sm2 0.14.0-rc.9

//! Field arithmetic modulo p = 0xfffffffeffffffffffffffffffffffffffffffff00000000ffffffffffffffff
//!
//! Arithmetic implementations have been synthesized using fiat-crypto.
//!
//! # License
//!
//! Copyright (c) 2015-2020 the fiat-crypto authors
//!
//! fiat-crypto is distributed under the terms of the MIT License, the
//! Apache License (Version 2.0), and the BSD 1-Clause License;
//! users may pick which license to apply.

use crate::U256;
use elliptic_curve::{
    bigint::cpubits,
    ff::PrimeField,
    subtle::{Choice, ConstantTimeEq, CtOption},
};

// Default backend: fiat-crypto
cpubits! {
    32 => {
        #[cfg(not(sm2_backend = "bignum"))]
        use fiat_crypto::sm2_32::*;
    }
    64 => {
        #[cfg(not(sm2_backend = "bignum"))]
        use fiat_crypto::sm2_64::*;
    }
}

/// Constant representing the modulus serialized as hex.
const MODULUS_HEX: &str = "fffffffeffffffffffffffffffffffffffffffff00000000ffffffffffffffff";

primefield::monty_field_params! {
    name: FieldParams,
    modulus: MODULUS_HEX,
    uint: U256,
    byte_order: primefield::ByteOrder::BigEndian,
    multiplicative_generator: 13,
    doc: "Montgomery parameters for SM2's field modulus `p = 0xfffffffeffffffffffffffffffffffffffffffff00000000ffffffffffffffff`"
}

primefield::monty_field_element! {
    name: FieldElement,
    params: FieldParams,
    uint: U256,
    doc: "Element in the SM2 finite field modulo `p = 0xfffffffeffffffffffffffffffffffffffffffff00000000ffffffffffffffff`"
}

#[cfg(sm2_backend = "bignum")]
primefield::monty_field_arithmetic! {
    name: FieldElement,
    params: FieldParams,
    uint: U256
}

#[cfg(not(sm2_backend = "bignum"))]
primefield::fiat_monty_field_arithmetic! {
    name: FieldElement,
    params: FieldParams,
    uint: U256,
    non_mont: fiat_sm2_non_montgomery_domain_field_element,
    mont: fiat_sm2_montgomery_domain_field_element,
    from_mont: fiat_sm2_from_montgomery,
    to_mont: fiat_sm2_to_montgomery,
    add: fiat_sm2_add,
    sub: fiat_sm2_sub,
    mul: fiat_sm2_mul,
    neg: fiat_sm2_opp,
    square: fiat_sm2_square,
    divstep_precomp: fiat_sm2_divstep_precomp,
    divstep: fiat_sm2_divstep,
    msat: fiat_sm2_msat,
    selectnz: fiat_sm2_selectznz
}

#[cfg(test)]
mod tests {
    use super::{FieldElement, U256};
    #[cfg(not(sm2_backend = "bignum"))]
    use super::{
        FieldParams, fiat_sm2_montgomery_domain_field_element, fiat_sm2_msat,
        fiat_sm2_non_montgomery_domain_field_element, fiat_sm2_to_montgomery,
    };

    primefield::test_primefield!(FieldElement, U256);

    #[cfg(not(sm2_backend = "bignum"))]
    primefield::test_fiat_monty_field_arithmetic!(
        name: FieldElement,
        params: FieldParams,
        uint: U256,
        non_mont: fiat_sm2_non_montgomery_domain_field_element,
        mont: fiat_sm2_montgomery_domain_field_element,
        to_mont: fiat_sm2_to_montgomery,
        msat: fiat_sm2_msat
    );
}