Go Crypto Libraries

Findings · 6

1. 1 Fiat conversion from bytes to field elements is not constant time Informational
2. 2 P-256 conditional negation is not constant time in PowerPC assembly Informational
3. 3 Custom finalizer may free memory at the start of a C function call using this memory Low
4. 4 The CTR-DRBG module presents multiple misuse risks Informational
5. 5 PBKDF2 does not enforce output length limitations Informational
6. 6 Timing leak in edwards25519 Scalar.SetCanonicalBytes Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.