TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 2daa374ea868a48e0dbd8de6f03d54f62ae90bd2^! / . / library / ecp_curves.c
commit2daa374ea868a48e0dbd8de6f03d54f62ae90bd2[log] [tgz]
authorMinos Galanakis <minos.galanakis@arm.com>Wed May 17 15:01:08 2023 +0100
committerMinos Galanakis <minos.galanakis@arm.com>Tue May 23 09:57:09 2023 +0100
tree6cb89e7b1ac0a0dccbae01849134639ff9309614
parentaada68f1bef17976d5f7ce11980bdfe7ca14f221 [diff] [blame]
ecp_curves: Minor refactoring of `mbedtls_ecp_mod_p255_raw()`

* Fixed whitespace issues.
* Renamed variables to align with bignum conventions.
* Updated alignment on test input data.

Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>

diff --git a/library/ecp_curves.c b/library/ecp_curves.c
index 98e2f95..fe62fec 100644
--- a/library/ecp_curves.c
+++ b/library/ecp_curves.c

@@ -5420,7 +5420,7 @@
 static int ecp_mod_p255(mbedtls_mpi *N)
 {
     int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
-    size_t expected_width = 2 * ((256 + biL - 1) / biL);
+    size_t expected_width = 2 * ((255 + biL - 1) / biL);
     MBEDTLS_MPI_CHK(mbedtls_mpi_grow(N, expected_width));
     ret = mbedtls_ecp_mod_p255_raw(N->p, expected_width);
 cleanup:
@@ -5433,32 +5433,26 @@
     mbedtls_mpi_uint carry[P255_WIDTH];
     memset(carry, 0, sizeof(mbedtls_mpi_uint) * P255_WIDTH);
 
-    if (X_Limbs > 2*P255_WIDTH) {
-        X_Limbs = 2*P255_WIDTH;
-    } else if (X_Limbs < P255_WIDTH) {
-        return 0;
-    }
-
     /* Step 1: Reduction to P255_WIDTH limbs */
     if (X_Limbs > P255_WIDTH) {
-        /* Helper references for top part of N */
-        mbedtls_mpi_uint * const NT_p = X + P255_WIDTH;
-        const size_t NT_n = X_Limbs - P255_WIDTH;
+        /* Helper references for top part of X */
+        mbedtls_mpi_uint * const A1 = X + P255_WIDTH;
+        const size_t A1_limbs = X_Limbs - P255_WIDTH;
 
-        /* N = A0 + 38 * A1, capture carry out */
-        carry[0] = mbedtls_mpi_core_mla(X, P255_WIDTH, NT_p, NT_n, 38);
+        /* X = A0 + 38 * A1, capture carry out */
+        carry[0] = mbedtls_mpi_core_mla(X, P255_WIDTH, A1, A1_limbs, 38);
         /* Clear top part */
-        memset(NT_p, 0, sizeof(mbedtls_mpi_uint) * NT_n);
+        memset(A1, 0, sizeof(mbedtls_mpi_uint) * A1_limbs);
     }
 
     /* Step 2: Reduce to <p
      * Split as A0 + 2^255*c, with c a scalar, and compute A0 + 19*c */
     carry[0] <<= 1;
-    carry[0] += (X[P255_WIDTH-1] >> (biL - 1));
+    carry[0] += (X[P255_WIDTH - 1] >> (biL - 1));
     carry[0] *= 19;
 
     /* Clear top bit */
-    X[P255_WIDTH-1] <<= 1; X[P255_WIDTH-1] >>= 1;
+    X[P255_WIDTH - 1] <<= 1; X[P255_WIDTH - 1] >>= 1;
     (void) mbedtls_mpi_core_add(X, X, &carry[0], P255_WIDTH);
 
     return 0;