CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2023/08/08 07:09:28
Modified files:
lib/libcrypto/ecdsa: ecdsa.c
Log message:
Remove ECDSA nonce padding kludge
This was a workaround due to the historically non-constant time scalar
multiplication in the EC code. Since Brumley and Tuveri implemented the
Montgomery ladder, this is no longer useful and should have been removed
a long time ago, as it now does more harm than good.
Keep the preallocations as they still help hiding some timing info.
ok jsing
