Skip to content

ECC: generate values in range of order by rejection #7020

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cconlon merged 2 commits into from
Dec 14, 2023
Merged

ECC: generate values in range of order by rejection #7020

cconlon merged 2 commits into from
Dec 14, 2023

Conversation

@SparkiDev
Copy link
Contributor

@SparkiDev SparkiDev commented Nov 30, 2023

Description

When generating private key and nonce for ECDSA, use rejection sampling. Note: SP uses this algorithm

Fixes zd#17099

Testing

./configure '--disable-shared' '--enable-ecccustcurves=all'
./configure '--disable-shared' '--enable-ecccustcurves=all' --enable-heapmath
./configure '--disable-shared' '--enable-ecccustcurves=all' --enable-fastmath

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@SparkiDev SparkiDev self-assigned this Nov 30, 2023
@SparkiDev SparkiDev force-pushed the ecc_gen_k_by_reject branch 2 times, most recently from 3028ecc to 2790fc9 Compare November 30, 2023 02:05
@SparkiDev SparkiDev force-pushed the ecc_gen_k_by_reject branch 3 times, most recently from 6061904 to 7e2a399 Compare December 12, 2023 02:08
@SparkiDev
ECC: generate values in range of order by rejection
21f53f3 
When generating private key and nonce for ECDSA, use rejection sampling.
Note: SP uses this algorithm
@SparkiDev SparkiDev added the For This Release Release version 5.8.4 label Dec 14, 2023
dgarske
dgarske requested changes Dec 14, 2023
View reviewed changes
Copy link
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good otherwise. Just spelling

@SparkiDev SparkiDev assigned dgarske and wolfSSL-Bot and unassigned SparkiDev Dec 14, 2023
@SparkiDev
Copy link
Contributor Author

SparkiDev commented Dec 14, 2023

Reporter is happy the new code is timing resistant.

@cconlon cconlon merged commit fb6b022 into wolfSSL:master Dec 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cconlon cconlon cconlon approved these changes

@dgarske dgarske dgarske approved these changes

Assignees

@dgarske dgarske

@wolfSSL-Bot wolfSSL-Bot

Labels

For This Release Release version 5.8.4

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@SparkiDev @cconlon @dgarske @wolfSSL-Bot