aboutsummaryrefslogtreecommitdiffstats
path: root/src/per_curve/eddsa.tmpl.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* fix malleability bug from https://eprint.iacr.org/2020/1244.pdf and add test vectorsMike Hamburg2020-10-101-3/+13
* Add safer version of EdDSA signing API.Mike Hamburg2020-05-021-3/+89
* change the misleading mul_by_cofactor functions to mul_by_ratio, and create ENCODE_RATIO and DECODE_ratio constants to represent thisMichael Hamburg2017-10-151-15/+10
* clear a couple todos. still have to rename the clear cofactor fnsMichael Hamburg2017-10-131-2/+3
* add decaf_edXXX_convert_public_key_to_xXXX; thanks Johan PascalMichael Hamburg2017-05-021-0/+15
* ED25519_NO_CONTEXT -> DECAF_ED25519_NO_CONTEXT; DECAF_ED25519_NO_CONTEXT -> DECAF_EDDSA_25519_SUPPORTS_CONTEXTLESS_SIGSMichael Hamburg2016-08-281-3/+3
* make ED*_NO_CONTEXT actually a pointerMichael Hamburg2016-08-281-0/+5
* Use magic constant ED25519_NO_CONTEXT for non-contextual operations.Andrew Bennett2016-08-261-15/+10
* Update EdDSA operations to match draft 07 from CFRG.Andrew Bennett2016-08-221-61/+33
* add EdDSA C prehash routinesMichael Hamburg2016-03-091-4/+76
* change eddsa encoding names to show that they multiply_by_cofactorMichael Hamburg2016-03-021-7/+12
* change x### function names again, this time to decaf_x###, decaf_x###_generate_keyMichael Hamburg2016-03-021-4/+4
* decaf_###_x_direct_scalarmul -> decaf_x###_direct_scalarmulMichael Hamburg2016-03-021-35/+41
* working through the TODOs. Correct the sign of the to/from EdDSA conversions (but is it correct for future curves?). SHA-3 now throws exceptions on over-long outputMichael Hamburg2016-03-021-7/+4
* fix some warns from gccMike Hamburg2016-03-011-1/+1
* lowerCamelCase -> snake_case. Put decaf_ in front of all (most?) identifiers, except for SHAKE which is being removed before 1.0 release (for future refactoring)Michael Hamburg2016-03-011-8/+8
* minor changes; clear a few TODOsMichael Hamburg2016-02-271-2/+0
* eddsa provisional passMichael Hamburg2016-02-261-7/+17
* eddsa-25519 now using sha512. But problem! We are using IsoEd25519 so we actually need an isogeny anyway to get to Ed25519 properMichael Hamburg2016-02-261-6/+12
* EdDSA now supports multiple hashes as defined in curve_data.py. We still dont have sha512 though.Michael Hamburg2016-02-231-9/+17
* move context arguments to the end of hash functions. Ed25519 doesnt support contexts.Michael Hamburg2016-02-231-38/+61
* whoops add eddsa.tmpl.cMichael Hamburg2016-02-231-0/+205
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.