Suyu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-01-06 06:28:56 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #704 from mpg/l13-hw-starts-finish-2.16-restricted

Browse source 
[backport 2.16] Use starts/finish around Lucky 13 dummy compressions
This commit is contained in:
Manuel Pégourié-Gonnard 2020-06-23 10:43:30 +02:00 committed by GitHub
commit 3a1944a187
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 19 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

7
ChangeLog.d/l13-hw-accel.txt Normal file
View file

@ -0,0 +1,7 @@
Security
* Fix issue in Lucky 13 counter-measure that could make it ineffective when
hardware accelerators were used (using one of the MBEDTLS_SHAxxx_ALT
macros). This would cause the original Lucky 13 attack to be possible in
those configurations, allowing an active network attacker to recover
plaintext after repeated timing measurements under some conditions.
Reported and fix suggested by Luc Perneel in #3246.