From 13af6106b7d495c775ee69ef495b64318318d87f Mon Sep 17 00:00:00 2001
From: Peter Dettman <peter.dettman@bouncycastle.org>
Date: Thu, 29 Aug 2019 20:00:22 +0700
Subject: Add sanity checks on scalar mult. outputs

---
 crypto/src/math/ec/rfc7748/X448Field.cs | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'crypto/src/math/ec/rfc7748')

diff --git a/crypto/src/math/ec/rfc7748/X448Field.cs b/crypto/src/math/ec/rfc7748/X448Field.cs
index f1e89e520..14c9b4879 100644
--- a/crypto/src/math/ec/rfc7748/X448Field.cs
+++ b/crypto/src/math/ec/rfc7748/X448Field.cs
@@ -1009,6 +1009,14 @@ namespace Org.BouncyCastle.Math.EC.Rfc7748
             z[15] = z15;
         }
 
+        public static void SubOne(uint[] z)
+        {
+            uint[] one = Create();
+            one[0] = 1U;
+
+            Sub(z, one, z);
+        }
+
         public static void Zero(uint[] z)
         {
             for (int i = 0; i < Size; ++i)
-- 
cgit 1.5.1