boringssl/crypto/fipsmodule/ec
Adam Langley 549b9024d4 Contract P-224 elements before returning them.
cfd50c63 switched to using the add/dbl of p224_64.c, but the outputs
weren't contracted before being returned and could be out of range,
giving invalid results.

Change-Id: I3cc295c7ddbff43375770dbafe73b37a668e4e6b
Reviewed-on: https://boringssl-review.googlesource.com/c/33184
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: Adam Langley <agl@google.com>
2018-11-14 22:38:12 +00:00
..
asm Revert "Revert "Speed up ECDSA verify on x86-64."" 2018-11-07 23:57:22 +00:00
ec_key.c Use EC_RAW_POINT in ECDSA. 2018-11-13 02:06:46 +00:00
ec_montgomery.c Optimize EC_GFp_mont_method's cmp_x_coordinate. 2018-11-13 01:48:21 +00:00
ec_scalar_base_mult_tests.txt Add some EC base point multiplication test vectors. 2018-03-27 23:33:24 +00:00
ec_test.cc Contract P-224 elements before returning them. 2018-11-14 22:38:12 +00:00
ec.c Clean up EC_POINT to byte conversions. 2018-11-13 17:27:59 +00:00
felem.c Add missing #include of <openssl/err.h>. 2018-05-01 01:00:44 +00:00
internal.h Modernize OPENSSL_COMPILE_ASSERT, part 2. 2018-11-14 16:06:37 +00:00
make_ec_scalar_base_mult_tests.go Add some EC base point multiplication test vectors. 2018-03-27 23:33:24 +00:00
make_p256-x86_64-table.go Add utility program for emitting P-256 x86-64 table. 2018-03-26 16:28:42 +00:00
oct.c Clean up EC_POINT to byte conversions. 2018-11-13 17:27:59 +00:00
p224-64.c Contract P-224 elements before returning them. 2018-11-14 22:38:12 +00:00
p256-x86_64_test.cc Speculatively remove __STDC_*_MACROS. 2018-11-14 16:14:37 +00:00
p256-x86_64_tests.txt Add some tests for scalar operations. 2018-04-24 16:12:34 +00:00
p256-x86_64-table.h Add utility program for emitting P-256 x86-64 table. 2018-03-26 16:28:42 +00:00
p256-x86_64.c Need cpu.h for |OPENSSL_ia32cap_P|. 2018-11-13 17:15:39 +00:00
p256-x86_64.h Revert "Revert "Speed up ECDSA verify on x86-64."" 2018-11-07 23:57:22 +00:00
scalar.c Rename EC_MAX_SCALAR_*. 2018-11-13 03:22:04 +00:00
simple_mul.c Devirtualize ec_simple_{add,dbl}. 2018-11-06 18:32:11 +00:00
simple.c Push BIGNUM out of the cmp_x_coordinate interface. 2018-11-12 21:46:36 +00:00
util.c ec/p256.c: fiat-crypto field arithmetic (64, 32) 2017-12-11 17:55:46 +00:00
wnaf.c Rename EC_MAX_SCALAR_*. 2018-11-13 03:22:04 +00:00