1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
using System;
namespace Org.BouncyCastle.Pqc.Crypto.SphincsPlus
{
class SIG
{
private byte[] r;
private SIG_FORS[] sig_fors;
private SIG_XMSS[] sig_ht;
public SIG(int n, int k, int a, uint d, uint hPrime, int wots_len, byte[] signature)
{
this.r = new byte[n];
Array.Copy(signature, 0, r, 0, n);
this.sig_fors = new SIG_FORS[k];
int offset = n;
for (int i = 0; i != k; i++)
{
byte[] sk = new byte[n];
Array.Copy(signature, offset, sk, 0, n);
offset += n;
byte[][] authPath = new byte[a][];
for (int j = 0; j != a; j++)
{
authPath[j] = new byte[n];
Array.Copy(signature, offset, authPath[j], 0, n);
offset += n;
}
sig_fors[i] = new SIG_FORS(sk, authPath);
}
sig_ht = new SIG_XMSS[d];
for (int i = 0; i != d; i++)
{
byte[] sig = new byte[wots_len * n];
Array.Copy(signature, offset, sig, 0, sig.Length);
offset += sig.Length;
byte[][] authPath = new byte[hPrime][];
for (int j = 0; j != hPrime; j++)
{
authPath[j] = new byte[n];
Array.Copy(signature, offset, authPath[j], 0, n);
offset += n;
}
sig_ht[i] = new SIG_XMSS(sig, authPath);
}
if (offset != signature.Length)
{
throw new ArgumentException("signature wrong length");
}
}
public byte[] R => r;
public SIG_FORS[] SIG_FORS => sig_fors;
public SIG_XMSS[] SIG_HT => sig_ht;
}
}
|
