feat(crypto): add Ed25519 point and X25519 key validation #84
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
✅ Deploy Preview for dryoc-docs ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
brndnmtthws
force-pushed
the
is-point-valid
branch
from
f7d406f to
6f05655
Compare
There was a problem hiding this comment.
Pull Request Overview
This pull request adds a function to verify Ed25519 public key points and a complementary X25519 public key validator, with updated constants and tests to ensure correct cryptographic validations.
- Introduces the function is_valid_public_key() in src/keypair.rs for X25519 key validation.
- Adds the function crypto_core_ed25519_is_valid_point() in src/classic/crypto_core.rs with stricter checks for Ed25519 points and corresponding tests.
- Updates constants in src/constants.rs and adds a dependency in Cargo.toml to support relevant functionality.
Reviewed Changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| src/keypair.rs | Added is_valid_public_key() and related tests for X25519 public key validation. |
| src/constants.rs | Introduced CRYPTO_CORE_ED25519_BYTES constant for use in Ed25519 point validation. |
| src/classic/crypto_core.rs | Added crypto_core_ed25519_is_valid_point() with stricter validation checks and tests. |
| Cargo.toml | Added libsodium-sys dependency. |
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #84 +/- ##
==========================================
+ Coverage 67.52% 67.66% +0.14%
==========================================
Files 44 44
Lines 3242 3266 +24
==========================================
+ Hits 2189 2210 +21
- Misses 1053 1056 +3 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
brndnmtthws
force-pushed
the
is-point-valid
branch
3 times, most recently
from
39350d8 to
b6f7e8b
Compare
There was a problem hiding this comment.
Pull Request Overview
This PR adds functionality to verify whether a given public key is a valid point on the Edwards curve according to different rules—one for standard X25519 keys and one using relaxed rules for Ed25519 keys. Key changes include adding new validation methods in the keypair module, introducing corresponding tests, and adding a new constant for the Ed25519 point size.
Reviewed Changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| src/keypair.rs | Added two public methods for validating X25519 and Ed25519 keys. |
| src/constants.rs | Introduced a new constant for Ed25519 point length. |
| src/classic/crypto_sign_ed25519.rs | Minor style fix (added semicolon) for consistency. |
| src/classic/crypto_core.rs | Added strict and relaxed Ed25519 point validation functions and tests. |
Comments suppressed due to low confidence (1)
src/classic/crypto_core.rs:501
- [nitpick] Consider removing or conditionally compiling debug println! statements in tests to reduce noise in test outputs.
println!("\n=== Testing Ed25519 key validation across {} iterations ===", iterations);
Adds functions to validate Ed25519 points and X25519 public keys:
1. `crypto_core_ed25519_is_valid_point()` in `crypto_core.rs`:
- Implements strict Ed25519 point validation:
* Rejects non-canonical encodings (high bit set)
* Rejects all-zero point
* Rejects identity element (small-order point)
- Uses curve25519-dalek for curve equation check.
- Stricter than libsodium for enhanced security.
2. `crypto_core_ed25519_is_valid_point_relaxed()` in `crypto_core.rs`:
- A variant of the above that allows the high bit to be set.
- Use this for validating public keys generated by `crypto_sign_keypair`.
3. `KeyPair::is_valid_public_key()` in `keypair.rs`:
- Validates X25519 public keys for `crypto_box`.
- Checks for non-zero point and high bit cleared.
- Does not perform full curve check (per X25519 requirements).
4. `KeyPair::is_valid_ed25519_key()` in `keypair.rs`:
- Convenience wrapper for `crypto_core_ed25519_is_valid_point_relaxed`.
Also includes comprehensive tests for all new validation logic and adds
the `CRYPTO_CORE_ED25519_BYTES` constant.
These functions help prevent security issues from invalid cryptographic inputs.
brndnmtthws
force-pushed
the
is-point-valid
branch
from
b6f7e8b to
154b687
Compare
brndnmtthws
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Adds functions to validate Ed25519 points and X25519 public keys:
crypto_core_ed25519_is_valid_point()incrypto_core.rs:crypto_core_ed25519_is_valid_point_relaxed()incrypto_core.rs:crypto_sign_keypair.KeyPair::is_valid_public_key()inkeypair.rs:crypto_box.KeyPair::is_valid_ed25519_key()inkeypair.rs:crypto_core_ed25519_is_valid_point_relaxed.Also includes comprehensive tests for all new validation logic and adds
the
CRYPTO_CORE_ED25519_BYTESconstant.These functions help prevent security issues from invalid cryptographic inputs.