]> asedeno.scripts.mit.edu Git - PuTTY.git/commit
projects / PuTTY.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 90af5be) | patch
Clear an extra low bit in EdDSA exponent calculation.
authorSimon Tatham <anakin@pobox.com>
Sun, 10 May 2015 13:04:16 +0000 (14:04 +0100)
committerSimon Tatham <anakin@pobox.com>
Sun, 10 May 2015 13:05:57 +0000 (14:05 +0100)
commitcc420507a98ed6aad8ef9260cfa70f32a45849b7
tree3dd34ef5cd1384434b30070d298deb43987a462ftree | snapshot
parent90af5bed04f8e4dcf7e42c464b1be6cc7056f768commit | diff
Clear an extra low bit in EdDSA exponent calculation.

The source paper, and OpenSSH, agree that the lowest bit index used
from the hash of the private key is bit 3, i.e. bits 0,1,2 at the
bottom are all zero. We were only clearing bits 0 and 1, which would
have worked for about half of keys. I must have got lucky during
testing!
sshecc.c diff | blob | history
local copy of git://git.tartarus.org/simon/putty.git