/src/wolfssl-disable-fastmath/wolfcrypt/src/wolfmath.c

Source (jump to first uncovered line)
/* wolfmath.c
 *
 * Copyright (C) 2006-2022 wolfSSL Inc.
 *
 * This file is part of wolfSSL.
 *
 * wolfSSL is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * wolfSSL is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
 */


/* common functions for either math library */

#ifdef HAVE_CONFIG_H
    #include <config.h>
#endif

/* in case user set USE_FAST_MATH there */
#include <wolfssl/wolfcrypt/settings.h>

#include <wolfssl/wolfcrypt/integer.h>

#include <wolfssl/wolfcrypt/error-crypt.h>
#include <wolfssl/wolfcrypt/logging.h>

#if defined(USE_FAST_MATH) || !defined(NO_BIG_INT)

#ifdef WOLFSSL_ASYNC_CRYPT
    #include <wolfssl/wolfcrypt/async.h>
#endif

#ifdef NO_INLINE
    #include <wolfssl/wolfcrypt/misc.h>
#else
    #define WOLFSSL_MISC_INCLUDED
    #include <wolfcrypt/src/misc.c>
#endif


#if !defined(WC_NO_CACHE_RESISTANT) && \
    ((defined(HAVE_ECC) && defined(ECC_TIMING_RESISTANT)) || \
     (defined(USE_FAST_MATH) && defined(TFM_TIMING_RESISTANT)))

    /* all off / all on pointer addresses for constant calculations */
    /* ecc.c uses same table */
    const wc_ptr_t wc_off_on_addr[2] =
    {
    #if defined(WC_64BIT_CPU)
        W64LIT(0x0000000000000000),
        W64LIT(0xffffffffffffffff)
    #elif defined(WC_16BIT_CPU)
        0x0000U,
        0xffffU
    #else
        /* 32 bit */
        0x00000000U,
        0xffffffffU
    #endif
    };
#endif


int get_digit_count(const mp_int* a)
{
    if (a == NULL)
        return 0;

    return a->used;
}

mp_digit get_digit(const mp_int* a, int n)
{
    if (a == NULL)
        return 0;

    return (n >= a->used || n < 0) ? 0 : a->dp[n];
}

#if defined(HAVE_ECC) || defined(WOLFSSL_MP_COND_COPY)
/* Conditionally copy a into b. Performed in constant time.
 *
 * a     MP integer to copy.
 * copy  On 1, copy a into b. on 0 leave b unchanged.
 * b     MP integer to copy into.
 * returns BAD_FUNC_ARG when a or b is NULL, MEMORY_E when growing b fails and
 *         MP_OKAY otherwise.
 */
int mp_cond_copy(mp_int* a, int copy, mp_int* b)
{
    int err = MP_OKAY;
    int i;
#if defined(SP_WORD_SIZE) && SP_WORD_SIZE == 8
    unsigned int mask = (unsigned int)0 - copy;
#else
    mp_digit mask = (mp_digit)0 - copy;
#endif

    if (a == NULL || b == NULL)
        err = BAD_FUNC_ARG;

    /* Ensure b has enough space to copy a into */
    if (err == MP_OKAY)
        err = mp_grow(b, a->used + 1);
    if (err == MP_OKAY) {
        /* When mask 0, b is unchanged2
         * When mask all set, b ^ b ^ a = a
         */
        /* Conditionaly copy all digits and then number of used diigits.
         * get_digit() returns 0 when index greater than available digit.
         */
        for (i = 0; i < a->used; i++) {
            b->dp[i] ^= (get_digit(a, i) ^ get_digit(b, i)) & mask;
        }
        for (; i < b->used; i++) {
            b->dp[i] ^= (get_digit(a, i) ^ get_digit(b, i)) & mask;
        }
        b->used ^= (a->used ^ b->used) & (int)mask;
#if (!defined(WOLFSSL_SP_MATH) && !defined(WOLFSSL_SP_MATH_ALL)) || \
    defined(WOLFSSL_SP_INT_NEGATIVE)
        b->sign ^= (a->sign ^ b->sign) & (int)mask;
#endif
    }

    return err;
}
#endif

#ifndef WC_NO_RNG
int get_rand_digit(WC_RNG* rng, mp_digit* d)
{
    return wc_RNG_GenerateBlock(rng, (byte*)d, sizeof(mp_digit));
}

