Interoperability between Java and Javascript Ed25519 implementations -


both ed25519-java , js-nacl have implementation of ed25519 crypto-signature methods. however, obtained public key , signed message (signed using public key's corresponding private key) ed25519-java , tried verifying signed message using public key in js-nacl. gave null value i.e. signed message not opened public key.

my question is, shouldn't possible sign in java , verify signature in javascript? if so, or if not, why?

the java code:

public static void main(string[] args) {     byte[] privatekey = new byte[32];     arrays.fill(privatekey, (byte) 0);     byte[] publickey = ed25519.publickey(privatekey);     byte[] signature = ed25519.signature("www.example.com".getbytes(), privatekey, publickey);     system.out.println("signature: " + base64.encodebase64urlsafestring(signature) + "\npublickey: " + base64.encodebase64urlsafestring(publickey));     try{         system.out.println("verification: " + ed25519.checkvalid(signature, "www.example.com".getbytes(), publickey));     } catch (exception e){         system.out.println(e.getstacktrace());     } }

the checkvalid call returns true.

the output signature: ofmu_mc_zzzcjp2c-utqsyuhoylusnwirjbhcdkstnj2ni_p-vgkaqn5bfmpkskyiwvyiughwu3s4oyb9wbkdg

the output public key: o2onvm62pc1io6jqkm8nc2uyfxcd4komosbioytz2ik

the javascript code:

var signature = "ofmu_mc_zzzcjp2c-utqsyuhoylusnwirjbhcdkstnj2ni_p-vgkaqn5bfmpkskyiwvyiughwu3s4oyb9wbkdg"; var pk = "o2onvm62pc1io6jqkm8nc2uyfxcd4komosbioytz2ik";  var nacl_factory = require('js-nacl'); var nacl = nacl_factory.instantiate(); var b64 = require('urlsafe-base64'); var x = nacl.crypto_sign_open(uint8array(b64.decode(signature)), uint8array(b64.decode(pk))); response.send(x);

x null, should give "www.example.com" output if signature opened public key.

not sure if impacts working, java's byte arrays signed, whereas js-nacl uses javascript's uint8array unsigned byte arrays.

ed25519 implementations differ in 2 ways:

  1. the private key format bit different. work expanded private key, others ask both seed , public key when signing. java implementation falls in latter category.

    this difference applies signing function, not verification function. doesn't cause problems you.

  2. some implementations use "signature box", signing returns concatenation of signature , message (signedmessage.length = 64 + message.length). when verifying expect signed message input. original nacl implementation , javascript implementation fall in category.

    some implementations return 64 byte signature. expect plaintext separate parameter when verifying. java implementation falls in category.

    this mismatch causing trouble. fix need pass concat(signature, message) crypto_sign_open.

you should read brian warner's ed25519 keys article more detailed explanation.


Comments

Post a Comment

Popular posts from this blog

javascript - jquery or ashx not working -

i using ajax file upload control. it creating html: <form action="/pages/handlers/asyncfileuploadhandler.ashx" method="post" enctype="multipart/form-data" target="ajaxuploader-iframe-1397144545"> <input type="hidden" name="type" value="mindvoice"> <input type="file" id="imagefile" style="display: block; width: 80%; margin-right: auto; margin-left: auto;"> </form> and target is: <iframe width="0" height="0" style="display:none;" name="ajaxuploader-iframe-1397144545" id="ajaxuploader-iframe-1397144545"></iframe> the form submitted using .submit() . my ashx handler: <%@ webhandler language="c#" class="asyncfileuploadhandler" %> using system; using system.web; using nettpals.core; public class asyncfileuploadhandler : ihttphandler { public void processre...
Read more

opencv - DataType<cv::detail::deriv_type>::depth what is it used for -

i wondering why line used in lucas kanade tracker in opencv: datatype<cv::detail::deriv_type>::depth can explain me? in opencv, depth of mat refers type of data contained in mat 's data buffer. represented integer values correspond given data type. these integers commonly abstracted appropriate macro definition (e.g. uchar data represented macro cv_8u ). cv::datatype type-traits class provides method obtain corresponding integer value without having memorize macro means data type. there few cases user code needs use datatype::depth . more common datatype::type . a simple example shows 1 possible use of datatype::depth : cv::mat uchar_data = cv::mat::ones(3, 3, cv_8uc1); cv::mat float_data; uchar_data.convertto(float_data, cv::datatype<float>::depth); // ^^ equivalently replaced // cv_32f macro float_data.at<float>(0,1) += 0.5f; std::cout << float_data << std::endl;...
Read more

python 3.x - Mapping specific letters onto a list of words -

can please suggest approach write piece of codes automatically maps letter in letter_str onto dic_key (a dict key string type contains dashes match length of words in word_lst)? so, mapping occurs if letter appears in every words in list @ same position no matter how many words in list. if no letter appears @ position words in word list new_dic_key '----'. please see examples below thanks word_lst = ['ague', 'bute', 'byre', 'came', 'case', 'doze'] dic_key = '----' letters_str ='abcdefghijklmnopqrstuvwxyz' new_dic_key = '---e' if word_list = ['bute', 'byre'] new_dic_key = 'b--e' or word_list = ['drek', 'drew', 'dyes'] new_dic_key = 'd-e-' if words in word_list of same length code give want: word_list = ['drek', 'drew', 'dyes'] cols = [] in range(len(word_list[0])): cols.append([]) word in ...
Read more