1N/A/* BEGIN CSTYLED */
1N/A/*
1N/A * ***** BEGIN LICENSE BLOCK *****
1N/A * Version: MPL 1.1/GPL 2.0/LGPL 2.1
1N/A *
1N/A * The contents of this file are subject to the Mozilla Public License Version
1N/A * 1.1 (the "License"); you may not use this file except in compliance with
1N/A * the License. You may obtain a copy of the License at
1N/A * http://www.mozilla.org/MPL/
1N/A *
1N/A * Software distributed under the License is distributed on an "AS IS" basis,
1N/A * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
1N/A * for the specific language governing rights and limitations under the
1N/A * License.
1N/A *
1N/A * The Original Code is the Elliptic Curve Cryptography library.
1N/A *
1N/A * The Initial Developer of the Original Code is
1N/A * Sun Microsystems, Inc.
1N/A * Portions created by the Initial Developer are Copyright (C) 2003
1N/A * the Initial Developer. All Rights Reserved.
1N/A *
1N/A * Contributor(s):
1N/A * Dr Vipul Gupta <vipul.gupta@sun.com> and
1N/A * Douglas Stebila <douglas@stebila.ca>, Sun Microsystems Laboratories
1N/A *
1N/A * Alternatively, the contents of this file may be used under the terms of
1N/A * either the GNU General Public License Version 2 or later (the "GPL"), or
1N/A * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
1N/A * in which case the provisions of the GPL or the LGPL are applicable instead
1N/A * of those above. If you wish to allow use of your version of this file only
1N/A * under the terms of either the GPL or the LGPL, and not to allow others to
1N/A * use your version of this file under the terms of the MPL, indicate your
1N/A * decision by deleting the provisions above and replace them with the notice
1N/A * and other provisions required by the GPL or the LGPL. If you do not delete
1N/A * the provisions above, a recipient may use your version of this file under
1N/A * the terms of any one of the MPL, the GPL or the LGPL.
1N/A *
1N/A * ***** END LICENSE BLOCK ***** */
1N/A/*
1N/A * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
1N/A *
1N/A * Sun elects to use this software under the MPL license.
1N/A */
1N/A
1N/A#include <sys/types.h>
1N/A#include <sys/systm.h>
1N/A#include <sys/param.h>
1N/A#ifdef _KERNEL
1N/A#include <sys/kmem.h>
1N/A#else
1N/A#include <string.h>
1N/A#endif
1N/A#include "ec.h"
1N/A#include "ecl-curve.h"
1N/A#include "ecc_impl.h"
1N/A
1N/A#define MAX_ECKEY_LEN 72
1N/A#define SEC_ASN1_OBJECT_ID 0x06
1N/A
1N/A/*
1N/A * Initializes a SECItem from a hexadecimal string
1N/A *
1N/A * Warning: This function ignores leading 00's, so any leading 00's
1N/A * in the hexadecimal string must be optional.
1N/A */
1N/Astatic SECItem *
1N/AhexString2SECItem(PRArenaPool *arena, SECItem *item, const char *str,
1N/A int kmflag)
1N/A{
1N/A int i = 0;
1N/A int byteval = 0;
1N/A int tmp = strlen(str);
1N/A
1N/A if ((tmp % 2) != 0) return NULL;
1N/A
1N/A /* skip leading 00's unless the hex string is "00" */
1N/A while ((tmp > 2) && (str[0] == '0') && (str[1] == '0')) {
1N/A str += 2;
1N/A tmp -= 2;
1N/A }
1N/A
1N/A item->data = (unsigned char *) PORT_ArenaAlloc(arena, tmp/2, kmflag);
1N/A if (item->data == NULL) return NULL;
1N/A item->len = tmp/2;
1N/A
1N/A while (str[i]) {
1N/A if ((str[i] >= '0') && (str[i] <= '9'))
1N/A tmp = str[i] - '0';
1N/A else if ((str[i] >= 'a') && (str[i] <= 'f'))
1N/A tmp = str[i] - 'a' + 10;
1N/A else if ((str[i] >= 'A') && (str[i] <= 'F'))
1N/A tmp = str[i] - 'A' + 10;
1N/A else
1N/A return NULL;
1N/A
1N/A byteval = byteval * 16 + tmp;
1N/A if ((i % 2) != 0) {
1N/A item->data[i/2] = byteval;
1N/A byteval = 0;
1N/A }
1N/A i++;
1N/A }
1N/A
1N/A return item;
1N/A}
1N/A
1N/Astatic SECStatus
1N/Agf_populate_params(ECCurveName name, ECFieldType field_type, ECParams *params,
1N/A int kmflag)
1N/A{
1N/A SECStatus rv = SECFailure;
1N/A const ECCurveParams *curveParams;
1N/A /* 2 ['0'+'4'] + MAX_ECKEY_LEN * 2 [x,y] * 2 [hex string] + 1 ['\0'] */
1N/A char genenc[3 + 2 * 2 * MAX_ECKEY_LEN];
1N/A
1N/A if ((name < ECCurve_noName) || (name > ECCurve_pastLastCurve)) goto cleanup;
1N/A params->name = name;
1N/A curveParams = ecCurve_map[params->name];
1N/A CHECK_OK(curveParams);
1N/A params->fieldID.size = curveParams->size;
1N/A params->fieldID.type = field_type;
1N/A if (field_type == ec_field_GFp) {
1N/A CHECK_OK(hexString2SECItem(NULL, &params->fieldID.u.prime,
1N/A curveParams->irr, kmflag));
1N/A } else {
1N/A CHECK_OK(hexString2SECItem(NULL, &params->fieldID.u.poly,
1N/A curveParams->irr, kmflag));
1N/A }
1N/A CHECK_OK(hexString2SECItem(NULL, &params->curve.a,
1N/A curveParams->curvea, kmflag));
1N/A CHECK_OK(hexString2SECItem(NULL, &params->curve.b,
1N/A curveParams->curveb, kmflag));
1N/A genenc[0] = '0';
1N/A genenc[1] = '4';
1N/A genenc[2] = '\0';
1N/A strcat(genenc, curveParams->genx);
1N/A strcat(genenc, curveParams->geny);
1N/A CHECK_OK(hexString2SECItem(NULL, &params->base, genenc, kmflag));
1N/A CHECK_OK(hexString2SECItem(NULL, &params->order,
1N/A curveParams->order, kmflag));
1N/A params->cofactor = curveParams->cofactor;
1N/A
1N/A rv = SECSuccess;
1N/A
1N/Acleanup:
1N/A return rv;
1N/A}
1N/A
1N/AECCurveName SECOID_FindOIDTag(const SECItem *);
1N/A
1N/ASECStatus
1N/AEC_FillParams(PRArenaPool *arena, const SECItem *encodedParams,
1N/A ECParams *params, int kmflag)
1N/A{
1N/A SECStatus rv = SECFailure;
1N/A ECCurveName tag;
1N/A SECItem oid = { siBuffer, NULL, 0};
1N/A
1N/A#if EC_DEBUG
1N/A int i;
1N/A
1N/A printf("Encoded params in EC_DecodeParams: ");
1N/A for (i = 0; i < encodedParams->len; i++) {
1N/A printf("%02x:", encodedParams->data[i]);
1N/A }
1N/A printf("\n");
1N/A#endif
1N/A
1N/A if ((encodedParams->len != ANSI_X962_CURVE_OID_TOTAL_LEN) &&
1N/A (encodedParams->len != SECG_CURVE_OID_TOTAL_LEN)) {
1N/A PORT_SetError(SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE);
1N/A return SECFailure;
1N/A };
1N/A
1N/A oid.len = encodedParams->len - 2;
1N/A oid.data = encodedParams->data + 2;
1N/A if ((encodedParams->data[0] != SEC_ASN1_OBJECT_ID) ||
1N/A ((tag = SECOID_FindOIDTag(&oid)) == ECCurve_noName)) {
1N/A PORT_SetError(SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE);
1N/A return SECFailure;
1N/A }
1N/A
1N/A params->arena = arena;
1N/A params->cofactor = 0;
1N/A params->type = ec_params_named;
1N/A params->name = ECCurve_noName;
1N/A
1N/A /* For named curves, fill out curveOID */
1N/A params->curveOID.len = oid.len;
1N/A params->curveOID.data = (unsigned char *) PORT_ArenaAlloc(NULL, oid.len,
1N/A kmflag);
1N/A if (params->curveOID.data == NULL) goto cleanup;
1N/A memcpy(params->curveOID.data, oid.data, oid.len);
1N/A
1N/A#if EC_DEBUG
1N/A printf("Curve: %s\n", SECOID_FindOIDTagDescription(tag));
1N/A#endif
1N/A
1N/A switch (tag) {
1N/A
1N/A /* Binary curves */
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB163V1:
1N/A /* Populate params for c2pnb163v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB163V1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB163V2:
1N/A /* Populate params for c2pnb163v2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB163V2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB163V3:
1N/A /* Populate params for c2pnb163v3 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB163V3, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB176V1:
1N/A /* Populate params for c2pnb176v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB176V1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB191V1:
1N/A /* Populate params for c2tnb191v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB191V1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB191V2:
1N/A /* Populate params for c2tnb191v2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB191V2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB191V3:
1N/A /* Populate params for c2tnb191v3 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB191V3, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB208W1:
1N/A /* Populate params for c2pnb208w1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB208W1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB239V1:
1N/A /* Populate params for c2tnb239v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB239V1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB239V2:
1N/A /* Populate params for c2tnb239v2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB239V2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB239V3:
1N/A /* Populate params for c2tnb239v3 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB239V3, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB272W1:
1N/A /* Populate params for c2pnb272w1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB272W1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB304W1:
1N/A /* Populate params for c2pnb304w1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB304W1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB359V1:
1N/A /* Populate params for c2tnb359v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB359V1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_PNB368W1:
1N/A /* Populate params for c2pnb368w1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_PNB368W1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_CHAR2_TNB431R1:
1N/A /* Populate params for c2tnb431r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_CHAR2_TNB431R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_113R1:
1N/A /* Populate params for sect113r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_113R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_113R2:
1N/A /* Populate params for sect113r2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_113R2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_131R1:
1N/A /* Populate params for sect131r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_131R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_131R2:
1N/A /* Populate params for sect131r2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_131R2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_163K1:
1N/A /* Populate params for sect163k1
1N/A * (the NIST K-163 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_163K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_163R1:
1N/A /* Populate params for sect163r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_163R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_163R2:
1N/A /* Populate params for sect163r2
1N/A * (the NIST B-163 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_163R2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_193R1:
1N/A /* Populate params for sect193r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_193R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_193R2:
1N/A /* Populate params for sect193r2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_193R2, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_233K1:
1N/A /* Populate params for sect233k1
1N/A * (the NIST K-233 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_233K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_233R1:
1N/A /* Populate params for sect233r1
1N/A * (the NIST B-233 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_233R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_239K1:
1N/A /* Populate params for sect239k1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_239K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_283K1:
1N/A /* Populate params for sect283k1
1N/A * (the NIST K-283 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_283K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_283R1:
1N/A /* Populate params for sect283r1
1N/A * (the NIST B-283 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_283R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_409K1:
1N/A /* Populate params for sect409k1
1N/A * (the NIST K-409 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_409K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_409R1:
1N/A /* Populate params for sect409r1
1N/A * (the NIST B-409 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_409R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_571K1:
1N/A /* Populate params for sect571k1
1N/A * (the NIST K-571 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_571K1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_CHAR2_571R1:
1N/A /* Populate params for sect571r1
1N/A * (the NIST B-571 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_CHAR2_571R1, ec_field_GF2m,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A /* Prime curves */
1N/A
1N/A case ECCurve_X9_62_PRIME_192V1:
1N/A /* Populate params for prime192v1 aka secp192r1
1N/A * (the NIST P-192 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_192V1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_192V2:
1N/A /* Populate params for prime192v2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_192V2, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_192V3:
1N/A /* Populate params for prime192v3 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_192V3, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_239V1:
1N/A /* Populate params for prime239v1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_239V1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_239V2:
1N/A /* Populate params for prime239v2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_239V2, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_239V3:
1N/A /* Populate params for prime239v3 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_239V3, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_X9_62_PRIME_256V1:
1N/A /* Populate params for prime256v1 aka secp256r1
1N/A * (the NIST P-256 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_X9_62_PRIME_256V1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_112R1:
1N/A /* Populate params for secp112r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_112R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_112R2:
1N/A /* Populate params for secp112r2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_112R2, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_128R1:
1N/A /* Populate params for secp128r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_128R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_128R2:
