xref: /freebsd/crypto/libecc/include/libecc/curves/known/ec_params_gost512.h (revision f0865ec9906d5a18fa2a3b61381f22ce16e606ad) 
1 /*
2  *  Copyright (C) 2017 - This file is part of libecc project
3  *
4  *  Authors:
5  *      Ryad BENADJILA <ryadbenadjila@gmail.com>
6  *      Arnaud EBALARD <arnaud.ebalard@ssi.gouv.fr>
7  *      Jean-Pierre FLORI <jean-pierre.flori@ssi.gouv.fr>
8  *
9  *  Contributors:
10  *      Nicolas VIVET <nicolas.vivet@ssi.gouv.fr>
11  *      Karim KHALFALLAH <karim.khalfallah@ssi.gouv.fr>
12  *
13  *  This software is licensed under a dual BSD and GPL v2 license.
14  *  See LICENSE file at the root folder of the project.
15  */
16 #include <libecc/lib_ecc_config.h>
17 #ifdef WITH_CURVE_GOST512
18 
19 #ifndef __EC_PARAMS_GOST512_H__
20 #define __EC_PARAMS_GOST512_H__
21 #include "ec_params_external.h"
22 
23 static const u8 GOST_512bits_curve_p[] = {
24 	0x45, 0x31, 0xAC, 0xD1, 0xFE, 0x00, 0x23, 0xC7,
25 	0x55, 0x0D, 0x26, 0x7B, 0x6B, 0x2F, 0xEE, 0x80,
26 	0x92, 0x2B, 0x14, 0xB2, 0xFF, 0xB9, 0x0F, 0x04,
27 	0xD4, 0xEB, 0x7C, 0x09, 0xB5, 0xD2, 0xD1, 0x5D,
28 	0xF1, 0xD8, 0x52, 0x74, 0x1A, 0xF4, 0x70, 0x4A,
29 	0x04, 0x58, 0x04, 0x7E, 0x80, 0xE4, 0x54, 0x6D,
30 	0x35, 0xB8, 0x33, 0x6F, 0xAC, 0x22, 0x4D, 0xD8,
31 	0x16, 0x64, 0xBB, 0xF5, 0x28, 0xBE, 0x63, 0x73
32 };
33 
34 TO_EC_STR_PARAM(GOST_512bits_curve_p);
35 
36 #define CURVE_GOST512_P_BITLEN 512
37 static const u8 GOST_512bits_curve_p_bitlen[] = { 0x01, 0xff };
38 
39 TO_EC_STR_PARAM(GOST_512bits_curve_p_bitlen);
40 
41 static const u8 GOST_512bits_curve_p_normalized[] = {
42 	0x8a, 0x63, 0x59, 0xa3, 0xfc, 0x00, 0x47, 0x8e,
43 	0xaa, 0x1a, 0x4c, 0xf6, 0xd6, 0x5f, 0xdd, 0x01,
44 	0x24, 0x56, 0x29, 0x65, 0xff, 0x72, 0x1e, 0x09,
45 	0xa9, 0xd6, 0xf8, 0x13, 0x6b, 0xa5, 0xa2, 0xbb,
46 	0xe3, 0xb0, 0xa4, 0xe8, 0x35, 0xe8, 0xe0, 0x94,
47 	0x08, 0xb0, 0x08, 0xfd, 0x01, 0xc8, 0xa8, 0xda,
48 	0x6b, 0x70, 0x66, 0xdf, 0x58, 0x44, 0x9b, 0xb0,
49 	0x2c, 0xc9, 0x77, 0xea, 0x51, 0x7c, 0xc6, 0xe6
50 };
51 
52 TO_EC_STR_PARAM(GOST_512bits_curve_p_normalized);
53 
54 static const u8 GOST_512bits_curve_r[] = {
55 	0x30, 0x6a, 0xf9, 0x8a, 0x05, 0xff, 0x94, 0xaa,
56 	0x00, 0xd8, 0x8c, 0x8d, 0xbe, 0x70, 0x34, 0x7e,
57 	0x49, 0x7e, 0xc1, 0xe7, 0x00, 0xd4, 0xd2, 0xf1,
58 	0x81, 0x3d, 0x8b, 0xe2, 0xde, 0x87, 0x8b, 0xe6,
59 	0x2a, 0x77, 0x08, 0xa3, 0xaf, 0x22, 0xaf, 0x21,
60 	0xf2, 0xf7, 0xf2, 0x84, 0x7d, 0x53, 0x02, 0xb8,
61 	0x5e, 0xd7, 0x65, 0xb0, 0xfb, 0x99, 0x16, 0x77,
62 	0xbc, 0xd1, 0xcc, 0x20, 0x85, 0xc4, 0xd5, 0xa7
63 };
64 
65 TO_EC_STR_PARAM(GOST_512bits_curve_r);
66 
67 static const u8 GOST_512bits_curve_r_square[] = {
68 	0x1d, 0x88, 0x7d, 0xcd, 0x9c, 0xd1, 0x9c, 0x10,
69 	0x01, 0xfd, 0xe9, 0xca, 0x99, 0xde, 0x08, 0x52,
70 	0xfc, 0xd9, 0x83, 0xcf, 0xb7, 0xc6, 0x63, 0xd9,
71 	0xca, 0x0b, 0xc8, 0xaf, 0x77, 0xc8, 0x69, 0x0a,
72 	0x08, 0x15, 0xb9, 0xeb, 0x1e, 0x7d, 0xd3, 0x00,
73 	0xe4, 0x17, 0xd5, 0x8d, 0x20, 0x0c, 0x2a, 0xa0,
74 	0x4b, 0x90, 0x7a, 0x71, 0xe6, 0x47, 0xee, 0x63,
75 	0x00, 0x1c, 0x10, 0xbc, 0x2d, 0x00, 0x5b, 0x65
76 };
77 
78 TO_EC_STR_PARAM(GOST_512bits_curve_r_square);
79 
80 static const u8 GOST_512bits_curve_mpinv[] = {
81 	0xd6, 0x41, 0x2f, 0xf7, 0xc2, 0x9b, 0x86, 0x45
82 };
83 
84 TO_EC_STR_PARAM(GOST_512bits_curve_mpinv);
85 
86 static const u8 GOST_512bits_curve_p_shift[] = { 0x01 };
87 
88 TO_EC_STR_PARAM(GOST_512bits_curve_p_shift);
89 
90 #if (WORD_BYTES == 8)		/* 64-bit words */
91 static const u8 GOST_512bits_curve_p_reciprocal[] = {
92 	0xd9, 0x91, 0x18, 0x3c, 0xe8, 0xbf, 0x25, 0x61
93 };
94 #elif (WORD_BYTES == 4)		/* 32-bit words */
95 static const u8 GOST_512bits_curve_p_reciprocal[] = {
96 	0xd9, 0x91, 0x18, 0x3c
97 };
98 #elif (WORD_BYTES == 2)		/* 16-bit words */
99 static const u8 GOST_512bits_curve_p_reciprocal[] = {
100 	0xd9, 0x91
101 };
102 #else /* unknown word size */
103 #error "Unsupported word size"
104 #endif
105 TO_EC_STR_PARAM(GOST_512bits_curve_p_reciprocal);
106 
107 static const u8 GOST_512bits_curve_a[] = {
108 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
109 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
110 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
111 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
112 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
113 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
114 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
115 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x07
116 };
117 
118 TO_EC_STR_PARAM(GOST_512bits_curve_a);
119 
120 static const u8 GOST_512bits_curve_b[] = {
121 	0x1C, 0xFF, 0x08, 0x06, 0xA3, 0x11, 0x16, 0xDA,
122 	0x29, 0xD8, 0xCF, 0xA5, 0x4E, 0x57, 0xEB, 0x74,
123 	0x8B, 0xC5, 0xF3, 0x77, 0xE4, 0x94, 0x00, 0xFD,
124 	0xD7, 0x88, 0xB6, 0x49, 0xEC, 0xA1, 0xAC, 0x43,
125 	0x61, 0x83, 0x40, 0x13, 0xB2, 0xAD, 0x73, 0x22,
126 	0x48, 0x0A, 0x89, 0xCA, 0x58, 0xE0, 0xCF, 0x74,
127 	0xBC, 0x9E, 0x54, 0x0C, 0x2A, 0xDD, 0x68, 0x97,
128 	0xFA, 0xD0, 0xA3, 0x08, 0x4F, 0x30, 0x2A, 0xDC
129 };
130 
131 TO_EC_STR_PARAM(GOST_512bits_curve_b);
132 
133 #define CURVE_GOST512_CURVE_ORDER_BITLEN 511
134 static const u8 GOST_512bits_curve_order[] = {
135 	0x45, 0x31, 0xac, 0xd1, 0xfe, 0x00, 0x23, 0xc7,
136 	0x55, 0x0d, 0x26, 0x7b, 0x6b, 0x2f, 0xee, 0x80,
137 	0x92, 0x2b, 0x14, 0xb2, 0xff, 0xb9, 0x0f, 0x04,
138 	0xd4, 0xeb, 0x7c, 0x09, 0xb5, 0xd2, 0xd1, 0x5d,
139 	0xa8, 0x2f, 0x2d, 0x7e, 0xcb, 0x1d, 0xba, 0xc7,
140 	0x19, 0x90, 0x5c, 0x5e, 0xec, 0xc4, 0x23, 0xf1,
141 	0xd8, 0x6e, 0x25, 0xed, 0xbe, 0x23, 0xc5, 0x95,
