SecT409Field
using Org.BouncyCastle.Math.Raw;
using System;
namespace Org.BouncyCastle.Math.EC.Custom.Sec
{
internal static class SecT409Field
{
private const ulong M25 = 33554431;
private const ulong M59 = 576460752303423487;
public static void Add(ulong[] x, ulong[] y, ulong[] z)
{
z[0] = (x[0] ^ y[0]);
z[1] = (x[1] ^ y[1]);
z[2] = (x[2] ^ y[2]);
z[3] = (x[3] ^ y[3]);
z[4] = (x[4] ^ y[4]);
z[5] = (x[5] ^ y[5]);
z[6] = (x[6] ^ y[6]);
}
public static void AddBothTo(ulong[] x, ulong[] y, ulong[] z)
{
z[0] ^= (x[0] ^ y[0]);
z[1] ^= (x[1] ^ y[1]);
z[2] ^= (x[2] ^ y[2]);
z[3] ^= (x[3] ^ y[3]);
z[4] ^= (x[4] ^ y[4]);
z[5] ^= (x[5] ^ y[5]);
z[6] ^= (x[6] ^ y[6]);
}
public static void AddExt(ulong[] xx, ulong[] yy, ulong[] zz)
{
for (int i = 0; i < 13; i++) {
zz[i] = (xx[i] ^ yy[i]);
}
}
public static void AddOne(ulong[] x, ulong[] z)
{
z[0] = (x[0] ^ 1);
z[1] = x[1];
z[2] = x[2];
z[3] = x[3];
z[4] = x[4];
z[5] = x[5];
z[6] = x[6];
}
public static void AddTo(ulong[] x, ulong[] z)
{
z[0] ^= x[0];
z[1] ^= x[1];
z[2] ^= x[2];
z[3] ^= x[3];
z[4] ^= x[4];
z[5] ^= x[5];
z[6] ^= x[6];
}
public static ulong[] FromBigInteger(BigInteger x)
{
return Nat.FromBigInteger64(409, x);
}
public static void HalfTrace(ulong[] x, ulong[] z)
{
ulong[] array = Nat.Create64(13);
Nat448.Copy64(x, z);
for (int i = 1; i < 409; i += 2) {
ImplSquare(z, array);
Reduce(array, z);
ImplSquare(z, array);
Reduce(array, z);
AddTo(x, z);
}
}
public static void Invert(ulong[] x, ulong[] z)
{
if (Nat448.IsZero64(x))
throw new InvalidOperationException();
ulong[] array = Nat448.Create64();
ulong[] array2 = Nat448.Create64();
ulong[] array3 = Nat448.Create64();
Square(x, array);
SquareN(array, 1, array2);
Multiply(array, array2, array);
SquareN(array2, 1, array2);
Multiply(array, array2, array);
SquareN(array, 3, array2);
Multiply(array, array2, array);
SquareN(array, 6, array2);
Multiply(array, array2, array);
SquareN(array, 12, array2);
Multiply(array, array2, array3);
SquareN(array3, 24, array);
SquareN(array, 24, array2);
Multiply(array, array2, array);
SquareN(array, 48, array2);
Multiply(array, array2, array);
SquareN(array, 96, array2);
Multiply(array, array2, array);
SquareN(array, 192, array2);
Multiply(array, array2, array);
Multiply(array, array3, z);
}
public static void Multiply(ulong[] x, ulong[] y, ulong[] z)
{
ulong[] array = Nat448.CreateExt64();
ImplMultiply(x, y, array);
Reduce(array, z);
}
public static void MultiplyAddToExt(ulong[] x, ulong[] y, ulong[] zz)
{
ulong[] array = Nat448.CreateExt64();
ImplMultiply(x, y, array);
AddExt(zz, array, zz);
}
public static void MultiplyExt(ulong[] x, ulong[] y, ulong[] zz)
{
Array.Clear(zz, 0, 10);
ImplMultiply(x, y, zz);
}
public static void Reduce(ulong[] xx, ulong[] z)
{
ulong num = xx[0];
ulong num2 = xx[1];
ulong num3 = xx[2];
ulong num4 = xx[3];
ulong num5 = xx[4];
ulong num6 = xx[5];
ulong num7 = xx[6];
ulong num8 = xx[7];
ulong num9 = xx[12];
num6 ^= num9 << 39;
num7 ^= ((num9 >> 25) ^ (num9 << 62));
ulong num10 = num8 ^ (num9 >> 2);
num9 = xx[11];
num5 ^= num9 << 39;
num6 ^= ((num9 >> 25) ^ (num9 << 62));
num7 ^= num9 >> 2;
num9 = xx[10];
num4 ^= num9 << 39;
