Skip to content

Conn securing error: Malformed public key. #135

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jbenet opened this issue Sep 30, 2014 · 3 comments
Closed

Conn securing error: Malformed public key. #135

jbenet opened this issue Sep 30, 2014 · 3 comments

Comments

@jbenet
Copy link
Member

jbenet commented Sep 30, 2014

Sometimes tests fail with:

Conn securing error: Malformed public key.
@jbenet jbenet mentioned this issue Sep 30, 2014
Closed
@whyrusleeping
Copy link
Member

We've been fighting this one since the change in the handshake stuff. The error is being thrown from crypto/spipe/handshake

@llSourcell
Copy link
Contributor

I can look into this. Right now i'm finishing up the bootstrap cmd

jbenet added a commit that referenced this issue Oct 5, 2014
@jbenet
Bugfix: "Malformed Public Key" Error
5136c78 
This commit fixed the notoriously annoying "Malformed Public Key"
problem. The issue was that sometimes the byte representation of
the points (x,y in big.Int) generated would be one less byte than
expected. This is simply because (* big.Int) Write uses the least
amount of bytes needed for the int.

I instead changed the marshalling/unmarshalling to do exactly
what stdlib crypto/tls does: use `ellipctic.Marshal` which marshals
according to the ANSI X9.62 standard.

http://golang.org/pkg/crypto/elliptic/#Marshal
http://golang.org/src/pkg/crypto/tls/key_agreement.go#L214

```Go
// crypto/tls
ka.privateKey, x, y, err = elliptic.GenerateKey(ka.curve, config.rand())
ecdhePublic := elliptic.Marshal(ka.curve, x, y)

// ipfs/crypto
priv, x, y, err := elliptic.GenerateKey(curve, rand.Reader)
pubKey := elliptic.Marshal(curve, x, y)
```

((Warning: we're using `rand.Reader` directly, which we shouldn't
do, as it can be seeded. We should use a configured source, as
crypto/tls. Flagged in #143))

This makes me think we should re-use a lot of their datastructures
and functions directly (e.g. ecdheKeyAgreement)

Fixed: #135

cc @Bren2010 @whyrusleeping
@jbenet jbenet closed this as completed Oct 5, 2014
@jbenet
Copy link
Member Author

jbenet commented Oct 5, 2014

fixed in 5136c78

@aschmahmann aschmahmann mentioned this issue Dec 1, 2021
Closed
80 tasks
laurentsenta pushed a commit to laurentsenta/kubo that referenced this issue Feb 25, 2022
@Jorropo
feat: add Addresses.AppendAnnounce (ipfs#135)
40f8236
laurentsenta pushed a commit to laurentsenta/kubo that referenced this issue Feb 25, 2022
@Jorropo
go-ipfs-config: feat: add Addresses.AppendAnnounce (ipfs#135)
f0b3aff
laurentsenta pushed a commit to laurentsenta/kubo that referenced this issue Mar 4, 2022
@Jorropo
go-ipfs-config: feat: add Addresses.AppendAnnounce (ipfs#135)
df544fa
laurentsenta pushed a commit to laurentsenta/kubo that referenced this issue Mar 4, 2022
@Jorropo
go-ipfs-config: feat: add Addresses.AppendAnnounce (ipfs#135)
a6008f0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jbenet @whyrusleeping @llSourcell