-
Notifications
You must be signed in to change notification settings - Fork 570
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hard-coded usage of the system RNG in ffi_pk_op #4411
base: master
Are you sure you want to change the base?
Conversation
Zooming out a bit: Perhaps this could be answered in the context of #4318. Essentially, for C++ we're experimenting with a new builder-style API to configure the public key operations. For instance: auto rng = AutoSeeded_RNG{};
auto sk = create_private_key("RSA", rng);
auto signer = sk->signer()
.with_rng(rng)
.with_padding("PSS")
.with_hash("SHA-256")
/* ... */
.create();
signer.sign(); In #4318 there's an open TODO on how to expose this paradigm via the FFI. I don't have a concrete proposal at this point. But perhaps its worth thinking in that direction and finding a usable (generic) design for this before creating many more FFI function with (Please don't take this as actual opposition to these new functions from my side. I just try to connect some loose ends here.) |
Thank you very much for the heads up, this is something to consider. |
Some initial idea: #4318 (comment) |
Fixes #4340
Open questions:
_with_rng
versions with their original ones?