#include <pcurves.h>
Classes | |
| class | AffinePoint |
| class | PrecomputedMul2Table |
| class | ProjectivePoint |
| class | Scalar |
Public Types | |
| typedef std::shared_ptr< const PrimeOrderCurve > | CurvePtr |
| typedef std::array< word, StorageWords > | StorageUnit |
Public Member Functions | |
| virtual bool | affine_point_is_identity (const AffinePoint &pt) const =0 |
| virtual Scalar | base_point_mul_x_mod_order (const Scalar &scalar, RandomNumberGenerator &rng) const =0 |
| virtual std::optional< AffinePoint > | deserialize_point (std::span< const uint8_t > bytes) const =0 |
| virtual std::optional< Scalar > | deserialize_scalar (std::span< const uint8_t > bytes) const =0 |
| virtual size_t | field_element_bytes () const =0 |
| virtual AffinePoint | generator () const =0 |
| Return the standard generator. | |
| virtual AffinePoint | hash_to_curve_nu (std::string_view hash, std::span< const uint8_t > input, std::span< const uint8_t > domain_sep) const =0 |
| virtual ProjectivePoint | hash_to_curve_ro (std::string_view hash, std::span< const uint8_t > input, std::span< const uint8_t > domain_sep) const =0 |
| virtual ProjectivePoint | mul (const AffinePoint &pt, const Scalar &scalar, RandomNumberGenerator &rng) const =0 |
| virtual std::unique_ptr< const PrecomputedMul2Table > | mul2_setup (const AffinePoint &pt1, const AffinePoint &pt2) const =0 |
| Setup a table for 2-ary multiplication. | |
| virtual std::optional< ProjectivePoint > | mul2_vartime (const PrecomputedMul2Table &table, const Scalar &s1, const Scalar &s2) const =0 |
| virtual bool | mul2_vartime_x_mod_order_eq (const PrecomputedMul2Table &table, const Scalar &v, const Scalar &s1, const Scalar &s2) const =0 |
| virtual ProjectivePoint | mul_by_g (const Scalar &scalar, RandomNumberGenerator &rng) const =0 |
| virtual size_t | order_bits () const =0 |
| Return the bit length of the group order. | |
| virtual ProjectivePoint | point_add (const ProjectivePoint &a, const ProjectivePoint &b) const =0 |
| virtual ProjectivePoint | point_add_mixed (const ProjectivePoint &a, const AffinePoint &b) const =0 |
| virtual ProjectivePoint | point_double (const ProjectivePoint &pt) const =0 |
| virtual ProjectivePoint | point_negate (const ProjectivePoint &pt) const =0 |
| virtual AffinePoint | point_to_affine (const ProjectivePoint &pt) const =0 |
| virtual ProjectivePoint | point_to_projective (const AffinePoint &pt) const =0 |
| virtual Scalar | random_scalar (RandomNumberGenerator &rng) const =0 |
| virtual Scalar | scalar_add (const Scalar &a, const Scalar &b) const =0 |
| virtual size_t | scalar_bytes () const =0 |
| Return the byte length of the scalar element. | |
| virtual bool | scalar_equal (const Scalar &a, const Scalar &b) const =0 |
| virtual Scalar | scalar_from_u32 (uint32_t x) const =0 |
| virtual std::optional< Scalar > | scalar_from_wide_bytes (std::span< const uint8_t > bytes) const =0 |
| virtual Scalar | scalar_invert (const Scalar &s) const =0 |
| virtual bool | scalar_is_zero (const Scalar &s) const =0 |
| virtual Scalar | scalar_mul (const Scalar &a, const Scalar &b) const =0 |
| virtual Scalar | scalar_negate (const Scalar &s) const =0 |
| virtual Scalar | scalar_one () const =0 |
| virtual Scalar | scalar_square (const Scalar &s) const =0 |
| virtual Scalar | scalar_sub (const Scalar &a, const Scalar &b) const =0 |
| virtual Scalar | scalar_zero () const =0 |
| virtual void | serialize_point (std::span< uint8_t > bytes, const AffinePoint &pt) const =0 |
| virtual void | serialize_point_compressed (std::span< uint8_t > bytes, const AffinePoint &pt) const =0 |
| virtual void | serialize_point_x (std::span< uint8_t > bytes, const AffinePoint &pt) const =0 |
| virtual void | serialize_scalar (std::span< uint8_t > bytes, const Scalar &scalar) const =0 |
| virtual | ~PrimeOrderCurve ()=default |
Static Public Member Functions | |
| static std::shared_ptr< const PrimeOrderCurve > | from_id (PrimeOrderCurveId id) |
| static std::shared_ptr< const PrimeOrderCurve > | from_name (std::string_view name) |
Static Public Attributes | |
| static const size_t | MaximumBitLength = 521 |
| static const size_t | MaximumByteLength = (MaximumBitLength + 7) / 8 |
| static const size_t | StorageWords = (MaximumByteLength + sizeof(word) - 1) / sizeof(word) |
| Number of words used to store MaximumByteLength. | |
Detailed Description
Member Typedef Documentation
◆ CurvePtr
| std::shared_ptr<const PrimeOrderCurve> Botan::PCurve::PrimeOrderCurve::CurvePtr |
◆ StorageUnit
| std::array<word, StorageWords> Botan::PCurve::PrimeOrderCurve::StorageUnit |
Constructor & Destructor Documentation
◆ ~PrimeOrderCurve()
|
virtualdefault |
Member Function Documentation
◆ affine_point_is_identity()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ base_point_mul_x_mod_order()
|
pure virtual |
Base point multiplication, returning only the x coordinate modulo the group order
Multiply by the standard generator point g, then extract the x coordinate as an integer, then reduce the x coordinate modulo the group order
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ deserialize_point()
|
pure virtual |
Deserialize a point
Both compressed and uncompressed encodings are accepted
Note that the deprecated "hybrid" encoding is not supported here
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ deserialize_scalar()
|
pure virtual |
Deserialize a scalar
This function requires the input length be exactly scalar_bytes long; it does not accept inputs that are shorter, or with excess leading zero padding bytes.
