scalar_4x64_impl.h File Reference

#include "modinv64_impl.h"

Include dependency graph for scalar_4x64_impl.h:

Go to the source code of this file.

Macros
#define	SECP256K1_N_0   ((uint64_t)0xBFD25E8CD0364141ULL)
#define	SECP256K1_N_1   ((uint64_t)0xBAAEDCE6AF48A03BULL)
#define	SECP256K1_N_2   ((uint64_t)0xFFFFFFFFFFFFFFFEULL)
#define	SECP256K1_N_3   ((uint64_t)0xFFFFFFFFFFFFFFFFULL)
#define	SECP256K1_N_C_0   (~SECP256K1_N_0 + 1)
#define	SECP256K1_N_C_1   (~SECP256K1_N_1)
#define	SECP256K1_N_C_2   (1)
#define	SECP256K1_N_H_0   ((uint64_t)0xDFE92F46681B20A0ULL)
#define	SECP256K1_N_H_1   ((uint64_t)0x5D576E7357A4501DULL)
#define	SECP256K1_N_H_2   ((uint64_t)0xFFFFFFFFFFFFFFFFULL)
#define	SECP256K1_N_H_3   ((uint64_t)0x7FFFFFFFFFFFFFFFULL)
#define	muladd(a, b)
#define	muladd_fast(a, b)
#define	sumadd(a)
#define	sumadd_fast(a)
#define	extract(n)
#define	extract_fast(n)

Macro Definition Documentation

extract

#define extract

(

n

)

Value:

    { \
    (n) = c0; \
    c0 = c1; \
    c1 = c2; \
    c2 = 0; \
}

Extract the lowest 64 bits of (c0,c1,c2) into n, and left shift the number 64 bits.

Definition at line 235 of file scalar_4x64_impl.h.

#define extract(n) { \
    (n) = c0; \
    c0 = c1; \
    c1 = c2; \
    c2 = 0; \
}

extract_fast

#define extract_fast

(

n

)

Value:

    { \
    (n) = c0; \
    c0 = c1; \
    c1 = 0; \
    VERIFY_CHECK(c2 == 0); \
}

Extract the lowest 64 bits of (c0,c1,c2) into n, and left shift the number 64 bits. c2 is required to be zero.

Definition at line 243 of file scalar_4x64_impl.h.

#define extract_fast(n) { \
    (n) = c0; \
    c0 = c1; \
    c1 = 0; \
    VERIFY_CHECK(c2 == 0); \
}

muladd

#define muladd	(		a,
			b )

Value:

    { \
    uint64_t tl, th; \
    { \
        uint128_t t = (uint128_t)a * b; \
        th = t >> 64;         /* at most 0xFFFFFFFFFFFFFFFE */ \
        tl = t; \
    } \
    c0 += tl;                 /* overflow is handled on the next line */ \
    th += (c0 < tl);          /* at most 0xFFFFFFFFFFFFFFFF */ \
    c1 += th;                 /* overflow is handled on the next line */ \
    c2 += (c1 < th);          /* never overflows by contract (verified in the next line) */ \
    VERIFY_CHECK((c1 >= th) || (c2 != 0)); \
}

Add a*b to the number defined by (c0,c1,c2). c2 must never overflow.

Definition at line 189 of file scalar_4x64_impl.h.

#define muladd(a,b) { \
    uint64_t tl, th; \
    { \
        uint128_t t = (uint128_t)a * b; \
        th = t >> 64;         /* at most 0xFFFFFFFFFFFFFFFE */ \
        tl = t; \
    } \
    c0 += tl;                 /* overflow is handled on the next line */ \
    th += (c0 < tl);          /* at most 0xFFFFFFFFFFFFFFFF */ \
    c1 += th;                 /* overflow is handled on the next line */ \
    c2 += (c1 < th);          /* never overflows by contract (verified in the next line) */ \
    VERIFY_CHECK((c1 >= th) || (c2 != 0)); \
}

muladd_fast

#define muladd_fast	(		a,
			b )

Value:

    { \
    uint64_t tl, th; \
    { \
        uint128_t t = (uint128_t)a * b; \
        th = t >> 64;         /* at most 0xFFFFFFFFFFFFFFFE */ \
        tl = t; \
    } \
    c0 += tl;                 /* overflow is handled on the next line */ \
    th += (c0 < tl);          /* at most 0xFFFFFFFFFFFFFFFF */ \
    c1 += th;                 /* never overflows by contract (verified in the next line) */ \
    VERIFY_CHECK(c1 >= th); \
}

Add a*b to the number defined by (c0,c1). c1 must never overflow.

Definition at line 204 of file scalar_4x64_impl.h.

#define muladd_fast(a,b) { \
    uint64_t tl, th; \
    { \
        uint128_t t = (uint128_t)a * b; \
        th = t >> 64;         /* at most 0xFFFFFFFFFFFFFFFE */ \
        tl = t; \
    } \
    c0 += tl;                 /* overflow is handled on the next line */ \
    th += (c0 < tl);          /* at most 0xFFFFFFFFFFFFFFFF */ \
    c1 += th;                 /* never overflows by contract (verified in the next line) */ \
    VERIFY_CHECK(c1 >= th); \
}

SECP256K1_N_0

#define SECP256K1_N_0   ((uint64_t)0xBFD25E8CD0364141ULL)

Definition at line 13 of file scalar_4x64_impl.h.

SECP256K1_N_1

#define SECP256K1_N_1   ((uint64_t)0xBAAEDCE6AF48A03BULL)

Definition at line 14 of file scalar_4x64_impl.h.

SECP256K1_N_2

#define SECP256K1_N_2   ((uint64_t)0xFFFFFFFFFFFFFFFEULL)

Definition at line 15 of file scalar_4x64_impl.h.

SECP256K1_N_3

#define SECP256K1_N_3   ((uint64_t)0xFFFFFFFFFFFFFFFFULL)

Definition at line 16 of file scalar_4x64_impl.h.

SECP256K1_N_C_0

#define SECP256K1_N_C_0   (~SECP256K1_N_0 + 1)

Definition at line 19 of file scalar_4x64_impl.h.

SECP256K1_N_C_1

#define SECP256K1_N_C_1   (~SECP256K1_N_1)

Definition at line 20 of file scalar_4x64_impl.h.

SECP256K1_N_C_2

#define SECP256K1_N_C_2   (1)

Definition at line 21 of file scalar_4x64_impl.h.

SECP256K1_N_H_0

#define SECP256K1_N_H_0   ((uint64_t)0xDFE92F46681B20A0ULL)

Definition at line 24 of file scalar_4x64_impl.h.

SECP256K1_N_H_1

#define SECP256K1_N_H_1   ((uint64_t)0x5D576E7357A4501DULL)

Definition at line 25 of file scalar_4x64_impl.h.

SECP256K1_N_H_2

#define SECP256K1_N_H_2   ((uint64_t)0xFFFFFFFFFFFFFFFFULL)

Definition at line 26 of file scalar_4x64_impl.h.

SECP256K1_N_H_3

#define SECP256K1_N_H_3   ((uint64_t)0x7FFFFFFFFFFFFFFFULL)

Definition at line 27 of file scalar_4x64_impl.h.

sumadd

#define sumadd

(

a

)

Value:

    { \
    unsigned int over; \
    c0 += (a);                  /* overflow is handled on the next line */ \
    over = (c0 < (a));         \
    c1 += over;                 /* overflow is handled on the next line */ \
    c2 += (c1 < over);          /* never overflows by contract */ \
}

Add a to the number defined by (c0,c1,c2). c2 must never overflow.

Definition at line 218 of file scalar_4x64_impl.h.

#define sumadd(a) { \
    unsigned int over; \
    c0 += (a);                  /* overflow is handled on the next line */ \
    over = (c0 < (a));         \
    c1 += over;                 /* overflow is handled on the next line */ \
    c2 += (c1 < over);          /* never overflows by contract */ \
}

sumadd_fast

#define sumadd_fast

(

a

)

Value:

    { \
    c0 += (a);                 /* overflow is handled on the next line */ \
    c1 += (c0 < (a));          /* never overflows by contract (verified the next line) */ \
    VERIFY_CHECK((c1 != 0) | (c0 >= (a))); \
    VERIFY_CHECK(c2 == 0); \
}

Add a to the number defined by (c0,c1). c1 must never overflow, c2 must be zero.

Definition at line 227 of file scalar_4x64_impl.h.

#define sumadd_fast(a) { \
    c0 += (a);                 /* overflow is handled on the next line */ \
    c1 += (c0 < (a));          /* never overflows by contract (verified the next line) */ \
    VERIFY_CHECK((c1 != 0) | (c0 >= (a))); \
    VERIFY_CHECK(c2 == 0); \
}