crypto: ecdh - check validity of Z before export - lwn.git - Linux kernel documentation tree maintained by Jonathan Corbet

diff options

author	Stephan Müller <smueller@chronox.de>	2020-07-20 19:07:48 +0200
committer	Herbert Xu <herbert@gondor.apana.org.au>	2020-07-31 18:08:58 +1000
commit	e7d2b41e5c773c1e00f0f30519b9790ba7e4a58c (patch)
tree	ccf050a858e5391e96a11fc5c25c7d4d29a0d7c0 /lib/mpi
parent	ef19f826eceabdef3a710958cbf3549355267645 (diff)
download	lwn-e7d2b41e5c773c1e00f0f30519b9790ba7e4a58c.tar.gz lwn-e7d2b41e5c773c1e00f0f30519b9790ba7e4a58c.zip

crypto: ecdh - check validity of Z before export

SP800-56A rev3 section 5.7.1.2 step 2 mandates that the validity of the calculated shared secret is verified before the data is returned to the caller. Thus, the export function and the validity check functions are reversed. In addition, the sensitive variables of priv and rand_z are zeroized. Signed-off-by: Stephan Mueller <smueller@chronox.de> Reviewed-by: Vitaly Chikunov <vt@altlinux.org> Acked-by: Neil Horman <nhorman@redhat.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

Diffstat (limited to 'lib/mpi')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: