<div dir="ltr"><div>Hi,</div><div><br></div><div>I am Rishabh Kumar, a Master's student from the Indian Institute of Technology, Hyderabad. I am working on the proposal of the project idea <font size="2">"</font><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support"> Extend RFC-7427 Signature Authentication support to IKEv2 with EdDSA support". I have gone through the codebase of past GSOC projects where the support was added for RSA and ECDSA and I have two queries in this regard,</span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support"><br></span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support">1. Through EdDSA, we can sign messages of arbitrary size so prehashing of the message is not required. Also, prehashing is not recommended. Is there any use case where an EdDSA version with message prehashing would be required or should libreswan support only the version without prehashing. <br></span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support">2. Since libreswan is dependent on NSS for algorithm implementation, EdDSA support has to be added in the NSS itself. Would it be fine if I start working on this. Maybe add this feature in NSS before GSOC.</span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support"><br></span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support">Regards,</span></span></font></div><div><font size="2"><span style="font-weight:normal"><span class="gmail-mw-headline" id="gmail-Extend_RFC-7427_Signature_Authentication_support_to_IKEv2_with_EDDSA_support">Rishabh<br></span></span></font></div></div>

<br>
<span><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Arial;color:rgb(34,34,34);vertical-align:baseline;white-space:pre-wrap;background-color:yellow">Disclaimer:- </span><span style="background-color:rgb(255,255,255);color:rgb(34,34,34);font-size:small">This </span><span style="background-color:rgb(255,255,255);color:rgb(34,34,34);font-size:small">footer text is to convey that this email is sent by one of the </span><span style="background-color:rgb(255,255,255);color:rgb(34,34,34);font-size:small">users of IITH. So, do not mark it as SPAM.</span></p></span>