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ field_element_bytes()
|
pure virtual |
Return the byte length of a field element
Each point consists of two field elements
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ from_id()
|
static |
Definition at line 101 of file pcurves.cpp.
References Botan::PCurve::PCurveInstance::brainpool256r1(), Botan::PCurve::PrimeOrderCurveId::brainpool256r1, Botan::PCurve::PCurveInstance::brainpool384r1(), Botan::PCurve::PrimeOrderCurveId::brainpool384r1, Botan::PCurve::PCurveInstance::brainpool512r1(), Botan::PCurve::PrimeOrderCurveId::brainpool512r1, Botan::PCurve::PCurveInstance::frp256v1(), Botan::PCurve::PrimeOrderCurveId::frp256v1, Botan::PCurve::PCurveInstance::numsp512d1(), Botan::PCurve::PrimeOrderCurveId::numsp512d1, Botan::PCurve::PCurveInstance::secp192r1(), Botan::PCurve::PrimeOrderCurveId::secp192r1, Botan::PCurve::PCurveInstance::secp224r1(), Botan::PCurve::PrimeOrderCurveId::secp224r1, Botan::PCurve::PCurveInstance::secp256k1(), Botan::PCurve::PrimeOrderCurveId::secp256k1, Botan::PCurve::PCurveInstance::secp256r1(), Botan::PCurve::PrimeOrderCurveId::secp256r1, Botan::PCurve::PCurveInstance::secp384r1(), Botan::PCurve::PrimeOrderCurveId::secp384r1, Botan::PCurve::PCurveInstance::secp521r1(), Botan::PCurve::PrimeOrderCurveId::secp521r1, Botan::PCurve::PCurveInstance::sm2p256v1(), and Botan::PCurve::PrimeOrderCurveId::sm2p256v1.
◆ from_name()
|
inlinestatic |
Definition at line 44 of file pcurves.h.
References name.
◆ generator()
|
pure virtual |
Return the standard generator.
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ hash_to_curve_nu()
|
pure virtual |
RFC 9380 hash to curve (NU variant)
This is currently only supported for a few specific curves
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ hash_to_curve_ro()
|
pure virtual |
RFC 9380 hash to curve (RO variant)
This is currently only supported for a few specific curves
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ mul()
|
pure virtual |
Generic point multiplication
Multiply an arbitrary point by a scalar
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ mul2_setup()
|
pure virtual |
Setup a table for 2-ary multiplication.
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ mul2_vartime()
|
pure virtual |
Perform 2-ary multiplication (variable time)
Compute s1*pt1 + s2*pt2 in variable time
Returns nullopt if the produced point is the point at infinity
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ mul2_vartime_x_mod_order_eq()
|
pure virtual |
Perform 2-ary multiplication (variable time), reducing x modulo order
Compute s1*pt1 + s2*pt2 in variable time, then extract the x coordinate of the result, and reduce x modulo the group order. Compare that value with v. If equal, returns true. Otherwise returns false, including if the produced point is the point at infinity
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ mul_by_g()
|
pure virtual |
Base point multiplication
Multiply by the standard generator point g
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ order_bits()
|
pure virtual |
Return the bit length of the group order.
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_add()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_add_mixed()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_double()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_negate()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_to_affine()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ point_to_projective()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ random_scalar()
|
pure virtual |
Return a new random scalar
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_add()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_bytes()
|
pure virtual |
Return the byte length of the scalar element.
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_equal()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_from_u32()
|
pure virtual |
Return a small scalar
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_from_wide_bytes()
|
pure virtual |
Reduce an integer modulo the group order
The input can be at most twice the bit length of the order; if larger than this nullopt is returned
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_invert()
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_is_zero()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_mul()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_negate()
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_one()
|
pure virtual |
Return the scalar one
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_square()
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_sub()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ scalar_zero()
|
pure virtual |
Return the scalar zero
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ serialize_point()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ serialize_point_compressed()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ serialize_point_x()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
◆ serialize_scalar()
|
pure virtual |
Implemented in Botan::PCurve::PrimeOrderCurveImpl< C >.
Member Data Documentation
◆ MaximumBitLength
|
static |
◆ MaximumByteLength
|
static |
◆ StorageWords
|
static |
The documentation for this class was generated from the following files:
- src/lib/math/pcurves/pcurves.h
- src/lib/math/pcurves/pcurves.cpp
Generated by
1.12.0