1use crate::{Array, PrivateKeyExt};
2cfg_if::cfg_if! {
3 if #[cfg(feature = "std")] {
4 use crate::BatchVerifier;
5 use std::borrow::{Cow, ToOwned};
6 use rand::RngCore;
7 } else {
8 use alloc::borrow::ToOwned;
9 }
10}
11use bytes::{Buf, BufMut};
12use commonware_codec::{Error as CodecError, FixedSize, Read, ReadExt, Write};
13use commonware_utils::{hex, union_unique, Span};
14use core::{
15 fmt::{Debug, Display},
16 hash::{Hash, Hasher},
17 ops::Deref,
18};
19use ed25519_consensus::{self, VerificationKey};
20use rand::{CryptoRng, Rng};
21use zeroize::{Zeroize, ZeroizeOnDrop};
22
23const CURVE_NAME: &str = "ed25519";
24const PRIVATE_KEY_LENGTH: usize = 32;
25const PUBLIC_KEY_LENGTH: usize = 32;
26const SIGNATURE_LENGTH: usize = 64;
27
28#[derive(Clone, Zeroize, ZeroizeOnDrop)]
30pub struct PrivateKey {
31 raw: [u8; PRIVATE_KEY_LENGTH],
32 key: ed25519_consensus::SigningKey,
33}
34
35impl crate::PrivateKey for PrivateKey {}
36
37impl crate::Signer for PrivateKey {
38 type Signature = Signature;
39 type PublicKey = PublicKey;
40
41 fn sign(&self, namespace: Option<&[u8]>, msg: &[u8]) -> Self::Signature {
42 let sig = match namespace {
43 Some(namespace) => self.key.sign(&union_unique(namespace, msg)),
44 None => self.key.sign(msg),
45 };
46 Signature::from(sig)
47 }
48
49 fn public_key(&self) -> Self::PublicKey {
50 let raw = self.key.verification_key().to_bytes();
51 Self::PublicKey {
52 raw,
53 key: self.key.verification_key().to_owned(),
54 }
55 }
56}
57
58impl PrivateKeyExt for PrivateKey {
59 fn from_rng<R: Rng + CryptoRng>(rng: &mut R) -> Self {
60 let key = ed25519_consensus::SigningKey::new(rng);
61 let raw = key.to_bytes();
62 Self { raw, key }
63 }
64}
65
66impl Write for PrivateKey {
67 fn write(&self, buf: &mut impl BufMut) {
68 self.raw.write(buf);
69 }
70}
71
72impl Read for PrivateKey {
73 type Cfg = ();
74
75 fn read_cfg(buf: &mut impl Buf, _: &()) -> Result<Self, CodecError> {
76 let raw = <[u8; Self::SIZE]>::read(buf)?;
77 let key = ed25519_consensus::SigningKey::from(raw);
78 Ok(Self { raw, key })
79 }
80}
81
82impl FixedSize for PrivateKey {
83 const SIZE: usize = PRIVATE_KEY_LENGTH;
84}
85
86impl Span for PrivateKey {}
87
88impl Array for PrivateKey {}
89
90impl Eq for PrivateKey {}
91
92impl Hash for PrivateKey {
93 fn hash<H: Hasher>(&self, state: &mut H) {
94 self.raw.hash(state);
95 }
96}
97
98impl PartialEq for PrivateKey {
99 fn eq(&self, other: &Self) -> bool {
100 self.raw == other.raw
101 }
102}
103
104impl Ord for PrivateKey {
105 fn cmp(&self, other: &Self) -> core::cmp::Ordering {
106 self.raw.cmp(&other.raw)
107 }
108}
109
110impl PartialOrd for PrivateKey {
111 fn partial_cmp(&self, other: &Self) -> Option<core::cmp::Ordering> {
112 Some(self.cmp(other))
113 }
114}
115
116impl AsRef<[u8]> for PrivateKey {
117 fn as_ref(&self) -> &[u8] {
118 &self.raw
119 }
120}
121
122impl Deref for PrivateKey {
123 type Target = [u8];
124 fn deref(&self) -> &[u8] {
125 &self.raw
126 }
127}
128
129impl From<ed25519_consensus::SigningKey> for PrivateKey {
130 fn from(key: ed25519_consensus::SigningKey) -> Self {
131 let raw = key.to_bytes();
132 Self { raw, key }
133 }
134}
135
136impl Debug for PrivateKey {
