Support for storing private keys as seeds #89
Conversation
tomato42
force-pushed
the
seeds-as-keys
branch
from
cd4991d to
b99212b
Compare
|
im ok with adding the seed check, but this should be included in some tests somewhere? Also, we don't need the interopt code to be included in this PR? |
you mean you'd like unit tests or you'd like interoperability tests?
yes, I should probably add the test vectors from the draft |
|
i mean i dont think this PR should be about interoperability and rather just adding this new keygen from seed function, which should be tested in the unit tests for ML-KEM |
aah, split up the addition of the API, sure, can do a separate PR for that alone |
|
The PR adding API alone, together with test coverage: #90 |
tomato42
force-pushed
the
seeds-as-keys
branch
from
b99212b to
725df1c
Compare
The new draft-ietf-lamps-kyber-certificates-06 mandates storing the private key as the un-expanded seed instead of expanded value. Add a public API that allows expanding keys from the seed and update the example scripts with support for that.
Builds on top of #80
Not interoperable with oqsprovider: open-quantum-safe/oqs-provider#613 or openssl: openssl/openssl#25885