Struct EcdsaPrivateKey 

pub struct EcdsaPrivateKey { /* private fields */ }

Private key for ECDSA.

Stores the curve parameters and the secret scalar d ∈ [1, n). The matching public key is derived on demand via to_public_key.

Implementations

impl EcdsaPrivateKey

pub fn curve(&self) -> &CurveParams

The curve parameters for this key.

pub fn private_scalar(&self) -> &BigUint

The private scalar d ∈ [1, n).

pub fn to_public_key(&self) -> EcdsaPublicKey

Derive the matching public key Q = d·G.

pub fn sign_digest_with_nonce( &self, digest: &[u8], nonce: &BigUint, ) -> Option<EcdsaSignature>

Sign with an explicit nonce k.

ECDSA requires a fresh k ∈ [1, n) for every signature. This lower-level entry point keeps the arithmetic explicit for fixed-vector tests.

Reusing the same k for two different messages with the same key immediately reveals the private scalar. Outside of fixed vectors, prefer Self::sign_digest or Self::sign_message.

Returned signatures are canonicalized to low-s form (s <= n/2) to maximize interoperability with protocols that reject high-s ECDSA.

pub fn sign_digest<H: Digest>(&self, digest: &[u8]) -> Option<EcdsaSignature>

Sign a digest using RFC 6979 deterministic nonce derivation.

pub fn sign_digest_with_rng<R: Csprng>( &self, digest: &[u8], rng: &mut R, ) -> Option<EcdsaSignature>

Sign a digest using a fresh random nonce.

Retries only in the negligible edge cases where r = 0 or s = 0.

pub fn sign_message<H: Digest>(&self, message: &[u8]) -> Option<EcdsaSignature>

Hash one message with H, then sign deterministically.

pub fn sign_message_with_rng<H: Digest, R: Csprng>( &self, message: &[u8], rng: &mut R, ) -> Option<EcdsaSignature>

Hash one message with H, then sign with randomized nonces.

pub fn sign_digest_bytes<H: Digest>(&self, digest: &[u8]) -> Option<Vec<u8>>

Sign and serialize a digest using deterministic nonce derivation.

pub fn sign_digest_bytes_with_rng<R: Csprng>( &self, digest: &[u8], rng: &mut R, ) -> Option<Vec<u8>>

Sign and serialize a digest using randomized nonces.

pub fn sign_message_bytes<H: Digest>(&self, message: &[u8]) -> Option<Vec<u8>>

Hash one message with H, then sign and serialize deterministically.

pub fn sign_message_bytes_with_rng<H: Digest, R: Csprng>( &self, message: &[u8], rng: &mut R, ) -> Option<Vec<u8>>

Hash one message with H, then sign and serialize with randomized nonces.

pub fn to_key_blob(&self) -> Vec<u8>

Encode the private key in the crate-defined binary format.

Layout: one field-type byte (0x00 = prime, 0x01 = binary) followed by [p, a, b, n, h, Gx, Gy, d].

pub fn from_key_blob(blob: &[u8]) -> Option<Self>

Decode a private key from the crate-defined binary format.

pub fn to_pem(&self) -> String

pub fn from_pem(pem: &str) -> Option<Self>

Returns None if the PEM label does not match or the payload is malformed.

pub fn to_xml(&self) -> String

Panics

Panics only if a binary-field curve reports a degree that does not fit in u64, which would indicate malformed curve parameters.

pub fn from_xml(xml: &str) -> Option<Self>

Returns None if the XML root element, tag names, or integer encoding is invalid.

Trait Implementations

impl Clone for EcdsaPrivateKey

fn clone(&self) -> EcdsaPrivateKey

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for EcdsaPrivateKey

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.