kris
/
pqcrypto
mirror of https://github.com/henrydcase/pqc.git
1
1
Fork 0
Code Issues 1 Releases 2 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
834 Commits
9 Branches
76 MiB
 
 
 
Tree: cf5107b69f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'cf5107b69f'
${ noResults }
pqcrypto/crypto_kem/kyber768-90s/avx2/polyvec.c

167 lines
6.4 KiB
Raw Blame History 

  1. #include "ntt.h"

  2. #include "poly.h"

  3. #include "polyvec.h"

  4. 

  5. #include <stdint.h>

  6. 

  7. /*************************************************

  8. * Name:        polyvec_compress

  9. *

  10. * Description: Compress and serialize vector of polynomials

  11. *

  12. * Arguments:   - uint8_t *r: pointer to output byte array

  13. *              - const polyvec *a: pointer to input vector of polynomials

  14. **************************************************/

  15. void PQCLEAN_KYBER76890S_AVX2_polyvec_compress(uint8_t *r, polyvec *a) {

  16.     PQCLEAN_KYBER76890S_AVX2_polyvec_csubq(a);

  17. 

  18.     uint16_t t[4];

  19.     for (size_t i = 0; i < KYBER_K; i++) {

  20.         for (size_t j = 0; j < KYBER_N / 4; j++) {

  21.             for (size_t k = 0; k < 4; k++) {

  22.                 t[k] = ((((uint32_t)a->vec[i].coeffs[4 * j + k] << 10) + KYBER_Q / 2) / KYBER_Q) & 0x3ff;

  23.             }

  24. 

  25.             r[5 * j + 0] = (uint8_t)t[0];

  26.             r[5 * j + 1] = (uint8_t)((t[0] >>  8) | ((t[1] & 0x3f) << 2));

  27.             r[5 * j + 2] = (uint8_t)((t[1] >>  6) | ((t[2] & 0x0f) << 4));

  28.             r[5 * j + 3] = (uint8_t)((t[2] >>  4) | ((t[3] & 0x03) << 6));

  29.             r[5 * j + 4] = (uint8_t)((t[3] >>  2));

  30.         }

  31.         r += 320;

  32.     }

  33. }

  34. 

  35. /*************************************************

  36. * Name:        polyvec_decompress

  37. *

  38. * Description: De-serialize and decompress vector of polynomials;

  39. *              approximate inverse of polyvec_compress

  40. *

  41. * Arguments:   - polyvec *r:       pointer to output vector of polynomials

  42. *              - uint8_t *a: pointer to input byte array

  43. **************************************************/

  44. void PQCLEAN_KYBER76890S_AVX2_polyvec_decompress(polyvec *r, const uint8_t *a) {

  45.     for (size_t i = 0; i < KYBER_K; i++) {

  46.         for (size_t j = 0; j < KYBER_N / 4; j++) {

  47.             r->vec[i].coeffs[4 * j + 0] = (int16_t)( (((a[5 * j + 0]       | (((uint32_t)a[5 * j + 1] & 0x03) << 8)) * KYBER_Q) + 512) >> 10);

  48.             r->vec[i].coeffs[4 * j + 1] = (int16_t)(((((a[5 * j + 1] >> 2) | (((uint32_t)a[5 * j + 2] & 0x0f) << 6)) * KYBER_Q) + 512) >> 10);

  49.             r->vec[i].coeffs[4 * j + 2] = (int16_t)(((((a[5 * j + 2] >> 4) | (((uint32_t)a[5 * j + 3] & 0x3f) << 4)) * KYBER_Q) + 512) >> 10);

  50.             r->vec[i].coeffs[4 * j + 3] = (int16_t)(((((a[5 * j + 3] >> 6) | (((uint32_t)a[5 * j + 4] & 0xff) << 2)) * KYBER_Q) + 512) >> 10);

  51.         }

  52.         a += 320;

  53.     }

  54. }

  55. 

  56. /*************************************************

  57. * Name:        polyvec_tobytes

  58. *

  59. * Description: Serialize vector of polynomials

  60. *

  61. * Arguments:   - uint8_t *r: pointer to output byte array

  62. *              - const polyvec *a: pointer to input vector of polynomials

  63. **************************************************/

  64. void PQCLEAN_KYBER76890S_AVX2_polyvec_tobytes(uint8_t *r, polyvec *a) {

  65.     for (size_t i = 0; i < KYBER_K; i++) {

  66.         PQCLEAN_KYBER76890S_AVX2_poly_tobytes(r + i * KYBER_POLYBYTES, &a->vec[i]);

  67.     }

  68. }

  69. 

