secp256k1-zkp/src at 34a67c773b0871e5797c7ab506d004e80911f120 - secp256k1-zkp - Gitea: Git with a cup of rooibos tea

frost/secp256k1-zkp

History

Gregory Maxwell 34a67c773b Eliminate harmless non-constant time operations on secret data.

There were several places where the code was non-constant time
 for invalid secret inputs.  These are harmless under sane use
 but get in the way of automatic const-time validation.

(Nonce overflow in signing is not addressed, nor is s==0 in
 signing)

2020-02-20 17:27:03 +00:00

..

Allow field_10x26_arm.s to compile for ARMv7 architecture

2019-05-07 22:37:35 +03:00

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

basic-config.h

variable signing precompute table

2019-09-05 09:19:41 +02:00

bench_ecdh.c

[ECDH API change] Allow pass arbitrary data to hash function

2018-05-17 00:38:58 +03:00

bench_ecmult.c

scratch space: thread error_callback into all scratch space functions

2019-05-25 22:59:50 +00:00

bench_internal.c

Modified bench_scalar_split so it won't get optimized out

2019-10-28 16:50:09 +02:00

bench_recover.c

Disambiguate bench functions and types

2017-12-18 18:22:09 -08:00

bench_sign.c

Get rid of reserved _t in type names

2017-09-27 15:03:20 -07:00

bench_verify.c

Benchmark against OpenSSL verification

2015-11-15 15:47:49 +01:00

bench.h

Convert bench.h to fixed-point math

2019-12-13 11:23:39 +01:00

ecdsa_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

ecdsa.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

eckey_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

eckey.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

ecmult_const_impl.h

Clarify comments about use of rzr on ge functions and abs function.

2020-01-11 00:54:52 +00:00

ecmult_const.h

Add a descriptive comment for secp256k1_ecmult_const.

2019-06-04 01:52:44 +00:00

ecmult_gen_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

ecmult_gen.h

variable signing precompute table

2019-09-05 09:19:41 +02:00

ecmult_impl.h

Remove note about heap allocation in secp256k1_ecmult_odd_multiples_table_storage_var which was removed in 47045270fa90f81205d989f7107769bce1e71c4d

2019-10-28 12:21:36 +00:00

ecmult.h

scratch space: thread error_callback into all scratch space functions

2019-05-25 22:59:50 +00:00

field_5x52_asm_impl.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

field_5x52_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

field_5x52_int128_impl.h

Correct math typos in field_*.h

2018-07-06 08:40:35 -04:00

field_5x52.h

Correct math typos in field_*.h

2018-07-06 08:40:35 -04:00

field_10x26_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

field_10x26.h

Correct math typos in field_*.h

2018-07-06 08:40:35 -04:00

field_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

field.h

field: extend docstring of secp256k1_fe_normalize

2020-01-17 12:41:35 +01:00

gen_context.c

variable signing precompute table

2019-09-05 09:19:41 +02:00

group_impl.h

Remove secret-dependant non-constant time operation in ecmult_const.

2020-01-09 12:21:28 +00:00

group.h

Clarify comments about use of rzr on ge functions and abs function.

2020-01-11 00:54:52 +00:00

hash_impl.h

Avoid out-of-bound pointers and integer overflows in size comparisons

2019-05-23 15:22:29 +02:00

hash.h

Get rid of reserved _t in type names

2017-09-27 15:03:20 -07:00

num_gmp_impl.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

num_gmp.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

num_impl.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

num.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

scalar_4x64_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scalar_4x64.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

scalar_8x32_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scalar_8x32.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

scalar_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scalar_low_impl.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scalar_low.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scalar.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

scratch_impl.h

scratch: replace frames with "checkpoint" system

2019-05-26 01:05:09 +00:00

scratch.h

scratch: replace frames with "checkpoint" system

2019-05-26 01:05:09 +00:00

secp256k1.c

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

testrand_impl.h

Get rid of reserved _t in type names

2017-09-27 15:03:20 -07:00

testrand.h

Fix header guards using reserved identifiers

2017-08-26 18:44:21 +03:00

tests_exhaustive.c

Remove secret-dependant non-constant time operation in ecmult_const.

2020-01-09 12:21:28 +00:00

tests.c

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00

util.h

Eliminate harmless non-constant time operations on secret data.

2020-02-20 17:27:03 +00:00