Skip to content

Improve the efficiency of verify_signed_data when verifying lots of data with a single key #504

New issue
New issue
Open
Open
Improve the efficiency of verify_signed_data when verifying lots of data with a single key#504
@Philip-NLnetLabs

Description

@Philip-NLnetLabs
Philip-NLnetLabs
opened on Mar 28, 2025

The verify_signed_data implementation for Rrsig in crate::validate takes a Dnskey converts that to the ring internal format and verifies the signature.

If the same Dnskey is used many times it might help to convert the key to ring internal format once and then use that to verify the signature.

For example for ldns-verify-zone.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions