diff options
| author | Matthias Schiffer <mschiffer@universe-factory.net> | 2012-03-28 22:57:16 +0200 |
|---|---|---|
| committer | Matthias Schiffer <mschiffer@universe-factory.net> | 2012-03-28 22:57:16 +0200 |
| commit | f67c3f36b9c4a2ab90bf7cf1380ecdb58528a133 (patch) | |
| tree | aef88bca6a3afa49e98fa9f48bbc7987443f341d | |
| parent | f1d5eb1da9900ab1435d8bd2f4fdb2353717809b (diff) | |
| download | libuecc-0.1.tar libuecc-0.1.zip | |
Use the same key sanitization as Curve25519v0.1
| -rw-r--r-- | src/ec25519_secret.c | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/src/ec25519_secret.c b/src/ec25519_secret.c index 9108613..7f3d987 100644 --- a/src/ec25519_secret.c +++ b/src/ec25519_secret.c @@ -176,12 +176,13 @@ void ecc_25519_secret_mult(ecc_secret_key_256 *out, const ecc_secret_key_256 *in montgomery(out->s, R, C); } -/* TODO implement properly, rule out zero etc. */ void ecc_25519_secret_sanitize(ecc_secret_key_256 *out, const ecc_secret_key_256 *in) { int i; for (i = 0; i < 32; i++) out->s[i] = in->s[i]; - out->s[31] |= 0x80; + out->s[0] &= 0xf8; + out->s[31] &= 0x7f; + out->s[31] |= 0x40; } |