1N/A /* Populate params for secp128r2 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_128R2, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_160K1:
1N/A /* Populate params for secp160k1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_160K1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_160R1:
1N/A /* Populate params for secp160r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_160R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_160R2:
1N/A /* Populate params for secp160r1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_160R2, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_192K1:
1N/A /* Populate params for secp192k1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_192K1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_224K1:
1N/A /* Populate params for secp224k1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_224K1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_224R1:
1N/A /* Populate params for secp224r1
1N/A * (the NIST P-224 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_224R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_256K1:
1N/A /* Populate params for secp256k1 */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_256K1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_384R1:
1N/A /* Populate params for secp384r1
1N/A * (the NIST P-384 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_384R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A case ECCurve_SECG_PRIME_521R1:
1N/A /* Populate params for secp521r1
1N/A * (the NIST P-521 curve)
1N/A */
1N/A CHECK_SEC_OK( gf_populate_params(ECCurve_SECG_PRIME_521R1, ec_field_GFp,
1N/A params, kmflag) );
1N/A break;
1N/A
1N/A default:
1N/A break;
1N/A };
1N/A
1N/Acleanup:
1N/A if (!params->cofactor) {
1N/A PORT_SetError(SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE);
1N/A#if EC_DEBUG
1N/A printf("Unrecognized curve, returning NULL params\n");
1N/A#endif
1N/A }
1N/A
1N/A return rv;
1N/A}
1N/A
1N/ASECStatus
1N/AEC_DecodeParams(const SECItem *encodedParams, ECParams **ecparams, int kmflag)
1N/A{
1N/A PRArenaPool *arena;
1N/A ECParams *params;
1N/A SECStatus rv = SECFailure;
1N/A
1N/A /* Initialize an arena for the ECParams structure */
1N/A if (!(arena = PORT_NewArena(NSS_FREEBL_DEFAULT_CHUNKSIZE)))
1N/A return SECFailure;
1N/A
1N/A params = (ECParams *)PORT_ArenaZAlloc(NULL, sizeof(ECParams), kmflag);
1N/A if (!params) {
1N/A PORT_FreeArena(NULL, B_TRUE);
1N/A return SECFailure;
1N/A }
1N/A
1N/A /* Copy the encoded params */
1N/A SECITEM_AllocItem(arena, &(params->DEREncoding), encodedParams->len,
1N/A kmflag);
1N/A memcpy(params->DEREncoding.data, encodedParams->data, encodedParams->len);
1N/A
1N/A /* Fill out the rest of the ECParams structure based on
1N/A * the encoded params
1N/A */
1N/A rv = EC_FillParams(NULL, encodedParams, params, kmflag);
1N/A if (rv == SECFailure) {
1N/A PORT_FreeArena(NULL, B_TRUE);
1N/A return SECFailure;
1N/A } else {
1N/A *ecparams = params;;
1N/A return SECSuccess;
1N/A }
1N/A}
1N/A
1N/A/* Copy all of the fields from srcParams into dstParams
1N/A */
1N/ASECStatus
1N/AEC_CopyParams(PRArenaPool *arena, ECParams *dstParams,
1N/A const ECParams *srcParams)
1N/A{
1N/A SECStatus rv = SECFailure;
1N/A
1N/A dstParams->arena = arena;
1N/A dstParams->type = srcParams->type;
1N/A dstParams->fieldID.size = srcParams->fieldID.size;
1N/A dstParams->fieldID.type = srcParams->fieldID.type;
1N/A if (srcParams->fieldID.type == ec_field_GFp) {
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->fieldID.u.prime,
1N/A &srcParams->fieldID.u.prime, 0));
1N/A } else {
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->fieldID.u.poly,
1N/A &srcParams->fieldID.u.poly, 0));
1N/A }
1N/A dstParams->fieldID.k1 = srcParams->fieldID.k1;
1N/A dstParams->fieldID.k2 = srcParams->fieldID.k2;
1N/A dstParams->fieldID.k3 = srcParams->fieldID.k3;
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->curve.a,
1N/A &srcParams->curve.a, 0));
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->curve.b,
1N/A &srcParams->curve.b, 0));
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->curve.seed,
1N/A &srcParams->curve.seed, 0));
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->base,
1N/A &srcParams->base, 0));
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->order,
1N/A &srcParams->order, 0));
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->DEREncoding,
1N/A &srcParams->DEREncoding, 0));
1N/A dstParams->name = srcParams->name;
1N/A CHECK_SEC_OK(SECITEM_CopyItem(arena, &dstParams->curveOID,
1N/A &srcParams->curveOID, 0));
1N/A dstParams->cofactor = srcParams->cofactor;
1N/A
1N/A return SECSuccess;
1N/A
1N/Acleanup:
1N/A return SECFailure;
1N/A}
1N/A/* END CSTYLED */