Skip to content
Commit 683403b3 authored by Bernd Edlinger's avatar Bernd Edlinger
Browse files

Modify the RSA_private_decrypt functions to check the padding in


constant time with a memory access pattern that does not depend
on secret information.

[extended tests]

Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/8543)

(cherry picked from commit 9c0cf214e7836eb5aaf1ea5d3cbf6720533f86b5)
parent 33726188
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment