commit a77911e5c1e791854af8fb9e0b26319ac2b9e3be
author Janos Follath <janos.follath@arm.com> Sat Oct 08 09:48:20 2022 +0100
committer Janos Follath <janos.follath@arm.com> Tue Nov 22 21:22:53 2022 +0000
tree a127aca0263314e320734fb64e93495c82de361b
parent 0f0d1e88a2afa2349d3f14182f6ef6bffd1b8d40

core_exp_mod: improve window selection

We are looking at the exponent at limb granularity and therefore
exponent bits can't go below 32.

The `mpi_` prefix is also removed as it is better not to have prefix at
all than to have just a partial. (Full prefix would be overly long and
would hurt readability.)

Signed-off-by: Janos Follath <janos.follath@arm.com>

library/bignum_core.c

diff --git a/library/bignum_core.c b/library/bignum_core.c
index 2337ae5..79d5a72 100644
--- a/library/bignum_core.c
+++ b/library/bignum_core.c
@@ -583,10 +583,10 @@
 
 /* BEGIN MERGE SLOT 1 */
 
-static size_t mpi_exp_mod_get_window_size( size_t Ebits )
+static size_t exp_mod_get_window_size( size_t Ebits )
 {
     size_t wsize = ( Ebits > 671 ) ? 6 : ( Ebits > 239 ) ? 5 :
-                   ( Ebits >  79 ) ? 4 : ( Ebits >  23 ) ? 3 : 1;
+                   ( Ebits >  79 ) ? 4 : 1;
 
 #if( MBEDTLS_MPI_WINDOW_SIZE < 6 )
     if( wsize > MBEDTLS_MPI_WINDOW_SIZE )
@@ -618,7 +618,7 @@
     mm = mbedtls_mpi_core_montmul_init( N ); /* Compute Montgomery constant */
     E += E_len;               /* Skip to end of exponent buffer */
 
-    wsize = mpi_exp_mod_get_window_size( E_len * biL );
+    wsize = exp_mod_get_window_size( E_len * biL );
     welem = ( (size_t) 1 ) << wsize;
 
     /* Allocate memory pool and set pointers to parts of it */