kris
/
xmss-KAT-generator
1
0
Çatalla 0
Kod Konular 0 Değişiklik İstekleri 0 Sürümler 0 Wiki Aktivite
25'ten fazla konu seçemezsiniz Konular bir harf veya rakamla başlamalı, kısa çizgiler ('-') içerebilir ve en fazla 35 karakter uzunluğunda olabilir.
132 İşleme
1 Dal
488 KiB
 
 
Ağaç: 9384cc066a
Dallar Biçim İmleri
${ item.name }
${ searchTerm } dalı oluştur
'9384cc066a'den
${ noResults }
xmss-KAT-generator/params.c

754 satır
18 KiB
Ham Suçlama Geçmiş 

  1. #include <stdint.h>

  2. #include <string.h>

  3. 

  4. #include "params.h"

  5. #include "xmss_core.h"

  6. 

  7. int xmss_str_to_oid(uint32_t *oid, const char *s)

  8. {

  9.     if (!strcmp(s, "XMSS-SHA2_10_256")) {

  10.         *oid = 0x00000001;

  11.     }

  12.     else if (!strcmp(s, "XMSS-SHA2_16_256")) {

  13.         *oid = 0x00000002;

  14.     }

  15.     else if (!strcmp(s, "XMSS-SHA2_20_256")) {

  16.         *oid = 0x00000003;

  17.     }

  18.     else if (!strcmp(s, "XMSS-SHA2_10_512")) {

  19.         *oid = 0x00000004;

  20.     }

  21.     else if (!strcmp(s, "XMSS-SHA2_16_512")) {

  22.         *oid = 0x00000005;

  23.     }

  24.     else if (!strcmp(s, "XMSS-SHA2_20_512")) {

  25.         *oid = 0x00000006;

  26.     }

  27.     else if (!strcmp(s, "XMSS-SHAKE_10_256")) {

  28.         *oid = 0x00000007;

  29.     }

  30.     else if (!strcmp(s, "XMSS-SHAKE_16_256")) {

  31.         *oid = 0x00000008;

  32.     }

  33.     else if (!strcmp(s, "XMSS-SHAKE_20_256")) {

  34.         *oid = 0x00000009;

  35.     }

  36.     else if (!strcmp(s, "XMSS-SHAKE_10_512")) {

  37.         *oid = 0x0000000a;

  38.     }

  39.     else if (!strcmp(s, "XMSS-SHAKE_16_512")) {

  40.         *oid = 0x0000000b;

  41.     }

  42.     else if (!strcmp(s, "XMSS-SHAKE_20_512")) {

  43.         *oid = 0x0000000c;

  44.     }

  45.     else if (!strcmp(s, "XMSS-SHA2_10_192")) {

  46.         *oid = 0x0000000d;

  47.     }

  48.     else if (!strcmp(s, "XMSS-SHA2_16_192")) {

  49.         *oid = 0x0000000e;

  50.     }

  51.     else if (!strcmp(s, "XMSS-SHA2_20_192")) {

  52.         *oid = 0x0000000f;

  53.     }

  54.     else if (!strcmp(s, "XMSS-SHAKE256_10_256")) {

  55.         *oid = 0x00000010;

  56.     }

  57.     else if (!strcmp(s, "XMSS-SHAKE256_16_256")) {

  58.         *oid = 0x00000011;

  59.     }

  60.     else if (!strcmp(s, "XMSS-SHAKE256_20_256")) {

  61.         *oid = 0x00000012;

  62.     }

  63.     else if (!strcmp(s, "XMSS-SHAKE256_10_192")) {

  64.         *oid = 0x00000013;

  65.     }

  66.     else if (!strcmp(s, "XMSS-SHAKE256_16_192")) {

  67.         *oid = 0x00000014;

  68.     }

  69.     else if (!strcmp(s, "XMSS-SHAKE256_20_192")) {

  70.         *oid = 0x00000015;

  71.     }

  72.     else {

  73.         return -1;

  74.     }

  75.     return 0;

  76. }

  77. 

  78. int xmssmt_str_to_oid(uint32_t *oid, const char *s)

  79. {

  80.     if (!strcmp(s, "XMSSMT-SHA2_20/2_256")) {

  81.         *oid = 0x00000001;

  82.     }

  83.     else if (!strcmp(s, "XMSSMT-SHA2_20/4_256")) {

  84.         *oid = 0x00000002;

  85.     }

  86.     else if (!strcmp(s, "XMSSMT-SHA2_40/2_256")) {

  87.         *oid = 0x00000003;

  88.     }

  89.     else if (!strcmp(s, "XMSSMT-SHA2_40/4_256")) {

  90.         *oid = 0x00000004;

  91.     }

  92.     else if (!strcmp(s, "XMSSMT-SHA2_40/8_256")) {

  93.         *oid = 0x00000005;

  94.     }

  95.     else if (!strcmp(s, "XMSSMT-SHA2_60/3_256")) {

  96.         *oid = 0x00000006;

  97.     }

  98.     else if (!strcmp(s, "XMSSMT-SHA2_60/6_256")) {

  99.         *oid = 0x00000007;

  100.     }

  101.     else if (!strcmp(s, "XMSSMT-SHA2_60/12_256")) {

  102.         *oid = 0x00000008;

  103.     }

  104.     else if (!strcmp(s, "XMSSMT-SHA2_20/2_512")) {

  105.         *oid = 0x00000009;

  106.     }

  107.     else if (!strcmp(s, "XMSSMT-SHA2_20/4_512")) {

  108.         *oid = 0x0000000a;

  109.     }

  110.     else if (!strcmp(s, "XMSSMT-SHA2_40/2_512")) {

  111.         *oid = 0x0000000b;

  112.     }

  113.     else if (!strcmp(s, "XMSSMT-SHA2_40/4_512")) {

  114.         *oid = 0x0000000c;

  115.     }

  116.     else if (!strcmp(s, "XMSSMT-SHA2_40/8_512")) {

  117.         *oid = 0x0000000d;

  118.     }

  119.     else if (!strcmp(s, "XMSSMT-SHA2_60/3_512")) {

  120.         *oid = 0x0000000e;

  121.     }

  122.     else if (!strcmp(s, "XMSSMT-SHA2_60/6_512")) {

  123.         *oid = 0x0000000f;

  124.     }

  125.     else if (!strcmp(s, "XMSSMT-SHA2_60/12_512")) {

  126.         *oid = 0x00000010;

  127.     }

  128.     else if (!strcmp(s, "XMSSMT-SHAKE_20/2_256")) {

  129.         *oid = 0x00000011;

  130.     }

  131.     else if (!strcmp(s, "XMSSMT-SHAKE_20/4_256")) {

  132.         *oid = 0x00000012;

  133.     }

  134.     else if (!strcmp(s, "XMSSMT-SHAKE_40/2_256")) {

  135.         *oid = 0x00000013;

  136.     }

  137.     else if (!strcmp(s, "XMSSMT-SHAKE_40/4_256")) {

  138.         *oid = 0x00000014;

  139.     }

  140.     else if (!strcmp(s, "XMSSMT-SHAKE_40/8_256")) {

  141.         *oid = 0x00000015;

  142.     }

  143.     else if (!strcmp(s, "XMSSMT-SHAKE_60/3_256")) {

  144.         *oid = 0x00000016;

  145.     }

  146.     else if (!strcmp(s, "XMSSMT-SHAKE_60/6_256")) {

  147.         *oid = 0x00000017;

  148.     }

  149.     else if (!strcmp(s, "XMSSMT-SHAKE_60/12_256")) {

  150.         *oid = 0x00000018;

  151.     }

  152.     else if (!strcmp(s, "XMSSMT-SHAKE_20/2_512")) {

  153.         *oid = 0x00000019;

  154.     }

  155.     else if (!strcmp(s, "XMSSMT-SHAKE_20/4_512")) {

  156.         *oid = 0x0000001a;

  157.     }

  158.     else if (!strcmp(s, "XMSSMT-SHAKE_40/2_512")) {

  159.         *oid = 0x0000001b;

  160.     }

  161.     else if (!strcmp(s, "XMSSMT-SHAKE_40/4_512")) {

  162.         *oid = 0x0000001c;

  163.     }

  164.     else if (!strcmp(s, "XMSSMT-SHAKE_40/8_512")) {

  165.         *oid = 0x0000001d;

  166.     }

  167.     else if (!strcmp(s, "XMSSMT-SHAKE_60/3_512")) {

  168.         *oid = 0x0000001e;

  169.     }

  170.     else if (!strcmp(s, "XMSSMT-SHAKE_60/6_512")) {

  171.         *oid = 0x0000001f;

  172.     }

  173.     else if (!strcmp(s, "XMSSMT-SHAKE_60/12_512")) {

  174.         *oid = 0x00000020;

  175.     }

  176.     else if (!strcmp(s, "XMSSMT-SHA2_20/2_192")) {

  177.         *oid = 0x00000021;

  178.     }

  179.     else if (!strcmp(s, "XMSSMT-SHA2_20/4_192")) {

  180.         *oid = 0x00000022;

  181.     }

  182.     else if (!strcmp(s, "XMSSMT-SHA2_40/2_192")) {

  183.         *oid = 0x00000023;

  184.     }

  185.     else if (!strcmp(s, "XMSSMT-SHA2_40/4_192")) {

  186.         *oid = 0x00000024;

  187.     }

  188.     else if (!strcmp(s, "XMSSMT-SHA2_40/8_192")) {

  189.         *oid = 0x00000025;

  190.     }

  191.     else if (!strcmp(s, "XMSSMT-SHA2_60/3_192")) {

  192.         *oid = 0x00000026;

  193.     }

  194.     else if (!strcmp(s, "XMSSMT-SHA2_60/6_192")) {

  195.         *oid = 0x00000027;

  196.     }

  197.     else if (!strcmp(s, "XMSSMT-SHA2_60/12_192")) {

  198.         *oid = 0x00000028;

  199.     }

  200.     else if (!strcmp(s, "XMSSMT-SHAKE256_20/2_256")) {

  201.         *oid = 0x00000029;

  202.     }

  203.     else if (!strcmp(s, "XMSSMT-SHAKE256_20/4_256")) {

  204.         *oid = 0x0000002a;

  205.     }

  206.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/2_256")) {

  207.         *oid = 0x0000002b;

  208.     }

  209.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/4_256")) {

  210.         *oid = 0x0000002c;

  211.     }

  212.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/8_256")) {

  213.         *oid = 0x0000002d;

  214.     }

  215.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/3_256")) {

  216.         *oid = 0x0000002e;

  217.     }

  218.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/6_256")) {

  219.         *oid = 0x0000002f;

  220.     }

  221.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/12_256")) {

  222.         *oid = 0x00000030;

  223.     }

  224.     else if (!strcmp(s, "XMSSMT-SHAKE256_20/2_192")) {

  225.         *oid = 0x00000031;

  226.     }

  227.     else if (!strcmp(s, "XMSSMT-SHAKE256_20/4_192")) {

  228.         *oid = 0x00000032;

  229.     }

  230.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/2_192")) {

  231.         *oid = 0x00000033;

  232.     }

  233.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/4_192")) {

  234.         *oid = 0x00000034;

  235.     }

  236.     else if (!strcmp(s, "XMSSMT-SHAKE256_40/8_192")) {

  237.         *oid = 0x00000035;

  238.     }

  239.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/3_192")) {

  240.         *oid = 0x00000036;

  241.     }

  242.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/6_192")) {

  243.         *oid = 0x00000037;

  244.     }

  245.     else if (!strcmp(s, "XMSSMT-SHAKE256_60/12_192")) {

  246.         *oid = 0x00000038;

  247.     }

  248.     else {

  249.         return -1;

  250.     }

  251.     return 0;

  252. }

  253. 

