bitcoin-bitcoin-core/src/secp256k1.c

#include "impl/num.h"
#include "impl/field.h"
#include "impl/group.h"
#include "impl/ecmult.h"
#include "impl/ecdsa.h"

void secp256k1_start(void) {
    secp256k1_fe_start();
    secp256k1_ge_start();
    secp256k1_ecmult_start();
}

void secp256k1_stop(void) {
    secp256k1_ecmult_stop();
    secp256k1_ge_stop();
    secp256k1_fe_stop();
}

int secp256k1_ecdsa_verify(const unsigned char *msg, int msglen, const unsigned char *sig, int siglen, const unsigned char *pubkey, int pubkeylen) {
    int ret = -3;
    secp256k1_num_t m; 
    secp256k1_num_init(&m);
    secp256k1_ecdsa_sig_t s;
    secp256k1_ecdsa_sig_init(&s);
    secp256k1_gej_t q;
    secp256k1_num_set_bin(&m, msg, msglen);

    if (!secp256k1_ecdsa_pubkey_parse(&q, pubkey, pubkeylen)) {
        ret = -1;
        goto end;
    }
    if (!secp256k1_ecdsa_sig_parse(&s, sig, siglen)) {
        ret = -2;
        goto end;
    }
    if (!secp256k1_ecdsa_sig_verify(&s, &q, &m)) {
        ret = 0;
        goto end;
    }
    ret = 1;
end:
    secp256k1_ecdsa_sig_free(&s);
    secp256k1_num_free(&m);
    return ret;
}

int secp256k1_ecdsa_sign(const unsigned char *message, int messagelen, unsigned char *signature, int *signaturelen, const unsigned char *seckey, const unsigned char *nonce) {
    secp256k1_num_t sec, non, msg;
    secp256k1_num_init(&sec);
    secp256k1_num_init(&non);
    secp256k1_num_init(&msg);
    secp256k1_num_set_bin(&sec, seckey, 32);
    secp256k1_num_set_bin(&non, nonce, 32);
    secp256k1_num_set_bin(&msg, message, messagelen);
    secp256k1_ecdsa_sig_t sig;
    secp256k1_ecdsa_sig_init(&sig);
    int ret = secp256k1_ecdsa_sig_sign(&sig, &sec, &msg, &non);
    if (ret) {
        secp256k1_ecdsa_sig_serialize(signature, signaturelen, &sig);
    }
    secp256k1_ecdsa_sig_free(&sig);
    secp256k1_num_free(&msg);
    secp256k1_num_free(&non);
    secp256k1_num_free(&sec);
    return ret;
}
Reorganize source tree: no .c for non-objects 2013-04-05 02:09:37 +02:00			`#include "impl/num.h"`
			`#include "impl/field.h"`
			`#include "impl/group.h"`
			`#include "impl/ecmult.h"`
			`#include "impl/ecdsa.h"`
Begin group C interface + start/stop 2013-03-31 06:34:15 +02:00
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`void secp256k1_start(void) {`
Begin group C interface + start/stop 2013-03-31 06:34:15 +02:00			`secp256k1_fe_start();`
Third step in converting to C: group 2013-03-31 17:02:52 +02:00			`secp256k1_ge_start();`
Fourth step in converting to C: ecmult 2013-04-01 06:29:30 +02:00			`secp256k1_ecmult_start();`
Begin group C interface + start/stop 2013-03-31 06:34:15 +02:00			`}`

Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`void secp256k1_stop(void) {`
Fourth step in converting to C: ecmult 2013-04-01 06:29:30 +02:00			`secp256k1_ecmult_stop();`
Third step in converting to C: group 2013-03-31 17:02:52 +02:00			`secp256k1_ge_stop();`
Begin group C interface + start/stop 2013-03-31 06:34:15 +02:00			`secp256k1_fe_stop();`
			`}`

Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`int secp256k1_ecdsa_verify(const unsigned char msg, int msglen, const unsigned char sig, int siglen, const unsigned char *pubkey, int pubkeylen) {`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`int ret = -3;`
			`secp256k1_num_t m;`
			`secp256k1_num_init(&m);`
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`secp256k1_ecdsa_sig_t s;`
			`secp256k1_ecdsa_sig_init(&s);`
Third step in converting to C: group 2013-03-31 17:02:52 +02:00			`secp256k1_gej_t q;`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`secp256k1_num_set_bin(&m, msg, msglen);`
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00
			`if (!secp256k1_ecdsa_pubkey_parse(&q, pubkey, pubkeylen)) {`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`ret = -1;`
			`goto end;`
			`}`
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`if (!secp256k1_ecdsa_sig_parse(&s, sig, siglen)) {`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`ret = -2;`
			`goto end;`
			`}`
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`if (!secp256k1_ecdsa_sig_verify(&s, &q, &m)) {`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`ret = 0;`
			`goto end;`
Split headers/code 2013-03-16 15:51:55 +01:00			`}`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`ret = 1;`
			`end:`
Fifth step in converting to C: ecdsa 2013-04-01 07:21:05 +02:00			`secp256k1_ecdsa_sig_free(&s);`
First step in converting to C: num 2013-03-24 10:38:35 +01:00			`secp256k1_num_free(&m);`
			`return ret;`
Split headers/code 2013-03-16 15:51:55 +01:00			`}`

Add signing to public interface 2013-05-05 00:21:03 +02:00			`int secp256k1_ecdsa_sign(const unsigned char message, int messagelen, unsigned char signature, int signaturelen, const unsigned char seckey, const unsigned char *nonce) {`
			`secp256k1_num_t sec, non, msg;`
			`secp256k1_num_init(&sec);`
			`secp256k1_num_init(&non);`
			`secp256k1_num_init(&msg);`
			`secp256k1_num_set_bin(&sec, seckey, 32);`
			`secp256k1_num_set_bin(&non, nonce, 32);`
			`secp256k1_num_set_bin(&msg, message, messagelen);`
			`secp256k1_ecdsa_sig_t sig;`
			`secp256k1_ecdsa_sig_init(&sig);`
			`int ret = secp256k1_ecdsa_sig_sign(&sig, &sec, &msg, &non);`
			`if (ret) {`
			`secp256k1_ecdsa_sig_serialize(signature, signaturelen, &sig);`
			`}`
			`secp256k1_ecdsa_sig_free(&sig);`
			`secp256k1_num_free(&msg);`
			`secp256k1_num_free(&non);`
			`secp256k1_num_free(&sec);`
			`return ret;`
			`}`