137 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
138 write!(f, "{}", hex(&self.raw))
139 }
140}
141
142impl Display for PrivateKey {
143 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
144 write!(f, "{}", hex(&self.raw))
145 }
146}
147
148#[derive(Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
150pub struct PublicKey {
151 raw: [u8; PUBLIC_KEY_LENGTH],
152 key: ed25519_consensus::VerificationKey,
153}
154
155impl From<PrivateKey> for PublicKey {
156 fn from(value: PrivateKey) -> Self {
157 let raw = value.key.verification_key().to_bytes();
158 Self {
159 raw,
160 key: value.key.verification_key(),
161 }
162 }
163}
164
165impl crate::PublicKey for PublicKey {}
166
167impl crate::Verifier for PublicKey {
168 type Signature = Signature;
169
170 fn verify(&self, namespace: Option<&[u8]>, msg: &[u8], sig: &Self::Signature) -> bool {
171 match namespace {
172 Some(namespace) => {
173 let payload = union_unique(namespace, msg);
174 self.key.verify(&sig.signature, &payload).is_ok()
175 }
176 None => self.key.verify(&sig.signature, msg).is_ok(),
177 }
178 }
179}
180
181impl Write for PublicKey {
182 fn write(&self, buf: &mut impl BufMut) {
183 self.raw.write(buf);
184 }
185}
186
187impl Read for PublicKey {
188 type Cfg = ();
189
190 fn read_cfg(buf: &mut impl Buf, _: &()) -> Result<Self, CodecError> {
191 let raw = <[u8; Self::SIZE]>::read(buf)?;
192 let result = VerificationKey::try_from(raw);
193 #[cfg(feature = "std")]
194 let key = result.map_err(|e| CodecError::Wrapped(CURVE_NAME, e.into()))?;
195 #[cfg(not(feature = "std"))]
196 let key = result
197 .map_err(|e| CodecError::Wrapped(CURVE_NAME, alloc::format!("{:?}", e).into()))?;
198
199 Ok(Self { raw, key })
200 }
201}
202
203impl FixedSize for PublicKey {
204 const SIZE: usize = PUBLIC_KEY_LENGTH;
205}
206
207impl Span for PublicKey {}
208
209impl Array for PublicKey {}
210
211impl AsRef<[u8]> for PublicKey {
212 fn as_ref(&self) -> &[u8] {
213 &self.raw
214 }
215}
216
217impl Deref for PublicKey {
218 type Target = [u8];
219 fn deref(&self) -> &[u8] {
220 &self.raw
221 }
222}
223
224impl From<VerificationKey> for PublicKey {
225 fn from(key: VerificationKey) -> Self {
226 let raw = key.to_bytes();
227 Self { raw, key }
228 }
229}
230
231impl Debug for PublicKey {
232 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
233 write!(f, "{}", hex(&self.raw))
234 }
235}
236
237impl Display for PublicKey {
238 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
239 write!(f, "{}", hex(&self.raw))
240 }
241}
242
243#[derive(Clone, Eq, PartialEq)]
245pub struct Signature {
246 raw: [u8; SIGNATURE_LENGTH],
247 signature: ed25519_consensus::Signature,
248}
249
250impl crate::Signature for Signature {}
251
252impl Write for Signature {
253 fn write(&self, buf: &mut impl BufMut) {
254 self.raw.write(buf);
255 }
256}
257
258impl Read for Signature {
259 type Cfg = ();
260
261 fn read_cfg(buf: &mut impl Buf, _: &()) -> Result<Self, CodecError> {
262 let raw = <[u8; Self::SIZE]>::read(buf)?;
263 let signature = ed25519_consensus::Signature::from(raw);
264 Ok(Self { raw, signature })
265 }
266}
267
268impl FixedSize for Signature {
269 const SIZE: usize = SIGNATURE_LENGTH;
270}
271
272impl Span for Signature {}
