Hacker News new | ask | show | jobs
by bertman 1526 days ago
It's literally what the whole bug is about. From OP's article:

>This is why the very first check in the ECDSA verification algorithm is to ensure that r and s are both >= 1. Guess which check Java forgot?
1 comments
MrBuddyCasino 1526 days ago
Yes I just think it’s insane they fixed it without adding a test or comment.
link