142 	0xd6, 0x44, 0xaa, 0xf1, 0x87, 0xe6, 0xe6, 0xdf
143 };
144 
145 TO_EC_STR_PARAM(GOST_512bits_curve_order);
146 
147 static const u8 GOST_512bits_curve_gx[] = {
148 	0x24, 0xD1, 0x9C, 0xC6, 0x45, 0x72, 0xEE, 0x30,
149 	0xF3, 0x96, 0xBF, 0x6E, 0xBB, 0xFD, 0x7A, 0x6C,
150 	0x52, 0x13, 0xB3, 0xB3, 0xD7, 0x05, 0x7C, 0xC8,
151 	0x25, 0xF9, 0x10, 0x93, 0xA6, 0x8C, 0xD7, 0x62,
152 	0xFD, 0x60, 0x61, 0x12, 0x62, 0xCD, 0x83, 0x8D,
153 	0xC6, 0xB6, 0x0A, 0xA7, 0xEE, 0xE8, 0x04, 0xE2,
154 	0x8B, 0xC8, 0x49, 0x97, 0x7F, 0xAC, 0x33, 0xB4,
155 	0xB5, 0x30, 0xF1, 0xB1, 0x20, 0x24, 0x8A, 0x9A
156 };
157 
158 TO_EC_STR_PARAM(GOST_512bits_curve_gx);
159 
160 static const u8 GOST_512bits_curve_gy[] = {
161 	0x2B, 0xB3, 0x12, 0xA4, 0x3B, 0xD2, 0xCE, 0x6E,
162 	0x0D, 0x02, 0x06, 0x13, 0xC8, 0x57, 0xAC, 0xDD,
163 	0xCF, 0xBF, 0x06, 0x1E, 0x91, 0xE5, 0xF2, 0xC3,
164 	0xF3, 0x24, 0x47, 0xC2, 0x59, 0xF3, 0x9B, 0x2C,
165 	0x83, 0xAB, 0x15, 0x6D, 0x77, 0xF1, 0x49, 0x6B,
166 	0xF7, 0xEB, 0x33, 0x51, 0xE1, 0xEE, 0x4E, 0x43,
167 	0xDC, 0x1A, 0x18, 0xB9, 0x1B, 0x24, 0x64, 0x0B,
168 	0x6D, 0xBB, 0x92, 0xCB, 0x1A, 0xDD, 0x37, 0x1E
169 };
170 
171 TO_EC_STR_PARAM(GOST_512bits_curve_gy);
172 
173 static const u8 GOST_512bits_curve_gz[] = {
174 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
175 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
176 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
177 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
178 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
179 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
180 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
181 	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01
182 };
183 
184 TO_EC_STR_PARAM(GOST_512bits_curve_gz);
185 
186 static const u8 GOST_512bits_curve_gen_order[] = {
187 	0x45, 0x31, 0xac, 0xd1, 0xfe, 0x00, 0x23, 0xc7,
188 	0x55, 0x0d, 0x26, 0x7b, 0x6b, 0x2f, 0xee, 0x80,
189 	0x92, 0x2b, 0x14, 0xb2, 0xff, 0xb9, 0x0f, 0x04,
190 	0xd4, 0xeb, 0x7c, 0x09, 0xb5, 0xd2, 0xd1, 0x5d,
191 	0xa8, 0x2f, 0x2d, 0x7e, 0xcb, 0x1d, 0xba, 0xc7,
192 	0x19, 0x90, 0x5c, 0x5e, 0xec, 0xc4, 0x23, 0xf1,
193 	0xd8, 0x6e, 0x25, 0xed, 0xbe, 0x23, 0xc5, 0x95,
194 	0xd6, 0x44, 0xaa, 0xf1, 0x87, 0xe6, 0xe6, 0xdf
195 };
196 
197 TO_EC_STR_PARAM(GOST_512bits_curve_gen_order);
198 
199 #define CURVE_GOST512_Q_BITLEN 511
200 static const u8 GOST_512bits_curve_gen_order_bitlen[] = { 0x01, 0xff };
201 
202 TO_EC_STR_PARAM(GOST_512bits_curve_gen_order_bitlen);
203 
204 static const u8 GOST_512bits_curve_cofactor[] = { 0x01 };
205 
206 TO_EC_STR_PARAM(GOST_512bits_curve_cofactor);
207 
208 static const u8 GOST_512bits_curve_alpha_montgomery[] = {
209 	0x00,
210 };
211 
212 TO_EC_STR_PARAM_FIXED_SIZE(GOST_512bits_curve_alpha_montgomery, 0);
213 
