-
Notifications
You must be signed in to change notification settings - Fork 200
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
elliptic-curve: support scalar modulus larger than base field size #1304
Comments
Right now the size of the base and scalar fields is defined by This has worked with every curve up until now. Supporting this will involve splitting up all of these types. We'd need This will also particularly complicate the implementation of ECDSA (and similar algorithms like SM2DSA), which need to reduce an element of the base field into the scalar field. |
Note that in the next breaking release of Fixing this is going to cause breakage/upgrade pain even though it's irrelevant to most users, so I'm a bit worried about trying to slip it into a release which is otherwise making major breaking changes to the same types. |
What is the status with the |
As it's a migration which impacts hundreds of crates throughout this project, I'd say we're about halfway through, but there's still a lot of work to go. The latest prereleases of e.g. |
How is this progress with migration going? Is this issue still blocked by the migration? |
We will hopefully be able to start cutting stable releases either around EOY or the start of next. Perhaps closer to release time we can debate whether or not this change should make it in, if a workable PR has been opened. I still worry the |
The main thing that needs to be decided to implement this is a set of new names for serialized field elements. They're currently There's also the |
secp224k1 has a modulus that is larger than the base field size. This will probably be a big breaking change
The text was updated successfully, but these errors were encountered: