On 23 November 2015 at 14:08, Ilari Liusvaara <ilariliusva...@welho.com> wrote: > Also, the prehashes might not be the same for Ed25519ph and Ed448ph, > plus I consider interfaces that let one use this dangerous (IUF > signing is dangerous!).
That suggests that the construction of CertificateVerify is dangerous in the same way, doesn't it? _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
