Skip to content
Commit 683403b3 authored by Bernd Edlinger's avatar Bernd Edlinger
Browse files

Modify the RSA_private_decrypt functions to check the padding in


constant time with a memory access pattern that does not depend
on secret information.

[extended tests]

Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/8543)

(cherry picked from commit 9c0cf214)
parent 33726188
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment