You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 

423 lines
15 KiB

  1. /* X25519, X448 test vectors */
  2. template<> const uint8_t Tests<IsoEd25519>::rfc7748_1[32] = {
  3. 0x42,0x2c,0x8e,0x7a,0x62,0x27,0xd7,0xbc,
  4. 0xa1,0x35,0x0b,0x3e,0x2b,0xb7,0x27,0x9f,
  5. 0x78,0x97,0xb8,0x7b,0xb6,0x85,0x4b,0x78,
  6. 0x3c,0x60,0xe8,0x03,0x11,0xae,0x30,0x79
  7. };
  8. template<> const uint8_t Tests<IsoEd25519>::rfc7748_1000[32] = {
  9. 0x68,0x4c,0xf5,0x9b,0xa8,0x33,0x09,0x55,
  10. 0x28,0x00,0xef,0x56,0x6f,0x2f,0x4d,0x3c,
  11. 0x1c,0x38,0x87,0xc4,0x93,0x60,0xe3,0x87,
  12. 0x5f,0x2e,0xb9,0x4d,0x99,0x53,0x2c,0x51
  13. };
  14. template<> const uint8_t Tests<IsoEd25519>::rfc7748_1000000[32] = {
  15. 0x7c,0x39,0x11,0xe0,0xab,0x25,0x86,0xfd,
  16. 0x86,0x44,0x97,0x29,0x7e,0x57,0x5e,0x6f,
  17. 0x3b,0xc6,0x01,0xc0,0x88,0x3c,0x30,0xdf,
  18. 0x5f,0x4d,0xd2,0xd2,0x4f,0x66,0x54,0x24
  19. };
  20. template<> const uint8_t Tests<Ed448Goldilocks>::rfc7748_1[56] = {
  21. 0x3f,0x48,0x2c,0x8a,0x9f,0x19,0xb0,0x1e,
  22. 0x6c,0x46,0xee,0x97,0x11,0xd9,0xdc,0x14,
  23. 0xfd,0x4b,0xf6,0x7a,0xf3,0x07,0x65,0xc2,
  24. 0xae,0x2b,0x84,0x6a,0x4d,0x23,0xa8,0xcd,
  25. 0x0d,0xb8,0x97,0x08,0x62,0x39,0x49,0x2c,
  26. 0xaf,0x35,0x0b,0x51,0xf8,0x33,0x86,0x8b,
  27. 0x9b,0xc2,0xb3,0xbc,0xa9,0xcf,0x41,0x13
  28. };
  29. template<> const uint8_t Tests<Ed448Goldilocks>::rfc7748_1000[56] = {
  30. 0xaa,0x3b,0x47,0x49,0xd5,0x5b,0x9d,0xaf,
  31. 0x1e,0x5b,0x00,0x28,0x88,0x26,0xc4,0x67,
  32. 0x27,0x4c,0xe3,0xeb,0xbd,0xd5,0xc1,0x7b,
  33. 0x97,0x5e,0x09,0xd4,0xaf,0x6c,0x67,0xcf,
  34. 0x10,0xd0,0x87,0x20,0x2d,0xb8,0x82,0x86,
  35. 0xe2,0xb7,0x9f,0xce,0xea,0x3e,0xc3,0x53,
  36. 0xef,0x54,0xfa,0xa2,0x6e,0x21,0x9f,0x38
  37. };
  38. template<> const uint8_t Tests<Ed448Goldilocks>::rfc7748_1000000[56] = {
  39. 0x07,0x7f,0x45,0x36,0x81,0xca,0xca,0x36,
  40. 0x93,0x19,0x84,0x20,0xbb,0xe5,0x15,0xca,
  41. 0xe0,0x00,0x24,0x72,0x51,0x9b,0x3e,0x67,
  42. 0x66,0x1a,0x7e,0x89,0xca,0xb9,0x46,0x95,
  43. 0xc8,0xf4,0xbc,0xd6,0x6e,0x61,0xb9,0xb9,
  44. 0xc9,0x46,0xda,0x8d,0x52,0x4d,0xe3,0xd6,
  45. 0x9b,0xd9,0xd9,0xd6,0x6b,0x99,0x7e,0x37
  46. };
  47. template<> const Block Tests<Ed448Goldilocks>::sqrt_minus_one(NULL,0);
  48. const uint8_t sm1_25519[32] = {
  49. 0xb0,0xa0,0x0e,0x4a,0x27,0x1b,0xee,0xc4,
  50. 0x78,0xe4,0x2f,0xad,0x06,0x18,0x43,0x2f,
  51. 0xa7,0xd7,0xfb,0x3d,0x99,0x00,0x4d,0x2b,
  52. 0x0b,0xdf,0xc1,0x4f,0x80,0x24,0x83,0x2b
  53. };
  54. template<> const Block Tests<IsoEd25519>::sqrt_minus_one(sm1_25519,32);
  55. template<> const Block Tests<Ed448Goldilocks>::minus_sqrt_minus_one(NULL,0);
  56. const uint8_t msm1_25519[32] = {
  57. 0x3d,0x5f,0xf1,0xb5,0xd8,0xe4,0x11,0x3b,
  58. 0x87,0x1b,0xd0,0x52,0xf9,0xe7,0xbc,0xd0,
  59. 0x58,0x28,0x04,0xc2,0x66,0xff,0xb2,0xd4,
  60. 0xf4,0x20,0x3e,0xb0,0x7f,0xdb,0x7c,0x54
  61. };
  62. template<> const Block Tests<IsoEd25519>::minus_sqrt_minus_one(msm1_25519,32);
  63. const uint8_t elli_patho_448[56] = {
  64. 0x14,0xf0,0x70,0x58,0x41,0xc7,0xf9,0xa5,
  65. 0xfa,0x2c,0x7d,0x87,0x07,0x89,0xe8,0x61,
  66. 0x63,0xe8,0xc8,0xdc,0x06,0x2d,0x39,0x8f,
  67. 0x18,0x83,0x1e,0xc6,0x8c,0x6d,0x73,0x24,
  68. 0xd4,0xb3,0xd3,0xe1,0xf3,0x51,0x8c,0xee,
  69. 0x65,0x79,0x88,0xc1,0x0b,0xcf,0x8e,0xa5,
  70. 0x86,0xa9,0x2e,0xc9,0x17,0x68,0x9b,0x20
  71. };
  72. template<> const Block Tests<Ed448Goldilocks>::elli_patho(elli_patho_448,56);
  73. template<> const Block Tests<IsoEd25519>::elli_patho(NULL,0);
  74. /* EdDSA test vectors */
  75. const uint8_t ed448_eddsa_sk[][57] = {{
  76. 0x6c,0x82,0xa5,0x62,0xcb,0x80,0x8d,0x10,
  77. 0xd6,0x32,0xbe,0x89,0xc8,0x51,0x3e,0xbf,
  78. 0x6c,0x92,0x9f,0x34,0xdd,0xfa,0x8c,0x9f,
  79. 0x63,0xc9,0x96,0x0e,0xf6,0xe3,0x48,0xa3,
  80. 0x52,0x8c,0x8a,0x3f,0xcc,0x2f,0x04,0x4e,
  81. 0x39,0xa3,0xfc,0x5b,0x94,0x49,0x2f,0x8f,
  82. 0x03,0x2e,0x75,0x49,0xa2,0x00,0x98,0xf9,
  83. 0x5b
  84. }, {
  85. 0xc4,0xea,0xb0,0x5d,0x35,0x70,0x07,0xc6,
  86. 0x32,0xf3,0xdb,0xb4,0x84,0x89,0x92,0x4d,
  87. 0x55,0x2b,0x08,0xfe,0x0c,0x35,0x3a,0x0d,
  88. 0x4a,0x1f,0x00,0xac,0xda,0x2c,0x46,0x3a,
  89. 0xfb,0xea,0x67,0xc5,0xe8,0xd2,0x87,0x7c,
  90. 0x5e,0x3b,0xc3,0x97,0xa6,0x59,0x94,0x9e,
  91. 0xf8,0x02,0x1e,0x95,0x4e,0x0a,0x12,0x27,
  92. 0x4e
  93. }, {
  94. 0xcd,0x23,0xd2,0x4f,0x71,0x42,0x74,0xe7,
  95. 0x44,0x34,0x32,0x37,0xb9,0x32,0x90,0xf5,
  96. 0x11,0xf6,0x42,0x5f,0x98,0xe6,0x44,0x59,
  97. 0xff,0x20,0x3e,0x89,0x85,0x08,0x3f,0xfd,
  98. 0xf6,0x05,0x00,0x55,0x3a,0xbc,0x0e,0x05,
  99. 0xcd,0x02,0x18,0x4b,0xdb,0x89,0xc4,0xcc,
  100. 0xd6,0x7e,0x18,0x79,0x51,0x26,0x7e,0xb3,
  101. 0x28
  102. }, {
  103. 0x25,0x8c,0xdd,0x4a,0xda,0x32,0xed,0x9c,
  104. 0x9f,0xf5,0x4e,0x63,0x75,0x6a,0xe5,0x82,
  105. 0xfb,0x8f,0xab,0x2a,0xc7,0x21,0xf2,0xc8,
  106. 0xe6,0x76,0xa7,0x27,0x68,0x51,0x3d,0x93,
  107. 0x9f,0x63,0xdd,0xdb,0x55,0x60,0x91,0x33,
  108. 0xf2,0x9a,0xdf,0x86,0xec,0x99,0x29,0xdc,
  109. 0xcb,0x52,0xc1,0xc5,0xfd,0x2f,0xf7,0xe2,
  110. 0x1b
  111. }};
  112. const uint8_t ed448_eddsa_pk[][57] = {{
  113. 0x5f,0xd7,0x44,0x9b,0x59,0xb4,0x61,0xfd,
  114. 0x2c,0xe7,0x87,0xec,0x61,0x6a,0xd4,0x6a,
  115. 0x1d,0xa1,0x34,0x24,0x85,0xa7,0x0e,0x1f,
  116. 0x8a,0x0e,0xa7,0x5d,0x80,0xe9,0x67,0x78,
  117. 0xed,0xf1,0x24,0x76,0x9b,0x46,0xc7,0x06,
  118. 0x1b,0xd6,0x78,0x3d,0xf1,0xe5,0x0f,0x6c,
  119. 0xd1,0xfa,0x1a,0xbe,0xaf,0xe8,0x25,0x61,
  120. 0x80
  121. }, {
  122. 0x43,0xba,0x28,0xf4,0x30,0xcd,0xff,0x45,
  123. 0x6a,0xe5,0x31,0x54,0x5f,0x7e,0xcd,0x0a,
  124. 0xc8,0x34,0xa5,0x5d,0x93,0x58,0xc0,0x37,
  125. 0x2b,0xfa,0x0c,0x6c,0x67,0x98,0xc0,0x86,
  126. 0x6a,0xea,0x01,0xeb,0x00,0x74,0x28,0x02,
  127. 0xb8,0x43,0x8e,0xa4,0xcb,0x82,0x16,0x9c,
  128. 0x23,0x51,0x60,0x62,0x7b,0x4c,0x3a,0x94,
  129. 0x80
  130. }, {
  131. 0xdc,0xea,0x9e,0x78,0xf3,0x5a,0x1b,0xf3,
  132. 0x49,0x9a,0x83,0x1b,0x10,0xb8,0x6c,0x90,
  133. 0xaa,0xc0,0x1c,0xd8,0x4b,0x67,0xa0,0x10,
  134. 0x9b,0x55,0xa3,0x6e,0x93,0x28,0xb1,0xe3,
  135. 0x65,0xfc,0xe1,0x61,0xd7,0x1c,0xe7,0x13,
  136. 0x1a,0x54,0x3e,0xa4,0xcb,0x5f,0x7e,0x9f,
  137. 0x1d,0x8b,0x00,0x69,0x64,0x47,0x00,0x14,
  138. 0x00
  139. }, {
  140. 0x3b,0xa1,0x6d,0xa0,0xc6,0xf2,0xcc,0x1f,
  141. 0x30,0x18,0x77,0x40,0x75,0x6f,0x5e,0x79,
  142. 0x8d,0x6b,0xc5,0xfc,0x01,0x5d,0x7c,0x63,
  143. 0xcc,0x95,0x10,0xee,0x3f,0xd4,0x4a,0xdc,
  144. 0x24,0xd8,0xe9,0x68,0xb6,0xe4,0x6e,0x6f,
  145. 0x94,0xd1,0x9b,0x94,0x53,0x61,0x72,0x6b,
  146. 0xd7,0x5e,0x14,0x9e,0xf0,0x98,0x17,0xf5,
  147. 0x80
  148. }};
  149. const uint8_t ed448_eddsa_message[][12] = {{
  150. 0
  151. }, {
  152. 0x03
  153. }, {
  154. 0x0c,0x3e,0x54,0x40,0x74,0xec,0x63,0xb0,
  155. 0x26,0x5e,0x0c
  156. }, {
  157. 0x64,0xa6,0x5f,0x3c,0xde,0xdc,0xdd,0x66,
  158. 0x81,0x1e,0x29,0x15
  159. }};
  160. /* TODO: prehashed test vectors, once spec is fixed */
  161. template<> const bool Tests<Ed448Goldilocks>::eddsa_prehashed[] = {
  162. false,
  163. false,
  164. false,
  165. false,
  166. false
  167. };
  168. const uint8_t ed448_eddsa_context[][3] = {{
  169. 0x66,0x6f,0x6f
  170. }};
  171. const uint8_t ed448_eddsa_sig[][114] = {{
  172. 0x53,0x3a,0x37,0xf6,0xbb,0xe4,0x57,0x25,
  173. 0x1f,0x02,0x3c,0x0d,0x88,0xf9,0x76,0xae,
  174. 0x2d,0xfb,0x50,0x4a,0x84,0x3e,0x34,0xd2,
  175. 0x07,0x4f,0xd8,0x23,0xd4,0x1a,0x59,0x1f,
  176. 0x2b,0x23,0x3f,0x03,0x4f,0x62,0x82,0x81,
  177. 0xf2,0xfd,0x7a,0x22,0xdd,0xd4,0x7d,0x78,
  178. 0x28,0xc5,0x9b,0xd0,0xa2,0x1b,0xfd,0x39,
  179. 0x80,0xff,0x0d,0x20,0x28,0xd4,0xb1,0x8a,
  180. 0x9d,0xf6,0x3e,0x00,0x6c,0x5d,0x1c,0x2d,
  181. 0x34,0x5b,0x92,0x5d,0x8d,0xc0,0x0b,0x41,
  182. 0x04,0x85,0x2d,0xb9,0x9a,0xc5,0xc7,0xcd,
  183. 0xda,0x85,0x30,0xa1,0x13,0xa0,0xf4,0xdb,
  184. 0xb6,0x11,0x49,0xf0,0x5a,0x73,0x63,0x26,
  185. 0x8c,0x71,0xd9,0x58,0x08,0xff,0x2e,0x65,
  186. 0x26,0x00
  187. }, {
  188. 0x26,0xb8,0xf9,0x17,0x27,0xbd,0x62,0x89,
  189. 0x7a,0xf1,0x5e,0x41,0xeb,0x43,0xc3,0x77,
  190. 0xef,0xb9,0xc6,0x10,0xd4,0x8f,0x23,0x35,
  191. 0xcb,0x0b,0xd0,0x08,0x78,0x10,0xf4,0x35,
  192. 0x25,0x41,0xb1,0x43,0xc4,0xb9,0x81,0xb7,
  193. 0xe1,0x8f,0x62,0xde,0x8c,0xcd,0xf6,0x33,
  194. 0xfc,0x1b,0xf0,0x37,0xab,0x7c,0xd7,0x79,
  195. 0x80,0x5e,0x0d,0xbc,0xc0,0xaa,0xe1,0xcb,
  196. 0xce,0xe1,0xaf,0xb2,0xe0,0x27,0xdf,0x36,
  197. 0xbc,0x04,0xdc,0xec,0xbf,0x15,0x43,0x36,
  198. 0xc1,0x9f,0x0a,0xf7,0xe0,0xa6,0x47,0x29,
  199. 0x05,0xe7,0x99,0xf1,0x95,0x3d,0x2a,0x0f,
  200. 0xf3,0x34,0x8a,0xb2,0x1a,0xa4,0xad,0xaf,
  201. 0xd1,0xd2,0x34,0x44,0x1c,0xf8,0x07,0xc0,
  202. 0x3a,0x00
  203. }, {
  204. 0x1f,0x0a,0x88,0x88,0xce,0x25,0xe8,0xd4,
  205. 0x58,0xa2,0x11,0x30,0x87,0x9b,0x84,0x0a,
  206. 0x90,0x89,0xd9,0x99,0xaa,0xba,0x03,0x9e,
  207. 0xaf,0x3e,0x3a,0xfa,0x09,0x0a,0x09,0xd3,
  208. 0x89,0xdb,0xa8,0x2c,0x4f,0xf2,0xae,0x8a,
  209. 0xc5,0xcd,0xfb,0x7c,0x55,0xe9,0x4d,0x5d,
  210. 0x96,0x1a,0x29,0xfe,0x01,0x09,0x94,0x1e,
  211. 0x00,0xb8,0xdb,0xde,0xea,0x6d,0x3b,0x05,
  212. 0x10,0x68,0xdf,0x72,0x54,0xc0,0xcd,0xc1,
  213. 0x29,0xcb,0xe6,0x2d,0xb2,0xdc,0x95,0x7d,
  214. 0xbb,0x47,0xb5,0x1f,0xd3,0xf2,0x13,0xfb,
  215. 0x86,0x98,0xf0,0x64,0x77,0x42,0x50,0xa5,
  216. 0x02,0x89,0x61,0xc9,0xbf,0x8f,0xfd,0x97,
  217. 0x3f,0xe5,0xd5,0xc2,0x06,0x49,0x2b,0x14,
  218. 0x0e,0x00
  219. }, {
  220. 0x7e,0xee,0xab,0x7c,0x4e,0x50,0xfb,0x79,
  221. 0x9b,0x41,0x8e,0xe5,0xe3,0x19,0x7f,0xf6,
  222. 0xbf,0x15,0xd4,0x3a,0x14,0xc3,0x43,0x89,
  223. 0xb5,0x9d,0xd1,0xa7,0xb1,0xb8,0x5b,0x4a,
  224. 0xe9,0x04,0x38,0xac,0xa6,0x34,0xbe,0xa4,
  225. 0x5e,0x3a,0x26,0x95,0xf1,0x27,0x0f,0x07,
  226. 0xfd,0xcd,0xf7,0xc6,0x2b,0x8e,0xfe,0xaf,
  227. 0x00,0xb4,0x5c,0x2c,0x96,0xba,0x45,0x7e,
  228. 0xb1,0xa8,0xbf,0x07,0x5a,0x3d,0xb2,0x8e,
  229. 0x5c,0x24,0xf6,0xb9,0x23,0xed,0x4a,0xd7,
  230. 0x47,0xc3,0xc9,0xe0,0x3c,0x70,0x79,0xef,
  231. 0xb8,0x7c,0xb1,0x10,0xd3,0xa9,0x98,0x61,
  232. 0xe7,0x20,0x03,0xcb,0xae,0x6d,0x6b,0x8b,
  233. 0x82,0x7e,0x4e,0x6c,0x14,0x30,0x64,0xff,
  234. 0x3c,0x00
  235. }, {
  236. 0xd4,0xf8,0xf6,0x13,0x17,0x70,0xdd,0x46,
  237. 0xf4,0x08,0x67,0xd6,0xfd,0x5d,0x50,0x55,
  238. 0xde,0x43,0x54,0x1f,0x8c,0x5e,0x35,0xab,
  239. 0xbc,0xd0,0x01,0xb3,0x2a,0x89,0xf7,0xd2,
  240. 0x15,0x1f,0x76,0x47,0xf1,0x1d,0x8c,0xa2,
  241. 0xae,0x27,0x9f,0xb8,0x42,0xd6,0x07,0x21,
  242. 0x7f,0xce,0x6e,0x04,0x2f,0x68,0x15,0xea,
  243. 0x00,0x0c,0x85,0x74,0x1d,0xe5,0xc8,0xda,
  244. 0x11,0x44,0xa6,0xa1,0xab,0xa7,0xf9,0x6d,
  245. 0xe4,0x25,0x05,0xd7,0xa7,0x29,0x85,0x24,
  246. 0xfd,0xa5,0x38,0xfc,0xcb,0xbb,0x75,0x4f,
