kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2d07d30c44
boringssl/crypto/fipsmodule/bn/asm
History
David Benjamin 2d07d30c44 bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqrx8x_internal. 
Credit to OSS-Fuzz for finding this.

CVE-2017-3736

(Imported from upstream's 668a709a8d7ea374ee72ad2d43ac72ec60a80eee and
420b88cec8c6f7c67fad07bf508dcccab094f134.)

This bug does not affect BoringSSL as we do not enable the ADX code.
Note the test vector had to be tweaked to take things in and out of
Montgomery form. (There may be something to be said for test vectors for
just BN_mod_mul_montgomery, though we'd need separate 64-bit and 32-bit
ones because R can be different.)

Change-Id: I832070731ac1c5f893f9c1746892fc4a32f023f5
Reviewed-on: https://boringssl-review.googlesource.com/22484
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
2017-11-02 17:07:57 +00:00
..
armv4-mont.pl Revert assembly changes in "Hide CPU capability symbols in C." 2017-10-30 20:39:57 +00:00
armv8-mont.pl Sync ARM assembly up to 609b0852e4d50251857dbbac3141ba042e35a9ae. 2017-06-13 17:47:20 +00:00
bn-586.pl Remove filename argument to x86 asm_init. 2017-05-12 14:58:27 +00:00
co-586.pl Remove filename argument to x86 asm_init. 2017-05-12 14:58:27 +00:00
rsaz-avx2.pl Revert ADX due to build issues. 2017-08-15 18:56:09 +00:00
x86_64-gcc.c Revert "Use uint128_t and __asm__ in clang-cl." 2017-10-27 00:22:06 +00:00
x86_64-mont5.pl bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqrx8x_internal. 2017-11-02 17:07:57 +00:00
x86_64-mont.pl Revert ADX due to build issues. 2017-08-15 18:56:09 +00:00
x86-mont.pl Remove filename argument to x86 asm_init. 2017-05-12 14:58:27 +00:00