diff options
| author | Ben Laurie <ben@openssl.org> | 2003-03-18 15:12:10 +0300 |
|---|---|---|
| committer | Ben Laurie <ben@openssl.org> | 2003-03-18 15:12:10 +0300 |
| commit | 96c15b8aad15e0cb3d107ac281be215ce04241d8 (patch) | |
| tree | bad235dbc637841c5592e04762dae37e8c6fcaf1 /CHANGES | |
| parent | 4fc2bf07b5ccb45abbde26f51269b005690f59a2 (diff) | |
Turn on RSA blinding by default.
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -4,6 +4,12 @@ Changes between 0.9.7a and 0.9.7b [xx XXX 2003] + *) Turn on RSA blinding by default, to avoid a timing attack. Applications + that don't want it can call RSA_blinding_off(). They would be ill-advised + to do so in most cases. The automatic enabling can also be turned off + by defining OPENSSL_FORCE_NO_RSA_BLINDING at compile-time. + [Ben Laurie, Steve Henson, Geoff Thorpe] + *) Fixed a typo bug that would cause ENGINE_set_default() to set an ENGINE as defaults for all supported algorithms irrespective of the 'flags' parameter. 'flags' is now honoured, so applications |