luc_8cpp_source.html

 // luc.cpp - written and placed in the public domain by Wei Dai

 #include "pch.h"
 #include "luc.h"
 #include "asn.h"
 #include "sha.h"
 #include "integer.h"
 #include "nbtheory.h"
 #include "algparam.h"

 NAMESPACE_BEGIN(CryptoPP)

 #if defined(CRYPTOPP_DEBUG) && !defined(CRYPTOPP_DOXYGEN_PROCESSING)
 void LUC_TestInstantiations()
 {
         LUC_HMP<SHA>::Signer t1;
         LUCFunction t2;
         InvertibleLUCFunction t3;
 }
 #endif

 void DL_Algorithm_LUC_HMP::Sign(const DL_GroupParameters<Integer> &params, const Integer &x, const Integer &k, const Integer &e, Integer &r, Integer &s) const
 {
         const Integer &q = params.GetSubgroupOrder();
         r = params.ExponentiateBase(k);
         s = (k + x*(r+e)) % q;
 }

 bool DL_Algorithm_LUC_HMP::Verify(const DL_GroupParameters<Integer> &params, const DL_PublicKey<Integer> &publicKey, const Integer &e, const Integer &r, const Integer &s) const
 {
         const Integer p = params.GetGroupOrder()-1;
         const Integer &q = params.GetSubgroupOrder();

         Integer Vsg = params.ExponentiateBase(s);
         Integer Vry = publicKey.ExponentiatePublicElement((r+e)%q);
         return (Vsg*Vsg + Vry*Vry + r*r) % p == (Vsg * Vry * r + 4) % p;
 }

 Integer DL_BasePrecomputation_LUC::Exponentiate(const DL_GroupPrecomputation<Element> &group, const Integer &exponent) const
 {
         return Lucas(exponent, m_g, static_cast<const DL_GroupPrecomputation_LUC &>(group).GetModulus());
 }

 void DL_GroupParameters_LUC::SimultaneousExponentiate(Element *results, const Element &base, const Integer *exponents, unsigned int exponentsCount) const
 {
         for (unsigned int i=0; i<exponentsCount; i++)
                 results[i] = Lucas(exponents[i], base, GetModulus());
 }

 void LUCFunction::BERDecode(BufferedTransformation &bt)
 {
         BERSequenceDecoder seq(bt);
         m_n.BERDecode(seq);
         m_e.BERDecode(seq);
         seq.MessageEnd();
 }

 void LUCFunction::DEREncode(BufferedTransformation &bt) const
 {
         DERSequenceEncoder seq(bt);
         m_n.DEREncode(seq);
         m_e.DEREncode(seq);
         seq.MessageEnd();
 }

 Integer LUCFunction::ApplyFunction(const Integer &x) const
 {
         DoQuickSanityCheck();
         return Lucas(m_e, x, m_n);
 }

 bool LUCFunction::Validate(RandomNumberGenerator &rng, unsigned int level) const
 {
         CRYPTOPP_UNUSED(rng), CRYPTOPP_UNUSED(level);
         bool pass = true;
         pass = pass && m_n > Integer::One() && m_n.IsOdd();
         pass = pass && m_e > Integer::One() && m_e.IsOdd() && m_e < m_n;
         return pass;
 }

 bool LUCFunction::GetVoidValue(const char *name, const std::type_info &valueType, void *pValue) const
 {
         return GetValueHelper(this, name, valueType, pValue).Assignable()
                 CRYPTOPP_GET_FUNCTION_ENTRY(Modulus)
                 CRYPTOPP_GET_FUNCTION_ENTRY(PublicExponent)
                 ;
 }

 void LUCFunction::AssignFrom(const NameValuePairs &source)
 {
         AssignFromHelper(this, source)
                 CRYPTOPP_SET_FUNCTION_ENTRY(Modulus)
                 CRYPTOPP_SET_FUNCTION_ENTRY(PublicExponent)
                 ;
 }

 // *****************************************************************************
 // private key operations:

 class LUCPrimeSelector : public PrimeSelector
 {
 public:
         LUCPrimeSelector(const Integer &e) : m_e(e) {}
         bool IsAcceptable(const Integer &candidate) const
         {
                 return RelativelyPrime(m_e, candidate+1) && RelativelyPrime(m_e, candidate-1);
         }
         Integer m_e;
 };

 void InvertibleLUCFunction::GenerateRandom(RandomNumberGenerator &rng, const NameValuePairs &alg)
 {
         int modulusSize = 2048;
         alg.GetIntValue("ModulusSize", modulusSize) || alg.GetIntValue("KeySize", modulusSize);

         if (modulusSize < 16)
                 throw InvalidArgument("InvertibleLUCFunction: specified modulus size is too small");

         m_e = alg.GetValueWithDefault("PublicExponent", Integer(17));

         if (m_e < 5 || m_e.IsEven())
                 throw InvalidArgument("InvertibleLUCFunction: invalid public exponent");