  70. /*************************************************

  71. * Name:        polyvec_frombytes

  72. *

  73. * Description: De-serialize vector of polynomials;

  74. *              inverse of polyvec_tobytes

  75. *

  76. * Arguments:   - uint8_t *r: pointer to output byte array

  77. *              - const polyvec *a: pointer to input vector of polynomials

  78. **************************************************/

  79. void PQCLEAN_KYBER76890S_AVX2_polyvec_frombytes(polyvec *r, const uint8_t *a) {

  80.     for (size_t i = 0; i < KYBER_K; i++) {

  81.         PQCLEAN_KYBER76890S_AVX2_poly_frombytes(&r->vec[i], a + i * KYBER_POLYBYTES);

  82.     }

  83. }

  84. 

  85. /*************************************************

  86. * Name:        polyvec_ntt

  87. *

  88. * Description: Apply forward NTT to all elements of a vector of polynomials

  89. *

  90. * Arguments:   - polyvec *r: pointer to in/output vector of polynomials

  91. **************************************************/

  92. void PQCLEAN_KYBER76890S_AVX2_polyvec_ntt(polyvec *r) {

  93.     for (size_t i = 0; i < KYBER_K; i++) {

  94.         PQCLEAN_KYBER76890S_AVX2_poly_ntt(&r->vec[i]);

  95.     }

  96. }

  97. 

  98. /*************************************************

  99. * Name:        polyvec_invntt

  100. *

  101. * Description: Apply inverse NTT to all elements of a vector of polynomials

  102. *

  103. * Arguments:   - polyvec *r: pointer to in/output vector of polynomials

  104. **************************************************/

  105. void PQCLEAN_KYBER76890S_AVX2_polyvec_invntt(polyvec *r) {

  106.     for (size_t i = 0; i < KYBER_K; i++) {

  107.         PQCLEAN_KYBER76890S_AVX2_poly_invntt(&r->vec[i]);

  108.     }

  109. }

  110. 

  111. /*************************************************

  112. * Name:        polyvec_pointwise_acc

  113. *

  114. * Description: Pointwise multiply elements of a and b and accumulate into r

  115. *

  116. * Arguments: - poly *r:          pointer to output polynomial

  117. *            - const polyvec *a: pointer to first input vector of polynomials

  118. *            - const polyvec *b: pointer to second input vector of polynomials

  119. **************************************************/

  120. void PQCLEAN_KYBER76890S_AVX2_polyvec_pointwise_acc(poly *r, const polyvec *a, const polyvec *b) {

  121.     PQCLEAN_KYBER76890S_AVX2_basemul_acc_avx(r->coeffs,

  122.             a->vec->coeffs,

  123.             b->vec->coeffs,

  124.             PQCLEAN_KYBER76890S_AVX2_zetas_exp + 152);

  125.     PQCLEAN_KYBER76890S_AVX2_basemul_acc_avx(r->coeffs + 64,

  126.             a->vec->coeffs + 64,

  127.             b->vec->coeffs + 64,

  128.             PQCLEAN_KYBER76890S_AVX2_zetas_exp + 184);

  129.     PQCLEAN_KYBER76890S_AVX2_basemul_acc_avx(r->coeffs + 128,

  130.             a->vec->coeffs + 128,

  131.             b->vec->coeffs + 128,

  132.             PQCLEAN_KYBER76890S_AVX2_zetas_exp + 348);

  133.     PQCLEAN_KYBER76890S_AVX2_basemul_acc_avx(r->coeffs + 192,

  134.             a->vec->coeffs + 192,

  135.             b->vec->coeffs + 192,

  136.             PQCLEAN_KYBER76890S_AVX2_zetas_exp + 380);

  137. }

  138. 

  139. // FIXME

  140. void PQCLEAN_KYBER76890S_AVX2_polyvec_reduce(polyvec *r) {

  141.     for (size_t i = 0; i < KYBER_K; i++) {

  142.         PQCLEAN_KYBER76890S_AVX2_poly_reduce(&r->vec[i]);

  143.     }

  144. }

  145. 

  146. // FIXME

  147. void PQCLEAN_KYBER76890S_AVX2_polyvec_csubq(polyvec *r) {

  148.     for (size_t i = 0; i < KYBER_K; i++) {

  149.         PQCLEAN_KYBER76890S_AVX2_poly_csubq(&r->vec[i]);

  150.     }

  151. }

  152. 

  153. /*************************************************

  154. * Name:        polyvec_add

  155. *

  156. * Description: Add vectors of polynomials

  157. *

  158. * Arguments: - polyvec *r:       pointer to output vector of polynomials

  159. *            - const polyvec *a: pointer to first input vector of polynomials

  160. *            - const polyvec *b: pointer to second input vector of polynomials

  161. **************************************************/

  162. void PQCLEAN_KYBER76890S_AVX2_polyvec_add(polyvec *r, const polyvec *a, const polyvec *b) {

  163.     for (size_t i = 0; i < KYBER_K; i++) {

  164.         PQCLEAN_KYBER76890S_AVX2_poly_add(&r->vec[i], &a->vec[i], &b->vec[i]);

  165.     }

  166. }