Merge BoringSSL 3094902: Get closer to Ed25519 boundary conditions.

briansmith · Dec 18, 2020 · 01a2e42 · 01a2e42
1 parent a25271b
commit 01a2e42
Showing 1 changed file with 16 additions and 1 deletion.
diff --git a/tests/ed25519_verify_tests.txt b/tests/ed25519_verify_tests.txt
@@ -1,4 +1,4 @@
-# BoringSSL TEST(Ed25519Test Malleability) commit 472ba2c2dd52d06a657a63b7fbf02732a6649d21
+# BoringSSL TEST(Ed25519Test Malleability)
 
 # Control; S is in range.
 MESSAGE = 54657374
@@ -7,7 +7,22 @@ PUB = 7d4d0e7f6153a69b6242b522abbee685fda4420f8834b108c3bdae369ef549fa
 Result = P
 
 # Same as above, but with the order L added to S so it is out of range.
+# BoringSSL commit 472ba2c2dd52d06a657a63b7fbf02732a6649d21
 MESSAGE = 54657374
 SIG = 7c38e026f29e14aabd059a0f2db8b0cd783040609a8be684db12f82a27774ab067654bce3832c2d76f8f6f5dafc08d9339d4eef676573336a5c51eb6f946b31d
 PUB = 7d4d0e7f6153a69b6242b522abbee685fda4420f8834b108c3bdae369ef549fa
 Result = F
+
+# BoringSSL commit 3094902fcdc2db2cc832fa854b9a6a8be383926c: Get closer to Ed25519 boundary conditions.
+
+# Control
+MESSAGE = 124e583f8b8eca58bb29c271b41d36986bbc45541f8e51f9cb0133eca447601e
+SIG = dac119d6ca87fc59ae611c157048f4d4fc932a149dbe20ec6effd1436abf83ea05c7df0fef06147241259113909bc71bd3c53ba4464ffcad3c0968f2ffffff0f
+PUB = 100fdf47fb94f1536a4f7c3fda27383fa03375a8f527c537e6f1703c47f94f86
+Result = P
+
+# Same key as above, but S is out of range.
+PUB = 100fdf47fb94f1536a4f7c3fda27383fa03375a8f527c537e6f1703c47f94f86
+MESSAGE = 6a0bc2b0057cedfc0fa2e3f7f7d39279b30f454a69dfd1117c758d86b19d85e0
+SIG = 0971f86d2c9c78582524a103cb9cf949522ae528f8054dc20107d999be673ff4e25ebf2f2928766b1248bec6e91697775f8446639ede46ad4df4053000000010
+Result = F