On Tue, Jan 20, 2026 at 02:03:21PM -0800, Eric Biggers wrote: > On Thu, Jan 15, 2026 at 09:50:48PM +0000, David Howells wrote: > > Add a supplementary information parameter to the asymmetric key signature > > verification API, in particular crypto_sig_verify() and sig_alg::verify. > > This takes the form of a printable string containing of key=val elements. > > As I'm sure you're aware, C has native support for function parameters. > No need to serialize to a string on the caller side and then deserialize > in the callee. > > This is yet another example of a case where trying to fit different > algorithms into a generic API doesn't work well. > > We should just have a library API for each signature algorithm, with > each algorithm taking the parameters it needs.
This would be a great idea IMHO. I'm looking into renewing my TPM2 asymmetric keys patch set some day, and e.g., for that such primitives would be more ergonomic fit. > > - Eric BR, Jarkko
