mirror of
https://github.com/yuzu-emu/mbedtls
synced 2024-11-25 11:39:10 +00:00
0a5154b8a1
In the ecdsa.c sample application we don't use hashing, we use ecdsa directly on a buffer containing plain text. Although the text explains that it should be the message hash it still can be confusing. Any misunderstandings here are potentially very dangerous, because ECDSA truncates the message hash if necessary and this can lead to trivial signature forgeries if the API is misused and the message is passed directly to the function without hashing. This commit adds a hash computation step to the ecdsa.c sample application and clarification to the doxygen documentation of the ECDSA functions involved. |
||
---|---|---|
.. | ||
CMakeLists.txt | ||
dh_client.c | ||
dh_genprime.c | ||
dh_prime.txt | ||
dh_server.c | ||
ecdh_curve25519.c | ||
ecdsa.c | ||
gen_key.c | ||
key_app.c | ||
key_app_writer.c | ||
mpi_demo.c | ||
pk_decrypt.c | ||
pk_encrypt.c | ||
pk_sign.c | ||
pk_verify.c | ||
rsa_decrypt.c | ||
rsa_encrypt.c | ||
rsa_genkey.c | ||
rsa_priv.txt | ||
rsa_pub.txt | ||
rsa_sign.c | ||
rsa_sign_pss.c | ||
rsa_verify.c | ||
rsa_verify_pss.c |