poly1305_ctmul32.c - OpenGrok cross reference for /freebsd/contrib/bearssl/src/symcipher/poly1305

Lines Matching +full:5 +full:v
40 	 * Since we compute modulo 2^130-5, the "upper words" become  in poly1305_inner()
41 	 * low words with a factor of 5; that is, x*2^130 = x*5 mod p.  in poly1305_inner()
54 		unsigned u, v;  in poly1305_inner()  local
71 		v = br_dec16le(buf);  in poly1305_inner()
72 		a[0] += v & 0x01FFF;  in poly1305_inner()
73 		v >>= 13;  in poly1305_inner()
74 		v |= buf[2] << 3;  in poly1305_inner()
75 		v |= buf[3] << 11;  in poly1305_inner()
76 		a[1] += v & 0x01FFF;  in poly1305_inner()
77 		v >>= 13;  in poly1305_inner()
78 		v |= buf[4] << 6;  in poly1305_inner()
79 		a[2] += v & 0x01FFF;  in poly1305_inner()
80 		v >>= 13;  in poly1305_inner()
81 		v |= buf[5] << 1;  in poly1305_inner()
82 		v |= buf[6] << 9;  in poly1305_inner()
83 		a[3] += v & 0x01FFF;  in poly1305_inner()
84 		v >>= 13;  in poly1305_inner()
85 		v |= buf[7] << 4;  in poly1305_inner()
86 		v |= buf[8] << 12;  in poly1305_inner()
87 		a[4] += v & 0x01FFF;  in poly1305_inner()
88 		v >>= 13;  in poly1305_inner()
89 		v |= buf[9] << 7;  in poly1305_inner()
90 		a[5] += v & 0x01FFF;  in poly1305_inner()
91 		v >>= 13;  in poly1305_inner()
92 		v |= buf[10] << 2;  in poly1305_inner()
93 		v |= buf[11] << 10;  in poly1305_inner()
94 		a[6] += v & 0x01FFF;  in poly1305_inner()
95 		v >>= 13;  in poly1305_inner()
96 		v |= buf[12] << 5;  in poly1305_inner()
97 		a[7] += v & 0x01FFF;  in poly1305_inner()
98 		v = br_dec16le(buf + 13);  in poly1305_inner()
99 		a[8] += v & 0x01FFF;  in poly1305_inner()
100 		v >>= 13;  in poly1305_inner()
101 		v |= buf[15] << 3;  in poly1305_inner()
102 		a[9] += v | 0x00800;  in poly1305_inner()
116 		 * (they are 5 times a 13-bit word) so the full summation  in poly1305_inner()
140 				+ MUL15(a[5], r[u + 9 - 5])  in poly1305_inner()
151 		 * The two carries "loop back" with a factor of 5. We  in poly1305_inner()
217 	 * Extend r[] with the 5x factor pre-applied.  in br_poly1305_ctmul32_run()
220 		r[i] = MUL15(5, r[i + 10]);  in br_poly1305_ctmul32_run()
240 	 * and applying the '2^130 = -5 mod p' rule. Note that the output  in br_poly1305_ctmul32_run()
256 	 * We may still have a value in the 2^130-5..2^130-1 range, in  in br_poly1305_ctmul32_run()
282 	z = (z >> 16) + (acc[5] << 1) + (acc[6] << 14) + br_dec16le(pkey + 24);  in br_poly1305_ctmul32_run()
288 	z = (z >> 16) + (acc[9] << 5) + br_dec16le(pkey + 30);  in br_poly1305_ctmul32_run()