diff options
author | Pauli <paul.dale@oracle.com> | 2018-10-29 08:24:22 +1000 |
---|---|---|
committer | Pauli <paul.dale@oracle.com> | 2018-10-29 08:24:22 +1000 |
commit | 43e6a58d4991a451daf4891ff05a48735df871ac (patch) | |
tree | b946eef75127c1f87c62a7517c977d85ae629931 /crypto | |
parent | 896e8c5713b50ff2ef1478d5c6709874ce57cf05 (diff) |
Merge DSA reallocation timing fix CVE-2018-0734.
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7513)
Diffstat (limited to 'crypto')
-rw-r--r-- | crypto/dsa/dsa_ossl.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/dsa/dsa_ossl.c b/crypto/dsa/dsa_ossl.c index 2dcfedeeee..100e269268 100644 --- a/crypto/dsa/dsa_ossl.c +++ b/crypto/dsa/dsa_ossl.c @@ -279,7 +279,7 @@ static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, goto err; /* Preallocate space */ - q_bits = BN_num_bits(dsa->q); + q_bits = BN_num_bits(dsa->q) + sizeof(dsa->q->d[0]) * 16; if (!BN_set_bit(&k, q_bits) || !BN_set_bit(&l, q_bits) || !BN_set_bit(&m, q_bits)) |