crypto: add IsOnCurve check (#31100)

2025-01-30 14:10:36 +01:00 · 2025-01-30 14:10:36 +01:00 · fa9a2ff868
parent 7d0e197def
commit fa9a2ff868
1 changed files with 3 additions and 0 deletions
--- a/crypto/crypto.go
+++ b/crypto/crypto.go
@ -178,6 +178,9 @@ func UnmarshalPubkey(pub []byte) (*ecdsa.PublicKey, error) {
 	if x == nil {
 		return nil, errInvalidPubkey
 	}
+	if !S256().IsOnCurve(x, y) {
+		return nil, errInvalidPubkey
+	}
 	return &ecdsa.PublicKey{Curve: S256(), X: x, Y: y}, nil
 }