[openssl-project] Constant time by default
Matt Caswell
matt at openssl.org
Mon Apr 16 17:06:33 UTC 2018
I'd like to draw everyone's attention to PR #5969
Given CVE-2018-0737, and the fact that this is far from the first time
this has happened I think we should change the default so that we always
use the constant time implementation unless specifically flagged
otherwise. E.g see these issues:
54f007a (CVE-2018-0737)
8db7946
e913d11
6364475
6364475
3de81a5
47ae05b
033dc8f
3999446 (CVE-2016-2178)
As I say in the PR (marked as WIP) I am seeking feedback as to whether
this is something we should pursue now (i.e. for 1.1.1) or later (post
1.1.1) or not at all.
Matt
More information about the openssl-project
mailing list