Home Explore Help
Sign In
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
dropbear-2022.82
/
libtommath
/
bn_mp_dr_reduce.c

bn_mp_dr_reduce.c 2.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. #include "tommath_private.h"
    2. 

  2. #ifdef BN_MP_DR_REDUCE_C
    3. 

  3. /* LibTomMath, multiple-precision integer library -- Tom St Denis */
    4. 

  4. /* SPDX-License-Identifier: Unlicense */
    5. 

  5. 

  6. /* reduce "x" in place modulo "n" using the Diminished Radix algorithm.
    7. 

  7.  *
    8. 

  8.  * Based on algorithm from the paper
    9. 

  9.  *
    10. 

  10.  * "Generating Efficient Primes for Discrete Log Cryptosystems"
    11. 

  11.  *                 Chae Hoon Lim, Pil Joong Lee,
    12. 

  12.  *          POSTECH Information Research Laboratories
    13. 

  13.  *
    14. 

  14.  * The modulus must be of a special format [see manual]
    15. 

  15.  *
    16. 

  16.  * Has been modified to use algorithm 7.10 from the LTM book instead
    17. 

  17.  *
    18. 

  18.  * Input x must be in the range 0 <= x <= (n-1)**2
    19. 

  19.  */
    20. 

  20. mp_err mp_dr_reduce(mp_int *x, const mp_int *n, mp_digit k)
    21. 

  21. {
    22. 

  22.    mp_err      err;
    23. 

  23.    int i, m;
    24. 

  24.    mp_word  r;
    25. 

  25.    mp_digit mu, *tmpx1, *tmpx2;
    26. 

  26. 

  27.    /* m = digits in modulus */
    28. 

  28.    m = n->used;
    29. 

  29. 

  30.    /* ensure that "x" has at least 2m digits */
    31. 

  31.    if (x->alloc < (m + m)) {
    32. 

  32.       if ((err = mp_grow(x, m + m)) != MP_OKAY) {
    33. 

  33.          return err;
    34. 

  34.       }
    35. 

  35.    }
    36. 

  36. 

  37.    /* top of loop, this is where the code resumes if
    38. 

  38.     * another reduction pass is required.
    39. 

  39.     */
    40. 

  40. top:
    41. 

  41.    /* aliases for digits */
    42. 

  42.    /* alias for lower half of x */
    43. 

  43.    tmpx1 = x->dp;
    44. 

  44. 

  45.    /* alias for upper half of x, or x/B**m */
    46. 

  46.    tmpx2 = x->dp + m;
    47. 

  47. 

  48.    /* set carry to zero */
    49. 

  49.    mu = 0;
    50. 

  50. 

  51.    /* compute (x mod B**m) + k * [x/B**m] inline and inplace */
    52. 

  52.    for (i = 0; i < m; i++) {
    53. 

  53.       r         = ((mp_word)*tmpx2++ * (mp_word)k) + *tmpx1 + mu;
    54. 

  54.       *tmpx1++  = (mp_digit)(r & MP_MASK);
    55. 

  55.       mu        = (mp_digit)(r >> ((mp_word)MP_DIGIT_BIT));
    56. 

  56.    }
    57. 

  57. 

  58.    /* set final carry */
    59. 

  59.    *tmpx1++ = mu;
    60. 

  60. 

  61.    /* zero words above m */
    62. 

  62.    MP_ZERO_DIGITS(tmpx1, (x->used - m) - 1);
    63. 

  63. 

  64.    /* clamp, sub and return */
    65. 

  65.    mp_clamp(x);
    66. 

  66. 

  67.    /* if x >= n then subtract and reduce again
    68. 

  68.     * Each successive "recursion" makes the input smaller and smaller.
    69. 

  69.     */
    70. 

  70.    if (mp_cmp_mag(x, n) != MP_LT) {
    71. 

  71.       if ((err = s_mp_sub(x, n, x)) != MP_OKAY) {
    72. 

  72.          return err;
    73. 

  73.       }
    74. 

  74.       goto top;
    75. 

  75.    }
    76. 

  76.    return MP_OKAY;
    77. 

  77. }
    78. 

  78. #endif
    79.