mpi: Fix mpi_set_secure.
5feaf1cc8f22
Actions

Description

mpi: Fix mpi_set_secure.

* mpi/mpiutil.c (mpi_set_secure): Allocate by ->alloced.

The code was simply wrong. The question is if (1) it allocates
(possibly) more or (2) modifi ->alloced. The choice is (1).

Because we have routines of mpi_set_cond and mpi_swap_cond which
assume no change for the allocated length of limbs, no surprise is
better. See _gcry_mpi_ec_mul_point for concrete example for those
routines. That's for constant-time computation.

Debian-bug-id: #866964
Suggested-by: Mark Wooding <mdw@distorted.org.uk>
Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance

• gniibe

Authored on Jul 4 2017, 2:33 AM

Parents

rC8725c99ffa41: rsa: Add exponent blinding.

Branches

Unknown

Tags

Unknown

Event Timeline

• gniibe mentioned this in rCa195d7346a80: mpi: Fix mpi_set_secure..Jul 4 2017, 2:46 AM

• gniibe committed rC5feaf1cc8f22: mpi: Fix mpi_set_secure. (authored by • gniibe).Jul 4 2017, 2:33 AM

Changes (1)

Path

Size

mpi/

mpiutil.c

rC5feaf1cc8f22

View Options