Rework ED25519 API.

BoringSSL implemented a compound private key, which includes a copy of the public key as a performance optimisation for signing. However, this does not readily match with how EVP works, makes the ED25519 API inconsistent with the X25519 API, diverges from th RFC and does not align with the OpenSSL API. Instead, the caller can readily compute the public key and pass this in to the signing process. ok tb@
author: jsing <> 2022-11-09 17:39:29 +0000
committer: jsing <> 2022-11-09 17:39:29 +0000
commit: a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4 (patch)
tree: f0cbe11399d675629473425a560232c59fa77acb /src/lib/libcrypto/curve25519/curve25519_internal.h
parent: 7953c7887126268033a9ff20ea8d4c61f7d5441c (diff)
download: openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.tar.gz
openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.tar.bz2
openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.zip
1 files changed, 3 insertions, 3 deletions
diff --git a/src/lib/libcrypto/curve25519/curve25519_internal.h b/src/lib/libcrypto/curve25519/curve25519_internal.h
index 9d2ee9b4d7..0a98781651 100644
--- a/src/lib/libcrypto/curve25519/curve25519_internal.h
+++ b/src/lib/libcrypto/curve25519/curve25519_internal.h
@@ -1,4 +1,4 @@
-/*      $OpenBSD: curve25519_internal.h,v 1.4 2022/11/08 17:07:17 jsing Exp $ */
+/*      $OpenBSD: curve25519_internal.h,v 1.5 2022/11/09 17:39:29 jsing Exp $ */
 /*
 * Copyright (c) 2015, Google Inc.
 *
@@ -94,8 +94,8 @@ void x25519_scalar_mult(uint8_t out[32], const uint8_t scalar[32],
 void x25519_scalar_mult_generic(uint8_t out[32], const uint8_t scalar[32],
    const uint8_t point[32]);
-void ED25519_keypair_from_seed(uint8_t out_public_key[32],
+void ED25519_public_from_private(uint8_t out_public_key[32],
-    uint8_t out_private_key[64], const uint8_t seed[32]);
+    const uint8_t private_key[32]);
 __END_HIDDEN_DECLS
author	jsing <>	2022-11-09 17:39:29 +0000
committer	jsing <>	2022-11-09 17:39:29 +0000
commit	a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4 (patch)
tree	f0cbe11399d675629473425a560232c59fa77acb /src/lib/libcrypto/curve25519/curve25519_internal.h
parent	7953c7887126268033a9ff20ea8d4c61f7d5441c (diff)
download	openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.tar.gz openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.tar.bz2 openbsd-a9fdcf2b38e7f119a0b1e428a0f9cae93f210ed4.zip

diff --git a/src/lib/libcrypto/curve25519/curve25519_internal.h b/src/lib/libcrypto/curve25519/curve25519_internal.h index 9d2ee9b4d7..0a98781651 100644 --- a/src/lib/libcrypto/curve25519/curve25519_internal.h +++ b/src/lib/libcrypto/curve25519/curve25519_internal.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: curve25519_internal.h,v 1.4 2022/11/08 17:07:17 jsing Exp $ */	1	/* $OpenBSD: curve25519_internal.h,v 1.5 2022/11/09 17:39:29 jsing Exp $ */
2	/*	2	/*
3	* Copyright (c) 2015, Google Inc.	3	* Copyright (c) 2015, Google Inc.
4	*	4	*
@@ -94,8 +94,8 @@ void x25519_scalar_mult(uint8_t out[32], const uint8_t scalar[32],
94	void x25519_scalar_mult_generic(uint8_t out[32], const uint8_t scalar[32],	94	void x25519_scalar_mult_generic(uint8_t out[32], const uint8_t scalar[32],
95	const uint8_t point[32]);	95	const uint8_t point[32]);
96		96
97	void ED25519_keypair_from_seed(uint8_t out_public_key[32],	97	void ED25519_public_from_private(uint8_t out_public_key[32],
98	uint8_t out_private_key[64], const uint8_t seed[32]);	98	const uint8_t private_key[32]);
99		99
100	__END_HIDDEN_DECLS	100	__END_HIDDEN_DECLS
101		101