Skip to content
GitLab
Commit b7d0f283 authored by Matt Caswell's avatar Matt Caswell
Browse files

More fix DSA, preserve BN_FLG_CONSTTIME 



The previous "fix" still left "k" exposed to constant time problems in
the later BN_mod_inverse() call. Ensure both k and kq have the
BN_FLG_CONSTTIME flag set at the earliest opportunity after creation.

CVE-2016-2178

Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
parent 621eaf49
Hide whitespace changes
Inline Side-by-side
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment