Allow signing raw messages in keystore

aeolwyr · aeolwyr · commit c9f1c409b9d4 · 2020-08-09T15:56:07.000-07:00
Add NONE to the allowed digests so that the keys can be used
to sign messages that are already hashed.
diff --git a/scripts/termux-keystore b/scripts/termux-keystore
@@ -109,7 +109,7 @@ generate_key () {
 
     # purpose 12 is SIGN+VERIFY
     $CMD_BASE -e command generate -e alias "$ALIAS" -e algorithm "$ALGORITHM" \
-        --ei purposes 12 --esa digests SHA-1,SHA-256,SHA-384,SHA-512 \
+        --ei purposes 12 --esa digests NONE,SHA-1,SHA-256,SHA-384,SHA-512 \
         --ei size "$SIZE" -e curve "$CURVE" --ei validity "$VALIDITY"
 }
 

Original file line number	Diff line number	Diff line change
`@@ -109,7 +109,7 @@ generate_key () {`
`109`	`109`
`110`	`110`	`# purpose 12 is SIGN+VERIFY`
`111`	`111`	`$CMD_BASE -e command generate -e alias "$ALIAS" -e algorithm "$ALGORITHM" \`
`112`		`- --ei purposes 12 --esa digests SHA-1,SHA-256,SHA-384,SHA-512 \`
	`112`	`+ --ei purposes 12 --esa digests NONE,SHA-1,SHA-256,SHA-384,SHA-512 \`
`113`	`113`	`--ei size "$SIZE" -e curve "$CURVE" --ei validity "$VALIDITY"`
`114`	`114`	`}`
`115`	`115`