ecc: Fix regression in keygrip computation for cv25519.

* cipher/ecc-curves.c (domain_parms): Revert g_y for cv25519. * tests/keygrip.c: Add test case for cv25519. -- Note that the regression is only in master and not in 1.8. Regression-due-to: c3f39b6b55db618f77e983125072081c15bfbdd6 GnuPG-bug-id: 4712 Signed-off-by: Werner Koch <wk@gnupg.org>
author: Werner Koch <wk@gnupg.org> 2019-09-28 11:07:02 +0200
committer: Werner Koch <wk@gnupg.org> 2019-09-28 11:07:02 +0200
commit: f67b6492e0b0a2a661cd53a08b20f23e6e3f9f89 (patch)
tree: a8fe453632506c243708361329c78eb6694db5a7 /cipher/ecc-curves.c
parent: 4bebafb7bae8343f543728937caf7d3453c88b7c (diff)
download: libgcrypt-f67b6492e0b0a2a661cd53a08b20f23e6e3f9f89.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/cipher/ecc-curves.c b/cipher/ecc-curves.c
index 85f14eff..3e206ed5 100644
--- a/cipher/ecc-curves.c
+++ b/cipher/ecc-curves.c
@@ -154,8 +154,12 @@ static const ecc_domain_parms_t domain_parms[] =
       "0x01",
       "0x1000000000000000000000000000000014DEF9DEA2F79CD65812631A5CF5D3ED",
       "0x0000000000000000000000000000000000000000000000000000000000000009",
-      "0x5F51E65E475F794B1FE122D388B72EB36DC2B28192839E4DD6163A5D81312C14",
+      "0x20AE19A1B8A086B4E01EDD2C7748D14C923D4D7E6D7C61B229E9C5A27ECED3D9",
       "0x08"
+      /* Note: As per RFC-7748 errata eid4730 the g_y value should be
+       * "0x5F51E65E475F794B1FE122D388B72EB36DC2B28192839E4DD6163A5D81312C14"
+       * but that breaks the keygrip.
+       */
     },
 #if 0 /* No real specs yet found.  */
     {
author	Werner Koch <wk@gnupg.org>	2019-09-28 11:07:02 +0200
committer	Werner Koch <wk@gnupg.org>	2019-09-28 11:07:02 +0200
commit	f67b6492e0b0a2a661cd53a08b20f23e6e3f9f89 (patch)
tree	a8fe453632506c243708361329c78eb6694db5a7 /cipher/ecc-curves.c
parent	4bebafb7bae8343f543728937caf7d3453c88b7c (diff)
download	libgcrypt-f67b6492e0b0a2a661cd53a08b20f23e6e3f9f89.tar.gz