273
274impl Array for Signature {}
275
276impl Hash for Signature {
277 fn hash<H: Hasher>(&self, state: &mut H) {
278 self.raw.hash(state);
279 }
280}
281
282impl Ord for Signature {
283 fn cmp(&self, other: &Self) -> core::cmp::Ordering {
284 self.raw.cmp(&other.raw)
285 }
286}
287
288impl PartialOrd for Signature {
289 fn partial_cmp(&self, other: &Self) -> Option<core::cmp::Ordering> {
290 Some(self.cmp(other))
291 }
292}
293
294impl AsRef<[u8]> for Signature {
295 fn as_ref(&self) -> &[u8] {
296 &self.raw
297 }
298}
299
300impl Deref for Signature {
301 type Target = [u8];
302 fn deref(&self) -> &[u8] {
303 &self.raw
304 }
305}
306
307impl From<ed25519_consensus::Signature> for Signature {
308 fn from(value: ed25519_consensus::Signature) -> Self {
309 let raw = value.to_bytes();
310 Self {
311 raw,
312 signature: value,
313 }
314 }
315}
316
317impl Debug for Signature {
318 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
319 write!(f, "{}", hex(&self.raw))
320 }
321}
322
323impl Display for Signature {
324 fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
325 write!(f, "{}", hex(&self.raw))
326 }
327}
328
329#[cfg(feature = "std")]
331pub struct Batch {
332 verifier: ed25519_consensus::batch::Verifier,
333}
334
335#[cfg(feature = "std")]
336impl BatchVerifier<PublicKey> for Batch {
337 fn new() -> Self {
338 Batch {
339 verifier: ed25519_consensus::batch::Verifier::new(),
340 }
341 }
342
343 fn add(
344 &mut self,
345 namespace: Option<&[u8]>,
346 message: &[u8],
347 public_key: &PublicKey,
348 signature: &Signature,
349 ) -> bool {
350 let payload = match namespace {
351 Some(namespace) => Cow::Owned(union_unique(namespace, message)),
352 None => Cow::Borrowed(message),
353 };
354 let item = ed25519_consensus::batch::Item::from((
355 public_key.key.into(),
356 signature.signature,
357 &payload,
358 ));
359 self.verifier.queue(item);
360 true
361 }
362
363 fn verify<R: RngCore + CryptoRng>(self, rng: &mut R) -> bool {
364 self.verifier.verify(rng).is_ok()
365 }
366}
367
368#[cfg(test)]
370mod tests {
371 use super::*;
372 use crate::{ed25519, Signer as _, Verifier as _};
373 use commonware_codec::{DecodeExt, Encode};
374 use rand::rngs::OsRng;
375
376 fn test_sign_and_verify(
377 private_key: PrivateKey,
378 public_key: PublicKey,
379 message: &[u8],
380 signature: Signature,
381 ) {
382 let computed_signature = private_key.sign(None, message);
383 assert_eq!(computed_signature, signature);
384 assert!(public_key.verify(None, message, &computed_signature));
385 }
386
387 fn parse_private_key(private_key: &str) -> PrivateKey {
388 PrivateKey::decode(
389 commonware_utils::from_hex_formatted(private_key)
390 .unwrap()
391 .as_ref(),
392 )
393 .unwrap()
394 }
395
396 fn parse_public_key(public_key: &str) -> PublicKey {
397 PublicKey::decode(
398 commonware_utils::from_hex_formatted(public_key)
399 .unwrap()
400 .as_ref(),
401 )
402 .unwrap()
403 }
404
405 fn parse_signature(signature: &str) -> Signature {
406 Signature::decode(
407 commonware_utils::from_hex_formatted(signature)
408 .unwrap()
409 .as_ref(),
410 )
411 .unwrap()
412 }
413
414 fn vector_1() -> (PrivateKey, PublicKey, Vec<u8>, Signature) {
415 (
416 parse_private_key(
