Module Name: src
Committed By: christos
Date: Wed Apr 10 17:57:15 UTC 2019
Modified Files:
src/external/bsd/wpa/dist/src/eap_common: eap_pwd_common.c
Log Message:
This algorithm could leak information to external observers in form of
timing differences or memory access patterns (cache use). While the
previous implementation had protection against the most visible timing
differences (looping 40 rounds and masking the legendre operation), it
did not protect against memory access patterns between the two possible
code paths in the masking operations. That might be sufficient to allow
an unprivileged process running on the same device to be able to
determine which path is being executed through a cache attack and based
on that, determine information about the used password.
Convert the PWE finding loop to use constant time functions and
identical memory access path without different branches for the QR/QNR
cases to minimize possible side-channel information similarly to the
changes done for SAE authentication. (CVE-2019-9495)
To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 \
src/external/bsd/wpa/dist/src/eap_common/eap_pwd_common.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
