-rw-r--r-- 1697 lib25519-20240321/crypto_nG/merged25519/amd64-51/ge25519_scalarmult_base.c raw
// linker define ge25519_scalarmult_base // linker use sc25519_window4 // linker use choose_t // linker use fe25519_sub fe25519_add fe25519_setint fe25519_mul // linker use ge25519_nielsadd2 ge25519_dbl_p1p1 ge25519_p1p1_to_p2 ge25519_p1p1_to_p3 // linker use ge25519_base_multiples_niels #include "fe25519.h" #include "sc25519.h" #include "ge25519.h" /* d */ static const fe25519 ecd = {{929955233495203, 466365720129213, 1662059464998953, 2033849074728123, 1442794654840575}}; void ge25519_scalarmult_base(ge25519_p3 *r, const sc25519 *s) { signed char b[64]; int i; ge25519_niels t; fe25519 d; sc25519_window4(b,s); ge25519_p1p1 tp1p1; choose_t((ge25519_niels *)r, 0, (signed long long) b[1], ge25519_base_multiples_niels); fe25519_sub(&d, &r->y, &r->x); fe25519_add(&r->y, &r->y, &r->x); r->x = d; r->t = r->z; fe25519_setint(&r->z,2); for(i=3;i<64;i+=2) { choose_t(&t, (unsigned long long) i/2, (signed long long) b[i], ge25519_base_multiples_niels); ge25519_nielsadd2(r, &t); } ge25519_dbl_p1p1(&tp1p1,(ge25519_p2 *)r); ge25519_p1p1_to_p2((ge25519_p2 *)r, &tp1p1); ge25519_dbl_p1p1(&tp1p1,(ge25519_p2 *)r); ge25519_p1p1_to_p2((ge25519_p2 *)r, &tp1p1); ge25519_dbl_p1p1(&tp1p1,(ge25519_p2 *)r); ge25519_p1p1_to_p2((ge25519_p2 *)r, &tp1p1); ge25519_dbl_p1p1(&tp1p1,(ge25519_p2 *)r); ge25519_p1p1_to_p3(r, &tp1p1); choose_t(&t, (unsigned long long) 0, (signed long long) b[0], ge25519_base_multiples_niels); fe25519_mul(&t.t2d, &t.t2d, &ecd); ge25519_nielsadd2(r, &t); for(i=2;i<64;i+=2) { choose_t(&t, (unsigned long long) i/2, (signed long long) b[i], ge25519_base_multiples_niels); ge25519_nielsadd2(r, &t); } }