9 files changed, 128 insertions, 2 deletions

diff --git a/src/exhaustive/exhaustive.c b/src/exhaustive/exhaustive.c
index 28d464a..15b299a 100644
--- a/src/exhaustive/exhaustive.c
+++ b/src/exhaustive/exhaustive.c
@@ -15,6 +15,7 @@
 #include "gen/hex.h"
 #include "gen/order.h"
 #include "gen/point.h"
+#include "gen/metadata.h"
 #include "gen/seed.h"
 #include "io/output.h"
 #include "misc/config.h"
@@ -182,6 +183,12 @@ static void exhaustive_ginit(gen_f *generators) {
 		generators[OFFSET_CURVE] = &curve_gen_any;
 	}
 
+	if (cfg->metadata) {
+		generators[OFFSET_METADATA] = &metadata_gen;
+	} else {
+		generators[OFFSET_METADATA] = &gen_skip;
+	}
+
 	switch (cfg->points.type) {
 		case POINTS_RANDOM:
 			if (cfg->points.amount) {
diff --git a/src/gen/metadata.c b/src/gen/metadata.c
new file mode 100644
index 0000000..512c30c
--- /dev/null
+++ b/src/gen/metadata.c
@@ -0,0 +1,38 @@
+/*
+ * ecgen, tool for generating Elliptic curve domain parameters
+ * Copyright (C) 2017-2018 J08nY
+ */
+#include "gens.h"
+#include "field.h"
+#include "metadata.h"
+
+GENERATOR(metadata_gen) {
+	GEN j = field_elementi(ell_get_j(curve->curve));
+	GEN disc = field_elementi(ell_get_disc(curve->curve));
+	GEN embedding_degree;
+	GEN q;
+	if (typ(curve->field) == t_INT) {
+		embedding_degree = gens_get_embedding(curve->field, curve->order);
+		q = curve->field;
+	} else if (typ(curve->field) == t_FFELT){
+		embedding_degree = NULL;
+		q = int2n(degree(FF_mod(curve->field)));
+	} else {
+		return -7;
+	}
+	GEN frobenius = negi(subii(curve->order, addis(q, 1)));
+	GEN cm_disc;
+	if (typ(curve->field) == t_INT) {
+		cm_disc = core(subii(mulis(q, 4), sqri(frobenius)));
+	} else if (typ(curve->field) == t_FFELT){
+		cm_disc = NULL;
+	} else {
+		return -7;
+	}
+	curve->meta.j_invariant = j;
+	curve->meta.discriminant = disc;
+	curve->meta.embedding_degree = embedding_degree;
+	curve->meta.frobenius_trace = frobenius;
+	curve->meta.cm_discriminant = cm_disc;
+	return 1;
+}
diff --git a/src/gen/metadata.h b/src/gen/metadata.h
new file mode 100644
index 0000000..914828c
--- /dev/null
+++ b/src/gen/metadata.h
@@ -0,0 +1,19 @@
+/*
+ * ecgen, tool for generating Elliptic curve domain parameters
+ * Copyright (C) 2017-2018 J08nY
+ */
+#ifndef ECGEN_GEN_METADATA_H
+#define ECGEN_GEN_METADATA_H
+
+#include "misc/types.h"
+
+/**
+ * @brief
+ * @param curve
+ * @param args
+ * @param state
+ * @return
+ */
+GENERATOR(metadata_gen);
+
+#endif //ECGEN_GEN_METADATA_H
diff --git a/src/invalid/invalid.c b/src/invalid/invalid.c
index 70ecda4..9b4dcb2 100644
--- a/src/invalid/invalid.c
+++ b/src/invalid/invalid.c
@@ -37,6 +37,7 @@ static void invalid_original_ginit(gen_f *generators) {
 	generators[OFFSET_GENERATORS] = &gens_gen_any;
 	generators[OFFSET_CURVE] = &curve_gen_any;
 	generators[OFFSET_ORDER] = &order_gen_any;
+	generators[OFFSET_METADATA] = &gen_skip;
 }
 
 static void invalid_invalid_ginit(gen_f *generators) {
@@ -52,6 +53,7 @@ static void invalid_invalid_ginit(gen_f *generators) {
 		generators[OFFSET_GENERATORS] = &gens_gen_any;
 	}
 	generators[OFFSET_POINTS] = &points_gen_trial;
+	generators[OFFSET_METADATA] = &gen_skip;
 }
 
 static void invalid_cinit(check_t **validators) {
diff --git a/src/io/cli.c b/src/io/cli.c
index 14d51f8..32888a8 100644
--- a/src/io/cli.c
+++ b/src/io/cli.c
@@ -39,6 +39,7 @@ enum opt_keys {
 	OPT_TIMEOUT,
 	OPT_ANOMALOUS,
 	OPT_HEXCHECK,
+	OPT_METADATA,
 	OPT_BRAINPOOL_RFC,
 	OPT_TWIST,
 };
@@ -59,7 +60,8 @@ struct argp_option cli_options[] = {
 		{"twist",         OPT_TWIST,         0,        0,                 "Generate a twist of a given curve.",                                                    2},
 
 		{0,               0,                 0,        0,                 "Generation options:",                                                                   3},
-		{"random",        OPT_RANDOM,        "WHAT", OPTION_ARG_OPTIONAL, "Generate a random curve (using Random approach). Optionally, only generate random parameters WHAT (seed,field,a,b,equation).",                                      3},
+		{"random",        OPT_RANDOM,        "WHAT", OPTION_ARG_OPTIONAL, "Generate a random curve (using Random approach). "
+																	      "Optionally, only generate random parameters WHAT (seed,field,a,b,equation).",           3},
 		{"prime",         OPT_PRIME,         0,        0,                 "Generate a curve with prime order.",                                                    3},
 		{"cofactor",      OPT_COFACTOR,      "VALUE",  0,                 "Generate a curve with cofactor of VALUE.",                                              3},
 		{"koblitz",       OPT_KOBLITZ,       "A",    OPTION_ARG_OPTIONAL, "Generate a Koblitz curve (a in {0, 1}, b = 1).",                                        3},
@@ -67,6 +69,8 @@ struct argp_option cli_options[] = {
 		{"hex-check",     OPT_HEXCHECK,      "HEX",    0,                 "Check a generated curve param hex expansion for the HEX string.",                       3},
 		{"points",        OPT_POINTS,        "TYPE",   0,                 "Generate points of given type (random/prime/all/nonprime/none).",                       3},
 		{"count",         OPT_COUNT,         "COUNT",  0,                 "Generate multiple curves.",                                                             3},
+		{"metadata",      OPT_METADATA,      0,        0,                 "Compute curve metadata "
+																	      "(j-invariant, discriminant, trace of Frobenius, embedding degree, CM discriminant).",   3},
 
 		{0,               0,                 0,        0,                 "Input/Output options:",                                                                 4},
 		{"input",         OPT_INPUT,         "FILE",   0,                 "Input from file.",                                                                      4},
@@ -310,6 +314,9 @@ error_t cli_parse(int key, char *arg, struct argp_state *state) {
 			cfg->hex_check = str_start;
 			break;
 		}
+		case OPT_METADATA:
+			cfg->metadata = true;
+			break;
 		case OPT_POINTS: {
 			char *num_end;
 			long amount = strtol(arg, &num_end, 10);
diff --git a/src/io/output.c b/src/io/output.c
index 2130614..8ad4ab0 100644
--- a/src/io/output.c
+++ b/src/io/output.c
@@ -5,6 +5,8 @@
 
