kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
56cadc3daf
boringssl/crypto/rsa
History
Brian Smith 9f05de4ebb Remove the non-no_branch branch of BN_div. 
Simplify the code, and in particular make |BN_div|, |BN_mod|, and
|BN_nnmod| insensitive to |BN_FLG_CONSTTIME|. This improves the
effectiveness of testing by reducing the number of branches that are
likely to go untested or less tested.

There is no performance-sensitive code that uses BN_div but doesn't
already use BN_FLG_CONSTTIME except RSA signature verification and
EC_GROUP creation. RSA signature verification, ECDH, and ECDSA
performance aren't significantly different with this change.

Change-Id: Ie34c4ce925b939150529400cc60e1f414c7676cd
Reviewed-on: https://boringssl-review.googlesource.com/9105
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
2016-12-17 19:11:19 +00:00
..
blinding.c Add |BN_mod_inverse_blinded| and use it in RSA blinding. 2016-07-29 18:30:34 +00:00
CMakeLists.txt Add a run_tests target to run all tests. 2015-10-26 20:33:44 +00:00
internal.h Require the public exponent to be available in RSA blinding. 2016-04-18 23:34:46 +00:00
padding.c Clarify signed/unsigned math in RSA_padding_add_PKCS1_PSS_mgf1. 2016-08-09 19:10:18 +00:00
rsa_asn1.c Verify consistency of RSA keys after generation & parsing. 2016-12-16 17:37:03 +00:00
rsa_impl.c Remove the non-no_branch branch of BN_div. 2016-12-17 19:11:19 +00:00
rsa_test.cc Verify consistency of RSA keys after generation & parsing. 2016-12-16 17:37:03 +00:00
rsa.c Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00