Home GnuPG
Diffusion libgcrypt ee7e1a0e835f

ecc: Fix X25519 computation on Curve25519.
ee7e1a0e835fUnpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

ecc: Fix X25519 computation on Curve25519.

* cipher/ecc.c (ecc_encrypt_raw): Tweak of bits when
PUBKEY_FLAG_DJB_TWEAK is enabled.
(ecc_decrypt_raw): Return 0 when PUBKEY_FLAG_DJB_TWEAK is enabled.
* tests/t-cv25519.c (test_cv): Update by using gcry_pk_encrypt.

X25519 function is not a plain scalar multiplication, but does
two things; the scalar bits are tweaked before applying scalar
multiplication and X0 function is applied to the result of
scalar multiplication.

In libgcrypt, _gcry_mpi_ec_mul_point is a plain scalar multiplication
and those two things are done in functions for ECDH with X25519.

  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Apr 12 2016, 2:58 AM
Parents
rC7fbdb99b8c56: ecc: Fix initialization of EC context.
Branches
Unknown
Tags
Unknown

Event Timeline

NIIBE Yutaka <gniibe@fsij.org> committed rCee7e1a0e835f: ecc: Fix X25519 computation on Curve25519. (authored by NIIBE Yutaka <gniibe@fsij.org>).Apr 12 2016, 2:58 AM

Changes (2)

PathSize
cipher/
tests/

rCee7e1a0e835f

View Options

cipher/ecc.c

Loading...
View Options

tests/t-cv25519.c

Loading...