bn_word.c 7.2 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250
  1. /* crypto/bn/bn_word.c */
  2. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  3. * All rights reserved.
  4. *
  5. * This package is an SSL implementation written
  6. * by Eric Young (eay@cryptsoft.com).
  7. * The implementation was written so as to conform with Netscapes SSL.
  8. *
  9. * This library is free for commercial and non-commercial use as long as
  10. * the following conditions are aheared to. The following conditions
  11. * apply to all code found in this distribution, be it the RC4, RSA,
  12. * lhash, DES, etc., code; not just the SSL code. The SSL documentation
  13. * included with this distribution is covered by the same copyright terms
  14. * except that the holder is Tim Hudson (tjh@cryptsoft.com).
  15. *
  16. * Copyright remains Eric Young's, and as such any Copyright notices in
  17. * the code are not to be removed.
  18. * If this package is used in a product, Eric Young should be given attribution
  19. * as the author of the parts of the library used.
  20. * This can be in the form of a textual message at program startup or
  21. * in documentation (online or textual) provided with the package.
  22. *
  23. * Redistribution and use in source and binary forms, with or without
  24. * modification, are permitted provided that the following conditions
  25. * are met:
  26. * 1. Redistributions of source code must retain the copyright
  27. * notice, this list of conditions and the following disclaimer.
  28. * 2. Redistributions in binary form must reproduce the above copyright
  29. * notice, this list of conditions and the following disclaimer in the
  30. * documentation and/or other materials provided with the distribution.
  31. * 3. All advertising materials mentioning features or use of this software
  32. * must display the following acknowledgement:
  33. * "This product includes cryptographic software written by
  34. * Eric Young (eay@cryptsoft.com)"
  35. * The word 'cryptographic' can be left out if the rouines from the library
  36. * being used are not cryptographic related :-).
  37. * 4. If you include any Windows specific code (or a derivative thereof) from
  38. * the apps directory (application code) you must include an acknowledgement:
  39. * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
  40. *
  41. * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  42. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  43. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  44. * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  45. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  46. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  47. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  49. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  50. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  51. * SUCH DAMAGE.
  52. *
  53. * The licence and distribution terms for any publically available version or
  54. * derivative of this code cannot be changed. i.e. this code cannot simply be
  55. * copied and put under another distribution licence
  56. * [including the GNU Public Licence.]
  57. */
  58. #include <stdio.h>
  59. #include "cryptlib.h"
  60. #include "bn_lcl.h"
  61. BN_ULONG BN_mod_word(const BIGNUM *a, BN_ULONG w)
  62. {
  63. #ifndef BN_LLONG
  64. BN_ULONG ret = 0;
  65. #else
  66. BN_ULLONG ret = 0;
  67. #endif
  68. int i;
  69. if (w == 0)
  70. return (BN_ULONG)-1;
  71. #ifndef BN_LLONG
  72. /*
  73. * If |w| is too long and we don't have BN_ULLONG then we need to fall
  74. * back to using BN_div_word
  75. */
  76. if (w > ((BN_ULONG)1 << BN_BITS4)) {
  77. BIGNUM *tmp = BN_dup(a);
  78. if (tmp == NULL)
