Search for the delimiter bytes in OAEP using a loop that doesn't have

conditionals to help avoid timing anylsis. Unfortunately GCC is too smart for us and compiles it to jumps anyway; probably would need to put the delim search into its own function and pass variables by volatile pointers to force the compiler to do what we want.
author: lloyd <[email protected]> 2011-05-05 20:17:21 +0000
committer: lloyd <[email protected]> 2011-05-05 20:17:21 +0000
commit: 48962b16931268ea3e152350e78a78aaac170109 (patch)
tree: fd9357f6ef8aa62de5d34dde9e5b06ed1ad8acb2 /doc/log.txt
parent: 3d05cd831d8f3254d2ac10fc4e14591565089538 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/doc/log.txt b/doc/log.txt
index be51cca6b..b68420b44 100644
--- a/doc/log.txt
+++ b/doc/log.txt
@@ -16,6 +16,11 @@ Version 1.10.0, Not Yet Released
 * Fix a bug under Visual C++ 2010 which would cause ``hex_encode`` to
   crash if given a zero-sized input to encode.
 
+* In OAEP decoding, scan for the delimiter bytes using a loop that is
+  written without conditionals so as to help avoid timing analysis.
+  Unfortunately GCC at least is 'smart' enough to compile it to
+  jumps anyway.
+
 * TR1 support is not longer automatically assumed under older versions
   of GCC
author	lloyd <[email protected]>	2011-05-05 20:17:21 +0000
committer	lloyd <[email protected]>	2011-05-05 20:17:21 +0000
commit	48962b16931268ea3e152350e78a78aaac170109 (patch)
tree	fd9357f6ef8aa62de5d34dde9e5b06ed1ad8acb2 /doc/log.txt
parent	3d05cd831d8f3254d2ac10fc4e14591565089538 (diff)