Modify the RSA_private_decrypt functions to check the padding in
constant time with a memory access pattern that does not depend on secret information. [extended tests] Reviewed-by:Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8543) (cherry picked from commit 9c0cf214)
Please register or sign in to comment