Botan 3.11.0
Crypto and TLS for C&
Public Types | Public Member Functions | Static Public Member Functions | Friends | List of all members
Botan::BigInt Class Referencefinal

#include <bigint.h>

Public Types

enum  Base : uint16_t { Decimal = 10 , Hexadecimal = 16 , Binary = 256 }
enum  Sign : uint8_t { Negative = 0 , Positive = 1 }

Public Member Functions

std::span< const word_as_span () const
void _assign_from_bytes (std::span< const uint8_t > bytes)
void _const_time_poison () const
void _const_time_unpoison () const
const word_data () const
BigInt abs () const
BigIntadd (const word y[], size_t y_words, Sign sign)
 BigInt ()=default
 BigInt (BigInt &&other) noexcept
 BigInt (const BigInt &other)=default
 BigInt (const uint8_t buf[], size_t length)
 BigInt (const uint8_t buf[], size_t length, Base base)
 BigInt (RandomNumberGenerator &rng, size_t bits, bool set_high_bit=true)
 Create a random BigInt of the specified size.
 BigInt (std::span< const uint8_t > bytes)
 BigInt (std::string_view str)
 BigInt (uint64_t n)
void binary_decode (const uint8_t buf[], size_t length)
void binary_decode (std::span< const uint8_t > buf)
void binary_encode (uint8_t buf[]) const
void binary_encode (uint8_t buf[], size_t len) const
size_t bits () const
uint8_t byte_at (size_t n) const
size_t bytes () const
void clear ()
void clear_bit (size_t n)
int32_t cmp (const BigInt &n, bool check_signs=true) const
int32_t cmp_word (word n) const
void cond_flip_sign (bool predicate)
void conditionally_set_bit (size_t n, bool set_it)
void const_time_poison () const
void const_time_unpoison () const
void ct_cond_add (bool predicate, const BigInt &value)
void ct_cond_assign (bool predicate, const BigInt &other)
void ct_cond_swap (bool predicate, BigInt &other)
void ct_reduce_below (const BigInt &mod, secure_vector< word > &ws, size_t bound)
void ct_shift_left (size_t shift)
const worddata () const
void encode_words (word out[], size_t size) const
void flip_sign ()
bool get_bit (size_t n) const
uint32_t get_substring (size_t offset, size_t length) const
secure_vector< word > & get_word_vector ()
const secure_vector< word > & get_word_vector () const
void grow_to (size_t n) const
bool is_equal (const BigInt &n) const
bool is_even () const
bool is_less_than (const BigInt &n) const
bool is_negative () const
bool is_nonzero () const
bool is_odd () const
bool is_positive () const
bool is_zero () const
void mask_bits (size_t n)
BigIntmod_add (const BigInt &y, const BigInt &mod, secure_vector< word > &ws)
BigIntmod_mul (uint8_t y, const BigInt &mod, secure_vector< word > &ws)
BigIntmod_sub (const BigInt &y, const BigInt &mod, secure_vector< word > &ws)
BigIntmul (const BigInt &y, secure_vector< word > &ws)
wordmutable_data ()
bool operator! () const
BigIntoperator%= (const BigInt &y)
word operator%= (word y)
BigIntoperator*= (const BigInt &y)
BigIntoperator*= (word y)
BigIntoperator++ ()
BigInt operator++ (int)
BigIntoperator+= (const BigInt &y)
BigIntoperator+= (word y)
BigInt operator- () const
BigIntoperator-- ()
BigInt operator-- (int)
BigIntoperator-= (const BigInt &y)
BigIntoperator-= (word y)
BigIntoperator/= (const BigInt &y)
BigIntoperator<<= (size_t shift)
BigIntoperator= (BigInt &&other) noexcept
BigIntoperator= (const BigInt &)=default
BigIntoperator>>= (size_t shift)
void randomize (RandomNumberGenerator &rng, size_t bitsize, bool set_high_bit=true)
size_t reduce_below (const BigInt &mod, secure_vector< word > &ws)
void resize (size_t s)
BigIntrev_sub (const word y[], size_t y_words, secure_vector< word > &ws)
Sign reverse_sign () const
template<typename T = std::vector<uint8_t>>
serialize () const
template<typename T = std::vector<uint8_t>>
serialize (size_t len) const
void serialize_to (std::span< uint8_t > out) const
void set_bit (size_t n)
void set_sign (Sign sign)
void set_word_at (size_t i, word w)
void set_words (const word w[], size_t len)
size_t sig_words () const
Sign sign () const
size_t size () const
BigIntsquare (secure_vector< word > &ws)
BigIntsub (const word y[], size_t y_words, Sign sign)
void swap (BigInt &other) noexcept
void swap_reg (secure_vector< word > &reg)
std::string to_dec_string () const
std::string to_hex_string () const
uint32_t to_u32bit () const
size_t top_bits_free () const
word word_at (size_t n) const
 ~BigInt ()

Static Public Member Functions

static BigInt _from_words (secure_vector< word > &words)
static BigInt add2 (const BigInt &x, const word y[], size_t y_words, Sign y_sign)
static BigInt decode (const uint8_t buf[], size_t length)
static BigInt decode (const uint8_t buf[], size_t length, Base base)
static BigInt decode (std::span< const uint8_t > buf)
static BigInt decode (std::span< const uint8_t > buf, Base base)
static std::vector< uint8_t > encode (const BigInt &n)
static secure_vector< uint8_t > encode_1363 (const BigInt &n, size_t bytes)
static void encode_1363 (std::span< uint8_t > out, const BigInt &n)
static void encode_1363 (uint8_t out[], size_t bytes, const BigInt &n)
static secure_vector< uint8_t > encode_fixed_length_int_pair (const BigInt &n1, const BigInt &n2, size_t bytes)
static secure_vector< uint8_t > encode_locked (const BigInt &n)
static BigInt from_bytes (std::span< const uint8_t > bytes)
static BigInt from_bytes_with_max_bits (const uint8_t buf[], size_t length, size_t max_bits)
static BigInt from_radix_digits (std::string_view digits, size_t radix)
static BigInt from_s32 (int32_t n)
static BigInt from_string (std::string_view str)
static BigInt from_u64 (uint64_t n)
static BigInt from_word (word n)
static BigInt one ()
static BigInt power_of_2 (size_t n)
static BigInt random_integer (RandomNumberGenerator &rng, const BigInt &min, const BigInt &max)
static BigInt with_capacity (size_t n)
static BigInt zero ()

Friends

void swap (BigInt &x, BigInt &y) noexcept

Detailed Description

Arbitrary precision integer

Definition at line 26 of file bigint.h.

Member Enumeration Documentation

◆ Base

enum Botan::BigInt::Base : uint16_t

Base enumerator for encoding and decoding

Enumerator
Decimal 
Hexadecimal 
Binary 

Definition at line 31 of file bigint.h.

31 : uint16_t /* NOLINT(*-use-enum-class) */ {
32 Decimal BOTAN_DEPRECATED("All functions using this enum are deprecated") = 10,
33 Hexadecimal BOTAN_DEPRECATED("All functions using this enum are deprecated") = 16,
34 Binary BOTAN_DEPRECATED("All functions using this enum are deprecated") = 256
35 };
BOTAN_DEPRECATED
#define BOTAN_DEPRECATED(msg)
Definition api.h:73

◆ Sign

enum Botan::BigInt::Sign : uint8_t

Sign symbol definitions for positive and negative numbers

Enumerator
Negative 
Positive 

Definition at line 40 of file bigint.h.

40: uint8_t /* NOLINT(*-use-enum-class) */ { Negative = 0, Positive = 1 };

Constructor & Destructor Documentation

◆ BigInt() [1/9]

Botan::BigInt::BigInt ( )
default

Create empty (zero) BigInt

Referenced by _from_words(), abs(), add(), add2(), BigInt(), BigInt(), BigInt(), cmp(), ct_cond_add(), ct_cond_assign(), ct_cond_swap(), ct_reduce_below(), ct_shift_left(), decode(), decode(), decode(), decode(), encode(), encode_1363(), encode_1363(), encode_1363(), encode_fixed_length_int_pair(), encode_locked(), from_bytes(), from_bytes_with_max_bits(), from_radix_digits(), from_s32(), from_string(), from_u64(), from_word(), is_equal(), is_less_than(), mod_add(), mod_mul(), mod_sub(), mul(), one(), operator%=(), operator*=(), operator*=(), operator++(), operator++(), operator+=(), operator+=(), operator-(), operator--(), operator--(), operator-=(), operator-=(), operator/=(), operator<<=(), operator=(), operator=(), operator>>=(), power_of_2(), random_integer(), reduce_below(), rev_sub(), square(), sub(), swap(), swap, to_dec_string(), with_capacity(), and zero().

◆ BigInt() [2/9]

Botan::BigInt::BigInt ( uint64_t n)

Create BigInt from an unsigned 64 bit integer

Parameters
ninitial value of this BigInt

Prefer BigInt::from_u64

Definition at line 20 of file bigint.cpp.

