crypto/elliptic

New Issue

#69567 opened 2 months ago by zhiqiangxu

specific unreduced P-256 scalars produce incorrect results [1.20 backport]CherryPickApprovedFrozenDueToAgeSecurity

#58720 opened 2 years ago by gopherbot

specific unreduced P-256 scalars produce incorrect results [1.19 backport]CherryPickApprovedFrozenDueToAgeSecurity

#58719 opened 2 years ago by gopherbot

specific unreduced P-256 scalars produce incorrect results (CVE-2023-24532)FrozenDueToAgeNeedsFixSecurity

#58647 opened 2 years ago by rolandshoemaker

Cannot add a negative point (Regression)FrozenDueToAgeNeedsInvestigation

#56427 opened 2 years ago by rixtox

s390x elliptic assembly refactoring in Go1.19 [freeze exception]FrozenDueToAgeNeedsFixarch-s390x

#52709 opened 2 years ago by billotosyr

deprecate big.Int interfaceFrozenDueToAgeumbrella

#52182 opened 2 years ago by FiloSottile

generic P-256 panic when scalar has too many leading zeroes (CVE-2022-28327) [1.18 backport]CherryPickApprovedFrozenDueToAgeSecurityrelease-blocker

#52077 opened 2 years ago by gopherbot

generic P-256 panic when scalar has too many leading zeroes (CVE-2022-28327) [1.17 backport]CherryPickApprovedFrozenDueToAgeSecurityrelease-blocker

#52076 opened 2 years ago by gopherbot

generic P-256 panic when scalar has too many leading zeroesFrozenDueToAgeNeedsFixSecurityrelease-blocker

#52075 opened 2 years ago by FiloSottile

Add Sub() method to Curve interfaceFrozenDueToAgeProposalProposal-CryptoWaitingForInfo

#51815 opened 2 years ago by anatol

mention P-521 slowdown in Go 1.18 release notesDocumentationFrozenDueToAgeNeedsDecision

#51508 opened 2 years ago by pascaldekloe

IsOnCurve returns falseFrozenDueToAgeNeedsInvestigation

#51059 opened 2 years ago by tscholl2

regression from 1.17 in the cost of parsing and compiling p256_asm_table.goFrozenDueToAgeNeedsFixrelease-blocker

#50995 opened 2 years ago by mvdan

IsOnCurve returns true for invalid field elements [1.17 backport]CherryPickApprovedFrozenDueToAgeSecurity

#50978 opened 2 years ago by gopherbot

IsOnCurve returns true for invalid field elements [1.16 backport]CherryPickApprovedFrozenDueToAgeSecurity

#50977 opened 2 years ago by gopherbot

normalize behavior of invalid curve pointsFrozenDueToAgeNeedsFixSecurity

#50975 opened 2 years ago by FiloSottile

IsOnCurve returns true for invalid field elementsFrozenDueToAgeNeedsFixSecurityrelease-blocker

#50974 opened 2 years ago by FiloSottile

numsp256t1 fails to verifyFrozenDueToAgeNeedsInvestigation

#50938 opened 2 years ago by pedroalbanese

p224 could be fasterFrozenDueToAgeNeedsDecisionPerformance

#48914 opened 3 years ago by jwinkler2083233

bake 88 kB p256Precomputed table into binary on iOSFrozenDueToAgeNeedsFixProposal-AcceptedProposal-Crypto

#44992 opened 3 years ago by bradfitz

incorrect operations on the P-224 curve [Go 1.15]CherryPickApprovedFrozenDueToAgeSecurity

#43788 opened 3 years ago by rolandshoemaker

incorrect operations on the P-224 curve [Go 1.14]CherryPickApprovedFrozenDueToAgeSecurity

#43787 opened 3 years ago by rolandshoemaker

incorrect operations on the P-224 curveFrozenDueToAgeNeedsFixSecurityrelease-blocker

#43786 opened 3 years ago by rolandshoemaker

support P-192FeatureRequestFrozenDueToAgeNeedsInvestigation

#41035 opened 4 years ago by cespare

invalid handling for infinity pointFrozenDueToAgeNeedsInvestigation

#37294 opened 4 years ago by catenacyber

wrong elliptic multiplication in elliptic.goFrozenDueToAgeNeedsInvestigationSecurity

#35419 opened 5 years ago by ndv

automatically upgrade CurveParams for known curves and deprecate custom onesFrozenDueToAgeNeedsFixProposal-AcceptedProposal-Crypto

#34648 opened 5 years ago by FiloSottile

document what the "canonical names" for curves areDocumentationFrozenDueToAgeNeedsFix

#34193 opened 5 years ago by mdempsky

handle compressed formats in new MarshalCompressed, UnmarshalCompressedFrozenDueToAgeNeedsFixProposal-AcceptedProposal-Crypto

#34105 opened 5 years ago by roman-khimov

CPU DoS vulnerability affecting P-521 and P-384 [Go 1.10] CherryPickApprovedFrozenDueToAgeSecurity

#29905 opened 5 years ago by julieqiu

CPU DoS vulnerability affecting P-521 and P-384 [Go 1.11]CherryPickApprovedFrozenDueToAgeSecurity

#29904 opened 5 years ago by julieqiu

CPU DoS vulnerability affecting P-521 and P-384FrozenDueToAgeSecurity

#29903 opened 5 years ago by julieqiu

possible bug with deriving a secret for ApplePay tokenFrozenDueToAgeNeedsInvestigation

#28723 opened 6 years ago by vadimyer

add A to CurveParams, allowing some cases of A != -3FrozenDueToAgeProposalProposal-Crypto

#26776 opened 6 years ago by cag

unexpected P256.ScalarMult resultFrozenDueToAgeNeedsInvestigation

#26020 opened 6 years ago by cdz620

hang in doubleJacobian with Curve P-521FrozenDueToAgeNeedsInvestigation

#25054 opened 6 years ago by alwaysbespoke

changes to benchmarks dramatically improve results on ppc64le with no change in implementationFrozenDueToAge

#23137 opened 7 years ago by laboger

bug in x86-64 P-256 implementationFrozenDueToAge

#21334 opened 7 years ago by randombit

Unmarshal is not compliant with ANSI X9.62FrozenDueToAgeNeedsInvestigation

#20482 opened 7 years ago by reyzin

different ecdsa.Verify result between p256 amd64 and generic implementations with a zero hashFrozenDueToAgeNeedsFixSecurity

#20215 opened 7 years ago by tzneal

carry bug in x86-64 P-256FrozenDueToAgeSecurity

#20040 opened 7 years ago by agl

does not have p128 supportFrozenDueToAge

#15019 opened 8 years ago by pctj101

P-384 is not constant-timeFrozenDueToAge

#11499 opened 9 years ago by coruus

GenerateKey does not sample secret keys uniformlyFrozenDueToAge

#11082 opened 9 years ago by ivokub

Note to Validate Curve PointsFrozenDueToAge

#10502 opened 9 years ago by Bren2010

miscalculating points along secp256k1 curveFrozenDueToAge

#6782 opened 11 years ago by gopherbot

not constant time and no validation in unmarshallFrozenDueToAge

#2445 opened 13 years ago by gopherbot