Ecosystem/serai
Ecosystem/serai
1
0
Fork 0
mirror of https://github.com/serai-dex/serai.git synced 2025-01-03 17:40:34 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

3.6.1 Document rejection of zero nonces

Browse source
This commit is contained in:
Luke Parker 2023-02-24 06:16:22 -05:00
parent 93f7afec8b
commit 969a5d94f2
No known key found for this signature in database
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
crypto/frost/src/curve/mod.rs
View file

@ -77,6 +77,12 @@ pub trait Curve: Ciphersuite {
let mut repr = secret.to_repr(); let mut repr = secret.to_repr();
// Perform rejection sampling until we reach a non-zero nonce
// While the IETF spec doesn't explicitly require this, generating a zero nonce will produce
// commitments which will be rejected for being zero (and if they were used, leak the secret
// share)
// Rejection sampling here will prevent an honest participant from ever generating 'malicious'
// values and ensure safety
let mut res; let mut res;
while { while {
seed.extend(repr.as_ref()); seed.extend(repr.as_ref());