diff options
author | Matt Caswell <matt@openssl.org> | 2016-05-26 10:55:11 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-06-06 11:09:06 +0100 |
commit | 5584f65a1027b06fe0cfc4be28d1a232cf180e42 (patch) | |
tree | e1d62f81d9d5a23575e4f4063b47d28e680afcdf /include/openssl/rsa.h | |
parent | f943e640efbb5ec30bf57b59468c094083c99eb2 (diff) | |
download | openssl-5584f65a1027b06fe0cfc4be28d1a232cf180e42.tar.gz |
Deprecate the flags that switch off constant time
The flags RSA_FLAG_NO_CONSTTIME, DSA_FLAG_NO_EXP_CONSTTIME and
DH_FLAG_NO_EXP_CONSTTIME which previously provided the ability to switch
off the constant time implementation for RSA, DSA and DH have been made
no-ops and deprecated.
Reviewed-by: Richard Levitte <levitte@openssl.org>
Diffstat (limited to 'include/openssl/rsa.h')
-rw-r--r-- | include/openssl/rsa.h | 14 |
1 files changed, 4 insertions, 10 deletions
diff --git a/include/openssl/rsa.h b/include/openssl/rsa.h index 6a680582ec..4b82081d93 100644 --- a/include/openssl/rsa.h +++ b/include/openssl/rsa.h @@ -66,18 +66,12 @@ extern "C" { * but other engines might not need it */ # define RSA_FLAG_NO_BLINDING 0x0080 +# if OPENSSL_API_COMPAT < 0x10100000L /* - * new with 0.9.8f; the built-in RSA - * implementation now uses constant time - * operations by default in private key operations, - * e.g., constant time modular exponentiation, - * modular inverse without leaking branches, - * division without leaking branches. This - * flag disables these constant time - * operations and results in faster RSA - * private key operations. + * Does nothing. Previously this switched off constant time behaviour. */ -# define RSA_FLAG_NO_CONSTTIME 0x0100 +# define RSA_FLAG_NO_CONSTTIME 0x0000 +# endif # if OPENSSL_API_COMPAT < 0x00908000L /* deprecated name for the flag*/ /* |