249 	uECC_dword_t p = (uECC_dword_t)a * b;  in muladd()  local
251 	r01 += p;  in muladd()
252 	*r2 += (r01 < p);  in muladd()
473 	uECC_vli_modAdd(X1, X1, Z1, curve->p, num_words); /* t1 = x1 + z1^2 */  in double_jacobian_default()
474 	uECC_vli_modAdd(Z1, Z1, Z1, curve->p, num_words); /* t3 = 2*z1^2 */  in double_jacobian_default()
475 	uECC_vli_modSub(Z1, X1, Z1, curve->p, num_words); /* t3 = x1 - z1^2 */  in double_jacobian_default()
478 	uECC_vli_modAdd(Z1, X1, X1, curve->p, num_words); /* t3 = 2*(x1^2 - z1^4) */  in double_jacobian_default()
479 	uECC_vli_modAdd(X1, X1, Z1, curve->p, num_words); /* t1 = 3*(x1^2 - z1^4) */  in double_jacobian_default()
481 		uECC_word_t l_carry = uECC_vli_add(X1, X1, curve->p, num_words);  in double_jacobian_default()
490 	uECC_vli_modSub(Z1, Z1, t5, curve->p, num_words); /* t3 = B^2 - A */  in double_jacobian_default()
491 	uECC_vli_modSub(Z1, Z1, t5, curve->p, num_words); /* t3 = B^2 - 2A = x3 */  in double_jacobian_default()
492 	uECC_vli_modSub(t5, t5, Z1, curve->p, num_words); /* t5 = A - x3 */  in double_jacobian_default()
495 	uECC_vli_modSub(t4, X1, t4, curve->p, num_words);  in double_jacobian_default()
510 	uECC_vli_modSub(result, result, _3, curve->p, num_words); /* r = x^2 - 3 */  in x_side_default()
513 	uECC_vli_modAdd(result, result, curve->b, curve->p, num_words);  in x_side_default()
611 			carry += uECC_vli_add(result, result, curve_secp256r1.p, NUM_ECC_WORDS);  in vli_mmod_fast_secp256r1()
616 		       uECC_vli_cmp_unsafe(curve_secp256r1.p, result, NUM_ECC_WORDS) != 1) {  in vli_mmod_fast_secp256r1()
617 			carry -= uECC_vli_sub(result, result, curve_secp256r1.p, NUM_ECC_WORDS);  in vli_mmod_fast_secp256r1()
669 	uECC_vli_modSub(t5, X2, X1, curve->p, num_words); /* t5 = x2 - x1 */  in XYcZ_add()
673 	uECC_vli_modSub(Y2, Y2, Y1, curve->p, num_words); /* t4 = y2 - y1 */  in XYcZ_add()
676 	uECC_vli_modSub(t5, t5, X1, curve->p, num_words); /* t5 = D - B */  in XYcZ_add()
677 	uECC_vli_modSub(t5, t5, X2, curve->p, num_words); /* t5 = D - B - C = x3 */  in XYcZ_add()
678 	uECC_vli_modSub(X2, X2, X1, curve->p, num_words); /* t3 = C - B */  in XYcZ_add()
680 	uECC_vli_modSub(X2, X1, t5, curve->p, num_words); /* t3 = B - x3 */  in XYcZ_add()
682 	uECC_vli_modSub(Y2, Y2, Y1, curve->p, num_words); /* t4 = y3 */  in XYcZ_add()
701 	uECC_vli_modSub(t5, X2, X1, curve->p, num_words); /* t5 = x2 - x1 */  in XYcZ_addC()
705 	uECC_vli_modAdd(t5, Y2, Y1, curve->p, num_words); /* t5 = y2 + y1 */  in XYcZ_addC()
706 	uECC_vli_modSub(Y2, Y2, Y1, curve->p, num_words); /* t4 = y2 - y1 */  in XYcZ_addC()
708 	uECC_vli_modSub(t6, X2, X1, curve->p, num_words); /* t6 = C - B */  in XYcZ_addC()
710 	uECC_vli_modAdd(t6, X1, X2, curve->p, num_words); /* t6 = B + C */  in XYcZ_addC()
712 	uECC_vli_modSub(X2, X2, t6, curve->p, num_words); /* t3 = D - (B + C) = x3 */  in XYcZ_addC()
714 	uECC_vli_modSub(t7, X1, X2, curve->p, num_words); /* t7 = B - x3 */  in XYcZ_addC()
717 	uECC_vli_modSub(Y2, Y2, Y1, curve->p, num_words);  in XYcZ_addC()
720 	uECC_vli_modSub(t7, t7, t6, curve->p, num_words); /* t7 = F - (B + C) = x3' */  in XYcZ_addC()
721 	uECC_vli_modSub(t6, t7, X1, curve->p, num_words); /* t6 = x3' - B */  in XYcZ_addC()
724 	uECC_vli_modSub(Y1, t6, Y1, curve->p, num_words);  in XYcZ_addC()
757 	uECC_vli_modSub(z, Rx[1], Rx[0], curve->p, num_words); /* X1 - X0 */  in EccPoint_mult()
760 	uECC_vli_modInv(z, z, curve->p, num_words); /* 1 / (xP * Yb * (X1 - X0))*/  in EccPoint_mult()
875 	if (uECC_vli_cmp_unsafe(curve->p, point, num_words) != 1 ||  in uECC_valid_point()
876 		uECC_vli_cmp_unsafe(curve->p, point + num_words, num_words) != 1) {  in uECC_valid_point()