Hacker News new | ask | show | jobs
by MrBuddyCasino 1522 days ago
I spot no test or comment in the code on why this assertion is important.
1 comments
bertman 1521 days ago
It's literally what the whole bug is about. From OP's article:

>This is why the very first check in the ECDSA verification algorithm is to ensure that r and s are both >= 1. Guess which check Java forgot?

link
MrBuddyCasino 1521 days ago
Yes I just think it’s insane they fixed it without adding a test or comment.
link