c1c1311e51
Accepting a short value from an attacker and passing it to a setter is an easy way to end up with a panic. Return errors instead. |
||
|---|---|---|
| .github/workflows | ||
| field | ||
| doc.go | ||
| edwards25519.go | ||
| edwards25519_test.go | ||
| extra.go | ||
| extra_test.go | ||
| go.mod | ||
| LICENSE | ||
| README.md | ||
| scalar.go | ||
| scalar_alias_test.go | ||
| scalar_test.go | ||
| scalarmult.go | ||
| scalarmult_test.go | ||
| tables.go | ||
| tables_test.go | ||
filippo.io/edwards25519
import "filippo.io/edwards25519"
This library implements the edwards25519 elliptic curve, exposing the necessary APIs to build a wide array of higher-level primitives. Read the docs at pkg.go.dev/filippo.io/edwards25519.
The code is originally derived from Adam Langley's internal implementation in the Go standard library, and includes George Tankersley's performance improvements. It was then further developed by Henry de Valence for use in ristretto255.
Most users don't need this package, and should instead use crypto/ed25519 for signatures, golang.org/x/crypto/curve25519 for Diffie-Hellman, or github.com/gtank/ristretto255 for prime order group logic. However, for anyone currently using a fork of crypto/ed25519/internal/edwards25519 or github.com/agl/edwards25519, this package should be a safer, faster, and more powerful alternative.
Since this package is meant to curb proliferation of edwards25519 implementations in the Go ecosystem, it welcomes requests for new APIs or reviewable performance improvements.