lib/h2c/suite.rb in h2c-0.1.0 vs lib/h2c/suite.rb in h2c-0.2.0

@@ -4,24 +4,58 @@
   class Suite
     attr_reader :id, :curve, :k, :exp, :m, :l, :ro, :map
 
     SECP256K1_XMDSHA256_SSWU_NU_ = "secp256k1_XMD:SHA-256_SSWU_NU_"
     SECP256K1_XMDSHA256_SSWU_RO_ = "secp256k1_XMD:SHA-256_SSWU_RO_"
+    BLS12381G1_XMDSHA256_SWU_NU_ = "BLS12381G1_XMD:SHA-256_SSWU_NU_"
+    BLS12381G1_XMDSHA256_SWU_RO_ = "BLS12381G1_XMD:SHA-256_SSWU_RO_"
+    P256_XMDSHA256_SSWU_NU_ = "P256_XMD:SHA-256_SSWU_NU_"
+    P256_XMDSHA256_SSWU_RO_ = "P256_XMD:SHA-256_SSWU_RO_"
+    P384_XMDSHA384_SSWU_NU_ = "P384_XMD:SHA-384_SSWU_NU_"
+    P384_XMDSHA384_SSWU_RO_ = "P384_XMD:SHA-384_SSWU_RO_"
+    P521_XMDSHA512_SSWU_NU_ = "P521_XMD:SHA-512_SSWU_NU_"
+    P521_XMDSHA512_SSWU_RO_ = "P521_XMD:SHA-512_SSWU_RO_"
 
     # Initialize suite
     # @param [String] id Suite id.
     # @param [String] dst Domain separation tag.
     def initialize(id, dst)
       @id = id
+      @k = 128
+      @m = 1
       case id
       when SECP256K1_XMDSHA256_SSWU_NU_, SECP256K1_XMDSHA256_SSWU_RO_
         @curve = ECDSA::Group::Secp256k1
-        @k = 128
         @exp = Expander.get(HashFunc::SHA256, dst, @k)
-        @m = 1
         @l = 48
         @map = M2C::SSWUAB0.new(H2C::M2C::ISOGeny::Secp256k1.new, -11)
         @ro = (id == SECP256K1_XMDSHA256_SSWU_RO_)
+      when BLS12381G1_XMDSHA256_SWU_NU_, BLS12381G1_XMDSHA256_SWU_RO_
+        @curve = ECDSA::Group::BLS12381G1
+        @exp = Expander.get(HashFunc::SHA256, dst, @k)
+        @l = 64
+        @map = M2C::SSWUAB0.new(H2C::M2C::ISOGeny::BLS12381G1.new, 11)
+        @ro = (id == BLS12381G1_XMDSHA256_SWU_RO_)
+      when P256_XMDSHA256_SSWU_NU_, P256_XMDSHA256_SSWU_RO_
+        @curve = ECDSA::Group::Nistp256
+        @exp = Expander.get(HashFunc::SHA256, dst, @k)
+        @l = 48
+        @map = M2C::SSWU.new(ECDSA::Group::Nistp256, -10)
+        @ro = (id == P256_XMDSHA256_SSWU_RO_)
+      when P384_XMDSHA384_SSWU_NU_, P384_XMDSHA384_SSWU_RO_
+        @k = 192
+        @curve = ECDSA::Group::Nistp384
+        @exp = Expander.get(HashFunc::SHA384, dst, @k)
+        @l = 72
+        @map = M2C::SSWU.new(ECDSA::Group::Nistp384, -12)
+        @ro = (id == P384_XMDSHA384_SSWU_RO_)
+      when P521_XMDSHA512_SSWU_NU_, P521_XMDSHA512_SSWU_RO_
+        @k = 256
+        @curve = ECDSA::Group::Nistp521
+        @exp = Expander.get(HashFunc::SHA512, dst, @k)
+        @l = 98
+        @map = M2C::SSWU.new(ECDSA::Group::Nistp521, -4)
+        @ro = (id == P521_XMDSHA512_SSWU_RO_)
       else
         raise H2C::Error, "suite #{curve} unsupported."
       end
     end
   end