  247. 0x57,0x8c,0x1c,0xad,0x10,0xd5,0x4d,0x0d,
  248. 0x54,0x28,0x40,0x7e,0x85,0xdc,0xbc,0x98,
  249. 0xa4,0x91,0x55,0xc1,0x37,0x64,0xe6,0x6c,
  250. 0x3c,0x00
  251. }};
  252. template<> const Block Tests<Ed448Goldilocks>::eddsa_sk[] = {
  253. Block(ed448_eddsa_sk[0],57),
  254. Block(ed448_eddsa_sk[1],57),
  255. Block(ed448_eddsa_sk[1],57),
  256. Block(ed448_eddsa_sk[2],57),
  257. Block(ed448_eddsa_sk[3],57),
  258. Block(NULL,0)
  259. };
  260. template<> const Block Tests<Ed448Goldilocks>::eddsa_pk[] = {
  261. Block(ed448_eddsa_pk[0],57),
  262. Block(ed448_eddsa_pk[1],57),
  263. Block(ed448_eddsa_pk[1],57),
  264. Block(ed448_eddsa_pk[2],57),
  265. Block(ed448_eddsa_pk[3],57)
  266. };
  267. template<> const Block Tests<Ed448Goldilocks>::eddsa_message[] = {
  268. Block(ed448_eddsa_message[0],0),
  269. Block(ed448_eddsa_message[1],1),
  270. Block(ed448_eddsa_message[1],1),
  271. Block(ed448_eddsa_message[2],11),
  272. Block(ed448_eddsa_message[3],12)
  273. };
  274. template<> const Block Tests<Ed448Goldilocks>::eddsa_context[] = {
  275. Block(NULL,0),
  276. Block(NULL,0),
  277. Block(ed448_eddsa_context[0],3),
  278. Block(NULL,0),
  279. Block(NULL,0)
  280. };
  281. template<> const Block Tests<Ed448Goldilocks>::eddsa_sig[] = {
  282. Block(ed448_eddsa_sig[0],114),
  283. Block(ed448_eddsa_sig[1],114),
  284. Block(ed448_eddsa_sig[4],114),
  285. Block(ed448_eddsa_sig[2],114),
  286. Block(ed448_eddsa_sig[3],114)
  287. };
  288. const uint8_t ed25519_eddsa_sk[][32] = {{
  289. 0x9d,0x61,0xb1,0x9d,0xef,0xfd,0x5a,0x60,
  290. 0xba,0x84,0x4a,0xf4,0x92,0xec,0x2c,0xc4,
  291. 0x44,0x49,0xc5,0x69,0x7b,0x32,0x69,0x19,
  292. 0x70,0x3b,0xac,0x03,0x1c,0xae,0x7f,0x60
  293. }, {
  294. 0x4c,0xcd,0x08,0x9b,0x28,0xff,0x96,0xda,
  295. 0x9d,0xb6,0xc3,0x46,0xec,0x11,0x4e,0x0f,
  296. 0x5b,0x8a,0x31,0x9f,0x35,0xab,0xa6,0x24,
  297. 0xda,0x8c,0xf6,0xed,0x4f,0xb8,0xa6,0xfb
  298. }, {
  299. 0xc5,0xaa,0x8d,0xf4,0x3f,0x9f,0x83,0x7b,
  300. 0xed,0xb7,0x44,0x2f,0x31,0xdc,0xb7,0xb1,
  301. 0x66,0xd3,0x85,0x35,0x07,0x6f,0x09,0x4b,
