Add CHANGES entry for PR#6009

Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Andy Polyakov <appro@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6070)
author: Nicola Tuveri <nic.tuv@gmail.com> 2018-04-25 15:27:59 +0300
committer: Andy Polyakov <appro@openssl.org> 2018-05-09 14:30:46 +0300
commit: 60845a0aa4e54f2973bc178daa5ed475ea4e148d (patch)
tree: 11352f0b11e70f3672aa211c4ac804dd52dd3539 /CHANGES
parent: 0dae8bafceabc8966383aa1f11ee8622f7dbde2f (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index f0e23ca765..e8b92ccc02 100644
--- a/CHANGES
+++ b/CHANGES
@@ -21,6 +21,14 @@
      constant time fixed point multiplication.
      [Billy Bob Brumley]
 
+  *) Revise elliptic curve scalar multiplication with timing attack
+     defenses: ec_wNAF_mul redirects to a constant time implementation
+     when computing fixed point and variable point multiplication (which
+     in OpenSSL are mostly used with secret scalars in keygen, sign,
+     ECDH derive operations).
+     [Billy Bob Brumley, Nicola Tuveri, Cesar Pereida García,
+      Sohaib ul Hassan]
+
   *) Updated CONTRIBUTING
      [Rich Salz]
author	Nicola Tuveri <nic.tuv@gmail.com>	2018-04-25 15:27:59 +0300
committer	Andy Polyakov <appro@openssl.org>	2018-05-09 14:30:46 +0300
commit	60845a0aa4e54f2973bc178daa5ed475ea4e148d (patch)
tree	11352f0b11e70f3672aa211c4ac804dd52dd3539 /CHANGES
parent	0dae8bafceabc8966383aa1f11ee8622f7dbde2f (diff)