Add IsOnCurve check to EC unmarshalling in ECIES decryption

10 years ago · aa4ff52d84
parent 09147a50ed
commit aa4ff52d84
1 changed files with 4 additions and 0 deletions
--- a/crypto/ecies/ecies.go
+++ b/crypto/ecies/ecies.go
@ -303,6 +303,10 @@ func (prv *PrivateKey) Decrypt(rand io.Reader, c, s1, s2 []byte) (m []byte, err
 		err = ErrInvalidPublicKey
 		return
 	}
+	if !R.Curve.IsOnCurve(R.X, R.Y) {
+		err = ErrInvalidCurve
+		return
+	}

 	z, err := prv.GenerateShared(R, params.KeyLen, params.KeyLen)
 	if err != nil {