  302. 0x85,0xce,0x3a,0x2e,0x0b,0x44,0x58,0xf7
  303. }, {
  304. 0x83,0x3f,0xe6,0x24,0x09,0x23,0x7b,0x9d,
  305. 0x62,0xec,0x77,0x58,0x75,0x20,0x91,0x1e,
  306. 0x9a,0x75,0x9c,0xec,0x1d,0x19,0x75,0x5b,
  307. 0x7d,0xa9,0x01,0xb9,0x6d,0xca,0x3d,0x42
  308. }};
  309. const uint8_t ed25519_eddsa_pk[][32] = {{
  310. 0xd7,0x5a,0x98,0x01,0x82,0xb1,0x0a,0xb7,
  311. 0xd5,0x4b,0xfe,0xd3,0xc9,0x64,0x07,0x3a,
  312. 0x0e,0xe1,0x72,0xf3,0xda,0xa6,0x23,0x25,
  313. 0xaf,0x02,0x1a,0x68,0xf7,0x07,0x51,0x1a
  314. }, {
  315. 0x3d,0x40,0x17,0xc3,0xe8,0x43,0x89,0x5a,
  316. 0x92,0xb7,0x0a,0xa7,0x4d,0x1b,0x7e,0xbc,
  317. 0x9c,0x98,0x2c,0xcf,0x2e,0xc4,0x96,0x8c,
  318. 0xc0,0xcd,0x55,0xf1,0x2a,0xf4,0x66,0x0c
  319. }, {
  320. 0xfc,0x51,0xcd,0x8e,0x62,0x18,0xa1,0xa3,
  321. 0x8d,0xa4,0x7e,0xd0,0x02,0x30,0xf0,0x58,
  322. 0x08,0x16,0xed,0x13,0xba,0x33,0x03,0xac,
  323. 0x5d,0xeb,0x91,0x15,0x48,0x90,0x80,0x25
  324. }, {
  325. 0xec,0x17,0x2b,0x93,0xad,0x5e,0x56,0x3b,
  326. 0xf4,0x93,0x2c,0x70,0xe1,0x24,0x50,0x34,
  327. 0xc3,0x54,0x67,0xef,0x2e,0xfd,0x4d,0x64,
  328. 0xeb,0xf8,0x19,0x68,0x34,0x67,0xe2,0xbf
  329. }};
  330. const uint8_t ed25519_eddsa_message[][3] = {{
  331. 0
  332. }, {
  333. 0x72
  334. }, {
  335. 0xaf,0x82
  336. }, {
  337. 0x61,0x62,0x63
  338. }};
  339. const uint8_t ed25519_eddsa_sig[][64] = {{
  340. 0xe5,0x56,0x43,0x00,0xc3,0x60,0xac,0x72,
  341. 0x90,0x86,0xe2,0xcc,0x80,0x6e,0x82,0x8a,
  342. 0x84,0x87,0x7f,0x1e,0xb8,0xe5,0xd9,0x74,
  343. 0xd8,0x73,0xe0,0x65,0x22,0x49,0x01,0x55,
  344. 0x5f,0xb8,0x82,0x15,0x90,0xa3,0x3b,0xac,
  345. 0xc6,0x1e,0x39,0x70,0x1c,0xf9,0xb4,0x6b,
  346. 0xd2,0x5b,0xf5,0xf0,0x59,0x5b,0xbe,0x24,
  347. 0x65,0x51,0x41,0x43,0x8e,0x7a,0x10,0x0b
  348. } , {
  349. 0x92,0xa0,0x09,0xa9,0xf0,0xd4,0xca,0xb8,
  350. 0x72,0x0e,0x82,0x0b,0x5f,0x64,0x25,0x40,
  351. 0xa2,0xb2,0x7b,0x54,0x16,0x50,0x3f,0x8f,
  352. 0xb3,0x76,0x22,0x23,0xeb,0xdb,0x69,0xda,
  353. 0x08,0x5a,0xc1,0xe4,0x3e,0x15,0x99,0x6e,
  354. 0x45,0x8f,0x36,0x13,0xd0,0xf1,0x1d,0x8c,
  355. 0x38,0x7b,0x2e,0xae,0xb4,0x30,0x2a,0xee,
