[catacomb-python] / t / t-ec.py

### -*- mode: python, coding: utf-8 -*-
###
### Testing elliptic curve functionality
###
### (c) 2019 Straylight/Edgeware
###

###----- Licensing notice ---------------------------------------------------
###
### This file is part of the Python interface to Catacomb.
###
### Catacomb/Python is free software: you can redistribute it and/or
### modify it under the terms of the GNU General Public License as
### published by the Free Software Foundation; either version 2 of the
### License, or (at your option) any later version.
###
### Catacomb/Python is distributed in the hope that it will be useful, but
### WITHOUT ANY WARRANTY; without even the implied warranty of
### MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
### General Public License for more details.
###
### You should have received a copy of the GNU General Public License
### along with Catacomb/Python.  If not, write to the Free Software
### Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307,
### USA.

###--------------------------------------------------------------------------
### Imported modules.

import catacomb as C
import unittest as U
import testutils as T

k = C.PrimeField(19)
E = k.ec(-3, 6)
P = E(0) # order 26

kk = C.BinPolyField(0x13)
EE = kk.ec(1, 8)
PP = EE(8) # order 20

###--------------------------------------------------------------------------
class TestCurvelessPoints (U.TestCase):
  """Test handling of points without an explicit curve."""

  def test(me):

    ## Construction.
    O = C.ECPt(); me.assertFalse(O)
    P = C.ECPt(12345, 67890); me.assertTrue(P)
    Q = C.ECPt(23456, 78901); me.assertTrue(Q); me.assertNotEqual(P, Q)
    R = C.ECPt(O); me.assertFalse(R); me.assertEqual(O, R); me.assertNotEqual(P, R)
    R = C.ECPt(None); me.assertFalse(R); me.assertEqual(O, R)
    me.assertEqual(C.ECPt("12345, 67890"), P)
    me.assertEqual(C.ECPt((12345, 67890)), P)
    me.assertRaises(TypeError, C.ECPt, ())
    me.assertRaises(TypeError, C.ECPt, (1234,))
    me.assertRaises(TypeError, C.ECPt, (1, 2, 3, 4))
    me.assertRaises(ValueError, C.ECPt, "12345")
    me.assertRaises(ValueError, C.ECPt, "12345,")
    me.assertRaises(ValueError, C.ECPt, "12345, xyzzy")
    me.assertRaises(ValueError, C.ECPt, "12345, 67890!??")
    me.assertRaises(ValueError, C.ECPt, (1, 2, 3))
    me.assertRaises(TypeError, C.ECPt, 1, 2, 3)
    me.assertRaises(TypeError, C.ECPt, 1234)
    me.assertRaises(TypeError, C.ECPt, object())
    me.assertRaises(TypeError, C.ECPt, 1, None)
    #me.assertRaises(TypeError, C.ECPt, (1, None))

    ## Arithmetic shouldn't work.
    me.assertRaises(TypeError, T.neg, P)
    me.assertRaises(TypeError, T.add, P, Q)

    ## Attributes.  We only have raw integer access.
    me.assertTrue(P.point is P)
    me.assertEqual(P.ix, 12345)
    me.assertEqual(P.iy, 67890)
    me.assertEqual(P.tobuf(), C.bytes("000230390003010932"))
    me.assertRaises(AttributeError, lambda: P.curve)
    me.assertRaises(AttributeError, lambda: P.x)
    me.assertRaises(AttributeError, lambda: P.y)
    me.assertRaises(AttributeError, lambda: P._x)
    me.assertRaises(AttributeError, lambda: P._y)
    me.assertRaises(AttributeError, lambda: P._z)

    ## Encoding and decoding.
    P = C.ECPt(254, 291)
    me.assertEqual(O.tobuf(), C.bytes("0000"))
    me.assertEqual(C.ECPt(0, 0).tobuf(), C.bytes("000100000100"))
    me.assertEqual(P.tobuf(), C.bytes("0001fe00020123"))
    me.assertEqual(C.ECPt.frombuf(C.bytes("0001fe000201233f")),
                   (P, C.bytes("3f")))
    me.assertRaises(ValueError, C.ECPt.frombuf, C.bytes("0001fe000201"))

    ## String conversion and parsing.
    me.assertEqual(str(P), "(254, 291)")
    me.assertEqual(C.ECPt.parse("254, 291)"), (P, ")"))
    me.assertEqual(C.ECPt.parse("(254, 291)"), (P, ""))
    me.assertRaises(ValueError, C.ECPt.parse, "(254, 291")

###--------------------------------------------------------------------------
class TestCurves (T.GenericTestMixin):
  """Test elliptic curves."""

  def test_compare(me):
    me.assertEqual(E, E)
    E1 = k.ec(-3, 6)
    me.assertFalse(E is E1)
    me.assertEqual(E, E1)
    me.assertNotEqual(E, EE)
    me.assertNotEqual(E, [])

  def _test_curve(me, einfo, checkfail = False):

    ## Some useful values.
    E = einfo.curve
    P = einfo.G
    O = E()
    n = einfo.r
    h = einfo.h
    k = E.field
    me.assertTrue(n.primep()); l = C.NicePrimeField(n)

    ## Check that things are basically sane.
    me.assertFalse(O)
    me.assertTrue(P)
    me.assertTrue(n)
    nP = n*P; me.assertFalse(nP); me.assertEqual(nP, O)

    ## Check point construction.
    me.assertEqual(type(P.ix), C.MP)
    me.assertEqual(type(P.iy), C.MP)
    me.assertTrue(isinstance(P.x, C.FE))
    me.assertTrue(isinstance(P.y, C.FE))
    me.assertTrue(isinstance(P._x, C.FE))
    me.assertTrue(isinstance(P._y, C.FE))
    if isinstance(E, C.ECPrimeProjCurve) or isinstance(E, C.ECBinProjCurve):
      me.assertTrue(isinstance(P._z, C.FE))
    else:
      me.assertEqual(P._z, None)
    me.assertEqual(E(None), O)
    me.assertEqual(E(P.x, P.y), P)
    me.assertEqual(E((P.x, P.y)), P)
    me.assertEqual(E(P._x, P._y, P._z), P)
    me.assertEqual(E((P._x, P._y, P._z)), P)
    Q = E(P.point); me.assertEqual(type(Q), E); me.assertEqual(Q, P)
    me.assertEqual(E("%s, %s" % (P.ix, P.iy)), P)
    me.assertRaises(ValueError, E, "1234")
    me.assertRaises(ValueError, E, "1234,")
    me.assertRaises(ValueError, E, "1234, 5678?")
    me.assertRaises(TypeError, E, 1, None)
    Q = E(P.ix); me.assertTrue(Q == P or Q == -P)
    for i in T.range(128):
      x = P.ix + i
      try: E(x)
      except ValueError: badx = x; break
    else:
      me.fail("no off-curve point found")

    ## Attributes.
    me.assertEqual(P.ix, P.point.ix)
    me.assertEqual(P.iy, P.point.iy)
    me.assertEqual(P.x, k(P.point.ix))
    me.assertEqual(P.y, k(P.point.iy))
    R = 6*P
    if isinstance(E, C.ECPrimeProjCurve) or isinstance(E, C.ECBinProjCurve):
      me.assertEqual(P._z, k.one)
      me.assertEqual(R._x, R.x*R._z**2)
      me.assertEqual(R._y, R.y*R._z**3)
      me.assertNotEqual(R._z, k.one)
    else:
      me.assertEqual(P._z, None)
      me.assertEqual(R._x, R.x)
      me.assertEqual(R._y, R.y)
      me.assertEqual(R._z, None)
    me.assertEqual(R.curve, E)

    ## Arithmetic.
    Q = 17*P
    me.assertEqual(Q, P*17)
    me.assertEqual(-Q, (n - 17)*P)
    me.assertEqual(Q + R, 23*P)
    me.assertEqual(Q + R.point, 23*P)
    me.assertRaises(TypeError, T.add, Q.point, R.point)
    me.assertRaises(TypeError, T.mul, kk(1), Q)
    me.assertEqual(Q - R, 11*P)
    me.assertEqual(l(17)*P, Q)
    me.assertEqual(P*l(17), Q)

    ## Ordering.
    me.assertTrue(P == P)
    me.assertTrue(P != Q)
    me.assertRaises(TypeError, T.lt, P, Q)
    me.assertRaises(TypeError, T.le, P, Q)
    me.assertRaises(TypeError, T.ge, P, Q)
    me.assertRaises(TypeError, T.gt, P, Q)

    ## Encoding.
    Z0 = C.ByteString.zero(0)
    Z1 = C.ByteString.zero(1)
    me.assertEqual(O.ec2osp(), Z1)
    me.assertEqual(E.os2ecp(Z1), (O, Z0))
    t = C.WriteBuffer() \
         .putu8(0x04) \
         .put(P.ix.storeb(k.noctets)) \
         .put(P.iy.storeb(k.noctets)) \
         .contents
    me.assertEqual(P.ec2osp(), t)
    me.assertEqual(C.WriteBuffer().putecptraw(P).contents, t)
    me.assertEqual(C.WriteBuffer().ec2osp(P).contents, t)
    me.assertEqual(E.os2ecp(t), (P, Z0))
    me.assertEqual(C.ReadBuffer(t).getecptraw(E), P)
    me.assertEqual(C.ReadBuffer(t).os2ecp(E), P)
    if isinstance(k, C.PrimeField): ybit = int(P.iy&1)
    else:
      try: ybit = int((P.y/P.x).value&C.GF(1))
      except ZeroDivisionError: ybit = 0
    t = C.WriteBuffer() \
         .putu8(0x02 | ybit) \
         .put(P.ix.storeb(k.noctets)) \
         .contents
    me.assertEqual(P.ec2osp(C.EC_LSB), t)
    me.assertEqual(C.WriteBuffer().ec2osp(P, C.EC_LSB).contents, t)
    me.assertEqual(E.os2ecp(t, C.EC_LSB), (P, Z0))
    me.assertEqual(C.ReadBuffer(t).os2ecp(E, C.EC_LSB), P)

    ## Curve methods.
    Q = E.find(P.x); me.assertTrue(Q == P or Q == -P)
    Q = E.find(P.ix); me.assertTrue(Q == P or Q == -P)
    me.assertRaises(ValueError, E.find, badx)
    for i in T.range(128):
      if E.rand() != P: break
    else:
      me.fail("random point always gives me P")
    for i in T.range(128):
      R = E.rand(C.LCRand(i))
      if R != P: break
    else:
      me.fail("random point always gives me P")
    me.assertEqual(R, E.rand(C.LCRand(i)))
    me.assertEqual(E.parse("%s, %s!xyzzy" % (P.ix, P.iy)), (P, "!xyzzy"))

    ## Simultaneous multiplication.
    Q, R, S = 5*P, 7*P, 11*P
    me.assertEqual(E.mmul(set([(Q, 9), (R, 8), (S, 5)])), 156*P)
    me.assertEqual(E.mmul([Q, 9, R, 8, S, 5]), 156*P)
    me.assertEqual(E.mmul(Q, 9, R, 8, S, 5), 156*P)

    ## Test other curve info things while we're here.
    if not checkfail: einfo.check()
    else: me.assertRaises(ValueError, einfo.check)

  def test_tinycurves(me):
    me._test_curve(C.ECInfo(E, 2*P, 13, 2), checkfail = True)
    ei = C.ECInfo.fromstring("binpoly: 0x13; bin: 0x01, 0x08; 0x02, 0x0c: 5*4")
    me._test_curve(ei, checkfail = True)

TestCurves.generate_testcases((name, C.eccurves[name]) for name in
  ["nist-p256", "nist-k233", "nist-b163", "nist-b283n"])

