GitHub - input-output-hk/blogpost_breaking_ed25519_vrf: Little blogpost showcasing how using the same key for ed25519 and VRF allows an adversary to extract the sk.

To be able to run this script, one needs to install the iquerejeta/h_string branch of input-output-hk/libsodium. The reason why we need to use a branch is because the function required to compute the public value H is not exposed by the public API. However, that value is public and can be computed by the verifier. To that end, the only change we make is for the verifier to return the value of H when it verifies a proof.

First, fetch the correct branch and install libsodium:

git clone https://github.com/input-output-hk/libsodium.git
cd libsodium
git checkout iquerejeta/h_string

./autogen.sh
./configure
make
make install

Once we have libsodium installed, we can compile the test and run it, to extract a signature.

make run

Name		Name	Last commit message	Last commit date
Latest commit History 19 Commits
.gitignore		.gitignore
Makefile		Makefile
README.md		README.md
blog.md		blog.md
main.c		main.c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

.gitignore

.gitignore

Makefile

Makefile

README.md

README.md

blog.md

blog.md

main.c

main.c

Repository files navigation

About

Releases

Packages

Contributors 2

Languages

input-output-hk/blogpost_breaking_ed25519_vrf

Folders and files

Latest commit

History

Repository files navigation

About

Resources

Stars

Watchers

Forks

Languages