crypto/elliptic: 尝试在无效点上进行操作

huangapple go评论88阅读模式
英文:

crypto/elliptic: attempted operation on invalid point

问题

我使用签名有效载荷后的 rs 值,然后将其解码回签名。
首先,我将字符串值转换为大整数:

myBigInt := new(big.Int)
myBigInt.SetString(byteValue, 16)

然后,我将其转换为签名:

elliptic.Marshal(elliptic.P256(), &myBigIntR, &myBigIntS)

当我在本地执行时,没有任何问题。然后我将其推送到 GitHub,render.com 进行了捕捉。然而,在服务器上,我遇到了以下问题:

我收到:

Mar 15 05:36:31 PM  2023/03/15 17:36:31 http: panic serving : crypto/elliptic: attempted operation on invalid point
Mar 15 05:36:31 PM  goroutine 1252 [running]:
Mar 15 05:36:31 PM  net/http.(*conn).serve.func1()
Mar 15 05:36:31 PM      /usr/local/go/src/net/http/server.go:1854 +0xbf
Mar 15 05:36:31 PM  panic({0xc5ff40, 0xfaae70})
Mar 15 05:36:31 PM      /usr/local/go/src/runtime/panic.go:890 +0x263
Mar 15 05:36:31 PM  crypto/elliptic.panicIfNotOnCurve({0xfbc088?, 0x15d3950?}, 0x40?, 0xc000100400?)
Mar 15 05:36:31 PM      /usr/local/go/src/crypto/elliptic/elliptic.go:215 +0xa5
Mar 15 05:36:31 PM  crypto/elliptic.Marshal({0xfbc088, 0x15d3950}, 0x15d3950?, 0xc0002c2020?)
Mar 15 05:36:31 PM      /usr/local/go/src/crypto/elliptic/elliptic.go:105 +0x31

我无法确定服务器版本和本地版本之间有什么不同。是否有人遇到过这个问题?谷歌上没有明显的问题解决方法。

使用 sigR 和 sigS 值:

v2signature := new(refs.Signature)
v2signature.SetScheme(refs.ECDSA_SHA512)

signatureData := elliptic.Marshal(elliptic.P256(), &sigR, &sigS)
v2signature.SetSign(signatureData)
v2signature.SetKey(containerOwnerKey.Bytes()) //1. this should be the container owner

var bearerV2 acl.BearerToken
bearerToken.WriteToV2(&bearerV2)
bearerV2.SetSignature(v2signature)

这是一个使用承载令牌访问远程服务器上的资产的 SDK。我使用 r 和 s 两个值创建了一个新的签名,使用方案 ECDSA_SHA512,然后将其附加到承载令牌中。

英文:

I'm using the r and s value after signing a payload to then decode it back to a signature.
First I convert the string values to a bigInt with

myBigInt := new(big.Int)
myBigInt.SetString(byteValue, 16)

Then I convert to the signature with

elliptic.Marshal(elliptic.P256(), &myBigIntR, &myBigIntS)

When I do this locally, I have no issues whatsoever. I am pushing this then to github and render.com picks it up. However on the server, i get:

I Receive:

Mar 15 05:36:31 PM  2023/03/15 17:36:31 http: panic serving : crypto/elliptic: attempted operation on invalid point
Mar 15 05:36:31 PM  goroutine 1252 [running]:
Mar 15 05:36:31 PM  net/http.(*conn).serve.func1()
Mar 15 05:36:31 PM      /usr/local/go/src/net/http/server.go:1854 +0xbf
Mar 15 05:36:31 PM  panic({0xc5ff40, 0xfaae70})
Mar 15 05:36:31 PM      /usr/local/go/src/runtime/panic.go:890 +0x263
Mar 15 05:36:31 PM  crypto/elliptic.panicIfNotOnCurve({0xfbc088?, 0x15d3950?}, 0x40?, 0xc000100400?)
Mar 15 05:36:31 PM      /usr/local/go/src/crypto/elliptic/elliptic.go:215 +0xa5
Mar 15 05:36:31 PM  crypto/elliptic.Marshal({0xfbc088, 0x15d3950}, 0x15d3950?, 0xc0002c2020?)
Mar 15 05:36:31 PM      /usr/local/go/src/crypto/elliptic/elliptic.go:105 +0x31

I cannot work out what could be different between the server version and a local version.
Has anyone come across this. Google didn't have much in the way of an obvious issue I could be making.

Using the sigR and sigS values:

	v2signature := new(refs.Signature)
	v2signature.SetScheme(refs.ECDSA_SHA512)

	signatureData := elliptic.Marshal(elliptic.P256(), &sigR, &sigS)
	v2signature.SetSign(signatureData)
	v2signature.SetKey(containerOwnerKey.Bytes()) //1. this should be the container owner

	var bearerV2 acl.BearerToken
 	bearerToken.WriteToV2(&bearerV2)
	bearerV2.SetSignature(v2signature)

This is from an SDK that uses bearer tokens to access assets on a remote server.
I am creating a new signature using the two values r and s, with scheme ECDSA_SHA512 and then attaching that to the bearer token

答案1

得分: 0

我最终将所有内容都放入了一个Docker镜像中,这样我就可以在本地和远程控制所有版本。这解决了我的问题。我怀疑云服务使用了一些不同的Go版本或其他东西。感谢那些帮助过我的人!

英文:

I ended up sticking the whole lot in a docker image so that I could control versions of everything locally and remotely. This solved my issues. I suspect the cloud service was using some different Go version or something. Thanks for those who helped out!

huangapple
  • 本文由 发表于 2023年3月16日 03:06:55
  • 转载请务必保留本文链接:https://go.coder-hub.com/75749088.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定