jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
168 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: f18cf359c6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f18cf359c6'
${ noResults }
ed448goldilocks/src/p448/arch_x86_64/p448.h

258 lines
4.6 KiB
Raw Blame History 

  1. /* Copyright (c) 2014 Cryptography Research, Inc.

  2.  * Released under the MIT License.  See LICENSE.txt for license information.

  3.  */

  4. #ifndef __P448_H__

  5. #define __P448_H__ 1

  6. 

  7. #include <stdint.h>

  8. #include <assert.h>

  9. 

  10. #include "word.h"

  11. 

  12. typedef struct p448_t {

  13.   uint64_t limb[8];

  14. } __attribute__((aligned(32))) p448_t;

  15. 

  16. #ifdef __cplusplus

  17. extern "C" {

  18. #endif

  19. 

  20. static __inline__ void

  21. p448_set_ui (

  22.     p448_t *out,

  23.     uint64_t x

  24. ) __attribute__((unused,always_inline));

  25. 

  26. static __inline__ void

  27. p448_add_RAW (

  28.     p448_t *out,

  29.     const p448_t *a,

  30.     const p448_t *b

  31. ) __attribute__((unused,always_inline));

  32.              

  33. static __inline__ void

  34. p448_sub_RAW (

  35.     p448_t *out,

  36.     const p448_t *a,

  37.     const p448_t *b

  38. ) __attribute__((unused,always_inline));

  39.              

  40. static __inline__ void

  41. p448_neg_RAW (

  42.     p448_t *out,

  43.     const p448_t *a

  44. ) __attribute__((unused,always_inline));

  45. 

  46. static __inline__ void

  47. p448_addw (

  48.     p448_t *a,

  49.     uint64_t x

  50. ) __attribute__((unused,always_inline));

  51.              

  52. static __inline__ void

  53. p448_subw (

  54.     p448_t *a,

  55.     uint64_t x

  56. ) __attribute__((unused,always_inline));

  57.              

  58. static __inline__ void

  59. p448_copy (

  60.     p448_t *out,

  61.     const p448_t *a

  62. ) __attribute__((unused,always_inline));

  63.              

  64. static __inline__ void

  65. p448_weak_reduce (

  66.     p448_t *inout

  67. ) __attribute__((unused,always_inline));

  68.              

  69. void

  70. p448_strong_reduce (

  71.     p448_t *inout

  72. );

  73. 

  74. mask_t

  75. p448_is_zero (

  76.     const p448_t *in

  77. );

  78. 

  79. static __inline__ void

  80. p448_bias (

  81.     p448_t *inout,

  82.     int amount

  83. ) __attribute__((unused,always_inline));

  84.          

  85. void

  86. p448_mul (

  87.     p448_t *__restrict__ out,

  88.     const p448_t *a,

  89.     const p448_t *b

  90. );

  91. 

  92. void

  93. p448_mulw (

  94.     p448_t *__restrict__ out,

  95.     const p448_t *a,

  96.     uint64_t b

  97. );

  98. 

  99. void

  100. p448_sqr (

  101.     p448_t *__restrict__ out,

  102.     const p448_t *a

  103. );

  104. 

  105. void

  106. p448_serialize (

  107.     uint8_t *serial,

  108.     const struct p448_t *x

  109. );

  110. 

  111. mask_t

  112. p448_deserialize (

  113.     p448_t *x,

  114.     const uint8_t serial[56]

  115. );

  116. 

  117. /* -------------- Inline functions begin here -------------- */

  118. 

  119. void

  120. p448_set_ui (

  121.     p448_t *out,

  122.     uint64_t x

  123. ) {

  124.     int i;

  125.     out->limb[0] = x;

  126.     for (i=1; i<8; i++) {

  127.       out->limb[i] = 0;

  128.     }

  129. }

  130. 

