ChrisChrome/ccryptolib
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Pack Curve25519 points into tables

Browse source
This commit is contained in:
Miguel Oliveira 2022-03-31 00:54:44 -03:00
parent bd832f1a23
commit 2fe2a37ca3
No known key found for this signature in database
GPG key ID: 2C2BE789E1377025
1 changed files with 13 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
internal/curve25519.lua
View file

@ -13,9 +13,8 @@
local fp = require "ccryptolib.internal.fp" local fp = require "ccryptolib.internal.fp"
local random = require "ccryptolib.random" local random = require "ccryptolib.random"
local unpack = unpack or table.unpack local function double(P1)
local x1, z1 = P1[1], P1[2]
local function double(x1, z1)
local a = fp.add(x1, z1) local a = fp.add(x1, z1)
local aa = fp.square(a) local aa = fp.square(a)
local b = fp.sub(x1, z1) local b = fp.sub(x1, z1)
@ -23,10 +22,12 @@ local function double(x1, z1)
local c = fp.sub(aa, bb) local c = fp.sub(aa, bb)
local x3 = fp.mul(aa, bb) local x3 = fp.mul(aa, bb)
local z3 = fp.mul(c, fp.add(bb, fp.kmul(c, 121666))) local z3 = fp.mul(c, fp.add(bb, fp.kmul(c, 121666)))
return x3, z3 return {x3, z3}
end end
local function step(dxmul, dx, x1, z1, x2, z2) local function step(dxmul, dx, P1, P2)
local x1, z1 = P1[1], P1[2]
local x2, z2 = P2[1], P2[2]
local a = fp.add(x1, z1) local a = fp.add(x1, z1)
local aa = fp.square(a) local aa = fp.square(a)
local b = fp.sub(x1, z1) local b = fp.sub(x1, z1)
@ -40,7 +41,7 @@ local function step(dxmul, dx, x1, z1, x2, z2)
local z4 = dxmul(fp.square(fp.sub(da, cb)), dx) local z4 = dxmul(fp.square(fp.sub(da, cb)), dx)
local x3 = fp.mul(aa, bb) local x3 = fp.mul(aa, bb)
local z3 = fp.mul(e, fp.add(bb, fp.kmul(e, 121666))) local z3 = fp.mul(e, fp.add(bb, fp.kmul(e, 121666)))
return x3, z3, x4, z4 return {x3, z3}, {x4, z4}
end end
--- Performs a Montgomery ladder operation with multiplication by 8. --- Performs a Montgomery ladder operation with multiplication by 8.
@ -52,27 +53,22 @@ end
-- bits. -- bits.
-- --
local function ladder8(dxmul, dx, bits) local function ladder8(dxmul, dx, bits)
local x1 = fp.num(1) local P = {fp.num(1), fp.num(0)}
local z1 = fp.num(0) local Q = {fp.decode(random.random(32)), dxmul(z2, dx)}
local z2 = fp.decode(random.random(32))
local x2 = dxmul(z2, dx)
-- Standard ladder. -- Standard ladder.
for i = #bits, 1, -1 do for i = #bits, 1, -1 do
if bits[i] == 0 then if bits[i] == 0 then
x1, z1, x2, z2 = step(dxmul, dx, x1, z1, x2, z2) P, Q = step(dxmul, dx, P, Q)
else else
x2, z2, x1, z1 = step(dxmul, dx, x2, z2, x1, z1) Q, P = step(dxmul, dx, Q, P)
end end
end end
-- Multiply by 8 (double 3 times). -- Multiply by 8 (double 3 times).
for _ = 1, 3 do for _ = 1, 3 do P = double(P) end
x1, z1 = double(x1, z1)
end
return fp.mul(x1, fp.invert(z1)) return fp.mul(P[1], fp.invert(P[2]))
end end
return { return {