Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Downgrade ed25519 #1998

Merged
merged 1 commit into from
Dec 12, 2022
Merged

Downgrade ed25519 #1998

merged 1 commit into from
Dec 12, 2022

Conversation

girazoki
Copy link
Collaborator

What does it do?

Downgrades dalek library function to make it compatible with the host function

What important points reviewers should know?

Is there something left for follow-up PRs?

What alternative implementations were considered?

Are there relevant PRs or issues in other repositories (Substrate, Polkadot, Frontier, Cumulus)?

What value does it bring to the blockchain users?

@girazoki girazoki mentioned this pull request Dec 12, 2022
Closed
@girazoki girazoki added D3-trivial PR contains trivial changes in a runtime directory that do not require an audit B5-clientnoteworthy Changes should be mentioned in any downstream projects' release notes labels Dec 12, 2022
@girazoki girazoki merged commit 85771c6 into master Dec 12, 2022
@girazoki girazoki deleted the girazoki-downgrade-ed25519-vers branch December 12, 2022 14:32
librelois pushed a commit that referenced this pull request Dec 12, 2022
@girazoki @librelois
Downgrade ed25519 (#1998)
a6f9b60
@bkchr
Copy link

bkchr commented Dec 18, 2022

Downgrades dalek library function to make it compatible with the host function

What happened with 1.5.2?

@crystalin
Copy link
Collaborator

@bkchr the report was #1996
@girazoki might give more details about it

@bkchr
Copy link

bkchr commented Dec 18, 2022

Okay ty!

@girazoki any idea why the signature was parsed as invalid?

@girazoki
Copy link
Collaborator Author

@bkchr the signature hits this line https://github.com/dalek-cryptography/curve25519-dalek/blob/06186b8511722fcf5341f67ee48c4c448c373313/src/scalar.rs#L261 and it yields invalid.

The thing is that en ed25519 prior to 1.3.0 it does not hit a panick, but after 1.3.0 hits this panick

https://github.com/RustCrypto/signatures/blob/02dad1fd9bb36dd73daf2b6700120331113cd82b/ed25519/src/lib.rs#L331

@bkchr
Copy link

bkchr commented Dec 18, 2022

paritytech/substrate#12965

@crystalin
Copy link
Collaborator

Thank you @bkchr

imstar15 pushed a commit to AvaProtocol/moonbeam that referenced this pull request May 16, 2023
@girazoki @imstar15
Downgrade ed25519 (moonbeam-foundation#1998)
6b7ba30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tgmichel tgmichel tgmichel approved these changes

@crystalin crystalin crystalin approved these changes

Assignees
No one assigned
Labels
B5-clientnoteworthy Changes should be mentioned in any downstream projects' release notes D3-trivial PR contains trivial changes in a runtime directory that do not require an audit
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@girazoki @bkchr @crystalin @tgmichel