Closed
Bug 1854439
Opened 2 years ago
Closed 1 year ago
Integrate HACL* P-521
Categories
(NSS :: Libraries, enhancement, P2)
NSS
Libraries
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: jschanck, Assigned: karthik.bhargavan)
References
(Blocks 1 open bug)
Details
Attachments
(1 file, 1 obsolete file)
No description provided.
|
Assignee | |
Comment 1•2 years ago
|
||
|
||
Updated•2 years ago
|
Severity: -- → S3
|
Reporter | |
Updated•2 years ago
|
Blocks: CVE-2023-6135
|
|
Reporter | |
Updated•2 years ago
|
No longer blocks: CVE-2023-6135
|
|
Reporter | |
Updated•2 years ago
|
Blocks: CVE-2024-6609
|
||
Comment 2•1 year ago
|
||
This patch has been running in the latest RHEL code since January, so I'm fairly confident in it, though we also know that this patch does not fully remove the timing signal. The other issue was bug 1893404 where the code got more strict than our existing code about returned signature sizes. A similiar fix to the one to curve p256 should be added before this patch is landed. This problem is more frequent for the 521 curve because the order of the curve has a 1 in the high bit, so the short signatures happen for 1 in 4 signatures rather than 1 in 512 signatures for p256 and p384.
|
|
Assignee | |
Comment 3•1 year ago
|
||
|
||
Updated•1 year ago
|
Attachment #9404392 -
Attachment is obsolete: true
|
|
Reporter | |
Comment 4•1 year ago
|
||
Status: NEW → RESOLVED
Closed: 1 year ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•