418 "
419 9d61b19deffd5a60ba844af492ec2cc4
420 4449c5697b326919703bac031cae7f60
421 ",
422 ),
423 parse_public_key(
425 "
426 d75a980182b10ab7d54bfed3c964073a
427 0ee172f3daa62325af021a68f707511a
428 ",
429 ),
430 b"".to_vec(),
432 parse_signature(
434 "
435 e5564300c360ac729086e2cc806e828a
436 84877f1eb8e5d974d873e06522490155
437 5fb8821590a33bacc61e39701cf9b46b
438 d25bf5f0595bbe24655141438e7a100b
439 ",
440 ),
441 )
442 }
443
444 fn vector_2() -> (PrivateKey, PublicKey, Vec<u8>, Signature) {
445 (
446 parse_private_key(
448 "
449 4ccd089b28ff96da9db6c346ec114e0f
450 5b8a319f35aba624da8cf6ed4fb8a6fb
451 ",
452 ),
453 parse_public_key(
455 "
456 3d4017c3e843895a92b70aa74d1b7ebc
457 9c982ccf2ec4968cc0cd55f12af4660c
458 ",
459 ),
460 [0x72].to_vec(),
462 parse_signature(
464 "
465 92a009a9f0d4cab8720e820b5f642540
466 a2b27b5416503f8fb3762223ebdb69da
467 085ac1e43e15996e458f3613d0f11d8c
468 387b2eaeb4302aeeb00d291612bb0c00
469 ",
470 ),
471 )
472 }
473
474 #[test]
475 fn test_codec_private_key() {
476 let private_key = parse_private_key(
477 "
478 9d61b19deffd5a60ba844af492ec2cc4
479 4449c5697b326919703bac031cae7f60
480 ",
481 );
482 let encoded = private_key.encode();
483 assert_eq!(encoded.len(), PRIVATE_KEY_LENGTH);
484 let decoded = PrivateKey::decode(encoded).unwrap();
485 assert_eq!(private_key, decoded);
486 }
487
488 #[test]
489 fn test_codec_public_key() {
490 let public_key = parse_public_key(
491 "
492 d75a980182b10ab7d54bfed3c964073a
493 0ee172f3daa62325af021a68f707511a
494 ",
495 );
496 let encoded = public_key.encode();
497 assert_eq!(encoded.len(), PUBLIC_KEY_LENGTH);
498 let decoded = PublicKey::decode(encoded).unwrap();
499 assert_eq!(public_key, decoded);
500 }
501
502 #[test]
503 fn test_codec_signature() {
504 let signature = parse_signature(
505 "
506 e5564300c360ac729086e2cc806e828a
507 84877f1eb8e5d974d873e06522490155
508 5fb8821590a33bacc61e39701cf9b46b
509 d25bf5f0595bbe24655141438e7a100b
510 ",
511 );
512 let encoded = signature.encode();
513 assert_eq!(encoded.len(), SIGNATURE_LENGTH);
514 let decoded = Signature::decode(encoded).unwrap();
515 assert_eq!(signature, decoded);
516 }
517
518 #[test]
519 fn rfc8032_test_vector_1() {
520 let (private_key, public_key, message, signature) = vector_1();
521 test_sign_and_verify(private_key, public_key, &message, signature)
522 }
523
524 #[test]
526 #[should_panic]
527 fn bad_signature() {
528 let (private_key, public_key, message, _) = vector_1();
529 let private_key_2 = PrivateKey::from_rng(&mut OsRng);
530 let bad_signature = private_key_2.sign(None, message.as_ref());
531 test_sign_and_verify(private_key, public_key, &message, bad_signature);
532 }
533
534 #[test]
536 #[should_panic]
537 fn different_message() {
538 let (private_key, public_key, _, signature) = vector_1();
539 let different_message = b"this is a different message".to_vec();
540 test_sign_and_verify(private_key, public_key, &different_message, signature);
541 }
542
543 #[test]
544 fn rfc8032_test_vector_2() {
545 let (private_key, public_key, message, signature) = vector_2();
546 test_sign_and_verify(private_key, public_key, &message, signature)
547 }
548
549 #[test]
550 fn rfc8032_test_vector_3() {
