pyca · blag · Feb 3, 2017 · Feb 3, 2017
diff --git a/src/nacl/signing.py b/src/nacl/signing.py
@@ -106,10 +106,10 @@ def verify(self, smessage, signature=None, encoder=encoding.RawEncoder):
         if signature is not None:
             # If we were given the message and signature separately, combine
             #   them.
-            smessage = signature + smessage
-
-        # Decode the signed message
-        smessage = encoder.decode(smessage)
+            smessage = encoder.decode(signature) + encoder.decode(smessage)
+        else:
+            # Decode the signed message
+            smessage = encoder.decode(smessage)
 
         return nacl.bindings.crypto_sign_open(smessage, self._key)
 

diff --git a/tests/test_signing.py b/tests/test_signing.py
@@ -23,7 +23,7 @@
 from utils import assert_equal, assert_not_equal
 
 from nacl.bindings import crypto_sign_PUBLICKEYBYTES, crypto_sign_SEEDBYTES
-from nacl.encoding import HexEncoder
+from nacl.encoding import Base64Encoder, HexEncoder
 from nacl.exceptions import BadSignatureError
 from nacl.signing import SignedMessage, SigningKey, VerifyKey
 
@@ -180,6 +180,34 @@ def test_invalid_signed_message(self):
             forged = SignedMessage(signature + message)
             skey.verify_key.verify(forged)
 
+    def test_both_verify_uses_are_equal_with_b64encoder(self):
+        sk = SigningKey.generate()
+        vk = sk.verify_key
+
+        smsg = sk.sign(b"Hello World", encoder=Base64Encoder)
+
+        msg = smsg.message
+        sig = smsg.signature
+
+        assert vk.verify(
+            msg, sig, encoder=Base64Encoder
+        ) == vk.verify(
+            smsg, encoder=Base64Encoder)
+
+    def test_both_verify_uses_are_equal_with_hexencoder(self):
+        sk = SigningKey.generate()
+        vk = sk.verify_key
+
+        smsg = sk.sign(b"Hello World", encoder=HexEncoder)
+
+        msg = smsg.message
+        sig = smsg.signature
+
+        assert vk.verify(
+            msg, sig, encoder=HexEncoder
+        ) == vk.verify(
+            smsg, encoder=HexEncoder)
+
     def test_key_conversion(self):
         keypair_seed = (b"421151a459faeade3d247115f94aedae"
                         b"42318124095afabe4d1451a559faedee")