  254. int xmss_parse_oid(xmss_params *params, const uint32_t oid)

  255. {

  256.     switch (oid) {

  257.         case 0x00000001:

  258.         case 0x00000002:

  259.         case 0x00000003:

  260.         case 0x00000004:

  261.         case 0x00000005:

  262.         case 0x00000006:

  263. 

  264.         case 0x0000000d:

  265.         case 0x0000000e:

  266.         case 0x0000000f:

  267.             params->func = XMSS_SHA2;

  268.             break;

  269. 

  270.         case 0x00000007:

  271.         case 0x00000008:

  272.         case 0x00000009:

  273.             params->func = XMSS_SHAKE128;

  274.             break;

  275. 

  276.         case 0x0000000a:

  277.         case 0x0000000b:

  278.         case 0x0000000c:

  279. 

  280.         case 0x00000010:

  281.         case 0x00000011:

  282.         case 0x00000012:

  283.         case 0x00000013:

  284.         case 0x00000014:

  285.         case 0x00000015:

  286.             params->func = XMSS_SHAKE256;

  287.             break;

  288. 

  289.         default:

  290.             return -1;

  291.     }

  292.     switch (oid) {

  293.         case 0x0000000d:

  294.         case 0x0000000e:

  295.         case 0x0000000f:

  296. 

  297.         case 0x00000013:

  298.         case 0x00000014:

  299.         case 0x00000015:

  300.             params->n = 24;

  301.             params->padding_len = 4;

  302.             break;

  303. 

  304.         case 0x00000001:

  305.         case 0x00000002:

  306.         case 0x00000003:

  307. 

  308.         case 0x00000007:

  309.         case 0x00000008:

  310.         case 0x00000009:

  311. 

  312.         case 0x00000010:

  313.         case 0x00000011:

  314.         case 0x00000012:

  315.             params->n = 32;

  316.             params->padding_len = 32;

  317.             break;

  318. 

  319.         case 0x00000004:

  320.         case 0x00000005:

  321.         case 0x00000006:

  322. 

  323.         case 0x0000000a:

  324.         case 0x0000000b:

  325.         case 0x0000000c:

  326.             params->n = 64;

  327.             params->padding_len = 64;

  328.             break;

  329. 

  330.         default:

  331.             return -1;

  332.     }

  333.     switch (oid) {

  334.         case 0x00000001:

  335.         case 0x00000004:

  336.         case 0x00000007:

  337.         case 0x0000000a:

  338.         case 0x0000000d:

  339.         case 0x00000010:

  340.         case 0x00000013:

  341.             params->full_height = 10;

  342.             break;

  343. 

  344.         case 0x00000002:

  345.         case 0x00000005:

  346.         case 0x00000008:

  347.         case 0x0000000b:

  348.         case 0x0000000e:

  349.         case 0x00000011:

  350.         case 0x00000014:

  351.             params->full_height = 16;

  352.             break;

  353. 

  354.         case 0x00000003:

  355.         case 0x00000006:

  356.         case 0x00000009:

  357.         case 0x0000000c:

  358.         case 0x0000000f:

  359.         case 0x00000012:

  360.         case 0x00000015:

  361.             params->full_height = 20;

  362. 

  363.             break;

  364.         default:

  365.             return -1;

  366.     }

  367. 

  368.     params->d = 1;

  369.     params->wots_w = 16;

  370. 

  371.     // TODO figure out sensible and legal values for this based on the above

  372.     params->bds_k = 0;

  373. 

  374.     return xmss_xmssmt_initialize_params(params);

  375. }

  376. 

  377. int xmssmt_parse_oid(xmss_params *params, const uint32_t oid)

  378. {

  379.     switch (oid) {

  380.         case 0x00000001:

  381.         case 0x00000002:

  382.         case 0x00000003:

  383.         case 0x00000004:

  384.         case 0x00000005:

  385.         case 0x00000006:

  386.         case 0x00000007:

  387.         case 0x00000008:

  388.         case 0x00000009:

  389.         case 0x0000000a:

  390.         case 0x0000000b:

  391.         case 0x0000000c:

  392.         case 0x0000000d:

  393.         case 0x0000000e:

  394.         case 0x0000000f:

  395.         case 0x00000010:

  396. 

