Cypherpunks repositories - gostls13.git/commit

author	Roland Shoemaker <roland@golang.org>
	Wed, 22 Jan 2025 00:03:14 +0000 (16:03 -0800)
committer	Carlos Amedee <carlos@golang.org>
	Fri, 31 Jan 2025 17:38:05 +0000 (09:38 -0800)
commit	0cc45e7ca668b103c1055ae84402ad3f3425dd56
tree	7ef164af1795df76fa0a99acfb5ad18ae7eba07e	tree
parent	c3c6a50095ab207e845776ddec7c28d2a1810ffe	commit \| diff

[release-branch.go1.22] crypto/internal/fips140/nistec: make p256NegCond constant time on ppc64le

Remove the branching instruction from p256NegCond which made it variable
time. The technique used matches that used in p256MovCond.

Fixes #71383
Fixes #71422
Fixes CVE-2025-22866

Change-Id: Ibc2a46814d856cbbdaf6cc0c5a415ed5d42ca793
Reviewed-on: https://go-review.googlesource.com/c/go/+/643735
Reviewed-by: David Chase <drchase@google.com>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Paul Murphy <murp@ibm.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
(cherry picked from commit 6fc23a3cff5e38ff72923fee50f51254dcdc6e93)
Reviewed-on: https://go-review.googlesource.com/c/go/+/645535
Reviewed-by: Carlos Amedee <carlos@golang.org>
TryBot-Bypass: Carlos Amedee <carlos@golang.org>