         LUCPrimeSelector selector(m_e);
         AlgorithmParameters primeParam = MakeParametersForTwoPrimesOfEqualSize(modulusSize)
                 ("PointerToPrimeSelector", selector.GetSelectorPointer());
         m_p.GenerateRandom(rng, primeParam);
         m_q.GenerateRandom(rng, primeParam);

         m_n = m_p * m_q;
         m_u = m_q.InverseMod(m_p);
 }

 void InvertibleLUCFunction::Initialize(RandomNumberGenerator &rng, unsigned int keybits, const Integer &e)
 {
         GenerateRandom(rng, MakeParameters("ModulusSize", (int)keybits)("PublicExponent", e));
 }

 void InvertibleLUCFunction::BERDecode(BufferedTransformation &bt)
 {
         BERSequenceDecoder seq(bt);

         Integer version(seq);
         if (!!version)  // make sure version is 0
                 BERDecodeError();

         m_n.BERDecode(seq);
         m_e.BERDecode(seq);
         m_p.BERDecode(seq);
         m_q.BERDecode(seq);
         m_u.BERDecode(seq);
         seq.MessageEnd();
 }

 void InvertibleLUCFunction::DEREncode(BufferedTransformation &bt) const
 {
         DERSequenceEncoder seq(bt);

         const byte version[] = {INTEGER, 1, 0};
         seq.Put(version, sizeof(version));
         m_n.DEREncode(seq);
         m_e.DEREncode(seq);
         m_p.DEREncode(seq);
         m_q.DEREncode(seq);
         m_u.DEREncode(seq);
         seq.MessageEnd();
 }

 Integer InvertibleLUCFunction::CalculateInverse(RandomNumberGenerator &rng, const Integer &x) const
 {
         // not clear how to do blinding with LUC
         CRYPTOPP_UNUSED(rng);
         DoQuickSanityCheck();
         return InverseLucas(m_e, x, m_q, m_p, m_u);
 }

 bool InvertibleLUCFunction::Validate(RandomNumberGenerator &rng, unsigned int level) const
 {
         bool pass = LUCFunction::Validate(rng, level);
         pass = pass && m_p > Integer::One() && m_p.IsOdd() && m_p < m_n;
         pass = pass && m_q > Integer::One() && m_q.IsOdd() && m_q < m_n;
         pass = pass && m_u.IsPositive() && m_u < m_p;
         if (level >= 1)
         {
                 pass = pass && m_p * m_q == m_n;
                 pass = pass && RelativelyPrime(m_e, m_p+1);
                 pass = pass && RelativelyPrime(m_e, m_p-1);
                 pass = pass && RelativelyPrime(m_e, m_q+1);
                 pass = pass && RelativelyPrime(m_e, m_q-1);
                 pass = pass && m_u * m_q % m_p == 1;
         }
         if (level >= 2)
                 pass = pass && VerifyPrime(rng, m_p, level-2) && VerifyPrime(rng, m_q, level-2);
         return pass;
 }

 bool InvertibleLUCFunction::GetVoidValue(const char *name, const std::type_info &valueType, void *pValue) const
 {
         return GetValueHelper<LUCFunction>(this, name, valueType, pValue).Assignable()
                 CRYPTOPP_GET_FUNCTION_ENTRY(Prime1)
                 CRYPTOPP_GET_FUNCTION_ENTRY(Prime2)
                 CRYPTOPP_GET_FUNCTION_ENTRY(MultiplicativeInverseOfPrime2ModPrime1)
                 ;
 }

 void InvertibleLUCFunction::AssignFrom(const NameValuePairs &source)
 {
         AssignFromHelper<LUCFunction>(this, source)
                 CRYPTOPP_SET_FUNCTION_ENTRY(Prime1)
                 CRYPTOPP_SET_FUNCTION_ENTRY(Prime2)
                 CRYPTOPP_SET_FUNCTION_ENTRY(MultiplicativeInverseOfPrime2ModPrime1)
                 ;
 }

 NAMESPACE_END
InvertibleLUCFunction::Initialize
void Initialize(RandomNumberGenerator &rng, unsigned int modulusBits, const Integer &eStart=17)
Create a LUC private key.
Definition: luc.cpp:134

