| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 25 Mar 2024 20:18:37 +0100 From: Lukas Wunner <lukas@...ner.de> To: Stefan Berger <stefanb@...ux.ibm.com> Cc: keyrings@...r.kernel.org, linux-crypto@...r.kernel.org, herbert@...dor.apana.org.au, davem@...emloft.net, linux-kernel@...r.kernel.org, saulo.alessandre@....jus.br, bbhushan2@...vell.com, jarkko@...nel.org Subject: Re: [PATCH v7 00/13] Add support for NIST P521 to ecdsa On Wed, Mar 20, 2024 at 08:44:52AM -0400, Stefan Berger wrote: > On 3/20/24 07:47, Stefan Berger wrote: > > This series adds support for the NIST P521 curve to the ecdsa module > > to enable signature verification with it. > > > > An issue with the current code in ecdsa is that it assumes that input > > arrays providing key coordinates for example, are arrays of digits > > (a 'digit' is a 'u64'). This works well for all currently supported > > curves, such as NIST P192/256/384, but does not work for NIST P521 where > > coordinates are 8 digits + 2 bytes long. So some of the changes deal with > > converting byte arrays to digits and adjusting tests on input byte > > array lengths to tolerate arrays not providing multiples of 8 bytes. I've tested the whole series successfully on v6.9-rc1 by authenticating a PCI device with a NIST P521 certificate using my PCI/CMA development branch: https://github.com/l1k/linux/commits/doe Tested-by: Lukas Wunner <lukas@...ner.de>
Powered by blists - more mailing lists