2 * FILE: d0_bignum-gmp.c
3 * AUTHOR: Rudolf Polzer - divVerent@xonotic.org
5 * Copyright (c) 2010, Rudolf Polzer
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the copyright holder nor the names of contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTOR(S) ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTOR(S) BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
36 /* NOTE: this file links against libgmp (http://gmplib.org), which is under the
37 * Lesser General Public License 2.1 or later. You may have to abide to its
38 * terms too if you use this file.
39 * To alternatively link to OpenSSL, provide the option --with-openssl to
48 #include "d0_bignum.h"
59 static gmp_randstate_t RANDSTATE;
60 static d0_bignum_t temp;
61 static void *tempmutex = NULL; // hold this mutex when using RANDSTATE or temp
66 D0_WARN_UNUSED_RESULT D0_BOOL d0_bignum_INITIALIZE(void)
70 unsigned char buf[256];
72 tempmutex = d0_createmutex();
73 d0_lockmutex(tempmutex);
75 d0_bignum_init(&temp);
76 gmp_randinit_mt(RANDSTATE);
77 gmp_randseed_ui(RANDSTATE, time(NULL));
78 * (time_t *) (&buf[0]) = time(0); // if everything else fails, we use the current time + uninitialized data
81 HCRYPTPROV hCryptProv;
82 if(CryptAcquireContext(&hCryptProv, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))
84 if(!CryptGenRandom(hCryptProv, sizeof(buf), (PBYTE) &buf[0]))
86 fprintf(stderr, "WARNING: could not initialize random number generator (CryptGenRandom failed)\n");
89 CryptReleaseContext(hCryptProv, 0);
91 else if(CryptAcquireContext(&hCryptProv, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT | CRYPT_NEWKEYSET))
93 if(!CryptGenRandom(hCryptProv, sizeof(buf), (PBYTE) &buf[0]))
95 fprintf(stderr, "WARNING: could not initialize random number generator (CryptGenRandom failed)\n");
98 CryptReleaseContext(hCryptProv, 0);
102 fprintf(stderr, "WARNING: could not initialize random number generator (CryptAcquireContext failed)\n");
107 f = fopen("/dev/urandom", "rb");
109 f = fopen("/dev/random", "rb");
113 if(fread(buf, sizeof(buf), 1, f) != 1)
115 fprintf(stderr, "WARNING: could not initialize random number generator (read from random device failed)\n");
122 fprintf(stderr, "WARNING: could not initialize random number generator (no random device found)\n");
127 mpz_import(temp.z, sizeof(buf), 1, 1, 0, 0, buf);
128 gmp_randseed(RANDSTATE, temp.z);
130 d0_unlockmutex(tempmutex);
135 void d0_bignum_SHUTDOWN(void)
137 d0_lockmutex(tempmutex);
139 d0_bignum_clear(&temp);
140 gmp_randclear(RANDSTATE);
142 d0_unlockmutex(tempmutex);
143 d0_destroymutex(tempmutex);
147 D0_BOOL d0_iobuf_write_bignum(d0_iobuf_t *buf, const d0_bignum_t *bignum)
149 static __thread unsigned char numbuf[65536];
151 numbuf[0] = mpz_sgn(bignum->z) & 3;
152 if((numbuf[0] & 3) != 0) // nonzero
154 count = (mpz_sizeinbase(bignum->z, 2) + 7) / 8;
155 if(count > sizeof(numbuf) - 1)
157 mpz_export(numbuf+1, &count, 1, 1, 0, 0, bignum->z);
159 return d0_iobuf_write_packet(buf, numbuf, count + 1);
162 d0_bignum_t *d0_iobuf_read_bignum(d0_iobuf_t *buf, d0_bignum_t *bignum)
164 static __thread unsigned char numbuf[65536];
165 size_t count = sizeof(numbuf);
166 if(!d0_iobuf_read_packet(buf, numbuf, &count))
170 if(!bignum) bignum = d0_bignum_new(); if(!bignum) return NULL;
171 if(numbuf[0] & 3) // nonzero
173 mpz_import(bignum->z, count-1, 1, 1, 0, 0, numbuf+1);
174 if(numbuf[0] & 2) // negative
175 mpz_neg(bignum->z, bignum->z);
179 mpz_set_ui(bignum->z, 0);
184 ssize_t d0_bignum_export_unsigned(const d0_bignum_t *bignum, void *buf, size_t bufsize)
187 count = (mpz_sizeinbase(bignum->z, 2) + 7) / 8;
192 // pad from left (big endian numbers!)
