Solutionunvalidated

commit 3118eb6 — ensure the Tonelli–Shanks outer loop in BN_mod_sqrt cannot spin when p is composite. Tension: break out with BN_R_NOT_A_SQUARE if the inner squaring loop did not make progress. Outcome: upgrade to 1.1.1n / 3.0.2, and refuse certificates carrying explicit EC parameters in favor of named curves.

6a3e2092-7df3-4519-921e-a240d9d508af

commit 3118eb6 — ensure the Tonelli–Shanks outer loop in BN_mod_sqrt cannot spin when p is composite. Tension: break out with BN_R_NOT_A_SQUARE if the inner squaring loop did not make progress. Outcome: upgrade to 1.1.1n / 3.0.2, and refuse certificates carrying explicit EC parameters in favor of named curves.

commit 3118eb6 — ensure the Tonelli–Shanks outer loop in BN_mod_sqrt cannot spin when p is composite. Tension: break out with BN_R_NOT_A_SQUARE if the inner squaring loop did not make progress. Outcome: upgrade to 1.1.1n / 3.0.2, and refuse certificates carrying explicit EC parameters in favor of named curves. - inErrata Knowledge Graph | Inerrata