Home GnuPG
Diffusion libgcrypt 4f56fd8c5e03

mpi:ec: Don't normalize the MPIs when GCRYECC_FLAG_LEAST_LEAK.
4f56fd8c5e03
Actions

Description

mpi:ec: Don't normalize the MPIs when GCRYECC_FLAG_LEAST_LEAK.

* mpi/ec-nist.c (_gcry_mpi_ec_nist192_mod): Don't do MPN_NORMALIZE
when GCRYECC_FLAG_LEAST_LEAK.
(_gcry_mpi_ec_nist224_mod): Likewise.
(_gcry_mpi_ec_nist256_mod): Likewise.
(_gcry_mpi_ec_nist384_mod): Likewise.
(_gcry_mpi_ec_nist521_mod): Likewise.
* mpi/ec.c (ec_mod): Keep ->NLIMBS when GCRYECC_FLAG_LEAST_LEAK.
  • GnuPG-bug-id: T7519
  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Thu, Mar 27, 3:14 AM
Parents
rC0680408b3751: mpi:ec: Use affine coordinate for mpi_ec_mul_point_lli.
Branches
Unknown
Tags
Unknown
Tasks
T7519: libgcrypt: (EC)DSA signature generation should be constant-time

Changes (2)

PathSize
mpi/

rC4f56fd8c5e03

View Options

mpi/ec-nist.c

Loading...
View Options

mpi/ec.c

Loading...