Refactor code not to use unescorted ed25519 secrets (!1192) · Merge requests · The Tor Project / Core / Arti

Nick Mathewson requested to merge nickm/arti:escorted_25519_secrets into main May 18, 2023

per that ticket, we don't want to have any ed25519::SecretKey or ed25519::ExpandedSecretKey instances floating around without their accompanying public keys. Otherwise, there is a risk that we would sign the same message using the same secret key with two different public keys, and expose ourselves to a nonce reuse attack.

Fortunately, all of the functions that we had to change incompatibly are behind experimental features.

Refactor code not to use unescorted ed25519 secrets

Merge request reports