David Benjamin 8cf79af7d1 Always use Fermat's Little Theorem in ecdsa_sign_setup. ... The case where ec_group_get_mont_data is NULL is only for arbitrary groups which we now require to be prime order. BN_mod_exp_mont is fine with a NULL BN_MONT_CTX. It will just compute it. Saves a bit of special-casing. Also don't mark p-2 as BN_FLG_CONSTTIME as the exponent is public anyway. Change-Id: Ie868576d52fc9ae5f5c9f2a4039a729151bf84c7 Reviewed-on: https://boringssl-review.googlesource.com/8307 Reviewed-by: Adam Langley <agl@google.com>		2016-06-20 17:11:42 +00:00
..
asm	ec/asm/p256-x86_64-asm.pl: get corner case logic right.	2016-03-01 18:06:46 +00:00
CMakeLists.txt	Add Intel's P-256	2015-11-03 22:08:47 +00:00
ec_asn1.c	Decouple crypto/ec from the OID table.	2016-03-31 22:12:09 +00:00
ec_key.c	Adding missing BN_CTX_start/BN_CTX_end in ec_key	2016-03-01 18:04:46 +00:00
ec_montgomery.c	Use only Montgomery math in |ec_GFp_mont_point_get_affine_coordinates|.	2016-04-20 22:51:34 +00:00
ec_test.cc	Remove EC_GROUP_new_arbitrary.	2016-06-16 20:25:39 +00:00
ec.c	Always use Fermat's Little Theorem in ecdsa_sign_setup.	2016-06-20 17:11:42 +00:00
example_mul.c	Remove some easy obj.h dependencies.	2016-03-31 20:50:33 +00:00
internal.h	Decouple crypto/ec from the OID table.	2016-03-31 22:12:09 +00:00
oct.c	Require compressed x EC coordinate to be a field element.	2016-03-11 19:13:20 +00:00
p224-64.c	Remove some easy obj.h dependencies.	2016-03-31 20:50:33 +00:00
p256-64.c	Use different bit tricks to extend the LSB.	2016-04-25 23:05:20 +00:00
p256-x86_64-table.h	Use |alignas| for alignment.	2016-01-25 23:05:04 +00:00
p256-x86_64.c	Save one call to |ecp_nistz256_from_mont| in |ecp_nistz256_get_affine|.	2016-04-20 22:58:36 +00:00
simple.c	Move & rename |ec_GFp_simple_point_get_affine_coordinates|.	2016-03-28 17:21:32 +00:00
util-64.c	Remove unused code for multiple-point ECC multiplication.	2016-03-09 19:47:19 +00:00
wnaf.c	Remove |EC_POINTs_mul| & simplify p256-x86_64.	2015-11-19 01:08:46 +00:00