Skip to content

Commit

Permalink
Add test case for ecmult_gen recoded = {-1,0,1}
Browse files Browse the repository at this point in the history
  • Loading branch information
sipa committed Apr 5, 2024
1 parent 883856b commit 723f14e
Showing 1 changed file with 20 additions and 0 deletions.
20 changes: 20 additions & 0 deletions src/tests.c
Original file line number Diff line number Diff line change
Expand Up @@ -5602,9 +5602,29 @@ static void test_ecmult_gen_blind_reset(void) {
CHECK(secp256k1_ge_eq_var(&p1, &p2));
}

/* Verify that ecmult_gen for scalars gn for which gn + scalar_offset = {-1,0,1}. */
static void test_ecmult_gen_edge_cases(void) {
int i;
secp256k1_gej res1, res2;
secp256k1_scalar gn = secp256k1_scalar_one; /* gn = 1 */
secp256k1_scalar_add(&gn, &gn, &CTX->ecmult_gen_ctx.scalar_offset); /* gn = 1 + scalar_offset */
secp256k1_scalar_negate(&gn, &gn); /* gn = -1 - scalar_offset */

for (i = -1; i < 2; ++i) {
/* Run test with gn = i - scalar_offset (so that the ecmult_gen recoded value represents i). */
secp256k1_ecmult_gen(&CTX->ecmult_gen_ctx, &res1, &gn);
secp256k1_ecmult(&res2, NULL, &secp256k1_scalar_zero, &gn);
secp256k1_gej_neg(&res2, &res2);
secp256k1_gej_add_var(&res1, &res1, &res2, NULL);
CHECK(secp256k1_gej_is_infinity(&res1));
secp256k1_scalar_add(&gn, &gn, &secp256k1_scalar_one);
}
}

static void run_ecmult_gen_blind(void) {
int i;
test_ecmult_gen_blind_reset();
test_ecmult_gen_edge_cases();
for (i = 0; i < 10; i++) {
test_ecmult_gen_blind();
}
Expand Down

0 comments on commit 723f14e

Please sign in to comment.