ed25519-donna.h

Go to the documentation of this file.

/*
    Public domain by Andrew M. <liquidsun@gmail.com>
    Modified from the amd64-51-30k implementation by
        Daniel J. Bernstein
        Niels Duif
        Tanja Lange
        Peter Schwabe
        Bo-Yin Yang
*/
 
 
#include "ed25519-donna-portable.h"
 
#if defined(ED25519_SSE2)
#else
    #if defined(HAVE_UINT128) && !defined(ED25519_FORCE_32BIT)
        #define ED25519_64BIT
    #else
        #define ED25519_32BIT
    #endif
#endif
 
#if !defined(ED25519_NO_INLINE_ASM)
    /* detect extra features first so un-needed functions can be disabled throughout */
    #if defined(ED25519_SSE2)
        #if defined(COMPILER_GCC) && defined(CPU_X86)
            #define ED25519_GCC_32BIT_SSE_CHOOSE
        #elif defined(COMPILER_GCC) && defined(CPU_X86_64)
            #define ED25519_GCC_64BIT_SSE_CHOOSE
        #endif
    #else
        #if defined(CPU_X86_64)
            #if defined(COMPILER_GCC)
                #if defined(ED25519_64BIT)
                    #define ED25519_GCC_64BIT_X86_CHOOSE
                #else
                    #define ED25519_GCC_64BIT_32BIT_CHOOSE
                #endif
            #endif
        #endif
    #endif
#endif
 
#if defined(ED25519_SSE2)
    #include "curve25519-donna-sse2.h"
#elif defined(ED25519_64BIT)
    #include "curve25519-donna-64bit.h"
#else
    #include "curve25519-donna-32bit.h"
#endif
 
#include "curve25519-donna-helpers.h"
 
/* separate uint128 check for 64 bit sse2 */
#if defined(HAVE_UINT128) && !defined(ED25519_FORCE_32BIT)
    #include "modm-donna-64bit.h"
#else
    #include "modm-donna-32bit.h"
#endif
 
typedef unsigned char hash_512bits[64];
 
/*
    Timing safe memory compare
*/
static int
ed25519_verify(const unsigned char *x, const unsigned char *y, size_t len) {
    size_t differentbits = 0;
    while (len--)
        differentbits |= (*x++ ^ *y++);
    return (int) (1 & ((differentbits - 1) >> 8));
}
 
 
/*
 * Arithmetic on the twisted Edwards curve -x^2 + y^2 = 1 + dx^2y^2
 * with d = -(121665/121666) = 37095705934669439343138083508754565189542113879843219016388785533085940283555
 * Base point: (15112221349535400772501151409588531511454012693041857206046113283949847762202,46316835694926478169428394003475163141307993866256225615783033603165251855960);
 */
 
typedef struct ge25519_t {
    bignum25519 x, y, z, t;
} ge25519;
 
typedef struct ge25519_p1p1_t {
    bignum25519 x, y, z, t;
} ge25519_p1p1;
 
typedef struct ge25519_niels_t {
    bignum25519 ysubx, xaddy, t2d;
} ge25519_niels;
 
typedef struct ge25519_pniels_t {
    bignum25519 ysubx, xaddy, z, t2d;
} ge25519_pniels;
 
#include "ed25519-donna-basepoint-table.h"
 
#if defined(ED25519_64BIT)
    #include "ed25519-donna-64bit-tables.h"
    #include "ed25519-donna-64bit-x86.h"
#else
    #include "ed25519-donna-32bit-tables.h"
    #include "ed25519-donna-64bit-x86-32bit.h"
#endif
 
 
#if defined(ED25519_SSE2)
    #include "ed25519-donna-32bit-sse2.h"
    #include "ed25519-donna-64bit-sse2.h"
    #include "ed25519-donna-impl-sse2.h"
#else
    #include "ed25519-donna-impl-base.h"
#endif