9 #include <botan/ecgdsa.h>
10 #include <botan/keypair.h>
11 #include <botan/reducer.h>
12 #include <botan/internal/pk_ops_impl.h>
13 #include <botan/internal/point_mul.h>
39 const std::string& emsa) :
40 PK_Ops::Signature_with_EMSA(emsa),
42 m_x(ecgdsa.private_value())
46 secure_vector<uint8_t> raw_sign(
const uint8_t msg[],
size_t msg_len,
47 RandomNumberGenerator& rng)
override;
49 size_t signature_length()
const override {
return 2*
m_group.get_order_bytes(); }
51 size_t max_input_bits()
const override {
return m_group.get_order_bits(); }
59 secure_vector<uint8_t>
60 ECGDSA_Signature_Operation::raw_sign(
const uint8_t msg[],
size_t msg_len,
61 RandomNumberGenerator& rng)
75 if(r.is_zero() || s.is_zero())
76 throw Internal_Error(
"During ECGDSA signature generated zero r/s");
84 class ECGDSA_Verification_Operation
final :
public PK_Ops::Verification_with_EMSA
88 ECGDSA_Verification_Operation(
const ECGDSA_PublicKey& ecgdsa,
89 const std::string& emsa) :
90 PK_Ops::Verification_with_EMSA(emsa),
96 size_t max_input_bits()
const override {
return m_group.get_order_bits(); }
98 bool with_recovery()
const override {
return false; }
100 bool verify(
const uint8_t msg[],
size_t msg_len,
101 const uint8_t sig[],
size_t sig_len)
override;
107 bool ECGDSA_Verification_Operation::verify(
const uint8_t msg[],
size_t msg_len,
108 const uint8_t sig[],
size_t sig_len)
115 const BigInt r(sig, sig_len / 2);
116 const BigInt s(sig + sig_len / 2, sig_len / 2);
136 std::unique_ptr<PK_Ops::Verification>
138 const std::string& provider)
const
140 if(provider ==
"base" || provider.empty())
141 return std::unique_ptr<PK_Ops::Verification>(
new ECGDSA_Verification_Operation(*
this, params));
145 std::unique_ptr<PK_Ops::Signature>
147 const std::string& params,
148 const std::string& provider)
const
150 if(provider ==
"base" || provider.empty())
151 return std::unique_ptr<PK_Ops::Signature>(
new ECGDSA_Signature_Operation(*
this, params));
std::string algo_name() const override
std::unique_ptr< PK_Ops::Signature > create_signature_op(RandomNumberGenerator &rng, const std::string ¶ms, const std::string &provider) const override
int(* final)(unsigned char *, CTX *)
BigInt inverse_mod_order(const BigInt &x) const
std::unique_ptr< PK_Ops::Verification > create_verification_op(const std::string ¶ms, const std::string &provider) const override
BigInt multiply_mod_order(const BigInt &x, const BigInt &y) const
const PointGFp & public_point() const
size_t get_order_bytes() const
bool signature_consistency_check(RandomNumberGenerator &rng, const Private_Key &private_key, const Public_Key &public_key, const std::string &padding)
const PointGFp_Multi_Point_Precompute m_gy_mul
BigInt mod_order(const BigInt &x) const
const BigInt & get_order() const
bool check_key(RandomNumberGenerator &rng, bool) const override
BigInt blinded_base_point_multiply_x(const BigInt &k, RandomNumberGenerator &rng, std::vector< BigInt > &ws) const
static secure_vector< uint8_t > encode_fixed_length_int_pair(const BigInt &n1, const BigInt &n2, size_t bytes)
PointGFp multi_exp(const BigInt &k1, const BigInt &k2) const
BigInt random_scalar(RandomNumberGenerator &rng) const
std::vector< BigInt > m_ws
size_t get_order_bits() const