| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140 |
- #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
- #pragma warning disable
- using System;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Math.Raw;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Encoders;
- namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Math.EC.Custom.Sec
- {
- internal class SecP256R1Curve
- : AbstractFpCurve
- {
- public static readonly BigInteger q = new BigInteger(1,
- Hex.Decode("FFFFFFFF00000001000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFF"));
- private const int SECP256R1_DEFAULT_COORDS = COORD_JACOBIAN;
- private const int SECP256R1_FE_INTS = 8;
- protected readonly SecP256R1Point m_infinity;
- public SecP256R1Curve()
- : base(q)
- {
- this.m_infinity = new SecP256R1Point(this, null, null);
- this.m_a = FromBigInteger(new BigInteger(1,
- Hex.Decode("FFFFFFFF00000001000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFC")));
- this.m_b = FromBigInteger(new BigInteger(1,
- Hex.Decode("5AC635D8AA3A93E7B3EBBD55769886BC651D06B0CC53B0F63BCE3C3E27D2604B")));
- this.m_order = new BigInteger(1, Hex.Decode("FFFFFFFF00000000FFFFFFFFFFFFFFFFBCE6FAADA7179E84F3B9CAC2FC632551"));
- this.m_cofactor = BigInteger.One;
- this.m_coord = SECP256R1_DEFAULT_COORDS;
- }
- protected override ECCurve CloneCurve()
- {
- return new SecP256R1Curve();
- }
- public override bool SupportsCoordinateSystem(int coord)
- {
- switch (coord)
- {
- case COORD_JACOBIAN:
- return true;
- default:
- return false;
- }
- }
- public virtual BigInteger Q
- {
- get { return q; }
- }
- public override ECPoint Infinity
- {
- get { return m_infinity; }
- }
- public override int FieldSize
- {
- get { return q.BitLength; }
- }
- public override ECFieldElement FromBigInteger(BigInteger x)
- {
- return new SecP256R1FieldElement(x);
- }
- protected internal override ECPoint CreateRawPoint(ECFieldElement x, ECFieldElement y, bool withCompression)
- {
- return new SecP256R1Point(this, x, y, withCompression);
- }
- protected internal override ECPoint CreateRawPoint(ECFieldElement x, ECFieldElement y, ECFieldElement[] zs, bool withCompression)
- {
- return new SecP256R1Point(this, x, y, zs, withCompression);
- }
- public override ECLookupTable CreateCacheSafeLookupTable(ECPoint[] points, int off, int len)
- {
- uint[] table = new uint[len * SECP256R1_FE_INTS * 2];
- {
- int pos = 0;
- for (int i = 0; i < len; ++i)
- {
- ECPoint p = points[off + i];
- Nat256.Copy(((SecP256R1FieldElement)p.RawXCoord).x, 0, table, pos); pos += SECP256R1_FE_INTS;
- Nat256.Copy(((SecP256R1FieldElement)p.RawYCoord).x, 0, table, pos); pos += SECP256R1_FE_INTS;
- }
- }
- return new SecP256R1LookupTable(this, table, len);
- }
- private class SecP256R1LookupTable
- : ECLookupTable
- {
- private readonly SecP256R1Curve m_outer;
- private readonly uint[] m_table;
- private readonly int m_size;
- internal SecP256R1LookupTable(SecP256R1Curve outer, uint[] table, int size)
- {
- this.m_outer = outer;
- this.m_table = table;
- this.m_size = size;
- }
- public virtual int Size
- {
- get { return m_size; }
- }
- public virtual ECPoint Lookup(int index)
- {
- uint[] x = Nat256.Create(), y = Nat256.Create();
- int pos = 0;
- for (int i = 0; i < m_size; ++i)
- {
- uint MASK = (uint)(((i ^ index) - 1) >> 31);
- for (int j = 0; j < SECP256R1_FE_INTS; ++j)
- {
- x[j] ^= m_table[pos + j] & MASK;
- y[j] ^= m_table[pos + SECP256R1_FE_INTS + j] & MASK;
- }
- pos += (SECP256R1_FE_INTS * 2);
- }
- return m_outer.CreateRawPoint(new SecP256R1FieldElement(x), new SecP256R1FieldElement(y), false);
- }
- }
- }
- }
- #pragma warning restore
- #endif
|
