-rw-r--r-- 623 lib25519-20241004/crypto_mGnP/ed25519/ref10/mGnP.c raw
#include <string.h>
#include "ge.h"
#include "sc.h"
#include "crypto_verify_32.h"
#include "crypto_mGnP.h"
void crypto_mGnP(
unsigned char *Q,
const unsigned char *m,
const unsigned char *n,
const unsigned char *P
)
{
unsigned char mcopy[64];
unsigned char ncopy[64];
ge_p3 P_internal;
ge_p2 R;
int ok;
ok = ge_frombytes_negate_vartime(&P_internal,P);
memcpy(mcopy,m,32);
memset(mcopy+32,0,32);
sc_reduce(mcopy);
if (crypto_verify_32(mcopy,m)) ok = 0;
memcpy(ncopy,n,64);
sc_reduce(ncopy);
ge_double_scalarmult_vartime(&R,ncopy,&P_internal,mcopy);
ge_tobytes(Q,&R);
Q[32] = ok;
}