mirror of
https://github.com/bitcoin/bitcoin.git
synced 2025-02-04 10:07:27 -05:00
Add a test case for ECDSA recomputing infinity
This commit is contained in:
Pieter Wuille
parent
32600e5086
commit
24b3c65e0d
1 changed files with 15 additions and 0 deletions
15
src/tests.c
15
src/tests.c
|
|
@ -1021,6 +1021,21 @@ void test_ecdsa_edge_cases(void) {
|
|||
sigbder[7]++;
|
||||
CHECK(secp256k1_ecdsa_verify(msg32, 32, sigbder, sizeof(sigbder), pubkeyb, pubkeyblen) == 0);
|
||||
}
|
||||
|
||||
/* Test the case where ECDSA recomputes a point that is infinity. */
|
||||
{
|
||||
secp256k1_ecdsa_sig_t sig;
|
||||
secp256k1_scalar_set_int(&sig.s, 1);
|
||||
secp256k1_scalar_negate(&sig.s, &sig.s);
|
||||
secp256k1_scalar_inverse(&sig.s, &sig.s);
|
||||
secp256k1_scalar_set_int(&sig.r, 1);
|
||||
secp256k1_gej_t keyj;
|
||||
secp256k1_ecmult_gen(&keyj, &sig.r);
|
||||
secp256k1_ge_t key;
|
||||
secp256k1_ge_set_gej(&key, &keyj);
|
||||
secp256k1_scalar_t msg = sig.s;
|
||||
CHECK(secp256k1_ecdsa_sig_verify(&sig, &key, &msg) == 0);
|
||||
}
|
||||
}
|
||||
|
||||
void run_ecdsa_edge_cases(void) {
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue