Also Dalek Cryptography's curve25519 operations have nice parallel formulas using nightly stdsimd. Meaning if I finally get to porting the HTTP signatures over to pure Rust cryptography, that could give some nice boost in performance.
Well, in the edge case that someone actually uses Ed25519, which nobody does because Mastodon doesn't support it for some god damn reason.
So we are stuck with the slow and fragile RSA system and gigantic keys just because.