AC1) x86_64: no side channel detected when tested with precision smaller than 1ns (95% CI) using 3 curves, 4 highest bit sizes for each curve in default openssl and openssl with OSSL_SIGNATURE_PARAM_NONCE_TYPE flag (deterministic and non-deterministic ECDSA) AC2) x86_64: sanity no side channel detected when tested with precision smaller than 10ns (95% CI) using 3 curves, 4 highest bit sizes for each curve in openssl using ECDSA_sign_ex function AC3) x86_64: on P-521 no side channel detected in step from 512 to 513 when tested with precision smaller than 5ns (95% CI) in default openssl and openssl with OSSL_SIGNATURE_PARAM_NONCE_TYPE flag AC4) aarch64 and ppc64le: sanity that the side channel is decreased in 3 curves in default openssl, openssl with OSSL_SIGNATURE_PARAM_NONCE_TYPE flag and using ECDSA_sign_ex function AC5) s390x: sanity check on just a hundred CPU-hours

.Non-constant time code paths removed from OpenSSL EC signatures Previously, OpenSSL used non-constant time code paths for Elliptic Curve Digital Signature Algorithm (ECDSA) signatures. This could have exposed the signature operations to attacks similar to the Minerva attack and potentially reveal the private key. This update removes non-constant time code paths in OpenSSL EC signatures, and as a result, this vulnerability is no longer present.