20 {
21 if constexpr(sizeof(word) == 8) {
22 m_data.set_word_at(0, static_cast<word>(n));
23 } else {
24 m_data.set_word_at(1, static_cast<word>(n >> 32));
25 m_data.set_word_at(0, static_cast<word>(n));
26 }
27}
Botan::word
std::conditional_t< HasNative64BitRegisters, std::uint64_t, uint32_t > word
Definition types.h:119

◆ BigInt() [3/9]

Botan::BigInt::BigInt ( const BigInt & other)
default

Copy Constructor

Parameters
otherthe BigInt to copy

References BigInt().

◆ BigInt() [4/9]

Botan::BigInt::BigInt ( std::string_view str)
inlineexplicit

Create BigInt from a string. If the string starts with 0x the rest of the string will be interpreted as hexadecimal digits. Otherwise, it will be interpreted as a decimal number.

Parameters
strthe string to parse for an integer value

Definition at line 98 of file bigint.h.

98{ *this = BigInt::from_string(str); }
Botan::BigInt::from_string
static BigInt from_string(std::string_view str)
Definition bigint.cpp:57

References BigInt(), and from_string().

◆ BigInt() [5/9]

Botan::BigInt::BigInt ( const uint8_t buf[],
size_t length )
inline

Create a BigInt from an integer in a byte array

Parameters
bufthe byte array holding the value
lengthsize of buf

Definition at line 133 of file bigint.h.

133{ assign_from_bytes(std::span{buf, length}); }

◆ BigInt() [6/9]

Botan::BigInt::BigInt ( std::span< const uint8_t > bytes)
inlineexplicit

Create a BigInt from an integer in a byte array

Parameters
bytesthe byte vector holding the value

Definition at line 139 of file bigint.h.

139{ assign_from_bytes(bytes); }
Botan::BigInt::bytes
size_t bytes() const
Definition bigint.cpp:294

References bytes().

◆ BigInt() [7/9]

Botan::BigInt::BigInt ( const uint8_t buf[],
size_t length,
Base base )

Create a BigInt from an integer in a byte array

Parameters
bufthe byte array holding the value
lengthsize of buf
baseis the number base of the integer in buf

Definition at line 92 of file bigint.cpp.

92 {
93 *this = decode(input, length, base);
94}
Botan::BigInt::decode
static BigInt decode(const uint8_t buf[], size_t length)
Definition bigint.h:873

References decode().

◆ BigInt() [8/9]

Botan::BigInt::BigInt ( RandomNumberGenerator & rng,
size_t bits,
bool set_high_bit = true )

Create a random BigInt of the specified size.

Parameters
rngrandom number generator
bitssize in bits
set_high_bitif true, the highest bit is always set
See also
randomize

Definition at line 114 of file bigint.cpp.

114 {
115 randomize(rng, bits, set_high_bit);
116}
Botan::BigInt::randomize
void randomize(RandomNumberGenerator &rng, size_t bitsize, bool set_high_bit=true)
Definition big_rand.cpp:19
Botan::BigInt::bits
size_t bits() const
Definition bigint.cpp:307

References bits(), and randomize().

◆ BigInt() [9/9]

Botan::BigInt::BigInt ( BigInt && other)
inlinenoexcept

Move constructor

Definition at line 183 of file bigint.h.

183{ this->swap(other); }
Botan::BigInt::swap
void swap(BigInt &other) noexcept
Definition bigint.h:207

References BigInt(), and swap().

◆ ~BigInt()

Botan::BigInt::~BigInt ( )
inline

Definition at line 185 of file bigint.h.

185{ _const_time_unpoison(); }
Botan::BigInt::_const_time_unpoison
void _const_time_unpoison() const
Definition bigint.cpp:553

References _const_time_unpoison().

Member Function Documentation

◆ _as_span()

std::span< const word > Botan::BigInt::_as_span ( ) const
inline

Return a span over the register

Warning
this is an implementation detail which is not for public use and not covered by SemVer.
Returns
span over the internal register

Definition at line 942 of file bigint.h.

942{ return m_data.const_span(); }

References _as_span().

Referenced by _as_span(), Botan::Montgomery_Int::Montgomery_Int(), and Botan::Barrett_Reduction::reduce().

◆ _assign_from_bytes()

void Botan::BigInt::_assign_from_bytes ( std::span< const uint8_t > bytes)
inline

Read integer value from a byte vector (big endian)

Warning
this is an implementation detail which is not for public use and not covered by SemVer. In applications use BigInt::from_bytes
Parameters
bytesthe span of bytes to load

Definition at line 963 of file bigint.h.

963{ assign_from_bytes(bytes); }

References bytes().

Referenced by Botan::BER_Decoder::decode(), Botan::generate_dsa_primes(), and Botan::RFC6979_Nonce_Generator::nonce_for().

◆ _const_time_poison()

void Botan::BigInt::_const_time_poison ( ) const

Mark this BigInt as holding secret data

Warning
this is an implementation detail which is not for public use and not covered by SemVer.

