Lines Matching refs:EG
45 ret = ec_edwards_crv_check_initialized(curve); EG(ret, err); in aff_pt_edwards_init()
47 ret = fp_init(&(in->x), curve->a.ctx); EG(ret, err); in aff_pt_edwards_init()
48 ret = fp_init(&(in->y), curve->a.ctx); EG(ret, err); in aff_pt_edwards_init()
69 ret = aff_pt_edwards_init(in, curve); EG(ret, err); in aff_pt_edwards_init_from_coords()
70 ret = fp_copy(&(in->x), xcoord); EG(ret, err); in aff_pt_edwards_init_from_coords()
113 ret = ec_edwards_crv_check_initialized(curve); EG(ret, err); in is_on_edwards_curve()
115 ret = fp_check_initialized(x); EG(ret, err); in is_on_edwards_curve()
116 ret = fp_check_initialized(y); EG(ret, err); in is_on_edwards_curve()
121 ret = fp_init(&x2, x->ctx); EG(ret, err); in is_on_edwards_curve()
122 ret = fp_sqr(&x2, x); EG(ret, err); in is_on_edwards_curve()
123 ret = fp_init(&y2, x->ctx); EG(ret, err); in is_on_edwards_curve()
124 ret = fp_sqr(&y2, y); EG(ret, err); in is_on_edwards_curve()
126 ret = fp_init(&tmp1, x->ctx); EG(ret, err); in is_on_edwards_curve()
127 ret = fp_init(&tmp2, x->ctx); EG(ret, err); in is_on_edwards_curve()
129 ret = fp_mul(&tmp1, &x2, &y2); EG(ret, err); in is_on_edwards_curve()
130 ret = fp_mul(&tmp1, &tmp1, &(curve->d)); EG(ret, err); in is_on_edwards_curve()
131 ret = fp_inc(&tmp1, &tmp1); EG(ret, err); in is_on_edwards_curve()
133 ret = fp_mul(&tmp2, &x2, &(curve->a)); EG(ret, err); in is_on_edwards_curve()
134 ret = fp_add(&tmp2, &tmp2, &y2); EG(ret, err); in is_on_edwards_curve()
161 ret = aff_pt_edwards_check_initialized(pt); EG(ret, err); in aff_pt_edwards_is_on_curve()
178 ret = aff_pt_edwards_check_initialized(in); EG(ret, err); in ec_edwards_aff_copy()
179 ret = aff_pt_edwards_init(out, in->crv); EG(ret, err); in ec_edwards_aff_copy()
181 ret = fp_copy(&(out->x), &(in->x)); EG(ret, err); in ec_edwards_aff_copy()
200 ret = aff_pt_edwards_check_initialized(in1); EG(ret, err); in ec_edwards_aff_cmp()
201 ret = aff_pt_edwards_check_initialized(in2); EG(ret, err); in ec_edwards_aff_cmp()
205 ret = fp_cmp(&(in1->x), &(in2->x), &cmp1); EG(ret, err); in ec_edwards_aff_cmp()
233 ret = ec_edwards_crv_check_initialized(crv); EG(ret, err); in aff_pt_edwards_import_from_buf()
241 ret = fp_init_from_buf(&(pt->x), ctx, pt_buf, coord_len); EG(ret, err); in aff_pt_edwards_import_from_buf()
242 ret = fp_init_from_buf(&(pt->y), ctx, pt_buf + coord_len, coord_len); EG(ret, err); in aff_pt_edwards_import_from_buf()
253 ret = aff_pt_edwards_is_on_curve(pt, &on_curve); EG(ret, err); in aff_pt_edwards_import_from_buf()
279 ret = aff_pt_edwards_check_initialized(pt); EG(ret, err); in aff_pt_edwards_export_to_buf()
283 ret = aff_pt_edwards_is_on_curve(pt, &on_curve); EG(ret, err); in aff_pt_edwards_export_to_buf()
292 ret = fp_export_to_buf(pt_buf, coord_len, &(pt->x)); EG(ret, err); in aff_pt_edwards_export_to_buf()
316 ret = ec_edwards_crv_check_initialized(edwards_crv); EG(ret, err); in curve_edwards_to_montgomery()
