Revision - 1331456 - This change alters the processing of invalid, RSA pre-master [...] – ENEA Mirror of the Software Heritage archive

Revision 133145686e054a28f78b94e8a996ef7ae13d30b7 authored by Adam Langley on 24 April 2013, 18:45:44 UTC, committed by Emilia Kasper on 24 September 2014, 13:46:26 UTC

This change alters the processing of invalid, RSA pre-master secrets so

that bad encryptions are treated like random session keys in constant
time.

(cherry picked from commit adb46dbc6dd7347750df2468c93e8c34bcb93a4b)

Reviewed-by: Rich Salz <rsalz@openssl.org>

1 parent 0f04b00

Files
Changes

Permalinks

testca

#!/bin/sh

SH="/bin/sh"
if test "$OSTYPE" = msdosdjgpp; then
    PATH="../apps\;$PATH"
else
    PATH="../apps:$PATH"
fi
export SH PATH

SSLEAY_CONFIG="-config CAss.cnf"
export SSLEAY_CONFIG

OPENSSL="`pwd`/../util/opensslwrap.sh"
export OPENSSL

/bin/rm -fr demoCA
$SH ../apps/CA.sh -newca <<EOF
EOF

if [ $? != 0 ]; then
	exit 1;
fi

SSLEAY_CONFIG="-config Uss.cnf"
export SSLEAY_CONFIG
$SH ../apps/CA.sh -newreq
if [ $? != 0 ]; then
	exit 1;
fi


SSLEAY_CONFIG="-config ../apps/openssl.cnf"
export SSLEAY_CONFIG
$SH ../apps/CA.sh -sign  <<EOF
y
y
EOF
if [ $? != 0 ]; then
	exit 1;
fi


$SH ../apps/CA.sh -verify newcert.pem
if [ $? != 0 ]; then
	exit 1;
fi

/bin/rm -fr demoCA newcert.pem newreq.pem
#usage: CA -newcert|-newreq|-newca|-sign|-verify

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...