1
|
|
|
<?php |
2
|
|
|
declare(strict_types=1); |
3
|
|
|
|
4
|
|
|
namespace Mdanter\Ecc\Curves; |
5
|
|
|
|
6
|
|
|
use Mdanter\Ecc\Math\GmpMathInterface; |
7
|
|
|
use Mdanter\Ecc\Primitives\CurveParameters; |
8
|
|
|
use Mdanter\Ecc\Primitives\GeneratorPoint; |
9
|
|
|
use Mdanter\Ecc\Random\RandomNumberGeneratorInterface; |
10
|
|
|
|
11
|
|
|
/** |
12
|
|
|
* ********************************************************************* |
13
|
|
|
* Copyright (C) 2012 Matyas Danter |
14
|
|
|
* |
15
|
|
|
* Permission is hereby granted, free of charge, to any person obtaining |
16
|
|
|
* a copy of this software and associated documentation files (the "Software"), |
17
|
|
|
* to deal in the Software without restriction, including without limitation |
18
|
|
|
* the rights to use, copy, modify, merge, publish, distribute, sublicense, |
19
|
|
|
* and/or sell copies of the Software, and to permit persons to whom the |
20
|
|
|
* Software is furnished to do so, subject to the following conditions: |
21
|
|
|
* |
22
|
|
|
* The above copyright notice and this permission notice shall be included |
23
|
|
|
* in all copies or substantial portions of the Software. |
24
|
|
|
* |
25
|
|
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
26
|
|
|
* OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, |
27
|
|
|
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL |
28
|
|
|
* THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES |
29
|
|
|
* OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, |
30
|
|
|
* ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR |
31
|
|
|
* OTHER DEALINGS IN THE SOFTWARE. |
32
|
|
|
* *********************************************************************** |
33
|
|
|
*/ |
34
|
|
|
|
35
|
|
|
/** |
36
|
|
|
* This class encapsulates the NIST recommended curves |
37
|
|
|
* - fields are Mersenne primes, i.e. |
38
|
|
|
* for some p, Mersenne_prine = 2^p - 1 |
39
|
|
|
*/ |
40
|
|
|
class NistCurve |
41
|
|
|
{ |
42
|
|
|
|
43
|
|
|
const NAME_P192 = 'nistp192'; |
44
|
|
|
const NAME_P224 = 'nistp224'; |
45
|
|
|
const NAME_P256 = 'nistp256'; |
46
|
|
|
const NAME_P384 = 'nistp384'; |
47
|
|
|
const NAME_P521 = 'nistp521'; |
48
|
|
|
|
49
|
|
|
/** |
50
|
|
|
* @var GmpMathInterface |
51
|
|
|
*/ |
52
|
|
|
private $adapter; |
53
|
|
|
|
54
|
|
|
/** |
55
|
|
|
* @param GmpMathInterface $adapter |
56
|
|
|
*/ |
57
|
|
|
public function __construct(GmpMathInterface $adapter) |
58
|
|
|
{ |
59
|
|
|
$this->adapter = $adapter; |
60
|
|
|
} |
61
|
|
|
|
62
|
|
|
/** |
63
|
|
|
* Returns an NIST P-192 curve. |
64
|
|
|
* |
65
|
|
|
* @return NamedCurveFp |
66
|
|
|
*/ |
67
|
|
|
public function curve192(): NamedCurveFp |
68
|
|
|
{ |
69
|
|
|
$p = gmp_init('6277101735386680763835789423207666416083908700390324961279', 10); |
70
|
|
|
$b = gmp_init('64210519e59c80e70fa7e9ab72243049feb8deecc146b9b1', 16); |
71
|
|
|
|
72
|
|
|
$parameters = new CurveParameters(192, $p, gmp_init('-3', 10), $b); |
|
|
|
|
73
|
|
|
|
74
|
|
|
return new NamedCurveFp(self::NAME_P192, $parameters, $this->adapter); |
75
|
|
|
} |
76
|
|
|
|
77
|
|
|
/** |
78
|
|
|
* Returns an NIST P-192 generator. |
79
|
|
|
* |
80
|
|
|
* @param RandomNumberGeneratorInterface $randomGenerator |
81
|
|
|
* @return GeneratorPoint |
82
|
|
|
*/ |
83
|
|
|
public function generator192(RandomNumberGeneratorInterface $randomGenerator = null): GeneratorPoint |
84
|
|
|
{ |
85
|
|
|
$curve = $this->curve192(); |
86
|
|
|
$order = gmp_init('6277101735386680763835789423176059013767194773182842284081', 10); |
87
|
|
|
|
88
|
|
|
$x = gmp_init('188da80eb03090f67cbf20eb43a18800f4ff0afd82ff1012', 16); |
89
|
|
|
$y = gmp_init('07192b95ffc8da78631011ed6b24cdd573f977a11e794811', 16); |
90
|
|
|
|
91
|
|
|
return $curve->getGenerator($x, $y, $order, $randomGenerator); |
|
|
|
|
92
|
|
|
} |
93
|
|
|
|
94
|
|
|
/** |
95
|
|
|
* Returns an NIST P-224 curve |
96
|
|
|
* |
97
|
|
|
* @return NamedCurveFp |
98
|
|
|
*/ |
99
|
|
|
public function curve224(): NamedCurveFp |
100
|
|
|
{ |
101
|
|
|
$p = gmp_init('26959946667150639794667015087019630673557916260026308143510066298881', 10); |
102
|
|
|
$b = gmp_init('b4050a850c04b3abf54132565044b0b7d7bfd8ba270b39432355ffb4', 16); |
103
|
|
|
|
104
|
|
|
$parameters = new CurveParameters(224, $p, gmp_init(-3, 10), $b); |
|
|
|
|
105
|
|
|
|
106
|
|
|
return new NamedCurveFp(self::NAME_P224, $parameters, $this->adapter); |
107
|
|
|
} |
108
|
|
|
|
109
|
|
|
/** |
110
|
|
|
* Returns an NIST P-224 generator. |
111
|
|
|
* |
112
|
|
|
* @param RandomNumberGeneratorInterface $randomGenerator |
113
|
|
|
* @return GeneratorPoint |
114
|
|
|
*/ |
115
|
|
|
public function generator224(RandomNumberGeneratorInterface $randomGenerator = null): GeneratorPoint |
116
|
|
|
{ |
117
|
|
|
$curve = $this->curve224(); |
118
|
|
|
$order = gmp_init('26959946667150639794667015087019625940457807714424391721682722368061', 10); |
119
|
|
|
|
120
|
|
|
$x = gmp_init('b70e0cbd6bb4bf7f321390b94a03c1d356c21122343280d6115c1d21', 16); |
121
|
|
|
$y = gmp_init('bd376388b5f723fb4c22dfe6cd4375a05a07476444d5819985007e34', 16); |
122
|
|
|
|
123
|
|
|
return $curve->getGenerator($x, $y, $order, $randomGenerator); |
|
|
|
|
124
|
|
|
} |
125
|
|
|
|
126
|
|
|
/** |
127
|
|
|
* Returns an NIST P-256 curve. |
128
|
|
|
* |
129
|
|
|
* @return NamedCurveFp |
130
|
|
|
*/ |
131
|
|
|
public function curve256(): NamedCurveFp |
132
|
|
|
{ |
133
|
|
|
$p = gmp_init('115792089210356248762697446949407573530086143415290314195533631308867097853951', 10); |
134
|
|
|
$b = gmp_init('0x5ac635d8aa3a93e7b3ebbd55769886bc651d06b0cc53b0f63bce3c3e27d2604b', 16); |
135
|
|
|
|
136
|
|
|
$parameters = new CurveParameters(256, $p, gmp_init(-3, 10), $b); |
|
|
|
|
137
|
|
|
|
138
|
|
|
return new NamedCurveFp(self::NAME_P256, $parameters, $this->adapter); |
139
|
|
|
} |
140
|
|
|
|
141
|
|
|
/** |
142
|
|
|
* Returns an NIST P-256 generator. |
143
|
|
|
* |
144
|
|
|
* @param RandomNumberGeneratorInterface $randomGenerator |
145
|
|
|
* @return GeneratorPoint |
146
|
|
|
*/ |
147
|
|
|
public function generator256(RandomNumberGeneratorInterface $randomGenerator = null): GeneratorPoint |
148
|
|
|
{ |
149
|
|
|
$curve = $this->curve256(); |
150
|
|
|
$order = gmp_init('115792089210356248762697446949407573529996955224135760342422259061068512044369', 10); |
151
|
|
|
|
152
|
|
|
$x = gmp_init('0x6b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c296', 16); |
153
|
|
|
$y = gmp_init('0x4fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5', 16); |
154
|
|
|
|
155
|
|
|
return $curve->getGenerator($x, $y, $order, $randomGenerator); |
|
|
|
|
156
|
|
|
} |
