diff options
author | Bodo Möller <bodo@openssl.org> | 2003-03-19 21:58:55 +0300 |
---|---|---|
committer | Bodo Möller <bodo@openssl.org> | 2003-03-19 21:58:55 +0300 |
commit | 84b1e84af13ac935c554eb9466c0b299f675ab8a (patch) | |
tree | 0ab2f828cdd632c85d53a5637499268ec63b2b26 /CHANGES | |
parent | 5250725ba5ef2afcbc71af51fa5fb9affbe8b853 (diff) |
make sure RSA blinding works when the PRNG is not properly seeded;
enable it automatically only for the built-in engine
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 14 |
1 files changed, 10 insertions, 4 deletions
@@ -4,12 +4,18 @@ Changes between 0.9.7a and 0.9.7b [xx XXX 2003] - *) Turn on RSA blinding by default, to avoid a timing attack. Applications - that don't want it can call RSA_blinding_off(). They would be ill-advised - to do so in most cases. The automatic enabling can also be turned off - by defining OPENSSL_FORCE_NO_RSA_BLINDING at compile-time. + *) Turn on RSA blinding by default in the default implementation + to avoid a timing attack. Applications that don't want it can call + RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING. + They would be ill-advised to do so in most cases. [Ben Laurie, Steve Henson, Geoff Thorpe] + *) Change RSA blinding code so that it works when the PRNG is not + seeded (in this case, the secret RSA exponent is abused as + an unpredictable seed -- if it is not unpredictable, there + is no point in blinding anyway). + [Bodo Moeller] + *) Fixed a typo bug that would cause ENGINE_set_default() to set an ENGINE as defaults for all supported algorithms irrespective of the 'flags' parameter. 'flags' is now honoured, so applications |