Hi, On 12/11/2018 06:59 PM, Vitaly Chikunov wrote: > Current akcipher .verify() just decrypts signature to uncover message > hash, which is then verified in upper level public_key_verify_signature > by memcmp with the expected signature value, which is never passed into > verify(). > > This approach is incompatible with ECDSA algorithms, because, to verify I would love to have ECDSA in kernel but unfortunately it hasn't reached kernel because there is no in-kernel user for it. Do we have an agreement that we will add support for it? If not, who will benefit of these patches? Thanks, ta