kris
/
pqcrypto
kopia lustrzana https://github.com/henrydcase/pqc.git
1
1
Forkuj 0
Kod Zgłoszenia 1 Wydania 2 Wiki Aktywność
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
303 Commity
9 Gałęzie
121 MiB
 
 
 
Drzewo: 004c82c42e
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '004c82c42e'
${ noResults }
pqcrypto/crypto_sign/dilithium-iii/clean/polyvec.c

368 wiersze
13 KiB
Czysty Wina Historia 

  1. #include "polyvec.h"

  2. #include "params.h"

  3. #include "poly.h"

  4. #include <stdint.h>

  5. 

  6. /**************************************************************/

  7. /************ Vectors of polynomials of length L **************/

  8. /**************************************************************/

  9. 

  10. /*************************************************

  11.  * Name:        polyvecl_freeze

  12.  *

  13.  * Description: Reduce coefficients of polynomials in vector of length L

  14.  *              to standard representatives.

  15.  *

  16.  * Arguments:   - polyvecl *v: pointer to input/output vector

  17.  **************************************************/

  18. void PQCLEAN_DILITHIUMIII_CLEAN_polyvecl_freeze(polyvecl *v) {

  19.     unsigned int i;

  20. 

  21.     for (i = 0; i < L; ++i) {

  22.         PQCLEAN_DILITHIUMIII_CLEAN_poly_freeze(v->vec + i);

  23.     }

  24. }

  25. 

  26. /*************************************************

  27.  * Name:        polyvecl_add

  28.  *

  29.  * Description: Add vectors of polynomials of length L.

  30.  *              No modular reduction is performed.

  31.  *

  32.  * Arguments:   - polyvecl *w: pointer to output vector

  33.  *              - const polyvecl *u: pointer to first summand

  34.  *              - const polyvecl *v: pointer to second summand

  35.  **************************************************/

  36. void PQCLEAN_DILITHIUMIII_CLEAN_polyvecl_add(polyvecl *w, const polyvecl *u,

  37.         const polyvecl *v) {

  38.     unsigned int i;

  39. 

  40.     for (i = 0; i < L; ++i) {

  41.         PQCLEAN_DILITHIUMIII_CLEAN_poly_add(w->vec + i, u->vec + i, v->vec + i);

  42.     }

  43. }

  44. 

  45. /*************************************************

  46.  * Name:        polyvecl_ntt

  47.  *

  48.  * Description: Forward NTT of all polynomials in vector of length L. Output

  49.  *              coefficients can be up to 16*Q larger than input coefficients.

  50.  *

  51.  * Arguments:   - polyvecl *v: pointer to input/output vector

  52.  **************************************************/

  53. void PQCLEAN_DILITHIUMIII_CLEAN_polyvecl_ntt(polyvecl *v) {

  54.     unsigned int i;

  55. 

  56.     for (i = 0; i < L; ++i) {

  57.         PQCLEAN_DILITHIUMIII_CLEAN_poly_ntt(v->vec + i);

  58.     }

  59. }

  60. 

  61. /*************************************************

  62.  * Name:        polyvecl_pointwise_acc_invmontgomery

  63.  *

  64.  * Description: Pointwise multiply vectors of polynomials of length L, multiply

  65.  *              resulting vector by 2^{-32} and add (accumulate) polynomials

  66.  *              in it. Input/output vectors are in NTT domain representation.

  67.  *              Input coefficients are assumed to be less than 22*Q. Output

  68.  *              coeffcient are less than 2*L*Q.

  69.  *

  70.  * Arguments:   - poly *w: output polynomial

  71.  *              - const polyvecl *u: pointer to first input vector

  72.  *              - const polyvecl *v: pointer to second input vector

  73.  **************************************************/

  74. void PQCLEAN_DILITHIUMIII_CLEAN_polyvecl_pointwise_acc_invmontgomery(

  75.     poly *w, const polyvecl *u, const polyvecl *v) {

  76.     unsigned int i;

  77.     poly t;

  78. 

  79.     PQCLEAN_DILITHIUMIII_CLEAN_poly_pointwise_invmontgomery(w, u->vec + 0,

  80.             v->vec + 0);

  81. 