###----- That's all, folks --------------------------------------------------

if __name__ == "__main__": U.main()
Commit	Line	Data
ffad1322 MW	1	### -- mode: python, coding: utf-8 --
	2	###
	3	### Testing elliptic curve functionality
	4	###
	5	### (c) 2019 Straylight/Edgeware
	6	###
	7
	8	###----- Licensing notice ---------------------------------------------------
	9	###
	10	### This file is part of the Python interface to Catacomb.
	11	###
	12	### Catacomb/Python is free software: you can redistribute it and/or
	13	### modify it under the terms of the GNU General Public License as
	14	### published by the Free Software Foundation; either version 2 of the
	15	### License, or (at your option) any later version.
	16	###
	17	### Catacomb/Python is distributed in the hope that it will be useful, but
	18	### WITHOUT ANY WARRANTY; without even the implied warranty of
	19	### MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	20	### General Public License for more details.
	21	###
	22	### You should have received a copy of the GNU General Public License
	23	### along with Catacomb/Python. If not, write to the Free Software
	24	### Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307,
	25	### USA.
	26
	27	###--------------------------------------------------------------------------
	28	### Imported modules.
	29
	30	import catacomb as C
	31	import unittest as U
	32	import testutils as T
	33
	34	k = C.PrimeField(19)
	35	E = k.ec(-3, 6)
	36	P = E(0) # order 26
	37
	38	kk = C.BinPolyField(0x13)
	39	EE = kk.ec(1, 8)
	40	PP = EE(8) # order 20
	41
	42	###--------------------------------------------------------------------------
	43	class TestCurvelessPoints (U.TestCase):
	44	"""Test handling of points without an explicit curve."""
	45
	46	def test(me):
	47
	48	## Construction.
	49	O = C.ECPt(); me.assertFalse(O)
	50	P = C.ECPt(12345, 67890); me.assertTrue(P)
	51	Q = C.ECPt(23456, 78901); me.assertTrue(Q); me.assertNotEqual(P, Q)
	52	R = C.ECPt(O); me.assertFalse(R); me.assertEqual(O, R); me.assertNotEqual(P, R)
	53	R = C.ECPt(None); me.assertFalse(R); me.assertEqual(O, R)
	54	me.assertEqual(C.ECPt("12345, 67890"), P)
	55	me.assertEqual(C.ECPt((12345, 67890)), P)
	56	me.assertRaises(TypeError, C.ECPt, ())
	57	me.assertRaises(TypeError, C.ECPt, (1234,))
	58	me.assertRaises(TypeError, C.ECPt, (1, 2, 3, 4))
	59	me.assertRaises(ValueError, C.ECPt, "12345")
	60	me.assertRaises(ValueError, C.ECPt, "12345,")
	61	me.assertRaises(ValueError, C.ECPt, "12345, xyzzy")
55114a87	62	me.assertRaises(ValueError, C.ECPt, "12345, 67890!??")
f169c24b	63	me.assertRaises(ValueError, C.ECPt, (1, 2, 3))
ffad1322 MW	64	me.assertRaises(TypeError, C.ECPt, 1, 2, 3)
	65	me.assertRaises(TypeError, C.ECPt, 1234)
	66	me.assertRaises(TypeError, C.ECPt, object())
	67	me.assertRaises(TypeError, C.ECPt, 1, None)
	68	#me.assertRaises(TypeError, C.ECPt, (1, None))
	69
	70	## Arithmetic shouldn't work.
	71	me.assertRaises(TypeError, T.neg, P)
	72	me.assertRaises(TypeError, T.add, P, Q)
	73
	74	## Attributes. We only have raw integer access.
	75	me.assertTrue(P.point is P)
	76	me.assertEqual(P.ix, 12345)
	77	me.assertEqual(P.iy, 67890)
	78	me.assertEqual(P.tobuf(), C.bytes("000230390003010932"))
	79	me.assertRaises(AttributeError, lambda: P.curve)
	80	me.assertRaises(AttributeError, lambda: P.x)
	81	me.assertRaises(AttributeError, lambda: P.y)
