Context length listed on certificate for pure EdDSA SigGen using Ed25519 with preHash = False

[ila71]

environment
Prod

testSessionId
31974

Algorithm registration

[
  {
    "acvVersion": "1.0"
  },
  {
    "algorithms": [
      {
        "algorithm": "EDDSA",
        "mode": "sigGen",
        "revision": "1.0",
        "prereqVals": [
          {
            "algorithm": "SHA",
            "valValue": "same"
          },
          {
            "algorithm": "DRBG",
            "valValue": "same"
          }
        ],
        "pure": true,
        "preHash": false,
        "curve": [
          "ED-25519"
        ]
      }
    ]
  }
]

Expected behavior

The ACVP documentation for EdDSA SigGen (https://pages.nist.gov/ACVP/draft-celi-acvp-eddsa.html#name-eddsa-siggen-test-case-json) states that "The 'context' property will only be present for 1) normal/'pure' EdDSA signature generation tests that use Ed448 and 2) Prehash EdDSA/HashEdDSA signature generation tests that use Ed448 or Ed25519."

Since the context property is not applicable for pure EdDSA SigGen using Ed25519 with preHash = false, and thus the Context Length property was not included in the algorithm registration, we would not expect the Context Length property to be listed on the algorithm certificate.

None of the test cases in the generated vector set included the Context or Context Length properties. However, the algorithm certificate that was issued listed the property "Context Length: 0-255 Increment 1".

[livebe01]

Thanks @ila71. We'll take a look.

[livebe01]

The fix for this issue is on ACVTS Prod as of the v1.1.0.38 release. Algorithm certificates such as the one you pasted above have been corrected.