  82.     for (i = 1; i < L; ++i) {

  83.         PQCLEAN_DILITHIUMIII_CLEAN_poly_pointwise_invmontgomery(&t, u->vec + i,

  84.                 v->vec + i);

  85.         PQCLEAN_DILITHIUMIII_CLEAN_poly_add(w, w, &t);

  86.     }

  87. }

  88. 

  89. /*************************************************

  90.  * Name:        polyvecl_chknorm

  91.  *

  92.  * Description: Check infinity norm of polynomials in vector of length L.

  93.  *              Assumes input coefficients to be standard representatives.

  94.  *

  95.  * Arguments:   - const polyvecl *v: pointer to vector

  96.  *              - uint32_t B: norm bound

  97.  *

  98.  * Returns 0 if norm of all polynomials is strictly smaller than B and 1

  99.  * otherwise.

  100.  **************************************************/

  101. int PQCLEAN_DILITHIUMIII_CLEAN_polyvecl_chknorm(const polyvecl *v, uint32_t bound) {

  102.     unsigned int i;

  103.     int ret = 0;

  104. 

  105.     for (i = 0; i < L; ++i) {

  106.         ret |= PQCLEAN_DILITHIUMIII_CLEAN_poly_chknorm(v->vec + i, bound);

  107.     }

  108. 

  109.     return ret;

  110. }

  111. 

  112. /**************************************************************/

  113. /************ Vectors of polynomials of length K **************/

  114. /**************************************************************/

  115. 

  116. /*************************************************

  117.  * Name:        polyveck_reduce

  118.  *

  119.  * Description: Reduce coefficients of polynomials in vector of length K

  120.  *              to representatives in [0,2*Q[.

  121.  *

  122.  * Arguments:   - polyveck *v: pointer to input/output vector

  123.  **************************************************/

  124. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_reduce(polyveck *v) {

  125.     unsigned int i;

  126. 

  127.     for (i = 0; i < K; ++i) {

  128.         PQCLEAN_DILITHIUMIII_CLEAN_poly_reduce(v->vec + i);

  129.     }

  130. }

  131. 

  132. /*************************************************

  133.  * Name:        polyveck_csubq

  134.  *

  135.  * Description: For all coefficients of polynomials in vector of length K

  136.  *              subtract Q if coefficient is bigger than Q.

  137.  *

  138.  * Arguments:   - polyveck *v: pointer to input/output vector

  139.  **************************************************/

  140. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_csubq(polyveck *v) {

  141.     unsigned int i;

  142. 

  143.     for (i = 0; i < K; ++i) {

  144.         PQCLEAN_DILITHIUMIII_CLEAN_poly_csubq(v->vec + i);

  145.     }

  146. }

  147. 

  148. /*************************************************

  149.  * Name:        polyveck_freeze

  150.  *

  151.  * Description: Reduce coefficients of polynomials in vector of length K

  152.  *              to standard representatives.

  153.  *

  154.  * Arguments:   - polyveck *v: pointer to input/output vector

  155.  **************************************************/

  156. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_freeze(polyveck *v) {

  157.     unsigned int i;

  158. 

  159.     for (i = 0; i < K; ++i) {

  160.         PQCLEAN_DILITHIUMIII_CLEAN_poly_freeze(v->vec + i);

  161.     }

  162. }

  163. 

  164. /*************************************************

  165.  * Name:        polyveck_add

  166.  *

  167.  * Description: Add vectors of polynomials of length K.

  168.  *              No modular reduction is performed.

  169.  *

  170.  * Arguments:   - polyveck *w: pointer to output vector

  171.  *              - const polyveck *u: pointer to first summand

  172.  *              - const polyveck *v: pointer to second summand

  173.  **************************************************/

  174. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_add(polyveck *w, const polyveck *u,

  175.         const polyveck *v) {

  176.     unsigned int i;

  177. 

  178.     for (i = 0; i < K; ++i) {

  179.         PQCLEAN_DILITHIUMIII_CLEAN_poly_add(w->vec + i, u->vec + i, v->vec + i);

  180.     }

  181. }

  182. 

