On Tue, May 7, 2019 at 4:00 PM Ted Unangst <[email protected]> wrote: > oh nice. I'm glad this is at least possible with some effort.
I should note that one limitation of the device is that it will only sign ~2k of data for ed25519, due to the collision-proof hashing scheme that requires buffering. Something like ed25519ph might fix that, but YubiHSM doesn't support it yet. For my purposes it doesn't really matter, since I'm signing a ~100 byte text file (the output of `b2sum -l 256 *.msi`).
