ec25519.h

Go to the documentation of this file.

/* 2025 Quantum Resistant Cryptographic Solutions Corporation
 * All Rights Reserved.
 *
 * NOTICE: This software and all accompanying materials are the exclusive 
 * property of Quantum Resistant Cryptographic Solutions Corporation (QRCS).
 * The intellectual and technical concepts contained within this implementation 
 * are proprietary to QRCS and its authorized licensors and are protected under 
 * applicable U.S. and international copyright, patent, and trade secret laws.
 *
 * CRYPTOGRAPHIC STANDARDS:
 * - This software includes implementations of cryptographic algorithms such as 
 *   SHA3, AES, and others. These algorithms are public domain or standardized 
 *   by organizations such as NIST and are NOT the property of QRCS.
 * - However, all source code, optimizations, and implementations in this library 
 *   are original works of QRCS and are protected under this license.
 *
 * RESTRICTIONS:
 * - Redistribution, modification, or unauthorized distribution of this software, 
 *   in whole or in part, is strictly prohibited.
 * - This software is provided for non-commercial, educational, and research 
 *   purposes only. Commercial use in any form is expressly forbidden.
 * - Licensing and authorized distribution are solely at the discretion of QRCS.
 * - Any use of this software implies acceptance of these restrictions.
 *
 * DISCLAIMER:
 * This software is provided "as is," without warranty of any kind, express or 
 * implied, including but not limited to warranties of merchantability or fitness 
 * for a particular purpose. QRCS disclaims all liability for any direct, indirect, 
 * incidental, or consequential damages resulting from the use or misuse of this software.
 *
 * FULL LICENSE:
 * This software is subject to the **Quantum Resistant Cryptographic Solutions 
 * Proprietary License (QRCS-PL)**. The complete license terms are included 
 * in the LICENSE.txt file distributed with this software.
 *
 * Written by: John G. Underhill
 * Contact: john.underhill@protonmail.com
 */
 
#ifndef QSC_EC25519_H
#define QSC_EC25519_H
 
#include "common.h"
 
QSC_CPLUSPLUS_ENABLED_START


#define EC25519_SEED_SIZE 32ULL

#define EC25519_SIGNATURE_SIZE 64ULL

#define EC25519_PUBLICKEY_SIZE 32ULL

#define EC25519_PRIVATEKEY_SIZE 64ULL

#define EC25519_CURVE_SIZE 32ULL

typedef QSC_SIMD_ALIGN int32_t fe25519[10];

typedef struct 
{
    fe25519 x; 
    fe25519 y; 
    fe25519 z; 
} ge25519_p2;

typedef struct 
{
    fe25519 x; 
    fe25519 y; 
    fe25519 z; 
    fe25519 t; 
} ge25519_p3;

typedef struct 
{
    fe25519 x; 
    fe25519 y; 
    fe25519 z; 
    fe25519 t; 
} ge25519_p1p1;

typedef struct 
{
    fe25519 yplusx;  
    fe25519 yminusx; 
    fe25519 xy2d;    
} ge25519_precomp;

typedef struct 
{
    fe25519 yplusx; 
    fe25519 yminusx;
    fe25519 z;      
    fe25519 t2d;    
} ge25519_cached;

void fe25519_0(fe25519 h);

void fe25519_1(fe25519 h);

void fe25519_copy(fe25519 h, const fe25519 f);

void fe25519_add(fe25519 h, const fe25519 f, const fe25519 g);

void fe25519_cswap(fe25519 f, fe25519 g, uint32_t b);

void fe25519_sub(fe25519 h, const fe25519 f, const fe25519 g);

void fe25519_neg(fe25519 h, const fe25519 f);

void fe25519_cmov(fe25519 f, const fe25519 g, uint32_t b);

int32_t fe25519_isnegative(const fe25519 f);

int32_t fe25519_iszero(const fe25519 f);

void fe25519_mul(fe25519 h, const fe25519 f, const fe25519 g);

void fe25519_mul32(fe25519 h, const fe25519 f, uint32_t n);

void fe25519_sq(fe25519 h, const fe25519 f);

void fe25519_sq2(fe25519 h, const fe25519 f);

void fe25519_frombytes(fe25519 h, const uint8_t* s);

void fe25519_reduce(fe25519 h, const fe25519 f);

void fe25519_tobytes(uint8_t* s, const fe25519 h);

void fe25519_invert(fe25519 out, const fe25519 z);

void ge25519_p1p1_to_p3(ge25519_p3* r, const ge25519_p1p1* p);

void ge25519_p1p1_to_p2(ge25519_p2* r, const ge25519_p1p1* p);

void ge25519_scalarmult_base(ge25519_p3* h, const uint8_t* a);

void ge25519_p3_tobytes(uint8_t* s, const ge25519_p3* h);

int32_t ge25519_is_canonical(const uint8_t* s);

int32_t ge25519_has_small_order(const uint8_t s[32]);

int32_t ge25519_frombytes_negate_vartime(ge25519_p3* h, const uint8_t* s);

void ge25519_p3_to_cached(ge25519_cached* r, const ge25519_p3* p);

void ge25519_add_cached(ge25519_p1p1* r, const ge25519_p3* p, const ge25519_cached* q);

void ge25519_sub_precomp(ge25519_p1p1* r, const ge25519_p3* p, const ge25519_precomp* q);

void ge25519_double_scalarmult_vartime(ge25519_p2* r, const uint8_t* a, const ge25519_p3* A, const uint8_t* b);

void ge25519_sub_cached(ge25519_p1p1* r, const ge25519_p3* p, const ge25519_cached* q);

void ge25519_tobytes(uint8_t* s, const ge25519_p2* h);

void sc25519_clamp(uint8_t* k);

int32_t ed25519_small_order(const uint8_t s[32]);

int32_t sc25519_is_canonical(const uint8_t s[32]);

void sc25519_muladd(uint8_t s[32], const uint8_t a[32], const uint8_t b[32], const uint8_t c[32]);

void sc25519_reduce(uint8_t s[64]);

int32_t qsc_sc25519_verify(const uint8_t* x, const uint8_t* y, const size_t n);
 
QSC_CPLUSPLUS_ENABLED_END
 
#endif