num5 ^= ((num9 >> 25) ^ (num9 << 62));
num6 ^= num9 >> 2;
num9 = xx[9];
num3 ^= num9 << 39;
num4 ^= ((num9 >> 25) ^ (num9 << 62));
num5 ^= num9 >> 2;
num9 = xx[8];
num2 ^= num9 << 39;
num3 ^= ((num9 >> 25) ^ (num9 << 62));
num4 ^= num9 >> 2;
num9 = num10;
num ^= num9 << 39;
num2 ^= ((num9 >> 25) ^ (num9 << 62));
num3 ^= num9 >> 2;
ulong num11 = num7 >> 25;
z[0] = (num ^ num11);
z[1] = (num2 ^ (num11 << 23));
z[2] = num3;
z[3] = num4;
z[4] = num5;
z[5] = num6;
z[6] = (num7 & 33554431);
}
public static void Reduce39(ulong[] z, int zOff)
{
ulong num = z[zOff + 6];
ulong num2 = num >> 25;
z[zOff] ^= num2;
z[zOff + 1] ^= num2 << 23;
z[zOff + 6] = (num & 33554431);
}
public static void Sqrt(ulong[] x, ulong[] z)
{
ulong even;
ulong num = Interleave.Unshuffle(x[0], x[1], out even);
ulong even2;
ulong num2 = Interleave.Unshuffle(x[2], x[3], out even2);
ulong even3;
ulong num3 = Interleave.Unshuffle(x[4], x[5], out even3);
ulong even4;
ulong num4 = Interleave.Unshuffle(x[6], out even4);
z[0] = (even ^ (num << 44));
z[1] = (even2 ^ (num2 << 44) ^ (num >> 20));
z[2] = (even3 ^ (num3 << 44) ^ (num2 >> 20));
z[3] = (even4 ^ (num4 << 44) ^ (num3 >> 20) ^ (num << 13));
z[4] = ((num4 >> 20) ^ (num2 << 13) ^ (num >> 51));
z[5] = ((num3 << 13) ^ (num2 >> 51));
z[6] = ((num4 << 13) ^ (num3 >> 51));
}
public static void Square(ulong[] x, ulong[] z)
{
ulong[] array = Nat.Create64(13);
ImplSquare(x, array);
Reduce(array, z);
}
public static void SquareAddToExt(ulong[] x, ulong[] zz)
{
ulong[] array = Nat.Create64(13);
ImplSquare(x, array);
AddExt(zz, array, zz);
}
public static void SquareExt(ulong[] x, ulong[] zz)
{
ImplSquare(x, zz);
}
public static void SquareN(ulong[] x, int n, ulong[] z)
{
ulong[] array = Nat.Create64(13);
ImplSquare(x, array);
Reduce(array, z);
while (--n > 0) {
ImplSquare(z, array);
Reduce(array, z);
}
}
public static uint Trace(ulong[] x)
{
return (uint)((int)x[0] & 1);
}
private static void ImplCompactExt(ulong[] zz)
{
ulong num = zz[0];
ulong num2 = zz[1];
ulong num3 = zz[2];
ulong num4 = zz[3];
ulong num5 = zz[4];
ulong num6 = zz[5];
ulong num7 = zz[6];
ulong num8 = zz[7];
ulong num9 = zz[8];
ulong num10 = zz[9];
ulong num11 = zz[10];
ulong num12 = zz[11];
ulong num13 = zz[12];
ulong num14 = zz[13];
zz[0] = (num ^ (num2 << 59));
zz[1] = ((num2 >> 5) ^ (num3 << 54));
zz[2] = ((num3 >> 10) ^ (num4 << 49));
zz[3] = ((num4 >> 15) ^ (num5 << 44));
zz[4] = ((num5 >> 20) ^ (num6 << 39));
zz[5] = ((num6 >> 25) ^ (num7 << 34));
zz[6] = ((num7 >> 30) ^ (num8 << 29));
zz[7] = ((num8 >> 35) ^ (num9 << 24));
zz[8] = ((num9 >> 40) ^ (num10 << 19));
zz[9] = ((num10 >> 45) ^ (num11 << 14));
zz[10] = ((num11 >> 50) ^ (num12 << 9));
zz[11] = ((num12 >> 55) ^ (num13 << 4) ^ (num14 << 63));
zz[12] = num14 >> 1;
}
private static void ImplExpand(ulong[] x, ulong[] z)
{
ulong num = x[0];
ulong num2 = x[1];
ulong num3 = x[2];
ulong num4 = x[3];
ulong num5 = x[4];
ulong num6 = x[5];
ulong num7 = x[6];
z[0] = (num & 576460752303423487);
z[1] = (((num >> 59) ^ (num2 << 5)) & 576460752303423487);
z[2] = (((num2 >> 54) ^ (num3 << 10)) & 576460752303423487);
z[3] = (((num3 >> 49) ^ (num4 << 15)) & 576460752303423487);
z[4] = (((num4 >> 44) ^ (num5 << 20)) & 576460752303423487);
z[5] = (((num5 >> 39) ^ (num6 << 25)) & 576460752303423487);
z[6] = ((num6 >> 34) ^ (num7 << 30));
}
private static void ImplMultiply(ulong[] x, ulong[] y, ulong[] zz)
{
ulong[] array = new ulong[7];
ulong[] array2 = new ulong[7];
ImplExpand(x, array);
ImplExpand(y, array2);
ulong[] u = new ulong[8];
for (int i = 0; i < 7; i++) {
ImplMulwAcc(u, array[i], array2[i], zz, i << 1);
}
ulong num = zz[0];
ulong num2 = zz[1];
num ^= zz[2];
zz[1] = (num ^ num2);
num2 ^= zz[3];
num ^= zz[4];
zz[2] = (num ^ num2);
num2 ^= zz[5];
num ^= zz[6];
zz[3] = (num ^ num2);
num2 ^= zz[7];
num ^= zz[8];
zz[4] = (num ^ num2);
num2 ^= zz[9];
num ^= zz[10];
zz[5] = (num ^ num2);
num2 ^= zz[11];
num ^= zz[12];
zz[6] = (num ^ num2);
num2 ^= zz[13];
ulong num3 = num ^ num2;
zz[7] = (zz[0] ^ num3);
zz[8] = (zz[1] ^ num3);
zz[9] = (zz[2] ^ num3);
zz[10] = (zz[3] ^ num3);
zz[11] = (zz[4] ^ num3);
zz[12] = (zz[5] ^ num3);
zz[13] = (zz[6] ^ num3);
ImplMulwAcc(u, array[0] ^ array[1], array2[0] ^ array2[1], zz, 1);
ImplMulwAcc(u, array[0] ^ array[2], array2[0] ^ array2[2], zz, 2);
ImplMulwAcc(u, array[0] ^ array[3], array2[0] ^ array2[3], zz, 3);
ImplMulwAcc(u, array[1] ^ array[2], array2[1] ^ array2[2], zz, 3);
ImplMulwAcc(u, array[0] ^ array[4], array2[0] ^ array2[4], zz, 4);
ImplMulwAcc(u, array[1] ^ array[3], array2[1] ^ array2[3], zz, 4);
ImplMulwAcc(u, array[0] ^ array[5], array2[0] ^ array2[5], zz, 5);
ImplMulwAcc(u, array[1] ^ array[4], array2[1] ^ array2[4], zz, 5);
ImplMulwAcc(u, array[2] ^ array[3], array2[2] ^ array2[3], zz, 5);
ImplMulwAcc(u, array[0] ^ array[6], array2[0] ^ array2[6], zz, 6);
ImplMulwAcc(u, array[1] ^ array[5], array2[1] ^ array2[5], zz, 6);
ImplMulwAcc(u, array[2] ^ array[4], array2[2] ^ array2[4], zz, 6);
ImplMulwAcc(u, array[1] ^ array[6], array2[1] ^ array2[6], zz, 7);
ImplMulwAcc(u, array[2] ^ array[5], array2[2] ^ array2[5], zz, 7);
ImplMulwAcc(u, array[3] ^ array[4], array2[3] ^ array2[4], zz, 7);
ImplMulwAcc(u, array[2] ^ array[6], array2[2] ^ array2[6], zz, 8);
ImplMulwAcc(u, array[3] ^ array[5], array2[3] ^ array2[5], zz, 8);
ImplMulwAcc(u, array[3] ^ array[6], array2[3] ^ array2[6], zz, 9);
ImplMulwAcc(u, array[4] ^ array[5], array2[4] ^ array2[5], zz, 9);
ImplMulwAcc(u, array[4] ^ array[6], array2[4] ^ array2[6], zz, 10);
ImplMulwAcc(u, array[5] ^ array[6], array2[5] ^ array2[6], zz, 11);
ImplCompactExt(zz);
}
private static void ImplMulwAcc(ulong[] u, ulong x, ulong y, ulong[] z, int zOff)
{
u[1] = y;
u[2] = u[1] << 1;
u[3] = (u[2] ^ y);
u[4] = u[2] << 1;
u[5] = (u[4] ^ y);
u[6] = u[3] << 1;
u[7] = (u[6] ^ y);
uint num = (uint)x;
ulong num2 = 0;
ulong num3 = u[num & 7] ^ (u[(num >> 3) & 7] << 3);
int num4 = 54;
do {
num = (uint)(x >> num4);
ulong num5 = u[num & 7] ^ (u[(num >> 3) & 7] << 3);
num3 ^= num5 << num4;
num2 ^= num5 >> -num4;
} while ((num4 -= 6) > 0);
z[zOff] ^= (num3 & 576460752303423487);
z[zOff + 1] ^= ((num3 >> 59) ^ (num2 << 5));
}
private static void ImplSquare(ulong[] x, ulong[] zz)
{
zz[12] = Interleave.Expand32to64((uint)x[6]);
Interleave.Expand64To128(x, 0, 6, zz, 0);
}
}
}