jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
47 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: b0a2110717
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b0a2110717'
${ noResults }
ed448goldilocks/src/p448/arch_neon_experimental/p448.h

240 lines
4.1 KiB
Raw Blame History 

  1. /* Copyright (c) 2014 Cryptography Research, Inc.

  2.  * Released under the MIT License.  See LICENSE.txt for license information.

  3.  */

  4. #ifndef __P448_H__

  5. #define __P448_H__ 1

  6. 

  7. #include "word.h"

  8. 

  9. #include <stdint.h>

  10. #include <assert.h>

  11. 

  12. typedef struct p448_t {

  13.   uint32_t limb[16];

  14. } __attribute__((aligned(32))) p448_t;

  15. 

  16. #define LIMBPERM(x) (((x)<<1 | (x)>>3) & 15)

  17. #define USE_NEON_PERM 1

  18. 

  19. #ifdef __cplusplus

  20. extern "C" {

  21. #endif

  22. 

  23. static __inline__ void

  24. p448_set_ui (

  25.     p448_t *out,

  26.     uint64_t x

  27. ) __attribute__((unused,always_inline));

  28. 

  29. static __inline__ void

  30. p448_add_RAW (

  31.     p448_t *out,

  32.     const p448_t *a,

  33.     const p448_t *b

  34. ) __attribute__((unused,always_inline));

  35.              

  36. static __inline__ void

  37. p448_sub_RAW (

  38.     p448_t *out,

  39.     const p448_t *a,

  40.     const p448_t *b

  41. ) __attribute__((unused,always_inline));

  42.              

  43. static __inline__ void

  44. p448_neg_RAW (

  45.     p448_t *out,

  46.     const p448_t *a

  47. ) __attribute__((unused,always_inline));

  48. 

  49. static __inline__ void

  50. p448_addw (

  51.     p448_t *a,

  52.     uint32_t x

  53. ) __attribute__((unused,always_inline));

  54.              

  55. static __inline__ void

  56. p448_subw (

  57.     p448_t *a,

  58.     uint32_t x

  59. ) __attribute__((unused,always_inline));

  60.              

  61. static __inline__ void

  62. p448_copy (

  63.     p448_t *out,

  64.     const p448_t *a

  65. ) __attribute__((unused,always_inline));

  66.              

  67. static __inline__ void

  68. p448_weak_reduce (

  69.     p448_t *inout

  70. ) __attribute__((unused,always_inline));

  71.              

  72. void

  73. p448_strong_reduce (

  74.     p448_t *inout

  75. );

  76. 

  77. mask_t

  78. p448_is_zero (

  79.     const p448_t *in

  80. );

  81.              

  82. static __inline__ void

  83. p448_bias (

  84.     p448_t *inout,

  85.     int amount

  86. ) __attribute__((unused,always_inline));

  87. 

  88. void

  89. p448_mul (

  90.     p448_t *__restrict__ out,

  91.     const p448_t *a,

  92.     const p448_t *b

  93. );

  94. 

  95. void

  96. p448_mulw (

  97.     p448_t *__restrict__ out,

  98.     const p448_t *a,

  99.     uint64_t b

  100. );

  101. 

  102. void

  103. p448_sqr (

  104.     p448_t *__restrict__ out,

  105.     const p448_t *a

  106. );

  107. 

  108. void

  109. p448_serialize (

  110.     uint8_t *serial,

  111.     const struct p448_t *x

  112. );

  113. 

  114. mask_t

  115. p448_deserialize (

  116.     p448_t *x,

  117.     const uint8_t serial[56]

  118. );

  119. 

  120. /* -------------- Inline functions begin here -------------- */

  121. 

  122. void

  123. p448_set_ui (

  124.     p448_t *out,

  125.     uint64_t x

  126. ) {

  127.     int i;

  128.     for (i=0; i<16; i++) {

  129.       out->limb[i] = 0;

  130.     }

  131.     out->limb[0] = x & ((1<<28)-1);

  132.     out->limb[2] = x>>28;

  133. }

  134. 

  135. void

  136. p448_add_RAW (

  137.     p448_t *out,

  138.     const p448_t *a,

  139.     const p448_t *b

  140. ) {

  141.     unsigned int i;

  142.     for (i=0; i<sizeof(*out)/sizeof(uint32xn_t); i++) {

  143.         ((uint32xn_t*)out)[i] = ((const uint32xn_t*)a)[i] + ((const uint32xn_t*)b)[i];

  144.     }

  145. }

  146. 

  147. void

  148. p448_sub_RAW (

  149.     p448_t *out,

  150.     const p448_t *a,

  151.     const p448_t *b

  152. ) {

  153.     unsigned int i;

  154.     for (i=0; i<sizeof(*out)/sizeof(uint32xn_t); i++) {

  155.         ((uint32xn_t*)out)[i] = ((const uint32xn_t*)a)[i] - ((const uint32xn_t*)b)[i];

  156.     }

  157.     /*

  158.     unsigned int i;

  159.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  160.         out->limb[i] = a->limb[i] - b->limb[i];

  161.     }

  162.     */

  163. }

  164. 

  165. void

  166. p448_neg_RAW (

  167.     p448_t *out,

  168.     const p448_t *a

  169. ) {

  170.     unsigned int i;

  171.     for (i=0; i<sizeof(*out)/sizeof(uint32xn_t); i++) {

  172.         ((uint32xn_t*)out)[i] = -((const uint32xn_t*)a)[i];

  173.     }

  174.     /*

  175.     unsigned int i;

  176.     for (i=0; i<sizeof(*out)/sizeof(out->limb[0]); i++) {

  177.         out->limb[i] = -a->limb[i];

  178.     }

  179.     */

  180. }

  181. 

  182. void

  183. p448_addw (

  184.     p448_t *a,

  185.     uint32_t x

  186. ) {

  187.   a->limb[0] += x;

  188. }

  189.              

  190. void

  191. p448_subw (

  192.     p448_t *a,

  193.     uint32_t x

  194. ) {

  195.   a->limb[0] -= x;

  196. }

  197. 

  198. void

  199. p448_copy (

  200.     p448_t *out,

  201.     const p448_t *a

  202. ) {

  203.   *out = *a;

  204. }

  205. 

  206. void

  207. p448_bias (

  208.     p448_t *a,

  209.     int amt

  210. ) {

  211.     uint32_t co1 = ((1ull<<28)-1)*amt, co2 = co1-amt;

  212.     uint32x4_t lo = {co1,co2,co1,co1}, hi = {co1,co1,co1,co1};

  213.     uint32x4_t *aa = (uint32x4_t*) a;

  214.     aa[0] += lo;

  215.     aa[1] += hi;

  216.     aa[2] += hi;

  217.     aa[3] += hi;

  218. }

  219. 

  220. void

  221. p448_weak_reduce (

  222.     p448_t *a

  223. ) {

  224. 

  225.     uint32x2_t *aa = (uint32x2_t*) a, vmask = {(1ull<<28)-1, (1ull<<28)-1}, vm2 = {0,-1},

  226.        tmp = vshr_n_u32(aa[7],28);

  227.        

  228.     int i;

  229.     for (i=7; i>=1; i--) {

  230.         aa[i] = vsra_n_u32(aa[i] & vmask, aa[i-1], 28);

  231.     }

  232.     aa[0] = (aa[0] & vmask) + vrev64_u32(tmp) + (tmp&vm2);

  233. }

  234. 

  235. #ifdef __cplusplus

  236. }; /* extern "C" */

  237. #endif

  238. 

  239. #endif /* __P448_H__ */