jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
70 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: b3f7d97977
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b3f7d97977'
${ noResults }
ed448goldilocks/include/decaf.h

102 lines
2.5 KiB
Raw Blame History 

  1. /* Copyright (c) 2015 Cryptography Research, Inc.

  2.  * Released under the MIT License.  See LICENSE.txt for license information.

  3.  */

  4. 

  5. /**

  6.  * @file decaf.h

  7.  * @author Mike Hamburg

  8.  * @brief A group of prime order p.

  9.  *

  10.  * The Decaf library implements cryptographic operations on a an elliptic curve

  11.  * group of prime order p.  It accomplishes this by using a twisted Edwards

  12.  * curve (isogenous to Ed448-Goldilocks) and wiping out the cofactor.

  13.  *

  14.  * The formulas are all complete and have no special cases, except that

  15.  * decaf_decode can fail because not every sequence of bytes is a valid group

  16.  * element.

  17.  *

  18.  * The formulas contain no data-dependent branches, timing or memory accesses.

  19.  */

  20. #ifndef __DECAF_H__

  21. #define __DECAF_H__ 1

  22. 

  23. #include <stdint.h>

  24. 

  25. typedef uint64_t decaf_word_t, decaf_bool_t;

  26. #define DECAF_LIMBS (512/8/sizeof(decaf_word_t))

  27. #define DECAF_SER_BYTES 56

  28. typedef struct decaf_point_s {

  29.     decaf_word_t x[DECAF_LIMBS],y[DECAF_LIMBS],z[DECAF_LIMBS],t[DECAF_LIMBS];

  30. } decaf_point_t[1];

  31. 

  32. static const decaf_bool_t DECAF_SUCCESS = -(decaf_bool_t)1, DECAF_FAILURE = 0;

  33. 

  34. const decaf_point_t decaf_identity;

  35. 

  36. #ifdef __cplusplus

  37. extern "C" {

  38. #endif

  39.     

  40. #define API_VIS __attribute__((visibility("default")))

  41. #define WARN_UNUSED __attribute__((warn_unused_result))

  42. #define NONNULL2 __attribute__((nonnull(1,2)))

  43. #define NONNULL3 __attribute__((nonnull(1,2,3)))

  44. 

  45. void decaf_encode (

  46.     uint8_t ser[DECAF_SER_BYTES],

  47.     const decaf_point_t pt

  48. ) API_VIS NONNULL2;

  49.     

  50. decaf_bool_t decaf_decode (

  51.     decaf_point_t pt,

  52.     const uint8_t ser[DECAF_SER_BYTES],

  53.     decaf_bool_t allow_identity

  54. ) API_VIS WARN_UNUSED NONNULL2;

  55.     

  56. void decaf_add (

  57.     decaf_point_t a,

  58.     const decaf_point_t b,

  59.     const decaf_point_t c

  60. ) API_VIS NONNULL3;

  61.     

  62. void decaf_copy (

  63.     decaf_point_t a,

  64.     const decaf_point_t b

  65. ) API_VIS NONNULL2;

  66.     

  67. decaf_bool_t decaf_eq (

  68.     const decaf_point_t a,

  69.     const decaf_point_t b

  70. ) API_VIS WARN_UNUSED NONNULL2;

  71.     

  72. void decaf_sub (

  73.     decaf_point_t a,

  74.     const decaf_point_t b,

  75.     const decaf_point_t c

  76. ) API_VIS NONNULL3;

  77.     

  78. void decaf_add_sub (

  79.     decaf_point_t a,

  80.     const decaf_point_t b,

  81.     const decaf_point_t c,

  82.     decaf_bool_t do_sub

  83. ) API_VIS NONNULL3;

  84. 

  85. void decaf_scalarmul (

  86.     decaf_point_t a,

  87.     const decaf_point_t b,

  88.     const decaf_word_t *scalar,

  89.     unsigned int scalar_words

  90. ) API_VIS NONNULL3;

  91.     

  92. #undef API_VIS

  93. #undef WARN_UNUSED

  94. #undef NONNULL2

  95. #undef NONNULL3

  96. 

  97. #ifdef __cplusplus

  98. }; /* extern "C" */

  99. #endif

  100. 

  101. #endif /* __DECAF_H__ */