551 let private_key = parse_private_key(
552 "
553 c5aa8df43f9f837bedb7442f31dcb7b1
554 66d38535076f094b85ce3a2e0b4458f7
555 ",
556 );
557 let public_key = parse_public_key(
558 "
559 fc51cd8e6218a1a38da47ed00230f058
560 0816ed13ba3303ac5deb911548908025
561 ",
562 );
563 let message: [u8; 2] = [0xaf, 0x82];
564 let signature = parse_signature(
565 "
566 6291d657deec24024827e69c3abe01a3
567 0ce548a284743a445e3680d7db5ac3ac
568 18ff9b538d16f290ae67f760984dc659
569 4a7c15e9716ed28dc027beceea1ec40a
570 ",
571 );
572 test_sign_and_verify(private_key, public_key, &message, signature)
573 }
574
575 #[test]
576 fn rfc8032_test_vector_1024() {
577 let private_key = parse_private_key(
578 "
579 f5e5767cf153319517630f226876b86c
580 8160cc583bc013744c6bf255f5cc0ee5
581 ",
582 );
583 let public_key = parse_public_key(
584 "
585 278117fc144c72340f67d0f2316e8386
586 ceffbf2b2428c9c51fef7c597f1d426e
587 ",
588 );
589 let message = commonware_utils::from_hex_formatted(
590 "
591 08b8b2b733424243760fe426a4b54908
592 632110a66c2f6591eabd3345e3e4eb98
593 fa6e264bf09efe12ee50f8f54e9f77b1
594 e355f6c50544e23fb1433ddf73be84d8
595 79de7c0046dc4996d9e773f4bc9efe57
596 38829adb26c81b37c93a1b270b20329d
597 658675fc6ea534e0810a4432826bf58c
598 941efb65d57a338bbd2e26640f89ffbc
599 1a858efcb8550ee3a5e1998bd177e93a
600 7363c344fe6b199ee5d02e82d522c4fe
601 ba15452f80288a821a579116ec6dad2b
602 3b310da903401aa62100ab5d1a36553e
603 06203b33890cc9b832f79ef80560ccb9
604 a39ce767967ed628c6ad573cb116dbef
605 efd75499da96bd68a8a97b928a8bbc10
606 3b6621fcde2beca1231d206be6cd9ec7
607 aff6f6c94fcd7204ed3455c68c83f4a4
608 1da4af2b74ef5c53f1d8ac70bdcb7ed1
609 85ce81bd84359d44254d95629e9855a9
610 4a7c1958d1f8ada5d0532ed8a5aa3fb2
611 d17ba70eb6248e594e1a2297acbbb39d
612 502f1a8c6eb6f1ce22b3de1a1f40cc24
613 554119a831a9aad6079cad88425de6bd
614 e1a9187ebb6092cf67bf2b13fd65f270
615 88d78b7e883c8759d2c4f5c65adb7553
616 878ad575f9fad878e80a0c9ba63bcbcc
617 2732e69485bbc9c90bfbd62481d9089b
618 eccf80cfe2df16a2cf65bd92dd597b07
619 07e0917af48bbb75fed413d238f5555a
620 7a569d80c3414a8d0859dc65a46128ba
621 b27af87a71314f318c782b23ebfe808b
622 82b0ce26401d2e22f04d83d1255dc51a
623 ddd3b75a2b1ae0784504df543af8969b
624 e3ea7082ff7fc9888c144da2af58429e
625 c96031dbcad3dad9af0dcbaaaf268cb8
626 fcffead94f3c7ca495e056a9b47acdb7
627 51fb73e666c6c655ade8297297d07ad1
628 ba5e43f1bca32301651339e22904cc8c
629 42f58c30c04aafdb038dda0847dd988d
630 cda6f3bfd15c4b4c4525004aa06eeff8
631 ca61783aacec57fb3d1f92b0fe2fd1a8
632 5f6724517b65e614ad6808d6f6ee34df
633 f7310fdc82aebfd904b01e1dc54b2927
634 094b2db68d6f903b68401adebf5a7e08
635 d78ff4ef5d63653a65040cf9bfd4aca7
636 984a74d37145986780fc0b16ac451649
637 de6188a7dbdf191f64b5fc5e2ab47b57
638 f7f7276cd419c17a3ca8e1b939ae49e4
639 88acba6b965610b5480109c8b17b80e1
640 b7b750dfc7598d5d5011fd2dcc5600a3
641 2ef5b52a1ecc820e308aa342721aac09
642 43bf6686b64b2579376504ccc493d97e
643 6aed3fb0f9cd71a43dd497f01f17c0e2
644 cb3797aa2a2f256656168e6c496afc5f
645 b93246f6b1116398a346f1a641f3b041
646 e989f7914f90cc2c7fff357876e506b5
647 0d334ba77c225bc307ba537152f3f161
648 0e4eafe595f6d9d90d11faa933a15ef1
649 369546868a7f3a45a96768d40fd9d034
650 12c091c6315cf4fde7cb68606937380d
