Niels Möller writes:
> I've added tests that set the intial counter so that the four counter
> bytes wraps around 2^32, and I've verified that if these instructions
> should be changed to vadduwm, to get output that agrees with nettle's
> other gcm implementations.
I've commit those fixes, and
Daiki Ueno writes:
> Yes, I've consolidated the description and put it at the introduction.
Thanks, merged now!
/Niels
--
Niels Möller. PGP key CB4962D070D77D7FCB8BA36271D8F1FF368C6677.
Internet email is subject to wholesale government surveillance.
Hello,
The attached patch adds support for the deterministic DSA and ECDSA, as
defined in RFC 6979, which enables us to use the signing function
without randomness.
The original code has been hosted in GnuTLS for a while, implemented as
a custom random function which can be used in combination
