#i2p-dev (irc2p) | 2.8.0-7-rc | Checkin deadline Fri. Mar. 14 | ACTION REQUIRED git.idk.i2p account deletion http://i2pforum.i2p/viewtopic.php?t=1312 | Upcoming reviews Tuesdays 8 PM UTC #ls2: prop 169 Mar. 18; prop. 167 Apr 1; prop. 163 Apr. 15

#i2p-dev

/2025/03/05

Online: 61

@eyedeekay

&eche|on

&kytv

&zzz

+R4SAS

+RN

+StormyCloud

+acetone

+dr|z3d

+hagen

+hk

+lbt

+orignal

+postman

+segfault

+weko

+wodencafe

Arch

Danny

DeltaOreo

FreefallHeavens_

Irc2PGuest10722

Irc2PGuest16699

Irc2PGuest21882

Irc2PGuest27222

Irc2PGuest39482

Irc2PGuest59134

Irc2PGuest95432

Leopold

Nausicaa

Onn4l7h

Onn4|7h

Sisyphus

Sleepy

Soni

T3s|4

T3s|4_

Teeed

aeiou

aisle1

ardu

b3t4f4c3__

bak83_

boonst

bpb

cumlord

dickless

dr4wd3_

eyedeekay_bnc

poriori

profetikla

qend-irc2p

radakayot_

rapidash

shiver_

solidx66

thetia

u5657

uop23ip_

w8rabbit

x74a6

zzz yup, that's what mine was too

orignal so what do you have now?

orignal 10K? 12K?

zzz if (size > 4k) buf = new byte[size];

zzz not sure exactly what this is, but Sandia is messing with i2p??? github.com/sandialabs/firewheel_repo_i2p

zzz osti.gov/servlets/purl/1854751

zzz these are the f-ing nuke people

zzz 10k router testnet

orignal not too many really

orignal question for you about ed25519ph

orignal what hash function do you use?

orignal in Java

orignal for phe-hash I mean

zzz SHA512

orignal just sha512(msg) ?

orignal of you add something

orignal *or

zzz just sha512(msg) but this is only for su3 files

orignal you specs also mentione offline signatures

orignal basically I just have it avaiable in openssl now

orignal and going to implement

orignal another question what if someone publishes LS with signature type 8?

zzz not allowed

orignal any reason for it?

zzz because you should use type 7

orignal 7 is not streaming, you know?

orignal you have to verify whole message in one shot

zzz type 8 is still double hashing

orignal right

orignal but your input is always 64 bytes

orignal another question

orignal can it appear in reseed su3?

orignal or RSA only?

zzz not sure if it works

zzz it's a little messy for us to check the OID in the certificate and pull the key out

orignal then what was the original plan?

zzz I think that was the plan, just never happened

orignal str4d's?

zzz this was 2018, but iirc we all discussed it

orignal I guess it was "EdDSA for long files"

orignal do you know if PQ signatures support streaming?

zzz don't know but the java API basically requires streaming support, I don't know if bouncycastle does a copy or not, haven't looked

zzz for 25519ph certs we'd have to agree on an OID

orignal let me explain

orignal in streaming you must fill signature with zeroes and then verify it

orignal I mean I2P streaming

zzz ok

orignal if your signature is few kilobytes

orignal it's very inefficient to do it for every signle SYN

orignal so I your signature supported streaming

orignal you could verify sequence of two potions

orignal unfortunately EdDSA is not of this king

orignal but 64 bytes is not a big deal

orignal while it would make a difference for PQ

zzz well you can do the sign and verify in-place, you don't need to do a copy

orignal how?

zzz I mean not a full copy. Copy out the signature, zero it out, and verify

orignal how do it know your intent was zeros?

orignal I mean the same

zzz not sure what you're asking

orignal for for PQ signatures are longest part of packet

orignal for EdDSA signature is 64 bytes

orignal for PQ signature is uop to 7K

orignal it means you would have to copy 7K then zzero it out

zzz well if you have a better idea for PQ sigs in streaming, let us know

orignal it depends on what is PQ

orignal say, ECDSA supports streaming, EDDSA doesn't, EDDSAph also does

orignal are you able to calculate few potions hash in your crypto library?

orignal in general

zzz huh?

orignal how do you verify reseed su3 file?

zzz hash the file, check sig of the hash

orignal do you read entire file and calculate sha256?

zzz sha512

orignal or read it by blocks

zzz we hash as we go

orignal so you can do it

orignal you read some block add to hash

zzz yup

orignal and take digest after last block

orignal hence the same story with PQ

zzz hash.init(), hash.update(), .... hash.digest()

orignal you can do it or you can't do it

orignal right

orignal how about PQ

orignal ?

zzz that's the java API for all hashing

orignal can you call few update() and then veroify()?

zzz so it's always possible

zzz yes

orignal it's not possible for EdDSA however

zzz it's possible, it's just ugly, because you have to copy

orignal if you have to copy it's not possible

orignal actaully

orignal we need to know how abut PQ

orignal basically what does it signs

orignal hash of data or something more complicated like EdDSA

zzz ok, start your research

orignal just for clarification

orignal EDDSA also hashes left part of signature

orignal in additional to data

orignal DJB had twisted mind ))

zzz NIST defined both regular and prehash flavors, we're using the non-prehash. You just update the SHAKE hash as you go

zzz no DJB copy

orignal classic EdDSA is non-prehash

zzz reminder: tag freeze in ~ 2 hours

zzz tags frozen and pushed to transifex, translators please update by 5 PM UTC Friday March 14