From 87bcd1705dff205609b3a69eb75029020dde549d Mon Sep 17 00:00:00 2001
From: Arthur Gautier <arthur.gautier@arista.com>
Date: Sun, 9 Mar 2025 14:49:12 -0700
Subject: [PATCH 1/3] elliptic-curve:: adds `Secret::try_from_rng` method

---
 elliptic-curve/src/secret_key.rs | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/elliptic-curve/src/secret_key.rs b/elliptic-curve/src/secret_key.rs
index 02f9778e8..1c15dc797 100644
--- a/elliptic-curve/src/secret_key.rs
+++ b/elliptic-curve/src/secret_key.rs
@@ -15,7 +15,10 @@ use subtle::{Choice, ConstantTimeEq};
 use zeroize::{Zeroize, ZeroizeOnDrop, Zeroizing};
 
 #[cfg(feature = "arithmetic")]
-use crate::{CurveArithmetic, NonZeroScalar, PublicKey, rand_core::CryptoRng};
+use crate::{
+    CurveArithmetic, NonZeroScalar, PublicKey,
+    rand_core::{CryptoRng, TryCryptoRng},
+};
 
 #[cfg(feature = "jwk")]
 use crate::jwk::{JwkEcKey, JwkParameters};
@@ -100,6 +103,19 @@ where
         }
     }
 
+    /// Generate a random [`SecretKey`].
+    #[cfg(feature = "arithmetic")]
+    pub fn try_from_rng<R: TryCryptoRng + ?Sized>(
+        rng: &mut R,
+    ) -> core::result::Result<Self, R::Error>
+    where
+        C: CurveArithmetic,
+    {
+        Ok(Self {
+            inner: NonZeroScalar::<C>::try_from_rng(rng)?.into(),
+        })
+    }
+
     /// Create a new secret key from a scalar value.
     pub fn new(scalar: ScalarPrimitive<C>) -> Self {
         Self { inner: scalar }

From 7bc6c7acb44009b1e13047ce9c48f800b3d14202 Mon Sep 17 00:00:00 2001
From: Arthur Gautier <arthur.gautier@arista.com>
Date: Sun, 9 Mar 2025 14:49:12 -0700
Subject: [PATCH 2/3] elliptic-curve:: adds `EphemeralSecret::try_from_rng`
 method

---
 elliptic-curve/src/ecdh.rs | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/elliptic-curve/src/ecdh.rs b/elliptic-curve/src/ecdh.rs
index c4881fe6e..baf4d9a98 100644
--- a/elliptic-curve/src/ecdh.rs
+++ b/elliptic-curve/src/ecdh.rs
@@ -34,7 +34,7 @@ use core::{borrow::Borrow, fmt};
 use digest::{Digest, crypto_common::BlockSizeUser};
 use group::Curve as _;
 use hkdf::{Hkdf, hmac::SimpleHmac};
-use rand_core::CryptoRng;
+use rand_core::{CryptoRng, TryCryptoRng};
 use zeroize::{Zeroize, ZeroizeOnDrop};
 
 /// Low-level Elliptic Curve Diffie-Hellman (ECDH) function.
@@ -114,6 +114,13 @@ where
         }
     }
 
+    /// Generate a cryptographically random [`EphemeralSecret`].
+    pub fn try_from_rng<R: TryCryptoRng + ?Sized>(rng: &mut R) -> Result<Self, R::Error> {
+        Ok(Self {
+            scalar: NonZeroScalar::try_from_rng(rng)?,
+        })
+    }
+
     /// Get the public key associated with this ephemeral secret.
     ///
     /// The `compress` flag enables point compression.

From ba379f0ef94e7fc7813738eaf0b8ce0604949497 Mon Sep 17 00:00:00 2001
From: Arthur Gautier <arthur.gautier@arista.com>
Date: Sun, 9 Mar 2025 15:10:42 -0700
Subject: [PATCH 3/3] use default impl of Field::random

---
 elliptic-curve/src/dev.rs | 11 -----------
 1 file changed, 11 deletions(-)

diff --git a/elliptic-curve/src/dev.rs b/elliptic-curve/src/dev.rs
index 26b14d902..4f1c58811 100644
--- a/elliptic-curve/src/dev.rs
+++ b/elliptic-curve/src/dev.rs
@@ -99,17 +99,6 @@ impl Field for Scalar {
     const ZERO: Self = Self(ScalarPrimitive::ZERO);
     const ONE: Self = Self(ScalarPrimitive::ONE);
 
-    fn random<R: RngCore + ?Sized>(rng: &mut R) -> Self {
-        let mut bytes = FieldBytes::default();
-
-        loop {
-            rng.fill_bytes(&mut bytes);
-            if let Some(scalar) = Self::from_repr(bytes).into() {
-                return scalar;
-            }
-        }
-    }
-
     fn try_from_rng<R: TryRngCore + ?Sized>(rng: &mut R) -> core::result::Result<Self, R::Error> {
         let mut bytes = FieldBytes::default();