diff options
| author | Matthias Schiffer <mschiffer@universe-factory.net> | 2015-01-09 22:11:36 +0100 |
|---|---|---|
| committer | Matthias Schiffer <mschiffer@universe-factory.net> | 2015-01-09 22:15:07 +0100 |
| commit | 7e305519171ad382ff13c231764982a1341fcb76 (patch) | |
| tree | 18c4ff6dddfeb2c142d9c542f51c14849825c15a /src/protocols/ec25519_fhmqvc/handshake.c | |
| parent | 68462604fa5441c692f9442f70ea30ac69252ae4 (diff) | |
| download | fastd-7e305519171ad382ff13c231764982a1341fcb76.tar fastd-7e305519171ad382ff13c231764982a1341fcb76.zip | |
ec25519-fhmqvc: don't check group order of peers' public keys
Skipping this check will significantly speed up startup with many peers. As we
now do embedded group order verification, an attacker can't gain anything from
small-subgroup attacks, so skipping the check isn't a security issue.
Diffstat (limited to 'src/protocols/ec25519_fhmqvc/handshake.c')
| -rw-r--r-- | src/protocols/ec25519_fhmqvc/handshake.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/protocols/ec25519_fhmqvc/handshake.c b/src/protocols/ec25519_fhmqvc/handshake.c index b1c6242..2daa709 100644 --- a/src/protocols/ec25519_fhmqvc/handshake.c +++ b/src/protocols/ec25519_fhmqvc/handshake.c @@ -554,7 +554,7 @@ static fastd_peer_t * add_dynamic(fastd_socket_t *sock, const fastd_peer_address memcpy(&peer_key.key, key, PUBLICKEYBYTES); if (!ecc_25519_load_packed(&peer_key.unpacked, &peer_key.key.int256) - || !fastd_protocol_ec25519_fhmqvc_check_key(&peer_key.unpacked)) { + || ecc_25519_is_identity(&peer_key.unpacked)) { pr_debug("ignoring handshake from %I (invalid key)", addr); return NULL; } |