  183. /*************************************************

  184.  * Name:        polyveck_sub

  185.  *

  186.  * Description: Subtract vectors of polynomials of length K.

  187.  *              Assumes coefficients of polynomials in second input vector

  188.  *              to be less than 2*Q. No modular reduction is performed.

  189.  *

  190.  * Arguments:   - polyveck *w: pointer to output vector

  191.  *              - const polyveck *u: pointer to first input vector

  192.  *              - const polyveck *v: pointer to second input vector to be

  193.  *                                   subtracted from first input vector

  194.  **************************************************/

  195. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_sub(polyveck *w, const polyveck *u,

  196.         const polyveck *v) {

  197.     unsigned int i;

  198. 

  199.     for (i = 0; i < K; ++i) {

  200.         PQCLEAN_DILITHIUMIII_CLEAN_poly_sub(w->vec + i, u->vec + i, v->vec + i);

  201.     }

  202. }

  203. 

  204. /*************************************************

  205.  * Name:        polyveck_shiftl

  206.  *

  207.  * Description: Multiply vector of polynomials of Length K by 2^k without

  208.  *modular reduction. Assumes input coefficients to be less than 2^{32-k}.

  209.  *

  210.  * Arguments:   - polyveck *v: pointer to input/output vector

  211.  *              - unsigned int k: exponent

  212.  **************************************************/

  213. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_shiftl(polyveck *v, unsigned int k) {

  214.     unsigned int i;

  215. 

  216.     for (i = 0; i < K; ++i) {

  217.         PQCLEAN_DILITHIUMIII_CLEAN_poly_shiftl(v->vec + i, k);

  218.     }

  219. }

  220. 

  221. /*************************************************

  222.  * Name:        polyveck_ntt

  223.  *

  224.  * Description: Forward NTT of all polynomials in vector of length K. Output

  225.  *              coefficients can be up to 16*Q larger than input coefficients.

  226.  *

  227.  * Arguments:   - polyveck *v: pointer to input/output vector

  228.  **************************************************/

  229. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_ntt(polyveck *v) {

  230.     unsigned int i;

  231. 

  232.     for (i = 0; i < K; ++i) {

  233.         PQCLEAN_DILITHIUMIII_CLEAN_poly_ntt(v->vec + i);

  234.     }

  235. }

  236. 

  237. /*************************************************

  238.  * Name:        polyveck_invntt_montgomery

  239.  *

  240.  * Description: Inverse NTT and multiplication by 2^{32} of polynomials

  241.  *              in vector of length K. Input coefficients need to be less

  242.  *              than 2*Q.

  243.  *

  244.  * Arguments:   - polyveck *v: pointer to input/output vector

  245.  **************************************************/

  246. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_invntt_montgomery(polyveck *v) {

  247.     unsigned int i;

  248. 

  249.     for (i = 0; i < K; ++i) {

  250.         PQCLEAN_DILITHIUMIII_CLEAN_poly_invntt_montgomery(v->vec + i);

  251.     }

  252. }

  253. 

  254. /*************************************************

  255.  * Name:        polyveck_chknorm

  256.  *

  257.  * Description: Check infinity norm of polynomials in vector of length K.

  258.  *              Assumes input coefficients to be standard representatives.

  259.  *

  260.  * Arguments:   - const polyveck *v: pointer to vector

  261.  *              - uint32_t B: norm bound

  262.  *

  263.  * Returns 0 if norm of all polynomials are strictly smaller than B and 1

  264.  * otherwise.

  265.  **************************************************/

  266. int PQCLEAN_DILITHIUMIII_CLEAN_polyveck_chknorm(const polyveck *v, uint32_t bound) {

  267.     unsigned int i;

  268.     int ret = 0;

  269. 

  270.     for (i = 0; i < K; ++i) {

  271.         ret |= PQCLEAN_DILITHIUMIII_CLEAN_poly_chknorm(v->vec + i, bound);

  272.     }

  273. 

  274.     return ret;

  275. }

  276. 

