diff options
Diffstat (limited to 'cipher/rsa-common.c')
| -rw-r--r-- | cipher/rsa-common.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/cipher/rsa-common.c b/cipher/rsa-common.c index b2601423..7b562371 100644 --- a/cipher/rsa-common.c +++ b/cipher/rsa-common.c @@ -46,7 +46,7 @@ octet_string_from_mpi (unsigned char **r_frame, void *space, /* Encode {VALUE,VALUELEN} for an NBITS keys using the pkcs#1 block - type 2 padding. On sucess the result is stored as a new MPI at + type 2 padding. On success the result is stored as a new MPI at R_RESULT. On error the value at R_RESULT is undefined. If {RANDOM_OVERRIDE, RANDOM_OVERRIDE_LEN} is given it is used as @@ -675,7 +675,7 @@ _gcry_rsa_oaep_decode (unsigned char **r_result, size_t *r_resultlen, } db = seed + hlen; - /* To avoid choosen ciphertext attacks from now on we make sure to + /* To avoid chosen ciphertext attacks from now on we make sure to run all code even in the error case; this avoids possible timing attacks as described by Manger. */ |