| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
==========
New features:
------------
Support for EdDSA (Ed25519, Ed448) signature creation and verification.
Support for Ed25519 and Ed448 in PKCS#8 and public key files.
Support for point precomputation for EdDSA.
New API:
------------
CurveEdTw class to represent the Twisted Edwards curve parameters.
PointEdwards class to represent points on Twisted Edwards curve and
provide point arithmetic on it.
curve_by_name in curves module to get a Curve object by providing curve
name.
Bug fix:
---------
Accept private EdDSA keys that include public key in the ASN.1 structure.
Fix incompatibility with Python 3.3 in handling of memoryviews of empty
strings.
Make the VerifyingKey encoded with explicit parameters use the same
kind of point encoding for public key and curve generator.
Better handling of malformed curve parameters (as in CVE-2022-0778);
make python-ecdsa raise MalformedPointError instead of AssertionError.
Doc fix:
-----------
Publish the documentation on https://ecdsa.readthedocs.io/,
include explanation of basics of handling of ECC data formats and how to use
the library for elliptic curve arithmetic.
Make object names more consistent, make them into hyperlinks on the
readthedocs documentation.
Make security note more explicit (Ian Rodney)
Fix the explicit vs named_curve confusion in VerifyingKey docs.
Maintenance:
------------
Fix few typos (thanks to Tim Gates and Kian Meng Ang).
Updated black version; slight changes to formatting
Include interoperability tests for Ed25519 and Ed448 with OpenSSL.
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
python3-ecdsa is a dependency of meta-aspeed's socsec package. socsec is
a set of tools for signing bootloaders and forming a hardware root
of trust for ASPEED BMC SoCs.
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
|
| |
|
|
|
|
|
|
|
|
| |
This is the result of automated script (0.9.1) conversion:
oe-core/scripts/contrib/convert-overrides.py .
converting the metadata to use ":" as the override character instead of "_".
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
|
|
|
Upgrade to release 0.17.0:
- Keys that use explicit curve parameters can now be read and
written. Reading of explicit curves can be disabled by using
the valid_curve_encodings keyword argument in
VerifyingKey.from_pem(), VerifyingKey.from_der(),
SigningKey.from_pem(), and SigningKey.from_der().
- Keys can now be written with use of explicit curve parameters,
use curve_parameters_encoding keyword argument of
VerifyingKey.to_pem(), VerifyingKey.to_der(),
SigningKey.to_pem(), or SigningKey.to_der() to specify the
format. By default named_curve will be used, unless the curve
doesn't have an associated OID (as will be the case for an
unsupported curve), then explicit encoding will be used.
- Allow specifying acceptable point formats when loading public
keys (this also fixes a minor bug where python-ecdsa would
accept raw encoding for points in PKCS#8 files). Set of accepted
encodings is controlled by valid_encodings keyword argument in
ECDH.load_received_public_key_bytes(),
VerifyingKey.from_string(), VerifyingKey.from_pem(),
VerifyingKey.from_der().
- PointJacobi and Point now inherit from AbstractPoint that
implements the methods for parsing points. That added
from_bytes() and to_bytes() methods to both of them.
- Curve parameters can now be read and written to PEM and DER
files. The Curve class supports new to_der(), from_der(),
to_pem(), and from_pem() methods.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
|
