Tony Arcieri
Tony Arcieri
FWIW, @ixti is working on this sort of thing in https://github.com/httprb/form_data.rb
Nonexistent at the moment, but potentially something @ixti might be interested in adding
`secrets` has a hard FFI dependency on libsodium, whereas `zeroize` is pure Rust. FWIW, there's some discussion about adding various strategies (including mlock) for protecting data in-memory to the pure...
While this partly addresses the issue, the `public: PublicKey` field of `ed25519_dalek::Keypair` is still marked `pub`, which is effectively the same problem as this function. To really address the issue,...
@sopium "expanded secret key" means something different: an Ed25519 private key is a 256-bit "seed" which is expanded into 512-bits using SHA-512. The left half of that value is the...
Note that there's a `DigestVerifier` trait (along with a `DigestSigner` trait) in the `signature` crate, which `ed25519-dalek` uses: https://docs.rs/signature/latest/signature/trait.DigestVerifier.html I think it would probably make sense for those to map...
Ed25519ph is intended to be the IUF mode for Ed25519, and is already implemented by `ed25519-dalek` in the form of `sign_prehashed` and `verify_prehashed`. Personally I would find it confusing to...
You could potentially give it a different name which is less likely to be confused with Ed25519ph, like "StreamingVerifier"
Yeah, I think it might be nice for `ed25519-dalek` to eventually implement the `DigestSigner` and `DigestVerifier` traits from the `signature` crate for Ed25519ph, in which case it'd be nice to...
There's a PR to address it: #205