Add non-constant-time variant to ECLookupTable

author: Peter Dettman <peter.dettman@bouncycastle.org> 2019-08-09 17:08:48 +0700
committer: Peter Dettman <peter.dettman@bouncycastle.org> 2019-08-09 17:08:48 +0700
commit: ac5ab976832d3d6e107502acd318f9fe3b12e547 (patch)
tree: d594b09d80bd74705d23e011a43f8fc8fda87904 /crypto/src/math/ec/custom/sec/SecT193R1Curve.cs
parent: ASN.1 updates from bc-java (diff)
download: BouncyCastle.NET-ed25519-ac5ab976832d3d6e107502acd318f9fe3b12e547.tar.xz
1 files changed, 24 insertions, 4 deletions
diff --git a/crypto/src/math/ec/custom/sec/SecT193R1Curve.cs b/crypto/src/math/ec/custom/sec/SecT193R1Curve.cs
index e6cb3b4d8..8ba83689e 100644
--- a/crypto/src/math/ec/custom/sec/SecT193R1Curve.cs
+++ b/crypto/src/math/ec/custom/sec/SecT193R1Curve.cs
@@ -10,6 +10,7 @@ namespace Org.BouncyCastle.Math.EC.Custom.Sec
     {
         private const int SECT193R1_DEFAULT_COORDS = COORD_LAMBDA_PROJECTIVE;
         private const int SECT193R1_FE_LONGS = 4;
+        private static readonly ECFieldElement[] SECT193R1_AFFINE_ZS = new ECFieldElement[] { new SecT193FieldElement(BigInteger.One) };
 
         protected readonly SecT193R1Point m_infinity;
 
@@ -114,7 +115,7 @@ namespace Org.BouncyCastle.Math.EC.Custom.Sec
         }
 
         private class SecT193R1LookupTable
-            : ECLookupTable
+            : AbstractECLookupTable
         {
             private readonly SecT193R1Curve m_outer;
             private readonly ulong[] m_table;
@@ -127,12 +128,12 @@ namespace Org.BouncyCastle.Math.EC.Custom.Sec
                 this.m_size = size;
             }
 
-            public virtual int Size
+            public override int Size
             {
                 get { return m_size; }
             }
 
-            public virtual ECPoint Lookup(int index)
+            public override ECPoint Lookup(int index)
             {
                 ulong[] x = Nat256.Create64(), y = Nat256.Create64();
                 int pos = 0;
@@ -150,7 +151,26 @@ namespace Org.BouncyCastle.Math.EC.Custom.Sec
                     pos += (SECT193R1_FE_LONGS * 2);
                 }
 
-                return m_outer.CreateRawPoint(new SecT193FieldElement(x), new SecT193FieldElement(y), false);
+                return CreatePoint(x, y);
+            }
+
+            public override ECPoint LookupVar(int index)
+            {
+                ulong[] x = Nat256.Create64(), y = Nat256.Create64();
+                int pos = index * SECT193R1_FE_LONGS * 2;
+
+                for (int j = 0; j < SECT193R1_FE_LONGS; ++j)
+                {
+                    x[j] = m_table[pos + j];
+                    y[j] = m_table[pos + SECT193R1_FE_LONGS + j];
+                }
+
+                return CreatePoint(x, y);
+            }
+
+            private ECPoint CreatePoint(ulong[] x, ulong[] y)
+            {
+                return m_outer.CreateRawPoint(new SecT193FieldElement(x), new SecT193FieldElement(y), SECT193R1_AFFINE_ZS, false);
             }
         }
     }
author	Peter Dettman <peter.dettman@bouncycastle.org>	2019-08-09 17:08:48 +0700
committer	Peter Dettman <peter.dettman@bouncycastle.org>	2019-08-09 17:08:48 +0700
commit	ac5ab976832d3d6e107502acd318f9fe3b12e547 (patch)
tree	d594b09d80bd74705d23e011a43f8fc8fda87904 /crypto/src/math/ec/custom/sec/SecT193R1Curve.cs
parent	ASN.1 updates from bc-java (diff)
download	BouncyCastle.NET-ed25519-ac5ab976832d3d6e107502acd318f9fe3b12e547.tar.xz