root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity

SM2: Use constant time modular inversion 

Fixes CVE-2025-9231

Issue and a proposed fix reported by Stanislav Fort (Aisle Research).

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
This commit is contained in:
Tomas Mraz 2025-09-11 18:40:34 +02:00
parent 9c462be2ce
commit dff94dba75
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
crypto/ec/ecp_sm2p256.c
View File

@ -747,7 +747,7 @@ const EC_METHOD *EC_GFp_sm2p256_method(void)
ossl_ec_GFp_simple_point_copy, ossl_ec_GFp_simple_point_copy,
ossl_ec_GFp_simple_point_set_to_infinity, ossl_ec_GFp_simple_point_set_to_infinity,
ossl_ec_GFp_simple_point_set_affine_coordinates, ossl_ec_GFp_simple_point_set_affine_coordinates,
ecp_sm2p256_get_affine, ossl_ec_GFp_simple_point_get_affine_coordinates,
0, 0, 0, 0, 0, 0,
ossl_ec_GFp_simple_add, ossl_ec_GFp_simple_add,
ossl_ec_GFp_simple_dbl, ossl_ec_GFp_simple_dbl,
@ -763,7 +763,7 @@ const EC_METHOD *EC_GFp_sm2p256_method(void)
ecp_sm2p256_field_mul, ecp_sm2p256_field_mul,
ecp_sm2p256_field_sqr, ecp_sm2p256_field_sqr,
0 /* field_div */, 0 /* field_div */,
0 /* field_inv */, ossl_ec_GFp_simple_field_inv,
0 /* field_encode */, 0 /* field_encode */,
0 /* field_decode */, 0 /* field_decode */,
0 /* field_set_to_one */, 0 /* field_set_to_one */,
@ -779,7 +779,7 @@ const EC_METHOD *EC_GFp_sm2p256_method(void)
ossl_ecdsa_simple_sign_setup, ossl_ecdsa_simple_sign_setup,
ossl_ecdsa_simple_sign_sig, ossl_ecdsa_simple_sign_sig,
ossl_ecdsa_simple_verify_sig, ossl_ecdsa_simple_verify_sig,
ecp_sm2p256_inv_mod_ord, 0, /* use constanttime fallback for inverse mod order */
0, /* blind_coordinates */ 0, /* blind_coordinates */
0, /* ladder_pre */ 0, /* ladder_pre */
0, /* ladder_step */ 0, /* ladder_step */