Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Generate EC/DSA nonces in a way that does not reveal whether top bits are set #24265

Closed
wants to merge 8 commits into from
Closed

Generate EC/DSA nonces in a way that does not reveal whether top bits are set #24265

wants to merge 8 commits into from

Commits on Apr 25, 2024

  1. Make BN_generate_dsa_nonce() constant time and non-biased 

    Co-authored-by: Paul Dale <ppzgs1@gmail.com>
    @t8m @paulidale
    t8m and paulidale committed Apr 25, 2024
    Configuration menu
    Copy the full SHA
    61c633f View commit details
    Browse the repository at this point in the history

  2. Make ossl_gen_deterministic_nonce_rfc6979() constant time

    @t8m
    t8m committed Apr 25, 2024
    Configuration menu
    Copy the full SHA
    9d44fd2 View commit details
    Browse the repository at this point in the history

  3. Add ossl_bn_priv_rand_range_fixed_top() and use it for EC/DSA

    @t8m
    t8m committed Apr 25, 2024
    Configuration menu
    Copy the full SHA
    b8ba14e View commit details
    Browse the repository at this point in the history

  4. Adjust FIPS EC/DSA self test data for different nonce generation

    @t8m
    t8m committed Apr 25, 2024
    Configuration menu
    Copy the full SHA
    77fe3a7 View commit details
    Browse the repository at this point in the history

Commits on Apr 29, 2024

  1. fixup! Make BN_generate_dsa_nonce() constant time and non-biased

    @t8m
    t8m committed Apr 29, 2024
    Configuration menu
    Copy the full SHA
    4f7eab0 View commit details
    Browse the repository at this point in the history

Commits on Apr 30, 2024

  1. fixup! Make BN_generate_dsa_nonce() constant time and non-biased

    @t8m
    t8m committed Apr 30, 2024
    Configuration menu
    Copy the full SHA
    40c2f6c View commit details
    Browse the repository at this point in the history

  2. fixup! Adjust FIPS EC/DSA self test data for different nonce generation

    @t8m
    t8m committed Apr 30, 2024
    Configuration menu
    Copy the full SHA
    fa04415 View commit details
    Browse the repository at this point in the history

  3. Correct top for EC/DSA nonces if BN_DEBUG is on 

    Otherwise following operations would bail out in bn_check_top().
    @t8m
    t8m committed Apr 30, 2024
    Configuration menu
    Copy the full SHA
    08fbff0 View commit details
    Browse the repository at this point in the history