ECDSA: don't modify the e mp_int (hash) value

Multiple loops of generating signatures require the same e value.
2025-07-30 02:37:28 +02:00 · 2021-01-22 12:51:21 +10:00
parent 4b47bf7b4e
commit 9c34ecc130
1 changed files with 2 additions and 2 deletions
--- a/wolfcrypt/src/ecc.c
+++ b/wolfcrypt/src/ecc.c
@ -5564,12 +5564,12 @@ int wc_ecc_sign_hash_ex(const byte* in, word32 inlen, WC_RNG* rng,
                   if (err != MP_OKAY) break;

                   /* e = e/k.b */
-                   err = mp_mulmod(&pubkey->k, e, curve->order, e);
+                   err = mp_mulmod(&pubkey->k, e, curve->order, &pubkey->k);
                   if (err != MP_OKAY) break;

                   /* s = e/k.b + x.r/k.b
                        = (e + x.r)/k.b */
-                   err = mp_add(e, s, s);
+                   err = mp_add(&pubkey->k, s, s);
                   if (err != MP_OKAY) break;

                   /* s = b.(e + x.r)/k.b