johan
/
moltmobile-android
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix Ed25519 signature: use standard mode, not prehashed 

EdDSAEngine(MessageDigest) is for Ed25519ph (prehashed mode).
Standard Ed25519 requires EdDSAEngine() with no arguments.
This commit is contained in:
James (ClawdBot) 2026-01-28 18:53:47 +00:00
parent 56120a9b6b
commit 94f1da3ff1
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
app/src/main/java/com/inou/clawdnode/security/DeviceIdentity.kt
View File

@ -101,8 +101,8 @@ class DeviceIdentity(context: Context) {
val privateKeySpec = EdDSAPrivateKeySpec(privateKeyBytes, ed25519Spec) val privateKeySpec = EdDSAPrivateKeySpec(privateKeyBytes, ed25519Spec)
val privateKey = EdDSAPrivateKey(privateKeySpec) val privateKey = EdDSAPrivateKey(privateKeySpec)
// Sign the payload // Sign the payload using standard Ed25519 (not prehashed Ed25519ph)
val signature = EdDSAEngine(MessageDigest.getInstance(ed25519Spec.hashAlgorithm)).apply { val signature = EdDSAEngine().apply {
initSign(privateKey) initSign(privateKey)
update(payload.toByteArray(Charsets.UTF_8)) update(payload.toByteArray(Charsets.UTF_8))
} }