[PATCH] mpi:ec: Set GCRYECC_FLAG_LEAST_LEAK, calling mpi_ec_mul_point_lli.

[NIIBE Yutaka via Gcrypt-devel]

* mpi/ec.c (_gcry_mpi_ec_mul_point): Enable GCRYECC_FLAG_LEAST_LEAK
when calling mpi_ec_mul_point_lli.

--

Signed-off-by: NIIBE Yutaka <gni...@fsij.org>
---
 mpi/ec.c | 2 ++
 1 file changed, 2 insertions(+)


diff --git a/mpi/ec.c b/mpi/ec.c
index 13d2088e..92db6e20 100644
--- a/mpi/ec.c
+++ b/mpi/ec.c
@@ -2290,7 +2290,9 @@ _gcry_mpi_ec_mul_point (mpi_point_t result,
     }
   else if (mpi_is_secure (scalar))
     {
+      ctx->flags |= GCRYECC_FLAG_LEAST_LEAK;
       mpi_ec_mul_point_lli (result, scalar, point, ctx);
+      ctx->flags &= ~GCRYECC_FLAG_LEAST_LEAK;
       return;
     }
   else if (ctx->model == MPI_EC_EDWARDS)

_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gcrypt-devel