651 b2eaaa707b4c4185c32eddcdd306705e
652 4dc1ffc872eeee475a64dfac86aba41c
653 0618983f8741c5ef68d3a101e8a3b8ca
654 c60c905c15fc910840b94c00a0b9d0
655 ",
656 )
657 .unwrap();
658 let signature = parse_signature(
659 "
660 0aab4c900501b3e24d7cdf4663326a3a
661 87df5e4843b2cbdb67cbf6e460fec350
662 aa5371b1508f9f4528ecea23c436d94b
663 5e8fcd4f681e30a6ac00a9704a188a03
664 ",
665 );
666 test_sign_and_verify(private_key, public_key, &message, signature)
667 }
668
669 #[test]
670 fn rfc8032_test_vector_sha() {
671 let private_key = commonware_utils::from_hex_formatted(
672 "
673 833fe62409237b9d62ec77587520911e
674 9a759cec1d19755b7da901b96dca3d42
675 ",
676 )
677 .unwrap();
678 let public_key = commonware_utils::from_hex_formatted(
679 "
680 ec172b93ad5e563bf4932c70e1245034
681 c35467ef2efd4d64ebf819683467e2bf
682 ",
683 )
684 .unwrap();
685 let message = commonware_utils::from_hex_formatted(
686 "
687 ddaf35a193617abacc417349ae204131
688 12e6fa4e89a97ea20a9eeee64b55d39a
689 2192992a274fc1a836ba3c23a3feebbd
690 454d4423643ce80e2a9ac94fa54ca49f
691 ",
692 )
693 .unwrap();
694 let signature = commonware_utils::from_hex_formatted(
695 "
696 dc2a4459e7369633a52b1bf277839a00
697 201009a3efbf3ecb69bea2186c26b589
698 09351fc9ac90b3ecfdfbc7c66431e030
699 3dca179c138ac17ad9bef1177331a704
700 ",
701 )
702 .unwrap();
703 test_sign_and_verify(
704 PrivateKey::decode(private_key.as_ref()).unwrap(),
705 PublicKey::decode(public_key.as_ref()).unwrap(),
706 &message,
707 Signature::decode(signature.as_ref()).unwrap(),
708 )
709 }
710
711 #[test]
712 fn batch_verify_valid() {
713 let v1 = vector_1();
714 let v2 = vector_2();
715 let mut batch = ed25519::Batch::new();
716 assert!(batch.add(None, &v1.2, &v1.1, &v1.3));
717 assert!(batch.add(None, &v2.2, &v2.1, &v2.3));
718 assert!(batch.verify(&mut rand::thread_rng()));
719 }
720
721 #[test]
722 fn batch_verify_invalid() {
723 let v1 = vector_1();
724 let v2 = vector_2();
725 let mut bad_signature = v2.3.to_vec();
726 bad_signature[3] = 0xff;
727
728 let mut batch = Batch::new();
729 assert!(batch.add(None, &v1.2, &v1.1, &v1.3));
730 assert!(batch.add(
731 None,
732 &v2.2,
733 &v2.1,
734 &Signature::decode(bad_signature.as_ref()).unwrap()
735 ));
736 assert!(!batch.verify(&mut rand::thread_rng()));
737 }
738
739 #[test]
740 fn test_zero_signature_fails() {
741 let (_, public_key, message, _) = vector_1();
742 let zero_sig = Signature::decode(vec![0u8; Signature::SIZE].as_ref()).unwrap();
743 assert!(!public_key.verify(None, &message, &zero_sig));
744 }
745
746 #[test]
747 fn test_high_s_fails() {
748 let (_, public_key, message, signature) = vector_1();
749 let mut bad_signature = signature.to_vec();
750 bad_signature[63] |= 0x80; let bad_signature = Signature::decode(bad_signature.as_ref()).unwrap();
752 assert!(!public_key.verify(None, &message, &bad_signature));
753 }
754
755 #[test]
756 fn test_invalid_r_fails() {
757 let (_, public_key, message, signature) = vector_1();
758 let mut bad_signature = signature.to_vec();
759 for b in bad_signature.iter_mut().take(32) {
760 *b = 0xff; }
762 let bad_signature = Signature::decode(bad_signature.as_ref()).unwrap();
763 assert!(!public_key.verify(None, &message, &bad_signature));
764 }
765}