#if defined(WC_RSA_BLINDING) || defined(WOLFCRYPT_HAVE_SAKKE)
int mp_rand(mp_int* a, int digits, WC_RNG* rng)
{
    int ret = 0;
    int cnt = digits * sizeof(mp_digit);
#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
    int i;
#endif

    if (rng == NULL) {
        ret = MISSING_RNG_E;
    }
    else if (a == NULL || digits == 0) {
        ret = BAD_FUNC_ARG;
    }

#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
    /* allocate space for digits */
    if (ret == MP_OKAY) {
        ret = mp_set_bit(a, digits * DIGIT_BIT - 1);
    }
#else
#if defined(WOLFSSL_SP_MATH) || defined(WOLFSSL_SP_MATH_ALL)
    if ((ret == MP_OKAY) && (digits > SP_INT_DIGITS))
#else
    if ((ret == MP_OKAY) && (digits > FP_SIZE))
#endif
    {
        ret = BAD_FUNC_ARG;
    }
    if (ret == MP_OKAY) {
        a->used = digits;
    }
#endif
    /* fill the data with random bytes */
    if (ret == MP_OKAY) {
        ret = wc_RNG_GenerateBlock(rng, (byte*)a->dp, cnt);
    }
    if (ret == MP_OKAY) {
#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
        /* Mask down each digit to only bits used */
        for (i = 0; i < a->used; i++) {
            a->dp[i] &= MP_MASK;
        }
#endif
        /* ensure top digit is not zero */
        while ((ret == MP_OKAY) && (a->dp[a->used - 1] == 0)) {
            ret = get_rand_digit(rng, &a->dp[a->used - 1]);
#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
            a->dp[a->used - 1] &= MP_MASK;
#endif
        }
    }

    return ret;
}
#endif /* WC_RSA_BLINDING || WOLFCRYPT_HAVE_SAKKE */
#endif

#if defined(HAVE_ECC) || defined(WOLFSSL_EXPORT_INT)
/* export an mp_int as unsigned char or hex string
 * encType is WC_TYPE_UNSIGNED_BIN or WC_TYPE_HEX_STR
 * return MP_OKAY on success */
int wc_export_int(mp_int* mp, byte* buf, word32* len, word32 keySz,
    int encType)
{
    int err;

    if (mp == NULL || buf == NULL || len == NULL)
        return BAD_FUNC_ARG;

    if (encType == WC_TYPE_HEX_STR) {
        /* for WC_TYPE_HEX_STR the keySz is not used.
         * The size is computed via mp_radix_size and checked with len input */
    #ifdef WC_MP_TO_RADIX
        int size = 0;
        err = mp_radix_size(mp, MP_RADIX_HEX, &size);
        if (err == MP_OKAY) {
            /* make sure we can fit result */
            if (*len < (word32)size) {
                *len = (word32)size;
                return BUFFER_E;
            }
            *len = (word32)size;
            err = mp_tohex(mp, (char*)buf);
        }
    #else
        err = NOT_COMPILED_IN;
    #endif
    }
    else {
        /* for WC_TYPE_UNSIGNED_BIN keySz is used to zero pad.
         * The key size is always returned as the size */
        if (*len < keySz) {
            *len = keySz;
            return BUFFER_E;
        }
        *len = keySz;
        XMEMSET(buf, 0, *len);
        err = mp_to_unsigned_bin(mp, buf + (keySz - mp_unsigned_bin_size(mp)));
    }

    return err;
}
#endif


#ifdef HAVE_WOLF_BIGINT
void wc_bigint_init(WC_BIGINT* a)
{
    if (a != NULL) {
        a->buf = NULL;
        a->len = 0;
        a->heap = NULL;
    }
}

int wc_bigint_alloc(WC_BIGINT* a, word32 sz)
{
    int err = MP_OKAY;

    if (a == NULL)
        return BAD_FUNC_ARG;

    if (sz > 0) {
        if (a->buf && sz > a->len) {
            wc_bigint_free(a);
        }
        if (a->buf == NULL) {
            a->buf = (byte*)XMALLOC(sz, a->heap, DYNAMIC_TYPE_WOLF_BIGINT);
            if (a->buf == NULL) {
                err = MP_MEM;
            }
        }
        else {
            XMEMSET(a->buf, 0, sz);
        }
    }
    a->len = sz;

    return err;
}

/* assumes input is big endian format */
int wc_bigint_from_unsigned_bin(WC_BIGINT* a, const byte* in, word32 inlen)
{
    int err;

    if (a == NULL || in == NULL || inlen == 0)
        return BAD_FUNC_ARG;

    err = wc_bigint_alloc(a, inlen);
    if (err == 0) {
        XMEMCPY(a->buf, in, inlen);
    }

    return err;
}

int wc_bigint_to_unsigned_bin(WC_BIGINT* a, byte* out, word32* outlen)
{
    word32 sz;

    if (a == NULL || out == NULL || outlen == NULL || *outlen == 0)
        return BAD_FUNC_ARG;

