telackey/sodium-javascript
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix scalarmult exports

Browse Source
This commit is contained in:
Christophe Diederichs 2022-11-18 08:57:55 +00:00
parent c42c442eab
commit 37c8f2db79
1 changed files with 15 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
crypto_scalarmult_ed25519.js
View File

@ -1,14 +1,20 @@
const assert = require('nanoassert') const assert = require('nanoassert')
const ec = require('./fe25519_25') const ec = require('./fe25519_25')
const crypto_scalarmult_ed25519_BYTES = 32
const crypto_scalarmult_ed25519_SCALARBYTES = 32
module.exports = { module.exports = {
crypto_scalarmult_ed25519, crypto_scalarmult_ed25519,
crypto_scalarmult_ed25519_base, crypto_scalarmult_ed25519_base,
crypto_scalarmult_ed25519_base_noclamp,
crypto_scalarmult_curve25519, crypto_scalarmult_curve25519,
crypto_scalarmult_curve25519_1, crypto_scalarmult_curve25519_1,
crypto_scalarmult_curve25519_base, crypto_scalarmult_curve25519_base,
crypto_scalarmult_ristretto255, crypto_scalarmult_ristretto255,
crypto_scalarmult_ristretto255_base crypto_scalarmult_ristretto255_base,
crypto_scalarmult_ed25519_BYTES,
crypto_scalarmult_ed25519_SCALARBYTES
} }
const _121666buf = Buffer.alloc(32) const _121666buf = Buffer.alloc(32)
@ -42,22 +48,27 @@ function _crypto_scalarmult_ed25519 (q, n, p, clamp) {
var i var i
// if (ec.ge25519_is_canonical(p) == 0 || ec.ge25519_has_small_order(p) != 0 || // if (ec.ge25519_is_canonical(p) == 0 || ec.ge25519_has_small_order(p) != 0 ||
if ( ec.ge25519_frombytes(P, p) != 0 || ec.ge25519_is_on_main_subgroup(P) == 0) { if (ec.ge25519_frombytes(P, p) != 0 || ec.ge25519_is_on_main_subgroup(P) == 0) {
return -1 throw new Error('Invalid base point')
} }
for (i = 0; i < 32; ++i) { for (i = 0; i < 32; ++i) {
t[i] = n[i] t[i] = n[i]
} }
if (clamp !== 0) { if (clamp !== 0) {
_crypto_scalarmult_ed25519_clamp(t) _crypto_scalarmult_ed25519_clamp(t)
} }
t[31] &= 127 t[31] &= 127
ec.ge25519_scalarmult(Q, t, P) ec.ge25519_scalarmult(Q, t, P)
ec.ge25519_p3_tobytes(q, Q) ec.ge25519_p3_tobytes(q, Q)
if (_crypto_scalarmult_ed25519_is_inf(q) != 0 || sodium_is_zero(n, 32)) { if (_crypto_scalarmult_ed25519_is_inf(q) != 0 || sodium_is_zero(n, 32)) {
return -1 throw new Error('Point multiplication failed')
} }
return 0 return 0
} }