  397.         case 0x00000021:

  398.         case 0x00000022:

  399.         case 0x00000023:

  400.         case 0x00000024:

  401.         case 0x00000025:

  402.         case 0x00000026:

  403.         case 0x00000027:

  404.         case 0x00000028:

  405.             params->func = XMSS_SHA2;

  406.             break;

  407. 

  408.         case 0x00000011:

  409.         case 0x00000012:

  410.         case 0x00000013:

  411.         case 0x00000014:

  412.         case 0x00000015:

  413.         case 0x00000016:

  414.         case 0x00000017:

  415.         case 0x00000018:

  416.             params->func = XMSS_SHAKE128;

  417.             break;

  418. 

  419.         case 0x00000019:

  420.         case 0x0000001a:

  421.         case 0x0000001b:

  422.         case 0x0000001c:

  423.         case 0x0000001e:

  424.         case 0x0000001d:

  425.         case 0x0000001f:

  426.         case 0x00000020:

  427. 

  428.         case 0x00000029:

  429.         case 0x0000002a:

  430.         case 0x0000002b:

  431.         case 0x0000002c:

  432.         case 0x0000002d:

  433.         case 0x0000002e:

  434.         case 0x0000002f:

  435.         case 0x00000030:

  436.         case 0x00000031:

  437.         case 0x00000032:

  438.         case 0x00000033:

  439.         case 0x00000034:

  440.         case 0x00000035:

  441.         case 0x00000036:

  442.         case 0x00000037:

  443.         case 0x00000038:

  444.             params->func = XMSS_SHAKE256;

  445.             break;

  446. 

  447.         default:

  448.             return -1;

  449.     }

  450.     switch (oid) {

  451.         case 0x00000021:

  452.         case 0x00000022:

  453.         case 0x00000023:

  454.         case 0x00000024:

  455.         case 0x00000025:

  456.         case 0x00000026:

  457.         case 0x00000027:

  458.         case 0x00000028:

  459. 

  460.         case 0x00000031:

  461.         case 0x00000032:

  462.         case 0x00000033:

  463.         case 0x00000034:

  464.         case 0x00000035:

  465.         case 0x00000036:

  466.         case 0x00000037:

  467.         case 0x00000038:

  468.             params->n = 24;

  469.             params->padding_len = 4;

  470.             break;

  471. 

  472.         case 0x00000001:

  473.         case 0x00000002:

  474.         case 0x00000003:

  475.         case 0x00000004:

  476.         case 0x00000005:

  477.         case 0x00000006:

  478.         case 0x00000007:

  479.         case 0x00000008:

  480. 

  481.         case 0x00000011:

  482.         case 0x00000012:

  483.         case 0x00000013:

  484.         case 0x00000014:

  485.         case 0x00000015:

  486.         case 0x00000016:

  487.         case 0x00000017:

  488.         case 0x00000018:

  489. 

  490.         case 0x00000029:

  491.         case 0x0000002a:

  492.         case 0x0000002b:

  493.         case 0x0000002c:

  494.         case 0x0000002d:

  495.         case 0x0000002e:

  496.         case 0x0000002f:

  497.         case 0x00000030:

  498.             params->n = 32;

  499.             params->padding_len = 32;

  500.             break;

  501. 

  502.         case 0x00000009:

  503.         case 0x0000000a:

  504.         case 0x0000000b:

  505.         case 0x0000000c:

  506.         case 0x0000000d:

  507.         case 0x0000000e:

  508.         case 0x0000000f:

  509.         case 0x00000010:

  510. 

