> Acked-by: Arkadiusz Kusztal <arkadiuszx. kusztal@ intel. com
Thanks Arkadiusz.
> > Hi Gowrishankar,
> >
> > I like the idea of adding EdDSA, but I have several comments.
> >
<cut>
> > > +/**
> > > + * EdDSA operation params
> > > + */
> > > +struct rte_crypto_eddsa_op_param {
> > > + enum rte_crypto_asym_op_type op_type;
> > > + /**< Signature generation or verification */
> > > +
> > > + rte_crypto_param message;
> > > + /**< Input message digest to be signed or verified */
> > HashEdDSA will require a message digest; pure EdDSA will require the
> > message itself. For HW it will be more complicated.
Do you mean some hardware may not have HashEdDSA support ?
If so, I think it can be addressed as an operation capability in EdDSA xform
itself as proposed in another patch:
https://patches.dpdk.org/project/dpdk/patch/20241004181255.916-1-gmuthukri...@marvell.com/
> > > +
> > > + rte_crypto_param context;
> > > + /**< Context value for the sign op.
> > > + * Must not be empty for Ed25519ctx instance.
> > > + */
> > > +
> > > + enum rte_crypto_edward_instance instance;
> > > + /**< Type of Edwards curve. */
> > All instances are using the same curve, where they differ is the way
> > of handling input message.
> > And I think this should be a session variable -> new xform for the EdDSA.
Based on prehash and context string, these instances are listed in RFC.
A context string per operation helps ensure each signature is uniquely tied to
its specific context, thereby preventing reuse of signatures across different
contexts or operations.
Prehashing adds additional security by ensuring new prehash is computed from
the message.
Therefor it is more appropriate to treat both of these as operational variables.
Thanks,
Gowrishankar
> > > +
> > > + rte_crypto_uint sign;
> > > + /**< Edward curve signature
> > > + * output : for signature generation
> > > + * input : for signature verification
> > > + */
> > > +};
> > > +
> > > /**
> > > * Structure for EC point multiplication operation param
> > > */
> > > @@ -720,6 +766,7 @@ struct rte_crypto_asym_op {
> > > struct rte_crypto_ecdsa_op_param ecdsa;
> > > struct rte_crypto_ecpm_op_param ecpm;
> > > struct rte_crypto_sm2_op_param sm2;
> > > + struct rte_crypto_eddsa_op_param eddsa;
> > > };
> > > uint16_t flags;
> > > /**<
> > > --
> > > 2.21.0
