xref: /mbedtls/library/bignum_core.c

24 size_t mbedtls_mpi_core_clz(mbedtls_mpi_uint a)  in mbedtls_mpi_core_clz()
39     mbedtls_mpi_uint mask = (mbedtls_mpi_uint) 1 << (biL - 1);  in mbedtls_mpi_core_clz()
53 size_t mbedtls_mpi_core_bitlen(const mbedtls_mpi_uint *A, size_t A_limbs)  in mbedtls_mpi_core_bitlen()
68 static mbedtls_mpi_uint mpi_bigendian_to_host(mbedtls_mpi_uint a)  in mpi_bigendian_to_host()
75         return (mbedtls_mpi_uint) MBEDTLS_BSWAP32(a);  in mpi_bigendian_to_host()
77         return (mbedtls_mpi_uint) MBEDTLS_BSWAP64(a);  in mpi_bigendian_to_host()
82 void mbedtls_mpi_core_bigendian_to_host(mbedtls_mpi_uint *A,  in mbedtls_mpi_core_bigendian_to_host()
85     mbedtls_mpi_uint *cur_limb_left;  in mbedtls_mpi_core_bigendian_to_host()
86     mbedtls_mpi_uint *cur_limb_right;  in mbedtls_mpi_core_bigendian_to_host()
103         mbedtls_mpi_uint tmp;  in mbedtls_mpi_core_bigendian_to_host()
114 mbedtls_ct_condition_t mbedtls_mpi_core_uint_le_mpi(mbedtls_mpi_uint min,  in mbedtls_mpi_core_uint_le_mpi()
115                                                     const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_uint_le_mpi()
132 mbedtls_ct_condition_t mbedtls_mpi_core_lt_ct(const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_lt_ct()
133                                               const mbedtls_mpi_uint *B,  in mbedtls_mpi_core_lt_ct()
168 void mbedtls_mpi_core_cond_assign(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_cond_assign()
169                                   const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_cond_assign()
187 void mbedtls_mpi_core_cond_swap(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_cond_swap()
188                                 mbedtls_mpi_uint *Y,  in mbedtls_mpi_core_cond_swap()
197         mbedtls_mpi_uint tmp = X[i];  in mbedtls_mpi_core_cond_swap()
203 int mbedtls_mpi_core_read_le(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_read_le()
219             X[i / ciL] |= ((mbedtls_mpi_uint) input[i]) << offset;  in mbedtls_mpi_core_read_le()
226 int mbedtls_mpi_core_read_be(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_read_be()
257 int mbedtls_mpi_core_write_le(const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_write_le()
291 int mbedtls_mpi_core_write_be(const mbedtls_mpi_uint *X,  in mbedtls_mpi_core_write_be()
330 void mbedtls_mpi_core_shift_r(mbedtls_mpi_uint *X, size_t limbs,  in mbedtls_mpi_core_shift_r()
334     mbedtls_mpi_uint r0 = 0, r1;  in mbedtls_mpi_core_shift_r()
370 void mbedtls_mpi_core_shift_l(mbedtls_mpi_uint *X, size_t limbs,  in mbedtls_mpi_core_shift_l()
374     mbedtls_mpi_uint r0 = 0, r1;  in mbedtls_mpi_core_shift_l()
405 mbedtls_mpi_uint mbedtls_mpi_core_add(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_add()
406                                       const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_add()
407                                       const mbedtls_mpi_uint *B,  in mbedtls_mpi_core_add()
410     mbedtls_mpi_uint c = 0;  in mbedtls_mpi_core_add()
413         mbedtls_mpi_uint t = c + A[i];  in mbedtls_mpi_core_add()
423 mbedtls_mpi_uint mbedtls_mpi_core_add_if(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_add_if()
424                                          const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_add_if()
428     mbedtls_mpi_uint c = 0;  in mbedtls_mpi_core_add_if()
433         mbedtls_mpi_uint add = mbedtls_ct_mpi_uint_if_else_0(do_add, A[i]);  in mbedtls_mpi_core_add_if()
