libs:

libaxolotl: updated libaxolotl (libsignal-c) from (https://github.com/WhisperSystems/libsignal-protocol-c)
author: Gluzskiy Alexandr <sss@sss.chaoslab.ru> 2017-02-13 07:56:33 +0300
committer: Gluzskiy Alexandr <sss@sss.chaoslab.ru> 2017-02-13 09:09:08 +0300
commit: 193f645f65ad4ffdec3186e4176b23af10861199 (patch)
tree: e1b16b48ac74c5f03f99a98798e849f6dd9752cc /libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c
parent: 36c32a13878d3bd94e88bd9c764f1eadb05ea1ed (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c b/libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c
index 61332e70e7..b2fb8c20d3 100644
--- a/libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c
+++ b/libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c
@@ -4,6 +4,7 @@
 #include "ge.h"
 #include "sc.h"
 #include "zeroize.h"
+#include "crypto_additions.h"
 
 /* NEW: Compare to pristine crypto_sign() 
    Uses explicit private key for nonce derivation and as scalar,
@@ -36,6 +37,7 @@ int crypto_sign_modified(
   memmove(sm + 32,pk,32);
 
   sc_reduce(nonce);
+  
   ge_scalarmult_base(&R,nonce);
   ge_p3_tobytes(sm,&R);
 
@@ -43,5 +45,9 @@ int crypto_sign_modified(
   sc_reduce(hram);
   sc_muladd(sm + 32,hram,sk,nonce); /* NEW: Use privkey directly */
 
+  /* Erase any traces of private scalar or
+     nonce left in the stack from sc_muladd */
+  zeroize_stack();
+  zeroize(nonce, 64);
   return 0;
 }
author	Gluzskiy Alexandr <sss@sss.chaoslab.ru>	2017-02-13 07:56:33 +0300
committer	Gluzskiy Alexandr <sss@sss.chaoslab.ru>	2017-02-13 09:09:08 +0300
commit	193f645f65ad4ffdec3186e4176b23af10861199 (patch)
tree	e1b16b48ac74c5f03f99a98798e849f6dd9752cc /libs/libaxolotl/src/curve25519/ed25519/additions/sign_modified.c
parent	36c32a13878d3bd94e88bd9c764f1eadb05ea1ed (diff)