Definition at line 549 of file bigint.cpp.

549 {
550 CT::poison(m_data.const_data(), m_data.size());
551}
Botan::CT::poison
constexpr void poison(const T *p, size_t n)
Definition ct_utils.h:56

References Botan::CT::poison().

Referenced by const_time_poison().

◆ _const_time_unpoison()

void Botan::BigInt::_const_time_unpoison ( ) const

Mark this BigInt as no longer holding secret data

Warning
this is an implementation detail which is not for public use and not covered by SemVer.

Definition at line 553 of file bigint.cpp.

553 {
554 CT::unpoison(m_data.const_data(), m_data.size());
555}
Botan::CT::unpoison
constexpr void unpoison(const T *p, size_t n)
Definition ct_utils.h:67

References Botan::CT::unpoison().

Referenced by const_time_unpoison(), and ~BigInt().

◆ _data()

const word * Botan::BigInt::_data ( ) const
inline

Return a const pointer to the register

Warning
this is an implementation detail which is not for public use and not covered by SemVer.
Returns
a pointer to the start of the internal register

Definition at line 952 of file bigint.h.

952{ return m_data.const_data(); }

Referenced by add(), Botan::EC_Point::add(), add2(), Botan::EC_Point::add_affine(), cmp(), cmp_word(), ct_cond_add(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_modulo(), ct_reduce_below(), ct_shift_left(), encode_words(), is_equal(), is_less_than(), mod_add(), mod_sub(), mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul_by(), Botan::Barrett_Reduction::multiply(), Botan::operator*(), Botan::operator*(), Botan::operator+(), operator+=(), Botan::operator-(), operator-=(), Botan::operator<<(), Botan::operator>>(), reduce_below(), Botan::Montgomery_Params::sqr(), Botan::Montgomery_Params::sqr(), Botan::Barrett_Reduction::square(), and square().

◆ _from_words()

BigInt Botan::BigInt::_from_words ( secure_vector< word > & words)
inlinestatic

Create a BigInt from a word vector

Warning
this is an implementation detail which is not for public use and not covered by SemVer.

Definition at line 971 of file bigint.h.

971 {
972 BigInt bn;
973 bn.m_data.swap(words);
974 return bn;
975 }
Botan::BigInt::BigInt
BigInt()=default

References BigInt().

Referenced by Botan::Montgomery_Int::value().

◆ abs()

BigInt Botan::BigInt::abs ( ) const
Returns
absolute (positive) value of this

Definition at line 386 of file bigint.cpp.

386 {
387 BigInt x = (*this);
388 x.set_sign(Positive);
389 return x;
390}

References BigInt(), Positive, and set_sign().

Referenced by Botan::abs().

◆ add()

BigInt & Botan::BigInt::add ( const word y[],
size_t y_words,
Sign sign )

Definition at line 16 of file big_ops2.cpp.

16 {
17 const size_t x_sw = sig_words();
18
19 grow_to(std::max(x_sw, y_words) + 1);
20
21 if(sign() == y_sign) {
22 const word carry = bigint_add2(mutable_data(), size() - 1, y, y_words);
23 mutable_data()[size() - 1] += carry;
24 } else {
25 const int32_t relative_size = bigint_cmp(_data(), x_sw, y, y_words);
26
27 if(relative_size >= 0) {
28 // *this >= y
29 bigint_sub2(mutable_data(), x_sw, y, y_words);
30 } else {
31 // *this < y: compute *this = y - *this
32 bigint_sub2_rev(mutable_data(), y, y_words);
33 }
34
35 if(relative_size < 0) {
36 set_sign(y_sign);
37 } else if(relative_size == 0) {
38 set_sign(Positive);
39 }
40 }
41
42 return (*this);
43}
Botan::BigInt::sig_words
size_t sig_words() const
Definition bigint.h:631
Botan::BigInt::mutable_data
word * mutable_data()
Definition bigint.h:656
Botan::BigInt::size
size_t size() const
Definition bigint.h:625
Botan::BigInt::grow_to
void grow_to(size_t n) const
Definition bigint.h:682
Botan::BigInt::_data
const word * _data() const
Definition bigint.h:952
Botan::BigInt::sign
Sign sign() const
Definition bigint.h:587
Botan::BigInt::set_sign
void set_sign(Sign sign)
Definition bigint.h:608
Botan::bigint_add2
constexpr auto bigint_add2(W x[], size_t x_size, const W y[], size_t y_size) -> W
Definition mp_core.h:94
Botan::bigint_cmp
constexpr int32_t bigint_cmp(const W x[], size_t x_size, const W y[], size_t y_size)
Definition mp_core.h:426
Botan::carry
void carry(int64_t &h0, int64_t &h1)
Definition ed25519_internal.h:27
Botan::bigint_sub2
constexpr auto bigint_sub2(W x[], size_t x_size, const W y[], size_t y_size) -> W
Definition mp_core.h:148
Botan::bigint_sub2_rev
constexpr void bigint_sub2_rev(W x[], const W y[], size_t y_size)
Definition mp_core.h:174