	82	me.assertRaises(AttributeError, lambda: P._x)
	83	me.assertRaises(AttributeError, lambda: P._y)
	84	me.assertRaises(AttributeError, lambda: P._z)
	85
	86	## Encoding and decoding.
	87	P = C.ECPt(254, 291)
	88	me.assertEqual(O.tobuf(), C.bytes("0000"))
	89	me.assertEqual(C.ECPt(0, 0).tobuf(), C.bytes("000100000100"))
	90	me.assertEqual(P.tobuf(), C.bytes("0001fe00020123"))
	91	me.assertEqual(C.ECPt.frombuf(C.bytes("0001fe000201233f")),
	92	(P, C.bytes("3f")))
	93	me.assertRaises(ValueError, C.ECPt.frombuf, C.bytes("0001fe000201"))
	94
	95	## String conversion and parsing.
a62ce0a6	96	me.assertEqual(str(P), "(254, 291)")
ffad1322	97	me.assertEqual(C.ECPt.parse("254, 291)"), (P, ")"))
a62ce0a6	98	me.assertEqual(C.ECPt.parse("(254, 291)"), (P, ""))
ffad1322 MW	99	me.assertRaises(ValueError, C.ECPt.parse, "(254, 291")
	100
	101	###--------------------------------------------------------------------------
	102	class TestCurves (T.GenericTestMixin):
	103	"""Test elliptic curves."""
	104
	105	def test_compare(me):
	106	me.assertEqual(E, E)
	107	E1 = k.ec(-3, 6)
	108	me.assertFalse(E is E1)
	109	me.assertEqual(E, E1)
	110	me.assertNotEqual(E, EE)
	111	me.assertNotEqual(E, [])
	112
	113	def _test_curve(me, einfo, checkfail = False):
	114
	115	## Some useful values.
	116	E = einfo.curve
	117	P = einfo.G
	118	O = E()
	119	n = einfo.r
	120	h = einfo.h
	121	k = E.field
	122	me.assertTrue(n.primep()); l = C.NicePrimeField(n)
	123
	124	## Check that things are basically sane.
	125	me.assertFalse(O)
	126	me.assertTrue(P)
	127	me.assertTrue(n)
	128	nP = n*P; me.assertFalse(nP); me.assertEqual(nP, O)
	129
	130	## Check point construction.
	131	me.assertEqual(type(P.ix), C.MP)
	132	me.assertEqual(type(P.iy), C.MP)
	133	me.assertTrue(isinstance(P.x, C.FE))
	134	me.assertTrue(isinstance(P.y, C.FE))
	135	me.assertTrue(isinstance(P._x, C.FE))
	136	me.assertTrue(isinstance(P._y, C.FE))
	137	if isinstance(E, C.ECPrimeProjCurve) or isinstance(E, C.ECBinProjCurve):
	138	me.assertTrue(isinstance(P._z, C.FE))
	139	else:
	140	me.assertEqual(P._z, None)
	141	me.assertEqual(E(None), O)
	142	me.assertEqual(E(P.x, P.y), P)
	143	me.assertEqual(E((P.x, P.y)), P)
	144	me.assertEqual(E(P._x, P._y, P._z), P)
	145	me.assertEqual(E((P._x, P._y, P._z)), P)
	146	Q = E(P.point); me.assertEqual(type(Q), E); me.assertEqual(Q, P)
	147	me.assertEqual(E("%s, %s" % (P.ix, P.iy)), P)
	148	me.assertRaises(ValueError, E, "1234")
	149	me.assertRaises(ValueError, E, "1234,")
55114a87	150	me.assertRaises(ValueError, E, "1234, 5678?")
ffad1322 MW	151	me.assertRaises(TypeError, E, 1, None)
	152	Q = E(P.ix); me.assertTrue(Q == P or Q == -P)
	153	for i in T.range(128):
	154	x = P.ix + i
	155	try: E(x)
	156	except ValueError: badx = x; break
	157	else:
	158	me.fail("no off-curve point found")
	159
	160	## Attributes.
	161	me.assertEqual(P.ix, P.point.ix)
	162	me.assertEqual(P.iy, P.point.iy)
	163	me.assertEqual(P.x, k(P.point.ix))
	164	me.assertEqual(P.y, k(P.point.iy))
	165	R = 6*P
	166	if isinstance(E, C.ECPrimeProjCurve) or isinstance(E, C.ECBinProjCurve):
	167	me.assertEqual(P._z, k.one)
	168	me.assertEqual(R._x, R.xR._z*2)
	169	me.assertEqual(R._y, R.yR._z*3)
	170	me.assertNotEqual(R._z, k.one)
	171	else:
	172	me.assertEqual(P._z, None)
	173	me.assertEqual(R._x, R.x)
	174	me.assertEqual(R._y, R.y)
	175	me.assertEqual(R._z, None)
	176	me.assertEqual(R.curve, E)
	177
