Skip to content

Properly specify the encoding when verifying ECDSA signatures #405

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Jun 27, 2025
Merged

Properly specify the encoding when verifying ECDSA signatures #405

merged 3 commits into from
Jun 27, 2025

Conversation

@twiss
Copy link
Member

@twiss twiss commented Jun 25, 2025
edited by pr-preview bot
Loading

When verifying an ECDSA signature, properly specify how to convert the byte sequence to a pair of integers, which RFC 6090 requires, by referring to the Octet-String-to-Integer Conversion steps in RFC 6090.

If the signature is of an incorrect length, return false, as the web platform tests require and all implementations seem to do.

Similarly, when signing, refer to the Integer-to-Octet-String Conversion steps in RFC 6090 instead of specifying our own conversion from a byte sequence to an integer.

Also, refer to the proper sections for signing and verifying in RFC 6090. The subsections 5.4.2 and 5.4.3 refer to "KT-I signatures", which are equivalent to ECDSA signatures, while section 5.3 refers to "KT-IV signatures", which are encoded differently.

Finally, harmonize the parameter names with those specified in RFC 6090.

Fixes #404.

Preview | Diff

@twiss twiss mentioned this pull request Jun 25, 2025
Closed
@twiss twiss requested review from Frosne and davidben June 25, 2025 18:48
davidben
davidben reviewed Jun 25, 2025
View reviewed changes
davidben
davidben reviewed Jun 25, 2025
View reviewed changes
@twiss twiss merged commit 0326ba6 into main Jun 27, 2025
2 checks passed
@twiss twiss deleted the fix-ecdsa-spec branch June 27, 2025 11:05
github-actions bot added a commit that referenced this pull request Jun 27, 2025
@twiss @github-actions
Merge pull request #405 from w3c/fix-ecdsa-spec
4e20e92 
SHA: 0326ba6
Reason: push, by twiss

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@davidben davidben davidben approved these changes

@Frosne Frosne Frosne approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

ECDSA signature verification include derivation of s1 and s2

4 participants

@twiss @davidben @Frosne