Implement fixed-window exponentiation to mitigate hyper-threading

timing attacks. BN_FLG_EXP_CONSTTIME requests this algorithm, and this done by default for RSA/DSA/DH private key computations unless RSA_FLAG_NO_EXP_CONSTTIME/DSA_FLAG_NO_EXP_CONSTTIME/ DH_FLAG_NO_EXP_CONSTTIME is set. Submitted by: Matthew D Wood Reviewed by: Bodo Moeller
author: Bodo Möller <bodo@openssl.org> 2005-05-16 01:43:31 +0000
committer: Bodo Möller <bodo@openssl.org> 2005-05-16 01:43:31 +0000
commit: 46a643763de6d8e39ecf6f76fa79b4d04885aa59 (patch)
tree: e1f3cfc98bddba797b5300977dbf3223f008fc4a /crypto/bn/expspeed.c
parent: 92c44685724c0d993ea8920577680f3c0a1d79c8 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/bn/expspeed.c b/crypto/bn/expspeed.c
index 07a1bcf51c..4d5f221f33 100644
--- a/crypto/bn/expspeed.c
+++ b/crypto/bn/expspeed.c
@@ -321,7 +321,7 @@ void do_mul_exp(BIGNUM *r, BIGNUM *a, BIGNUM *b, BIGNUM *c, BN_CTX *ctx)
 #else /* TEST_SQRT */
 			"2*sqrt [prime == %d (mod 64)] %4d %4d mod %4d"
 #endif
-			" -> %8.3fms %5.1f (%ld)\n",
+			" -> %8.6fms %5.1f (%ld)\n",
 #ifdef TEST_SQRT
 			P_MOD_64,
 #endif
author	Bodo Möller <bodo@openssl.org>	2005-05-16 01:43:31 +0000
committer	Bodo Möller <bodo@openssl.org>	2005-05-16 01:43:31 +0000
commit	46a643763de6d8e39ecf6f76fa79b4d04885aa59 (patch)
tree	e1f3cfc98bddba797b5300977dbf3223f008fc4a /crypto/bn/expspeed.c
parent	92c44685724c0d993ea8920577680f3c0a1d79c8 (diff)