317 ret = fp_check_initialized(alpha_edwards); EG(ret, err); in curve_edwards_to_montgomery()
320 ret = fp_init(&tmp1, edwards_crv->a.ctx); EG(ret, err); in curve_edwards_to_montgomery()
321 ret = fp_init(&tmp2, edwards_crv->a.ctx); EG(ret, err); in curve_edwards_to_montgomery()
322 ret = fp_init(&A, edwards_crv->a.ctx); EG(ret, err); in curve_edwards_to_montgomery()
323 ret = fp_init(&B, edwards_crv->a.ctx); EG(ret, err); in curve_edwards_to_montgomery()
331 ret = fp_sqr(&tmp1, alpha_edwards); EG(ret, err); in curve_edwards_to_montgomery()
332 ret = fp_sub(&tmp2, &(edwards_crv->a), &(edwards_crv->d)); EG(ret, err); in curve_edwards_to_montgomery()
333 ret = fp_mul(&tmp2, &tmp2, &tmp1); EG(ret, err); in curve_edwards_to_montgomery()
334 ret = fp_inv(&tmp2, &tmp2); EG(ret, err); in curve_edwards_to_montgomery()
335 ret = fp_set_word_value(&B, WORD(2)); EG(ret, err); in curve_edwards_to_montgomery()
336 ret = fp_mul(&tmp2, &tmp2, &B); EG(ret, err); in curve_edwards_to_montgomery()
338 ret = fp_add(&A, &(edwards_crv->a), &(edwards_crv->d)); EG(ret, err); in curve_edwards_to_montgomery()
339 ret = fp_mul(&A, &A, &tmp1); EG(ret, err); in curve_edwards_to_montgomery()
340 ret = fp_mul(&A, &A, &tmp2); EG(ret, err); in curve_edwards_to_montgomery()
341 ret = fp_mul(&B, &B, &tmp2); EG(ret, err); in curve_edwards_to_montgomery()
368 ret = ec_montgomery_crv_check_initialized(m_crv); EG(ret, err); in curve_edwards_montgomery_check()
369 ret = curve_edwards_to_montgomery(e_crv, &check, alpha_edwards); EG(ret, err); in curve_edwards_montgomery_check()
401 ret = ec_montgomery_crv_check_initialized(m_crv); EG(ret, err); in curve_montgomery_to_edwards()
402 ret = fp_check_initialized(alpha_edwards); EG(ret, err); in curve_montgomery_to_edwards()
405 ret = fp_init(&tmp, m_crv->A.ctx); EG(ret, err); in curve_montgomery_to_edwards()
406 ret = fp_init(&tmp2, m_crv->A.ctx); EG(ret, err); in curve_montgomery_to_edwards()
407 ret = fp_init(&a, m_crv->A.ctx); EG(ret, err); in curve_montgomery_to_edwards()
408 ret = fp_init(&d, m_crv->A.ctx); EG(ret, err); in curve_montgomery_to_edwards()
410 ret = fp_set_word_value(&tmp, WORD(2)); EG(ret, err); in curve_montgomery_to_edwards()
411 ret = fp_mul(&tmp2, &(m_crv->B), alpha_edwards); EG(ret, err); in curve_montgomery_to_edwards()
412 ret = fp_mul(&tmp2, &tmp2, alpha_edwards); EG(ret, err); in curve_montgomery_to_edwards()
413 ret = fp_inv(&tmp2, &tmp2); EG(ret, err); in curve_montgomery_to_edwards()
416 ret = fp_add(&a, &(m_crv->A), &tmp); EG(ret, err); in curve_montgomery_to_edwards()
417 ret = fp_mul(&a, &a, &tmp2); EG(ret, err); in curve_montgomery_to_edwards()
420 ret = fp_sub(&d, &(m_crv->A), &tmp); EG(ret, err); in curve_montgomery_to_edwards()
421 ret = fp_mul(&d, &d, &tmp2); EG(ret, err); in curve_montgomery_to_edwards()
425 ret = fp_one(&tmp); EG(ret, err); in curve_montgomery_to_edwards()
426 ret = fp_cmp(&d, &tmp, &cmp); EG(ret, err); in curve_montgomery_to_edwards()
455 ret = curve_edwards_to_montgomery(edwards_crv, &montgomery_crv, alpha_edwards); EG(ret, err); in curve_edwards_to_shortw()
476 ret = curve_edwards_to_montgomery(edwards_crv, &montgomery_crv, alpha_edwards); EG(ret, err); in curve_edwards_shortw_check()
501 …hortw_to_montgomery(shortw_crv, &montgomery_crv, alpha_montgomery, gamma_montgomery); EG(ret, err); in curve_shortw_to_edwards()
539 ret = ec_montgomery_crv_check_initialized(montgomery_crv); EG(ret, err); in aff_pt_edwards_to_montgomery()
542 ret = aff_pt_edwards_is_on_curve(in_edwards, &on_curve); EG(ret, err); in aff_pt_edwards_to_montgomery()
545 ret = curve_edwards_montgomery_check(in_edwards->crv, montgomery_crv, alpha_edwards); EG(ret, err); in aff_pt_edwards_to_montgomery()
547 ret = fp_init(&tmp, in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
548 ret = fp_init(&tmp2, in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
549 ret = fp_init(&x, in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
550 ret = fp_init(&y, in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
551 ret = fp_init(&tab_x[0], in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
552 ret = fp_init(&tab_x[1], in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
553 ret = fp_init(&tab_y[0], in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
554 ret = fp_init(&tab_y[1], in_edwards->crv->a.ctx); EG(ret, err); in aff_pt_edwards_to_montgomery()
556 ret = fp_one(&tmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
558 ret = fp_iszero(&(in_edwards->x), &iszero); EG(ret, err); in aff_pt_edwards_to_montgomery()
559 ret = fp_cmp(&(in_edwards->y), &tmp, &cmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
562 ret = fp_zero(&tmp2); EG(ret, err); in aff_pt_edwards_to_montgomery()
563 ret = fp_sub(&tmp2, &tmp2, &tmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
565 ret = fp_one(&tab_x[0]); EG(ret, err); in aff_pt_edwards_to_montgomery()
566 ret = fp_copy(&tab_x[1], &(in_edwards->x)); EG(ret, err); in aff_pt_edwards_to_montgomery()
568 ret = fp_copy(&tab_y[0], &tmp2); EG(ret, err); in aff_pt_edwards_to_montgomery()
569 ret = fp_copy(&tab_y[1], &(in_edwards->y)); EG(ret, err); in aff_pt_edwards_to_montgomery()
571 ret = fp_iszero(&(in_edwards->x), &iszero); EG(ret, err); in aff_pt_edwards_to_montgomery()
572 ret = fp_cmp(&(in_edwards->y), &tmp2, &cmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
574 ret = fp_tabselect(&x, idx, tab_x_t, 2); EG(ret, err); in aff_pt_edwards_to_montgomery()
575 ret = fp_tabselect(&y, idx, tab_y_t, 2); EG(ret, err); in aff_pt_edwards_to_montgomery()
577 ret = aff_pt_montgomery_init(out_montgomery, montgomery_crv); EG(ret, err); in aff_pt_edwards_to_montgomery()
579 ret = fp_copy(&tmp2, &tmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
581 ret = fp_sub(&tmp, &tmp, &y); EG(ret, err); in aff_pt_edwards_to_montgomery()
582 ret = fp_inv(&tmp, &tmp); EG(ret, err); in aff_pt_edwards_to_montgomery()
584 ret = fp_add(&tmp2, &tmp2, &y); EG(ret, err); in aff_pt_edwards_to_montgomery()
586 ret = fp_mul(&(out_montgomery->u), &tmp, &tmp2); EG(ret, err); in aff_pt_edwards_to_montgomery()
588 ret = fp_inv(&(out_montgomery->v), &x); EG(ret, err); in aff_pt_edwards_to_montgomery()
589 ret = fp_mul(&(out_montgomery->v), &(out_montgomery->v), alpha_edwards); EG(ret, err); in aff_pt_edwards_to_montgomery()
590 ret = fp_mul(&(out_montgomery->v), &(out_montgomery->u), &(out_montgomery->v)); EG(ret, err); in aff_pt_edwards_to_montgomery()
593 ret = aff_pt_montgomery_is_on_curve(out_montgomery, &on_curve); EG(ret, err); in aff_pt_edwards_to_montgomery()
639 ret = ec_edwards_crv_check_initialized(edwards_crv); EG(ret, err); in aff_pt_montgomery_to_edwards()
642 ret = aff_pt_montgomery_is_on_curve(in_montgomery, &on_curve); EG(ret, err); in aff_pt_montgomery_to_edwards()
645 ret = curve_edwards_montgomery_check(edwards_crv, in_montgomery->crv, alpha); EG(ret, err); in aff_pt_montgomery_to_edwards()
647 ret = fp_init(&tmp, in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
648 ret = fp_init(&u, in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
649 ret = fp_init(&v, in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
650 ret = fp_init(&tab_u[0], in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
651 ret = fp_init(&tab_u[1], in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
652 ret = fp_init(&tab_v[0], in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
653 ret = fp_init(&tab_v[1], in_montgomery->crv->A.ctx); EG(ret, err); in aff_pt_montgomery_to_edwards()
655 ret = fp_one(&tmp); EG(ret, err); in aff_pt_montgomery_to_edwards()
658 ret = fp_zero(&tab_u[0]); EG(ret, err); in aff_pt_montgomery_to_edwards()
659 ret = fp_copy(&tab_u[1], &(in_montgomery->u)); EG(ret, err); in aff_pt_montgomery_to_edwards()
661 ret = fp_copy(&tab_v[0], &tmp); EG(ret, err); in aff_pt_montgomery_to_edwards()
662 ret = fp_copy(&tab_v[1], &(in_montgomery->v)); EG(ret, err); in aff_pt_montgomery_to_edwards()
664 ret = fp_iszero(&(in_montgomery->u), &iszero1); EG(ret, err); in aff_pt_montgomery_to_edwards()
665 ret = fp_iszero(&(in_montgomery->v), &iszero2); EG(ret, err); in aff_pt_montgomery_to_edwards()
667 ret = fp_tabselect(&u, idx, tab_u_t, 2); EG(ret, err); in aff_pt_montgomery_to_edwards()
668 ret = fp_tabselect(&v, idx, tab_v_t, 2); EG(ret, err); in aff_pt_montgomery_to_edwards()
670 ret = aff_pt_edwards_init(out_edwards, edwards_crv); EG(ret, err); in aff_pt_montgomery_to_edwards()
672 ret = fp_inv(&(out_edwards->x), &v); EG(ret, err); in aff_pt_montgomery_to_edwards()
673 ret = fp_mul(&(out_edwards->x), &(out_edwards->x), alpha); EG(ret, err); in aff_pt_montgomery_to_edwards()
674 ret = fp_mul(&(out_edwards->x), &(out_edwards->x), &u); EG(ret, err); in aff_pt_montgomery_to_edwards()
676 ret = fp_add(&(out_edwards->y), &u, &tmp); EG(ret, err); in aff_pt_montgomery_to_edwards()
677 ret = fp_inv(&(out_edwards->y), &(out_edwards->y)); EG(ret, err); in aff_pt_montgomery_to_edwards()
678 ret = fp_sub(&tmp, &u, &tmp); EG(ret, err); in aff_pt_montgomery_to_edwards()
679 ret = fp_mul(&(out_edwards->y), &(out_edwards->y), &tmp); EG(ret, err); in aff_pt_montgomery_to_edwards()
682 ret = aff_pt_edwards_is_on_curve(out_edwards, &on_curve); EG(ret, err); in aff_pt_montgomery_to_edwards()
715 ret = aff_pt_edwards_check_initialized(in_edwards); EG(ret, err); in aff_pt_edwards_to_shortw()
716 …ret = curve_edwards_to_montgomery(in_edwards->crv, &inter_montgomery_crv, alpha_edwards); EG(ret, … in aff_pt_edwards_to_shortw()
717 …s_to_montgomery(in_edwards, &inter_montgomery_crv, &inter_montgomery, alpha_edwards); EG(ret, err); in aff_pt_edwards_to_shortw()
745 ret = curve_edwards_to_montgomery(edwards_crv, &inter_montgomery_crv, alpha_edwards); EG(ret, err); in aff_pt_shortw_to_edwards()
746 …ret = aff_pt_shortw_to_montgomery(in_shortw, &inter_montgomery_crv, &inter_montgomery); EG(ret, er… in aff_pt_shortw_to_edwards()
773 ret = fp_check_initialized(x); EG(ret, err); in aff_pt_edwards_y_from_x()
774 ret = ec_edwards_crv_check_initialized(crv); EG(ret, err); in aff_pt_edwards_y_from_x()
780 ret = fp_init(y1, x->ctx); EG(ret, err); in aff_pt_edwards_y_from_x()
781 ret = fp_init(y2, x->ctx); EG(ret, err); in aff_pt_edwards_y_from_x()
782 ret = fp_init(&tmp, x->ctx); EG(ret, err); in aff_pt_edwards_y_from_x()
787 ret = fp_one(&tmp); EG(ret, err); in aff_pt_edwards_y_from_x()
789 ret = fp_mul(y1, x, &(crv->a)); EG(ret, err); in aff_pt_edwards_y_from_x()
790 ret = fp_mul(y1, y1, x); EG(ret, err); in aff_pt_edwards_y_from_x()
791 ret = fp_sub(y1, &tmp, y1); EG(ret, err); in aff_pt_edwards_y_from_x()
793 ret = fp_mul(y2, x, &(crv->d)); EG(ret, err); in aff_pt_edwards_y_from_x()
794 ret = fp_mul(y2, y2, x); EG(ret, err); in aff_pt_edwards_y_from_x()
795 ret = fp_sub(y2, &tmp, y2); EG(ret, err); in aff_pt_edwards_y_from_x()
796 ret = fp_inv(y2, y2); EG(ret, err); in aff_pt_edwards_y_from_x()
798 ret = fp_mul(&tmp, y1, y2); EG(ret, err); in aff_pt_edwards_y_from_x()
823 ret = fp_check_initialized(y); EG(ret, err); in aff_pt_edwards_x_from_y()
824 ret = ec_edwards_crv_check_initialized(crv); EG(ret, err); in aff_pt_edwards_x_from_y()
830 ret = fp_init(x1, y->ctx); EG(ret, err); in aff_pt_edwards_x_from_y()
831 ret = fp_init(x2, y->ctx); EG(ret, err); in aff_pt_edwards_x_from_y()
832 ret = fp_init(&tmp, y->ctx); EG(ret, err); in aff_pt_edwards_x_from_y()
837 ret = fp_one(&tmp); EG(ret, err); in aff_pt_edwards_x_from_y()
839 ret = fp_mul(x1, y, y); EG(ret, err); in aff_pt_edwards_x_from_y()
840 ret = fp_sub(x1, &tmp, x1); EG(ret, err); in aff_pt_edwards_x_from_y()
842 ret = fp_mul(x2, y, &(crv->d)); EG(ret, err); in aff_pt_edwards_x_from_y()
843 ret = fp_mul(x2, x2, y); EG(ret, err); in aff_pt_edwards_x_from_y()
844 ret = fp_sub(x2, &(crv->a), x2); EG(ret, err); in aff_pt_edwards_x_from_y()
845 ret = fp_inv(x2, x2); EG(ret, err); in aff_pt_edwards_x_from_y()
847 ret = fp_mul(&tmp, x1, x2); EG(ret, err); in aff_pt_edwards_x_from_y()