References _data(), BigInt(), Botan::bigint_add2(), Botan::bigint_cmp(), Botan::bigint_sub2(), Botan::bigint_sub2_rev(), Botan::carry(), grow_to(), mutable_data(), Positive, set_sign(), sig_words(), sign(), and size().

Referenced by operator+=(), operator+=(), and sub().

◆ add2()

BigInt Botan::BigInt::add2 ( const BigInt & x,
const word y[],
size_t y_words,
BigInt::Sign y_sign )
static

Definition at line 20 of file big_ops3.cpp.

20 {
21 const size_t x_sw = x.sig_words();
22
23 BigInt z = BigInt::with_capacity(std::max(x_sw, y_size) + 1);
24
25 if(x.sign() == y_sign) {
26 const word carry = bigint_add3(z.mutable_data(), x._data(), x_sw, y, y_size);
27 z.mutable_data()[std::max(x_sw, y_size)] += carry;
28 z.set_sign(x.sign());
29 } else {
30 const int32_t relative_size = bigint_cmp(x.data(), x_sw, y, y_size);
31
32 if(relative_size < 0) {
33 // x < y so z = abs(y - x)
34 // NOLINTNEXTLINE(*-suspicious-call-argument) intentionally swapping x and y here
35 bigint_sub3(z.mutable_data(), y, y_size, x.data(), x_sw);
36 z.set_sign(y_sign);
37 } else if(relative_size == 0) {
38 // Positive zero (nothing to do in this case)
39 } else {
40 /*
41 * We know at this point that x >= y so if y_size is larger than
42 * x_sw, we are guaranteed they are just leading zeros which can
43 * be ignored
44 */
45 y_size = std::min(x_sw, y_size);
46 bigint_sub3(z.mutable_data(), x.data(), x_sw, y, y_size);
47 z.set_sign(x.sign());
48 }
49 }
50
51 return z;
52}
Botan::BigInt::with_capacity
static BigInt with_capacity(size_t n)
Definition bigint.cpp:51
Botan::bigint_add3
constexpr auto bigint_add3(W z[], const W x[], size_t x_size, const W y[], size_t y_size) -> W
Definition mp_core.h:120
Botan::bigint_sub3
constexpr auto bigint_sub3(W z[], const W x[], size_t x_size, const W y[], size_t y_size) -> W
Definition mp_core.h:192

References _data(), BigInt(), Botan::bigint_add3(), Botan::bigint_cmp(), Botan::bigint_sub3(), Botan::carry(), data(), mutable_data(), set_sign(), sig_words(), sign(), and with_capacity().

Referenced by Botan::operator+(), Botan::operator+(), Botan::operator-(), and Botan::operator-().

◆ binary_decode() [1/2]

void Botan::BigInt::binary_decode ( const uint8_t buf[],
size_t length )
inline

Read integer value from a byte array with given size

Parameters
bufbyte array buffer containing the integer
lengthsize of buf

Definition at line 773 of file bigint.h.

773 {
774 this->assign_from_bytes(std::span{buf, length});
775 }

References binary_decode(), and BOTAN_DEPRECATED.

Referenced by binary_decode(), and binary_decode().

◆ binary_decode() [2/2]

void Botan::BigInt::binary_decode ( std::span< const uint8_t > buf)
inline

Read integer value from a byte vector

Parameters
bufthe vector to load from

Definition at line 781 of file bigint.h.

781 {
782 this->assign_from_bytes(buf);
783 }

References binary_decode().

◆ binary_encode() [1/2]

void Botan::BigInt::binary_encode ( uint8_t buf[]) const
inline

Store BigInt-value in a given byte array

Parameters
bufdestination byte array for the integer value

Definition at line 748 of file bigint.h.

748 {
749 this->serialize_to(std::span{buf, this->bytes()});
750 }
Botan::BigInt::serialize_to
void serialize_to(std::span< uint8_t > out) const
Definition bigint.cpp:395

References binary_encode(), bytes(), and serialize_to().

Referenced by binary_encode(), and serialize_to().

◆ binary_encode() [2/2]

void Botan::BigInt::binary_encode ( uint8_t buf[],
size_t len ) const

Store BigInt-value in a given byte array. If len is less than the size of the value, then it will be truncated. If len is greater than the size of the value, it will be zero-padded. If len exactly equals this->bytes(), this function behaves identically to binary_encode.

