git.openssl.org Git - openssl.git/commit

author	Billy Brumley <bbrumley@gmail.com>
	Tue, 24 Apr 2018 13:00:08 +0000 (16:00 +0300)
committer	Andy Polyakov <appro@openssl.org>
	Wed, 9 May 2018 11:29:48 +0000 (13:29 +0200)
commit	fe2d3975880e6a89702f18ec58881307bf862542
tree	584e4788d2db332354cd5f1d912d1d27785ebd97	tree \| snapshot
parent	06e0950d20d3110849dea28eb78cac4127618b48	commit \| diff

ECDSA: remove nonce padding (delegated to EC_POINT_mul)

* EC_POINT_mul is now responsible for constant time point multiplication
  (for single fixed or variable point multiplication, when the scalar is
  in the range [0,group_order), so we need to strip the nonce padding
  from ECDSA.
* Entry added to CHANGES
* Updated EC_POINT_mul documentation
  - Integrate existing EC_POINT_mul and EC_POINTs_mul entries in the
    manpage to reflect the shift in constant-time expectations when
    performing a single fixed or variable point multiplication;
  - Add documentation to ec_method_st to reflect the updated "contract"
    between callers and implementations of ec_method_st.mul.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6070)

CHANGES		diff \| blob \| history
crypto/ec/ec_lcl.h		diff \| blob \| history
crypto/ec/ec_mult.c		diff \| blob \| history
crypto/ec/ecdsa_ossl.c		diff \| blob \| history
doc/man3/EC_POINT_add.pod		diff \| blob \| history