kris
/
SIDH_p751
1
0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
126 Commits
14 Branches
653 KiB
Branch: trials/PERF_try1
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „trials/PERF_try1“
${ noResults }
SIDH_p751/p503/arith_decl.go

arith_decl.go 2.8 KiB
Originalformat Permalink Normale Ansicht Verlauf

p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
Use CPUID to get information about CPU capabilities Using golang.org/x/sys/cpu would be really great, but it makes it hard to vendor the library with go 1.10. This patch gets information about CPU capabilities directly from CPUID
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
WIP
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
WIP
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
Use CPUID to get information about CPU capabilities Using golang.org/x/sys/cpu would be really great, but it makes it hard to vendor the library with go 1.10. This patch gets information about CPU capabilities directly from CPUID
vor 6 Jahren
WIP
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
WIP
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
WIP
vor 6 Jahren
p503 in SIDH/SIKE * Makes it possible to use p503 in SIDH and SIKE * Refactors tests so that unit tests in SIKE and SIDH are run for each prime field. It adds test data array called 'tdata' which describes test parameters for underlying prime field. When new field is added, it's enough to simply add new test data to 'tdata' vector in order to run all existing tests with new prime field. * SIKE/p503 is now tested with official test vectors from NIST submission
vor 6 Jahren
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. // +build amd64,!noasm

  2. 

  3. package p503

  4. 

  5. import (

  6. 	. "github.com/cloudflare/p751sidh/internal/isogeny"

  7. 	cpu "github.com/cloudflare/p751sidh/internal/utils"

  8. )

  9. 

  10. // If choice = 0, leave x,y unchanged. If choice = 1, set x,y = y,x.

  11. // If choice is neither 0 nor 1 then behaviour is undefined.

  12. // This function executes in constant time.

  13. //go:noescape

  14. func fp503ConditionalSwap(x, y *FpElement, choice uint8)

  15. 

  16. // Compute z = x + y (mod p).

  17. //go:noescape

  18. func fp503AddReduced(z, x, y *FpElement)

  19. 

  20. // Compute z = x - y (mod p).

  21. //go:noescape

  22. func fp503SubReduced(z, x, y *FpElement)

  23. 

  24. // Compute z = x + y, without reducing mod p.

  25. //go:noescape

  26. func fp503AddLazy(z, x, y *FpElement)

  27. 

  28. // Compute z = x + y, without reducing mod p.

  29. //go:noescape

  30. func fp503X2AddLazy(z, x, y *FpElementX2)

  31. 

  32. // Compute z = x - y, without reducing mod p.

  33. //go:noescape

  34. func fp503X2SubLazy(z, x, y *FpElementX2)

  35. 

  36. // Reduce a field element in [0, 2*p) to one in [0,p).

  37. //go:noescape

  38. func fp503StrongReduce(x *FpElement)

  39. 

  40. // Function pointer to function computing z = x * y.

  41. // Concrete implementation depends on capabilities of the CPU which

  42. // are resolved at runtime. CPUs with ADCX, ADOX and MULX support

  43. // run most optimized implementation

  44. func fp503Mul(z *FpElementX2, x, y *FpElement) {

  45. 	if cpu.HasBMI2 {

  46. 		mulWithMULXADX(z, x, y)

  47. 	} else {

  48. 		mul(z, x, y)

  49. 	}

  50. }

  51. 

  52. // Mul implementattion for legacy CPUs

  53. //go:noescape

  54. func mul(z *FpElementX2, x, y *FpElement)

  55. 

  56. // Mul implementation for CPUs supporting carry-less MULX multiplier.

  57. //go:noescape

  58. func mulWithMULX(z *FpElementX2, x, y *FpElement)

  59. 

  60. // Mul implementation for CPUs supporting two independent carry chain

  61. // (ADOX/ADCX) instructions and carry-less MULX multiplier

  62. //go:noescape

  63. func mulWithMULXADX(z *FpElementX2, x, y *FpElement)

  64. 

  65. // Computes the Montgomery reduction z = x R^{-1} (mod 2*p). On return value

  66. // of x may be changed. z=x not allowed.

  67. func fp503MontgomeryReduce(z *FpElement, x *FpElementX2) {

  68. 	if cpu.HasBMI2 {

  69. 		if cpu.HasADX {

  70. 			redcWithMULXADX(z, x)

  71. 		} else {

  72. 			redcWithMULX(z, x)

  73. 		}

  74. 	} else {

  75. 		redc(z, x)

  76. 	}

  77. }

  78. 

  79. func redc(z *FpElement, x *FpElementX2)

  80. 

  81. // Mul implementation for CPUs supporting carry-less MULX multiplier.

  82. //go:noescape

  83. func redcWithMULX(z *FpElement, x *FpElementX2)

  84. 

  85. // Mul implementation for CPUs supporting two independent carry chain

  86. // (ADOX/ADCX) instructions and carry-less MULX multiplier

  87. //go:noescape

  88. func redcWithMULXADX(z *FpElement, x *FpElementX2)

  89. 

  90. // On initialization, set the fp503Mul function pointer to the

  91. // fastest implementation depending on CPU capabilities.

  92. func init() {

  93. 	if cpu.HasBMI2 {

  94. 		if cpu.HasADX {

  95. 			//fp503Mul = mulWithMULXADX

  96. 			//fp503MontgomeryReduce = redcWithMULXADX

  97. 		} else {

  98. 			//fp503Mul = mulWithMULX

  99. 			//fp503MontgomeryReduce = redcWithMULX

  100. 		}

  101. 	} else {

  102. 		//fp503Mul = mul

  103. 		//fp503MontgomeryReduce = redc

  104. 	}

  105. }