On Tue, Mar 27, 2007 at 02:23:08PM -0700, Wood, Matthew D wrote: > Changes to OpenSSL 0.9.8d to mitigate branch prediction attacks
Thanks! I'm working on moving this into the OpenSSL CVS. I have just one question: In crypto/rsa/rsa_gen.c, you use BN_with_flags() to set BN_FLG_CONSTTIME for d before d mod (p-1) and d (mod q-1) are computed. Can I assume that you meant to set the flag for p-1 (stored in variable r1) and q-1 (stored in r2)? Bodo ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]