Home Explore Help
Sign In
tmgurtler
/
BGN2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: fe77493a75
Branches Tags
BGN2
/
dclxvi-20130329
/
curvepoint_fp_multiscalar.c

curvepoint_fp_multiscalar.c 1.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. /*
    2. 

  2.  * File:   dclxvi-20130329/curvepoint_fp_multiscalar.c
    3. 

  3.  * Author: Ruben Niederhagen, Peter Schwabe
    4. 

  4.  * Public Domain
    5. 

  5.  */
    6. 

  6. 

  7. #include "curvepoint_fp.h"
    8. 

  8. #include "scalar.h"
    9. 

  9. #include "index_heap.h"
    10. 

  10. 

  11. #define MAX_HEAP_SIZE 63 // Can also try 127 or 255
    12. 

  12. void curvepoint_fp_multiscalarmult_vartime(curvepoint_fp_t rop, struct curvepoint_fp_struct *p, scalar_t *s, const unsigned long long npoints)
    13. 

  13. {
    14. 

  14.   unsigned long long pos[MAX_HEAP_SIZE];
    15. 

  15.   unsigned long long max1, max2,i;
    16. 

  16.   curvepoint_fp_t t;
    17. 

  17.   unsigned long long tctr, ctr = npoints;
    18. 

  18. 

  19.   curvepoint_fp_setneutral(rop);
    20. 

  20.   while(ctr>=MAX_HEAP_SIZE)
    21. 

  21.   {
    22. 

  22.     heap_init(pos, MAX_HEAP_SIZE, s);
    23. 

  23.     for(i=0;;i++)
    24. 

  24.     {
    25. 

  25.       heap_get2max(pos, &max1, &max2, s);
    26. 

  26.       if(scalar_iszero_vartime(s[max2])) break;
    27. 

  27.       scalar_sub_nored(s[max1],s[max1],s[max2]);
    28. 

  28.       curvepoint_fp_add_vartime(&p[max2],&p[max2],&p[max1]);
    29. 

  29.       heap_rootreplaced(pos, MAX_HEAP_SIZE, s);
    30. 

  30.     }
    31. 

  31.     curvepoint_fp_scalarmult_vartime(t, &p[max1], s[max1]);
    32. 

  32.     curvepoint_fp_add_vartime(rop,rop,t);
    33. 

  33.     p += MAX_HEAP_SIZE;
    34. 

  34.     s += MAX_HEAP_SIZE;
    35. 

  35.     ctr -= MAX_HEAP_SIZE;
    36. 

  36.   }
    37. 

  37.   if(ctr > 5)
    38. 

  38.   {
    39. 

  39.     tctr = (ctr-1)|1; // need an odd heap size 
    40. 

  40.     heap_init(pos, tctr, s);
    41. 

  41.     for(i=0;;i++)
    42. 

  42.     {
    43. 

  43.       heap_get2max(pos, &max1, &max2, s);
    44. 

  44.       if(scalar_iszero_vartime(s[max2])) break;
    45. 

  45.       scalar_sub_nored(s[max1],s[max1],s[max2]);
    46. 

  46.       curvepoint_fp_add_vartime(&p[max2],&p[max2],&p[max1]);
    47. 

  47.       heap_rootreplaced(pos, tctr, s);
    48. 

  48.     }
    49. 

  49.     curvepoint_fp_scalarmult_vartime(t, &p[max1], s[max1]);
    50. 

  50.     curvepoint_fp_add_vartime(rop,rop,t);
    51. 

  51.     p += tctr;
    52. 

  52.     s += tctr;
    53. 

  53.     ctr -= tctr;
    54. 

  54.   }
    55. 

  55.   while(ctr>0)
    56. 

  56.   {
    57. 

  57.     curvepoint_fp_scalarmult_vartime(t,p,*s);
    58. 

  58.     curvepoint_fp_add_vartime(rop,rop,t);
    59. 

  59.     p++;
    60. 

  60.     s++;
    61. 

  61.     ctr--;
    62. 

  62.   }
    63. 

  63. }
    64. 

  64.