kris
/
SIDH_p751
1
0
Derivar 0
Código Questões 0 Pedidos de integração 0 Lançamentos 0 Wiki Trabalho
Não pode escolher mais do que 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
9 Cometimentos
14 Ramos
653 KiB
 
 
 
Árvore: 78ed6d36e0
Ramos Etiquetas
${ item.name }
Criar ramo ${ searchTerm }
de '78ed6d36e0'
${ noResults }
SIDH_p751/field.go

88 linhas
2.0 KiB
Em bruto Responsabilidade Histórico 

  1. package cln16sidh

  2. 

  3. // Represents an element of the extension field F_{p^2}.

  4. type FieldElement struct {

  5. 	A Fp751Element

  6. 	B Fp751Element

  7. }

  8. 

  9. func (dest *FieldElement) Mul(lhs, rhs *FieldElement) {

  10. 	// Let (a,b,c,d) = (lhs.A,lhs.B,rhs.A,rhs.B).

  11. 

  12. 	a := &lhs.A

  13. 	b := &lhs.B

  14. 	c := &rhs.A

  15. 	d := &rhs.B

  16. 

  17. 	// We want to compute

  18. 	//

  19. 	// (a + bi)*(c + di) = (a*c - b*d) + (a*d + b*c)i

  20. 	//

  21. 	// Use Karatsuba's trick: note that

  22. 	//

  23. 	// (b - a)*(c - d) = (b*c + a*d) - a*c - b*d

  24. 	//

  25. 	// so (a*d + b*c) = (b-a)*(c-d) + a*c + b*d.

  26. 

  27. 	var ac, bd Fp751X2

  28. 	Fp751Mul(&ac, a, c)

  29. 	Fp751Mul(&bd, b, d)

  30. 

  31. 	var b_minus_a, c_minus_d Fp751Element

  32. 	Fp751SubReduced(&b_minus_a, b, a)

  33. 	Fp751SubReduced(&c_minus_d, c, d)

  34. 

  35. 	var ad_plus_bc Fp751X2

  36. 	Fp751Mul(&ad_plus_bc, &b_minus_a, &c_minus_d)

  37. 	Fp751X2AddLazy(&ad_plus_bc, &ad_plus_bc, &ac)

  38. 	Fp751X2AddLazy(&ad_plus_bc, &ad_plus_bc, &bd)

  39. 

  40. 	Fp751Reduce(&dest.B, &ad_plus_bc)

  41. 

  42. 	Fp751X2AddLazy(&ac, &ac, &bd)

  43. 	Fp751Reduce(&dest.A, &ac)

  44. }

  45. 

  46. func (dest *FieldElement) Add(lhs, rhs *FieldElement) {

  47. 	Fp751AddReduced(&dest.A, &lhs.A, &rhs.A)

  48. 	Fp751AddReduced(&dest.B, &lhs.B, &rhs.B)

  49. }

  50. 

  51. func (dest *FieldElement) Sub(lhs, rhs *FieldElement) {

  52. 	Fp751SubReduced(&dest.A, &lhs.A, &rhs.A)

  53. 	Fp751SubReduced(&dest.B, &lhs.B, &rhs.B)

  54. }

  55. 

  56. const Fp751NumWords = 12

  57. 

  58. // Represents an element of the base field F_p, in Montgomery form.

  59. type Fp751Element [Fp751NumWords]uint64

  60. 

  61. // Represents an intermediate product of two elements of the base field F_p.

  62. type Fp751X2 [2 * Fp751NumWords]uint64

  63. 

  64. // Compute z = x + y (mod p).

  65. //go:noescape

  66. func Fp751AddReduced(z, x, y *Fp751Element)

  67. 

  68. // Compute z = x - y (mod p).

  69. //go:noescape

  70. func Fp751SubReduced(z, x, y *Fp751Element)

  71. 

  72. // Compute z = x + y, without reducing mod p.

  73. //go:noescape

  74. func Fp751AddLazy(z, x, y *Fp751Element)

  75. 

  76. // Compute z = x + y, without reducing mod p.

  77. //go:noescape

  78. func Fp751X2AddLazy(z, x, y *Fp751X2)

  79. 

  80. // Compute z = x * y.

  81. //go:noescape

  82. func Fp751Mul(z *Fp751X2, x, y *Fp751Element)

  83. 

  84. // Reduce an X2 to a field element: set z = x (mod p).

  85. // Destroys the input value.

  86. //go:noescape

  87. func Fp751Reduce(z *Fp751Element, x *Fp751X2)