157
|
|
|
|
158
|
|
|
/** |
159
|
|
|
* Returns an NIST P-384 curve. |
160
|
|
|
* |
161
|
|
|
* @return NamedCurveFp |
162
|
|
|
*/ |
163
|
|
|
public function curve384(): NamedCurveFp |
164
|
|
|
{ |
165
|
|
|
$p = gmp_init('39402006196394479212279040100143613805079739270465446667948293404245721771496870329047266088258938001861606973112319', 10); |
166
|
|
|
$b = gmp_init('0xb3312fa7e23ee7e4988e056be3f82d19181d9c6efe8141120314088f5013875ac656398d8a2ed19d2a85c8edd3ec2aef', 16); |
167
|
|
|
|
168
|
|
|
$parameters = new CurveParameters(384, $p, gmp_init(-3, 10), $b); |
|
|
|
|
169
|
|
|
|
170
|
|
|
return new NamedCurveFp(self::NAME_P384, $parameters, $this->adapter); |
171
|
|
|
} |
172
|
|
|
|
173
|
|
|
/** |
174
|
|
|
* Returns an NIST P-384 generator. |
175
|
|
|
* |
176
|
|
|
* @param RandomNumberGeneratorInterface $randomGenerator |
177
|
|
|
* @return GeneratorPoint |
178
|
|
|
*/ |
179
|
|
|
public function generator384(RandomNumberGeneratorInterface $randomGenerator = null): GeneratorPoint |
180
|
|
|
{ |
181
|
|
|
$curve = $this->curve384(); |
182
|
|
|
$order = gmp_init('39402006196394479212279040100143613805079739270465446667946905279627659399113263569398956308152294913554433653942643', 10); |
183
|
|
|
|
184
|
|
|
$x = gmp_init('0xaa87ca22be8b05378eb1c71ef320ad746e1d3b628ba79b9859f741e082542a385502f25dbf55296c3a545e3872760ab7', 16); |
185
|
|
|
$y = gmp_init('0x3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b1ce1d7e819d7a431d7c90ea0e5f', 16); |
186
|
|
|
|
187
|
|
|
return $curve->getGenerator($x, $y, $order, $randomGenerator); |
|
|
|
|
188
|
|
|
} |
189
|
|
|
|
190
|
|
|
/** |
191
|
|
|
* Returns an NIST P-521 curve. |
192
|
|
|
* |
193
|
|
|
* @return NamedCurveFp |
194
|
|
|
*/ |
195
|
|
|
public function curve521(): NamedCurveFp |
196
|
|
|
{ |
197
|
|
|
$p = gmp_init('6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057151', 10); |
198
|
|
|
$b = gmp_init('0x051953eb9618e1c9a1f929a21a0b68540eea2da725b99b315f3b8b489918ef109e156193951ec7e937b1652c0bd3bb1bf073573df883d2c34f1ef451fd46b503f00', 16); |
199
|
|
|
|
200
|
|
|
$parameters = new CurveParameters(521, $p, gmp_init(-3, 10), $b); |
|
|
|
|
201
|
|
|
|
202
|
|
|
return new NamedCurveFp(self::NAME_P521, $parameters, $this->adapter); |
203
|
|
|
} |
204
|
|
|
|
205
|
|
|
/** |
206
|
|
|
* Returns an NIST P-521 generator. |
207
|
|
|
* |
208
|
|
|
* @param RandomNumberGeneratorInterface $randomGenerator |
209
|
|
|
* @return GeneratorPoint |
210
|
|
|
*/ |
211
|
|
|
public function generator521(RandomNumberGeneratorInterface $randomGenerator = null): GeneratorPoint |
212
|
|
|
{ |
213
|
|
|
$curve = $this->curve521(); |
214
|
|
|
$order = gmp_init('6864797660130609714981900799081393217269435300143305409394463459185543183397655394245057746333217197532963996371363321113864768612440380340372808892707005449', 10); |
215
|
|
|
|
216
|
|
|
$x = gmp_init('0xc6858e06b70404e9cd9e3ecb662395b4429c648139053fb521f828af606b4d3dbaa14b5e77efe75928fe1dc127a2ffa8de3348b3c1856a429bf97e7e31c2e5bd66', 16); |
217
|
|
|
$y = gmp_init('0x11839296a789a3bc0045c8a5fb42c7d1bd998f54449579b446817afbd17273e662c97ee72995ef42640c550b9013fad0761353c7086a272c24088be94769fd16650', 16); |
218
|
|
|
|
219
|
|
|
return $curve->getGenerator($x, $y, $order, $randomGenerator); |
|
|
|
|
220
|
|
|
} |
221
|
|
|
} |
222
|
|
|
|