Cleanup readme, examples

paragonie · Apr 29, 2024 · a064445 · a064445
1 parent a6d4cab
commit a064445
Show file tree

Hide file tree

Showing 6 changed files with 12 additions and 6 deletions.
diff --git a/README.md b/README.md
@@ -24,6 +24,12 @@ be secure.
 In the meantime, **DO NOT** submit bug bounty reports to us for this code. They will be
 closed as out of scope. File an Issue here instead!
 
+### This Library Implements Low-Level Elliptic Curve Cryptography
+
+If you just need Diffie-Hellman or ECDSA, you should install [EasyECC](https://github.com/paragonie/easy-ecc/)
+instead of working with this library directly. EasyECC was designed to use PHPECC 
+in a secure-by-default manner.
+
 ### Information
 
 This library is a rewrite/update of Matyas Danter's ECC library. All credit goes to him.

diff --git a/examples/creating_signature.php b/examples/creating_signature.php
@@ -13,7 +13,7 @@
 // which a verifier must be aware of.
 
 $adapter = EccFactory::getAdapter();
-$generator = EccFactory::getNistCurves()->generator384();
+$generator = EccFactory::getNistCurves()->generator256(null, true);
 $useDerandomizedSignatures = true;
 $algorithm = 'sha256';
 
@@ -27,7 +27,7 @@
 $hasher = new SignHasher($algorithm, $adapter);
 $hash = $hasher->makeHash($document, $generator);
 
-# Derandomized signatures are not necessary, but is avoids
+# Derandomized signatures are not necessary, but it avoids
 # the risk of a low entropy RNG, causing accidental reuse
 # of a k value for a different message, which leaks the
 # private key.

diff --git a/examples/ecdh_exchange.php b/examples/ecdh_exchange.php
@@ -14,7 +14,7 @@
 // which a verifier must be aware of.
 
 $adapter = EccFactory::getAdapter();
-$generator = EccFactory::getNistCurves()->generator384();
+$generator = EccFactory::getNistCurves()->generator256(null, true);
 $useDerandomizedSignatures = true;
 
 $derPub = new DerPublicKeySerializer();

diff --git a/examples/key_generation.php b/examples/key_generation.php
@@ -7,7 +7,7 @@
 use Mdanter\Ecc\Serializer\PrivateKey\DerPrivateKeySerializer;
 
 $adapter = EccFactory::getAdapter();
-$generator = EccFactory::getNistCurves()->generator384();
+$generator = EccFactory::getNistCurves()->generator256(null, true);
 $private = $generator->createPrivateKey();
 
 $derSerializer = new DerPrivateKeySerializer($adapter);

diff --git a/examples/verify_signature.php b/examples/verify_signature.php
@@ -12,7 +12,7 @@
 # Same parameters as creating_signature.php
 
 $adapter = EccFactory::getAdapter();
-$generator = EccFactory::getNistCurves()->generator384();
+$generator = EccFactory::getNistCurves()->generator256(null, true);
 $algorithm = 'sha256';
 $sigData = base64_decode('MEQCIHK+HXgq0AjeKfmdI9l4uGBL0keIiZiQOCEyij25B/X/AiAQs++18Vhb0Q9tqWjzWUNTAMLEzUKF0XzKyHQ028/q4Q==');
 $document = 'I am writing today...';

diff --git a/validate_examples.sh b/validate_examples.sh
@@ -3,6 +3,6 @@ for i in examples/*.php; do
     php $i
     if [ $? != 0 ]; then
         echo "Error running example code";
-        exit -1
+        exit 255
     fi;
 done