Mercurial > hg > icedtea7-forest > jdk
changeset 9105:335b0f280916
8168724: ECDSA signing improvments
Reviewed-by: xuelei
| author | robm |
|---|---|
| date | Wed, 16 Nov 2016 15:49:39 +0000 |
| parents | 264d3a1dbc6a |
| children | b8985d1ff2b4 |
| files | src/share/native/sun/security/ec/impl/ec.c |
| diffstat | 1 files changed, 12 insertions(+), 2 deletions(-) [+] |
line wrap: on
line diff
--- a/src/share/native/sun/security/ec/impl/ec.c Wed Nov 23 11:42:01 2016 +0300 +++ b/src/share/native/sun/security/ec/impl/ec.c Wed Nov 16 15:49:39 2016 +0000 @@ -1,5 +1,5 @@ /* - * Copyright (c) 2007, 2015, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2007, 2016, Oracle and/or its affiliates. All rights reserved. * Use is subject to license terms. * * This library is free software; you can redistribute it and/or @@ -34,7 +34,7 @@ * Dr Vipul Gupta <vipul.gupta@sun.com> and * Douglas Stebila <douglas@stebila.ca>, Sun Microsystems Laboratories * - * Last Modified Date from the Original Code: April 2015 + * Last Modified Date from the Original Code: November 2016 *********************************************************************** */ #include "mplogic.h" @@ -714,6 +714,16 @@ } /* + * Using an equivalent exponent of fixed length (same as n or 1 bit less + * than n) to keep the kG timing relatively constant. + * + * Note that this is an extra step on top of the approach defined in + * ANSI X9.62 so as to make a fixed length K. + */ + CHECK_MPI_OK( mp_add(&k, &n, &k) ); + CHECK_MPI_OK( mp_div_2(&k, &k) ); + + /* ** ANSI X9.62, Section 5.3.2, Step 2 ** ** Compute kG