    /* trim to fit into output buffer */
    sz = a->len;
    if (a->len > *outlen) {
        WOLFSSL_MSG("wc_bigint_export: Truncating output");
        sz = *outlen;
    }

    if (a->buf) {
        XMEMCPY(out, a->buf, sz);
    }

    *outlen = sz;

    return MP_OKAY;
}

void wc_bigint_zero(WC_BIGINT* a)
{
    if (a && a->buf) {
        ForceZero(a->buf, a->len);
    }
}

void wc_bigint_free(WC_BIGINT* a)
{
    if (a) {
        if (a->buf) {
          XFREE(a->buf, a->heap, DYNAMIC_TYPE_WOLF_BIGINT);
        }
        a->buf = NULL;
        a->len = 0;
    }
}

/* sz: make sure the buffer is at least that size and zero padded.
 *     A `sz == 0` will use the size of `src`.
 *     The calculated sz is stored into dst->len in `wc_bigint_alloc`.
 */
int wc_mp_to_bigint_sz(mp_int* src, WC_BIGINT* dst, word32 sz)
{
    int err;
    word32 x, y;

    if (src == NULL || dst == NULL)
        return BAD_FUNC_ARG;

    /* get size of source */
    x = mp_unsigned_bin_size(src);
    if (sz < x)
        sz = x;

    /* make sure destination is allocated and large enough */
    err = wc_bigint_alloc(dst, sz);
    if (err == MP_OKAY && sz > 0) {
        /* leading zero pad */
        y = sz - x;
        XMEMSET(dst->buf, 0, y);

        /* export src as unsigned bin to destination buf */
        err = mp_to_unsigned_bin(src, dst->buf + y);
    }

    return err;
}

int wc_mp_to_bigint(mp_int* src, WC_BIGINT* dst)
{
    if (src == NULL || dst == NULL)
        return BAD_FUNC_ARG;

    return wc_mp_to_bigint_sz(src, dst, 0);
}

int wc_bigint_to_mp(WC_BIGINT* src, mp_int* dst)
{
    int err;

    if (src == NULL || dst == NULL)
        return BAD_FUNC_ARG;

    if (src->buf == NULL)
        return BAD_FUNC_ARG;

    err = mp_read_unsigned_bin(dst, src->buf, src->len);
    wc_bigint_free(src);

    return err;
}
#endif /* HAVE_WOLF_BIGINT */

#endif /* USE_FAST_MATH || !NO_BIG_INT */

Coverage Report

Created: 2022-08-24 06:37

Line	Count	Source (jump to first uncovered line)
1		/* wolfmath.c
2		*
3		* Copyright (C) 2006-2022 wolfSSL Inc.
4		*
5		* This file is part of wolfSSL.
6		*
7		* wolfSSL is free software; you can redistribute it and/or modify
8		* it under the terms of the GNU General Public License as published by
9		* the Free Software Foundation; either version 2 of the License, or
10		* (at your option) any later version.
11		*
12		* wolfSSL is distributed in the hope that it will be useful,
13		* but WITHOUT ANY WARRANTY; without even the implied warranty of
14		* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15		* GNU General Public License for more details.
16		*
17		* You should have received a copy of the GNU General Public License
18		* along with this program; if not, write to the Free Software
19		* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
20		*/
21
22
23		/* common functions for either math library */
24
25		#ifdef HAVE_CONFIG_H
26		#include <config.h>
27		#endif
28
29		/* in case user set USE_FAST_MATH there */
30		#include <wolfssl/wolfcrypt/settings.h>
31
32		#include <wolfssl/wolfcrypt/integer.h>
33
34		#include <wolfssl/wolfcrypt/error-crypt.h>
35		#include <wolfssl/wolfcrypt/logging.h>
36
37		#if defined(USE_FAST_MATH) \|\| !defined(NO_BIG_INT)
38
39		#ifdef WOLFSSL_ASYNC_CRYPT
40		#include <wolfssl/wolfcrypt/async.h>
41		#endif
42
43		#ifdef NO_INLINE
44		#include <wolfssl/wolfcrypt/misc.h>
45		#else
46		#define WOLFSSL_MISC_INCLUDED
47		#include <wolfcrypt/src/misc.c>
48		#endif
49
50
51		#if !defined(WC_NO_CACHE_RESISTANT) && \
52		((defined(HAVE_ECC) && defined(ECC_TIMING_RESISTANT)) \|\| \
53		(defined(USE_FAST_MATH) && defined(TFM_TIMING_RESISTANT)))
54
55		/* all off / all on pointer addresses for constant calculations */
56		/* ecc.c uses same table */
57		const wc_ptr_t wc_off_on_addr[2] =
58		{
59		#if defined(WC_64BIT_CPU)
60		W64LIT(0x0000000000000000),
61		W64LIT(0xffffffffffffffff)
62		#elif defined(WC_16BIT_CPU)
63		0x0000U,
64		0xffffU
65		#else
66		/* 32 bit */
67		0x00000000U,
68		0xffffffffU
69		#endif
70		};
71		#endif
72
73
74		int get_digit_count(const mp_int* a)
75	38.7k	{
76	38.7k	if (a == NULL)
77	0	return 0;
78
79	38.7k	return a->used;
80	38.7k	}
81
82		mp_digit get_digit(const mp_int* a, int n)
83	1.42M	{
84	1.42M	if (a == NULL)
85	0	return 0;
86
87	1.42M	return (n >= a->used \|\| n < 0) ? 0 : a->dp[n];
88	1.42M	}
89
90		#if defined(HAVE_ECC) \|\| defined(WOLFSSL_MP_COND_COPY)
91		/* Conditionally copy a into b. Performed in constant time.
92		*
93		* a MP integer to copy.
94		* copy On 1, copy a into b. on 0 leave b unchanged.
95		* b MP integer to copy into.
96		* returns BAD_FUNC_ARG when a or b is NULL, MEMORY_E when growing b fails and
97		* MP_OKAY otherwise.
98		*/
99		int mp_cond_copy(mp_int* a, int copy, mp_int* b)
100	82.9k	{
101	82.9k	int err = MP_OKAY;
102	82.9k	int i;
103		#if defined(SP_WORD_SIZE) && SP_WORD_SIZE == 8
104		unsigned int mask = (unsigned int)0 - copy;
105		#else
106	82.9k	mp_digit mask = (mp_digit)0 - copy;
107	82.9k	#endif
108
109	82.9k	if (a == NULL \|\| b == NULL)
110	0	err = BAD_FUNC_ARG;
111
112		/* Ensure b has enough space to copy a into */
113	82.9k	if (err == MP_OKAY)
114	82.9k	err = mp_grow(b, a->used + 1);
115	82.9k	if (err == MP_OKAY) {
116		/* When mask 0, b is unchanged2
117		* When mask all set, b ^ b ^ a = a
118		*/
119		/* Conditionaly copy all digits and then number of used diigits.
120		* get_digit() returns 0 when index greater than available digit.
121		*/
122	700k	for (i = 0; i < a->used; i++) {
123	617k	b->dp[i] ^= (get_digit(a, i) ^ get_digit(b, i)) & mask;
124	617k	}
125	178k	for (; i < b->used; i++) {
126	95.5k	b->dp[i] ^= (get_digit(a, i) ^ get_digit(b, i)) & mask;
127	95.5k	}
128	82.9k	b->used ^= (a->used ^ b->used) & (int)mask;
129		#if (!defined(WOLFSSL_SP_MATH) && !defined(WOLFSSL_SP_MATH_ALL)) \|\| \
130		defined(WOLFSSL_SP_INT_NEGATIVE)
131		b->sign ^= (a->sign ^ b->sign) & (int)mask;
132		#endif
133	82.9k	}
134
135	82.9k	return err;
136	82.9k	}
137		#endif
138
139		#ifndef WC_NO_RNG
140		int get_rand_digit(WC_RNG* rng, mp_digit* d)
141	1.58k	{
142	1.58k	return wc_RNG_GenerateBlock(rng, (byte*)d, sizeof(mp_digit));
143	1.58k	}
144
145		#if defined(WC_RSA_BLINDING) \|\| defined(WOLFCRYPT_HAVE_SAKKE)
146		int mp_rand(mp_int* a, int digits, WC_RNG* rng)
147	9.15k	{
148	9.15k	int ret = 0;
149	9.15k	int cnt = digits * sizeof(mp_digit);
150	9.15k	#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
151	9.15k	int i;
152	9.15k	#endif
153
154	9.15k	if (rng == NULL) {
155	0	ret = MISSING_RNG_E;
156	0	}
157	9.15k	else if (a == NULL \|\| digits == 0) {
158	41	ret = BAD_FUNC_ARG;
159	41	}
160
161	9.15k	#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
162		/* allocate space for digits */
163	9.15k	if (ret == MP_OKAY) {
164	9.11k	ret = mp_set_bit(a, digits * DIGIT_BIT - 1);
165	9.11k	}
166		#else
167		#if defined(WOLFSSL_SP_MATH) \|\| defined(WOLFSSL_SP_MATH_ALL)
168		if ((ret == MP_OKAY) && (digits > SP_INT_DIGITS))
169		#else
170		if ((ret == MP_OKAY) && (digits > FP_SIZE))
171		#endif
172		{
173		ret = BAD_FUNC_ARG;
174		}
175		if (ret == MP_OKAY) {
176		a->used = digits;
177		}
178		#endif
179		/* fill the data with random bytes */
180	9.15k	if (ret == MP_OKAY) {
181	9.07k	ret = wc_RNG_GenerateBlock(rng, (byte*)a->dp, cnt);
182	9.07k	}
183	9.15k	if (ret == MP_OKAY) {
184	9.05k	#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
185		/* Mask down each digit to only bits used */
186	287k	for (i = 0; i < a->used; i++) {
187	278k	a->dp[i] &= MP_MASK;
188	278k	}
189	9.05k	#endif
190		/* ensure top digit is not zero */
191	10.2k	while ((ret == MP_OKAY) && (a->dp[a->used - 1] == 0)) {
192	1.17k	ret = get_rand_digit(rng, &a->dp[a->used - 1]);
193	1.17k	#if !defined(USE_FAST_MATH) && !defined(WOLFSSL_SP_MATH)
194	1.17k	a->dp[a->used - 1] &= MP_MASK;
195	1.17k	#endif
196	1.17k	}
197	9.05k	}
198
199	9.15k	return ret;
200	9.15k	}
201		#endif /* WC_RSA_BLINDING \|\| WOLFCRYPT_HAVE_SAKKE */
202		#endif
203
204		#if defined(HAVE_ECC) \|\| defined(WOLFSSL_EXPORT_INT)
205		/* export an mp_int as unsigned char or hex string
206		* encType is WC_TYPE_UNSIGNED_BIN or WC_TYPE_HEX_STR
207		* return MP_OKAY on success */
208		int wc_export_int(mp_int* mp, byte* buf, word32* len, word32 keySz,
209		int encType)
210	0	{
211	0	int err;
212
213	0	if (mp == NULL \|\| buf == NULL \|\| len == NULL)
214	0	return BAD_FUNC_ARG;
215
216	0	if (encType == WC_TYPE_HEX_STR) {
217		/* for WC_TYPE_HEX_STR the keySz is not used.
218		* The size is computed via mp_radix_size and checked with len input */
219	0	#ifdef WC_MP_TO_RADIX
220	0	int size = 0;
221	0	err = mp_radix_size(mp, MP_RADIX_HEX, &size);
222	0	if (err == MP_OKAY) {
223		/* make sure we can fit result */
224	0	if (*len < (word32)size) {
225	0	*len = (word32)size;
226	0	return BUFFER_E;
227	0	}
228	0	*len = (word32)size;
229	0	err = mp_tohex(mp, (char*)buf);
230	0	}
231		#else
232		err = NOT_COMPILED_IN;
233		#endif
234	0	}
235	0	else {
236		/* for WC_TYPE_UNSIGNED_BIN keySz is used to zero pad.