Zero-padding the binary encoding is useful to ensure that other applications correctly parse the encoded value as "positive integer", as a leading 1-bit may be interpreted as a sign bit.

Parameters
bufdestination byte array for the integer value
lenhow many bytes to write

Definition at line 404 of file bigint.cpp.

404 {
405 const size_t full_words = len / sizeof(word);
406 const size_t extra_bytes = len % sizeof(word);
407
408 for(size_t i = 0; i != full_words; ++i) {
409 const word w = word_at(i);
410 store_be(w, output + (len - (i + 1) * sizeof(word)));
411 }
412
413 if(extra_bytes > 0) {
414 const word w = word_at(full_words);
415
416 for(size_t i = 0; i != extra_bytes; ++i) {
417 output[extra_bytes - i - 1] = get_byte_var(sizeof(word) - i - 1, w);
418 }
419 }
420}
Botan::BigInt::word_at
word word_at(size_t n) const
Definition bigint.h:563
Botan::get_byte_var
constexpr uint8_t get_byte_var(size_t byte_num, T input)
Definition loadstor.h:69
Botan::store_be
constexpr auto store_be(ParamTs &&... params)
Definition loadstor.h:745

References Botan::get_byte_var(), Botan::store_be(), and word_at().

◆ bits()

size_t Botan::BigInt::bits ( ) const

Get the bit length of the integer

Returns
bit length of the represented integer value

Definition at line 307 of file bigint.cpp.

307 {
308 const size_t words = sig_words();
309
310 if(words == 0) {
311 return 0;
312 }
313
314 const size_t full_words = (words - 1) * WordInfo<word>::bits;
315 const size_t top_bits = WordInfo<word>::bits - top_bits_free();
316
317 return full_words + top_bits;
318}
Botan::BigInt::top_bits_free
size_t top_bits_free() const
Definition bigint.cpp:298

References sig_words(), and top_bits_free().

Referenced by BigInt(), bytes(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_divide_word(), Botan::ct_mod_word(), Botan::ct_modulo(), Botan::BER_Decoder::decode(), Botan::BER_Decoder::decode_constrained_integer(), Botan::DL_Group::DL_Group(), Botan::EC_Group::EC_Group(), Botan::DER_Encoder::encode(), Botan::generate_dsa_primes(), Botan::generate_rfc6979_nonce(), Botan::generate_rsa_prime(), Botan::inverse_mod_general(), Botan::is_lucas_probable_prime(), Botan::is_perfect_square(), Botan::is_prime(), Botan::TPM_PrivateKey::key_length(), Botan::monty_multi_exp(), Botan::EC_Point::mul(), Botan::EC_Point_Base_Point_Precompute::mul(), Botan::EC_Point_Var_Point_Precompute::mul(), Botan::EC_Point_Multi_Point_Precompute::multi_exp(), Botan::RFC6979_Nonce_Generator::nonce_for(), operator/=(), Botan::passes_miller_rabin_test(), Botan::power_mod(), random_integer(), Botan::random_prime(), Botan::RSA_PrivateKey::RSA_PrivateKey(), Botan::srp6_client_agree(), Botan::srp6_group_identifier(), to_dec_string(), to_hex_string(), to_u32bit(), Botan::DL_Group::verify_element_pair(), and Botan::EC_Group::verify_group().

◆ byte_at()

uint8_t Botan::BigInt::byte_at ( size_t n) const
Parameters
nthe offset to get a byte from
Returns
byte at offset n

Definition at line 118 of file bigint.cpp.

118 {
119 return get_byte_var(sizeof(word) - (n % sizeof(word)) - 1, word_at(n / sizeof(word)));
120}

References Botan::get_byte_var(), and word_at().

Referenced by Botan::BER_Decoder::decode(), Botan::BER_Decoder::decode_constrained_integer(), and to_u32bit().

◆ bytes()

size_t Botan::BigInt::bytes ( ) const

Give byte length of the integer

Returns
byte length of the represented integer value

Definition at line 294 of file bigint.cpp.

294 {
295 return round_up(bits(), 8) / 8;
296}
Botan::round_up
constexpr size_t round_up(size_t n, size_t align_to)
Definition rounding.h:26

References bits(), and Botan::round_up().

Referenced by _assign_from_bytes(), Botan::base58_decode(), BigInt(), binary_encode(), Botan::DER_Encoder::encode(), encode_1363(), encode_1363(), encode_fixed_length_int_pair(), Botan::OS2ECP(), serialize(), serialize_to(), and to_hex_string().

◆ clear()

void Botan::BigInt::clear ( )
inline

Zeroize the BigInt. The size of the underlying register is not modified.