  511.         case 0x00000019:

  512.         case 0x0000001a:

  513.         case 0x0000001b:

  514.         case 0x0000001c:

  515.         case 0x0000001d:

  516.         case 0x0000001e:

  517.         case 0x0000001f:

  518.         case 0x00000020:

  519.             params->n = 64;

  520.             params->padding_len = 64;

  521.             break;

  522. 

  523.         default:

  524.             return -1;

  525.     }

  526.     switch (oid) {

  527.         case 0x00000001:

  528.         case 0x00000002:

  529. 

  530.         case 0x00000009:

  531.         case 0x0000000a:

  532. 

  533.         case 0x00000011:

  534.         case 0x00000012:

  535. 

  536.         case 0x00000019:

  537.         case 0x0000001a:

  538. 

  539.         case 0x00000021:

  540.         case 0x00000022:

  541. 

  542.         case 0x00000029:

  543.         case 0x0000002a:

  544. 

  545.         case 0x00000031:

  546.         case 0x00000032:

  547.             params->full_height = 20;

  548.             break;

  549. 

  550.         case 0x00000003:

  551.         case 0x00000004:

  552.         case 0x00000005:

  553. 

  554.         case 0x0000000b:

  555.         case 0x0000000c:

  556.         case 0x0000000d:

  557. 

  558.         case 0x00000013:

  559.         case 0x00000014:

  560.         case 0x00000015:

  561. 

  562.         case 0x0000001b:

  563.         case 0x0000001c:

  564.         case 0x0000001d:

  565. 

  566.         case 0x00000023:

  567.         case 0x00000024:

  568.         case 0x00000025:

  569. 

  570.         case 0x0000002b:

  571.         case 0x0000002c:

  572.         case 0x0000002d:

  573. 

  574.         case 0x00000033:

  575.         case 0x00000034:

  576.         case 0x00000035:

  577.             params->full_height = 40;

  578.             break;

  579. 

  580.         case 0x00000006:

  581.         case 0x00000007:

  582.         case 0x00000008:

  583. 

  584.         case 0x0000000e:

  585.         case 0x0000000f:

  586.         case 0x00000010:

  587. 

  588.         case 0x00000016:

  589.         case 0x00000017:

  590.         case 0x00000018:

  591. 

  592.         case 0x0000001e:

  593.         case 0x0000001f:

  594.         case 0x00000020:

  595. 

  596.         case 0x00000026:

  597.         case 0x00000027:

  598.         case 0x00000028:

  599. 

  600.         case 0x0000002e:

  601.         case 0x0000002f:

  602.         case 0x00000030:

  603. 

  604.         case 0x00000036:

  605.         case 0x00000037:

  606.         case 0x00000038:

  607.             params->full_height = 60;

  608.             break;

  609. 

  610.         default:

  611.             return -1;

  612.     }

  613.     switch (oid) {

  614.         case 0x00000001:

  615.         case 0x00000003:

  616.         case 0x00000009:

  617.         case 0x0000000b:

  618.         case 0x00000011:

  619.         case 0x00000013:

  620.         case 0x00000019:

  621.         case 0x0000001b:

  622.         case 0x00000021:

  623.         case 0x00000023:

  624.         case 0x00000029:

  625.         case 0x0000002b:

  626.         case 0x00000031:

  627.         case 0x00000033:

  628.             params->d = 2;

  629.             break;

  630. 

  631.         case 0x00000002:

  632.         case 0x00000004:

  633.         case 0x0000000a:

  634.         case 0x0000000c:

  635.         case 0x00000012:

  636.         case 0x00000014:

  637.         case 0x0000001a:

  638.         case 0x0000001c:

  639.         case 0x00000022:

  640.         case 0x00000024:

  641.         case 0x0000002a:

  642.         case 0x0000002c:

  643.         case 0x00000032:

  644.         case 0x00000034:

  645.             params->d = 4;

  646.             break;

  647. 

  648.         case 0x00000005:

  649.         case 0x0000000d:

  650.         case 0x00000015:

  651.         case 0x0000001d:

  652.         case 0x00000025:

  653.         case 0x0000002d:

  654.         case 0x00000035:

  655.             params->d = 8;

  656.             break;

  657. 

