elliptic-curves

elliptic-curves copied to clipboard

Request: Instructions to reproduce fiat-crypto files

2

Would it be feasible to document the configurations were used to generate the fiat-crypto arithmetic used in this crate? In particular: In particular: * Which version of `fiat-crypto` was used...

jhand2

Right now every field implementation independently defines `pub fn invert` and `fn invert_unchecked` using the `impl_bernstein_yang_invert!` macro. This is largely due to historical legacy: the `impl_bernstein_yang_invert!` macro was introduced later...

tarcieri

k256 signal: 10, SIGBUS: access to undefined memory

1

When I try to call `SigningKey::sign_prehash_recoverable` in `wasm32-unknown-emscripten`, I get the following error: > 10, SIGBUS: access to undefined memory The problems seems to be with the `precomputed-tables` feature enabled...

satoshiotomakan

BP256 and BP384 v0.6.1 docs.rs build fails

1

Just in case you weren't aware, the latest (v0.6.1) builds of `bp256` and `bp384` on docs.rs failed - https://docs.rs/crate/bp256/0.6.1/builds/794021 - https://docs.rs/crate/bp384/0.6.1/builds/794027

dnlmlr

Considering audit of p256 curve

1

We are considering an audit of the p256 curve: https://github.com/RustCrypto/elliptic-curves/tree/master/p256 Has any other team considered auditing this library?

SilentCicero

bign256: WideFieldElement

11

Hello! For implementation of 6.2.3 point 2 of [STB 34.101.66-2014](https://apmi.bsu.by/assets/files/std/bake-spec19.pdf) I need to construct FieldElement from 48 bytes. I took the implementation of wide arithmetic from k256 crate: wide64.rs ```rust...

makavity

BIP-0340 Schnorr-compatible signature invalidly uses NonZeroScalar

1

BIP-0340's validator criteria doesn't require `s` is non-zero. While it does require `R` isn't identity, meaning `s` will be only be 0 for non-trivial cases, finding a valid signature with...

kayabaNerve

RustCrypto hardening recommendation

1

It's recommended for the crypto libraries to integrate countermeasures against unexpected events, such as memory faults, arithmetic errors, and broken CPUs. In the event a computation is incorrect, detecting negative...

satoshiotomakan

Generalizing MulByGenerator for other points

1

MulByGenerator exposes a faster multiplication using a precomputed table. Is there any interest in extending this support for handling other (application supplied) points, where the cost of precomputation can similarly...

randombit

256 bit Field Operation: 64 bit * 4 vs 52 bit * 5

4

Thank you @tarcieri for the conversation (tag: @fjarri ) I would like to know the `pros` and `cons` of field arithmetic by **64 bit * 4** and **52 bit *...

ashWhiteHat