Accueil Explorer Aide
Connexion
fujianhao
/
bluez5_utils-5.62
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: master
Branches Tags
bluez5_utils...
/
ell
/
ecc-private.h

ecc-private.h 4.3 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140 
  1. /*
    2. 

  2.  *
    3. 

  3.  *  Embedded Linux library
    4. 

  4.  *
    5. 

  5.  *  Copyright (C) 2018 Intel Corporation. All rights reserved.
    6. 

  6.  *
    7. 

  7.  *  This library is free software; you can redistribute it and/or
    8. 

  8.  *  modify it under the terms of the GNU Lesser General Public
    9. 

  9.  *  License as published by the Free Software Foundation; either
    10. 

  10.  *  version 2.1 of the License, or (at your option) any later version.
    11. 

  11.  *
    12. 

  12.  *  This library is distributed in the hope that it will be useful,
    13. 

  13.  *  but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14.  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    15. 

  15.  *  Lesser General Public License for more details.
    16. 

  16.  *
    17. 

  17.  *  You should have received a copy of the GNU Lesser General Public
    18. 

  18.  *  License along with this library; if not, write to the Free Software
    19. 

  19.  *  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
    20. 

  20.  *
    21. 

  21.  */
    22. 

  22. 

  23. #include <stdbool.h>
    24. 

  24. #include <stdint.h>
    25. 

  25. 

  26. #include "ecc.h"
    27. 

  27. #include "util.h"
    28. 

  28. 

  29. struct l_ecc_curve;
    30. 

  30. 

  31. struct l_ecc_point {
    32. 

  32. 	uint64_t x[L_ECC_MAX_DIGITS];
    33. 

  33. 	uint64_t y[L_ECC_MAX_DIGITS];
    34. 

  34. 	const struct l_ecc_curve *curve;
    35. 

  35. };
    36. 

  36. 

  37. struct l_ecc_curve {
    38. 

  38. 	unsigned int ndigits;
    39. 

  39. 	unsigned int ike_group;
    40. 

  40. 	unsigned int tls_group;
    41. 

  41. 	const char *name;
    42. 

  42. 	struct l_ecc_point g;
    43. 

  43. 	uint64_t p[L_ECC_MAX_DIGITS];
    44. 

  44. 	uint64_t n[L_ECC_MAX_DIGITS];
    45. 

  45. 	uint64_t b[L_ECC_MAX_DIGITS];
    46. 

  46. 	int z;
    47. 

  47. };
    48. 

  48. 

  49. struct l_ecc_scalar {
    50. 

  50. 	uint64_t c[L_ECC_MAX_DIGITS];
    51. 

  51. 	const struct l_ecc_curve *curve;
    52. 

  52. };
    53. 

  53. 

  54. /*
    55. 

  55.  * Performs a secure memory comparison of two uint64_t buffers of size bytes
    56. 

  56.  * representing an integer. Blobs are ordered in little endian. It returns
    57. 

  57.  * a negative, zero or positif value if a < b, a == b or a > b respectively.
    58. 

  58.  */
    59. 

  59. static inline int secure_memcmp_64(const uint64_t *a, const uint64_t *b,
    60. 

  60. 					size_t size)
    61. 

  61. {
    62. 

  62. 	uint64_t aa_64, bb_64;
    63. 

  63. 

  64. 	int res = 0, mask;
    65. 

  65. 

  66. 	size_t i = 0;
    67. 

  67. 

  68. 	if (size) {
    69. 

  69. 		/*
    70. 

  70. 		 * Arrays store blobs in LE, we will process each blob as a
    71. 

  71. 		 * byte array of size 8 using l_secure_memcmp. We need to make
    72. 

  72. 		 * sure to feed a BE byte array to avoid unexpected behavior
    73. 

  73. 		 * on different architectures.
    74. 

  74. 		 */
    75. 

  75. 		do {
    76. 

  76. 			aa_64 = L_CPU_TO_BE64(a[i]);
    77. 

  77. 			bb_64 = L_CPU_TO_BE64(b[i]);
    78. 

  78. 			mask = l_secure_memcmp(&aa_64, &bb_64, 8);
    79. 

  79. 			res = (mask & res) | mask;
    80. 

  80. 			i++;
    81. 

  81. 		} while (i != size);
    82. 

  82. 	}
    83. 

  83. 

  84. 	return res;
    85. 

  85. }
    86. 

  86. 

  87. void _ecc_be2native(uint64_t *dest, const uint64_t *bytes,
    88. 

  88. 							unsigned int ndigits);
    89. 

  89. 

  90. void _ecc_native2be(uint64_t *dest, const uint64_t *native,
    91. 

  91. 							unsigned int ndigits);
    92. 

  92. 

  93. void _vli_mod_inv(uint64_t *result, const uint64_t *input, const uint64_t *mod,
    94. 

  94. 			unsigned int ndigits);
    95. 

  95. 

  96. void _vli_mod_sub(uint64_t *result, const uint64_t *left, const uint64_t *right,
    97. 

  97. 		const uint64_t *mod, unsigned int ndigits);
    98. 

  98. 

  99. void _vli_mod_add(uint64_t *result, const uint64_t *left, const uint64_t *right,
    100. 

  100. 			const uint64_t *mod, unsigned int ndigits);
    101. 

  101. 

  102. void _vli_rshift1(uint64_t *vli, unsigned int ndigits);
    103. 

  103. 

  104. bool _vli_mmod_fast(uint64_t *result, uint64_t *product,
    105. 

  105. 			const uint64_t *curve_prime, unsigned int ndigits);
    106. 

  106. 

  107. void _vli_mod_mult_fast(uint64_t *result, const uint64_t *left,
    108. 

  108. 		const uint64_t *right, const uint64_t *curve_prime,
    109. 

  109. 		unsigned int ndigits);
    110. 

  110. void _vli_mod_square_fast(uint64_t *result, const uint64_t *left,
    111. 

  111. 					const uint64_t *curve_prime,
    112. 

  112. 					unsigned int ndigits);
    113. 

  113. void _vli_mod_exp(uint64_t *result, const uint64_t *base, const uint64_t *exp,
    114. 

  114. 		const uint64_t *mod, unsigned int ndigits);
    115. 

  115. 

  116. int _vli_cmp(const uint64_t *left, const uint64_t *right, unsigned int ndigits);
    117. 

  117. bool _vli_is_zero_or_one(const uint64_t *vli, unsigned int ndigits);
    118. 

  118. 

  119. uint64_t _vli_add(uint64_t *result, const uint64_t *left,
    120. 

  120. 				const uint64_t *right, unsigned int ndigits);
    121. 

  121. uint64_t _vli_sub(uint64_t *result, const uint64_t *left,
    122. 

  122. 				const uint64_t *right, unsigned int ndigits);
    123. 

  123. 

  124. int _vli_legendre(uint64_t *val, const uint64_t *p, unsigned int ndigits);
    125. 

  125. 

  126. bool _ecc_point_is_zero(const struct l_ecc_point *point);
    127. 

  127. 

  128. void _ecc_calculate_p2(const struct l_ecc_curve *curve, uint64_t *p2);
    129. 

  129. 

  130. bool _ecc_compute_y(const struct l_ecc_curve *curve, uint64_t *y,
    131. 

  131. 							const uint64_t *x);
    132. 

  132. 

  133. void _ecc_point_mult(struct l_ecc_point *result,
    134. 

  134. 			const struct l_ecc_point *point, const uint64_t *scalar,
    135. 

  135. 			uint64_t *initial_z, const uint64_t *curve_prime);
    136. 

  136. void _ecc_point_add(struct l_ecc_point *ret, const struct l_ecc_point *p,
    137. 

  137. 			const struct l_ecc_point *q,
    138. 

  138. 			const uint64_t *curve_prime);
    139. 

  139. struct l_ecc_scalar *_ecc_constant_new(const struct l_ecc_curve *curve,
    140. 

  140. 						const void *buf, size_t len);
    141.