  658.         case 0x00000006:

  659.         case 0x0000000e:

  660.         case 0x00000016:

  661.         case 0x0000001e:

  662.         case 0x00000026:

  663.         case 0x0000002e:

  664.         case 0x00000036:

  665.             params->d = 3;

  666.             break;

  667. 

  668.         case 0x00000007:

  669.         case 0x0000000f:

  670.         case 0x00000017:

  671.         case 0x0000001f:

  672.         case 0x00000027:

  673.         case 0x0000002f:

  674.         case 0x00000037:

  675.             params->d = 6;

  676.             break;

  677. 

  678.         case 0x00000008:

  679.         case 0x00000010:

  680.         case 0x00000018:

  681.         case 0x00000020:

  682.         case 0x00000028:

  683.         case 0x00000030:

  684.         case 0x00000038:

  685.             params->d = 12;

  686.             break;

  687. 

  688.         default:

  689.             return -1;

  690.     }

  691. 

  692.     params->wots_w = 16;

  693. 

  694.     // TODO figure out sensible and legal values for this based on the above

  695.     params->bds_k = 0;

  696. 

  697.     return xmss_xmssmt_initialize_params(params);

  698. }

  699. 

  700. /**

  701.  * Given a params struct where the following properties have been initialized;

  702.  *  - full_height; the height of the complete (hyper)tree

  703.  *  - n; the number of bytes of hash function output

  704.  *  - d; the number of layers (d > 1 implies XMSSMT)

  705.  *  - func; one of {XMSS_SHA2, XMSS_SHAKE128, XMSS_SHAKE256}

  706.  *  - wots_w; the Winternitz parameter

  707.  *  - optionally, bds_k; the BDS traversal trade-off parameter,

  708.  * this function initializes the remainder of the params structure.

  709.  */

  710. int xmss_xmssmt_initialize_params(xmss_params *params)

  711. {

  712.     params->tree_height = params->full_height  / params->d;

  713.     if (params->wots_w == 4) {

  714.         params->wots_log_w = 2;

  715.         params->wots_len1 = 8 * params->n / params->wots_log_w;

  716.         /* len_2 = floor(log(len_1 * (w - 1)) / log(w)) + 1 */

  717.         params->wots_len2 = 5;

  718.     }

  719.     else if (params->wots_w == 16) {

  720.         params->wots_log_w = 4;

  721.         params->wots_len1 = 8 * params->n / params->wots_log_w;

  722.         /* len_2 = floor(log(len_1 * (w - 1)) / log(w)) + 1 */

  723.         params->wots_len2 = 3;

  724.     }

  725.     else if (params->wots_w == 256) {

  726.         params->wots_log_w = 8;

  727.         params->wots_len1 = 8 * params->n / params->wots_log_w;

  728.         /* len_2 = floor(log(len_1 * (w - 1)) / log(w)) + 1 */

  729.         params->wots_len2 = 2;

  730.     }

  731.     else {

  732.         return -1;

  733.     }

  734.     params->wots_len = params->wots_len1 + params->wots_len2;

  735.     params->wots_sig_bytes = params->wots_len * params->n;

  736. 

  737.     if (params->d == 1) {  // Assume this is XMSS, not XMSS^MT

  738.         /* In XMSS, always use fixed 4 bytes for index_bytes */

  739.         params->index_bytes = 4;

  740.     }

  741.     else {

  742.         /* In XMSS^MT, round index_bytes up to nearest byte. */

  743.         params->index_bytes = (params->full_height + 7) / 8;

  744.     }

  745.     params->sig_bytes = (params->index_bytes + params->n

  746.                          + params->d * params->wots_sig_bytes

  747.                          + params->full_height * params->n);

  748. 

  749.     params->pk_bytes = 2 * params->n;

  750.     params->sk_bytes = xmss_xmssmt_core_sk_bytes(params);

  751. 

  752.     return 0;

  753. }