diff options
author | Chunrong Guo <chunrong.guo@nxp.com> | 2017-04-18 12:18:44 +0800 |
---|---|---|
committer | Otavio Salvador <otavio@ossystems.com.br> | 2017-05-02 17:54:58 -0300 |
commit | cfb3ddaaaa78204ef5281c8627eed08f4f7e3f09 (patch) | |
tree | eed52994eb5c9abb844439aefa9faa2328c6b451 /recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch | |
parent | 6e3cc428cfe8c50f38e37161e52a0e63d1f13367 (diff) | |
download | meta-freescale-cfb3ddaaaa78204ef5281c8627eed08f4f7e3f09.tar.gz |
openssl-qoriq: upgrade to 1.0.2k
Signed-off-by: Chunrong Guo <B40290@freescale.com>
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Diffstat (limited to 'recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch')
-rw-r--r-- | recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch | 51 |
1 files changed, 0 insertions, 51 deletions
diff --git a/recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch b/recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch deleted file mode 100644 index 27ade4e7..00000000 --- a/recipes-connectivity/openssl/openssl-qoriq/CVE-2016-2178.patch +++ /dev/null | |||
@@ -1,51 +0,0 @@ | |||
1 | From 399944622df7bd81af62e67ea967c470534090e2 Mon Sep 17 00:00:00 2001 | ||
2 | From: Cesar Pereida <cesar.pereida@aalto.fi> | ||
3 | Date: Mon, 23 May 2016 12:45:25 +0300 | ||
4 | Subject: [PATCH] Fix DSA, preserve BN_FLG_CONSTTIME | ||
5 | |||
6 | Operations in the DSA signing algorithm should run in constant time in | ||
7 | order to avoid side channel attacks. A flaw in the OpenSSL DSA | ||
8 | implementation means that a non-constant time codepath is followed for | ||
9 | certain operations. This has been demonstrated through a cache-timing | ||
10 | attack to be sufficient for an attacker to recover the private DSA key. | ||
11 | |||
12 | CVE-2016-2178 | ||
13 | |||
14 | Reviewed-by: Richard Levitte <levitte@openssl.org> | ||
15 | Reviewed-by: Matt Caswell <matt@openssl.org> | ||
16 | |||
17 | Upstream-Status: Backport | ||
18 | CVE: CVE-2016-2178 | ||
19 | |||
20 | Signed-off-by: Armin Kuster <akuster@mvista.com> | ||
21 | |||
22 | --- | ||
23 | crypto/dsa/dsa_ossl.c | 9 +++++---- | ||
24 | 1 file changed, 5 insertions(+), 4 deletions(-) | ||
25 | |||
26 | Index: openssl-1.0.2h/crypto/dsa/dsa_ossl.c | ||
27 | =================================================================== | ||
28 | --- openssl-1.0.2h.orig/crypto/dsa/dsa_ossl.c | ||
29 | +++ openssl-1.0.2h/crypto/dsa/dsa_ossl.c | ||
30 | @@ -248,9 +248,6 @@ static int dsa_sign_setup(DSA *dsa, BN_C | ||
31 | if (!BN_rand_range(&k, dsa->q)) | ||
32 | goto err; | ||
33 | while (BN_is_zero(&k)) ; | ||
34 | - if ((dsa->flags & DSA_FLAG_NO_EXP_CONSTTIME) == 0) { | ||
35 | - BN_set_flags(&k, BN_FLG_CONSTTIME); | ||
36 | - } | ||
37 | |||
38 | if (dsa->flags & DSA_FLAG_CACHE_MONT_P) { | ||
39 | if (!BN_MONT_CTX_set_locked(&dsa->method_mont_p, | ||
40 | @@ -282,6 +279,11 @@ static int dsa_sign_setup(DSA *dsa, BN_C | ||
41 | } else { | ||
42 | K = &k; | ||
43 | } | ||
44 | + | ||
45 | + if ((dsa->flags & DSA_FLAG_NO_EXP_CONSTTIME) == 0) { | ||
46 | + BN_set_flags(K, BN_FLG_CONSTTIME); | ||
47 | + } | ||
48 | + | ||
49 | DSA_BN_MOD_EXP(goto err, dsa, r, dsa->g, K, dsa->p, ctx, | ||
50 | dsa->method_mont_p); | ||
51 | if (!BN_mod(r, r, dsa->q, ctx)) | ||