From: Mark Wooding <mdw@distorted.org.uk>
Date: Thu, 18 Jan 2007 16:51:18 +0000 (+0000)
Subject: ec-info: Overhaul elliptic curve domain parameter checking.
X-Git-Url: https://git.distorted.org.uk/u/mdw/catacomb/commitdiff_plain/30ac115b90b0ed66eed17b722a76d3e7e6e4531c?hp=30ac115b90b0ed66eed17b722a76d3e7e6e4531c

ec-info: Overhaul elliptic curve domain parameter checking.

  * Separate out the common parts of prime and binary curve checking into
    its own function.

  * Replace the cofactor checking with a new, rather more complicated,
    algorithm which verifies that it has the correct value without
    needing an explicit square-root.  Also allow larger cofactors; it's
    not our responsibility to avoid small-subgroup attacks.

  * Replace the embedding-degree check with one that's rather more
    enlightened.  Unfortunately, it has to intuit the desired security
    level, and that's not going to work well.

Also check for memory leaks in the test harness (one snuck in during
development and was caught by another test).
---