diff options
| author | J08nY | 2020-02-26 14:28:52 +0100 |
|---|---|---|
| committer | J08nY | 2020-02-26 14:28:52 +0100 |
| commit | f78ff987ac2df62dbd8326ce33ae61c97673710e (patch) | |
| tree | 9b63026e223254bc3c4e6af164bd3ae3bdcc0404 /pyecsca/codegen/bn/bn.c | |
| parent | 3892d994470b181f950703fabf719a9c963d1c20 (diff) | |
| download | pyecsca-codegen-f78ff987ac2df62dbd8326ce33ae61c97673710e.tar.gz pyecsca-codegen-f78ff987ac2df62dbd8326ce33ae61c97673710e.tar.zst pyecsca-codegen-f78ff987ac2df62dbd8326ce33ae61c97673710e.zip | |
Get stuff to work on STM32F0.
Diffstat (limited to 'pyecsca/codegen/bn/bn.c')
| -rw-r--r-- | pyecsca/codegen/bn/bn.c | 166 |
1 files changed, 111 insertions, 55 deletions
diff --git a/pyecsca/codegen/bn/bn.c b/pyecsca/codegen/bn/bn.c index c953119..930dea7 100644 --- a/pyecsca/codegen/bn/bn.c +++ b/pyecsca/codegen/bn/bn.c @@ -6,8 +6,8 @@ bn_err bn_init(bn_t *bn) { return mp_init(bn); } -void bn_copy(const bn_t *from, bn_t *to) { - mp_copy(from, to); +bn_err bn_copy(const bn_t *from, bn_t *to) { + return mp_copy(from, to); } void bn_clear(bn_t *bn) { @@ -22,95 +22,125 @@ int bn_from_hex(const char *data, bn_t *out) { return mp_read_radix(out, data, 16); } -int bn_from_int(uint64_t value, bn_t *out) { - mp_set_u64(out, value); +int bn_from_int(unsigned int value, bn_t *out) { + if (sizeof(unsigned int) == 8) { + mp_set_u64(out, value); + } else { + mp_set_u32(out, value); + } return MP_OKAY; } -void bn_to_binpad(const bn_t *one, uint8_t *data, size_t size) { +bn_err bn_to_binpad(const bn_t *one, uint8_t *data, size_t size) { size_t ubin_size = mp_ubin_size(one); size_t offset = size - ubin_size; memset(data, 0, offset); - mp_to_ubin(one, data + offset, ubin_size, NULL); + return mp_to_ubin(one, data + offset, ubin_size, NULL); } -void bn_to_bin(const bn_t *one, uint8_t *data) { - mp_to_ubin(one, data, mp_ubin_size(one), NULL); +bn_err bn_to_bin(const bn_t *one, uint8_t *data) { + return mp_to_ubin(one, data, mp_ubin_size(one), NULL); } size_t bn_to_bin_size(const bn_t *one) { return mp_ubin_size(one); } -void bn_rand_mod_sample(bn_t *out, const bn_t *mod) { +bn_err bn_rand_mod_sample(bn_t *out, const bn_t *mod) { int mod_len = bn_bit_length(mod); + bn_err err = BN_OKAY; bn_t mask; bn_init(&mask); - mp_2expt(&mask, mod_len + 1); - mp_decr(&mask); + if ((err = mp_2expt(&mask, mod_len + 1)) != BN_OKAY) { + goto out; + } + if ((err = mp_decr(&mask)) != BN_OKAY) { + goto out; + } while (1) { - mp_rand(out, (mod_len / (sizeof(mp_digit) * 8)) + 1); - mp_and(out, &mask, out); + if ((err = mp_rand(out, (mod_len / (sizeof(mp_digit) * 8)) + 1)) != BN_OKAY) { + break; + } + if ((err = mp_and(out, &mask, out)) != BN_OKAY) { + break; + } if (mp_cmp_mag(out, mod) == MP_LT) { - bn_clear(&mask); break; } } + out: + bn_clear(&mask); + return err; } -void bn_rand_mod_reduce(bn_t *out, const bn_t *mod) { +bn_err bn_rand_mod_reduce(bn_t *out, const bn_t *mod) { int mod_len = bn_bit_length(mod); - mp_rand(out, (mod_len / MP_DIGIT_BIT) + 2); - mp_mod(out, mod, out); + bn_err err = BN_OKAY; + if ((err = mp_rand(out, (mod_len / MP_DIGIT_BIT) + 2)) != BN_OKAY) { + return err; + } + return mp_mod(out, mod, out); } -void bn_mod_add(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { - mp_addmod(one, other, mod, out); +bn_err bn_mod_add(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { + return mp_addmod(one, other, mod, out); } -void bn_mod_sub(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { - mp_submod(one, other, mod, out); +bn_err bn_mod_sub(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { + return mp_submod(one, other, mod, out); } -void bn_mod_neg(const bn_t *one, const bn_t *mod, bn_t *out) { - mp_neg(one, out); - mp_mod(out, mod, out); +bn_err bn_mod_neg(const bn_t *one, const bn_t *mod, bn_t *out) { + bn_err err = BN_OKAY; + if ((err = mp_neg(one, out)) != BN_OKAY) { + return err; + } + return mp_mod(out, mod, out); } -void bn_mod_mul(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { - mp_mulmod(one, other, mod, out); +bn_err bn_mod_mul(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { + return mp_mulmod(one, other, mod, out); } -void bn_mod_sqr(const bn_t *one, const bn_t *mod, bn_t *out) { - mp_sqrmod(one, mod, out); +bn_err bn_mod_sqr(const bn_t *one, const bn_t *mod, bn_t *out) { + return mp_sqrmod(one, mod, out); } -void bn_mod_div(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { +bn_err bn_mod_div(const bn_t *one, const bn_t *other, const bn_t *mod, bn_t *out) { bn_t inv; - mp_init(&inv); - mp_invmod(other, mod, &inv); - mp_mulmod(one, &inv, mod, out); + bn_err err = BN_OKAY; + if ((err = mp_init(&inv)) != BN_OKAY) { + return err; + } + if ((err = mp_invmod(other, mod, &inv)) != BN_OKAY) { + goto out; + } + if ((err = mp_mulmod(one, &inv, mod, out)) != BN_OKAY) { + goto out; + } +out: mp_clear(&inv); + return err; } -void bn_mod_inv(const bn_t *one, const bn_t *mod, bn_t *out) { - mp_invmod(one, mod, out); +bn_err bn_mod_inv(const bn_t *one, const bn_t *mod, bn_t *out) { + return mp_invmod(one, mod, out); } -void bn_mod_pow(const bn_t *one, const bn_t *exp, const bn_t *mod, bn_t *out) { - mp_exptmod(one, exp, mod, out); +bn_err bn_mod_pow(const bn_t *one, const bn_t *exp, const bn_t *mod, bn_t *out) { + return mp_exptmod(one, exp, mod, out); } -void bn_mod(const bn_t *one, const bn_t *mod, bn_t *out) { - mp_mod(one, mod, out); +bn_err bn_mod(const bn_t *one, const bn_t *mod, bn_t *out) { + return mp_mod(one, mod, out); } -void bn_lsh(const bn_t *one, int amount, bn_t *out) { - mp_mul_2d(one, amount, out); +bn_err bn_lsh(const bn_t *one, int amount, bn_t *out) { + return mp_mul_2d(one, amount, out); } -void bn_rsh(const bn_t *one, int amount, bn_t *out) { - mp_div_2d(one, amount, out, NULL); +bn_err bn_rsh(const bn_t *one, int amount, bn_t *out) { + return mp_div_2d(one, amount, out, NULL); } bool bn_eq(const bn_t *one, const bn_t *other) { @@ -146,44 +176,70 @@ wnaf_t *bn_wnaf(const bn_t *bn, int w) { if (w > 8 || w < 2) { return NULL; } - wnaf_t *result = malloc(sizeof(wnaf_t)); - result->w = w; - result->length = bn_bit_length(bn) + 1; - result->data = calloc(result->length, sizeof(int8_t)); + wnaf_t *result = NULL; bn_t half_width; - bn_init(&half_width); + if (mp_init(&half_width) != BN_OKAY) { + return NULL; + } bn_from_int(1, &half_width); bn_lsh(&half_width, w - 1, &half_width); bn_t full_width; - bn_init(&full_width); + if (mp_init(&full_width) != BN_OKAY) { + goto exit_full_width; + } bn_from_int(1, &full_width); bn_lsh(&full_width, w, &full_width); - bn_t k; bn_init(&k); + bn_t k; + if (mp_init(&k) != BN_OKAY) { + goto exit_k; + } bn_copy(bn, &k); - bn_t val_mod; bn_init(&val_mod); + bn_t val_mod; + if (mp_init(&val_mod) != BN_OKAY) { + goto exit_val_mod; + } + + result = malloc(sizeof(wnaf_t)); + result->w = w; + result->length = bn_bit_length(bn) + 1; + result->data = calloc(result->length, sizeof(int8_t)); size_t i = 0; - while (!bn_is_0(&k) && !(bn_get_sign(&k) == MP_NEG)) { + while (!bn_is_0(&k) && !(bn_get_sign(&k) == BN_NEG)) { if (bn_get_bit(&k, 0) == 1) { bn_mod(&k, &full_width, &val_mod); if (mp_cmp(&val_mod, &half_width) == MP_GT) { - mp_sub(&val_mod, &full_width, &val_mod); + if (mp_sub(&val_mod, &full_width, &val_mod) != BN_OKAY) { + free(result->data); + free(result); + result = NULL; + break; + } } int8_t val = (int8_t) mp_get_i32(&val_mod); result->data[i++] = val; - mp_sub(&k, &val_mod, &k); + if (mp_sub(&k, &val_mod, &k) != BN_OKAY) { + free(result->data); + free(result); + result = NULL; + break; + } } else { result->data[i++] = 0; } bn_rsh(&k, 1, &k); } bn_clear(&val_mod); - bn_clear(&half_width); - bn_clear(&full_width); + +exit_val_mod: bn_clear(&k); +exit_k: + bn_clear(&full_width); +exit_full_width: + bn_clear(&half_width); return result; } |