  79. return (BN_ULONG)-1;
  80. ret = BN_div_word(tmp, w);
  81. BN_free(tmp);
  82. return ret;
  83. }
  84. #endif
  85. bn_check_top(a);
  86. w &= BN_MASK2;
  87. for (i = a->top - 1; i >= 0; i--) {
  88. #ifndef BN_LLONG
  89. /*
  90. * We can assume here that | w <= ((BN_ULONG)1 << BN_BITS4) | and so
  91. * | ret < ((BN_ULONG)1 << BN_BITS4) | and therefore the shifts here are
  92. * safe and will not overflow
  93. */
  94. ret = ((ret << BN_BITS4) | ((a->d[i] >> BN_BITS4) & BN_MASK2l)) % w;
  95. ret = ((ret << BN_BITS4) | (a->d[i] & BN_MASK2l)) % w;
  96. #else
  97. ret = (BN_ULLONG) (((ret << (BN_ULLONG) BN_BITS2) | a->d[i]) %
  98. (BN_ULLONG) w);
  99. #endif
  100. }
  101. return ((BN_ULONG)ret);
  102. }
  103. BN_ULONG BN_div_word(BIGNUM *a, BN_ULONG w)
  104. {
  105. BN_ULONG ret = 0;
  106. int i, j;
  107. bn_check_top(a);
  108. w &= BN_MASK2;
  109. if (!w)
  110. /* actually this an error (division by zero) */
  111. return (BN_ULONG)-1;
  112. if (a->top == 0)
  113. return 0;
  114. /* normalize input (so bn_div_words doesn't complain) */
  115. j = BN_BITS2 - BN_num_bits_word(w);
  116. w <<= j;
  117. if (!BN_lshift(a, a, j))
  118. return (BN_ULONG)-1;
  119. for (i = a->top - 1; i >= 0; i--) {
  120. BN_ULONG l, d;
  121. l = a->d[i];
  122. d = bn_div_words(ret, l, w);
  123. ret = (l - ((d * w) & BN_MASK2)) & BN_MASK2;
  124. a->d[i] = d;
  125. }
  126. if ((a->top > 0) && (a->d[a->top - 1] == 0))
  127. a->top--;
  128. ret >>= j;
  129. bn_check_top(a);
  130. return (ret);
  131. }
  132. int BN_add_word(BIGNUM *a, BN_ULONG w)
  133. {
  134. BN_ULONG l;
  135. int i;
  136. bn_check_top(a);
  137. w &= BN_MASK2;
  138. /* degenerate case: w is zero */
  139. if (!w)
  140. return 1;
  141. /* degenerate case: a is zero */
  142. if (BN_is_zero(a))
  143. return BN_set_word(a, w);
  144. /* handle 'a' when negative */
  145. if (a->neg) {
  146. a->neg = 0;
  147. i = BN_sub_word(a, w);
  148. if (!BN_is_zero(a))
  149. a->neg = !(a->neg);
  150. return (i);
  151. }
  152. for (i = 0; w != 0 && i < a->top; i++) {
  153. a->d[i] = l = (a->d[i] + w) & BN_MASK2;
  154. w = (w > l) ? 1 : 0;
  155. }
  156. if (w && i == a->top) {
  157. if (bn_wexpand(a, a->top + 1) == NULL)
  158. return 0;
  159. a->top++;
  160. a->d[i] = w;
  161. }
  162. bn_check_top(a);
  163. return (1);
  164. }
  165. int BN_sub_word(BIGNUM *a, BN_ULONG w)
  166. {
  167. int i;
  168. bn_check_top(a);
  169. w &= BN_MASK2;
  170. /* degenerate case: w is zero */
  171. if (!w)
  172. return 1;
  173. /* degenerate case: a is zero */
  174. if (BN_is_zero(a)) {
  175. i = BN_set_word(a, w);
  176. if (i != 0)
  177. BN_set_negative(a, 1);
  178. return i;
  179. }
  180. /* handle 'a' when negative */
  181. if (a->neg) {
  182. a->neg = 0;
  183. i = BN_add_word(a, w);
  184. a->neg = 1;
  185. return (i);
  186. }
  187. if ((a->top == 1) && (a->d[0] < w)) {
  188. a->d[0] = w - a->d[0];
  189. a->neg = 1;
  190. return (1);
  191. }
  192. i = 0;
  193. for (;;) {
  194. if (a->d[i] >= w) {
  195. a->d[i] -= w;
  196. break;
  197. } else {
  198. a->d[i] = (a->d[i] - w) & BN_MASK2;
  199. i++;
  200. w = 1;
  201. }
  202. }
  203. if ((a->d[i] == 0) && (i == (a->top - 1)))
  204. a->top--;
  205. bn_check_top(a);
  206. return (1);
  207. }
  208. int BN_mul_word(BIGNUM *a, BN_ULONG w)
  209. {
  210. BN_ULONG ll;
  211. bn_check_top(a);
  212. w &= BN_MASK2;
  213. if (a->top) {
  214. if (w == 0)
  215. BN_zero(a);
  216. else {
  217. ll = bn_mul_words(a->d, a->d, a->top, w);
  218. if (ll) {
  219. if (bn_wexpand(a, a->top + 1) == NULL)
  220. return (0);
  221. a->d[a->top++] = ll;
  222. }
  223. }
  224. }
  225. bn_check_top(a);
  226. return (1);
  227. }