git.codecow.com Git - Monocypher.git/commit

]> git.codecow.com Git - Monocypher.git/commit

author	Loup Vaillant <loup@loup-vaillant.fr>
	Wed, 15 Aug 2018 18:02:03 +0000 (20:02 +0200)
committer	Loup Vaillant <loup@loup-vaillant.fr>
	Wed, 15 Aug 2018 18:02:03 +0000 (20:02 +0200)
commit	24f4be7acc3ec7ff613715a7a97597e587f6d6d8
tree	3e8942a8eba9d13ecc8a1eef9c420568da664e68	tree \| snapshot
parent	974e55d21c1fac7a2e21f91cb7174601b653180a	commit \| diff

Properly prevent S malleability

S malleability was mostly prevented in a previous commit, for reasons
that had nothing to do with S malleability. This mislead users into
thinking Monocypher was not S malleable.

To avoid confusion, I properly verify that S is strictly lower than L
(the order of the curve). S malleability is no longer a thing.

We still have nonce malleability, but that one can't be helped.

Also added Wycheproof test vectors about malleability.

src/monocypher.c		diff \| blob \| history
tests/vectors/ed_25519_check		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom