diff options
author | Daiki Ueno <dueno@redhat.com> | 2017-08-05 09:43:47 +0200 |
---|---|---|
committer | Niels Möller <nisse@lysator.liu.se> | 2017-09-23 11:07:59 +0200 |
commit | 6cf6abd68eb3d6c8c8e5ab217be734f9c537037f (patch) | |
tree | 61182877b7a75ddcfe2e917e8f88994fb38fe6e3 /eddsa-sign.c | |
parent | 49181d3f9df4ab35d3372d7e7ca6388c282c8101 (diff) | |
download | nettle-6cf6abd68eb3d6c8c8e5ab217be734f9c537037f.tar.gz |
ecc-eh-to-a, eddsa-sign: Parameterize hard-coded value
This allows the same code to be reused in curve448 and Ed448.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Diffstat (limited to 'eddsa-sign.c')
-rw-r--r-- | eddsa-sign.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/eddsa-sign.c b/eddsa-sign.c index c1404f67..e5dc0e9d 100644 --- a/eddsa-sign.c +++ b/eddsa-sign.c @@ -92,7 +92,7 @@ _eddsa_sign (const struct ecc_curve *ecc, unsigned shift; mp_limb_t cy; assert (ecc->p.bit_size == 255); - shift = 252 - GMP_NUMB_BITS * (ecc->p.size - 1); + shift = ecc->q.bit_size - 1 - GMP_NUMB_BITS * (ecc->p.size - 1); cy = mpn_submul_1 (sp, ecc->q.m, ecc->p.size, sp[ecc->p.size-1] >> shift); assert (cy < 2); |