]> git.codecow.com Git - Monocypher.git/commit
projects / Monocypher.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 69df67a) | patch
Safer interface for EdDSA
authorLoup Vaillant <loup@loup-vaillant.fr>
Fri, 2 Dec 2022 22:45:45 +0000 (23:45 +0100)
committerLoup Vaillant <loup@loup-vaillant.fr>
Fri, 2 Dec 2022 22:45:45 +0000 (23:45 +0100)
commitda7b5407d20329f21a53ea993f516fb55e2f5e26
treee7aa528525c04daa326edf6281beeb87d16772aetree | snapshot
parent69df67a2b41620991558cda1fe9edd08fcadba1ccommit | diff
Safer interface for EdDSA

Now the private key is 64 bytes, and is the concatenation of the seed
and the public key just like Libsodium.  The idea is to make sure users
never sign messages with the wrong public key, which can leak the secret
scalar and allow forgeries.

Users who can't afford the overhead of storing 32 additional bytes for
the secret key (say they need to burn the key into expensive fuses),
they can always only store the first 32 bytes, and re-derive the entire
key pair when they need it.

TODO: update the manual.

Fixes #240
src/monocypher.c diff | blob | history
src/monocypher.h diff | blob | history
src/optional/monocypher-ed25519.c diff | blob | history
src/optional/monocypher-ed25519.h diff | blob | history
tests/test.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.