//------------------------------------------------------------------------------
//
// x25519_fpga_model.cpp
// ---------------------
// X25519 FPGA Model
//
// Authors: Pavel Shatov
//
// Copyright (c) 2018, NORDUnet A/S
//
// Redistribution and use in source and binary forms, with or without
// modification, are permitted provided that the following conditions are met:
//
// - Redistributions of source code must retain the above copyright notice,
// this list of conditions and the following disclaimer.
//
// - Redistributions in binary form must reproduce the above copyright notice,
// this list of conditions and the following disclaimer in the documentation
// and/or other materials provided with the distribution.
//
// - Neither the name of the NORDUnet nor the names of its contributors may be
// used to endorse or promote products derived from this software without
// specific prior written permission.
//
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
// AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
// ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
// LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
// CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
// SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
// INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
// CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
// ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
// POSSIBILITY OF SUCH DAMAGE.
//
//------------------------------------------------------------------------------
//------------------------------------------------------------------------------
// Mode Switch
//------------------------------------------------------------------------------
#define USE_MICROCODE
//------------------------------------------------------------------------------
// Headers
//------------------------------------------------------------------------------
#include "x25519_fpga_model.h"
//------------------------------------------------------------------------------
// Prototypes
//------------------------------------------------------------------------------
static void fpga_model_x25519_init ();
static bool test_x25519_point_multiplier (const FPGA_BUFFER *px, const FPGA_BUFFER *k, const FPGA_BUFFER *qx);
//------------------------------------------------------------------------------
// Locals
//------------------------------------------------------------------------------
static FPGA_BUFFER x25519_da, x25519_db;
static FPGA_BUFFER x25519_qa_x, x25519_qb_x;
static FPGA_BUFFER x25519_qab_x;
//------------------------------------------------------------------------------
int main()
//------------------------------------------------------------------------------
{
bool ok_a, ok_b; // flags
//
// initialize buffers
//
fpga_multiword_init();
fpga_modular_init();
fpga_curve_x25519_init();
fpga_model_x25519_init();
//
// test point multiplier: QA = dA * G
// QB = dB * G
//
printf("Trying to derive public keys from private keys...\n\n");
ok_a = test_x25519_point_multiplier(&X25519_G_X, &x25519_da, &x25519_qa_x);
ok_b = test_x25519_point_multiplier(&X25519_G_X, &x25519_db, &x25519_qb_x);
if (!ok_a || !ok_b) return EXIT_FAILURE;
//
// test point multiplier: QAB = dA * QB
// QAB = dB * QA
//
printf("Trying to derive shared secret key...\n\n");
ok_a = test_x25519_point_multiplier(&x25519_qb_x, &x25519_da, &x25519_qab_x);
ok_b = test_x25519_point_multiplier(&x25519_qa_x, &x25519_db, &x25519_qab_x);
if (!ok_a || !ok_b) return EXIT_FAILURE;
//
// everything went just fine
//
return EXIT_SUCCESS;
}
//------------------------------------------------------------------------------
static void fpga_model_x25519_init()
//------------------------------------------------------------------------------
{
int w_src, w_dst; // word counters
FPGA_WORD tmp_da[FPGA_OPERAND_NUM_WORDS] = X25519_DA;
FPGA_WORD tmp_db[FPGA_OPERAND_NUM_WORDS] = X25519_DB;
FPGA_WORD tmp_qa_x[FPGA_OPERAND_NUM_WORDS] = X25519_QA_X;
FPGA_WORD tmp_qb_x[FPGA_OPERAND_NUM_WORDS] = X25519_QB_X;
FPGA_WORD tmp_qab_x[FPGA_OPERAND_NUM_WORDS] = X25519_QAB_X;
/* fill buffers for large multi-word integers */
for ( w_src = 0, w_dst = FPGA_OPERAND_NUM_WORDS - 1;
w_src < FPGA_OPERAND_NUM_WORDS;
w_src++, w_dst--)
{
x25519_da.words[w_dst] = tmp_da[w_src];
x25519_db.words[w_dst] = tmp_db[w_src];
x25519_qa_x.words[w_dst] = tmp_qa_x[w_src];
x25519_qb_x.words[w_dst] = tmp_qb_x[w_src];
x25519_qab_x.words[w_dst] = tmp_qab_x[w_src];
}
}
//------------------------------------------------------------------------------
static bool test_x25519_point_multiplier(const FPGA_BUFFER *px, const FPGA_BUFFER *k, const FPGA_BUFFER *qx)
//------------------------------------------------------------------------------
//
// (px, ...) - multiplicand
// k - multiplier
//
// (qx, ...) - expected coordinates of product
//
// Returns true when point (rx, ...) = k * P matches the point (qx, ...).
//
//------------------------------------------------------------------------------
{
bool ok; // flag
FPGA_BUFFER rx; // result
/* run the model */
fpga_curve_x25519_scalar_multiply(px, k, &rx);
/* handle result */
ok = compare_fpga_buffers(qx, &rx);
if (!ok)
{ printf("\n ERROR\n\n");
return false;
}
else printf("\n OK\n\n");
// everything went just fine
return true;
}
//------------------------------------------------------------------------------
// End-of-File
//------------------------------------------------------------------------------
