Added ecp_check_pubkey().

commit: 1c33057a6345ee580a2630eec3b26e0e5b5764b2 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Sat Nov 24 12:05:44 2012 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Jan 16 16:31:53 2013 +0100
tree: b15273c1b6b297236cea25e4ee888bb207b7e8cb
parent: c554e9acf1f3054f41b4145976edc36eb8ad70c7 [diff] [blame]
diff --git a/include/polarssl/ecp.h b/include/polarssl/ecp.h
index 3336553..96c135b 100644
--- a/include/polarssl/ecp.h
+++ b/include/polarssl/ecp.h

@@ -159,6 +159,25 @@
 int ecp_copy( ecp_point *P, const ecp_point *Q );
 
 /**
+ * \brief           Check that a point is a valid public key on this curve
+ *
+ * \param grp       Curve/group the point should belong to
+ * \param pt        Point to check
+ *
+ * \return          0 if point is a valid public key,
+ *                  POLARSSL_ERR_ECP_GENERIC otherwise.
+ *
+ * \note            This function only checks the point is non-zero, has valid
+ *                  coordinates and lies on the curve, but not that it is
+ *                  indeed a multiple of G. This is additional check is more
+ *                  expensive, isn't required by standards, and shouldn't be
+ *                  necessary if the group used has a small cofactor. In
+ *                  particular, it is useless for the NIST groups which all
+ *                  have a cofactor of 1.
+ */
+int ecp_check_pubkey( const ecp_group *grp, const ecp_point *pt );
+
+/**
  * \brief           Import a non-zero point from two ASCII strings
  *
  * \param P         Destination point
commit	1c33057a6345ee580a2630eec3b26e0e5b5764b2	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Sat Nov 24 12:05:44 2012 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Jan 16 16:31:53 2013 +0100
tree	b15273c1b6b297236cea25e4ee888bb207b7e8cb
parent	c554e9acf1f3054f41b4145976edc36eb8ad70c7 [diff] [blame]