diff options
author | Bodo Möller <bodo@openssl.org> | 2001-02-08 12:14:51 +0000 |
---|---|---|
committer | Bodo Möller <bodo@openssl.org> | 2001-02-08 12:14:51 +0000 |
commit | 35ed8cb8b6655606c2be31d44be942f6724ba405 (patch) | |
tree | 23cb17587c9eba1277d885d28d70e39e6a319af0 /CHANGES | |
parent | 7edc5ed90a55ecaf94ded491c99cfe930da9ba2a (diff) |
Integrate my implementation of a countermeasure against
Bleichenbacher's DSA attack. With this implementation, the expected
number of iterations never exceeds 2.
New semantics for BN_rand_range():
BN_rand_range(r, min, range) now generates r such that
min <= r < min+range.
(Previously, BN_rand_range(r, min, max) generated r such that
min <= r < max.
It is more convenient to have the range; also the previous
prototype was misleading because max was larger than
the actual maximum.)
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -5,7 +5,7 @@ *) Add new function BN_rand_range(), and fix DSA_sign_setup() to prevent Bleichenbacher's DSA attack. - [Ulf Moeller] + [Ulf Moeller, Bodo Moeller] *) Update Rijndael code to version 3.0 and change EVP AES ciphers to handle the new API. Currently only ECB, CBC modes supported. Add new |