Crates.io | sapio-secp256k1 |
lib.rs | sapio-secp256k1 |
version | 0.28.1 |
source | src |
created_at | 2021-03-22 23:54:43.910232 |
updated_at | 2024-01-16 18:50:51.087797 |
description | Rust wrapper library for Pieter Wuille's `libsecp256k1`. Implements ECDSA and BIP 340 signatures for the SECG elliptic curve group secp256k1 and related utilities. Extended edition for Sapio. |
homepage | https://github.com/sapio-lang/rust-secp256k1/ |
repository | https://github.com/sapio-lang/rust-secp256k1/ |
max_upload_size | |
id | 372337 |
size | 758,346 |
rust-secp256k1
is a wrapper around libsecp256k1, a C
library implementing various cryptographic functions using the SECG curve
secp256k1.
This library:
libsecp256k1
functionslibsecp256k1
Contributions to this library are welcome. A few guidelines:
To assist devs in catching errors before running CI we provide some githooks. If you do not already have locally configured githooks you can use the ones in this repository by running, in the root directory of the repository:
git config --local core.hooksPath githooks/
Alternatively add symlinks in your .git/hooks
directory to any of the githooks we provide.
We use a custom Rust compiler configuration conditional to guard the bench mark code. To run the
bench marks use: RUSTFLAGS='--cfg=bench' cargo +nightly bench --features=recovery
.
non_secure_erase
This crate's secret types (SecretKey
, Keypair
, SharedSecret
, Scalar
, and DisplaySecret
)
have a method called non_secure_erase
that attempts to overwrite the contained secret. This
method is provided to assist other libraries in building secure secret erasure. However, this
library makes no guarantees about the security of using non_secure_erase
. In particular,
the compiler doesn't have any concept of secrets and in most cases can arbitrarily move or copy
values anywhere it pleases. For more information, consult the zeroize
documentation.
If you want to fuzz this library, or any library which depends on it, you will
probably want to disable the actual cryptography, since fuzzers are unable to
forge signatures and therefore won't test many interesting codepaths. To instead
use a trivially-broken but fuzzer-accessible signature scheme, compile with
--cfg=secp256k1_fuzz
in your RUSTFLAGS
variable.
Note that cargo hfuzz
does not set this config flag automatically. In 0.27.0
and earlier versions, we used the --cfg=fuzzing
which honggfuzz does set, but we
changed this because there was no way to override it.