Add an Ed25519 signature maleability test
authorMatt Caswell <matt@openssl.org>
Fri, 23 Nov 2018 14:24:17 +0000 (14:24 +0000)
committerMatt Caswell <matt@openssl.org>
Mon, 3 Dec 2018 14:25:20 +0000 (14:25 +0000)
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/7697)

(cherry picked from commit e65a79d2aae76c27d68587ff66cb6b65a3283e50)

test/recipes/30-test_evp_data/evppkey.txt

index f4470ff46b64a85442ab55371a550745a094784d..dc50dc8e7e02f88783086d3cac71582567192693 100644 (file)
@@ -17601,6 +17601,14 @@ Key = ED25519-1-PUBLIC-Raw
 Input = ""
 Output = e5564300c360ac729086e2cc806e828a84877f1eb8e5d974d873e065224901555fb8821590a33bacc61e39701cf9b46bd25bf5f0595bbe24655141438e7a100b
 
+#Signature maleability test.
+#Same as the verify operation above but with the order added to s
+OneShotDigestVerify = NULL
+Key = ED25519-1-PUBLIC-Raw
+Input = ""
+Output = e5564300c360ac729086e2cc806e828a84877f1eb8e5d974d873e065224901554c8c7872aa064e049dbb3013fbf29380d25bf5f0595bbe24655141438e7a101b
+Result = VERIFY_ERROR
+
 Title = ED448 tests from RFC8032
 
 PrivateKey=ED448-1