Skip to content
Snippets Groups Projects
Commit 0cc45e7c authored by Roland Shoemaker's avatar Roland Shoemaker Committed by Carlos Amedee
Browse files

[release-branch.go1.22] crypto/internal/fips140/nistec: make p256NegCond constant time on ppc64le 

Remove the branching instruction from p256NegCond which made it variable
time. The technique used matches that used in p256MovCond.

Fixes #71383
Fixes #71422
Fixes CVE-2025-22866

Change-Id: Ibc2a46814d856cbbdaf6cc0c5a415ed5d42ca793
Reviewed-on: https://go-review.googlesource.com/c/go/+/643735


Reviewed-by: default avatarDavid Chase <drchase@google.com>
Reviewed-by: default avatarFilippo Valsorda <filippo@golang.org>
Reviewed-by: default avatarPaul Murphy <murp@ibm.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
(cherry picked from commit 6fc23a3c)
Reviewed-on: https://go-review.googlesource.com/c/go/+/645535


Reviewed-by: default avatarCarlos Amedee <carlos@golang.org>
TryBot-Bypass: Carlos Amedee <carlos@golang.org>
parent c3c6a500
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment