<PackageReference Include="BouncyCastle.Cryptography" Version="2.6.2" />

Nat256

static class Nat256
using Org.BouncyCastle.Crypto.Utilities; using Org.BouncyCastle.Runtime.Intrinsics; using Org.BouncyCastle.Runtime.Intrinsics.X86; using System; using System.Runtime.InteropServices; using System.Runtime.Intrinsics; using System.Runtime.Intrinsics.X86; namespace Org.BouncyCastle.Math.Raw { internal static class Nat256 { private const ulong M = 4294967295; public static uint Add(uint[] x, uint[] y, uint[] z) { ulong num = 0; num = (ulong)((long)num + ((long)x[0] + (long)y[0])); z[0] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[1] + (long)y[1])); z[1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[2] + (long)y[2])); z[2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[3] + (long)y[3])); z[3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[4] + (long)y[4])); z[4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[5] + (long)y[5])); z[5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[6] + (long)y[6])); z[6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[7] + (long)y[7])); z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint Add(uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { ulong num = 0; num = (ulong)((long)num + ((long)x[xOff] + (long)y[yOff])); z[zOff] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 1] + (long)y[yOff + 1])); z[zOff + 1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 2] + (long)y[yOff + 2])); z[zOff + 2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 3] + (long)y[yOff + 3])); z[zOff + 3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 4] + (long)y[yOff + 4])); z[zOff + 4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 5] + (long)y[yOff + 5])); z[zOff + 5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 6] + (long)y[yOff + 6])); z[zOff + 6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 7] + (long)y[yOff + 7])); z[zOff + 7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddBothTo(uint[] x, uint[] y, uint[] z) { ulong num = 0; num = (ulong)((long)num + ((long)x[0] + (long)y[0] + z[0])); z[0] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[1] + (long)y[1] + z[1])); z[1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[2] + (long)y[2] + z[2])); z[2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[3] + (long)y[3] + z[3])); z[3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[4] + (long)y[4] + z[4])); z[4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[5] + (long)y[5] + z[5])); z[5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[6] + (long)y[6] + z[6])); z[6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[7] + (long)y[7] + z[7])); z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddBothTo(uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { ulong num = 0; num = (ulong)((long)num + ((long)x[xOff] + (long)y[yOff] + z[zOff])); z[zOff] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 1] + (long)y[yOff + 1] + z[zOff + 1])); z[zOff + 1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 2] + (long)y[yOff + 2] + z[zOff + 2])); z[zOff + 2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 3] + (long)y[yOff + 3] + z[zOff + 3])); z[zOff + 3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 4] + (long)y[yOff + 4] + z[zOff + 4])); z[zOff + 4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 5] + (long)y[yOff + 5] + z[zOff + 5])); z[zOff + 5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 6] + (long)y[yOff + 6] + z[zOff + 6])); z[zOff + 6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 7] + (long)y[yOff + 7] + z[zOff + 7])); z[zOff + 7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddTo(uint[] x, uint[] z, uint cIn) { ulong num = cIn; num = (ulong)((long)num + ((long)x[0] + (long)z[0])); z[0] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[1] + (long)z[1])); z[1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[2] + (long)z[2])); z[2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[3] + (long)z[3])); z[3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[4] + (long)z[4])); z[4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[5] + (long)z[5])); z[5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[6] + (long)z[6])); z[6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[7] + (long)z[7])); z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddTo(uint[] x, int xOff, uint[] z, int zOff, uint cIn) { ulong num = cIn; num = (ulong)((long)num + ((long)x[xOff] + (long)z[zOff])); z[zOff] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 1] + (long)z[zOff + 1])); z[zOff + 1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 2] + (long)z[zOff + 2])); z[zOff + 2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 3] + (long)z[zOff + 3])); z[zOff + 3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 4] + (long)z[zOff + 4])); z[zOff + 4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 5] + (long)z[zOff + 5])); z[zOff + 5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 6] + (long)z[zOff + 6])); z[zOff + 6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[xOff + 7] + (long)z[zOff + 7])); z[zOff + 7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddTo(ReadOnlySpan<uint> x, Span<uint> z, uint cIn) { ulong num = cIn; num = (ulong)((long)num + ((long)x[0] + (long)z[0])); z[0] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[1] + (long)z[1])); z[1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[2] + (long)z[2])); z[2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[3] + (long)z[3])); z[3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[4] + (long)z[4])); z[4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[5] + (long)z[5])); z[5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[6] + (long)z[6])); z[6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)x[7] + (long)z[7])); z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint AddToEachOther(uint[] u, int uOff, uint[] v, int vOff) { ulong num = 0; num = (ulong)((long)num + ((long)u[uOff] + (long)v[vOff])); u[uOff] = (uint)num; v[vOff] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 1] + (long)v[vOff + 1])); u[uOff + 1] = (uint)num; v[vOff + 1] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 2] + (long)v[vOff + 2])); u[uOff + 2] = (uint)num; v[vOff + 2] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 3] + (long)v[vOff + 3])); u[uOff + 3] = (uint)num; v[vOff + 3] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 4] + (long)v[vOff + 4])); u[uOff + 4] = (uint)num; v[vOff + 4] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 5] + (long)v[vOff + 5])); u[uOff + 5] = (uint)num; v[vOff + 5] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 6] + (long)v[vOff + 6])); u[uOff + 6] = (uint)num; v[vOff + 6] = (uint)num; num >>= 32; num = (ulong)((long)num + ((long)u[uOff + 7] + (long)v[vOff + 7])); u[uOff + 7] = (uint)num; v[vOff + 7] = (uint)num; num >>= 32; return (uint)num; } public static void Copy(uint[] x, uint[] z) { z[0] = x[0]; z[1] = x[1]; z[2] = x[2]; z[3] = x[3]; z[4] = x[4]; z[5] = x[5]; z[6] = x[6]; z[7] = x[7]; } public static void Copy(uint[] x, int xOff, uint[] z, int zOff) { z[zOff] = x[xOff]; z[zOff + 1] = x[xOff + 1]; z[zOff + 2] = x[xOff + 2]; z[zOff + 3] = x[xOff + 3]; z[zOff + 4] = x[xOff + 4]; z[zOff + 5] = x[xOff + 5]; z[zOff + 6] = x[xOff + 6]; z[zOff + 7] = x[xOff + 7]; } public static void Copy64(ulong[] x, ulong[] z) { z[0] = x[0]; z[1] = x[1]; z[2] = x[2]; z[3] = x[3]; } public static void Copy64(ulong[] x, int xOff, ulong[] z, int zOff) { z[zOff] = x[xOff]; z[zOff + 1] = x[xOff + 1]; z[zOff + 2] = x[xOff + 2]; z[zOff + 3] = x[xOff + 3]; } public static void Copy64(ReadOnlySpan<ulong> x, Span<ulong> z) { z[0] = x[0]; z[1] = x[1]; z[2] = x[2]; z[3] = x[3]; } public static uint[] Create() { return new uint[8]; } public static ulong[] Create64() { return new ulong[4]; } public static uint[] CreateExt() { return new uint[16]; } public static ulong[] CreateExt64() { return new ulong[8]; } public static bool Diff(uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { bool num = Gte(x, xOff, y, yOff); if (num) { Sub(x, xOff, y, yOff, z, zOff); return num; } Sub(y, yOff, x, xOff, z, zOff); return num; } public static bool Eq(uint[] x, uint[] y) { for (int num = 7; num >= 0; num--) { if (x[num] != y[num]) return false; } return true; } public static bool Eq64(ulong[] x, ulong[] y) { for (int num = 3; num >= 0; num--) { if (x[num] != y[num]) return false; } return true; } public static uint GetBit(uint[] x, int bit) { if (bit == 0) return x[0] & 1; if ((bit & 255) != bit) return 0; int num = bit >> 5; int num2 = bit & 31; return (x[num] >> num2) & 1; } public static bool Gte(uint[] x, uint[] y) { for (int num = 7; num >= 0; num--) { uint num2 = x[num]; uint num3 = y[num]; if (num2 < num3) return false; if (num2 > num3) return true; } return true; } public static bool Gte(uint[] x, int xOff, uint[] y, int yOff) { for (int num = 7; num >= 0; num--) { uint num2 = x[xOff + num]; uint num3 = y[yOff + num]; if (num2 < num3) return false; if (num2 > num3) return true; } return true; } public static bool Gte(ReadOnlySpan<uint> x, ReadOnlySpan<uint> y) { for (int num = 7; num >= 0; num--) { uint num2 = x[num]; uint num3 = y[num]; if (num2 < num3) return false; if (num2 > num3) return true; } return true; } public static bool IsOne(uint[] x) { if (x[0] != 1) return false; for (int i = 1; i < 8; i++) { if (x[i] != 0) return false; } return true; } public static bool IsOne64(ulong[] x) { if (x[0] != 1) return false; for (int i = 1; i < 4; i++) { if (x[i] != 0) return false; } return true; } public static bool IsZero(ReadOnlySpan<uint> x) { for (int i = 0; i < 8; i++) { if (x[i] != 0) return false; } return true; } public static bool IsZero64(ReadOnlySpan<ulong> x) { for (int i = 0; i < 4; i++) { if (x[i] != 0) return false; } return true; } public static void Mul(uint[] x, uint[] y, uint[] zz) { ulong num = y[0]; ulong num2 = y[1]; ulong num3 = y[2]; ulong num4 = y[3]; ulong num5 = y[4]; ulong num6 = y[5]; ulong num7 = y[6]; ulong num8 = y[7]; ulong num9 = 0; ulong num10 = x[0]; num9 += num10 * num; zz[0] = (uint)num9; num9 >>= 32; num9 += num10 * num2; zz[1] = (uint)num9; num9 >>= 32; num9 += num10 * num3; zz[2] = (uint)num9; num9 >>= 32; num9 += num10 * num4; zz[3] = (uint)num9; num9 >>= 32; num9 += num10 * num5; zz[4] = (uint)num9; num9 >>= 32; num9 += num10 * num6; zz[5] = (uint)num9; num9 >>= 32; num9 += num10 * num7; zz[6] = (uint)num9; num9 >>= 32; num9 += num10 * num8; zz[7] = (uint)num9; num9 >>= 32; zz[8] = (uint)num9; for (int i = 1; i < 8; i++) { ulong num11 = 0; ulong num12 = x[i]; num11 += num12 * num + zz[i]; zz[i] = (uint)num11; num11 >>= 32; num11 += num12 * num2 + zz[i + 1]; zz[i + 1] = (uint)num11; num11 >>= 32; num11 += num12 * num3 + zz[i + 2]; zz[i + 2] = (uint)num11; num11 >>= 32; num11 += num12 * num4 + zz[i + 3]; zz[i + 3] = (uint)num11; num11 >>= 32; num11 += num12 * num5 + zz[i + 4]; zz[i + 4] = (uint)num11; num11 >>= 32; num11 += num12 * num6 + zz[i + 5]; zz[i + 5] = (uint)num11; num11 >>= 32; num11 += num12 * num7 + zz[i + 6]; zz[i + 6] = (uint)num11; num11 >>= 32; num11 += num12 * num8 + zz[i + 7]; zz[i + 7] = (uint)num11; num11 >>= 32; zz[i + 8] = (uint)num11; } } public static void Mul(uint[] x, int xOff, uint[] y, int yOff, uint[] zz, int zzOff) { ulong num = y[yOff]; ulong num2 = y[yOff + 1]; ulong num3 = y[yOff + 2]; ulong num4 = y[yOff + 3]; ulong num5 = y[yOff + 4]; ulong num6 = y[yOff + 5]; ulong num7 = y[yOff + 6]; ulong num8 = y[yOff + 7]; ulong num9 = 0; ulong num10 = x[xOff]; num9 += num10 * num; zz[zzOff] = (uint)num9; num9 >>= 32; num9 += num10 * num2; zz[zzOff + 1] = (uint)num9; num9 >>= 32; num9 += num10 * num3; zz[zzOff + 2] = (uint)num9; num9 >>= 32; num9 += num10 * num4; zz[zzOff + 3] = (uint)num9; num9 >>= 32; num9 += num10 * num5; zz[zzOff + 4] = (uint)num9; num9 >>= 32; num9 += num10 * num6; zz[zzOff + 5] = (uint)num9; num9 >>= 32; num9 += num10 * num7; zz[zzOff + 6] = (uint)num9; num9 >>= 32; num9 += num10 * num8; zz[zzOff + 7] = (uint)num9; num9 >>= 32; zz[zzOff + 8] = (uint)num9; for (int i = 1; i < 8; i++) { zzOff++; ulong num11 = 0; ulong num12 = x[xOff + i]; num11 += num12 * num + zz[zzOff]; zz[zzOff] = (uint)num11; num11 >>= 32; num11 += num12 * num2 + zz[zzOff + 1]; zz[zzOff + 1] = (uint)num11; num11 >>= 32; num11 += num12 * num3 + zz[zzOff + 2]; zz[zzOff + 2] = (uint)num11; num11 >>= 32; num11 += num12 * num4 + zz[zzOff + 3]; zz[zzOff + 3] = (uint)num11; num11 >>= 32; num11 += num12 * num5 + zz[zzOff + 4]; zz[zzOff + 4] = (uint)num11; num11 >>= 32; num11 += num12 * num6 + zz[zzOff + 5]; zz[zzOff + 5] = (uint)num11; num11 >>= 32; num11 += num12 * num7 + zz[zzOff + 6]; zz[zzOff + 6] = (uint)num11; num11 >>= 32; num11 += num12 * num8 + zz[zzOff + 7]; zz[zzOff + 7] = (uint)num11; num11 >>= 32; zz[zzOff + 8] = (uint)num11; } } public static void Mul(ReadOnlySpan<uint> x, ReadOnlySpan<uint> y, Span<uint> zz) { ulong num = y[0]; ulong num2 = y[1]; ulong num3 = y[2]; ulong num4 = y[3]; ulong num5 = y[4]; ulong num6 = y[5]; ulong num7 = y[6]; ulong num8 = y[7]; ulong num9 = 0; ulong num10 = x[0]; num9 += num10 * num; zz[0] = (uint)num9; num9 >>= 32; num9 += num10 * num2; zz[1] = (uint)num9; num9 >>= 32; num9 += num10 * num3; zz[2] = (uint)num9; num9 >>= 32; num9 += num10 * num4; zz[3] = (uint)num9; num9 >>= 32; num9 += num10 * num5; zz[4] = (uint)num9; num9 >>= 32; num9 += num10 * num6; zz[5] = (uint)num9; num9 >>= 32; num9 += num10 * num7; zz[6] = (uint)num9; num9 >>= 32; num9 += num10 * num8; zz[7] = (uint)num9; num9 >>= 32; zz[8] = (uint)num9; for (int i = 1; i < 8; i++) { ulong num11 = 0; ulong num12 = x[i]; num11 += num12 * num + zz[i]; zz[i] = (uint)num11; num11 >>= 32; num11 += num12 * num2 + zz[i + 1]; zz[i + 1] = (uint)num11; num11 >>= 32; num11 += num12 * num3 + zz[i + 2]; zz[i + 2] = (uint)num11; num11 >>= 32; num11 += num12 * num4 + zz[i + 3]; zz[i + 3] = (uint)num11; num11 >>= 32; num11 += num12 * num5 + zz[i + 4]; zz[i + 4] = (uint)num11; num11 >>= 32; num11 += num12 * num6 + zz[i + 5]; zz[i + 5] = (uint)num11; num11 >>= 32; num11 += num12 * num7 + zz[i + 6]; zz[i + 6] = (uint)num11; num11 >>= 32; num11 += num12 * num8 + zz[i + 7]; zz[i + 7] = (uint)num11; num11 >>= 32; zz[i + 8] = (uint)num11; } } public static void Mul128(uint[] x, uint[] y128, uint[] zz) { ulong num = x[0]; ulong num2 = x[1]; ulong num3 = x[2]; ulong num4 = x[3]; ulong num5 = x[4]; ulong num6 = x[5]; ulong num7 = x[6]; ulong num8 = x[7]; ulong num9 = 0; ulong num10 = y128[0]; num9 += num10 * num; zz[0] = (uint)num9; num9 >>= 32; num9 += num10 * num2; zz[1] = (uint)num9; num9 >>= 32; num9 += num10 * num3; zz[2] = (uint)num9; num9 >>= 32; num9 += num10 * num4; zz[3] = (uint)num9; num9 >>= 32; num9 += num10 * num5; zz[4] = (uint)num9; num9 >>= 32; num9 += num10 * num6; zz[5] = (uint)num9; num9 >>= 32; num9 += num10 * num7; zz[6] = (uint)num9; num9 >>= 32; num9 += num10 * num8; zz[7] = (uint)num9; num9 >>= 32; zz[8] = (uint)num9; for (int i = 1; i < 4; i++) { ulong num11 = 0; ulong num12 = y128[i]; num11 += num12 * num + zz[i]; zz[i] = (uint)num11; num11 >>= 32; num11 += num12 * num2 + zz[i + 1]; zz[i + 1] = (uint)num11; num11 >>= 32; num11 += num12 * num3 + zz[i + 2]; zz[i + 2] = (uint)num11; num11 >>= 32; num11 += num12 * num4 + zz[i + 3]; zz[i + 3] = (uint)num11; num11 >>= 32; num11 += num12 * num5 + zz[i + 4]; zz[i + 4] = (uint)num11; num11 >>= 32; num11 += num12 * num6 + zz[i + 5]; zz[i + 5] = (uint)num11; num11 >>= 32; num11 += num12 * num7 + zz[i + 6]; zz[i + 6] = (uint)num11; num11 >>= 32; num11 += num12 * num8 + zz[i + 7]; zz[i + 7] = (uint)num11; num11 >>= 32; zz[i + 8] = (uint)num11; } } public static void Mul128(ReadOnlySpan<uint> x, ReadOnlySpan<uint> y128, Span<uint> zz) { ulong num = x[0]; ulong num2 = x[1]; ulong num3 = x[2]; ulong num4 = x[3]; ulong num5 = x[4]; ulong num6 = x[5]; ulong num7 = x[6]; ulong num8 = x[7]; ulong num9 = 0; ulong num10 = y128[0]; num9 += num10 * num; zz[0] = (uint)num9; num9 >>= 32; num9 += num10 * num2; zz[1] = (uint)num9; num9 >>= 32; num9 += num10 * num3; zz[2] = (uint)num9; num9 >>= 32; num9 += num10 * num4; zz[3] = (uint)num9; num9 >>= 32; num9 += num10 * num5; zz[4] = (uint)num9; num9 >>= 32; num9 += num10 * num6; zz[5] = (uint)num9; num9 >>= 32; num9 += num10 * num7; zz[6] = (uint)num9; num9 >>= 32; num9 += num10 * num8; zz[7] = (uint)num9; num9 >>= 32; zz[8] = (uint)num9; for (int i = 1; i < 4; i++) { ulong num11 = 0; ulong num12 = y128[i]; num11 += num12 * num + zz[i]; zz[i] = (uint)num11; num11 >>= 32; num11 += num12 * num2 + zz[i + 1]; zz[i + 1] = (uint)num11; num11 >>= 32; num11 += num12 * num3 + zz[i + 2]; zz[i + 2] = (uint)num11; num11 >>= 32; num11 += num12 * num4 + zz[i + 3]; zz[i + 3] = (uint)num11; num11 >>= 32; num11 += num12 * num5 + zz[i + 4]; zz[i + 4] = (uint)num11; num11 >>= 32; num11 += num12 * num6 + zz[i + 5]; zz[i + 5] = (uint)num11; num11 >>= 32; num11 += num12 * num7 + zz[i + 6]; zz[i + 6] = (uint)num11; num11 >>= 32; num11 += num12 * num8 + zz[i + 7]; zz[i + 7] = (uint)num11; num11 >>= 32; zz[i + 8] = (uint)num11; } } public static uint MulAddTo(uint[] x, uint[] y, uint[] zz) { ulong num = y[0]; ulong num2 = y[1]; ulong num3 = y[2]; ulong num4 = y[3]; ulong num5 = y[4]; ulong num6 = y[5]; ulong num7 = y[6]; ulong num8 = y[7]; ulong num9 = 0; for (int i = 0; i < 8; i++) { ulong num10 = 0; ulong num11 = x[i]; num10 += num11 * num + zz[i]; zz[i] = (uint)num10; num10 >>= 32; num10 += num11 * num2 + zz[i + 1]; zz[i + 1] = (uint)num10; num10 >>= 32; num10 += num11 * num3 + zz[i + 2]; zz[i + 2] = (uint)num10; num10 >>= 32; num10 += num11 * num4 + zz[i + 3]; zz[i + 3] = (uint)num10; num10 >>= 32; num10 += num11 * num5 + zz[i + 4]; zz[i + 4] = (uint)num10; num10 >>= 32; num10 += num11 * num6 + zz[i + 5]; zz[i + 5] = (uint)num10; num10 >>= 32; num10 += num11 * num7 + zz[i + 6]; zz[i + 6] = (uint)num10; num10 >>= 32; num10 += num11 * num8 + zz[i + 7]; zz[i + 7] = (uint)num10; num10 >>= 32; num9 += num10 + zz[i + 8]; zz[i + 8] = (uint)num9; num9 >>= 32; } return (uint)num9; } public static uint MulAddTo(uint[] x, int xOff, uint[] y, int yOff, uint[] zz, int zzOff) { ulong num = y[yOff]; ulong num2 = y[yOff + 1]; ulong num3 = y[yOff + 2]; ulong num4 = y[yOff + 3]; ulong num5 = y[yOff + 4]; ulong num6 = y[yOff + 5]; ulong num7 = y[yOff + 6]; ulong num8 = y[yOff + 7]; ulong num9 = 0; for (int i = 0; i < 8; i++) { ulong num10 = 0; ulong num11 = x[xOff + i]; num10 += num11 * num + zz[zzOff]; zz[zzOff] = (uint)num10; num10 >>= 32; num10 += num11 * num2 + zz[zzOff + 1]; zz[zzOff + 1] = (uint)num10; num10 >>= 32; num10 += num11 * num3 + zz[zzOff + 2]; zz[zzOff + 2] = (uint)num10; num10 >>= 32; num10 += num11 * num4 + zz[zzOff + 3]; zz[zzOff + 3] = (uint)num10; num10 >>= 32; num10 += num11 * num5 + zz[zzOff + 4]; zz[zzOff + 4] = (uint)num10; num10 >>= 32; num10 += num11 * num6 + zz[zzOff + 5]; zz[zzOff + 5] = (uint)num10; num10 >>= 32; num10 += num11 * num7 + zz[zzOff + 6]; zz[zzOff + 6] = (uint)num10; num10 >>= 32; num10 += num11 * num8 + zz[zzOff + 7]; zz[zzOff + 7] = (uint)num10; num10 >>= 32; num9 += num10 + zz[zzOff + 8]; zz[zzOff + 8] = (uint)num9; num9 >>= 32; zzOff++; } return (uint)num9; } public static uint MulAddTo(ReadOnlySpan<uint> x, ReadOnlySpan<uint> y, Span<uint> zz) { ulong num = y[0]; ulong num2 = y[1]; ulong num3 = y[2]; ulong num4 = y[3]; ulong num5 = y[4]; ulong num6 = y[5]; ulong num7 = y[6]; ulong num8 = y[7]; ulong num9 = 0; for (int i = 0; i < 8; i++) { ulong num10 = 0; ulong num11 = x[i]; num10 += num11 * num + zz[i]; zz[i] = (uint)num10; num10 >>= 32; num10 += num11 * num2 + zz[i + 1]; zz[i + 1] = (uint)num10; num10 >>= 32; num10 += num11 * num3 + zz[i + 2]; zz[i + 2] = (uint)num10; num10 >>= 32; num10 += num11 * num4 + zz[i + 3]; zz[i + 3] = (uint)num10; num10 >>= 32; num10 += num11 * num5 + zz[i + 4]; zz[i + 4] = (uint)num10; num10 >>= 32; num10 += num11 * num6 + zz[i + 5]; zz[i + 5] = (uint)num10; num10 >>= 32; num10 += num11 * num7 + zz[i + 6]; zz[i + 6] = (uint)num10; num10 >>= 32; num10 += num11 * num8 + zz[i + 7]; zz[i + 7] = (uint)num10; num10 >>= 32; num9 += num10 + zz[i + 8]; zz[i + 8] = (uint)num9; num9 >>= 32; } return (uint)num9; } public static ulong Mul33Add(uint w, uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { ulong num = 0; ulong num2 = w; ulong num3 = x[xOff]; num += num2 * num3 + y[yOff]; z[zOff] = (uint)num; num >>= 32; ulong num4 = x[xOff + 1]; num += num2 * num4 + num3 + y[yOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; ulong num5 = x[xOff + 2]; num += num2 * num5 + num4 + y[yOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; ulong num6 = x[xOff + 3]; num += num2 * num6 + num5 + y[yOff + 3]; z[zOff + 3] = (uint)num; num >>= 32; ulong num7 = x[xOff + 4]; num += num2 * num7 + num6 + y[yOff + 4]; z[zOff + 4] = (uint)num; num >>= 32; ulong num8 = x[xOff + 5]; num += num2 * num8 + num7 + y[yOff + 5]; z[zOff + 5] = (uint)num; num >>= 32; ulong num9 = x[xOff + 6]; num += num2 * num9 + num8 + y[yOff + 6]; z[zOff + 6] = (uint)num; num >>= 32; ulong num10 = x[xOff + 7]; num += num2 * num10 + num9 + y[yOff + 7]; z[zOff + 7] = (uint)num; num >>= 32; return num + num10; } public static uint MulByWord(uint x, uint[] z) { ulong num = 0; ulong num2 = x; num += num2 * z[0]; z[0] = (uint)num; num >>= 32; num += num2 * z[1]; z[1] = (uint)num; num >>= 32; num += num2 * z[2]; z[2] = (uint)num; num >>= 32; num += num2 * z[3]; z[3] = (uint)num; num >>= 32; num += num2 * z[4]; z[4] = (uint)num; num >>= 32; num += num2 * z[5]; z[5] = (uint)num; num >>= 32; num += num2 * z[6]; z[6] = (uint)num; num >>= 32; num += num2 * z[7]; z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint MulByWordAddTo(uint x, uint[] y, uint[] z) { ulong num = 0; ulong num2 = x; num += num2 * z[0] + y[0]; z[0] = (uint)num; num >>= 32; num += num2 * z[1] + y[1]; z[1] = (uint)num; num >>= 32; num += num2 * z[2] + y[2]; z[2] = (uint)num; num >>= 32; num += num2 * z[3] + y[3]; z[3] = (uint)num; num >>= 32; num += num2 * z[4] + y[4]; z[4] = (uint)num; num >>= 32; num += num2 * z[5] + y[5]; z[5] = (uint)num; num >>= 32; num += num2 * z[6] + y[6]; z[6] = (uint)num; num >>= 32; num += num2 * z[7] + y[7]; z[7] = (uint)num; num >>= 32; return (uint)num; } public static uint MulWordAddTo(uint x, uint[] y, int yOff, uint[] z, int zOff) { ulong num = 0; ulong num2 = x; num += num2 * y[yOff] + z[zOff]; z[zOff] = (uint)num; num >>= 32; num += num2 * y[yOff + 1] + z[zOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += num2 * y[yOff + 2] + z[zOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; num += num2 * y[yOff + 3] + z[zOff + 3]; z[zOff + 3] = (uint)num; num >>= 32; num += num2 * y[yOff + 4] + z[zOff + 4]; z[zOff + 4] = (uint)num; num >>= 32; num += num2 * y[yOff + 5] + z[zOff + 5]; z[zOff + 5] = (uint)num; num >>= 32; num += num2 * y[yOff + 6] + z[zOff + 6]; z[zOff + 6] = (uint)num; num >>= 32; num += num2 * y[yOff + 7] + z[zOff + 7]; z[zOff + 7] = (uint)num; num >>= 32; return (uint)num; } public static uint Mul33DWordAdd(uint x, ulong y, uint[] z, int zOff) { ulong num = 0; ulong num2 = x; ulong num3 = y & uint.MaxValue; num += num2 * num3 + z[zOff]; z[zOff] = (uint)num; num >>= 32; ulong num4 = y >> 32; num += num2 * num4 + num3 + z[zOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += num4 + z[zOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; num += z[zOff + 3]; z[zOff + 3] = (uint)num; num >>= 32; if (num != 0) return Nat.IncAt(8, z, zOff, 4); return 0; } public static uint Mul33WordAdd(uint x, uint y, uint[] z, int zOff) { ulong num = 0; ulong num2 = y; num += num2 * x + z[zOff]; z[zOff] = (uint)num; num >>= 32; num += num2 + z[zOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += z[zOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; if (num != 0) return Nat.IncAt(8, z, zOff, 3); return 0; } public static uint MulWordDwordAdd(uint x, ulong y, uint[] z, int zOff) { ulong num = 0; ulong num2 = x; num += num2 * y + z[zOff]; z[zOff] = (uint)num; num >>= 32; num += num2 * (y >> 32) + z[zOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += z[zOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; if (num != 0) return Nat.IncAt(8, z, zOff, 3); return 0; } public static uint MulWord(uint x, uint[] y, uint[] z, int zOff) { ulong num = 0; ulong num2 = x; int num3 = 0; do { num += num2 * y[num3]; z[zOff + num3] = (uint)num; num >>= 32; } while (++num3 < 8); return (uint)num; } public static void Square(uint[] x, uint[] zz) { ulong num = x[0]; uint num2 = 0; int num3 = 7; int num4 = 16; do { long num6 = x[num3--]; ulong num7 = (ulong)(num6 * num6); zz[--num4] = (uint)((int)(num2 << 31) | (int)(num7 >> 33)); zz[--num4] = (uint)(num7 >> 1); num2 = (uint)num7; } while (num3 > 0); ulong num8 = num * num; ulong num9 = (num2 << 31) | (num8 >> 33); zz[0] = (uint)num8; num2 = (uint)((int)(num8 >> 32) & 1); ulong num10 = x[1]; ulong num11 = zz[2]; num9 += num10 * num; uint num12 = (uint)num9; zz[1] = ((num12 << 1) | num2); num2 = num12 >> 31; num11 += num9 >> 32; ulong num13 = x[2]; ulong num14 = zz[3]; ulong num15 = zz[4]; num11 += num13 * num; num12 = (uint)num11; zz[2] = ((num12 << 1) | num2); num2 = num12 >> 31; num14 += (num11 >> 32) + num13 * num10; num15 += num14 >> 32; num14 &= uint.MaxValue; ulong num16 = x[3]; ulong num17 = zz[5] + (num15 >> 32); num15 &= uint.MaxValue; ulong num18 = zz[6] + (num17 >> 32); num17 &= uint.MaxValue; num14 += num16 * num; num12 = (uint)num14; zz[3] = ((num12 << 1) | num2); num2 = num12 >> 31; num15 += (num14 >> 32) + num16 * num10; num17 += (num15 >> 32) + num16 * num13; num15 &= uint.MaxValue; num18 += num17 >> 32; num17 &= uint.MaxValue; ulong num19 = x[4]; ulong num20 = zz[7] + (num18 >> 32); num18 &= uint.MaxValue; ulong num21 = zz[8] + (num20 >> 32); num20 &= uint.MaxValue; num15 += num19 * num; num12 = (uint)num15; zz[4] = ((num12 << 1) | num2); num2 = num12 >> 31; num17 += (num15 >> 32) + num19 * num10; num18 += (num17 >> 32) + num19 * num13; num17 &= uint.MaxValue; num20 += (num18 >> 32) + num19 * num16; num18 &= uint.MaxValue; num21 += num20 >> 32; num20 &= uint.MaxValue; ulong num22 = x[5]; ulong num23 = zz[9] + (num21 >> 32); num21 &= uint.MaxValue; ulong num24 = zz[10] + (num23 >> 32); num23 &= uint.MaxValue; num17 += num22 * num; num12 = (uint)num17; zz[5] = ((num12 << 1) | num2); num2 = num12 >> 31; num18 += (num17 >> 32) + num22 * num10; num20 += (num18 >> 32) + num22 * num13; num18 &= uint.MaxValue; num21 += (num20 >> 32) + num22 * num16; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num22 * num19; num21 &= uint.MaxValue; num24 += num23 >> 32; num23 &= uint.MaxValue; ulong num25 = x[6]; ulong num26 = zz[11] + (num24 >> 32); num24 &= uint.MaxValue; ulong num27 = zz[12] + (num26 >> 32); num26 &= uint.MaxValue; num18 += num25 * num; num12 = (uint)num18; zz[6] = ((num12 << 1) | num2); num2 = num12 >> 31; num20 += (num18 >> 32) + num25 * num10; num21 += (num20 >> 32) + num25 * num13; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num25 * num16; num21 &= uint.MaxValue; num24 += (num23 >> 32) + num25 * num19; num23 &= uint.MaxValue; num26 += (num24 >> 32) + num25 * num22; num24 &= uint.MaxValue; num27 += num26 >> 32; num26 &= uint.MaxValue; ulong num28 = x[7]; ulong num29 = zz[13] + (num27 >> 32); num27 &= uint.MaxValue; ulong num30 = zz[14] + (num29 >> 32); num29 &= uint.MaxValue; num20 += num28 * num; num12 = (uint)num20; zz[7] = ((num12 << 1) | num2); num2 = num12 >> 31; num21 += (num20 >> 32) + num28 * num10; num23 += (num21 >> 32) + num28 * num13; num24 += (num23 >> 32) + num28 * num16; num26 += (num24 >> 32) + num28 * num19; num27 += (num26 >> 32) + num28 * num22; num29 += (num27 >> 32) + num28 * num25; num30 += num29 >> 32; num12 = (uint)num21; zz[8] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num23; zz[9] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num24; zz[10] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num26; zz[11] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num27; zz[12] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num29; zz[13] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num30; zz[14] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)((int)zz[15] + (int)(num30 >> 32)); zz[15] = ((num12 << 1) | num2); } public static void Square(uint[] x, int xOff, uint[] zz, int zzOff) { ulong num = x[xOff]; uint num2 = 0; int num3 = 7; int num4 = 16; do { long num6 = x[xOff + num3--]; ulong num7 = (ulong)(num6 * num6); zz[zzOff + --num4] = (uint)((int)(num2 << 31) | (int)(num7 >> 33)); zz[zzOff + --num4] = (uint)(num7 >> 1); num2 = (uint)num7; } while (num3 > 0); ulong num8 = num * num; ulong num9 = (num2 << 31) | (num8 >> 33); zz[zzOff] = (uint)num8; num2 = (uint)((int)(num8 >> 32) & 1); ulong num10 = x[xOff + 1]; ulong num11 = zz[zzOff + 2]; num9 += num10 * num; uint num12 = (uint)num9; zz[zzOff + 1] = ((num12 << 1) | num2); num2 = num12 >> 31; num11 += num9 >> 32; ulong num13 = x[xOff + 2]; ulong num14 = zz[zzOff + 3]; ulong num15 = zz[zzOff + 4]; num11 += num13 * num; num12 = (uint)num11; zz[zzOff + 2] = ((num12 << 1) | num2); num2 = num12 >> 31; num14 += (num11 >> 32) + num13 * num10; num15 += num14 >> 32; num14 &= uint.MaxValue; ulong num16 = x[xOff + 3]; ulong num17 = zz[zzOff + 5] + (num15 >> 32); num15 &= uint.MaxValue; ulong num18 = zz[zzOff + 6] + (num17 >> 32); num17 &= uint.MaxValue; num14 += num16 * num; num12 = (uint)num14; zz[zzOff + 3] = ((num12 << 1) | num2); num2 = num12 >> 31; num15 += (num14 >> 32) + num16 * num10; num17 += (num15 >> 32) + num16 * num13; num15 &= uint.MaxValue; num18 += num17 >> 32; num17 &= uint.MaxValue; ulong num19 = x[xOff + 4]; ulong num20 = zz[zzOff + 7] + (num18 >> 32); num18 &= uint.MaxValue; ulong num21 = zz[zzOff + 8] + (num20 >> 32); num20 &= uint.MaxValue; num15 += num19 * num; num12 = (uint)num15; zz[zzOff + 4] = ((num12 << 1) | num2); num2 = num12 >> 31; num17 += (num15 >> 32) + num19 * num10; num18 += (num17 >> 32) + num19 * num13; num17 &= uint.MaxValue; num20 += (num18 >> 32) + num19 * num16; num18 &= uint.MaxValue; num21 += num20 >> 32; num20 &= uint.MaxValue; ulong num22 = x[xOff + 5]; ulong num23 = zz[zzOff + 9] + (num21 >> 32); num21 &= uint.MaxValue; ulong num24 = zz[zzOff + 10] + (num23 >> 32); num23 &= uint.MaxValue; num17 += num22 * num; num12 = (uint)num17; zz[zzOff + 5] = ((num12 << 1) | num2); num2 = num12 >> 31; num18 += (num17 >> 32) + num22 * num10; num20 += (num18 >> 32) + num22 * num13; num18 &= uint.MaxValue; num21 += (num20 >> 32) + num22 * num16; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num22 * num19; num21 &= uint.MaxValue; num24 += num23 >> 32; num23 &= uint.MaxValue; ulong num25 = x[xOff + 6]; ulong num26 = zz[zzOff + 11] + (num24 >> 32); num24 &= uint.MaxValue; ulong num27 = zz[zzOff + 12] + (num26 >> 32); num26 &= uint.MaxValue; num18 += num25 * num; num12 = (uint)num18; zz[zzOff + 6] = ((num12 << 1) | num2); num2 = num12 >> 31; num20 += (num18 >> 32) + num25 * num10; num21 += (num20 >> 32) + num25 * num13; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num25 * num16; num21 &= uint.MaxValue; num24 += (num23 >> 32) + num25 * num19; num23 &= uint.MaxValue; num26 += (num24 >> 32) + num25 * num22; num24 &= uint.MaxValue; num27 += num26 >> 32; num26 &= uint.MaxValue; ulong num28 = x[xOff + 7]; ulong num29 = zz[zzOff + 13] + (num27 >> 32); num27 &= uint.MaxValue; ulong num30 = zz[zzOff + 14] + (num29 >> 32); num29 &= uint.MaxValue; num20 += num28 * num; num12 = (uint)num20; zz[zzOff + 7] = ((num12 << 1) | num2); num2 = num12 >> 31; num21 += (num20 >> 32) + num28 * num10; num23 += (num21 >> 32) + num28 * num13; num24 += (num23 >> 32) + num28 * num16; num26 += (num24 >> 32) + num28 * num19; num27 += (num26 >> 32) + num28 * num22; num29 += (num27 >> 32) + num28 * num25; num30 += num29 >> 32; num12 = (uint)num21; zz[zzOff + 8] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num23; zz[zzOff + 9] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num24; zz[zzOff + 10] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num26; zz[zzOff + 11] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num27; zz[zzOff + 12] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num29; zz[zzOff + 13] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num30; zz[zzOff + 14] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)((int)zz[zzOff + 15] + (int)(num30 >> 32)); zz[zzOff + 15] = ((num12 << 1) | num2); } public static void Square(ReadOnlySpan<uint> x, Span<uint> zz) { ulong num = x[0]; uint num2 = 0; int num3 = 7; int num4 = 16; do { long num6 = x[num3--]; ulong num7 = (ulong)(num6 * num6); zz[--num4] = (uint)((int)(num2 << 31) | (int)(num7 >> 33)); zz[--num4] = (uint)(num7 >> 1); num2 = (uint)num7; } while (num3 > 0); ulong num8 = num * num; ulong num9 = (num2 << 31) | (num8 >> 33); zz[0] = (uint)num8; num2 = (uint)((int)(num8 >> 32) & 1); ulong num10 = x[1]; ulong num11 = zz[2]; num9 += num10 * num; uint num12 = (uint)num9; zz[1] = ((num12 << 1) | num2); num2 = num12 >> 31; num11 += num9 >> 32; ulong num13 = x[2]; ulong num14 = zz[3]; ulong num15 = zz[4]; num11 += num13 * num; num12 = (uint)num11; zz[2] = ((num12 << 1) | num2); num2 = num12 >> 31; num14 += (num11 >> 32) + num13 * num10; num15 += num14 >> 32; num14 &= uint.MaxValue; ulong num16 = x[3]; ulong num17 = zz[5] + (num15 >> 32); num15 &= uint.MaxValue; ulong num18 = zz[6] + (num17 >> 32); num17 &= uint.MaxValue; num14 += num16 * num; num12 = (uint)num14; zz[3] = ((num12 << 1) | num2); num2 = num12 >> 31; num15 += (num14 >> 32) + num16 * num10; num17 += (num15 >> 32) + num16 * num13; num15 &= uint.MaxValue; num18 += num17 >> 32; num17 &= uint.MaxValue; ulong num19 = x[4]; ulong num20 = zz[7] + (num18 >> 32); num18 &= uint.MaxValue; ulong num21 = zz[8] + (num20 >> 32); num20 &= uint.MaxValue; num15 += num19 * num; num12 = (uint)num15; zz[4] = ((num12 << 1) | num2); num2 = num12 >> 31; num17 += (num15 >> 32) + num19 * num10; num18 += (num17 >> 32) + num19 * num13; num17 &= uint.MaxValue; num20 += (num18 >> 32) + num19 * num16; num18 &= uint.MaxValue; num21 += num20 >> 32; num20 &= uint.MaxValue; ulong num22 = x[5]; ulong num23 = zz[9] + (num21 >> 32); num21 &= uint.MaxValue; ulong num24 = zz[10] + (num23 >> 32); num23 &= uint.MaxValue; num17 += num22 * num; num12 = (uint)num17; zz[5] = ((num12 << 1) | num2); num2 = num12 >> 31; num18 += (num17 >> 32) + num22 * num10; num20 += (num18 >> 32) + num22 * num13; num18 &= uint.MaxValue; num21 += (num20 >> 32) + num22 * num16; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num22 * num19; num21 &= uint.MaxValue; num24 += num23 >> 32; num23 &= uint.MaxValue; ulong num25 = x[6]; ulong num26 = zz[11] + (num24 >> 32); num24 &= uint.MaxValue; ulong num27 = zz[12] + (num26 >> 32); num26 &= uint.MaxValue; num18 += num25 * num; num12 = (uint)num18; zz[6] = ((num12 << 1) | num2); num2 = num12 >> 31; num20 += (num18 >> 32) + num25 * num10; num21 += (num20 >> 32) + num25 * num13; num20 &= uint.MaxValue; num23 += (num21 >> 32) + num25 * num16; num21 &= uint.MaxValue; num24 += (num23 >> 32) + num25 * num19; num23 &= uint.MaxValue; num26 += (num24 >> 32) + num25 * num22; num24 &= uint.MaxValue; num27 += num26 >> 32; num26 &= uint.MaxValue; ulong num28 = x[7]; ulong num29 = zz[13] + (num27 >> 32); num27 &= uint.MaxValue; ulong num30 = zz[14] + (num29 >> 32); num29 &= uint.MaxValue; num20 += num28 * num; num12 = (uint)num20; zz[7] = ((num12 << 1) | num2); num2 = num12 >> 31; num21 += (num20 >> 32) + num28 * num10; num23 += (num21 >> 32) + num28 * num13; num24 += (num23 >> 32) + num28 * num16; num26 += (num24 >> 32) + num28 * num19; num27 += (num26 >> 32) + num28 * num22; num29 += (num27 >> 32) + num28 * num25; num30 += num29 >> 32; num12 = (uint)num21; zz[8] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num23; zz[9] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num24; zz[10] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num26; zz[11] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num27; zz[12] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num29; zz[13] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)num30; zz[14] = ((num12 << 1) | num2); num2 = num12 >> 31; num12 = (uint)((int)zz[15] + (int)(num30 >> 32)); zz[15] = ((num12 << 1) | num2); } public static int Sub(uint[] x, uint[] y, uint[] z) { long num = 0; num += (long)x[0] - (long)y[0]; z[0] = (uint)num; num >>= 32; num += (long)x[1] - (long)y[1]; z[1] = (uint)num; num >>= 32; num += (long)x[2] - (long)y[2]; z[2] = (uint)num; num >>= 32; num += (long)x[3] - (long)y[3]; z[3] = (uint)num; num >>= 32; num += (long)x[4] - (long)y[4]; z[4] = (uint)num; num >>= 32; num += (long)x[5] - (long)y[5]; z[5] = (uint)num; num >>= 32; num += (long)x[6] - (long)y[6]; z[6] = (uint)num; num >>= 32; num += (long)x[7] - (long)y[7]; z[7] = (uint)num; num >>= 32; return (int)num; } public static int Sub(uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { long num = 0; num += (long)x[xOff] - (long)y[yOff]; z[zOff] = (uint)num; num >>= 32; num += (long)x[xOff + 1] - (long)y[yOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += (long)x[xOff + 2] - (long)y[yOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; num += (long)x[xOff + 3] - (long)y[yOff + 3]; z[zOff + 3] = (uint)num; num >>= 32; num += (long)x[xOff + 4] - (long)y[yOff + 4]; z[zOff + 4] = (uint)num; num >>= 32; num += (long)x[xOff + 5] - (long)y[yOff + 5]; z[zOff + 5] = (uint)num; num >>= 32; num += (long)x[xOff + 6] - (long)y[yOff + 6]; z[zOff + 6] = (uint)num; num >>= 32; num += (long)x[xOff + 7] - (long)y[yOff + 7]; z[zOff + 7] = (uint)num; num >>= 32; return (int)num; } public static int SubBothFrom(uint[] x, uint[] y, uint[] z) { long num = 0; num += (long)z[0] - (long)x[0] - y[0]; z[0] = (uint)num; num >>= 32; num += (long)z[1] - (long)x[1] - y[1]; z[1] = (uint)num; num >>= 32; num += (long)z[2] - (long)x[2] - y[2]; z[2] = (uint)num; num >>= 32; num += (long)z[3] - (long)x[3] - y[3]; z[3] = (uint)num; num >>= 32; num += (long)z[4] - (long)x[4] - y[4]; z[4] = (uint)num; num >>= 32; num += (long)z[5] - (long)x[5] - y[5]; z[5] = (uint)num; num >>= 32; num += (long)z[6] - (long)x[6] - y[6]; z[6] = (uint)num; num >>= 32; num += (long)z[7] - (long)x[7] - y[7]; z[7] = (uint)num; num >>= 32; return (int)num; } public static int SubFrom(uint[] x, uint[] z, int cIn) { long num = cIn; num += (long)z[0] - (long)x[0]; z[0] = (uint)num; num >>= 32; num += (long)z[1] - (long)x[1]; z[1] = (uint)num; num >>= 32; num += (long)z[2] - (long)x[2]; z[2] = (uint)num; num >>= 32; num += (long)z[3] - (long)x[3]; z[3] = (uint)num; num >>= 32; num += (long)z[4] - (long)x[4]; z[4] = (uint)num; num >>= 32; num += (long)z[5] - (long)x[5]; z[5] = (uint)num; num >>= 32; num += (long)z[6] - (long)x[6]; z[6] = (uint)num; num >>= 32; num += (long)z[7] - (long)x[7]; z[7] = (uint)num; num >>= 32; return (int)num; } public static int SubFrom(uint[] x, int xOff, uint[] z, int zOff, int cIn) { long num = cIn; num += (long)z[zOff] - (long)x[xOff]; z[zOff] = (uint)num; num >>= 32; num += (long)z[zOff + 1] - (long)x[xOff + 1]; z[zOff + 1] = (uint)num; num >>= 32; num += (long)z[zOff + 2] - (long)x[xOff + 2]; z[zOff + 2] = (uint)num; num >>= 32; num += (long)z[zOff + 3] - (long)x[xOff + 3]; z[zOff + 3] = (uint)num; num >>= 32; num += (long)z[zOff + 4] - (long)x[xOff + 4]; z[zOff + 4] = (uint)num; num >>= 32; num += (long)z[zOff + 5] - (long)x[xOff + 5]; z[zOff + 5] = (uint)num; num >>= 32; num += (long)z[zOff + 6] - (long)x[xOff + 6]; z[zOff + 6] = (uint)num; num >>= 32; num += (long)z[zOff + 7] - (long)x[xOff + 7]; z[zOff + 7] = (uint)num; num >>= 32; return (int)num; } public static int SubFrom(ReadOnlySpan<uint> x, Span<uint> z, int cIn) { long num = cIn; num += (long)z[0] - (long)x[0]; z[0] = (uint)num; num >>= 32; num += (long)z[1] - (long)x[1]; z[1] = (uint)num; num >>= 32; num += (long)z[2] - (long)x[2]; z[2] = (uint)num; num >>= 32; num += (long)z[3] - (long)x[3]; z[3] = (uint)num; num >>= 32; num += (long)z[4] - (long)x[4]; z[4] = (uint)num; num >>= 32; num += (long)z[5] - (long)x[5]; z[5] = (uint)num; num >>= 32; num += (long)z[6] - (long)x[6]; z[6] = (uint)num; num >>= 32; num += (long)z[7] - (long)x[7]; z[7] = (uint)num; num >>= 32; return (int)num; } public static BigInteger ToBigInteger(uint[] x) { byte[] array = new byte[32]; for (int i = 0; i < 8; i++) { uint num = x[i]; if (num != 0) Pack.UInt32_To_BE(num, array, 7 - i << 2); } return new BigInteger(1, array); } public static BigInteger ToBigInteger64(ulong[] x) { byte[] array = new byte[32]; for (int i = 0; i < 4; i++) { ulong num = x[i]; if (num != 0) Pack.UInt64_To_BE(num, array, 3 - i << 3); } return new BigInteger(1, array); } public static void Xor(uint[] x, int xOff, uint[] y, int yOff, uint[] z, int zOff) { Xor(x.AsSpan(xOff), y.AsSpan(yOff), z.AsSpan(zOff)); } public static void Xor(ReadOnlySpan<uint> x, ReadOnlySpan<uint> y, Span<uint> z) { if (Org.BouncyCastle.Runtime.Intrinsics.X86.Avx2.IsEnabled && Vector.IsPacked) { ReadOnlySpan<byte> readOnlySpan = MemoryMarshal.AsBytes(x.Slice(0, 8)); ReadOnlySpan<byte> readOnlySpan2 = MemoryMarshal.AsBytes(y.Slice(0, 8)); Span<byte> span = MemoryMarshal.AsBytes(z.Slice(0, 8)); Vector256<byte> left = MemoryMarshal.Read<Vector256<byte>>(readOnlySpan.Slice(0, 32)); Vector256<byte> right = MemoryMarshal.Read<Vector256<byte>>(readOnlySpan2.Slice(0, 32)); Vector256<byte> value = System.Runtime.Intrinsics.X86.Avx2.Xor(left, right); MemoryMarshal.Write(span.Slice(0, 32), ref value); } else if (Org.BouncyCastle.Runtime.Intrinsics.X86.Sse2.IsEnabled && Vector.IsPacked) { ReadOnlySpan<byte> readOnlySpan3 = MemoryMarshal.AsBytes(x.Slice(0, 8)); ReadOnlySpan<byte> readOnlySpan4 = MemoryMarshal.AsBytes(y.Slice(0, 8)); Span<byte> span2 = MemoryMarshal.AsBytes(z.Slice(0, 8)); Vector128<byte> left2 = MemoryMarshal.Read<Vector128<byte>>(readOnlySpan3.Slice(0, 16)); Vector128<byte> left3 = MemoryMarshal.Read<Vector128<byte>>(readOnlySpan3.Slice(16, 16)); Vector128<byte> right2 = MemoryMarshal.Read<Vector128<byte>>(readOnlySpan4.Slice(0, 16)); Vector128<byte> right3 = MemoryMarshal.Read<Vector128<byte>>(readOnlySpan4.Slice(16, 16)); Vector128<byte> value2 = System.Runtime.Intrinsics.X86.Sse2.Xor(left2, right2); Vector128<byte> value3 = System.Runtime.Intrinsics.X86.Sse2.Xor(left3, right3); MemoryMarshal.Write(span2.Slice(0, 16), ref value2); MemoryMarshal.Write(span2.Slice(16, 16), ref value3); } else { for (int i = 0; i < 8; i += 4) { z[i] = (x[i] ^ y[i]); z[i + 1] = (x[i + 1] ^ y[i + 1]); z[i + 2] = (x[i + 2] ^ y[i + 2]); z[i + 3] = (x[i + 3] ^ y[i + 3]); } } } public static void Zero(uint[] z) { z[0] = 0; z[1] = 0; z[2] = 0; z[3] = 0; z[4] = 0; z[5] = 0; z[6] = 0; z[7] = 0; } } }