• Michael Munday's avatar
    crypto/elliptic: fix incomplete addition used in CombinedMult on s390x · 3b8a0315
    Michael Munday authored
    This applies the amd64-specific changes from CL 42611 to the s390x P256
    implementation. The s390x implementation was disabled in CL 62292 and
    this CL re-enables it.
    
    Adam Langley's commit message from CL 42611:
    
    The optimised P-256 includes a CombinedMult function, which doesn't do
    dual-scalar multiplication, but does avoid an affine conversion for
    ECDSA verification.
    
    However, it currently uses an assembly point addition function that
    doesn't handle exceptional cases.
    
    Fixes #20215.
    
    Change-Id: I2f6b532f495e85b8903475b4f64cc32a3b2f6769
    Reviewed-on: https://go-review.googlesource.com/64290
    Run-TryBot: Michael Munday <mike.munday@ibm.com>
    TryBot-Result: Gobot Gobot <gobot@golang.org>
    Reviewed-by: 's avatarRuss Cox <rsc@golang.org>
    3b8a0315
p256_s390x.go 13.8 KB