Add preliminary EdDSA validation support #239
Conversation
| std::vector<unsigned char> Base64ToUnsignedBin(const std::string& base64) | ||
| { | ||
| std::string bin = Base64ToBin(base64); | ||
| return std::vector<unsigned char>(bin.data(), bin.data() + bin.length() + 1); | ||
| } | ||
|
|
There was a problem hiding this comment.
see my comment below
| std::vector<unsigned char> Base64ToUnsignedBin(const std::string& base64) | |
| { | |
| std::string bin = Base64ToBin(base64); | |
| return std::vector<unsigned char>(bin.data(), bin.data() + bin.length() + 1); | |
| } |
| std::vector<unsigned char> signature = Base64ToUnsignedBin(signature_base64); | ||
| std::vector<unsigned char> key = Base64ToUnsignedBin(Settings::GetEdDSAPubKey()); | ||
|
|
||
| int result = ed25519_verify(signature.data(), | ||
| buffer, | ||
| bytes_read, | ||
| key.data()); |
There was a problem hiding this comment.
no need in additional intermediate copy of the data here:
| std::vector<unsigned char> signature = Base64ToUnsignedBin(signature_base64); | |
| std::vector<unsigned char> key = Base64ToUnsignedBin(Settings::GetEdDSAPubKey()); | |
| int result = ed25519_verify(signature.data(), | |
| buffer, | |
| bytes_read, | |
| key.data()); | |
| const std::string signature = Base64ToBin(signature_base64); | |
| const std::string key = Base64ToBin(Settings::GetEdDSAPubKey()); | |
| int result = ed25519_verify(reinterpret_cast<const unsigned char*>(signature.data()), | |
| buffer, | |
| bytes_read, | |
| reinterpret_cast<const unsigned char*>(key.data())); |
|
|
||
| DWORD size = GetFileSize(payload, NULL); | ||
| DWORD bytes_read = 0; | ||
| unsigned char *buffer = new unsigned char[size + 1]; |
There was a problem hiding this comment.
replace with std::vector<unsigned char>
| HANDLE payload; | ||
| payload = CreateFile(filename.c_str(), GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL); |
There was a problem hiding this comment.
| HANDLE payload; | |
| payload = CreateFile(filename.c_str(), GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL); | |
| CFile payload (_wfopen(filename.c_str(), L"rb")); |
always prefer using standard C/C++ (in this particular case _wfopen is not exactly standard C, but that is lesser evil in this case) instead of Platform-specific functionality, if possible
(sample: https://stackoverflow.com/a/14002993/3697939)
| // TODO: validate | ||
| (void)key; |
There was a problem hiding this comment.
This is how ed25519_verify reads they key: https://github.com/orlp/ed25519/blob/7fa6712ef5d581a6981ec2b08ee623314cd1d1c4/src/verify.c#L58
We can do exactly the same to verify the key.
Make sure to verify that the key len (after decode from base64) is exactly 32 bytes byfore passing into ge_frombytes_negate_vartime
| } | ||
| buffer[bytes_read] = '\0'; | ||
|
|
||
| std::vector<unsigned char> signature = Base64ToUnsignedBin(signature_base64); |
There was a problem hiding this comment.
verify that the signature is exactly 64 bytes before passing it into ed25519_verify
| buffer[bytes_read] = '\0'; | ||
|
|
||
| std::vector<unsigned char> signature = Base64ToUnsignedBin(signature_base64); | ||
| std::vector<unsigned char> key = Base64ToUnsignedBin(Settings::GetEdDSAPubKey()); |
There was a problem hiding this comment.
verify that the key is exactly 32 bytes before passing it into ed25519_verify
|
The reason why I am asking is, that I have created Java bindings for WinSparkle and we want to use these to update Cryptomator on Windows, that securely stores vaults in cloud services. |
|
I am planning to, but Windows is currently at the bottom of priority list for my project. |
|
I think I've fixed the issues identified by @Youw in https://github.com/geraldcombs/winsparkle/tree/eddsa-updates. The only outstanding issue is that SignatureVerifier::VerifyEdDSAPubKey is still a placeholder. I think the proper fix would be to add a corresponding function to the ed25519 public API. @ntadej if my changes look OK to you, feel free to grab them and add them to this PR (and assign yourself authorship if you'd like). Otherwise I'd be happy to open a separate PR. |
|
@geraldcombs Thanks!
Let's make this simpler:
|
Oh, sorry, forgot to say: please do. |
|
Yes, sorry for lack of activity here. I also propose you open a separate PR so it will be easier to iterate for you. |
Done in #254. |
|
→ #254 |
Add preliminary EdDSA validation support (partially closes #187 as signing is still missing). I tested with valid and invalid signature and it seems to work. Note that more testing is probably needed.
Some comments:
Tagging @kornelski and @vslavik.