diff options
author | lloyd <[email protected]> | 2010-05-12 17:30:08 +0000 |
---|---|---|
committer | lloyd <[email protected]> | 2010-05-12 17:30:08 +0000 |
commit | 0b3a19725ae5c2959fea4be3728660063f31dc9d (patch) | |
tree | a777f9218259b91838d461f8c8564652574aee5f /src/hash/rmd128 | |
parent | fc67598e890b930cf298102fc140417e5c5f4da3 (diff) |
Partially protect OAEP decoding against a timing attack. Possibility
of this pointed out by Falko Strenzke. The timing differences between
different error conditions could lead to attacks even with the same
error message. Instead use a (mostly) straightline
implementation. However scanning for the delim byte is still
timing/input dependenant, so this is not a 100% fix.
Diffstat (limited to 'src/hash/rmd128')
0 files changed, 0 insertions, 0 deletions