Home
last modified time | relevance | path

Searched refs:R (Results 1 – 25 of 25) sorted by relevance

/mbedtls-latest/library/
Dsha1.c91 #define R(t) \ in mbedtls_internal_sha1_process() macro
132 P(local.E, local.A, local.B, local.C, local.D, R(16)); in mbedtls_internal_sha1_process()
133 P(local.D, local.E, local.A, local.B, local.C, R(17)); in mbedtls_internal_sha1_process()
134 P(local.C, local.D, local.E, local.A, local.B, R(18)); in mbedtls_internal_sha1_process()
135 P(local.B, local.C, local.D, local.E, local.A, R(19)); in mbedtls_internal_sha1_process()
143 P(local.A, local.B, local.C, local.D, local.E, R(20)); in mbedtls_internal_sha1_process()
144 P(local.E, local.A, local.B, local.C, local.D, R(21)); in mbedtls_internal_sha1_process()
145 P(local.D, local.E, local.A, local.B, local.C, R(22)); in mbedtls_internal_sha1_process()
146 P(local.C, local.D, local.E, local.A, local.B, R(23)); in mbedtls_internal_sha1_process()
147 P(local.B, local.C, local.D, local.E, local.A, R(24)); in mbedtls_internal_sha1_process()
[all …]
Decp.c125 mbedtls_ecp_point R; /* current intermediate result */ member
145 mbedtls_ecp_point_init(&ctx->R); in ecp_restart_rsm_init()
163 mbedtls_ecp_point_free(&ctx->R); in ecp_restart_rsm_free()
180 mbedtls_ecp_point R; /* R intermediate result */ member
195 mbedtls_ecp_point_init(&ctx->R); in ecp_restart_ma_init()
209 mbedtls_ecp_point_free(&ctx->R); in ecp_restart_ma_free()
1486 static int ecp_double_jac(const mbedtls_ecp_group *grp, mbedtls_ecp_point *R, in ecp_double_jac() argument
1496 return mbedtls_internal_ecp_double_jac(grp, R, P); in ecp_double_jac()
1553 MPI_ECP_MOV(&R->X, &tmp[2]); in ecp_double_jac()
1554 MPI_ECP_MOV(&R->Y, &tmp[1]); in ecp_double_jac()
[all …]
Decdsa.c253 mbedtls_ecp_point R; in mbedtls_ecdsa_sign_restartable() local
267 mbedtls_ecp_point_init(&R); in mbedtls_ecdsa_sign_restartable()
317 MBEDTLS_MPI_CHK(mbedtls_ecp_mul_restartable(grp, &R, pk, &grp->G, in mbedtls_ecdsa_sign_restartable()
321 MBEDTLS_MPI_CHK(mbedtls_mpi_mod_mpi(pr, &R.X, &grp->N)); in mbedtls_ecdsa_sign_restartable()
369 mbedtls_ecp_point_free(&R); in mbedtls_ecdsa_sign_restartable()
497 mbedtls_ecp_point R; in mbedtls_ecdsa_verify_restartable() local
500 mbedtls_ecp_point_init(&R); in mbedtls_ecdsa_verify_restartable()
562 &R, pu1, &grp->G, pu2, Q, ECDSA_RS_ECP)); in mbedtls_ecdsa_verify_restartable()
564 if (mbedtls_ecp_is_zero(&R)) { in mbedtls_ecdsa_verify_restartable()
573 MBEDTLS_MPI_CHK(mbedtls_mpi_mod_mpi(&R.X, &R.X, &grp->N)); in mbedtls_ecdsa_verify_restartable()
[all …]
Ddhm.c168 static int dhm_random_below(mbedtls_mpi *R, const mbedtls_mpi *M, in dhm_random_below() argument
173 MBEDTLS_MPI_CHK(mbedtls_mpi_random(R, 3, M, f_rng, p_rng)); in dhm_random_below()
174 MBEDTLS_MPI_CHK(mbedtls_mpi_sub_int(R, R, 1)); in dhm_random_below()
347 mbedtls_mpi R; in dhm_update_blinding() local
349 mbedtls_mpi_init(&R); in dhm_update_blinding()
387 MBEDTLS_MPI_CHK(dhm_random_below(&R, &ctx->P, f_rng, p_rng)); in dhm_update_blinding()
388 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&ctx->Vf, &ctx->Vi, &R)); in dhm_update_blinding()
391 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&ctx->Vf, &ctx->Vf, &R)); in dhm_update_blinding()
397 mbedtls_mpi_free(&R); in dhm_update_blinding()
Dbignum.c1393 int mbedtls_mpi_div_mpi(mbedtls_mpi *Q, mbedtls_mpi *R, const mbedtls_mpi *A, in mbedtls_mpi_div_mpi() argument
1422 if (R != NULL) { in mbedtls_mpi_div_mpi()
1423 MBEDTLS_MPI_CHK(mbedtls_mpi_copy(R, A)); in mbedtls_mpi_div_mpi()
1494 if (R != NULL) { in mbedtls_mpi_div_mpi()
1497 MBEDTLS_MPI_CHK(mbedtls_mpi_copy(R, &X)); in mbedtls_mpi_div_mpi()
1499 if (mbedtls_mpi_cmp_int(R, 0) == 0) { in mbedtls_mpi_div_mpi()
1500 R->s = 1; in mbedtls_mpi_div_mpi()
1516 int mbedtls_mpi_div_int(mbedtls_mpi *Q, mbedtls_mpi *R, in mbedtls_mpi_div_int() argument
1528 return mbedtls_mpi_div_mpi(Q, R, A, &B); in mbedtls_mpi_div_int()
1534 int mbedtls_mpi_mod_mpi(mbedtls_mpi *R, const mbedtls_mpi *A, const mbedtls_mpi *B) in mbedtls_mpi_mod_mpi() argument
[all …]
Dnist_kw.c271 unsigned char *R = NULL; in unwrap() local
280 R = output + (semiblocks - 2) * KW_SEMIBLOCK_LENGTH; in unwrap()
287 memcpy(inbuff + KW_SEMIBLOCK_LENGTH, R, KW_SEMIBLOCK_LENGTH); in unwrap()
298 memcpy(R, outbuff + KW_SEMIBLOCK_LENGTH, KW_SEMIBLOCK_LENGTH); in unwrap()
300 if (R == output) { in unwrap()
301 R = output + (semiblocks - 2) * KW_SEMIBLOCK_LENGTH; in unwrap()
303 R -= KW_SEMIBLOCK_LENGTH; in unwrap()
Dsha256.c471 #define R(t) \ macro
511 R(i); in mbedtls_internal_sha256_process_c()
549 local.A[5], local.A[6], local.A[7], R(i+0), K[i+0]); in mbedtls_internal_sha256_process_c()
551 local.A[4], local.A[5], local.A[6], R(i+1), K[i+1]); in mbedtls_internal_sha256_process_c()
553 local.A[3], local.A[4], local.A[5], R(i+2), K[i+2]); in mbedtls_internal_sha256_process_c()
555 local.A[2], local.A[3], local.A[4], R(i+3), K[i+3]); in mbedtls_internal_sha256_process_c()
557 local.A[1], local.A[2], local.A[3], R(i+4), K[i+4]); in mbedtls_internal_sha256_process_c()
559 local.A[0], local.A[1], local.A[2], R(i+5), K[i+5]); in mbedtls_internal_sha256_process_c()
561 local.A[7], local.A[0], local.A[1], R(i+6), K[i+6]); in mbedtls_internal_sha256_process_c()
563 local.A[6], local.A[7], local.A[0], R(i+7), K[i+7]); in mbedtls_internal_sha256_process_c()
Decp_internal_alt.h156 mbedtls_ecp_point *R, const mbedtls_ecp_point *P,
181 mbedtls_ecp_point *R, const mbedtls_ecp_point *P);
238 mbedtls_ecp_point *R,
Decjpake.c543 static int ecjpake_ecp_add3(mbedtls_ecp_group *grp, mbedtls_ecp_point *R, in ecjpake_ecp_add3() argument
554 MBEDTLS_MPI_CHK(mbedtls_ecp_muladd(grp, R, &one, A, &one, B)); in ecjpake_ecp_add3()
555 MBEDTLS_MPI_CHK(mbedtls_ecp_muladd(grp, R, &one, R, &one, C)); in ecjpake_ecp_add3()
621 static int ecjpake_mul_secret(mbedtls_mpi *R, int sign, in ecjpake_mul_secret() argument
639 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(R, X, &b)); in ecjpake_mul_secret()
640 R->s *= sign; in ecjpake_mul_secret()
641 MBEDTLS_MPI_CHK(mbedtls_mpi_mod_mpi(R, R, N)); in ecjpake_mul_secret()
Drsa.c1292 mbedtls_mpi R; in rsa_prepare_blinding() local
1294 mbedtls_mpi_init(&R); in rsa_prepare_blinding()
1316 MBEDTLS_MPI_CHK(mbedtls_mpi_fill_random(&R, ctx->len - 1, f_rng, p_rng)); in rsa_prepare_blinding()
1317 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&ctx->Vi, &ctx->Vf, &R)); in rsa_prepare_blinding()
1332 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&ctx->Vi, &ctx->Vi, &R)); in rsa_prepare_blinding()
1341 mbedtls_mpi_free(&R); in rsa_prepare_blinding()
1423 mbedtls_mpi P1, Q1, R; in mbedtls_rsa_private() local
1461 mbedtls_mpi_init(&R); in mbedtls_rsa_private()
1505 MBEDTLS_MPI_CHK(mbedtls_mpi_fill_random(&R, RSA_EXPONENT_BLINDING, in mbedtls_rsa_private()
1508 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&D_blind, &D_blind, &R)); in mbedtls_rsa_private()
[all …]
Decp_curves.c5319 mbedtls_mpi M, R; in ecp_mod_koblitz() local
5327 R.s = 1; in ecp_mod_koblitz()
5328 R.p = (mbedtls_mpi_uint *) Rp; /* R.p will not be modified so the cast is safe */ in ecp_mod_koblitz()
5329 R.n = P_KOBLITZ_R; in ecp_mod_koblitz()
5345 M.n += R.n; /* Make room for multiplication by R */ in ecp_mod_koblitz()
5356 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&M, &M, &R)); in ecp_mod_koblitz()
5371 M.n += R.n; /* Make room for multiplication by R */ in ecp_mod_koblitz()
5382 MBEDTLS_MPI_CHK(mbedtls_mpi_mul_mpi(&M, &M, &R)); in ecp_mod_koblitz()
Decp_curves_new.c5632 mbedtls_mpi_uint *R, in ecp_mod_koblitz() argument
5690 mbedtls_mpi_core_mul(M, A1, P_limbs, R, R_limbs); in ecp_mod_koblitz()
/mbedtls-latest/tests/suites/
Dtest_suite_ecp.function178 mbedtls_ecp_point R, P;
186 mbedtls_ecp_point_init(&R); mbedtls_ecp_point_init(&P);
206 ECP_PT_RESET(&R);
207 ret = mbedtls_ecp_mul_restartable(&grp, &R, &dA, &grp.G,
212 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R.X, &xA) == 0);
213 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R.Y, &yA) == 0);
219 mbedtls_ecp_copy(&P, &R);
222 ECP_PT_RESET(&R);
223 ret = mbedtls_ecp_mul_restartable(&grp, &R, &dB, &P,
228 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R.X, &xZ) == 0);
[all …]
Dtest_suite_bignum_mod_raw.function392 mbedtls_mpi_uint *R = NULL;
405 TEST_EQUAL(mbedtls_test_read_mpi_core(&R, &limbs_R, result), 0);
423 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
428 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
433 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
438 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
443 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
448 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
453 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
458 TEST_MEMORY_COMPARE(X, bytes, R, bytes);
[all …]
Dtest_suite_bignum_mod_raw.generated.data1380 Convert from Mont: #1 1/R * 0 mod 53
1384 Convert from Mont: #2 1/R * 0 mod 53
1388 Convert from Mont: #3 1/R * 1 mod 53
1392 Convert from Mont: #4 1/R * 1 mod 53
1396 Convert from Mont: #5 1/R * 2 mod 53
1400 Convert from Mont: #6 1/R * 2 mod 53
1404 Convert from Mont: #7 1/R * 3 mod 53
1408 Convert from Mont: #8 1/R * 3 mod 53
1412 Convert from Mont: #9 1/R * 4 mod 53
1416 Convert from Mont: #10 1/R * 4 mod 53
[all …]
Dtest_suite_bignum.function873 mbedtls_mpi X, Y, Q, R, A, B;
875 mbedtls_mpi_init(&X); mbedtls_mpi_init(&Y); mbedtls_mpi_init(&Q); mbedtls_mpi_init(&R);
882 res = mbedtls_mpi_div_mpi(&Q, &R, &X, &Y);
886 TEST_ASSERT(sign_is_valid(&R));
888 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R, &B) == 0);
892 mbedtls_mpi_free(&X); mbedtls_mpi_free(&Y); mbedtls_mpi_free(&Q); mbedtls_mpi_free(&R);
902 mbedtls_mpi X, Q, R, A, B;
904 mbedtls_mpi_init(&X); mbedtls_mpi_init(&Q); mbedtls_mpi_init(&R); mbedtls_mpi_init(&A);
910 res = mbedtls_mpi_div_int(&Q, &R, &X, input_Y);
914 TEST_ASSERT(sign_is_valid(&R));
[all …]
Dtest_suite_bignum_core.function845 mbedtls_mpi A, B, N, X4, X8, T, R;
853 mbedtls_mpi_init(&R); /* for the result */
889 … TEST_EQUAL(0, mbedtls_mpi_grow(&R, limbs_AN)); /* ensure it's got the right number of limbs */
891 mbedtls_mpi_core_montmul(R.p, A.p, B.p, B.n, N.p, N.n, mm, T.p);
893 TEST_MEMORY_COMPARE(R.p, bytes, X->p, bytes);
895 /* The output (R, above) may be aliased to A - use R to save the value of A */
897 memcpy(R.p, A.p, bytes);
902 memcpy(A.p, R.p, bytes); /* restore A */
904 /* The output may be aliased to N - use R to save the value of N */
906 memcpy(R.p, N.p, bytes);
[all …]
Dtest_suite_bignum_mod.function543 mbedtls_mpi_uint *R = NULL;
552 TEST_EQUAL(0, mbedtls_test_read_mpi_core(&R, &r_limbs, input_R));
556 TEST_EQUAL(ret, mbedtls_mpi_mod_residue_setup(&r, &m, R, r_limbs));
560 TEST_ASSERT(r.p == R);
566 mbedtls_free(R);
574 mbedtls_mpi_uint *R = NULL;
585 TEST_CALLOC(R, r_limbs);
603 TEST_EQUAL(0, mbedtls_mpi_mod_residue_setup(&r, &m, R, r_limbs));
636 mbedtls_free(R);
644 mbedtls_mpi_uint *R = NULL;
[all …]
Dtest_suite_bignum_random.function316 mbedtls_mpi R = { .s = 1, .n = limbs, .p = result };
318 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R, &B) < 0);
319 TEST_ASSERT(mbedtls_mpi_cmp_int(&R, min) >= 0);
322 TEST_EQUAL(0, mbedtls_mpi_write_binary(&R, &value, 1));
327 stats[b] += mbedtls_mpi_get_bit(&R, b);
Dtest_suite_rsa.function807 mbedtls_mpi P, Q, D, Dp, E, R, Rp;
812 mbedtls_mpi_init(&R); mbedtls_mpi_init(&Rp);
838 TEST_ASSERT(mbedtls_mpi_mod_mpi(&R, &D, &P) == 0);
840 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R, &Rp) == 0);
843 TEST_ASSERT(mbedtls_mpi_mod_mpi(&R, &D, &Q) == 0);
845 TEST_ASSERT(mbedtls_mpi_cmp_mpi(&R, &Rp) == 0);
853 mbedtls_mpi_free(&R); mbedtls_mpi_free(&Rp);
Dtest_suite_ecdsa.function513 /* Prepare signature R & S */
/mbedtls-latest/include/mbedtls/
Decp.h967 int mbedtls_ecp_mul(mbedtls_ecp_group *grp, mbedtls_ecp_point *R,
1001 int mbedtls_ecp_mul_restartable(mbedtls_ecp_group *grp, mbedtls_ecp_point *R,
1062 int mbedtls_ecp_muladd(mbedtls_ecp_group *grp, mbedtls_ecp_point *R,
1107 mbedtls_ecp_group *grp, mbedtls_ecp_point *R,
Dbignum.h819 int mbedtls_mpi_div_mpi(mbedtls_mpi *Q, mbedtls_mpi *R, const mbedtls_mpi *A,
840 int mbedtls_mpi_div_int(mbedtls_mpi *Q, mbedtls_mpi *R, const mbedtls_mpi *A,
860 int mbedtls_mpi_mod_mpi(mbedtls_mpi *R, const mbedtls_mpi *A,
/mbedtls-latest/programs/test/
Dbenchmark.c476 #define CHECK_AND_CONTINUE(R) \ argument
478 int CHECK_AND_CONTINUE_ret = (R); \
/mbedtls-latest/
DChangeLog3248 See "Prime and Prejudice" by by Martin R. Albrecht and Jake Massimo and
3480 was creating an invalid ASN.1 tag. Found by Aryeh R. Fixes #1257.
5638 * Allow R and A to point to same mpi in mpi_div_mpi (found by Manuel
5767 * Allow R and A to point to same mpi in mpi_div_mpi (found by Manuel
6292 * Fixed a bug reported by Adrian Rüegsegger in x509_read_key