0e69aa4ddc
Schnorr signatures don't have the ecdsa malleability vulnerability, also we protect against malleable signatures by tracking consumed VAAs using their body hash. The check was implemented because the author assumed that ecrecover in the EVM does not accept s < HALF_Q values for malleability protection. There were 2 misconceptions: 1. pubkey_x is passed in as r and not s, 2. the check is not enforced in the precompiled evm instruction. |
||
|---|---|---|
| .. | ||
| cryptotest | ||
| ethdss | ||
| ethschnorr | ||
| secp256k1 | ||
| LICENSE | ||
| NOTICE | ||