Niels Möller <[email protected]> writes: > I'm tempted to try to write a minimal implementation of just > SLH-DSA-SHAKE-128s from the spec, to get a better understanding.
I've made some progress at that, see https://git.lysator.liu.se/nisse/poc-slh-dsa, the main building blocks are there, but some important top-level things to put it all together is still missing. One question on the slh_dsa_sign function in your patch: Does that correspond to the "slh_sign_internal" algorithm in the spec? I.e., without the prepending of a context string (or just two zero bytes of context is empty), as specified in the "slh_sign" algorithm in the spec? Regards, /Niels -- Niels Möller. PGP key CB4962D070D77D7FCB8BA36271D8F1FF368C6677. Internet email is subject to wholesale government surveillance. _______________________________________________ nettle-bugs mailing list -- [email protected] To unsubscribe send an email to [email protected]
