mirror/gmsm
1
0
Fork 0
mirror of https://github.com/emmansun/gmsm.git synced 2025-04-26 12:16:20 +08:00
Code Issues Packages Projects Releases Wiki Activity

MAGIC - move public key check out of loop

Browse Source
This commit is contained in:
Emman 2021-02-25 13:37:14 +08:00
parent 2dd11a9e9a
commit 586ab84f33
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
sm2/sm2.go
View File

@ -192,6 +192,10 @@ func Encrypt(random io.Reader, pub *ecdsa.PublicKey, msg []byte, opts *Encrypter
if opts == nil { if opts == nil {
opts = &defaultEncrypterOpts opts = &defaultEncrypterOpts
} }
//A3, requirement is to check if h*P is infinite point, h is 1
if (pub.X.Sign() == 0 && pub.Y.Sign() == 0) || !curve.IsOnCurve(pub.X, pub.Y) {
return nil, errors.New("SM2: invalid public key")
}
for { for {
//A1, generate random k //A1, generate random k
k, err := randFieldElement(curve, random) k, err := randFieldElement(curve, random)
@ -203,11 +207,6 @@ func Encrypt(random io.Reader, pub *ecdsa.PublicKey, msg []byte, opts *Encrypter
x1, y1 := curve.ScalarBaseMult(k.Bytes()) x1, y1 := curve.ScalarBaseMult(k.Bytes())
c1 := opts.PointMarshalMode.mashal(curve, x1, y1) c1 := opts.PointMarshalMode.mashal(curve, x1, y1)
//A3, requirement is to check if h*P is infinite point, h is 1
if !curve.IsOnCurve(pub.X, pub.Y) {
return nil, errors.New("SM2: invalid public key")
}
//A4, calculate k * P (point of Public Key) //A4, calculate k * P (point of Public Key)
x2, y2 := curve.ScalarMult(pub.X, pub.Y, k.Bytes()) x2, y2 := curve.ScalarMult(pub.X, pub.Y, k.Bytes())