Definition at line 415 of file bigint.h.

415 {
416 m_data.set_to_zero();
417 m_signedness = Positive;
418 }

References clear(), and Positive.

Referenced by clear(), Botan::BER_Decoder::decode(), mul(), operator*=(), and randomize().

◆ clear_bit()

void Botan::BigInt::clear_bit ( size_t n)

Clear bit at specified position

Parameters
nbit position to clear

Definition at line 285 of file bigint.cpp.

285 {
286 const size_t which = n / WordInfo<word>::bits;
287
288 if(which < size()) {
289 const word mask = ~(static_cast<word>(1) << (n % WordInfo<word>::bits));
290 m_data.set_word_at(which, word_at(which) & mask);
291 }
292}

References size(), and word_at().

◆ cmp()

int32_t Botan::BigInt::cmp ( const BigInt & n,
bool check_signs = true ) const

Compare this to another BigInt

Parameters
nthe BigInt value to compare with
check_signsinclude sign in comparison?
Returns
if (this<n) return -1, if (this>n) return 1, if both values are identical return 0 [like Perl's <=> operator]

Definition at line 138 of file bigint.cpp.

138 {
139 if(check_signs) {
140 if(other.is_positive() && this->is_negative()) {
141 return -1;
142 }
143
144 if(other.is_negative() && this->is_positive()) {
145 return 1;
146 }
147
148 if(other.is_negative() && this->is_negative()) {
149 return (-bigint_cmp(this->_data(), this->size(), other._data(), other.size()));
150 }
151 }
152
153 return bigint_cmp(this->_data(), this->size(), other._data(), other.size());
154}

References _data(), BigInt(), Botan::bigint_cmp(), is_negative(), is_positive(), and size().

Referenced by Botan::operator<=(), and Botan::operator>=().

◆ cmp_word()

int32_t Botan::BigInt::cmp_word ( word n) const

Compare this to an integer

Parameters
nthe value to compare with
Returns
if (this<n) return -1, if (this>n) return 1, if both values are identical return 0 [like Perl's <=> operator]

Definition at line 122 of file bigint.cpp.

122 {
123 if(is_negative()) {
124 return -1; // other is positive ...
125 }
126
127 const size_t sw = this->sig_words();
128 if(sw > 1) {
129 return 1; // must be larger since other is just one word ...
130 }
131
132 return bigint_cmp(this->_data(), sw, &other, 1);
133}
Botan::BigInt::is_negative
bool is_negative() const
Definition bigint.h:575

References _data(), Botan::bigint_cmp(), is_negative(), and sig_words().

Referenced by Botan::operator!=(), Botan::operator<(), Botan::operator<=(), Botan::operator==(), Botan::operator>(), and Botan::operator>=().

◆ cond_flip_sign()

void Botan::BigInt::cond_flip_sign ( bool predicate)

If predicate is true flip the sign of *this

Definition at line 515 of file bigint.cpp.

515 {
516 // This code is assuming Negative == 0, Positive == 1
517
518 const auto mask = CT::Mask<uint8_t>::expand_bool(predicate);
519
520 const uint8_t current_sign = static_cast<uint8_t>(sign());
521
522 const uint8_t new_sign = mask.select(current_sign ^ 1, current_sign);
523
524 set_sign(static_cast<Sign>(new_sign));
525}
Botan::CT::Mask::expand_bool
static constexpr Mask< T > expand_bool(bool v)
Definition ct_utils.h:397

References Botan::CT::Mask< T >::expand_bool(), set_sign(), and sign().

Referenced by ct_cond_assign(), and Botan::operator*().

◆ conditionally_set_bit()

void Botan::BigInt::conditionally_set_bit ( size_t n,
bool set_it )
inline

Conditionally set bit at specified position. Note if set_it is false, nothing happens, and if the bit is already set, it remains set.

Parameters
nbit position to set
set_itif the bit should be set

Definition at line 489 of file bigint.h.

489 {
490 const size_t which = n / (sizeof(word) * 8);
491 const word mask = static_cast<word>(set_it) << (n % (sizeof(word) * 8));
492 m_data.set_word_at(which, word_at(which) | mask);
493 }

References word_at().

Referenced by Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_divide_word(), Botan::ct_modulo(), and set_bit().

◆ const_time_poison()

void Botan::BigInt::const_time_poison ( ) const
inline

Definition at line 819 of file bigint.h.

819{ _const_time_poison(); }
Botan::BigInt::_const_time_poison
void _const_time_poison() const
Definition bigint.cpp:549

References _const_time_poison(), BOTAN_DEPRECATED, and const_time_poison().

Referenced by const_time_poison().

