/src/gmp/mpn/powlo.c

Source (jump to first uncovered line)
/* mpn_powlo -- Compute R = U^E mod B^n, where B is the limb base.

Copyright 2007-2009, 2012, 2015, 2016, 2018, 2020 Free Software
Foundation, Inc.

This file is part of the GNU MP Library.

The GNU MP Library is free software; you can redistribute it and/or modify
it under the terms of either:

  * the GNU Lesser General Public License as published by the Free
    Software Foundation; either version 3 of the License, or (at your
    option) any later version.

or

  * the GNU General Public License as published by the Free Software
    Foundation; either version 2 of the License, or (at your option) any
    later version.

or both in parallel, as here.

The GNU MP Library is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
for more details.

You should have received copies of the GNU General Public License and the
GNU Lesser General Public License along with the GNU MP Library.  If not,
see https://www.gnu.org/licenses/.  */


#include "gmp-impl.h"
#include "longlong.h"


#define getbit(p,bi) \
  ((p[(bi - 1) / GMP_LIMB_BITS] >> (bi - 1) % GMP_LIMB_BITS) & 1)

static inline mp_limb_t
getbits (const mp_limb_t *p, mp_bitcnt_t bi, unsigned nbits)
{
  unsigned nbits_in_r;
  mp_limb_t r;
  mp_size_t i;

  if (bi <= nbits)
    {
      return p[0] & (((mp_limb_t) 1 << bi) - 1);
    }
  else
    {
      bi -= nbits;      /* bit index of low bit to extract */
      i = bi / GMP_NUMB_BITS;   /* word index of low bit to extract */
      bi %= GMP_NUMB_BITS;   /* bit index in low word */
      r = p[i] >> bi;     /* extract (low) bits */
      nbits_in_r = GMP_NUMB_BITS - bi;  /* number of bits now in r */
      if (nbits_in_r < nbits)   /* did we get enough bits? */
  r += p[i + 1] << nbits_in_r; /* prepend bits from higher word */
      return r & (((mp_limb_t) 1 << nbits) - 1);
    }
}

static inline unsigned
win_size (mp_bitcnt_t eb)
{
  unsigned k;
  static mp_bitcnt_t x[] = {7,25,81,241,673,1793,4609,11521,28161,~(mp_bitcnt_t)0};
  ASSERT (eb > 1);
  for (k = 0; eb > x[k++];)
    ;
  return k;
}

/* rp[n-1..0] = bp[n-1..0] ^ ep[en-1..0] mod B^n, B is the limb base.
   Requires that ep[en-1] is non-zero.
   Uses scratch space tp[3n-1..0], i.e., 3n words.  */
/* We only use n words in the scratch space, we should pass tp + n to
   mullo/sqrlo as a temporary area, it is needed. */
void
mpn_powlo (mp_ptr rp, mp_srcptr bp,
     mp_srcptr ep, mp_size_t en,
     mp_size_t n, mp_ptr tp)
{
  unsigned cnt;
  mp_bitcnt_t ebi;
  unsigned windowsize, this_windowsize;
  mp_limb_t expbits;
  mp_limb_t *pp;
  long i;
  int flipflop;
  TMP_DECL;

  ASSERT (en > 1 || (en == 1 && ep[0] > 1));

  TMP_MARK;

  MPN_SIZEINBASE_2EXP(ebi, ep, en, 1);

  windowsize = win_size (ebi);
  if (windowsize > 1)
    {
      mp_limb_t *this_pp, *last_pp;
      ASSERT (windowsize < ebi);

      pp = TMP_ALLOC_LIMBS ((n << (windowsize - 1)));

      this_pp = pp;

      MPN_COPY (this_pp, bp, n);

      /* Store b^2 in tp.  */
      mpn_sqrlo (tp, bp, n);

      /* Precompute odd powers of b and put them in the temporary area at pp.  */
      i = (1 << (windowsize - 1)) - 1;
      do
  {
    last_pp = this_pp;
    this_pp += n;
    mpn_mullo_n (this_pp, last_pp, tp, n);
  } while (--i != 0);

      expbits = getbits (ep, ebi, windowsize);
      ebi -= windowsize;

      /* THINK: Should we initialise the case expbits % 4 == 0 with a mullo? */
      count_trailing_zeros (cnt, expbits);
      ebi += cnt;
      expbits >>= cnt;

      MPN_COPY (rp, pp + n * (expbits >> 1), n);
    }
  else
    {
      pp = tp + n;
      MPN_COPY (pp, bp, n);
      MPN_COPY (rp, bp, n);
      --ebi;
    }

  flipflop = 0;

  do
    {
      while (getbit (ep, ebi) == 0)
  {
    mpn_sqrlo (tp, rp, n);
    MP_PTR_SWAP (rp, tp);
    flipflop = ! flipflop;
    if (--ebi == 0)
      goto done;
  }

      /* The next bit of the exponent is 1.  Now extract the largest block of
   bits <= windowsize, and such that the least significant bit is 1.  */

      expbits = getbits (ep, ebi, windowsize);
      this_windowsize = MIN (windowsize, ebi);

      count_trailing_zeros (cnt, expbits);
      this_windowsize -= cnt;
      ebi -= this_windowsize;
      expbits >>= cnt;

      while (this_windowsize > 1)
  {
    mpn_sqrlo (tp, rp, n);
    mpn_sqrlo (rp, tp, n);
    this_windowsize -= 2;
  }

      if (this_windowsize != 0)
  mpn_sqrlo (tp, rp, n);
      else
  {
    MP_PTR_SWAP (rp, tp);
    flipflop = ! flipflop;
  }

      mpn_mullo_n (rp, tp, pp + n * (expbits >> 1), n);
    } while (ebi != 0);

 done:
  if (flipflop)
    MPN_COPY (tp, rp, n);
  TMP_FREE;
}

Line	Count	Source (jump to first uncovered line)
1		/* mpn_powlo -- Compute R = U^E mod B^n, where B is the limb base.
2
3		Copyright 2007-2009, 2012, 2015, 2016, 2018, 2020 Free Software
4		Foundation, Inc.
5
6		This file is part of the GNU MP Library.
7
8		The GNU MP Library is free software; you can redistribute it and/or modify
9		it under the terms of either:
10
11		* the GNU Lesser General Public License as published by the Free
12		Software Foundation; either version 3 of the License, or (at your
13		option) any later version.
14
15		or
16
17		* the GNU General Public License as published by the Free Software
18		Foundation; either version 2 of the License, or (at your option) any
19		later version.
20
21		or both in parallel, as here.
22
23		The GNU MP Library is distributed in the hope that it will be useful, but
24		WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
25		or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
26		for more details.
27
28		You should have received copies of the GNU General Public License and the
29		GNU Lesser General Public License along with the GNU MP Library. If not,
30		see https://www.gnu.org/licenses/. */
31
32
33		#include "gmp-impl.h"
34		#include "longlong.h"
35
36
37		#define getbit(p,bi) \
38	0	((p[(bi - 1) / GMP_LIMB_BITS] >> (bi - 1) % GMP_LIMB_BITS) & 1)
39
40		static inline mp_limb_t
41		getbits (const mp_limb_t *p, mp_bitcnt_t bi, unsigned nbits)
42	0	{
43	0	unsigned nbits_in_r;
44	0	mp_limb_t r;
45	0	mp_size_t i;
46
47	0	if (bi <= nbits)
48	0	{
49	0	return p[0] & (((mp_limb_t) 1 << bi) - 1);
50	0	}
51	0	else
52	0	{
53	0	bi -= nbits; /* bit index of low bit to extract */
54	0	i = bi / GMP_NUMB_BITS; /* word index of low bit to extract */
55	0	bi %= GMP_NUMB_BITS; /* bit index in low word */
56	0	r = p[i] >> bi; /* extract (low) bits */
57	0	nbits_in_r = GMP_NUMB_BITS - bi; /* number of bits now in r */
58	0	if (nbits_in_r < nbits) /* did we get enough bits? */
59	0	r += p[i + 1] << nbits_in_r; /* prepend bits from higher word */
60	0	return r & (((mp_limb_t) 1 << nbits) - 1);
61	0	}
62	0	}
63
64		static inline unsigned
65		win_size (mp_bitcnt_t eb)
66	0	{
67	0	unsigned k;
68	0	static mp_bitcnt_t x[] = {7,25,81,241,673,1793,4609,11521,28161,~(mp_bitcnt_t)0};
69	0	ASSERT (eb > 1);
70	0	for (k = 0; eb > x[k++];)
71	0	;
72	0	return k;
73	0	}
74
75		/* rp[n-1..0] = bp[n-1..0] ^ ep[en-1..0] mod B^n, B is the limb base.
76		Requires that ep[en-1] is non-zero.
77		Uses scratch space tp[3n-1..0], i.e., 3n words. */
78		/* We only use n words in the scratch space, we should pass tp + n to
79		mullo/sqrlo as a temporary area, it is needed. */
80		void
81		mpn_powlo (mp_ptr rp, mp_srcptr bp,
82		mp_srcptr ep, mp_size_t en,
83		mp_size_t n, mp_ptr tp)
84	0	{
85	0	unsigned cnt;
86	0	mp_bitcnt_t ebi;
87	0	unsigned windowsize, this_windowsize;
88	0	mp_limb_t expbits;
89	0	mp_limb_t *pp;
90	0	long i;
91	0	int flipflop;
92	0	TMP_DECL;
93
94	0	ASSERT (en > 1 \|\| (en == 1 && ep[0] > 1));
95
96	0	TMP_MARK;
97
98	0	MPN_SIZEINBASE_2EXP(ebi, ep, en, 1);
99
100	0	windowsize = win_size (ebi);
101	0	if (windowsize > 1)
102	0	{
103	0	mp_limb_t this_pp, last_pp;
104	0	ASSERT (windowsize < ebi);
105
106	0	pp = TMP_ALLOC_LIMBS ((n << (windowsize - 1)));
107
108	0	this_pp = pp;
109
110	0	MPN_COPY (this_pp, bp, n);
111
112		/* Store b^2 in tp. */
113	0	mpn_sqrlo (tp, bp, n);
114
115		/* Precompute odd powers of b and put them in the temporary area at pp. */
116	0	i = (1 << (windowsize - 1)) - 1;
117	0	do
118	0	{
119	0	last_pp = this_pp;
120	0	this_pp += n;
121	0	mpn_mullo_n (this_pp, last_pp, tp, n);
122	0	} while (--i != 0);
123
124	0	expbits = getbits (ep, ebi, windowsize);
125	0	ebi -= windowsize;
126
127		/* THINK: Should we initialise the case expbits % 4 == 0 with a mullo? */
128	0	count_trailing_zeros (cnt, expbits);
129	0	ebi += cnt;
130	0	expbits >>= cnt;
131
132	0	MPN_COPY (rp, pp + n * (expbits >> 1), n);
133	0	}
134	0	else
135	0	{
136	0	pp = tp + n;
137	0	MPN_COPY (pp, bp, n);
138	0	MPN_COPY (rp, bp, n);
139	0	--ebi;
140	0	}
141
142	0	flipflop = 0;
143
144	0	do
145	0	{
146	0	while (getbit (ep, ebi) == 0)
147	0	{
148	0	mpn_sqrlo (tp, rp, n);
149	0	MP_PTR_SWAP (rp, tp);
150	0	flipflop = ! flipflop;
151	0	if (--ebi == 0)
152	0	goto done;
153	0	}
154
155		/* The next bit of the exponent is 1. Now extract the largest block of
156		bits <= windowsize, and such that the least significant bit is 1. */
157
158	0	expbits = getbits (ep, ebi, windowsize);
159	0	this_windowsize = MIN (windowsize, ebi);
160
161	0	count_trailing_zeros (cnt, expbits);
162	0	this_windowsize -= cnt;
163	0	ebi -= this_windowsize;
164	0	expbits >>= cnt;
165
166	0	while (this_windowsize > 1)
167	0	{
168	0	mpn_sqrlo (tp, rp, n);
169	0	mpn_sqrlo (rp, tp, n);
170	0	this_windowsize -= 2;
171	0	}
172
173	0	if (this_windowsize != 0)
174	0	mpn_sqrlo (tp, rp, n);
175	0	else
176	0	{
177	0	MP_PTR_SWAP (rp, tp);
178	0	flipflop = ! flipflop;
179	0	}
180
181	0	mpn_mullo_n (rp, tp, pp + n * (expbits >> 1), n);
182	0	} while (ebi != 0);
183
184	0	done:
185	0	if (flipflop)
186	0	MPN_COPY (tp, rp, n);
187	0	TMP_FREE;
188	0	}

Coverage Report

Created: 2025-03-06 07:58