148             BN_ULONG A = a->d[0];  in BN_mod_exp()
317     BIGNUM *d, *r;  in BN_mod_exp_mont()  local
352     d = BN_CTX_get(ctx);  in BN_mod_exp_mont()
382         if (!bn_mul_mont_fixed_top(d, val[0], val[0], mont, ctx))  in BN_mod_exp_mont()
387                 !bn_mul_mont_fixed_top(val[i], val[i - 1], d, mont, ctx))  in BN_mod_exp_mont()
400     if (m->d[j - 1] & (((BN_ULONG)1) << (BN_BITS2 - 1))) {  in BN_mod_exp_mont()
404         r->d[0] = (0 - m->d[0]) & BN_MASK2;  in BN_mod_exp_mont()
406             r->d[i] = (~m->d[i]) & BN_MASK2;  in BN_mod_exp_mont()
470         val[0]->d[0] = 1;       /* borrow val[0] */  in BN_mod_exp_mont()
472             val[0]->d[i] = 0;  in BN_mod_exp_mont()
497         ret = a->d[wordpos] & BN_MASK2;  in bn_get_bits()
501                 ret |= a->d[wordpos] << (BN_BITS2 - bitpos);  in bn_get_bits()
527         table[j] = b->d[i];  in MOD_EXP_CTIME_COPY_TO_PREBUF()
561             b->d[i] = acc;  in MOD_EXP_CTIME_COPY_FROM_PREBUF()
586             b->d[i] = acc;  in MOD_EXP_CTIME_COPY_FROM_PREBUF()
692         RSAZ_1024_mod_exp_avx2(rr->d, a->d, p->d, m->d, mont->RR.d,  in BN_mod_exp_mont_consttime()
702         RSAZ_512_mod_exp(rr->d, a->d, p->d, m->d, mont->n0[0], mont->RR.d);  in BN_mod_exp_mont_consttime()
725         powerbufLen += top * sizeof(mont->N.d[0]);  in BN_mod_exp_mont_consttime()
735     powerbufLen += sizeof(m->d[0]) * (top * numPowers +  in BN_mod_exp_mont_consttime()
758     tmp.d = (BN_ULONG *)(powerbuf + sizeof(m->d[0]) * top * numPowers);  in BN_mod_exp_mont_consttime()
759     am.d = tmp.d + top;  in BN_mod_exp_mont_consttime()
767     if (m->d[top - 1] & (((BN_ULONG)1) << (BN_BITS2 - 1))) {  in BN_mod_exp_mont_consttime()
769         tmp.d[0] = (0 - m->d[0]) & BN_MASK2;  in BN_mod_exp_mont_consttime()
771             tmp.d[i] = (~m->d[i]) & BN_MASK2;  in BN_mod_exp_mont_consttime()
843         BN_ULONG *np = mont->N.d, *n0 = mont->n0;  in BN_mod_exp_mont_consttime()
852             am.d[i] = 0;  in BN_mod_exp_mont_consttime()
854             tmp.d[i] = 0;  in BN_mod_exp_mont_consttime()
856         bn_flip_n_scatter5_t4(tmp.d, top, powerbuf, 0);  in BN_mod_exp_mont_consttime()
857         bn_flip_n_scatter5_t4(am.d, top, powerbuf, 1);  in BN_mod_exp_mont_consttime()
858         if (!(*mul_worker) (tmp.d, am.d, am.d, np, n0) &&  in BN_mod_exp_mont_consttime()
859             !(*mul_worker) (tmp.d, am.d, am.d, np, n0))  in BN_mod_exp_mont_consttime()
860             bn_mul_mont_vis3(tmp.d, am.d, am.d, np, n0, top);  in BN_mod_exp_mont_consttime()
861         bn_flip_n_scatter5_t4(tmp.d, top, powerbuf, 2);  in BN_mod_exp_mont_consttime()
865             if (!(*mul_worker) (tmp.d, tmp.d, am.d, np, n0) &&  in BN_mod_exp_mont_consttime()
866                 !(*mul_worker) (tmp.d, tmp.d, am.d, np, n0))  in BN_mod_exp_mont_consttime()
867                 bn_mul_mont_vis3(tmp.d, tmp.d, am.d, np, n0, top);  in BN_mod_exp_mont_consttime()
868             bn_flip_n_scatter5_t4(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
874         bn_flip_t4(np, mont->N.d, top);  in BN_mod_exp_mont_consttime()
886         bn_gather5_t4(tmp.d, top, powerbuf, wvalue);  in BN_mod_exp_mont_consttime()
898             if ((*pwr5_worker) (tmp.d, np, n0, powerbuf, wvalue, stride))  in BN_mod_exp_mont_consttime()
901             if ((*pwr5_worker) (tmp.d, np, n0, powerbuf, wvalue, stride))  in BN_mod_exp_mont_consttime()
907             bn_mul_mont_t4(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
908             bn_mul_mont_t4(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
909             bn_mul_mont_t4(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
910             bn_mul_mont_t4(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
911             bn_mul_mont_t4(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
912             bn_mul_mont_gather5_t4(tmp.d, tmp.d, powerbuf, np, n0, top,  in BN_mod_exp_mont_consttime()
916         bn_flip_t4(tmp.d, tmp.d, top);  in BN_mod_exp_mont_consttime()
961             am.d[i] = 0;  in BN_mod_exp_mont_consttime()
963             tmp.d[i] = 0;  in BN_mod_exp_mont_consttime()
968         for (np = am.d + top, i = 0; i < top; i++)  in BN_mod_exp_mont_consttime()
969             np[i] = mont->N.d[i];  in BN_mod_exp_mont_consttime()
971         bn_scatter5(tmp.d, top, powerbuf, 0);  in BN_mod_exp_mont_consttime()
972         bn_scatter5(am.d, am.top, powerbuf, 1);  in BN_mod_exp_mont_consttime()
973         bn_mul_mont(tmp.d, am.d, am.d, np, n0, top);  in BN_mod_exp_mont_consttime()
974         bn_scatter5(tmp.d, top, powerbuf, 2);  in BN_mod_exp_mont_consttime()
979             bn_mul_mont_gather5(tmp.d, am.d, powerbuf, np, n0, top, i - 1);  in BN_mod_exp_mont_consttime()
980             bn_scatter5(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
985             bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
986             bn_scatter5(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
990             bn_mul_mont_gather5(tmp.d, am.d, powerbuf, np, n0, top, i - 1);  in BN_mod_exp_mont_consttime()
991             bn_scatter5(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
993                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
994                 bn_scatter5(tmp.d, top, powerbuf, j);  in BN_mod_exp_mont_consttime()
998             bn_mul_mont_gather5(tmp.d, am.d, powerbuf, np, n0, top, i - 1);  in BN_mod_exp_mont_consttime()
999             bn_scatter5(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
1000             bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1001             bn_scatter5(tmp.d, top, powerbuf, 2 * i);  in BN_mod_exp_mont_consttime()
1004             bn_mul_mont_gather5(tmp.d, am.d, powerbuf, np, n0, top, i - 1);  in BN_mod_exp_mont_consttime()
1005             bn_scatter5(tmp.d, top, powerbuf, i);  in BN_mod_exp_mont_consttime()
1018         bn_gather5(tmp.d, top, powerbuf, wvalue);  in BN_mod_exp_mont_consttime()
1026                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1027                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1028                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1029                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1030                 bn_mul_mont(tmp.d, tmp.d, tmp.d, np, n0, top);  in BN_mod_exp_mont_consttime()
1031                 bn_mul_mont_gather5(tmp.d, tmp.d, powerbuf, np, n0, top,  in BN_mod_exp_mont_consttime()
1032                                     bn_get_bits5(p->d, bits -= 5));  in BN_mod_exp_mont_consttime()
1036                 bn_power5(tmp.d, tmp.d, powerbuf, np, n0, top,  in BN_mod_exp_mont_consttime()
1037                           bn_get_bits5(p->d, bits -= 5));  in BN_mod_exp_mont_consttime()
1142         am.d[0] = 1;            /* borrow am */  in BN_mod_exp_mont_consttime()
1144             am.d[i] = 0;  in BN_mod_exp_mont_consttime()
1204         a %= m->d[0];           /* make sure that 'a' is reduced */  in BN_mod_exp_mont_word()
1316     BIGNUM *d;  in BN_mod_exp_simple()  local
1346     d = BN_CTX_get(ctx);  in BN_mod_exp_simple()
1361         if (!BN_mod_mul(d, val[0], val[0], m, ctx))  in BN_mod_exp_simple()
1366                 !BN_mod_mul(val[i], val[i - 1], d, m, ctx))  in BN_mod_exp_simple()
1497         ret = ossl_rsaz_mod_exp_avx512_x2(rr1->d, a1->d, p1->d, m1->d,  in BN_mod_exp_mont_consttime_x2()
1498                                           mont1->RR.d, mont1->n0[0],  in BN_mod_exp_mont_consttime_x2()
1499                                           rr2->d, a2->d, p2->d, m2->d,  in BN_mod_exp_mont_consttime_x2()
1500                                           mont2->RR.d, mont2->n0[0],  in BN_mod_exp_mont_consttime_x2()

Last Index update Sun Nov 17 04:02:43 UTC 2024

Dedicated to & Maintained by Room-11