Implement RFC 6979 determinstic signatures for DSA and ECDSA.

Drop the GNU MP engine. Its implementations were potentially faster in some scenarios but not well protected against side channels.
author: lloyd <[email protected]> 2014-12-10 04:08:39 +0000
committer: lloyd <[email protected]> 2014-12-10 04:08:39 +0000
commit: 63215db88ae3bbb982966de37fe112c44f616a1d (patch)
tree: 7c73da7eaf981de4bfbeb15e137320940dcbcfd5 /src/lib/pubkey/pubkey.cpp
parent: 10cfa8fd826e072a5cd76bf52f4ae80d34eba507 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/src/lib/pubkey/pubkey.cpp b/src/lib/pubkey/pubkey.cpp
index a2c5cb745..a6fc7b2c9 100644
--- a/src/lib/pubkey/pubkey.cpp
+++ b/src/lib/pubkey/pubkey.cpp
@@ -134,10 +134,10 @@ PK_Signer::PK_Signer(const Private_Key& key,
    while(const Engine* engine = i.next())
       {
       if(!m_op)
-         m_op.reset(engine->get_signature_op(key, rng));
+         m_op.reset(engine->get_signature_op(key, emsa_name, rng));
 
       if(!m_verify_op && prot == ENABLE_FAULT_PROTECTION)
-         m_verify_op.reset(engine->get_verify_op(key, rng));
+         m_verify_op.reset(engine->get_verify_op(key, emsa_name, rng));
 
       if(m_op && (m_verify_op || prot == DISABLE_FAULT_PROTECTION))
          break;
@@ -249,7 +249,7 @@ PK_Verifier::PK_Verifier(const Public_Key& key,
 
    while(const Engine* engine = i.next())
       {
-      m_op.reset(engine->get_verify_op(key, rng));
+      m_op.reset(engine->get_verify_op(key, emsa_name, rng));
       if(m_op)
          break;
       }
author	lloyd <[email protected]>	2014-12-10 04:08:39 +0000
committer	lloyd <[email protected]>	2014-12-10 04:08:39 +0000
commit	63215db88ae3bbb982966de37fe112c44f616a1d (patch)
tree	7c73da7eaf981de4bfbeb15e137320940dcbcfd5 /src/lib/pubkey/pubkey.cpp
parent	10cfa8fd826e072a5cd76bf52f4ae80d34eba507 (diff)