsignore Apply mingw patches as supplied by Roumen Petrov an Alon Bar-Lev 2008-04-17 10:19:16 +00:00
bn.h Fix for CVE-2014-0076 2014-03-12 14:16:19 +00:00
bn.mul
bn_add.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_asm.c Bring C bn_mul_mont template closer to assembler. 2008-12-16 07:28:38 +00:00
bn_blind.c BN_BLINDING multi-threading fix. 2011-10-19 14:58:34 +00:00
bn_const.c Initialize bignum constants using BN_bin2bn() instead of BN_hex2bn(). This 2005-10-05 17:51:43 +00:00
bn_ctx.c Two digits is not wide enough. 2009-06-14 10:23:29 +00:00
bn_depr.c remove accidentally committed debugging cruft. 2003-10-29 05:35:31 +00:00
bn_div.c Always check bn_wexpend() return values for failure (CVE-2009-3245). 2010-02-23 10:36:30 +00:00
bn_err.c fix error codes 2007-04-19 15:14:21 +00:00
bn_exp.c Update from HEAD. 2009-06-17 11:26:09 +00:00
bn_exp2.c PR: 2295 2010-10-11 23:24:51 +00:00
bn_gcd.c Privatize BN_*_no_branch. 2007-06-11 16:33:03 +00:00
bn_gf2m.c PR: 2540 2011-06-22 15:23:32 +00:00
bn_kron.c Add missing bn_check_top()s to bn_kron.c, remove some miscellaneous 2003-12-01 23:11:45 +00:00
bn_lcl.h Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_lib.c Fix for CVE-2014-0076 2014-03-12 14:16:19 +00:00
bn_mod.c When adding positive elements, we can use BN_uadd() instead of BN_add(). 2004-02-22 19:30:41 +00:00
bn_mont.c Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:44:53 +00:00
bn_mpi.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_mul.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
bn_nist.c Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:44:53 +00:00
bn_prime.c Minimize stack utilization in probable_prime. 2007-09-18 20:52:05 +00:00
bn_prime.h Minimize stack utilization in probable_prime. 2007-09-18 20:52:05 +00:00
bn_prime.pl Minimize stack utilization in probable_prime. 2007-09-18 20:52:05 +00:00
bn_print.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_rand.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_recp.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
bn_shift.c Fix crash in BN_rshift. 2008-10-28 13:46:14 +00:00
bn_sqr.c fix warnings when building openssl with the following compiler options: 2005-08-28 22:49:57 +00:00
bn_sqrt.c avoid potential spurious BN_free() 2005-08-23 04:14:40 +00:00
bn_word.c bn_word.c: fix overflow bug in BN_add_word. 2013-02-05 16:46:19 +00:00
bnspeed.c Code for better build under Darwin (MacOS X). 2001-03-07 10:04:00 +00:00
bntest.c PR: 2062 2009-10-01 00:21:55 +00:00
divtest.c Fix to build better with DJGPP. 2002-11-14 11:22:01 +00:00
exp.c
expspeed.c Implement fixed-window exponentiation to mitigate hyper-threading 2005-05-16 01:43:31 +00:00
exptest.c Remove the dual-callback scheme for numeric and pointer thread IDs, 2008-08-06 15:54:15 +00:00
Makefile Update make rules for x86_64 assembler pack. 2008-11-12 08:19:04 +00:00
todo
vms-helper.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00