Simon Josefsson <[email protected]> writes: > This adds sntrup761, what do you think?
What's the context/usecase? I saw some mails on the ietf-ssh list, but it was a bit unclear to me what the status of this algorithm is. In general, it makes sense to add support for post-quantum key exchange methods, another candidate seems to be https://classic.mceliece.org/ (with the drawback of much larger pubkeys). > Please consider it a first iteration for early review. I initially looked at the arithmetics. The signed (int32) sorting and division seems unused? For the side-channel silent divmod function, it seems we divide exclusively with one or a few constants, then we could precompute needed constants and perhaps simplify a bit. Regards, /Niels -- Niels Möller. PGP key CB4962D070D77D7FCB8BA36271D8F1FF368C6677. Internet email is subject to wholesale government surveillance. _______________________________________________ nettle-bugs mailing list -- [email protected] To unsubscribe send an email to [email protected]