 #include "output.h"
 #include <parson/parson.h>
+#include <misc/config.h>
+#include <misc/types.h>
 #include "gen/field.h"
 #include "util/bits.h"
 #include "util/memory.h"
@@ -120,6 +122,39 @@ static JSON_Value *output_jjson(curve_t *curve) {
 		}
 		json_object_set_value(root_object, "subgroups", gens_value);
 	}
+	if (cfg->metadata) {
+		debug_log("here");
+		if (curve->meta.j_invariant != NULL) {
+			char *j = pari_sprintf("%Pi", curve->meta.j_invariant);
+			json_object_dotset_string(root_object, "meta.j", j);
+			pari_free(j);
+		}
+		debug_log("here");
+		if (curve->meta.discriminant != NULL) {
+			char *disc = pari_sprintf("%Pi", curve->meta.discriminant);
+			json_object_dotset_string(root_object, "meta.discriminant", disc);
+			pari_free(disc);
+		}
+		debug_log("here");
+		if (curve->meta.embedding_degree != NULL) {
+			char *embedding_degree = pari_sprintf("%Pi", curve->meta.embedding_degree);
+			json_object_dotset_string(root_object, "meta.embedding_degree", embedding_degree);
+			pari_free(embedding_degree);
+		}
+		debug_log("here");
+		if (curve->meta.frobenius_trace != NULL) {
+			char *frobenius = pari_sprintf("%Pi", curve->meta.frobenius_trace);
+			json_object_dotset_string(root_object, "meta.frobenius", frobenius);
+			pari_free(frobenius);
+		}
+		debug_log("here");
+		if (curve->meta.cm_discriminant != NULL) {
+			char *cm_discriminant = pari_sprintf("%Pi", curve->meta.cm_discriminant);
+			json_object_dotset_string(root_object, "meta.cm_discriminant", cm_discriminant);
+			pari_free(cm_discriminant);
+		}
+		debug_log("here");
+	}
 
 	avma = ltop;
 	return root_value;
diff --git a/src/misc/config.h b/src/misc/config.h
index 7832e88..55a3cdd 100644
--- a/src/misc/config.h
+++ b/src/misc/config.h
@@ -99,6 +99,8 @@ typedef struct {
 	char *hex_check;
 	/** @brief What points to generate on the curves. */
 	struct points_s points;
+	/** @brief Compute curve metadata. */
+	bool metadata;
 
 	/** @brief The datadir to use, if any. */
 	char *datadir;
diff --git a/src/misc/types.c b/src/misc/types.c
index 1554684..ca287a0 100644
--- a/src/misc/types.c
+++ b/src/misc/types.c
@@ -5,7 +5,7 @@
 #include "types.h"
 
 const char* offset_s[OFFSET_END] = {"SEED",  "FIELD", "A",          "B",
-                                    "CURVE", "ORDER", "GENERATORS", "POINTS"};
+                                    "CURVE", "ORDER", "GENERATORS", "POINTS", "METADATA"};
 
 GENERATOR(gen_skip) { return 1; }
 
diff --git a/src/misc/types.h b/src/misc/types.h
index 4b6d8f9..89544f4 100644
--- a/src/misc/types.h
+++ b/src/misc/types.h
@@ -79,6 +79,17 @@ typedef struct {
 } subgroup_t;
 
 /**
+ * @brief Curve metadata.
+ */
+typedef struct {
+	GEN j_invariant;
+	GEN discriminant;
+	GEN cm_discriminant;
+	GEN frobenius_trace;
+	GEN embedding_degree;
+} metadata_t;
+
+/**
  * @brief A curve type.
  * @param seed a seed_t
  * @param field a t_INT or t_FFELT
@@ -87,6 +98,7 @@ typedef struct {
  * @param curve a t_ELL, curve object
  * @param order a t_INT, curve order
  * @param generators generators saved
+ * @param meta
  * @param ngens number of generators saved in the curve type
  */
 typedef struct {
@@ -98,8 +110,11 @@ typedef struct {
 	GEN order;
 	subgroup_t **generators;
 	size_t ngens;
+	metadata_t meta;
 } curve_t;
 
+
+
 /**
  * @brief
  */
@@ -112,6 +127,7 @@ typedef enum {
 	OFFSET_ORDER,
 	OFFSET_GENERATORS,
 	OFFSET_POINTS,
+	OFFSET_METADATA,
 	OFFSET_END
 } offset_e;