  356. 0xb0,0x0d,0x29,0x16,0x12,0xbb,0x0c,0x00
  357. }, {
  358. 0x62,0x91,0xd6,0x57,0xde,0xec,0x24,0x02,
  359. 0x48,0x27,0xe6,0x9c,0x3a,0xbe,0x01,0xa3,
  360. 0x0c,0xe5,0x48,0xa2,0x84,0x74,0x3a,0x44,
  361. 0x5e,0x36,0x80,0xd7,0xdb,0x5a,0xc3,0xac,
  362. 0x18,0xff,0x9b,0x53,0x8d,0x16,0xf2,0x90,
  363. 0xae,0x67,0xf7,0x60,0x98,0x4d,0xc6,0x59,
  364. 0x4a,0x7c,0x15,0xe9,0x71,0x6e,0xd2,0x8d,
  365. 0xc0,0x27,0xbe,0xce,0xea,0x1e,0xc4,0x0a
  366. }, {
  367. 0xdc,0x2a,0x44,0x59,0xe7,0x36,0x96,0x33,
  368. 0xa5,0x2b,0x1b,0xf2,0x77,0x83,0x9a,0x00,
  369. 0x20,0x10,0x09,0xa3,0xef,0xbf,0x3e,0xcb,
  370. 0x69,0xbe,0xa2,0x18,0x6c,0x26,0xb5,0x89,
  371. 0x09,0x35,0x1f,0xc9,0xac,0x90,0xb3,0xec,
  372. 0xfd,0xfb,0xc7,0xc6,0x64,0x31,0xe0,0x30,
  373. 0x3d,0xca,0x17,0x9c,0x13,0x8a,0xc1,0x7a,
  374. 0xd9,0xbe,0xf1,0x17,0x73,0x31,0xa7,0x04
  375. }};
  376. template<> const bool Tests<IsoEd25519>::eddsa_prehashed[] = {
  377. false,
  378. false,
  379. false,
  380. true
  381. };
  382. template<> const Block Tests<IsoEd25519>::eddsa_sk[] = {
  383. Block(ed25519_eddsa_sk[0],32),
  384. Block(ed25519_eddsa_sk[1],32),
  385. Block(ed25519_eddsa_sk[2],32),
  386. Block(ed25519_eddsa_sk[3],32),
  387. Block(NULL,0)
  388. };
  389. template<> const Block Tests<IsoEd25519>::eddsa_pk[] = {
  390. Block(ed25519_eddsa_pk[0],32),
  391. Block(ed25519_eddsa_pk[1],32),
  392. Block(ed25519_eddsa_pk[2],32),
  393. Block(ed25519_eddsa_pk[3],32)
  394. };
  395. template<> const Block Tests<IsoEd25519>::eddsa_context[] = {
  396. Block(NULL,0),
  397. Block(NULL,0),
  398. Block(NULL,0),
  399. Block(NULL,0)
  400. };
  401. template<> const Block Tests<IsoEd25519>::eddsa_message[] = {
  402. Block(ed25519_eddsa_message[0],0),
  403. Block(ed25519_eddsa_message[1],1),
  404. Block(ed25519_eddsa_message[2],2),
  405. Block(ed25519_eddsa_message[3],3)
  406. };
  407. template<> const Block Tests<IsoEd25519>::eddsa_sig[] = {
  408. Block(ed25519_eddsa_sig[0],64),
  409. Block(ed25519_eddsa_sig[1],64),
  410. Block(ed25519_eddsa_sig[2],64),
  411. Block(ed25519_eddsa_sig[3],64)
  412. };