make sure RSA blinding works when the PRNG is not properly seeded;

enable it automatically only for the built-in engine
author: Bodo Möller <bodo@openssl.org> 2003-03-19 21:58:55 +0300
committer: Bodo Möller <bodo@openssl.org> 2003-03-19 21:58:55 +0300
commit: 84b1e84af13ac935c554eb9466c0b299f675ab8a (patch)
tree: 0ab2f828cdd632c85d53a5637499268ec63b2b26 /CHANGES
parent: 5250725ba5ef2afcbc71af51fa5fb9affbe8b853 (diff)
1 files changed, 10 insertions, 4 deletions
diff --git a/CHANGES b/CHANGES
index 6ab49d23a1..73ca1e18a5 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,12 +4,18 @@
 
  Changes between 0.9.7a and 0.9.7b  [xx XXX 2003]
 
-  *) Turn on RSA blinding by default, to avoid a timing attack. Applications
-     that don't want it can call RSA_blinding_off(). They would be ill-advised
-     to do so in most cases. The automatic enabling can also be turned off
-     by defining OPENSSL_FORCE_NO_RSA_BLINDING at compile-time.
+  *) Turn on RSA blinding by default in the default implementation
+     to avoid a timing attack. Applications that don't want it can call
+     RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING.
+     They would be ill-advised to do so in most cases.
      [Ben Laurie, Steve Henson, Geoff Thorpe]
 
+  *) Change RSA blinding code so that it works when the PRNG is not
+     seeded (in this case, the secret RSA exponent is abused as
+     an unpredictable seed -- if it is not unpredictable, there
+     is no point in blinding anyway).
+     [Bodo Moeller]
+
   *) Fixed a typo bug that would cause ENGINE_set_default() to set an
      ENGINE as defaults for all supported algorithms irrespective of
      the 'flags' parameter. 'flags' is now honoured, so applications
author	Bodo Möller <bodo@openssl.org>	2003-03-19 21:58:55 +0300
committer	Bodo Möller <bodo@openssl.org>	2003-03-19 21:58:55 +0300
commit	84b1e84af13ac935c554eb9466c0b299f675ab8a (patch)
tree	0ab2f828cdd632c85d53a5637499268ec63b2b26 /CHANGES
parent	5250725ba5ef2afcbc71af51fa5fb9affbe8b853 (diff)