From b87a597450b1078691e3a8920ea63f78994b8222 Mon Sep 17 00:00:00 2001
From: Loup Vaillant <loup@loup-vaillant.fr>
Date: Tue, 21 Feb 2017 01:30:40 +0100
Subject: [PATCH] update README

---
 README | 15 ++++++++++++---
 test.c |  2 --
 2 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/README b/README
index 77093d5..23dac55 100644
--- a/README
+++ b/README
@@ -7,8 +7,8 @@ Packaged by Loup Vaillant.
 - Poly1305: Loup Vaillant, implemented from spec.
 - Blake2b:  derived from https://tools.ietf.org/html/rfc7693
 - Argon2i:  Loup Vaillant, implemented from spec.
-- X25519:   taken from http://tweetnacl.cr.yp.to/
-- ed25519:  taken from http://tweetnacl.cr.yp.to/
+- X25519:   taken from SUPERCOP ref10.
+- ed25519:  adapted http://tweetnacl.cr.yp.to/ for ref10 arithmetic.
 - High-level constructions: Loup Vaillant, implemented from specs and
   first principles
 
@@ -63,7 +63,7 @@ For the Blake2b code:
 Current status
 --------------
 
-Beta.  Interfaces may still change.  Needs external review.
+0.2  Interfaces should stabilise.  Needs external review.
 
 
 Test suite
@@ -79,11 +79,15 @@ somewhere.
 *Do not* use Monocypher without having run the test suite at least
 once.
 
+
 Integration to your project
 ---------------------------
 
 Just copy monocypher.c and monocypher.h.
 
+Compile as C99, C11, C++98, C++11, C++14, and C++17. (Tested with
+gcc 5.4.0 and clang 2.8.0 on GNU/Linux.)
+
 
 Customisation
 -------------
@@ -96,3 +100,8 @@ the default Blake2b, do as the test suite does:
 
 - Link the final program with a suitable SHA-512 implementation.  You
   can use the sha512.c and sha512.h files provided here.
+
+Note that even though the default hash (Blake2b) is not widely used,
+it doesn't prevent you from upgrading to faster implementations if you
+need to.  The Donna implementations of ed25519 for instance can use a
+custom hash.
diff --git a/test.c b/test.c
index 00b0026..5161891 100644
--- a/test.c
+++ b/test.c
@@ -296,8 +296,6 @@ sv x25519(const vector in[], vector *out)
     crypto_x25519(out->buf, scalar->buf, point->buf);
 }
 
-// Disabling the following test, because it takes too damn long
-// I suggest you run it once, though.
 sv iterate_x25519(uint8_t k[32], uint8_t u[32])
 {
     uint8_t tmp[32];
-- 
2.47.3