kevin/libsodium
1
Fork 0
mirror of https://github.com/jedisct1/libsodium.git synced 2024-12-19 10:05:05 -07:00
Code Releases Wiki Activity

ristretto255_is_canonical(): sync with wasm-crypto

Browse Source 
Reject string with the top bit set.
This commit is contained in:
Frank Denis 2020-04-25 12:15:30 +02:00
parent e768eae76d
commit 8b6f5ef505
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/libsodium/crypto_core/ed25519/ref10/ed25519_ref10.c
View File

@ -2758,6 +2758,7 @@ ristretto255_is_canonical(const unsigned char *s)
{
unsigned char c;
unsigned char d;
unsigned char e;
unsigned int i;
c = (s[31] & 0x7f) ^ 0x7f;
@ -2766,8 +2767,9 @@ ristretto255_is_canonical(const unsigned char *s)
}
c = (((unsigned int) c) - 1U) >> 8;
d = (0xed - 1U - (unsigned int) s[0]) >> 8;
e = s[31] >> 7;
return 1 - (((c & d) | s[0]) & 1);
return 1 - (((c & d) | e | s[0]) & 1);
}
int