jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
310 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: 64efd989d6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '64efd989d6'
${ noResults }
ed448goldilocks/src/decaf_gen_tables.c

176 lines
5.6 KiB
Raw Blame History 

  1. /* Copyright (c) 2015 Cryptography Research, Inc.

  2.  * Released under the MIT License.  See LICENSE.txt for license information.

  3.  */

  4. 

  5. /**

  6.  * @file decaf_precompute.c

  7.  * @author Mike Hamburg

  8.  * @brief Decaf global constant table precomputation.

  9.  */

  10. 

  11. #define _XOPEN_SOURCE 600 /* for posix_memalign */

  12. #include <stdio.h>

  13. #include <stdlib.h>

  14. 

  15. #include "field.h"

  16. #include "decaf.h"

  17. #include "decaf_config.h"

  18. 

  19. #define GEN_TABLES

  20. #include "curve_data.inc.c"

  21. 

  22.  /* To satisfy linker. */

  23. const gf API_NS(precomputed_base_as_fe)[1];

  24. const API_NS(scalar_t) API_NS(precomputed_scalarmul_adjustment);

  25. const API_NS(scalar_t) API_NS(point_scalarmul_adjustment);

  26. const API_NS(scalar_t) API_NS(sc_r2) = {{{0}}};

  27. const decaf_word_t API_NS(MONTGOMERY_FACTOR) = 0;

  28. 

  29. const API_NS(point_t) API_NS(point_base);

  30. 

  31. struct niels_s;

  32. const gf_s *API_NS(precomputed_wnaf_as_fe);

  33. extern const size_t API_NS2(sizeof,precomputed_wnafs);

  34. 

  35. void API_NS(precompute_wnafs) (

  36.     struct niels_s *out,

  37.     const API_NS(point_t) base

  38. );

  39. 

  40. static void scalar_print(const char *name, const API_NS(scalar_t) sc) { /* UNIFY */

  41.     printf("const API_NS(scalar_t) %s = {{{\n", name);

  42.     const int SCALAR_BYTES = (SCALAR_BITS + 7) / 8;

  43.     unsigned char ser[SCALAR_BYTES];

  44.     API_NS(scalar_encode)(ser,sc);

  45.     int b=0, i, comma=0;

  46.     unsigned long long limb = 0;

  47.     for (i=0; i<SCALAR_BYTES; i++) {

  48.         limb |= ((uint64_t)ser[i])<<b;

  49.         b += 8;

  50.         if (b == 64 || i==SCALAR_BYTES-1) {

  51.             b = 0;

  52.             if (comma) printf(",");

  53.             comma = 1;

  54.             printf("SC_LIMB(0x%016llx)", limb);

  55.             limb = ((uint64_t)ser[i])>>(8-b);

  56.         }

  57.     }

  58.     printf("}}};\n\n");

  59. }

  60. 

  61. static void field_print(const gf f) { /* UNIFY */

  62.     const int GF_SER_BYTES = (GF_BITS + 7) / 8;

  63.     unsigned char ser[GF_SER_BYTES];

  64.     gf_serialize(ser,f);

  65.     int b=0, i, comma=0;

  66.     unsigned long long limb = 0;

  67.     printf("{FIELD_LITERAL(");

  68.     for (i=0; i<GF_SER_BYTES; i++) {

  69.         limb |= ((uint64_t)ser[i])<<b;

  70.         b += 8;

  71.         if (b >= GF_LIT_LIMB_BITS || i == GF_SER_BYTES-1) {

  72.             limb &= (1ull<<GF_LIT_LIMB_BITS) -1;

  73.             b -= GF_LIT_LIMB_BITS;

  74.             if (comma) printf(",");

  75.             comma = 1;

  76.             printf("0x%016llx", limb);

  77.             limb = ((uint64_t)ser[i])>>(8-b);

  78.         }

  79.     }

  80.     printf(")}");

  81.     assert(b<8);

  82. }

  83. 

  84. int main(int argc, char **argv) {

  85.     (void)argc; (void)argv;

  86.     

  87.     API_NS(point_t) real_point_base;

  88.     int ret = API_NS(point_decode)(real_point_base,base_point_ser_for_pregen,0);

  89.     if (ret != DECAF_SUCCESS) return 1;

  90.     

  91.     API_NS(precomputed_s) *pre;

  92.     ret = posix_memalign((void**)&pre, API_NS2(alignof,precomputed_s), API_NS2(sizeof,precomputed_s));

  93.     if (ret || !pre) return 1;

  94.     API_NS(precompute)(pre, real_point_base);

  95.     

