Brad
Reputation: 11515
Signing a payload which is already hashed in pynacl
I am switching an application from Python cryptography.io library to pynacl.
The application currently calculates digests of the data, then has the crypto libraries sign the digest.
But pynacl's signing code always requires the full data to be passed in to the sign methods, and it is difficult to do this with the way the code is structured (and may impossible in cases, such as a very large file that cannot be read into memory).
So the two questions are:
- Is there a way to simple pass a pre-calcuated digest of my data to a
signfunction with pynacl and have it just sign with that? - Would there be a security problem in merelty passing the digest of my data as the
message, instead of the data directly? (And if so - and recomendations or restrictions on the algorithm or hash size to use with EC25518?)
Upvotes: 1
Views: 122
Answers (0)
Related Questions
- Signing AWS API request with payload
- Sign a text with pynacl (Ed25519) importing a private key
- How to verify with Python (PyNaCl) a message signed by Solana wallet adapter (javascript)
- Matching Signing between Python and Ruby
- How to load SigningKey from its value in pyNaCl?
- Signing data using openssl with python
- HMAC signing requests in Python
- Python 3 sign a message with key sha512
- Using RSA in Python 3, need to sign a message (without hashing the message)
- Signing files/file objects using python and pyopenssl