193 memset(buf, 0, bufsize - count);
194 buf += bufsize - count;
197 mpz_export(buf, &bufsize, 1, 1, 0, 0, bignum->z);
201 // mpz_sizeinbase lied to us
203 // there is no sane way whatsoever to handle this
209 // mpz_sizeinbase lied to us
213 memset(buf, 0, count);
217 memmove(buf + count - bufsize, buf, bufsize);
218 memset(buf, 0, count - bufsize);
224 d0_bignum_t *d0_bignum_import_unsigned(d0_bignum_t *bignum, const void *buf, size_t bufsize)
227 if(!bignum) bignum = d0_bignum_new(); if(!bignum) return NULL;
228 mpz_import(bignum->z, bufsize, 1, 1, 0, 0, buf);
232 d0_bignum_t *d0_bignum_new(void)
234 d0_bignum_t *b = d0_malloc(sizeof(d0_bignum_t));
239 void d0_bignum_free(d0_bignum_t *a)
245 void d0_bignum_init(d0_bignum_t *b)
250 void d0_bignum_clear(d0_bignum_t *a)
255 size_t d0_bignum_size(const d0_bignum_t *r)
257 return mpz_sizeinbase(r->z, 2);
260 int d0_bignum_cmp(const d0_bignum_t *a, const d0_bignum_t *b)
262 return mpz_cmp(a->z, b->z);
265 d0_bignum_t *d0_bignum_rand_range(d0_bignum_t *r, const d0_bignum_t *min, const d0_bignum_t *max)
267 if(!r) r = d0_bignum_new(); if(!r) return NULL;
268 d0_lockmutex(tempmutex);
269 mpz_sub(temp.z, max->z, min->z);
270 mpz_urandomm(r->z, RANDSTATE, temp.z);
271 d0_unlockmutex(tempmutex);
272 mpz_add(r->z, r->z, min->z);
276 d0_bignum_t *d0_bignum_rand_bit_atmost(d0_bignum_t *r, size_t n)
278 if(!r) r = d0_bignum_new(); if(!r) return NULL;
279 d0_lockmutex(tempmutex);
280 mpz_urandomb(r->z, RANDSTATE, n);
281 d0_unlockmutex(tempmutex);
285 d0_bignum_t *d0_bignum_rand_bit_exact(d0_bignum_t *r, size_t n)
287 if(!r) r = d0_bignum_new(); if(!r) return NULL;
288 d0_lockmutex(tempmutex);
289 mpz_urandomb(r->z, RANDSTATE, n-1);
290 d0_unlockmutex(tempmutex);
291 mpz_setbit(r->z, n-1);
295 d0_bignum_t *d0_bignum_zero(d0_bignum_t *r)
297 return d0_bignum_int(r, 0);
300 d0_bignum_t *d0_bignum_one(d0_bignum_t *r)
302 return d0_bignum_int(r, 1);
305 d0_bignum_t *d0_bignum_int(d0_bignum_t *r, int n)
307 if(!r) r = d0_bignum_new(); if(!r) return NULL;
312 d0_bignum_t *d0_bignum_mov(d0_bignum_t *r, const d0_bignum_t *a)
316 if(!r) r = d0_bignum_new(); if(!r) return NULL;
321 d0_bignum_t *d0_bignum_neg(d0_bignum_t *r, const d0_bignum_t *a)
323 if(!r) r = d0_bignum_new(); if(!r) return NULL;
328 d0_bignum_t *d0_bignum_shl(d0_bignum_t *r, const d0_bignum_t *a, ssize_t n)
330 if(!r) r = d0_bignum_new(); if(!r) return NULL;
332 mpz_mul_2exp(r->z, a->z, n);
334 mpz_fdiv_q_2exp(r->z, a->z, -n);
340 d0_bignum_t *d0_bignum_add(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b)
342 if(!r) r = d0_bignum_new(); if(!r) return NULL;
343 mpz_add(r->z, a->z, b->z);
347 d0_bignum_t *d0_bignum_sub(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b)
349 if(!r) r = d0_bignum_new(); if(!r) return NULL;
350 mpz_sub(r->z, a->z, b->z);
354 d0_bignum_t *d0_bignum_mul(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b)
356 if(!r) r = d0_bignum_new(); if(!r) return NULL;
357 mpz_mul(r->z, a->z, b->z);
361 d0_bignum_t *d0_bignum_divmod(d0_bignum_t *q, d0_bignum_t *m, const d0_bignum_t *a, const d0_bignum_t *b)
367 mpz_fdiv_qr(q->z, m->z, a->z, b->z);
369 mpz_fdiv_q(q->z, a->z, b->z);
371 mpz_fdiv_r(m->z, a->z, b->z);
378 d0_bignum_t *d0_bignum_mod_add(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b, const d0_bignum_t *m)
380 r = d0_bignum_add(r, a, b);
381 mpz_fdiv_r(r->z, r->z, m->z);
385 d0_bignum_t *d0_bignum_mod_sub(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b, const d0_bignum_t *m)
387 r = d0_bignum_sub(r, a, b);
388 mpz_fdiv_r(r->z, r->z, m->z);
392 d0_bignum_t *d0_bignum_mod_mul(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b, const d0_bignum_t *m)
394 r = d0_bignum_mul(r, a, b);
395 mpz_fdiv_r(r->z, r->z, m->z);
399 d0_bignum_t *d0_bignum_mod_pow(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *b, const d0_bignum_t *m)
401 if(!r) r = d0_bignum_new(); if(!r) return NULL;
402 mpz_powm(r->z, a->z, b->z, m->z);
406 D0_BOOL d0_bignum_mod_inv(d0_bignum_t *r, const d0_bignum_t *a, const d0_bignum_t *m)
408 // here, r MUST be set, as otherwise we cannot return error state!
409 return mpz_invert(r->z, a->z, m->z);
412 int d0_bignum_isprime(const d0_bignum_t *r, int param)
414 return mpz_probab_prime_p(r->z, param);
417 d0_bignum_t *d0_bignum_gcd(d0_bignum_t *r, d0_bignum_t *s, d0_bignum_t *t, const d0_bignum_t *a, const d0_bignum_t *b)
419 if(!r) r = d0_bignum_new(); if(!r) return NULL;
421 mpz_gcdext(r->z, s->z, t ? t->z : NULL, a->z, b->z);
423 mpz_gcdext(r->z, t->z, NULL, b->z, a->z);
425 mpz_gcd(r->z, a->z, b->z);
429 char *d0_bignum_tostring(const d0_bignum_t *x, unsigned int base)
431 return mpz_get_str(NULL, base, x->z);