From f3c21eb34729c212fa444c2bafb5c02ca9956c22 Mon Sep 17 00:00:00 2001 From: Paul Miller Date: Tue, 21 Mar 2023 04:51:10 +0000 Subject: [PATCH] weierstrass: make weierstrassPoints fromBytes / toBytes optional --- src/abstract/weierstrass.ts | 31 ++++++++++++++++++++++++------- 1 file changed, 24 insertions(+), 7 deletions(-) diff --git a/src/abstract/weierstrass.ts b/src/abstract/weierstrass.ts index b7192e4..5428255 100644 --- a/src/abstract/weierstrass.ts +++ b/src/abstract/weierstrass.ts @@ -82,8 +82,8 @@ export interface ProjConstructor extends GroupConstructor> { export type CurvePointsType = BasicWCurve & { // Bytes - fromBytes: (bytes: Uint8Array) => AffinePoint; - toBytes: (c: ProjConstructor, point: ProjPointType, compressed: boolean) => Uint8Array; + fromBytes?: (bytes: Uint8Array) => AffinePoint; + toBytes?: (c: ProjConstructor, point: ProjPointType, isCompressed: boolean) => Uint8Array; }; function validatePointOpts(curve: CurvePointsType) { @@ -93,8 +93,6 @@ function validatePointOpts(curve: CurvePointsType) { { a: 'field', b: 'field', - fromBytes: 'function', - toBytes: 'function', }, { allowedPrivateKeyLengths: 'array', @@ -102,6 +100,8 @@ function validatePointOpts(curve: CurvePointsType) { isTorsionFree: 'function', clearCofactor: 'function', allowInfinityPoint: 'boolean', + fromBytes: 'function', + toBytes: 'function', } ); const { endo, Fp, a } = opts; @@ -184,6 +184,23 @@ export function weierstrassPoints(opts: CurvePointsType) { const CURVE = validatePointOpts(opts); const { Fp } = CURVE; // All curves has same field / group length as for now, but they can differ + const toBytes = + CURVE.toBytes || + ((c: ProjConstructor, point: ProjPointType, isCompressed: boolean) => { + const a = point.toAffine(); + return ut.concatBytes(Uint8Array.from([0x04]), Fp.toBytes(a.x), Fp.toBytes(a.y)); + }); + const fromBytes = + CURVE.fromBytes || + ((bytes: Uint8Array) => { + // const head = bytes[0]; + const tail = bytes.subarray(1); + // if (head !== 0x04) throw new Error('Only non-compressed encoding is supported'); + const x = Fp.fromBytes(tail.subarray(0, Fp.BYTES)); + const y = Fp.fromBytes(tail.subarray(Fp.BYTES, 2 * Fp.BYTES)); + return { x, y }; + }); + /** * y² = x³ + ax + b: Short weierstrass curve formula * @returns y² @@ -280,7 +297,7 @@ export function weierstrassPoints(opts: CurvePointsType) { * @param hex short/long ECDSA hex */ static fromHex(hex: Hex): Point { - const P = Point.fromAffine(CURVE.fromBytes(ensureBytes('pointHex', hex))); + const P = Point.fromAffine(fromBytes(ensureBytes('pointHex', hex))); P.assertValidity(); return P; } @@ -563,7 +580,7 @@ export function weierstrassPoints(opts: CurvePointsType) { toRawBytes(isCompressed = true): Uint8Array { this.assertValidity(); - return CURVE.toBytes(Point, this, isCompressed); + return toBytes(Point, this, isCompressed); } toHex(isCompressed = true): string { @@ -574,6 +591,7 @@ export function weierstrassPoints(opts: CurvePointsType) { const wnaf = wNAF(Point, CURVE.endo ? Math.ceil(_bits / 2) : _bits); return { + CURVE, ProjectivePoint: Point as ProjConstructor, normPrivateKeyToScalar, weierstrassEquation, @@ -1055,7 +1073,6 @@ export function weierstrass(curveDef: CurveType): CurveFn { } // Implementation of the Shallue and van de Woestijne method for any Weierstrass curve - // TODO: check if there is a way to merge this with uvRatio in Edwards && move to modular? // b = True and y = sqrt(u / v) if (u / v) is square in F, and // b = False and y = sqrt(Z * (u / v)) otherwise.