ecc_curve_defs.h (3803B)
1/* SPDX-License-Identifier: GPL-2.0 */ 2#ifndef _CRYTO_ECC_CURVE_DEFS_H 3#define _CRYTO_ECC_CURVE_DEFS_H 4 5/* NIST P-192: a = p - 3 */ 6static u64 nist_p192_g_x[] = { 0xF4FF0AFD82FF1012ull, 0x7CBF20EB43A18800ull, 7 0x188DA80EB03090F6ull }; 8static u64 nist_p192_g_y[] = { 0x73F977A11E794811ull, 0x631011ED6B24CDD5ull, 9 0x07192B95FFC8DA78ull }; 10static u64 nist_p192_p[] = { 0xFFFFFFFFFFFFFFFFull, 0xFFFFFFFFFFFFFFFEull, 11 0xFFFFFFFFFFFFFFFFull }; 12static u64 nist_p192_n[] = { 0x146BC9B1B4D22831ull, 0xFFFFFFFF99DEF836ull, 13 0xFFFFFFFFFFFFFFFFull }; 14static u64 nist_p192_a[] = { 0xFFFFFFFFFFFFFFFCull, 0xFFFFFFFFFFFFFFFEull, 15 0xFFFFFFFFFFFFFFFFull }; 16static u64 nist_p192_b[] = { 0xFEB8DEECC146B9B1ull, 0x0FA7E9AB72243049ull, 17 0x64210519E59C80E7ull }; 18static struct ecc_curve nist_p192 = { 19 .name = "nist_192", 20 .g = { 21 .x = nist_p192_g_x, 22 .y = nist_p192_g_y, 23 .ndigits = 3, 24 }, 25 .p = nist_p192_p, 26 .n = nist_p192_n, 27 .a = nist_p192_a, 28 .b = nist_p192_b 29}; 30 31/* NIST P-256: a = p - 3 */ 32static u64 nist_p256_g_x[] = { 0xF4A13945D898C296ull, 0x77037D812DEB33A0ull, 33 0xF8BCE6E563A440F2ull, 0x6B17D1F2E12C4247ull }; 34static u64 nist_p256_g_y[] = { 0xCBB6406837BF51F5ull, 0x2BCE33576B315ECEull, 35 0x8EE7EB4A7C0F9E16ull, 0x4FE342E2FE1A7F9Bull }; 36static u64 nist_p256_p[] = { 0xFFFFFFFFFFFFFFFFull, 0x00000000FFFFFFFFull, 37 0x0000000000000000ull, 0xFFFFFFFF00000001ull }; 38static u64 nist_p256_n[] = { 0xF3B9CAC2FC632551ull, 0xBCE6FAADA7179E84ull, 39 0xFFFFFFFFFFFFFFFFull, 0xFFFFFFFF00000000ull }; 40static u64 nist_p256_a[] = { 0xFFFFFFFFFFFFFFFCull, 0x00000000FFFFFFFFull, 41 0x0000000000000000ull, 0xFFFFFFFF00000001ull }; 42static u64 nist_p256_b[] = { 0x3BCE3C3E27D2604Bull, 0x651D06B0CC53B0F6ull, 43 0xB3EBBD55769886BCull, 0x5AC635D8AA3A93E7ull }; 44static struct ecc_curve nist_p256 = { 45 .name = "nist_256", 46 .g = { 47 .x = nist_p256_g_x, 48 .y = nist_p256_g_y, 49 .ndigits = 4, 50 }, 51 .p = nist_p256_p, 52 .n = nist_p256_n, 53 .a = nist_p256_a, 54 .b = nist_p256_b 55}; 56 57/* NIST P-384 */ 58static u64 nist_p384_g_x[] = { 0x3A545E3872760AB7ull, 0x5502F25DBF55296Cull, 59 0x59F741E082542A38ull, 0x6E1D3B628BA79B98ull, 60 0x8Eb1C71EF320AD74ull, 0xAA87CA22BE8B0537ull }; 61static u64 nist_p384_g_y[] = { 0x7A431D7C90EA0E5Full, 0x0A60B1CE1D7E819Dull, 62 0xE9DA3113B5F0B8C0ull, 0xF8F41DBD289A147Cull, 63 0x5D9E98BF9292DC29ull, 0x3617DE4A96262C6Full }; 64static u64 nist_p384_p[] = { 0x00000000FFFFFFFFull, 0xFFFFFFFF00000000ull, 65 0xFFFFFFFFFFFFFFFEull, 0xFFFFFFFFFFFFFFFFull, 66 0xFFFFFFFFFFFFFFFFull, 0xFFFFFFFFFFFFFFFFull }; 67static u64 nist_p384_n[] = { 0xECEC196ACCC52973ull, 0x581A0DB248B0A77Aull, 68 0xC7634D81F4372DDFull, 0xFFFFFFFFFFFFFFFFull, 69 0xFFFFFFFFFFFFFFFFull, 0xFFFFFFFFFFFFFFFFull }; 70static u64 nist_p384_a[] = { 0x00000000FFFFFFFCull, 0xFFFFFFFF00000000ull, 71 0xFFFFFFFFFFFFFFFEull, 0xFFFFFFFFFFFFFFFFull, 72 0xFFFFFFFFFFFFFFFFull, 0xFFFFFFFFFFFFFFFFull }; 73static u64 nist_p384_b[] = { 0x2a85c8edd3ec2aefull, 0xc656398d8a2ed19dull, 74 0x0314088f5013875aull, 0x181d9c6efe814112ull, 75 0x988e056be3f82d19ull, 0xb3312fa7e23ee7e4ull }; 76static struct ecc_curve nist_p384 = { 77 .name = "nist_384", 78 .g = { 79 .x = nist_p384_g_x, 80 .y = nist_p384_g_y, 81 .ndigits = 6, 82 }, 83 .p = nist_p384_p, 84 .n = nist_p384_n, 85 .a = nist_p384_a, 86 .b = nist_p384_b 87}; 88 89/* curve25519 */ 90static u64 curve25519_g_x[] = { 0x0000000000000009, 0x0000000000000000, 91 0x0000000000000000, 0x0000000000000000 }; 92static u64 curve25519_p[] = { 0xffffffffffffffed, 0xffffffffffffffff, 93 0xffffffffffffffff, 0x7fffffffffffffff }; 94static u64 curve25519_a[] = { 0x000000000001DB41, 0x0000000000000000, 95 0x0000000000000000, 0x0000000000000000 }; 96static const struct ecc_curve ecc_25519 = { 97 .name = "curve25519", 98 .g = { 99 .x = curve25519_g_x, 100 .ndigits = 4, 101 }, 102 .p = curve25519_p, 103 .a = curve25519_a, 104}; 105 106#endif