ecc: Add mitigation against timing attack.

Authored by gniibe on Jul 17 2019, 5:44 AM.

Description

ecc: Add mitigation against timing attack.

* cipher/ecc-ecdsa.c (_gcry_ecc_ecdsa_sign): Add the order N to K.
* mpi/ec.c (_gcry_mpi_ec_mul_point): Compute with NBITS of P or larger.

Cherry-picked master commit of:

	 b9577f7c89b4327edc09f2231bc8b31521102c79

CVE-id: CVE-2019-13627

  • GnuPG-bug-id: T4626
  • Co-authored-by: Ján Jančár <johny@neuromancer.sk>
  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Committed
gniibeAug 7 2019, 7:30 AM
Parents
rC5ad654a33085: dsa,ecdsa: Allocate secure memory for RFC6979 generation.
Branches
Unknown
Tags
Unknown