[WireGuard] stricter inputs for wg genkey, genpsk, and pubkey

Jason A. Donenfeld Jason at zx2c4.com
Wed Jul 6 11:45:12 CEST 2016

> it makes it slightly
> less likely to blindly accept some non-randomly-generated base64-encoded
> 256-bit string.

X25519 libraries are standardizing on doing the normalization
themselves, so actually it's fine to have your private key be a random
256-bit string, since it'll be normalized anyway before

More information about the WireGuard mailing list