CHANGES: mention blinding reverting in ECDSA. [skip ci]

Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: David Benjamin <davidben@google.com> (Merged from https://github.com/openssl/openssl/pull/6664)
author: Andy Polyakov <appro@openssl.org> 2018-07-15 17:59:59 +0200
committer: Andy Polyakov <appro@openssl.org> 2018-07-18 16:10:04 +0200
commit: 1c073b9521ce7dbdd5689bdf7ae5fa87557c3529 (patch)
tree: ae5a15d5cae96835fedd3e91d58f7c22f11c458b /CHANGES
parent: 37132c9702328940a99b1307f742ab094ef754a7 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index c1d4c2d5ba..ae59f92259 100644
--- a/CHANGES
+++ b/CHANGES
@@ -9,6 +9,10 @@
 
  Changes between 1.1.0h and 1.1.1 [xx XXX xxxx]
 
+  *) Revert blinding in ECDSA sign and instead make problematic addition
+     length-invariant. Switch even to fixed-length Montgomery multiplication.
+     [Andy Polyakov]
+
   *) Use the new ec_scalar_mul_ladder scaffold to implement a specialized ladder
      step for binary curves. The new implementation is based on formulas from
      differential addition-and-doubling in mixed Lopez-Dahab projective
author	Andy Polyakov <appro@openssl.org>	2018-07-15 17:59:59 +0200
committer	Andy Polyakov <appro@openssl.org>	2018-07-18 16:10:04 +0200
commit	1c073b9521ce7dbdd5689bdf7ae5fa87557c3529 (patch)
tree	ae5a15d5cae96835fedd3e91d58f7c22f11c458b /CHANGES
parent	37132c9702328940a99b1307f742ab094ef754a7 (diff)