  131. void

  132. p448_add_RAW (

  133.     p448_t *out,

  134.     const p448_t *a,

  135.     const p448_t *b

  136. ) {

  137.     unsigned int i;

  138.     for (i=0; i<sizeof(*out)/sizeof(uint64xn_t); i++) {

  139.         ((uint64xn_t*)out)[i] = ((const uint64xn_t*)a)[i] + ((const uint64xn_t*)b)[i];

  140.     }

  141.     /*

  142.     unsigned int i;

  143.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  144.         out->limb[i] = a->limb[i] + b->limb[i];

  145.     }

  146.     */

  147. }

  148. 

  149. void

  150. p448_sub_RAW (

  151.     p448_t *out,

  152.     const p448_t *a,

  153.     const p448_t *b

  154. ) {

  155.     unsigned int i;

  156.     for (i=0; i<sizeof(*out)/sizeof(uint64xn_t); i++) {

  157.         ((uint64xn_t*)out)[i] = ((const uint64xn_t*)a)[i] - ((const uint64xn_t*)b)[i];

  158.     }

  159.     /*

  160.     unsigned int i;

  161.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  162.         out->limb[i] = a->limb[i] - b->limb[i];

  163.     }

  164.     */

  165. }

  166. 

  167. void

  168. p448_neg_RAW (

  169.     struct p448_t *out,

  170.     const p448_t *a

  171. ) {

  172.     unsigned int i;

  173.     for (i=0; i<sizeof(*out)/sizeof(uint64xn_t); i++) {

  174.         ((uint64xn_t*)out)[i] = -((const uint64xn_t*)a)[i];

  175.     }

  176.     /*

  177.     unsigned int i;

  178.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  179.         out->limb[i] = -a->limb[i];

  180.     }

  181.     */

  182. }

  183. 

  184. void

  185. p448_addw (

  186.     p448_t *a,

  187.     uint64_t x

  188. ) {

  189.   a->limb[0] += x;

  190. }

  191.              

  192. void

  193. p448_subw (

  194.     p448_t *a,

  195.     uint64_t x

  196. ) {

  197.   a->limb[0] -= x;

  198. }

  199. 

  200. void

  201. p448_copy (

  202.     p448_t *out,

  203.     const p448_t *a

  204. ) {

  205.     unsigned int i;

  206.     for (i=0; i<sizeof(*out)/sizeof(big_register_t); i++) {

  207.         ((big_register_t *)out)[i] = ((const big_register_t *)a)[i];

  208.     }

  209. }

  210. 

  211. void

  212. p448_bias (

  213.     p448_t *a,

  214.     int amt

  215. ) {

  216.     uint64_t co1 = ((1ull<<56)-1)*amt, co2 = co1-amt;

  217.     

  218. #if __AVX2__

  219.     uint64x4_t lo = {co1,co1,co1,co1}, hi = {co2,co1,co1,co1};

  220.     uint64x4_t *aa = (uint64x4_t*) a;

  221.     aa[0] += lo;

  222.     aa[1] += hi;

  223. #elif __SSE2__

  224.     uint64x2_t lo = {co1,co1}, hi = {co2,co1};

  225.     uint64x2_t *aa = (uint64x2_t*) a;

  226.     aa[0] += lo;

  227.     aa[1] += lo;

  228.     aa[2] += hi;

  229.     aa[3] += lo;

  230. #else

  231.     unsigned int i;

  232.     for (i=0; i<sizeof(*a)/sizeof(uint64_t); i++) {

  233.         a->limb[i] += (i==4) ? co2 : co1;

  234.     }

  235. #endif

  236. }

  237. 

  238. void

  239. p448_weak_reduce (

  240.     p448_t *a

  241. ) {

  242.     /* PERF: use pshufb/palignr if anyone cares about speed of this */

  243.     uint64_t mask = (1ull<<56) - 1;

  244.     uint64_t tmp = a->limb[7] >> 56;

  245.     int i;

  246.     a->limb[4] += tmp;

  247.     for (i=7; i>0; i--) {

  248.         a->limb[i] = (a->limb[i] & mask) + (a->limb[i-1]>>56);

  249.     }

  250.     a->limb[0] = (a->limb[0] & mask) + tmp;

  251. }

  252. 

  253. #ifdef __cplusplus

  254. }; /* extern "C" */

  255. #endif

  256. 

  257. #endif /* __P448_H__ */