bitcoin-bitcoin-core/src/scalar.h

// Copyright (c) 2014 Pieter Wuille
// Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#ifndef _SECP256K1_SCALAR_
#define _SECP256K1_SCALAR_

#include "num.h"

/** A scalar modulo the group order of the secp256k1 curve. */
typedef struct {
    secp256k1_num_t n;
} secp256k1_scalar_t;

/** Clear a scalar to prevent the leak of sensitive data. */
void static secp256k1_scalar_clear(secp256k1_scalar_t *r);

/** Access bits from a scalar. */
int static secp256k1_scalar_get_bits(const secp256k1_scalar_t *a, int offset, int count);

/** Set a scalar from a big endian byte array. */
void static secp256k1_scalar_set_b32(secp256k1_scalar_t *r, const unsigned char *bin, int *overflow);

/** Convert a scalar to a byte array. */
void static secp256k1_scalar_get_b32(unsigned char *bin, const secp256k1_scalar_t* a);

/** Add two scalars together (modulo the group order). */
void static secp256k1_scalar_add(secp256k1_scalar_t *r, const secp256k1_scalar_t *a, const secp256k1_scalar_t *b);

/** Multiply two scalars (modulo the group order). */
void static secp256k1_scalar_mul(secp256k1_scalar_t *r, const secp256k1_scalar_t *a, const secp256k1_scalar_t *b);

/** Compute the inverse of a scalar (modulo the group order). */
void static secp256k1_scalar_inverse(secp256k1_scalar_t *r, const secp256k1_scalar_t *a);

/** Compute the complement of a scalar (modulo the group order). */
void static secp256k1_scalar_negate(secp256k1_scalar_t *r, const secp256k1_scalar_t *a);

/** Check whether a scalar equals zero. */
int static secp256k1_scalar_is_zero(const secp256k1_scalar_t *a);

/** Check whether a scalar equals one. */
int static secp256k1_scalar_is_one(const secp256k1_scalar_t *a);

/** Check whether a scalar is higher than the group order divided by 2. */
int static secp256k1_scalar_is_high(const secp256k1_scalar_t *a);

/** Convert a scalar to a number. */
void static secp256k1_scalar_get_num(secp256k1_num_t *r, const secp256k1_scalar_t *a);

#endif
Introduce secp256k1_scalar_t for future constant-time mod order operations 2014-10-28 04:08:15 -07:00			`// Copyright (c) 2014 Pieter Wuille`
			`// Distributed under the MIT software license, see the accompanying`
			`// file COPYING or http://www.opensource.org/licenses/mit-license.php.`

			`#ifndef _SECP256K1_SCALAR_`
			`#define _SECP256K1_SCALAR_`

			`#include "num.h"`

			`/** A scalar modulo the group order of the secp256k1 curve. */`
			`typedef struct {`
			`secp256k1_num_t n;`
			`} secp256k1_scalar_t;`

			`/** Clear a scalar to prevent the leak of sensitive data. */`
			`void static secp256k1_scalar_clear(secp256k1_scalar_t *r);`

			`/** Access bits from a scalar. */`
			`int static secp256k1_scalar_get_bits(const secp256k1_scalar_t *a, int offset, int count);`

			`/** Set a scalar from a big endian byte array. */`
Switch scalar to use get/set 32-byte arrays 2014-10-29 00:35:09 -07:00			`void static secp256k1_scalar_set_b32(secp256k1_scalar_t r, const unsigned char bin, int *overflow);`
Introduce secp256k1_scalar_t for future constant-time mod order operations 2014-10-28 04:08:15 -07:00
			`/** Convert a scalar to a byte array. */`
Switch scalar to use get/set 32-byte arrays 2014-10-29 00:35:09 -07:00			`void static secp256k1_scalar_get_b32(unsigned char bin, const secp256k1_scalar_t a);`
Introduce secp256k1_scalar_t for future constant-time mod order operations 2014-10-28 04:08:15 -07:00
			`/** Add two scalars together (modulo the group order). */`
			`void static secp256k1_scalar_add(secp256k1_scalar_t r, const secp256k1_scalar_t a, const secp256k1_scalar_t *b);`

			`/** Multiply two scalars (modulo the group order). */`
			`void static secp256k1_scalar_mul(secp256k1_scalar_t r, const secp256k1_scalar_t a, const secp256k1_scalar_t *b);`

			`/** Compute the inverse of a scalar (modulo the group order). */`
			`void static secp256k1_scalar_inverse(secp256k1_scalar_t r, const secp256k1_scalar_t a);`

			`/** Compute the complement of a scalar (modulo the group order). */`
			`void static secp256k1_scalar_negate(secp256k1_scalar_t r, const secp256k1_scalar_t a);`

			`/** Check whether a scalar equals zero. */`
			`int static secp256k1_scalar_is_zero(const secp256k1_scalar_t *a);`

Add unit tests for scalars. Also add a secp256k1_scalar_is_one function. 2014-10-29 00:35:38 -07:00			`/** Check whether a scalar equals one. */`
			`int static secp256k1_scalar_is_one(const secp256k1_scalar_t *a);`

Introduce secp256k1_scalar_t for future constant-time mod order operations 2014-10-28 04:08:15 -07:00			`/** Check whether a scalar is higher than the group order divided by 2. */`
			`int static secp256k1_scalar_is_high(const secp256k1_scalar_t *a);`

			`/** Convert a scalar to a number. */`
			`void static secp256k1_scalar_get_num(secp256k1_num_t r, const secp256k1_scalar_t a);`

			`#endif`