214 static const u8 GOST_512bits_curve_gamma_montgomery[] = {
215 	0x00,
216 };
217 
218 TO_EC_STR_PARAM_FIXED_SIZE(GOST_512bits_curve_gamma_montgomery, 0);
219 
220 static const u8 GOST_512bits_curve_alpha_edwards[] = {
221 	0x00,
222 };
223 
224 TO_EC_STR_PARAM_FIXED_SIZE(GOST_512bits_curve_alpha_edwards, 0);
225 
226 static const u8 GOST_512bits_curve_oid[] = "unknown2";
227 
228 TO_EC_STR_PARAM(GOST_512bits_curve_oid);
229 
230 static const u8 GOST_512bits_curve_name[] = "GOST512";
231 
232 TO_EC_STR_PARAM(GOST_512bits_curve_name);
233 
234 static const ec_str_params GOST_512bits_curve_str_params = {
235 	.p = &GOST_512bits_curve_p_str_param,
236 	.p_bitlen = &GOST_512bits_curve_p_bitlen_str_param,
237 	.r = &GOST_512bits_curve_r_str_param,
238 	.r_square = &GOST_512bits_curve_r_square_str_param,
239 	.mpinv = &GOST_512bits_curve_mpinv_str_param,
240 	.p_shift = &GOST_512bits_curve_p_shift_str_param,
241 	.p_normalized = &GOST_512bits_curve_p_normalized_str_param,
242 	.p_reciprocal = &GOST_512bits_curve_p_reciprocal_str_param,
243 	.a = &GOST_512bits_curve_a_str_param,
244 	.b = &GOST_512bits_curve_b_str_param,
245 	.curve_order = &GOST_512bits_curve_order_str_param,
246 	.gx = &GOST_512bits_curve_gx_str_param,
247 	.gy = &GOST_512bits_curve_gy_str_param,
248 	.gz = &GOST_512bits_curve_gz_str_param,
249 	.gen_order = &GOST_512bits_curve_gen_order_str_param,
250 	.gen_order_bitlen = &GOST_512bits_curve_gen_order_bitlen_str_param,
251 	.cofactor = &GOST_512bits_curve_cofactor_str_param,
252 	.alpha_montgomery = &GOST_512bits_curve_alpha_montgomery_str_param,
253 	.gamma_montgomery = &GOST_512bits_curve_gamma_montgomery_str_param,
254 	.alpha_edwards = &GOST_512bits_curve_alpha_edwards_str_param,
255 	.oid = &GOST_512bits_curve_oid_str_param,
256 	.name = &GOST_512bits_curve_name_str_param,
257 };
258 
259 /*
260  * Compute max bit length of all curves for p and q
261  */
262 #ifndef CURVES_MAX_P_BIT_LEN
263 #define CURVES_MAX_P_BIT_LEN    0
264 #endif
265 #if (CURVES_MAX_P_BIT_LEN < CURVE_GOST512_P_BITLEN)
266 #undef CURVES_MAX_P_BIT_LEN
267 #define CURVES_MAX_P_BIT_LEN CURVE_GOST512_P_BITLEN
268 #endif
269 #ifndef CURVES_MAX_Q_BIT_LEN
270 #define CURVES_MAX_Q_BIT_LEN    0
271 #endif
272 #if (CURVES_MAX_Q_BIT_LEN < CURVE_GOST512_Q_BITLEN)
273 #undef CURVES_MAX_Q_BIT_LEN
274 #define CURVES_MAX_Q_BIT_LEN CURVE_GOST512_Q_BITLEN
275 #endif
276 #ifndef CURVES_MAX_CURVE_ORDER_BIT_LEN
277 #define CURVES_MAX_CURVE_ORDER_BIT_LEN    0
278 #endif
279 #if (CURVES_MAX_CURVE_ORDER_BIT_LEN < CURVE_GOST512_CURVE_ORDER_BITLEN)
280 #undef CURVES_MAX_CURVE_ORDER_BIT_LEN
281 #define CURVES_MAX_CURVE_ORDER_BIT_LEN CURVE_GOST512_CURVE_ORDER_BITLEN
282 #endif
283 
284 #endif /* __EC_PARAMS_GOST512_H__ */
285 
286 #endif /* WITH_CURVE_GOST512 */
287