const uint8_t *msg, size_t len,
const ed25519_public_key_t *pubkey)
{
- uint8_t *smtmp;
- uint8_t *tmp;
- uint64_t tmplen;
- int r;
-
- tor_assert(len < SIZE_T_CEILING - 64);
- tmplen = len + 64;
- tmp = tor_malloc(tmplen);
- smtmp = tor_malloc(tmplen);
- memcpy(smtmp, signature->sig, 64);
- memcpy(smtmp+64, msg, len);
-
- r = ed25519_ref10_open(tmp, &tmplen, smtmp, tmplen, pubkey->pubkey);
-
- tor_free(tmp);
- tor_free(smtmp);
-
- return r;
+ return
+ ed25519_ref10_open(signature->sig, msg, len, pubkey->pubkey) < 0 ? -1 : 0;
}
/** Validate every signature among those in <b>checkable</b>, which contains
int ed25519_ref10_pubkey(unsigned char *pk,const unsigned char *sk);
int ed25519_ref10_keygen(unsigned char *pk,unsigned char *sk);
int ed25519_ref10_open(
- unsigned char *m,uint64_t *mlen,
- const unsigned char *sm,uint64_t smlen,
+ const unsigned char *signature,
+ const unsigned char *m,uint64_t mlen,
const unsigned char *pk);
int ed25519_ref10_sign(
unsigned char *sig,
#include "sc.h"
int crypto_sign_open(
- unsigned char *m,uint64_t *mlen,
- const unsigned char *sm,uint64_t smlen,
+ const unsigned char *signature,
+ const unsigned char *m,uint64_t mlen,
const unsigned char *pk
)
{
ge_p3 A;
ge_p2 R;
- if (smlen < 64) goto badsig;
- if (sm[63] & 224) goto badsig;
+ if (signature[63] & 224) goto badsig;
if (ge_frombytes_negate_vartime(&A,pk) != 0) goto badsig;
memmove(pkcopy,pk,32);
- memmove(rcopy,sm,32);
- memmove(scopy,sm + 32,32);
+ memmove(rcopy,signature,32);
+ memmove(scopy,signature + 32,32);
- memmove(m,sm,smlen);
- memmove(m + 32,pkcopy,32);
- crypto_hash_sha512(h,m,smlen);
+ crypto_hash_sha512_3(h, rcopy, 32, pkcopy, 32, m, mlen);
sc_reduce(h);
ge_double_scalarmult_vartime(&R,h,&A,scopy);
ge_tobytes(rcheck,&R);
if (crypto_verify_32(rcheck,rcopy) == 0) {
- memmove(m,m + 64,smlen - 64);
- memset(m + smlen - 64,0,64);
- *mlen = smlen - 64;
return 0;
}
badsig:
- *mlen = -1;
- memset(m,0,smlen);
return -1;
}
projects / thirdparty / tor.git / commitdiff
