Skip to content

ed448-goldilocks: enforce RFC 8032 context length in Ed448 verification#1387

Open
radik878 wants to merge 4 commits intoRustCrypto:masterfrom
radik878:feature/ed448-verify-context-length-check
Open

ed448-goldilocks: enforce RFC 8032 context length in Ed448 verification#1387
radik878 wants to merge 4 commits intoRustCrypto:masterfrom
radik878:feature/ed448-verify-context-length-check

Conversation

@radik878
Copy link
Copy Markdown
Contributor

@radik878 radik878 commented Sep 2, 2025

Add a guard in VerifyingKey::verify_inner to error when ctx.len() > 255 instead of truncating to u8. Aligns verification behavior with signing (ExpandedSecretKey::sign_inner) and prevents silent context truncation.

tarcieri
tarcieri reviewed Sep 13, 2025
View reviewed changes
Comment thread ed448-goldilocks/src/sign/verifying_key.rs Outdated
@radik878 @tarcieri
Update ed448-goldilocks/src/sign/verifying_key.rs
c75ad76 
Co-authored-by: Tony Arcieri <bascule@gmail.com>
tarcieri
tarcieri reviewed Sep 14, 2025
View reviewed changes
Comment thread ed448-goldilocks/src/sign/verifying_key.rs Outdated
@tarcieri tarcieri changed the title Enforce RFC 8032 context length in Ed448 verification ed448-goldilocks: enforce RFC 8032 context length in Ed448 verification Sep 14, 2025
radik878 and others added 2 commits September 14, 2025 22:27
@radik878
Copy link
Copy Markdown
Contributor Author

radik878 commented Sep 14, 2025

Yes ser, done

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tarcieri tarcieri tarcieri left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@radik878 @tarcieri