InvalidArgument
An invalid argument was detected.
Definition: cryptlib.h:184

LUCFunction::GetVoidValue
bool GetVoidValue(const char *name, const std::type_info &valueType, void *pValue) const
Get a named value.
Definition: luc.cpp:81

InvertibleLUCFunction::GenerateRandom
void GenerateRandom(RandomNumberGenerator &rng, const NameValuePairs &alg)
Definition: luc.cpp:111

algparam.h
Classes for working with NameValuePairs.

byte
uint8_t byte
Definition: Common.h:57

MakeParametersForTwoPrimesOfEqualSize
AlgorithmParameters MakeParametersForTwoPrimesOfEqualSize(unsigned int productBitLength)
Definition: nbtheory.cpp:267

LUCPrimeSelector::m_e
Integer m_e
Definition: luc.cpp:108

DL_GroupPrecomputation
Definition: eprecomp.h:17

Integer::IsOdd
bool IsOdd() const
Determines if the Integer is odd parity.
Definition: integer.h:345

NameValuePairs::GetValueWithDefault
T GetValueWithDefault(const char *name, T defaultValue) const
Get a named value.
Definition: cryptlib.h:350

INTEGER
Definition: asn.h:30

LUCPrimeSelector::LUCPrimeSelector
LUCPrimeSelector(const Integer &e)
Definition: luc.cpp:103

DERGeneralEncoder::MessageEnd
void MessageEnd()
Definition: asn.cpp:524

DL_Algorithm_LUC_HMP::Verify
bool Verify(const DL_GroupParameters< Integer > &params, const DL_PublicKey< Integer > &publicKey, const Integer &e, const Integer &r, const Integer &s) const
Definition: luc.cpp:29

NAMESPACE_BEGIN
#define NAMESPACE_BEGIN(x)
Definition: config.h:200

LUCFunction::BERDecode
void BERDecode(BufferedTransformation &bt)
Definition: luc.cpp:50

DL_GroupParameters< Integer >

NameValuePairs::GetIntValue
CRYPTOPP_DLL bool GetIntValue(const char *name, int &value) const
Get a named value with type int.
Definition: cryptlib.h:373

LUCFunction::AssignFrom
void AssignFrom(const NameValuePairs &source)
Assign values to this object.
Definition: luc.cpp:89

DL_PublicKey::ExponentiatePublicElement
virtual Element ExponentiatePublicElement(const Integer &exponent) const
Definition: pubkey.h:1012

RandomNumberGenerator
Interface for random number generators.
Definition: cryptlib.h:1188

InverseLucas
Integer InverseLucas(const Integer &e, const Integer &m, const Integer &p, const Integer &q, const Integer &u)
Definition: nbtheory.cpp:1000

DL_BasePrecomputation_LUC::Exponentiate
Integer Exponentiate(const DL_GroupPrecomputation< Element > &group, const Integer &exponent) const
Definition: luc.cpp:39

BERSequenceDecoder
BER Sequence Decoder.
Definition: asn.h:303

BufferedTransformation
Interface for buffered transformations.
Definition: cryptlib.h:1352

LUCFunction::ApplyFunction
Integer ApplyFunction(const Integer &x) const
Applies the trapdoor.
Definition: luc.cpp:66

Integer::One
static const Integer &CRYPTOPP_API One()
Integer representing 1.
Definition: integer.cpp:3035

VerifyPrime
bool VerifyPrime(RandomNumberGenerator &rng, const Integer &p, unsigned int level)
Verifies a prime number.
Definition: nbtheory.cpp:249

DL_PublicKey
Interface for Discrete Log (DL) public keys.
Definition: pubkey.h:992

version
void version()
Definition: main.cpp:53

luc.h
Classes for the LUC cryptosystem.

InvertibleLUCFunction::GetVoidValue
bool GetVoidValue(const char *name, const std::type_info &valueType, void *pValue) const
Get a named value.
Definition: luc.cpp:197

InvertibleLUCFunction::CalculateInverse
Integer CalculateInverse(RandomNumberGenerator &rng, const Integer &x) const
Calculates the inverse of an element.
Definition: luc.cpp:169

x
#define x(i)

source
const char * source
Definition: rpcconsole.cpp:60

BufferedTransformation::Put
size_t Put(byte inByte, bool blocking=true)
Input a byte for processing.
Definition: cryptlib.h:1376

MakeParameters
AlgorithmParameters MakeParameters(const char *name, const T &value, bool throwIfNotUsed=true)
Create an object that implements NameValuePairs.
Definition: algparam.h:498

name
const char * name
Definition: rest.cpp:36

t3
#define t3

PrimeSelector
Application callback to signal suitability of a cabdidate prime.
Definition: nbtheory.h:80

Integer
Multiple precision integer with arithmetic operations.
Definition: integer.h:43

pch.h

Lucas
Integer Lucas(const Integer &e, const Integer &pIn, const Integer &n)
Definition: nbtheory.cpp:814

t1
#define t1

AssignFromHelper
AssignFromHelperClass< T, BASE > AssignFromHelper(T *pObject, const NameValuePairs &source)
Definition: algparam.h:286

BERDecodeError
void BERDecodeError()
Raises a BERDecodeErr.
Definition: asn.h:69

t2
#define t2

asn.h
Classes and functions for working with ANS.1 objects.

