kris
/
pqcrypto
mirror of https://github.com/henrydcase/pqc.git
1
1
Fork 0
Code Issues 1 Releases 2 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
834 Commits
9 Branches
76 MiB
 
 
 
Tree: cf5107b69f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'cf5107b69f'
${ noResults }
pqcrypto/crypto_kem/ledakemlt12/leaktime/gf2x_arith.h

64 lines
2.1 KiB
Raw Blame History 

  1. #ifndef GF2X_ARITH_H

  2. #define GF2X_ARITH_H

  3. 

  4. #include <inttypes.h>

  5. #include <stddef.h>

  6. 

  7. /*

  8.  * Elements of GF(2)[x] are stored in compact dense binary form.

  9.  *

  10.  * Each bit in a byte is assumed to be the coefficient of a binary

  11.  * polynomial f(x), in Big-Endian format (i.e., reading everything from

  12.  * left to right, the most significant element is met first):

  13.  *

  14.  * byte:(0000 0000) == 0x00 ... f(x) == 0

  15.  * byte:(0000 0001) == 0x01 ... f(x) == 1

  16.  * byte:(0000 0010) == 0x02 ... f(x) == x

  17.  * byte:(0000 0011) == 0x03 ... f(x) == x+1

  18.  * ...                      ... ...

  19.  * byte:(0000 1111) == 0x0F ... f(x) == x^{3}+x^{2}+x+1

  20.  * ...                      ... ...

  21.  * byte:(1111 1111) == 0xFF ... f(x) == x^{7}+x^{6}+x^{5}+x^{4}+x^{3}+x^{2}+x+1

  22.  *

  23.  *

  24.  * A "machine word" (A_i) is considered as a DIGIT.

  25.  * Bytes in a DIGIT are assumed in Big-Endian format:

  26.  * E.g., if sizeof(DIGIT) == 4:

  27.  * A_i: A_{i,3} A_{i,2} A_{i,1} A_{i,0}.

  28.  * A_{i,3} denotes the most significant byte, A_{i,0} the least significant one.

  29.  * f(x) ==   x^{31} + ... + x^{24} +

  30.  *         + x^{23} + ... + x^{16} +

  31.  *         + x^{15} + ... + x^{8}  +

  32.  *         + x^{7}  + ... + x^{0}

  33.  *

  34.  *

  35.  * Multi-precision elements (i.e., with multiple DIGITs) are stored in

  36.  * Big-endian format:

  37.  *           A = A_{n-1} A_{n-2} ... A_1 A_0

  38.  *

  39.  *           position[A_{n-1}] == 0

  40.  *           position[A_{n-2}] == 1

  41.  *           ...

  42.  *           position[A_{1}]  ==  n-2

  43.  *           position[A_{0}]  ==  n-1

  44.  */

  45. 

  46. typedef uint64_t DIGIT;

  47. #define DIGIT_SIZE_B (8)

  48. #define DIGIT_SIZE_b (DIGIT_SIZE_B << 3)

  49. #define POSITION_T uint32_t

  50. 

  51. #define MIN_KAR_DIGITS      10

  52. #define MIN_TOOM_DIGITS     42

  53. 

  54. #define STACK_KAR_ONLY      2433

  55. #define STACK_WORDS         2892

  56. 

  57. void PQCLEAN_LEDAKEMLT12_LEAKTIME_gf2x_add(DIGIT Res[], const DIGIT A[], const DIGIT B[], size_t n);

  58. void PQCLEAN_LEDAKEMLT12_LEAKTIME_gf2x_cmov(DIGIT *r, const DIGIT *a, size_t len, int c);

  59. void PQCLEAN_LEDAKEMLT12_LEAKTIME_right_bit_shift_n(size_t length, DIGIT in[], size_t amount);

  60. void PQCLEAN_LEDAKEMLT12_LEAKTIME_left_bit_shift_n(size_t length, DIGIT in[], size_t amount);

  61. void PQCLEAN_LEDAKEMLT12_LEAKTIME_gf2x_mul(DIGIT *R, const DIGIT *A, const DIGIT *B, size_t n);

  62. 

  63. #endif