434         mbedtls_mpi_uint t = c + X[i];  in mbedtls_mpi_core_add_if()
444 mbedtls_mpi_uint mbedtls_mpi_core_sub(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_sub()
445                                       const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_sub()
446                                       const mbedtls_mpi_uint *B,  in mbedtls_mpi_core_sub()
449     mbedtls_mpi_uint c = 0;  in mbedtls_mpi_core_sub()
452         mbedtls_mpi_uint z = (A[i] < c);  in mbedtls_mpi_core_sub()
453         mbedtls_mpi_uint t = A[i] - c;  in mbedtls_mpi_core_sub()
461 mbedtls_mpi_uint mbedtls_mpi_core_mla(mbedtls_mpi_uint *d, size_t d_len,  in mbedtls_mpi_core_mla()
462                                       const mbedtls_mpi_uint *s, size_t s_len,  in mbedtls_mpi_core_mla()
463                                       mbedtls_mpi_uint b)  in mbedtls_mpi_core_mla()
465     mbedtls_mpi_uint c = 0; /* carry */  in mbedtls_mpi_core_mla()
499 void mbedtls_mpi_core_mul(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_mul()
500                           const mbedtls_mpi_uint *A, size_t A_limbs,  in mbedtls_mpi_core_mul()
501                           const mbedtls_mpi_uint *B, size_t B_limbs)  in mbedtls_mpi_core_mul()
513 mbedtls_mpi_uint mbedtls_mpi_core_montmul_init(const mbedtls_mpi_uint *N)  in mbedtls_mpi_core_montmul_init()
515     mbedtls_mpi_uint x = N[0];  in mbedtls_mpi_core_montmul_init()
526 void mbedtls_mpi_core_montmul(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_montmul()
527                               const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_montmul()
528                               const mbedtls_mpi_uint *B,  in mbedtls_mpi_core_montmul()
530                               const mbedtls_mpi_uint *N,  in mbedtls_mpi_core_montmul()
532                               mbedtls_mpi_uint mm,  in mbedtls_mpi_core_montmul()
533                               mbedtls_mpi_uint *T)  in mbedtls_mpi_core_montmul()
539         mbedtls_mpi_uint u0 = A[i];  in mbedtls_mpi_core_montmul()
540         mbedtls_mpi_uint u1 = (T[0] + u0 * B[0]) * mm;  in mbedtls_mpi_core_montmul()
558     mbedtls_mpi_uint carry  = T[AN_limbs];  in mbedtls_mpi_core_montmul()
559     mbedtls_mpi_uint borrow = mbedtls_mpi_core_sub(X, T, N, AN_limbs);  in mbedtls_mpi_core_montmul()
579                          AN_limbs * sizeof(mbedtls_mpi_uint));  in mbedtls_mpi_core_montmul()
597 void mbedtls_mpi_core_ct_uint_table_lookup(mbedtls_mpi_uint *dest,  in mbedtls_mpi_core_ct_uint_table_lookup()
598                                            const mbedtls_mpi_uint *table,  in mbedtls_mpi_core_ct_uint_table_lookup()
616     mbedtls_mpi_uint *X, size_t X_limbs,  in mbedtls_mpi_core_fill_random()
637 int mbedtls_mpi_core_random(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_random()
638                             mbedtls_mpi_uint min,  in mbedtls_mpi_core_random()
639                             const mbedtls_mpi_uint *N,  in mbedtls_mpi_core_random()
722 static void exp_mod_precompute_window(const mbedtls_mpi_uint *A,  in exp_mod_precompute_window()
723                                       const mbedtls_mpi_uint *N,  in exp_mod_precompute_window()
725                                       mbedtls_mpi_uint mm,  in exp_mod_precompute_window()
726                                       const mbedtls_mpi_uint *RR,  in exp_mod_precompute_window()
728                                       mbedtls_mpi_uint *Wtable,  in exp_mod_precompute_window()
729                                       mbedtls_mpi_uint *temp)  in exp_mod_precompute_window()
737     mbedtls_mpi_uint *W1 = Wtable + AN_limbs;  in exp_mod_precompute_window()
741     mbedtls_mpi_uint *Wprev = W1;  in exp_mod_precompute_window()
743         mbedtls_mpi_uint *Wcur = Wprev + AN_limbs;  in exp_mod_precompute_window()
761 void mbedtls_mpi_core_exp_mod(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_exp_mod()
762                               const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_exp_mod()
763                               const mbedtls_mpi_uint *N,  in mbedtls_mpi_core_exp_mod()
765                               const mbedtls_mpi_uint *E,  in mbedtls_mpi_core_exp_mod()
767                               const mbedtls_mpi_uint *RR,  in mbedtls_mpi_core_exp_mod()
768                               mbedtls_mpi_uint *T)  in mbedtls_mpi_core_exp_mod()
779     mbedtls_mpi_uint *const Wtable  = T;  in mbedtls_mpi_core_exp_mod()
780     mbedtls_mpi_uint *const Wselect = Wtable  +  table_limbs;  in mbedtls_mpi_core_exp_mod()
781     mbedtls_mpi_uint *const temp    = Wselect + select_limbs;  in mbedtls_mpi_core_exp_mod()
787     const mbedtls_mpi_uint mm = mbedtls_mpi_core_montmul_init(N);  in mbedtls_mpi_core_exp_mod()
809     mbedtls_mpi_uint window = 0;  in mbedtls_mpi_core_exp_mod()
844 mbedtls_mpi_uint mbedtls_mpi_core_sub_int(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_sub_int()
845                                           const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_sub_int()
846                                           mbedtls_mpi_uint c,  /* doubles as carry */  in mbedtls_mpi_core_sub_int()
850         mbedtls_mpi_uint s = A[i];  in mbedtls_mpi_core_sub_int()
851         mbedtls_mpi_uint t = s - c;  in mbedtls_mpi_core_sub_int()
859 mbedtls_ct_condition_t mbedtls_mpi_core_check_zero_ct(const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_check_zero_ct()
862     volatile const mbedtls_mpi_uint *force_read_A = A;  in mbedtls_mpi_core_check_zero_ct()
863     mbedtls_mpi_uint bits = 0;  in mbedtls_mpi_core_check_zero_ct()
872 void mbedtls_mpi_core_to_mont_rep(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_to_mont_rep()
873                                   const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_to_mont_rep()
874                                   const mbedtls_mpi_uint *N,  in mbedtls_mpi_core_to_mont_rep()
876                                   mbedtls_mpi_uint mm,  in mbedtls_mpi_core_to_mont_rep()
877                                   const mbedtls_mpi_uint *rr,  in mbedtls_mpi_core_to_mont_rep()
878                                   mbedtls_mpi_uint *T)  in mbedtls_mpi_core_to_mont_rep()
883 void mbedtls_mpi_core_from_mont_rep(mbedtls_mpi_uint *X,  in mbedtls_mpi_core_from_mont_rep()
884                                     const mbedtls_mpi_uint *A,  in mbedtls_mpi_core_from_mont_rep()
885                                     const mbedtls_mpi_uint *N,  in mbedtls_mpi_core_from_mont_rep()
887                                     mbedtls_mpi_uint mm,  in mbedtls_mpi_core_from_mont_rep()
888                                     mbedtls_mpi_uint *T)  in mbedtls_mpi_core_from_mont_rep()
890     const mbedtls_mpi_uint Rinv = 1;    /* 1/R in Mont. rep => 1 */  in mbedtls_mpi_core_from_mont_rep()

Last Index update Fri Aug 22 08:59:00 CST 2025