On Thu, 23 Apr 2020 at 11:02, Matt Caswell <m...@openssl.org> wrote: > > > On 22/04/2020 18:12, Viktor Dukhovni wrote: > > sadly the > > EVP_PKEY_METHOD for ed25519 has a NULL sign() member, instead, somewhat > > ironically, it has a digestsign() method. This is presumably to > > distinguish between the pure and prehash variants. Therefore, presently > > pkeyutl(1) indeed appears to not implement signing and verifying with > > ed25519, this looks doable with modest effort. > > > I'm fairly sure it used to have a "sign" function during the dev phase - > but it was taken out. I forget the reasoning. >
Yes, that change was intentional, the reasoning is detailed in the discussion in: https://github.com/openssl/openssl/pull/6284 Nicola
