On Thu, 23 Apr 2020 at 11:02, Matt Caswell <matt@xxxxxxxxxxx> wrote:
On 22/04/2020 18:12, Viktor Dukhovni wrote:
> sadly the
> EVP_PKEY_METHOD for ed25519 has a NULL sign() member, instead, somewhat
> ironically, it has a digestsign() method. This is presumably to
> distinguish between the pure and prehash variants. Therefore, presently
> pkeyutl(1) indeed appears to not implement signing and verifying with
> ed25519, this looks doable with modest effort.
I'm fairly sure it used to have a "sign" function during the dev phase -
but it was taken out. I forget the reasoning.
Yes, that change was intentional, the reasoning is detailed in the discussion in: https://github.com/openssl/openssl/pull/6284
Nicola
