Commit 29d8bda9 authored by Andy Polyakov's avatar Andy Polyakov
Browse files

CHANGES: mention blinding reverting in ECDSA. 



Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6810)
parent 983e1ad2

CHANGES

+4 −0
Original line number Diff line number Diff line
@@ -9,6 +9,10 @@ 


 Changes between 1.0.2o and 1.0.2p [xx XXX xxxx]



  *) Revert blinding in ECDSA sign and instead make problematic addition

     length-invariant. Switch even to fixed-length Montgomery multiplication.

     [Andy Polyakov]



  *) Change generating and checking of primes so that the error rate of not

     being prime depends on the intended use based on the size of the input.

     For larger primes this will result in more rounds of Miller-Rabin.