Skip to content

Commit

Permalink
[Fix] properly check the upper bound for DSA signatures
Browse files Browse the repository at this point in the history
Co-authored-by: roadicing <[email protected]>
Co-authored-by: Jordan Harband <[email protected]>
  • Loading branch information
roadicing and ljharb committed Oct 21, 2023
1 parent 9ac5a5e commit 85994cd
Show file tree
Hide file tree
Showing 2 changed files with 33 additions and 1 deletion.
2 changes: 1 addition & 1 deletion browser/verify.js
Original file line number Diff line number Diff line change
Expand Up @@ -80,7 +80,7 @@ function dsaVerify(sig, hash, pub) {

function checkValue(b, q) {
if (b.cmpn(0) <= 0) { throw new Error('invalid sig'); }
if (b.cmp(q) >= q) { throw new Error('invalid sig'); }
if (b.cmp(q) >= 0) { throw new Error('invalid sig'); }
}

module.exports = verify;
32 changes: 32 additions & 0 deletions test/index.js
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,9 @@ var asn1 = require('parse-asn1/asn1');
var test = require('tape').test;
var nCrypto = require('crypto');
var semver = require('semver');
var BN = require('bn.js');
var parseKeys = require('parse-asn1');

var bCrypto = require('../browser');
var fixtures = require('./fixtures');

Expand Down Expand Up @@ -154,6 +157,35 @@ fixtures.valid.ec.forEach(function (f) {
t.end();
});
}

var s = parseKeys(pub).data.q;
test(
f.message + ' against a fake signature',
{ skip: !s || '(this test only applies to DSA signatures and not EC signatures, this is ' + f.scheme + ')' },
function (t) {
var messageBase64 = Buffer.from(f.message, 'base64');

// forge a fake signature
var r = new BN('1');

try {
var fakeSig = asn1.signature.encode({ r: r, s: s }, 'der');
} catch (e) {
t.ifError(e);
t.end();
return;
}

var bVer = bCrypto.createVerify(f.scheme);
t['throws'](
function () { bVer.update(messageBase64).verify(pub, fakeSig); },
Error,
'fake signature is invalid'
);

t.end();
}
);
});

fixtures.valid.kvectors.forEach(function (f) {
Expand Down

0 comments on commit 85994cd

Please sign in to comment.