RanchiMall/flocore
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

enforce low S values on key signing, read BIP62 for details

Browse Source
This commit is contained in:
“thoatbk” 2014-12-11 00:37:46 +01:00
parent 100de8a9ba
commit 722e2efeae
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
lib/browser/Key.js
View File

@ -160,6 +160,11 @@ Key.sign = function(hash, priv, k) {
var Q = Point.multiply(G, k);
var r = Q.x.mod(n);
var s = k.invm(n).mul(e.add(d.mul(r))).mod(n);
// use only low S values according to BIP62
var n_half = new bignum(n).div(2);
if (s.cmp(n_half) > 0) {
s = new bignum(n).sub(s);
}
} while (r.cmp(new bignum(0)) <= 0 || s.cmp(new bignum(0)) <= 0);
return {r: r, s: s};