Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
torambo.com
/
Momentum-Apps
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: ea660ebe0b
Branche Tagy
Momentum-Apps
/
crypto
/
ed25519-donna
/
modm-donna-32bit.h

modm-donna-32bit.h 2.6 KB
História Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. /*
    2. 

  2. 	Public domain by Andrew M. <liquidsun@gmail.com>
    3. 

  3. */
    4. 

  4. 

  5. 

  6. /*
    7. 

  7. 	Arithmetic modulo the group order n = 2^252 +  27742317777372353535851937790883648493 = 7237005577332262213973186563042994240857116359379907606001950938285454250989
    8. 

  8. 

  9. 	k = 32
    10. 

  10. 	b = 1 << 8 = 256
    11. 

  11. 	m = 2^252 + 27742317777372353535851937790883648493 = 0x1000000000000000000000000000000014def9dea2f79cd65812631a5cf5d3ed
    12. 

  12. 	mu = floor( b^(k*2) / m ) = 0xfffffffffffffffffffffffffffffffeb2106215d086329a7ed9ce5a30a2c131b
    13. 

  13. */
    14. 

  14. 

  15. #define bignum256modm_bits_per_limb 30
    16. 

  16. #define bignum256modm_limb_size 9
    17. 

  17. 

  18. typedef uint32_t bignum256modm_element_t;
    19. 

  19. typedef bignum256modm_element_t bignum256modm[9];
    20. 

  20. 

  21. /* see HAC, Alg. 14.42 Step 4 */
    22. 

  22. void reduce256_modm(bignum256modm r);
    23. 

  23. 

  24. /*
    25. 

  25. 	Barrett reduction,  see HAC, Alg. 14.42
    26. 

  26. 

  27. 	Instead of passing in x, pre-process in to q1 and r1 for efficiency
    28. 

  28. */
    29. 

  29. void barrett_reduce256_modm(bignum256modm r, const bignum256modm q1, const bignum256modm r1);
    30. 

  30. 

  31. /* addition modulo m */
    32. 

  32. void add256_modm(bignum256modm r, const bignum256modm x, const bignum256modm y);
    33. 

  33. 

  34. /* -x modulo m */
    35. 

  35. void neg256_modm(bignum256modm r, const bignum256modm x);
    36. 

  36. 

  37. /* subtraction x-y modulo m */
    38. 

  38. void sub256_modm(bignum256modm r, const bignum256modm x, const bignum256modm y);
    39. 

  39. 

  40. /* multiplication modulo m */
    41. 

  41. void mul256_modm(bignum256modm r, const bignum256modm x, const bignum256modm y);
    42. 

  42. 

  43. void expand256_modm(bignum256modm out, const unsigned char *in, size_t len);
    44. 

  44. 

  45. void expand_raw256_modm(bignum256modm out, const unsigned char in[32]);
    46. 

  46. 

  47. int is_reduced256_modm(const bignum256modm in);
    48. 

  48. 

  49. void contract256_modm(unsigned char out[32], const bignum256modm in);
    50. 

  50. 

  51. void contract256_window4_modm(signed char r[64], const bignum256modm in);
    52. 

  52. 

  53. void contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize);
    54. 

  54. 

  55. /* 64bit uint to scalar value */
    56. 

  56. void set256_modm(bignum256modm r, uint64_t v);
    57. 

  57. 

  58. /* scalar value to 64bit uint */
    59. 

  59. int get256_modm(uint64_t * v, const bignum256modm r);
    60. 

  60. 

  61. /* equality test on two reduced scalar values */
    62. 

  62. int eq256_modm(const bignum256modm x, const bignum256modm y);
    63. 

  63. 

  64. /* comparison of two reduced scalar values */
    65. 

  65. int cmp256_modm(const bignum256modm x, const bignum256modm y);
    66. 

  66. 

  67. /* scalar null check, has to be reduced */
    68. 

  68. int iszero256_modm(const bignum256modm x);
    69. 

  69. 

  70. /* simple copy, no reduction */
    71. 

  71. void copy256_modm(bignum256modm r, const bignum256modm x);
    72. 

  72. 

  73. /* check if nonzero && same after reduction */
    74. 

  74. int check256_modm(const bignum256modm x);
    75. 

  75. 

  76. /* (cc - aa * bb) % l */
    77. 

  77. void mulsub256_modm(bignum256modm r, const bignum256modm a, const bignum256modm b, const bignum256modm c);
    78. 

  78. 

  79. /* (cc + aa * bb) % l */
    80. 

  80. void muladd256_modm(bignum256modm r, const bignum256modm a, const bignum256modm b, const bignum256modm c);
    81.