18212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrompackage org.bouncycastle.asn1.x9; 28212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 34c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstromimport java.math.BigInteger; 44c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom 58212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.asn1.ASN1EncodableVector; 64c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstromimport org.bouncycastle.asn1.ASN1Integer; 74c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstromimport org.bouncycastle.asn1.ASN1Object; 88212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.asn1.ASN1OctetString; 94c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstromimport org.bouncycastle.asn1.ASN1Primitive; 108212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.asn1.ASN1Sequence; 118212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.asn1.DERSequence; 128212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.math.ec.ECCurve; 138212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstromimport org.bouncycastle.math.ec.ECPoint; 148212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 158212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom/** 168212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * ASN.1 def for Elliptic-Curve ECParameters structure. See 178212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * X9.62, for further details. 188212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom */ 198212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrompublic class X9ECParameters 204c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom extends ASN1Object 218212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom implements X9ObjectIdentifiers 228212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom{ 238212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private static final BigInteger ONE = BigInteger.valueOf(1); 248212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 258212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private X9FieldID fieldID; 268212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private ECCurve curve; 278212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private ECPoint g; 288212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private BigInteger n; 298212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private BigInteger h; 308212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom private byte[] seed; 318212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 324c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom private X9ECParameters( 338212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ASN1Sequence seq) 348212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 354c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom if (!(seq.getObjectAt(0) instanceof ASN1Integer) 364c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom || !((ASN1Integer)seq.getObjectAt(0)).getValue().equals(ONE)) 378212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 388212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom throw new IllegalArgumentException("bad version in X9ECParameters"); 398212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 408212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 418212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom X9Curve x9c = new X9Curve( 428212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom new X9FieldID((ASN1Sequence)seq.getObjectAt(1)), 438212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom (ASN1Sequence)seq.getObjectAt(2)); 448212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 458212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.curve = x9c.getCurve(); 468212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.g = new X9ECPoint(curve, (ASN1OctetString)seq.getObjectAt(3)).getPoint(); 474c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom this.n = ((ASN1Integer)seq.getObjectAt(4)).getValue(); 488212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.seed = x9c.getSeed(); 498212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 508212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom if (seq.size() == 6) 518212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 524c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom this.h = ((ASN1Integer)seq.getObjectAt(5)).getValue(); 534c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom } 544c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom } 554c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom 564c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom public static X9ECParameters getInstance(Object obj) 574c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom { 584c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom if (obj instanceof X9ECParameters) 594c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom { 604c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom return (X9ECParameters)obj; 618212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 624c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom 634c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom if (obj != null) 644c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom { 654c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom return new X9ECParameters(ASN1Sequence.getInstance(obj)); 664c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom } 674c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom 684c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom return null; 698212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 708212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 718212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public X9ECParameters( 728212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECCurve curve, 738212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECPoint g, 748212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom BigInteger n) 758212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 768212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this(curve, g, n, ONE, null); 778212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 788212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 798212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public X9ECParameters( 808212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECCurve curve, 818212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECPoint g, 828212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom BigInteger n, 838212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom BigInteger h) 848212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 858212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this(curve, g, n, h, null); 868212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 878212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 888212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public X9ECParameters( 898212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECCurve curve, 908212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECPoint g, 918212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom BigInteger n, 928212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom BigInteger h, 938212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom byte[] seed) 948212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 958212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.curve = curve; 968212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.g = g; 978212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.n = n; 988212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.h = h; 998212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.seed = seed; 1008212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1018212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom if (curve instanceof ECCurve.Fp) 1028212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1038212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.fieldID = new X9FieldID(((ECCurve.Fp)curve).getQ()); 1048212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1058212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom else 1068212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1078212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom if (curve instanceof ECCurve.F2m) 1088212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1098212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ECCurve.F2m curveF2m = (ECCurve.F2m)curve; 1108212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom this.fieldID = new X9FieldID(curveF2m.getM(), curveF2m.getK1(), 1118212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom curveF2m.getK2(), curveF2m.getK3()); 1128212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1138212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1148212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1158212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1168212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public ECCurve getCurve() 1178212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1188212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return curve; 1198212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1208212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1218212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public ECPoint getG() 1228212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1238212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return g; 1248212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1258212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1268212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public BigInteger getN() 1278212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1288212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return n; 1298212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1308212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1318212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public BigInteger getH() 1328212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1338212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom if (h == null) 1348212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1358212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return ONE; // TODO - this should be calculated, it will cause issues with custom curves. 1368212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1378212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1388212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return h; 1398212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1408212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1418212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom public byte[] getSeed() 1428212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1438212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return seed; 1448212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1458212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1468212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom /** 1478212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * Produce an object suitable for an ASN1OutputStream. 1488212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * <pre> 1498212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * ECParameters ::= SEQUENCE { 1508212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * version INTEGER { ecpVer1(1) } (ecpVer1), 1518212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * fieldID FieldID {{FieldTypes}}, 1528212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * curve X9Curve, 1538212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * base X9ECPoint, 1548212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * order INTEGER, 1558212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * cofactor INTEGER OPTIONAL 1568212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * } 1578212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom * </pre> 1588212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom */ 1594c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom public ASN1Primitive toASN1Primitive() 1608212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1618212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom ASN1EncodableVector v = new ASN1EncodableVector(); 1628212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1634c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom v.add(new ASN1Integer(1)); 1648212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom v.add(fieldID); 1658212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom v.add(new X9Curve(curve, seed)); 1668212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom v.add(new X9ECPoint(g)); 1674c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom v.add(new ASN1Integer(n)); 1688212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1698212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom if (h != null) 1708212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom { 1714c111300c39cb2e27f07fc2ae3b00e23ed4443b2Brian Carlstrom v.add(new ASN1Integer(h)); 1728212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1738212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom 1748212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom return new DERSequence(v); 1758212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom } 1768212855a312dc8ebe081a3e08b1d2d8f8757af02Brian Carlstrom} 177