| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139 |
- #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
- #pragma warning disable
- using System;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Math.Raw;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Encoders;
- namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Math.EC.Custom.Djb
- {
- internal class Curve25519
- : AbstractFpCurve
- {
- public static readonly BigInteger q = Nat256.ToBigInteger(Curve25519Field.P);
- private const int Curve25519_DEFAULT_COORDS = COORD_JACOBIAN_MODIFIED;
- private const int CURVE25519_FE_INTS = 8;
- protected readonly Curve25519Point m_infinity;
- public Curve25519()
- : base(q)
- {
- this.m_infinity = new Curve25519Point(this, null, null);
- this.m_a = FromBigInteger(new BigInteger(1,
- Hex.Decode("2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA984914A144")));
- this.m_b = FromBigInteger(new BigInteger(1,
- Hex.Decode("7B425ED097B425ED097B425ED097B425ED097B425ED097B4260B5E9C7710C864")));
- this.m_order = new BigInteger(1, Hex.Decode("1000000000000000000000000000000014DEF9DEA2F79CD65812631A5CF5D3ED"));
- this.m_cofactor = BigInteger.ValueOf(8);
- this.m_coord = Curve25519_DEFAULT_COORDS;
- }
- protected override ECCurve CloneCurve()
- {
- return new Curve25519();
- }
- public override bool SupportsCoordinateSystem(int coord)
- {
- switch (coord)
- {
- case COORD_JACOBIAN_MODIFIED:
- return true;
- default:
- return false;
- }
- }
- public virtual BigInteger Q
- {
- get { return q; }
- }
- public override ECPoint Infinity
- {
- get { return m_infinity; }
- }
- public override int FieldSize
- {
- get { return q.BitLength; }
- }
- public override ECFieldElement FromBigInteger(BigInteger x)
- {
- return new Curve25519FieldElement(x);
- }
- protected internal override ECPoint CreateRawPoint(ECFieldElement x, ECFieldElement y, bool withCompression)
- {
- return new Curve25519Point(this, x, y, withCompression);
- }
- protected internal override ECPoint CreateRawPoint(ECFieldElement x, ECFieldElement y, ECFieldElement[] zs, bool withCompression)
- {
- return new Curve25519Point(this, x, y, zs, withCompression);
- }
- public override ECLookupTable CreateCacheSafeLookupTable(ECPoint[] points, int off, int len)
- {
- uint[] table = new uint[len * CURVE25519_FE_INTS * 2];
- {
- int pos = 0;
- for (int i = 0; i < len; ++i)
- {
- ECPoint p = points[off + i];
- Nat256.Copy(((Curve25519FieldElement)p.RawXCoord).x, 0, table, pos); pos += CURVE25519_FE_INTS;
- Nat256.Copy(((Curve25519FieldElement)p.RawYCoord).x, 0, table, pos); pos += CURVE25519_FE_INTS;
- }
- }
- return new Curve25519LookupTable(this, table, len);
- }
- private class Curve25519LookupTable
- : ECLookupTable
- {
- private readonly Curve25519 m_outer;
- private readonly uint[] m_table;
- private readonly int m_size;
- internal Curve25519LookupTable(Curve25519 outer, uint[] table, int size)
- {
- this.m_outer = outer;
- this.m_table = table;
- this.m_size = size;
- }
- public virtual int Size
- {
- get { return m_size; }
- }
- public virtual ECPoint Lookup(int index)
- {
- uint[] x = Nat256.Create(), y = Nat256.Create();
- int pos = 0;
- for (int i = 0; i < m_size; ++i)
- {
- uint MASK = (uint)(((i ^ index) - 1) >> 31);
- for (int j = 0; j < CURVE25519_FE_INTS; ++j)
- {
- x[j] ^= m_table[pos + j] & MASK;
- y[j] ^= m_table[pos + CURVE25519_FE_INTS + j] & MASK;
- }
- pos += (CURVE25519_FE_INTS * 2);
- }
- return m_outer.CreateRawPoint(new Curve25519FieldElement(x), new Curve25519FieldElement(y), false);
- }
- }
- }
- }
- #pragma warning restore
- #endif
|