InvertibleLUCFunction
The LUC inverse function.
Definition: luc.h:75

sha.h
Classes for SHA-1 and SHA-2 family of message digests.

BERGeneralDecoder::MessageEnd
void MessageEnd()
Definition: asn.cpp:456

CRYPTOPP_SET_FUNCTION_ENTRY
#define CRYPTOPP_SET_FUNCTION_ENTRY(name)
Definition: algparam.h:505

DL_Algorithm_LUC_HMP::Sign
void Sign(const DL_GroupParameters< Integer > &params, const Integer &x, const Integer &k, const Integer &e, Integer &r, Integer &s) const
Definition: luc.cpp:22

nbtheory.h
Classes and functions for number theoretic operations.

InvertibleLUCFunction::DEREncode
void DEREncode(BufferedTransformation &bt) const
Definition: luc.cpp:155

DERSequenceEncoder
DER Sequence Encoder.
Definition: asn.h:313

pass
#define pass(a, b, c, mul, X)

CRYPTOPP_GET_FUNCTION_ENTRY
#define CRYPTOPP_GET_FUNCTION_ENTRY(name)
Definition: algparam.h:504

CRYPTOPP_UNUSED
#define CRYPTOPP_UNUSED(x)
Definition: config.h:741

DL_GroupParameters_LUC::SimultaneousExponentiate
void SimultaneousExponentiate(Element *results, const Element &base, const Integer *exponents, unsigned int exponentsCount) const
Exponentiates a base to multiple exponents.
Definition: luc.cpp:44

RelativelyPrime
bool RelativelyPrime(const Integer &a, const Integer &b)
Definition: nbtheory.h:107

InvertibleLUCFunction::AssignFrom
void AssignFrom(const NameValuePairs &source)
Assign values to this object.
Definition: luc.cpp:206

AlgorithmParameters
An object that implements NameValuePairs.
Definition: algparam.h:433

LUCPrimeSelector
Definition: luc.cpp:100

integer.h
Multiple precision integer with arithmetic operations.

InvertibleLUCFunction::BERDecode
void BERDecode(BufferedTransformation &bt)
Definition: luc.cpp:139

NAMESPACE_END
#define NAMESPACE_END
Definition: config.h:201

LUCFunction
The LUC function.
Definition: luc.h:36

e
#define e(i)
Definition: sha.cpp:733

LUCPrimeSelector::IsAcceptable
bool IsAcceptable(const Integer &candidate) const
Definition: luc.cpp:104

CryptoPP

PrimeSelector::GetSelectorPointer
const PrimeSelector * GetSelectorPointer() const
Definition: nbtheory.h:83

DL_GroupParameters::ExponentiateBase
virtual Element ExponentiateBase(const Integer &exponent) const
Retrieves the subgroup generator.
Definition: pubkey.h:803

LUCFunction::DEREncode
void DEREncode(BufferedTransformation &bt) const
Definition: luc.cpp:58

LUCFunction::Validate
bool Validate(RandomNumberGenerator &rng, unsigned int level) const
Check this object for errors.
Definition: luc.cpp:72

DL_GroupParameters::GetGroupOrder
virtual Integer GetGroupOrder() const
Retrieves the order of the group.
Definition: pubkey.h:843

NameValuePairs
Interface for retrieving values given their names.
Definition: cryptlib.h:279

PK_FinalTemplate
Template implementing constructors for public key algorithm classes.
Definition: pubkey.h:1989

GetValueHelper
GetValueHelperClass< T, BASE > GetValueHelper(const T *pObject, const char *name, const std::type_info &valueType, void *pValue, const NameValuePairs *searchFirst=NULL)
Definition: algparam.h:224

InvertibleLUCFunction::Validate
bool Validate(RandomNumberGenerator &rng, unsigned int level) const
Check this object for errors.
Definition: luc.cpp:177

DL_GroupParameters::GetSubgroupOrder
virtual const Integer & GetSubgroupOrder() const =0
Retrieves the subgroup order.