crypto: add IsOnCurve check (#31100)

2026-06-27 17:06:18 +00:00 · 2025-01-30 14:10:36 +01:00 · 2025-01-30 14:10:36 +01:00 · 98ad241607
commit 98ad241607
parent f7c46d0ad7
1 changed files with 3 additions and 0 deletions
--- a/crypto/crypto.go
+++ b/crypto/crypto.go
@ -178,6 +178,9 @@ func UnmarshalPubkey(pub []byte) (*ecdsa.PublicKey, error) {
 	if x == nil {
 		return nil, errInvalidPubkey
 	}
+	if !S256().IsOnCurve(x, y) {
+		return nil, errInvalidPubkey
+	}
 	return &ecdsa.PublicKey{Curve: S256(), X: x, Y: y}, nil
 }