[gnutls-help] ECDH internal functions and FIPS140-2 mode

Nicolas Mora nicolas at babelouest.org
Sun Mar 21 01:23:08 CET 2021


Le 2021-03-20 à 14 h 42, Nicolas Mora a écrit :
> I'll try and use _gnutls_dh_compute_key to see if I have an expected 
> result with Curve25519/Curve448 keys.

I'm having problems implementing ecdh-es with Curve25519/Curve448.

- If I use an ed25519 key pair to compute, _gnutls_dh_compute_key 
returns -55
- If I use an x25519 key pair to compute, I can't import the key using 

Is it possible at this time to calculate a key agreement with these curves?

I have a working prototype in rhonabwy [1] that uses Nettle's functions 
curve25519_mul/curve448_mul. In this case I expect a X25519 or X448 key 


[1] https://github.com/babelouest/rhonabwy/blob/master/src/jwe.c#L226
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xFE82139440BD22B9.asc
Type: application/pgp-keys
Size: 3066 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnutls-help/attachments/20210320/5828ed24/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://lists.gnupg.org/pipermail/gnutls-help/attachments/20210320/5828ed24/attachment-0001.sig>

More information about the Gnutls-help mailing list