make timing attack protection unconditional

author: Dr. Stephen Henson <steve@openssl.org> 2011-09-01 14:23:09 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2011-09-01 14:23:09 +0000
commit: ff7231043f1f348764fdf3463e73cf7ed9d3ce85 (patch)
tree: 71e3def64c459fa8eb9c19a76deaf48738fea382 /crypto/ecdsa
parent: 5e92fd244cd77cac0923906bdeb27aa4880b758f (diff)
download: openssl-ff7231043f1f348764fdf3463e73cf7ed9d3ce85.tar.gz
1 files changed, 0 insertions, 2 deletions
diff --git a/crypto/ecdsa/ecs_ossl.c b/crypto/ecdsa/ecs_ossl.c
index 8b407c5470..acdeea83d4 100644
--- a/crypto/ecdsa/ecs_ossl.c
+++ b/crypto/ecdsa/ecs_ossl.c
@@ -151,7 +151,6 @@ static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in, BIGNUM **kinvp,
 			}
 		while (BN_is_zero(k));
 
-#ifdef ECDSA_POINT_MUL_NO_CONSTTIME
 		/* We do not want timing information to leak the length of k,
 		 * so we compute G*k using an equivalent scalar of fixed
 		 * bit-length. */
@@ -159,7 +158,6 @@ static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in, BIGNUM **kinvp,
 		if (!BN_add(k, k, order)) goto err;
 		if (BN_num_bits(k) <= BN_num_bits(order))
 			if (!BN_add(k, k, order)) goto err;
-#endif /* def(ECDSA_POINT_MUL_NO_CONSTTIME) */
 
 		/* compute r the x-coordinate of generator * k */
 		if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx))
author	Dr. Stephen Henson <steve@openssl.org>	2011-09-01 14:23:09 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2011-09-01 14:23:09 +0000
commit	ff7231043f1f348764fdf3463e73cf7ed9d3ce85 (patch)
tree	71e3def64c459fa8eb9c19a76deaf48738fea382 /crypto/ecdsa
parent	5e92fd244cd77cac0923906bdeb27aa4880b758f (diff)
download	openssl-ff7231043f1f348764fdf3463e73cf7ed9d3ce85.tar.gz