Entries are listed in reverse chronological order.
- Add
PartialOrd
,Ord
,Hash
implementations forVerificationKey
, forwarding to the implementations onVerificationKeyBytes
.
- Improve
Debug
output forVerificationKey
.
- Remove
Copy
implementation fromSigningKey
.
- Add
to_bytes
/as_bytes
forVerificationKey
. - Add
SigningKey::verification_key()
convenience method (instead ofFrom
).
- Support
no_std
. - Add
to_bytes
/as_bytes
methods to complement theInto
implementations (by @0xdeadbeef).
- Remove Zcash-specific language, update dependencies, and re-release as
ed25519-consensus
.
- Add
PartialOrd
,Ord
implementations forVerificationKeyBytes
. While the derived ordering is not cryptographically meaningful, deriving these traits is useful because it allows, e.g., usingVerificationKeyBytes
as the key to aBTreeMap
(contributed by @cloudhead).
- Updates
sha2
version to0.9
andcurve25519-dalek
version to3
.
- Add a missing multiplication by the cofactor in batch verification and test
that individual and batch verification agree. This corrects an omission that
should have been included in
2.0.0
.
- Implements
Clone + Debug
forbatch::Item
and providesbatch::Item::verify_single
to perform fallback verification in case of batch failure.
- Implements ZIP 215, so that batched and individual verification agree on whether signatures are valid.
- Adds
impl TryFrom<&[u8]>
for all types.
- Add a note about versioning to handle ZIP 215.
- Change
docs.rs
configuration inCargo.toml
to not refer to the removedbatch
feature so that the docs render correctly ondocs.rs
.
- The sync batch verification api is changed to remove a dependence on the message lifetime that made it difficult to use in async contexts.
- Change terminology from secret and public keys to signing and verification keys.
- Remove async batch verification in favor of a sync api; the async approach is to be developed in another crate.
- The previous implementation exactly matched the behavior of
libsodium
1.0.15
with theED25519_COMPAT
configuration, but this configuration wasn't used byzcashd
. This commit changes the validation rules to exactly match withoutED25519_COMPAT
, and highlights the remaining inconsistencies with the Zcash specification that were not addressed in the previous spec fix.
- Adds
impl AsRef<[u8]> for PublicKey
. - Adds
impl AsRef<[u8]> for SecretKey
.
- Adds
impl AsRef<[u8]> for PublicKeyBytes
.
- Adds experimental futures-based batch verification API, gated by the
batch
feature.
Initial release, attempting to match the actual zcashd
behavior.