Closed
Bug 1658992
Opened 4 years ago
Closed 4 years ago
Add mechanism for generating an EC keypair from a raw private key value
Categories
(NSS :: Libraries, enhancement, P2)
NSS
Libraries
Tracking
(Not tracked)
RESOLVED
WONTFIX
People
(Reporter: kjacobs, Assigned: kjacobs)
References
Details
Attachments
(1 obsolete file)
https://tools.ietf.org/html/draft-irtf-cfrg-hpke-05 specifies a DeriveKeyPair
method that constructs an EC keypair from HKDF output (which becomes the private key). Unfortunately, the existing Import mechanisms seem to all require the public to also be provided.
Exposing EC_NewKeyFromSeed
through a custom PK11 mechanism will meet the need of generating the public key and converting both to SECKEY objects.
Assignee | ||
Comment 1•4 years ago
|
||
Updated•4 years ago
|
Attachment #9169906 -
Attachment is obsolete: true
Assignee | ||
Comment 2•4 years ago
|
||
ECH doesn't need this API. Given that its only use case would be to exercise HPKE test vectors, it doesn't seem worth the complexiity and technical debt of a new vendor mechanism. We can instead instantiate HPKE test vectors with the DKP outputs.
Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•