237		* The key size is always returned as the size */
238	0	if (*len < keySz) {
239	0	*len = keySz;
240	0	return BUFFER_E;
241	0	}
242	0	*len = keySz;
243	0	XMEMSET(buf, 0, *len);
244	0	err = mp_to_unsigned_bin(mp, buf + (keySz - mp_unsigned_bin_size(mp)));
245	0	}
246
247	0	return err;
248	0	}
249		#endif
250
251
252		#ifdef HAVE_WOLF_BIGINT
253		void wc_bigint_init(WC_BIGINT* a)
254		{
255		if (a != NULL) {
256		a->buf = NULL;
257		a->len = 0;
258		a->heap = NULL;
259		}
260		}
261
262		int wc_bigint_alloc(WC_BIGINT* a, word32 sz)
263		{
264		int err = MP_OKAY;
265
266		if (a == NULL)
267		return BAD_FUNC_ARG;
268
269		if (sz > 0) {
270		if (a->buf && sz > a->len) {
271		wc_bigint_free(a);
272		}
273		if (a->buf == NULL) {
274		a->buf = (byte*)XMALLOC(sz, a->heap, DYNAMIC_TYPE_WOLF_BIGINT);
275		if (a->buf == NULL) {
276		err = MP_MEM;
277		}
278		}
279		else {
280		XMEMSET(a->buf, 0, sz);
281		}
282		}
283		a->len = sz;
284
285		return err;
286		}
287
288		/* assumes input is big endian format */
289		int wc_bigint_from_unsigned_bin(WC_BIGINT* a, const byte* in, word32 inlen)
290		{
291		int err;
292
293		if (a == NULL \|\| in == NULL \|\| inlen == 0)
294		return BAD_FUNC_ARG;
295
296		err = wc_bigint_alloc(a, inlen);
297		if (err == 0) {
298		XMEMCPY(a->buf, in, inlen);
299		}
300
301		return err;
302		}
303
304		int wc_bigint_to_unsigned_bin(WC_BIGINT* a, byte* out, word32* outlen)
305		{
306		word32 sz;
307
308		if (a == NULL \|\| out == NULL \|\| outlen == NULL \|\| *outlen == 0)
309		return BAD_FUNC_ARG;
310
311		/* trim to fit into output buffer */
312		sz = a->len;
313		if (a->len > *outlen) {
314		WOLFSSL_MSG("wc_bigint_export: Truncating output");
315		sz = *outlen;
316		}
317
318		if (a->buf) {
319		XMEMCPY(out, a->buf, sz);
320		}
321
322		*outlen = sz;
323
324		return MP_OKAY;
325		}
326
327		void wc_bigint_zero(WC_BIGINT* a)
328		{
329		if (a && a->buf) {
330		ForceZero(a->buf, a->len);
331		}
332		}
333
334		void wc_bigint_free(WC_BIGINT* a)
335		{
336		if (a) {
337		if (a->buf) {
338		XFREE(a->buf, a->heap, DYNAMIC_TYPE_WOLF_BIGINT);
339		}
340		a->buf = NULL;
341		a->len = 0;
342		}
343		}
344
345		/* sz: make sure the buffer is at least that size and zero padded.
346		* A `sz == 0` will use the size of `src`.
347		* The calculated sz is stored into dst->len in `wc_bigint_alloc`.
348		*/
349		int wc_mp_to_bigint_sz(mp_int* src, WC_BIGINT* dst, word32 sz)
350		{
351		int err;
352		word32 x, y;
353
354		if (src == NULL \|\| dst == NULL)
355		return BAD_FUNC_ARG;
356
357		/* get size of source */
358		x = mp_unsigned_bin_size(src);
359		if (sz < x)
360		sz = x;
361
362		/* make sure destination is allocated and large enough */
363		err = wc_bigint_alloc(dst, sz);
364		if (err == MP_OKAY && sz > 0) {
365		/* leading zero pad */
366		y = sz - x;
367		XMEMSET(dst->buf, 0, y);
368
369		/* export src as unsigned bin to destination buf */
370		err = mp_to_unsigned_bin(src, dst->buf + y);
371		}
372
373		return err;
374		}
375
376		int wc_mp_to_bigint(mp_int* src, WC_BIGINT* dst)
377		{
378		if (src == NULL \|\| dst == NULL)
379		return BAD_FUNC_ARG;
380
381		return wc_mp_to_bigint_sz(src, dst, 0);
382		}
383
384		int wc_bigint_to_mp(WC_BIGINT* src, mp_int* dst)
385		{
386		int err;
387
388		if (src == NULL \|\| dst == NULL)
389		return BAD_FUNC_ARG;
390
391		if (src->buf == NULL)
392		return BAD_FUNC_ARG;
393
394		err = mp_read_unsigned_bin(dst, src->buf, src->len);
395		wc_bigint_free(src);
396
397		return err;
398		}
399		#endif /* HAVE_WOLF_BIGINT */
400
401		#endif /* USE_FAST_MATH \|\| !NO_BIG_INT */