  96.     struct niels_s *preWnaf;

  97.     ret = posix_memalign((void**)&preWnaf, API_NS2(alignof,precomputed_s), API_NS2(sizeof,precomputed_wnafs));

  98.     if (ret || !preWnaf) return 1;

  99.     API_NS(precompute_wnafs)(preWnaf, real_point_base);

  100. 

  101.     const gf_s *output;

  102.     unsigned i;

  103.     

  104.     printf("/** @warning: this file was automatically generated. */\n");

  105.     printf("#include \"field.h\"\n\n");

  106.     printf("#include <decaf.h>\n\n");

  107.     printf("#define API_NS(_id) %s_##_id\n", API_NAME);

  108.     printf("#define API_NS2(_pref,_id) _pref##_%s_##_id\n", API_NAME);

  109.     

  110.     output = (const gf_s *)real_point_base;

  111.     printf("const API_NS(point_t) API_NS(point_base) = {{\n");

  112.     for (i=0; i < sizeof(API_NS(point_t)); i+=sizeof(gf)) {

  113.         if (i) printf(",\n  ");

  114.         field_print(output++);

  115.     }

  116.     printf("\n}};\n");

  117.     

  118.     output = (const gf_s *)pre;

  119.     printf("const gf API_NS(precomputed_base_as_fe)[%d]\n", 

  120.         (int)(API_NS2(sizeof,precomputed_s) / sizeof(gf)));

  121.     printf("__attribute__((aligned(%d),visibility(\"hidden\"))) = {\n  ", (int)API_NS2(alignof,precomputed_s));

  122.     

  123.     for (i=0; i < API_NS2(sizeof,precomputed_s); i+=sizeof(gf)) {

  124.         if (i) printf(",\n  ");

  125.         field_print(output++);

  126.     }

  127.     printf("\n};\n");

  128.     

  129.     output = (const gf_s *)preWnaf;

  130.     printf("const gf API_NS(precomputed_wnaf_as_fe)[%d]\n", 

  131.         (int)(API_NS2(sizeof,precomputed_wnafs) / sizeof(gf)));

  132.     printf("__attribute__((aligned(%d),visibility(\"hidden\"))) = {\n  ", (int)API_NS2(alignof,precomputed_s));

  133.     for (i=0; i < API_NS2(sizeof,precomputed_wnafs); i+=sizeof(gf)) {

  134.         if (i) printf(",\n  ");

  135.         field_print(output++);

  136.     }

  137.     printf("\n};\n");

  138.     

  139.     API_NS(scalar_t) smadj;

  140.     API_NS(scalar_copy)(smadj,API_NS(scalar_one));

  141. 

  142.     for (i=0; i<DECAF_COMBS_N*DECAF_COMBS_T*DECAF_COMBS_S; i++) {

  143.         API_NS(scalar_add)(smadj,smadj,smadj);

  144.     }

  145.     API_NS(scalar_sub)(smadj, smadj, API_NS(scalar_one));

  146.     scalar_print("API_NS(precomputed_scalarmul_adjustment)", smadj);

  147.     

  148.     API_NS(scalar_copy)(smadj,API_NS(scalar_one));

  149.     for (i=0; i<SCALAR_BITS-1 + DECAF_WINDOW_BITS

  150.             - ((SCALAR_BITS-1) % DECAF_WINDOW_BITS); i++) {

  151.         API_NS(scalar_add)(smadj,smadj,smadj);

  152.     }

  153.     API_NS(scalar_sub)(smadj, smadj, API_NS(scalar_one));

  154.     scalar_print("API_NS(point_scalarmul_adjustment)", smadj);

  155.     

  156.     API_NS(scalar_copy)(smadj,API_NS(scalar_one));

  157.     for (i=0; i<sizeof(API_NS(scalar_t))*8*2; i++) {

  158.         API_NS(scalar_add)(smadj,smadj,smadj);

  159.     }

  160.     scalar_print("API_NS(sc_r2)", smadj);

  161.     

  162.     

  163.     API_NS(scalar_sub)(smadj,API_NS(scalar_zero),API_NS(scalar_one)); /* get p-1 */

  164.     

  165.     unsigned long long w = 1, plo = smadj->limb[0]+1;

  166. #if DECAF_WORD_BITS == 32

  167.     plo |= ((unsigned long long)smadj->limb[1]) << 32;

  168. #endif

  169.     for (i=0; i<6; i++) {

  170.         w *= w*plo + 2;

  171.     }

  172.     printf("const decaf_word_t API_NS(MONTGOMERY_FACTOR) = (decaf_word_t)0x%016llxull;\n\n", w);

  173.     

  174.     return 0;

  175. }