1 /* crypto/bn/bn_mul.c */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
60 # undef NDEBUG /* avoid conflicting definitions */
69 /* Here follows specialised variants of bn_add_words() and
70 bn_sub_words(). They have the property performing operations on
71 arrays of different sizes. The sizes of those arrays is expressed through
72 cl, which is the common length ( basicall, min(len(a),len(b)) ), and dl,
73 which is the delta between the two lengths, calculated as len(a)-len(b).
74 All lengths are the number of BN_ULONGs... For the operations that require
75 a result array as parameter, it must have the length cl+abs(dl).
76 These functions should probably end up in bn_asm.c as soon as there are
77 assembler counterparts for the systems that use assembler files. */
79 BN_ULONG bn_sub_part_words(BN_ULONG *r,
80 const BN_ULONG *a, const BN_ULONG *b,
86 c = bn_sub_words(r, a, b, cl);
98 fprintf(stderr, " bn_sub_part_words %d + %d (dl < 0, c = %d)\n", cl, dl, c);
103 r[0] = (0-t-c)&BN_MASK2;
105 if (++dl >= 0) break;
108 r[1] = (0-t-c)&BN_MASK2;
110 if (++dl >= 0) break;
113 r[2] = (0-t-c)&BN_MASK2;
115 if (++dl >= 0) break;
118 r[3] = (0-t-c)&BN_MASK2;
120 if (++dl >= 0) break;
130 fprintf(stderr, " bn_sub_part_words %d + %d (dl > 0, c = %d)\n", cl, dl, c);
135 r[0] = (t-c)&BN_MASK2;
137 if (--dl <= 0) break;
140 r[1] = (t-c)&BN_MASK2;
142 if (--dl <= 0) break;
145 r[2] = (t-c)&BN_MASK2;
147 if (--dl <= 0) break;
150 r[3] = (t-c)&BN_MASK2;
152 if (--dl <= 0) break;
161 fprintf(stderr, " bn_sub_part_words %d + %d (dl > 0, c == 0)\n", cl, dl);
165 switch (save_dl - dl)
169 if (--dl <= 0) break;
172 if (--dl <= 0) break;
175 if (--dl <= 0) break;
184 fprintf(stderr, " bn_sub_part_words %d + %d (dl > 0, copy)\n", cl, dl);
189 if (--dl <= 0) break;
191 if (--dl <= 0) break;
193 if (--dl <= 0) break;
195 if (--dl <= 0) break;
205 BN_ULONG bn_add_part_words(BN_ULONG *r,
206 const BN_ULONG *a, const BN_ULONG *b,
212 c = bn_add_words(r, a, b, cl);
225 fprintf(stderr, " bn_add_part_words %d + %d (dl < 0, c = %d)\n", cl, dl, c);
232 if (++dl >= 0) break;
237 if (++dl >= 0) break;
242 if (++dl >= 0) break;
247 if (++dl >= 0) break;
256 fprintf(stderr, " bn_add_part_words %d + %d (dl < 0, c == 0)\n", cl, dl);
260 switch (dl - save_dl)
264 if (++dl >= 0) break;
267 if (++dl >= 0) break;
270 if (++dl >= 0) break;
279 fprintf(stderr, " bn_add_part_words %d + %d (dl < 0, copy)\n", cl, dl);
284 if (++dl >= 0) break;
286 if (++dl >= 0) break;
288 if (++dl >= 0) break;
290 if (++dl >= 0) break;
301 fprintf(stderr, " bn_add_part_words %d + %d (dl > 0)\n", cl, dl);
308 if (--dl <= 0) break;
313 if (--dl <= 0) break;
318 if (--dl <= 0) break;
323 if (--dl <= 0) break;
330 fprintf(stderr, " bn_add_part_words %d + %d (dl > 0, c == 0)\n", cl, dl);
336 switch (save_dl - dl)
340 if (--dl <= 0) break;
343 if (--dl <= 0) break;
346 if (--dl <= 0) break;
355 fprintf(stderr, " bn_add_part_words %d + %d (dl > 0, copy)\n", cl, dl);
360 if (--dl <= 0) break;
362 if (--dl <= 0) break;
364 if (--dl <= 0) break;
366 if (--dl <= 0) break;
377 /* Karatsuba recursive multiplication algorithm
378 * (cf. Knuth, The Art of Computer Programming, Vol. 2) */
380 /* r is 2*n2 words in size,
381 * a and b are both n2 words in size.
382 * n2 must be a power of 2.
383 * We multiply and return the result.
384 * t must be 2*n2 words in size
387 * a[0]*b[0]+a[1]*b[1]+(a[0]-a[1])*(b[1]-b[0])
390 void bn_mul_recursive(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, int n2,
391 int dna, int dnb, BN_ULONG *t)
394 int tna=n+dna, tnb=n+dnb;
395 unsigned int neg,zero;
399 fprintf(stderr," bn_mul_recursive %d * %d\n",n2,n2);
405 bn_mul_comba4(r,a,b);
411 bn_mul_comba8(r,a,b);
414 # endif /* BN_MUL_COMBA */
415 if (n2 < BN_MUL_RECURSIVE_SIZE_NORMAL)
417 /* This should not happen */
418 bn_mul_normal(r,a,n2,b,n2);
421 /* r=(a[0]-a[1])*(b[1]-b[0]) */
422 c1=bn_cmp_part_words(a,&(a[n]),tna,n-tna);
423 c2=bn_cmp_part_words(&(b[n]),b,tnb,tnb-n);
428 bn_sub_part_words(t, &(a[n]),a, tna,tna-n); /* - */
429 bn_sub_part_words(&(t[n]),b, &(b[n]),tnb,n-tnb); /* - */
435 bn_sub_part_words(t, &(a[n]),a, tna,tna-n); /* - */
436 bn_sub_part_words(&(t[n]),&(b[n]),b, tnb,tnb-n); /* + */
445 bn_sub_part_words(t, a, &(a[n]),tna,n-tna); /* + */
446 bn_sub_part_words(&(t[n]),b, &(b[n]),tnb,n-tnb); /* - */
453 bn_sub_part_words(t, a, &(a[n]),tna,n-tna);
454 bn_sub_part_words(&(t[n]),&(b[n]),b, tnb,tnb-n);
462 bn_mul_comba4(&(t[n2]),t,&(t[n]));
464 memset(&(t[n2]),0,8*sizeof(BN_ULONG));
466 bn_mul_comba4(r,a,b);
467 bn_mul_comba4(&(r[n2]),&(a[n]),&(b[n]));
472 bn_mul_comba8(&(t[n2]),t,&(t[n]));
474 memset(&(t[n2]),0,16*sizeof(BN_ULONG));
476 bn_mul_comba8(r,a,b);
477 bn_mul_comba8(&(r[n2]),&(a[n]),&(b[n]));
480 # endif /* BN_MUL_COMBA */
484 bn_mul_recursive(&(t[n2]),t,&(t[n]),n,0,0,p);
486 memset(&(t[n2]),0,n2*sizeof(BN_ULONG));
487 bn_mul_recursive(r,a,b,n,0,0,p);
488 bn_mul_recursive(&(r[n2]),&(a[n]),&(b[n]),n,dna,dnb,p);
491 /* t[32] holds (a[0]-a[1])*(b[1]-b[0]), c1 is the sign
492 * r[10] holds (a[0]*b[0])
493 * r[32] holds (b[1]*b[1])
496 c1=(int)(bn_add_words(t,r,&(r[n2]),n2));
498 if (neg) /* if t[32] is negative */
500 c1-=(int)(bn_sub_words(&(t[n2]),t,&(t[n2]),n2));
504 /* Might have a carry */
505 c1+=(int)(bn_add_words(&(t[n2]),&(t[n2]),t,n2));
508 /* t[32] holds (a[0]-a[1])*(b[1]-b[0])+(a[0]*b[0])+(a[1]*b[1])
509 * r[10] holds (a[0]*b[0])
510 * r[32] holds (b[1]*b[1])
511 * c1 holds the carry bits
513 c1+=(int)(bn_add_words(&(r[n]),&(r[n]),&(t[n2]),n2));
521 /* The overflow will stop before we over write
522 * words we should not overwrite */
523 if (ln < (BN_ULONG)c1)
535 /* n+tn is the word length
536 * t needs to be n*4 is size, as does r */
537 void bn_mul_part_recursive(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, int n,
538 int tna, int tnb, BN_ULONG *t)
541 unsigned int c1,c2,neg,zero;
545 fprintf(stderr," bn_mul_part_recursive (%d+%d) * (%d+%d)\n",
550 bn_mul_normal(r,a,n+tna,b,n+tnb);
554 /* r=(a[0]-a[1])*(b[1]-b[0]) */
555 c1=bn_cmp_part_words(a,&(a[n]),tna,n-tna);
556 c2=bn_cmp_part_words(&(b[n]),b,tnb,tnb-n);
561 bn_sub_part_words(t, &(a[n]),a, tna,tna-n); /* - */
562 bn_sub_part_words(&(t[n]),b, &(b[n]),tnb,n-tnb); /* - */
568 bn_sub_part_words(t, &(a[n]),a, tna,tna-n); /* - */
569 bn_sub_part_words(&(t[n]),&(b[n]),b, tnb,tnb-n); /* + */
578 bn_sub_part_words(t, a, &(a[n]),tna,n-tna); /* + */
579 bn_sub_part_words(&(t[n]),b, &(b[n]),tnb,n-tnb); /* - */
586 bn_sub_part_words(t, a, &(a[n]),tna,n-tna);
587 bn_sub_part_words(&(t[n]),&(b[n]),b, tnb,tnb-n);
590 /* The zero case isn't yet implemented here. The speedup
591 would probably be negligible. */
595 bn_mul_comba4(&(t[n2]),t,&(t[n]));
596 bn_mul_comba4(r,a,b);
597 bn_mul_normal(&(r[n2]),&(a[n]),tn,&(b[n]),tn);
598 memset(&(r[n2+tn*2]),0,sizeof(BN_ULONG)*(n2-tn*2));
604 bn_mul_comba8(&(t[n2]),t,&(t[n]));
605 bn_mul_comba8(r,a,b);
606 bn_mul_normal(&(r[n2]),&(a[n]),tna,&(b[n]),tnb);
607 memset(&(r[n2+tna+tnb]),0,sizeof(BN_ULONG)*(n2-tna-tnb));
612 bn_mul_recursive(&(t[n2]),t,&(t[n]),n,0,0,p);
613 bn_mul_recursive(r,a,b,n,0,0,p);
615 /* If there is only a bottom half to the number,
623 bn_mul_recursive(&(r[n2]),&(a[n]),&(b[n]),
625 memset(&(r[n2+i*2]),0,sizeof(BN_ULONG)*(n2-i*2));
627 else if (j > 0) /* eg, n == 16, i == 8 and tn == 11 */
629 bn_mul_part_recursive(&(r[n2]),&(a[n]),&(b[n]),
631 memset(&(r[n2+tna+tnb]),0,
632 sizeof(BN_ULONG)*(n2-tna-tnb));
634 else /* (j < 0) eg, n == 16, i == 8 and tn == 5 */
636 memset(&(r[n2]),0,sizeof(BN_ULONG)*n2);
637 if (tna < BN_MUL_RECURSIVE_SIZE_NORMAL
638 && tnb < BN_MUL_RECURSIVE_SIZE_NORMAL)
640 bn_mul_normal(&(r[n2]),&(a[n]),tna,&(b[n]),tnb);
647 if (i < tna && i < tnb)
649 bn_mul_part_recursive(&(r[n2]),
654 else if (i <= tna && i <= tnb)
656 bn_mul_recursive(&(r[n2]),
666 /* t[32] holds (a[0]-a[1])*(b[1]-b[0]), c1 is the sign
667 * r[10] holds (a[0]*b[0])
668 * r[32] holds (b[1]*b[1])
671 c1=(int)(bn_add_words(t,r,&(r[n2]),n2));
673 if (neg) /* if t[32] is negative */
675 c1-=(int)(bn_sub_words(&(t[n2]),t,&(t[n2]),n2));
679 /* Might have a carry */
680 c1+=(int)(bn_add_words(&(t[n2]),&(t[n2]),t,n2));
683 /* t[32] holds (a[0]-a[1])*(b[1]-b[0])+(a[0]*b[0])+(a[1]*b[1])
684 * r[10] holds (a[0]*b[0])
685 * r[32] holds (b[1]*b[1])
686 * c1 holds the carry bits
688 c1+=(int)(bn_add_words(&(r[n]),&(r[n]),&(t[n2]),n2));
696 /* The overflow will stop before we over write
697 * words we should not overwrite */
710 /* a and b must be the same size, which is n2.
711 * r needs to be n2 words and t needs to be n2*2
713 void bn_mul_low_recursive(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, int n2,
719 fprintf(stderr," bn_mul_low_recursive %d * %d\n",n2,n2);
722 bn_mul_recursive(r,a,b,n,0,0,&(t[0]));
723 if (n >= BN_MUL_LOW_RECURSIVE_SIZE_NORMAL)
725 bn_mul_low_recursive(&(t[0]),&(a[0]),&(b[n]),n,&(t[n2]));
726 bn_add_words(&(r[n]),&(r[n]),&(t[0]),n);
727 bn_mul_low_recursive(&(t[0]),&(a[n]),&(b[0]),n,&(t[n2]));
728 bn_add_words(&(r[n]),&(r[n]),&(t[0]),n);
732 bn_mul_low_normal(&(t[0]),&(a[0]),&(b[n]),n);
733 bn_mul_low_normal(&(t[n]),&(a[n]),&(b[0]),n);
734 bn_add_words(&(r[n]),&(r[n]),&(t[0]),n);
735 bn_add_words(&(r[n]),&(r[n]),&(t[n]),n);
739 /* a and b must be the same size, which is n2.
740 * r needs to be n2 words and t needs to be n2*2
741 * l is the low words of the output.
744 void bn_mul_high(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, BN_ULONG *l, int n2,
750 BN_ULONG ll,lc,*lp,*mp;
753 fprintf(stderr," bn_mul_high %d * %d\n",n2,n2);
757 /* Calculate (al-ah)*(bh-bl) */
759 c1=bn_cmp_words(&(a[0]),&(a[n]),n);
760 c2=bn_cmp_words(&(b[n]),&(b[0]),n);
764 bn_sub_words(&(r[0]),&(a[n]),&(a[0]),n);
765 bn_sub_words(&(r[n]),&(b[0]),&(b[n]),n);
771 bn_sub_words(&(r[0]),&(a[n]),&(a[0]),n);
772 bn_sub_words(&(r[n]),&(b[n]),&(b[0]),n);
781 bn_sub_words(&(r[0]),&(a[0]),&(a[n]),n);
782 bn_sub_words(&(r[n]),&(b[0]),&(b[n]),n);
789 bn_sub_words(&(r[0]),&(a[0]),&(a[n]),n);
790 bn_sub_words(&(r[n]),&(b[n]),&(b[0]),n);
795 /* t[10] = (a[0]-a[1])*(b[1]-b[0]) */
796 /* r[10] = (a[1]*b[1]) */
800 bn_mul_comba8(&(t[0]),&(r[0]),&(r[n]));
801 bn_mul_comba8(r,&(a[n]),&(b[n]));
806 bn_mul_recursive(&(t[0]),&(r[0]),&(r[n]),n,0,0,&(t[n2]));
807 bn_mul_recursive(r,&(a[n]),&(b[n]),n,0,0,&(t[n2]));
811 * s1 == low(ah*bh)+low((al-ah)*(bh-bl))+low(al*bl)+high(al*bl)
812 * We know s0 and s1 so the only unknown is high(al*bl)
813 * high(al*bl) == s1 - low(ah*bh+s0+(al-ah)*(bh-bl))
814 * high(al*bl) == s1 - (r[0]+l[0]+t[0])
819 c1=(int)(bn_add_words(lp,&(r[0]),&(l[0]),n));
828 neg=(int)(bn_sub_words(&(t[n2]),lp,&(t[0]),n));
831 bn_add_words(&(t[n2]),lp,&(t[0]),n);
837 bn_sub_words(&(t[n2+n]),&(l[n]),&(t[n2]),n);
844 lp[i]=((~mp[i])+1)&BN_MASK2;
849 * t[10] = (a[0]-a[1])*(b[1]-b[0]) neg is the sign
850 * r[10] = (a[1]*b[1])
853 * R[21] = al*bl + ah*bh + (a[0]-a[1])*(b[1]-b[0])
856 /* R[1]=t[3]+l[0]+r[0](+-)t[0] (have carry/borrow)
857 * R[2]=r[0]+t[3]+r[1](+-)t[1] (have carry/borrow)
858 * R[3]=r[1]+(carry/borrow)
863 c1= (int)(bn_add_words(lp,&(t[n2+n]),&(l[0]),n));
870 c1+=(int)(bn_add_words(&(t[n2]),lp, &(r[0]),n));
872 c1-=(int)(bn_sub_words(&(t[n2]),&(t[n2]),&(t[0]),n));
874 c1+=(int)(bn_add_words(&(t[n2]),&(t[n2]),&(t[0]),n));
876 c2 =(int)(bn_add_words(&(r[0]),&(r[0]),&(t[n2+n]),n));
877 c2+=(int)(bn_add_words(&(r[0]),&(r[0]),&(r[n]),n));
879 c2-=(int)(bn_sub_words(&(r[0]),&(r[0]),&(t[n]),n));
881 c2+=(int)(bn_add_words(&(r[0]),&(r[0]),&(t[n]),n));
883 if (c1 != 0) /* Add starting at r[0], could be +ve or -ve */
890 ll=(r[i]+lc)&BN_MASK2;
900 r[i++]=(ll-lc)&BN_MASK2;
905 if (c2 != 0) /* Add starting at r[1] */
912 ll=(r[i]+lc)&BN_MASK2;
922 r[i++]=(ll-lc)&BN_MASK2;
928 #endif /* BN_RECURSION */
930 int BN_mul(BIGNUM *r, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx)
935 #if defined(BN_MUL_COMBA) || defined(BN_RECURSION)
944 fprintf(stderr,"BN_mul %d * %d\n",a->top,b->top);
954 if ((al == 0) || (bl == 0))
962 if ((r == a) || (r == b))
964 if ((rr = BN_CTX_get(ctx)) == NULL) goto err;
968 rr->neg=a->neg^b->neg;
970 #if defined(BN_MUL_COMBA) || defined(BN_RECURSION)
979 if (bn_wexpand(rr,8) == NULL) goto err;
981 bn_mul_comba4(rr->d,a->d,b->d);
987 if (bn_wexpand(rr,16) == NULL) goto err;
989 bn_mul_comba8(rr->d,a->d,b->d);
993 #endif /* BN_MUL_COMBA */
995 if ((al >= BN_MULL_SIZE_NORMAL) && (bl >= BN_MULL_SIZE_NORMAL))
997 if (i >= -1 && i <= 1)
1000 /* Find out the power of two lower or equal
1001 to the longest of the two numbers */
1004 j = BN_num_bits_word((BN_ULONG)al);
1008 j = BN_num_bits_word((BN_ULONG)bl);
1012 assert(j <= al || j <= bl);
1014 t = BN_CTX_get(ctx);
1015 if (al > j || bl > j)
1019 bn_mul_part_recursive(rr->d,a->d,b->d,
1022 else /* al <= j || bl <= j */
1026 bn_mul_recursive(rr->d,a->d,b->d,
1033 if (i == 1 && !BN_get_flags(b,BN_FLG_STATIC_DATA))
1035 BIGNUM *tmp_bn = (BIGNUM *)b;
1036 bn_wexpand(tmp_bn,al);
1041 else if (i == -1 && !BN_get_flags(a,BN_FLG_STATIC_DATA))
1043 BIGNUM *tmp_bn = (BIGNUM *)a;
1044 bn_wexpand(tmp_bn,bl);
1051 /* symmetric and > 4 */
1053 j=BN_num_bits_word((BN_ULONG)al);
1056 t = BN_CTX_get(ctx);
1057 if (al == j) /* exact multiple */
1061 bn_mul_recursive(rr->d,a->d,b->d,al,t->d);
1067 bn_mul_part_recursive(rr->d,a->d,b->d,al-j,j,t->d);
1074 #endif /* BN_RECURSION */
1075 if (bn_wexpand(rr,top) == NULL) goto err;
1077 bn_mul_normal(rr->d,a->d,al,b->d,bl);
1079 #if defined(BN_MUL_COMBA) || defined(BN_RECURSION)
1083 if (r != rr) BN_copy(r,rr);
1090 void bn_mul_normal(BN_ULONG *r, BN_ULONG *a, int na, BN_ULONG *b, int nb)
1095 fprintf(stderr," bn_mul_normal %d * %d\n",na,nb);
1103 itmp=na; na=nb; nb=itmp;
1104 ltmp=a; a=b; b=ltmp;
1108 rr[0]=bn_mul_words(r,a,na,b[0]);
1112 if (--nb <= 0) return;
1113 rr[1]=bn_mul_add_words(&(r[1]),a,na,b[1]);
1114 if (--nb <= 0) return;
1115 rr[2]=bn_mul_add_words(&(r[2]),a,na,b[2]);
1116 if (--nb <= 0) return;
1117 rr[3]=bn_mul_add_words(&(r[3]),a,na,b[3]);
1118 if (--nb <= 0) return;
1119 rr[4]=bn_mul_add_words(&(r[4]),a,na,b[4]);
1126 void bn_mul_low_normal(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, int n)
1129 fprintf(stderr," bn_mul_low_normal %d * %d\n",n,n);
1131 bn_mul_words(r,a,n,b[0]);
1135 if (--n <= 0) return;
1136 bn_mul_add_words(&(r[1]),a,n,b[1]);
1137 if (--n <= 0) return;
1138 bn_mul_add_words(&(r[2]),a,n,b[2]);
1139 if (--n <= 0) return;
1140 bn_mul_add_words(&(r[3]),a,n,b[3]);
1141 if (--n <= 0) return;
1142 bn_mul_add_words(&(r[4]),a,n,b[4]);
projects / openssl.git / blob