crypto_box: test ChaChaBox against libsodium-generated test vectors
tarcieri opened this issue · 0 comments
tarcieri commented
In RustCrypto/AEADs#295, the ChaChaBox construction was changed to the following (prior versions did not apply HChaCha20):
shared_key = hchacha20(x25519(alice_sk, bob_pk), [0u8; 16]))
In theory, this should be compatible with what libsodium implements:
We should add test vectors generated by libsodium to ensure this is the case.