  277. /*************************************************

  278.  * Name:        polyveck_power2round

  279.  *

  280.  * Description: For all coefficients a of polynomials in vector of length K,

  281.  *              compute a0, a1 such that a mod Q = a1*2^D + a0

  282.  *              with -2^{D-1} < a0 <= 2^{D-1}. Assumes coefficients to be

  283.  *              standard representatives.

  284.  *

  285.  * Arguments:   - polyveck *v1: pointer to output vector of polynomials with

  286.  *                              coefficients a1

  287.  *              - polyveck *v0: pointer to output vector of polynomials with

  288.  *                              coefficients Q + a0

  289.  *              - const polyveck *v: pointer to input vector

  290.  **************************************************/

  291. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_power2round(polyveck *v1, polyveck *v0,

  292.         const polyveck *v) {

  293.     unsigned int i;

  294. 

  295.     for (i = 0; i < K; ++i) {

  296.         PQCLEAN_DILITHIUMIII_CLEAN_poly_power2round(v1->vec + i, v0->vec + i,

  297.                 v->vec + i);

  298.     }

  299. }

  300. 

  301. /*************************************************

  302.  * Name:        polyveck_decompose

  303.  *

  304.  * Description: For all coefficients a of polynomials in vector of length K,

  305.  *              compute high and low bits a0, a1 such a mod Q = a1*ALPHA + a0

  306.  *              with -ALPHA/2 < a0 <= ALPHA/2 except a1 = (Q-1)/ALPHA where we

  307.  *              set a1 = 0 and -ALPHA/2 <= a0 = a mod Q - Q < 0.

  308.  *              Assumes coefficients to be standard representatives.

  309.  *

  310.  * Arguments:   - polyveck *v1: pointer to output vector of polynomials with

  311.  *                              coefficients a1

  312.  *              - polyveck *v0: pointer to output vector of polynomials with

  313.  *                              coefficients Q + a0

  314.  *              - const polyveck *v: pointer to input vector

  315.  **************************************************/

  316. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_decompose(polyveck *v1, polyveck *v0,

  317.         const polyveck *v) {

  318.     unsigned int i;

  319. 

  320.     for (i = 0; i < K; ++i) {

  321.         PQCLEAN_DILITHIUMIII_CLEAN_poly_decompose(v1->vec + i, v0->vec + i,

  322.                 v->vec + i);

  323.     }

  324. }

  325. 

  326. /*************************************************

  327.  * Name:        polyveck_make_hint

  328.  *

  329.  * Description: Compute hint vector.

  330.  *

  331.  * Arguments:   - polyveck *h: pointer to output vector

  332.  *              - const polyveck *u: pointer to first input vector

  333.  *              - const polyveck *u: pointer to second input vector

  334.  *

  335.  * Returns number of 1 bits.

  336.  **************************************************/

  337. unsigned int PQCLEAN_DILITHIUMIII_CLEAN_polyveck_make_hint(polyveck *h,

  338.         const polyveck *u,

  339.         const polyveck *v) {

  340.     unsigned int i, s = 0;

  341. 

  342.     for (i = 0; i < K; ++i) {

  343.         s += PQCLEAN_DILITHIUMIII_CLEAN_poly_make_hint(h->vec + i, u->vec + i,

  344.                 v->vec + i);

  345.     }

  346. 

  347.     return s;

  348. }

  349. 

  350. /*************************************************

  351.  * Name:        polyveck_use_hint

  352.  *

  353.  * Description: Use hint vector to correct the high bits of input vector.

  354.  *

  355.  * Arguments:   - polyveck *w: pointer to output vector of polynomials with

  356.  *                             corrected high bits

  357.  *              - const polyveck *u: pointer to input vector

  358.  *              - const polyveck *h: pointer to input hint vector

  359.  **************************************************/

  360. void PQCLEAN_DILITHIUMIII_CLEAN_polyveck_use_hint(polyveck *w, const polyveck *u,

  361.         const polyveck *h) {

  362.     unsigned int i;

  363. 

  364.     for (i = 0; i < K; ++i) {

  365.         PQCLEAN_DILITHIUMIII_CLEAN_poly_use_hint(w->vec + i, u->vec + i, h->vec + i);

  366.     }

  367. }