]> granicus.if.org Git - openssl/commit
Fix SCA vulnerability when using PVK and MSBLOB key formats
authorCesar Pereida Garcia <cesar.pereidagarcia@tut.fi>
Wed, 14 Aug 2019 07:17:06 +0000 (10:17 +0300)
committerMatt Caswell <matt@openssl.org>
Tue, 27 Aug 2019 08:07:30 +0000 (09:07 +0100)
commit724339ff44235149c4e8ddae614e1dda6863e23e
treec066fbe8fe14ba7b1e94a453b16a2aba0173c8e6
parent485d336137f2afa62e378bc39dcfa37dcfb222da
Fix SCA vulnerability when using PVK and MSBLOB key formats

This commit addresses a side-channel vulnerability present when
PVK and MSBLOB key formats are loaded into OpenSSL.
The public key was not computed using a constant-time exponentiation
function.

This issue was discovered and reported by the NISEC group at TAU Finland.

Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com>
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/9587)
crypto/pem/pvkfmt.c