Hi Guys Wouldnt it be much faster to non sidechannel silencing montgomery variants for muls in ecdsa_do_verify? I mean since for verify we use only public keys anyways.
ecdsa_do_verify calls generic EC_POINT_mul which calls (plugged in during init) ec_GFp_mont_field_mul instead of ec_wNAF_mul ? wouldnt it be better then to call ec_wNAF_mul instead of EC_POINT_mul in ecdsa_do_verify ? Just thinking about it since speeding up indexing bitcoin on first start by speeding up ecc.verify would be great. Sorry for stupid idea ;) Ladislav Nevery -- -
