jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
236 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: 719fcacc58
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '719fcacc58'
${ noResults }
ed448goldilocks/src/p448/arch_32/f_impl.h

172 lines
3.2 KiB
Raw Blame History 

  1. /* Copyright (c) 2014 Cryptography Research, Inc.

  2.  * Released under the MIT License.  See LICENSE.txt for license information.

  3.  */

  4. #ifndef __P448_H__

  5. #define __P448_H__ 1

  6. 

  7. #include "word.h"

  8. 

  9. #include <stdint.h>

  10. #include <assert.h>

  11. 

  12. typedef struct p448_t {

  13.   uint32_t limb[16];

  14. } __attribute__((aligned(32))) p448_t;

  15. 

  16. #define LBITS 28

  17. #define LIMB(x) (x##ull)&((1ull<<LBITS)-1), (x##ull)>>LBITS

  18. #define FIELD_LITERAL(a,b,c,d,e,f,g,h) \

  19.     {{LIMB(a),LIMB(b),LIMB(c),LIMB(d),LIMB(e),LIMB(f),LIMB(g),LIMB(h)}}

  20. 

  21. #ifdef __cplusplus

  22. extern "C" {

  23. #endif

  24. 

  25. static __inline__ void

  26. p448_add_RAW (

  27.     p448_t *out,

  28.     const p448_t *a,

  29.     const p448_t *b

  30. ) __attribute__((unused,always_inline));

  31.              

  32. static __inline__ void

  33. p448_sub_RAW (

  34.     p448_t *out,

  35.     const p448_t *a,

  36.     const p448_t *b

  37. ) __attribute__((unused,always_inline));

  38.              

  39. static __inline__ void

  40. p448_copy (

  41.     p448_t *out,

  42.     const p448_t *a

  43. ) __attribute__((unused,always_inline));

  44.              

  45. static __inline__ void

  46. p448_weak_reduce (

  47.     p448_t *inout

  48. ) __attribute__((unused,always_inline));

  49.              

  50. void

  51. p448_strong_reduce (

  52.     p448_t *inout

  53. );

  54.              

  55. static __inline__ void

  56. p448_bias (

  57.     p448_t *inout,

  58.     int amount

  59. ) __attribute__((unused,always_inline));

  60. 

  61. void

  62. p448_mul (

  63.     p448_t *__restrict__ out,

  64.     const p448_t *a,

  65.     const p448_t *b

  66. );

  67. 

  68. void

  69. p448_mulw (

  70.     p448_t *__restrict__ out,

  71.     const p448_t *a,

  72.     uint64_t b

  73. );

  74. 

  75. void

  76. p448_sqr (

  77.     p448_t *__restrict__ out,

  78.     const p448_t *a

  79. );

  80. 

  81. void

  82. p448_serialize (

  83.     uint8_t *serial,

  84.     const struct p448_t *x

  85. );

  86. 

  87. mask_t

  88. p448_deserialize (

  89.     p448_t *x,

  90.     const uint8_t serial[56]

  91. );

  92. 

  93. /* -------------- Inline functions begin here -------------- */

  94. 

  95. void

  96. p448_add_RAW (

  97.     p448_t *out,

  98.     const p448_t *a,

  99.     const p448_t *b

  100. ) {

  101.     unsigned int i;

  102.     for (i=0; i<sizeof(*out)/sizeof(uint32xn_t); i++) {

  103.         ((uint32xn_t*)out)[i] = ((const uint32xn_t*)a)[i] + ((const uint32xn_t*)b)[i];

  104.     }

  105.     /*

  106.     unsigned int i;

  107.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  108.         out->limb[i] = a->limb[i] + b->limb[i];

  109.     }

  110.     */

  111. }

  112. 

  113. void

  114. p448_sub_RAW (

  115.     p448_t *out,

  116.     const p448_t *a,

  117.     const p448_t *b

  118. ) {

  119.     unsigned int i;

  120.     for (i=0; i<sizeof(*out)/sizeof(uint32xn_t); i++) {

  121.         ((uint32xn_t*)out)[i] = ((const uint32xn_t*)a)[i] - ((const uint32xn_t*)b)[i];

  122.     }

  123.     /*

  124.     unsigned int i;

  125.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  126.         out->limb[i] = a->limb[i] - b->limb[i];

  127.     }

  128.     */

  129. }

  130. 

  131. void

  132. p448_copy (

  133.     p448_t *out,

  134.     const p448_t *a

  135. ) {

  136.   *out = *a;

  137. }

  138. 

  139. void

  140. p448_bias (

  141.     p448_t *a,

  142.     int amt

  143. ) {

  144.     uint32_t co1 = ((1ull<<28)-1)*amt, co2 = co1-amt;

  145.     uint32x4_t lo = {co1,co1,co1,co1}, hi = {co2,co1,co1,co1};

  146.     uint32x4_t *aa = (uint32x4_t*) a;

  147.     aa[0] += lo;

  148.     aa[1] += lo;

  149.     aa[2] += hi;

  150.     aa[3] += lo;

  151. }

  152. 

  153. void

  154. p448_weak_reduce (

  155.     p448_t *a

  156. ) {

  157.     uint64_t mask = (1ull<<28) - 1;

  158.     uint64_t tmp = a->limb[15] >> 28;

  159.     int i;

  160.     a->limb[8] += tmp;

  161.     for (i=15; i>0; i--) {

  162.         a->limb[i] = (a->limb[i] & mask) + (a->limb[i-1]>>28);

  163.     }

  164.     a->limb[0] = (a->limb[0] & mask) + tmp;

  165. }

  166. 

  167. #ifdef __cplusplus

  168. }; /* extern "C" */

  169. #endif

  170. 

  171. #endif /* __P448_H__ */