1
0
mirror of https://github.com/trezor/trezor-firmware.git synced 2025-01-22 13:21:03 +00:00
Go to file
Jochen Hoenicke e2dd0b8e8d Always check for validity in ecdsa_read_pubkey.
An invalid point may crash the implementation or, worse,
reveal information about the private key if used in a ECDH
context (e.g. cryptoMessageEn/Decrypt).

Therefore, check all user supplied points even if
USE_PUBKEY_VALIDATE is not set.

To improve speed, we don't check if the point lies in the
main group, since the secp256k1 curve does not have
any other subgroup.
2015-03-08 21:09:21 +01:00
gui add more checks for improbable cases; rework gui testing app 2014-08-07 18:35:54 +02:00
tools don't verify pubkey in xpubaddrgen 2015-01-11 02:56:33 +01:00
.gitignore prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00
aes_modes.c rename aes_ctr_counter_inc to aes_ctr_cbuf_inc and move it to aes_modes.c 2014-06-07 14:16:27 +02:00
aes.h rename aes_ctr_counter_inc to aes_ctr_cbuf_inc and move it to aes_modes.c 2014-06-07 14:16:27 +02:00
aescrypt.c update AES code to support different modes of operation, add unittests 2014-06-07 13:38:56 +02:00
aeskey.c update AES code to support different modes of operation, add unittests 2014-06-07 13:38:56 +02:00
aesopt.h don't include aescpp.h 2014-07-24 15:26:50 +02:00
aestab.c update AES code to support different modes of operation, add unittests 2014-06-07 13:38:56 +02:00
aestab.h update AES code to support different modes of operation, add unittests 2014-06-07 13:38:56 +02:00
AUTHORS import sources 2013-08-17 14:20:15 +02:00
base58.c replace base58 implementation 2014-12-23 03:11:58 +01:00
base58.h Add stdbool.h 2015-01-23 12:12:40 -08:00
bignum.c rename BN_PRINT define to USE_BN_PRINT 2014-07-07 21:24:10 +02:00
bignum.h rename BN_PRINT define to USE_BN_PRINT 2014-07-07 21:24:10 +02:00
bip32.c add one more bip32_cache test 2015-03-04 15:43:14 +01:00
bip32.h add stdlib to header 2015-01-26 19:12:22 +01:00
bip39_english.h Make word list const 2015-02-14 12:00:44 +01:00
bip39.c Make word list const 2015-02-14 12:00:44 +01:00
bip39.h Make word list const 2015-02-14 12:00:44 +01:00
c.pxd prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00
CMakeLists.txt Make test build optional in CMake 2014-07-17 12:51:00 -05:00
ecdsa.c Always check for validity in ecdsa_read_pubkey. 2015-03-08 21:09:21 +01:00
ecdsa.h Add prototypes for private functions 2015-01-23 12:12:40 -08:00
hmac.c fix copyright headers 2014-05-22 20:54:58 +02:00
hmac.h fix copyright headers 2014-05-22 20:54:58 +02:00
LICENSE import sources 2013-08-17 14:20:15 +02:00
Makefile use $(CC) instead of gcc in Makefile 2014-08-11 02:04:42 +02:00
MANIFEST.in prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00
options.h implement BIP32 cache 2015-01-26 19:10:19 +01:00
pbkdf2.c split pbkdf2 into pbkdf2_hmac_sha256 and pbkdf2_hmac_sha512 2014-10-30 01:35:13 +01:00
pbkdf2.h split pbkdf2 into pbkdf2_hmac_sha256 and pbkdf2_hmac_sha512 2014-10-30 01:35:13 +01:00
rand.c Add finalize_rand() to prove we have no leaks 2015-01-23 06:05:38 -08:00
rand.h Add stdlib.h to header. Needed for size_t. 2015-01-27 21:44:48 -05:00
README.md README -> README.md 2014-12-24 01:27:20 +01:00
ripemd160.c use #if instead of #ifdef for conditional macros 2013-10-03 17:32:27 +02:00
ripemd160.h add ripemd160 2013-09-16 01:32:56 +02:00
secp256k1.c Revert "Revert "add more precomputation to ecdsa signing"" 2014-07-03 10:09:45 +02:00
secp256k1.h Revert "Revert "add more precomputation to ecdsa signing"" 2014-07-03 10:09:45 +02:00
setup.py prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00
sha2.c fix copyright headers 2014-05-22 20:54:58 +02:00
sha2.h fix copyright headers 2014-05-22 20:54:58 +02:00
test-openssl.c export pby from ecdsa_sign functions 2014-12-08 21:08:49 +01:00
test.py prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00
tests.c add one more bip32_cache test 2015-03-04 15:43:14 +01:00
TrezorCrypto.pyx prepare cython-TrezorCrypto for pip release 2015-01-12 19:11:43 +01:00

trezor-crypto

Heavily optimized cryptography algorithms for embedded devices.

These include:

  • AES/Rijndael encryption/decryption
  • Big Number (256 bit) Arithmetics
  • BIP32 Hierarchical Deterministic Wallets
  • BIP39 Mnemonic code
  • ECDSA signing/verifying (only hardcoded secp256k1 curve, uses RFC6979 for deterministic signatures)
  • ECDSA public key derivation + Base58 address representation
  • HMAC-SHA256 and HMAC-SHA512
  • PBKDF2
  • RIPEMD-160
  • SHA256/SHA512
  • unit tests (using Check - check.sf.net; in tests.c)
  • tests against OpenSSL (in test-openssl.c)

Distibuted under MIT License.