boringssl/crypto/fipsmodule/ec
David Benjamin 5c0e0cec83 Remove Z = 1 special-case in generic point_get_affine.
As the point may be the output of some private key operation, whether Z
accidentally hit one is secret.

Bug: 239
Change-Id: I7db34cd3b5dd5ca4b96980e8993a9b4eda49eb88
Reviewed-on: https://boringssl-review.googlesource.com/27664
Reviewed-by: Adam Langley <alangley@gmail.com>
2018-04-24 16:16:53 +00:00
..
asm p256-x86_64-asm.pl: add .cfi and SEH handlers to new functions. 2018-04-24 16:10:08 +00:00
ec_key.c Store EC_KEY's private key as an EC_SCALAR. 2018-03-07 21:17:31 +00:00
ec_montgomery.c Remove Z = 1 special-case in generic point_get_affine. 2018-04-24 16:16:53 +00:00
ec_scalar_base_mult_tests.txt Add some EC base point multiplication test vectors. 2018-03-27 23:33:24 +00:00
ec_test.cc Add test coverage for the a != -3 case. 2018-04-02 18:25:08 +00:00
ec.c Align ECDSA sign/verify scalar inversions. 2018-04-24 16:00:12 +00:00
internal.h Abstract scalar inversion in EC_METHOD. 2018-04-24 16:13:24 +00:00
make_ec_scalar_base_mult_tests.go Add some EC base point multiplication test vectors. 2018-03-27 23:33:24 +00:00
make_p256-x86_64-table.go Add utility program for emitting P-256 x86-64 table. 2018-03-26 16:28:42 +00:00
oct.c Name constant-time functions more consistently. 2018-03-29 23:30:55 +00:00
p224-64.c Remove unnecessary endian flip in p224-64.c. 2018-04-24 16:15:28 +00:00
p256-x86_64_test.cc Add some tests for scalar operations. 2018-04-24 16:12:34 +00:00
p256-x86_64_tests.txt Add some tests for scalar operations. 2018-04-24 16:12:34 +00:00
p256-x86_64-table.h Add utility program for emitting P-256 x86-64 table. 2018-03-26 16:28:42 +00:00
p256-x86_64.c Add dedicated scalar inversion code to p256-x86_64.c. 2018-04-24 16:14:57 +00:00
p256-x86_64.h Add some tests for scalar operations. 2018-04-24 16:12:34 +00:00
scalar.c Abstract scalar inversion in EC_METHOD. 2018-04-24 16:13:24 +00:00
simple.c Make generic point arithmetic slightly less variable-time. 2018-04-04 21:33:22 +00:00
util.c ec/p256.c: fiat-crypto field arithmetic (64, 32) 2017-12-11 17:55:46 +00:00
wnaf.c Make generic point arithmetic slightly less variable-time. 2018-04-04 21:33:22 +00:00