	178	## Arithmetic.
	179	Q = 17*P
	180	me.assertEqual(Q, P*17)
	181	me.assertEqual(-Q, (n - 17)*P)
	182	me.assertEqual(Q + R, 23*P)
	183	me.assertEqual(Q + R.point, 23*P)
	184	me.assertRaises(TypeError, T.add, Q.point, R.point)
f3e22904	185	me.assertRaises(TypeError, T.mul, kk(1), Q)
ffad1322	186	me.assertEqual(Q - R, 11*P)
3317491a MW	187	me.assertEqual(l(17)*P, Q)
3317491a MW	188	me.assertEqual(P*l(17), Q)
ffad1322 MW	189
	190	## Ordering.
	191	me.assertTrue(P == P)
	192	me.assertTrue(P != Q)
	193	me.assertRaises(TypeError, T.lt, P, Q)
	194	me.assertRaises(TypeError, T.le, P, Q)
	195	me.assertRaises(TypeError, T.ge, P, Q)
	196	me.assertRaises(TypeError, T.gt, P, Q)
	197
	198	## Encoding.
	199	Z0 = C.ByteString.zero(0)
	200	Z1 = C.ByteString.zero(1)
	201	me.assertEqual(O.ec2osp(), Z1)
	202	me.assertEqual(E.os2ecp(Z1), (O, Z0))
ac5a6ec0 MW	203	t = C.WriteBuffer() \
	204	.putu8(0x04) \
	205	.put(P.ix.storeb(k.noctets)) \
	206	.put(P.iy.storeb(k.noctets)) \
	207	.contents
ffad1322	208	me.assertEqual(P.ec2osp(), t)
ac5a6ec0	209	me.assertEqual(C.WriteBuffer().putecptraw(P).contents, t)
04d6d312	210	me.assertEqual(C.WriteBuffer().ec2osp(P).contents, t)
ffad1322 MW	211	me.assertEqual(E.os2ecp(t), (P, Z0))
ffad1322 MW	212	me.assertEqual(C.ReadBuffer(t).getecptraw(E), P)
04d6d312	213	me.assertEqual(C.ReadBuffer(t).os2ecp(E), P)
ffad1322 MW	214	if isinstance(k, C.PrimeField): ybit = int(P.iy&1)
	215	else:
	216	try: ybit = int((P.y/P.x).value&C.GF(1))
	217	except ZeroDivisionError: ybit = 0
ac5a6ec0 MW	218	t = C.WriteBuffer() \
	219	.putu8(0x02 \| ybit) \
	220	.put(P.ix.storeb(k.noctets)) \
	221	.contents
ffad1322	222	me.assertEqual(P.ec2osp(C.EC_LSB), t)
04d6d312	223	me.assertEqual(C.WriteBuffer().ec2osp(P, C.EC_LSB).contents, t)
ffad1322	224	me.assertEqual(E.os2ecp(t, C.EC_LSB), (P, Z0))
04d6d312	225	me.assertEqual(C.ReadBuffer(t).os2ecp(E, C.EC_LSB), P)
ffad1322 MW	226
	227	## Curve methods.
	228	Q = E.find(P.x); me.assertTrue(Q == P or Q == -P)
	229	Q = E.find(P.ix); me.assertTrue(Q == P or Q == -P)
	230	me.assertRaises(ValueError, E.find, badx)
	231	for i in T.range(128):
	232	if E.rand() != P: break
	233	else:
	234	me.fail("random point always gives me P")
	235	for i in T.range(128):
	236	R = E.rand(C.LCRand(i))
	237	if R != P: break
	238	else:
	239	me.fail("random point always gives me P")
	240	me.assertEqual(R, E.rand(C.LCRand(i)))
	241	me.assertEqual(E.parse("%s, %s!xyzzy" % (P.ix, P.iy)), (P, "!xyzzy"))
	242
	243	## Simultaneous multiplication.
	244	Q, R, S = 5P, 7P, 11*P
74836df7	245	me.assertEqual(E.mmul(set([(Q, 9), (R, 8), (S, 5)])), 156*P)
ffad1322 MW	246	me.assertEqual(E.mmul([Q, 9, R, 8, S, 5]), 156*P)
	247	me.assertEqual(E.mmul(Q, 9, R, 8, S, 5), 156*P)
	248
	249	## Test other curve info things while we're here.
	250	if not checkfail: einfo.check()
	251	else: me.assertRaises(ValueError, einfo.check)
	252
	253	def test_tinycurves(me):
	254	me._test_curve(C.ECInfo(E, 2*P, 13, 2), checkfail = True)
54f5bcf9	255	ei = C.ECInfo.fromstring("binpoly: 0x13; bin: 0x01, 0x08; 0x02, 0x0c: 5*4")
ffad1322 MW	256	me._test_curve(ei, checkfail = True)
	257
	258	TestCurves.generate_testcases((name, C.eccurves[name]) for name in
	259	["nist-p256", "nist-k233", "nist-b163", "nist-b283n"])
	260
	261	###----- That's all, folks --------------------------------------------------
	262
	263	if __name__ == "__main__": U.main()