elliptic: fix key verification in loadCompressedPublicKey

ChALkeR · fanatid · commit e256905ee649 · 2024-10-20T17:21:37.000+07:00
diff --git a/lib/elliptic/index.js b/lib/elliptic/index.js
@@ -20,6 +20,10 @@ function loadCompressedPublicKey (first, xBuffer) {
   var y = x.redSqr().redIMul(x).redIAdd(ecparams.b).redSqrt()
   if ((first === 0x03) !== y.isOdd()) y = y.redNeg()
 
+  // x*x*x + b = y*y
+  const x3 = x.redSqr().redIMul(x)
+  if (!y.redSqr().redISub(x3.redIAdd(ecparams.b)).isZero()) return null
+
   return ec.keyPair({ pub: { x: x, y: y } })
 }
 
diff --git a/test/publickey.js b/test/publickey.js
@@ -171,6 +171,16 @@ module.exports = function (t, secp256k1) {
       t.end()
     })
 
+    t.test('zero key', function (t) {
+      const zeroUncompressed = Buffer.concat([Buffer.from([0x04]), Buffer.alloc(64)])
+      t.false(secp256k1.publicKeyVerify(zeroUncompressed), 'zero uncompressed')
+
+      const zeroCompressed = Buffer.concat([Buffer.from([0x02]), Buffer.alloc(32)])
+      t.false(secp256k1.publicKeyVerify(zeroCompressed), 'zero compressed')
+
+      t.end();
+    })
+
     util.repeat(t, 'random tests', util.env.repeat, function (t) {
       var privateKey = util.getPrivateKey()
       var publicKey = util.getPublicKey(privateKey)

Original file line number	Diff line number	Diff line change
`@@ -20,6 +20,10 @@ function loadCompressedPublicKey (first, xBuffer) {`
`20`	`20`	`var y = x.redSqr().redIMul(x).redIAdd(ecparams.b).redSqrt()`
`21`	`21`	`if ((first === 0x03) !== y.isOdd()) y = y.redNeg()`
`22`	`22`
	`23`	`+ // xxx + b = y*y`
	`24`	`+ const x3 = x.redSqr().redIMul(x)`
	`25`	`+ if (!y.redSqr().redISub(x3.redIAdd(ecparams.b)).isZero()) return null`
	`26`	`+`
`23`	`27`	`return ec.keyPair({ pub: { x: x, y: y } })`
`24`	`28`	`}`
`25`	`29`