◆ const_time_unpoison()

void Botan::BigInt::const_time_unpoison ( ) const
inline

Definition at line 821 of file bigint.h.

821{ _const_time_unpoison(); }

References _const_time_unpoison(), and const_time_unpoison().

Referenced by const_time_unpoison().

◆ ct_cond_add()

void Botan::BigInt::ct_cond_add ( bool predicate,
const BigInt & value )

If predicate is true add value to *this

Definition at line 449 of file bigint.cpp.

449 {
450 if(this->is_negative() || value.is_negative()) {
451 throw Invalid_Argument("BigInt::ct_cond_add requires both values to be positive");
452 }
453 const size_t v_words = value.sig_words();
454
455 this->grow_to(1 + v_words);
456
457 const auto mask = CT::Mask<word>::expand(static_cast<word>(predicate)).value();
458
459 word carry = 0;
460
461 word* x = this->mutable_data();
462 const word* y = value._data();
463
464 for(size_t i = 0; i != v_words; ++i) {
465 x[i] = word_add(x[i], y[i] & mask, &carry);
466 }
467
468 for(size_t i = v_words; i != size(); ++i) {
469 x[i] = word_add(x[i], static_cast<word>(0), &carry);
470 }
471}
Botan::CT::Mask::expand
static constexpr Mask< T > expand(T v)
Definition ct_utils.h:392
Botan::word_add
constexpr auto word_add(W x, W y, W *carry) -> W
Definition mp_asmi.h:231

References _data(), BigInt(), Botan::carry(), Botan::CT::Mask< T >::expand(), grow_to(), is_negative(), mutable_data(), sig_words(), size(), and Botan::word_add().

Referenced by Botan::inverse_mod_general(), and Botan::is_lucas_probable_prime().

◆ ct_cond_assign()

void Botan::BigInt::ct_cond_assign ( bool predicate,
const BigInt & other )

If predicate is true assign other to *this Uses a masked operation to avoid side channels

Definition at line 527 of file bigint.cpp.

527 {
528 const size_t t_words = size();
529 const size_t o_words = other.size();
530
531 if(o_words < t_words) {
532 grow_to(o_words);
533 }
534
535 const size_t r_words = std::max(t_words, o_words);
536
537 const auto mask = CT::Mask<word>::expand_bool(predicate);
538
539 for(size_t i = 0; i != r_words; ++i) {
540 const word o_word = other.word_at(i);
541 const word t_word = this->word_at(i);
542 this->set_word_at(i, mask.select(o_word, t_word));
543 }
544
545 const auto same_sign = CT::Mask<word>::is_equal(sign(), other.sign()).as_choice();
546 cond_flip_sign((mask.as_choice() && !same_sign).as_bool());
547}
Botan::BigInt::set_word_at
void set_word_at(size_t i, word w)
Definition bigint.h:565
Botan::BigInt::cond_flip_sign
void cond_flip_sign(bool predicate)
Definition bigint.cpp:515
Botan::CT::Mask::is_equal
static constexpr Mask< T > is_equal(T x, T y)
Definition ct_utils.h:442

References BigInt(), cond_flip_sign(), Botan::CT::Mask< T >::expand_bool(), grow_to(), Botan::CT::Mask< T >::is_equal(), set_word_at(), sign(), size(), and word_at().

Referenced by ct_shift_left(), Botan::inverse_mod_general(), Botan::is_lucas_probable_prime(), and Botan::power_mod().

◆ ct_cond_swap()

void Botan::BigInt::ct_cond_swap ( bool predicate,
BigInt & other )

If predicate is true swap *this and other Uses a masked operation to avoid side channels

Definition at line 507 of file bigint.cpp.

507 {
508 const size_t max_words = std::max(size(), other.size());
509 grow_to(max_words);
510 other.grow_to(max_words);
511
512 bigint_cnd_swap(static_cast<word>(predicate), this->mutable_data(), other.mutable_data(), max_words);
513}
Botan::bigint_cnd_swap
constexpr void bigint_cnd_swap(W cnd, W x[], W y[], size_t size)
Definition mp_core.h:29

References BigInt(), Botan::bigint_cnd_swap(), grow_to(), mutable_data(), and size().

Referenced by Botan::ct_divide(), and Botan::ct_modulo().

◆ ct_reduce_below()

void Botan::BigInt::ct_reduce_below ( const BigInt & mod,
secure_vector< word > & ws,
size_t bound )

Return *this % mod

Assumes that *this is (if anything) only slightly larger than mod and performs repeated subtractions. It should not be used if *this is much larger than mod, instead use modulo operator.

Performs exactly bound subtractions, so if *this is >= bound*mod then the result will not be fully reduced. If bound is zero, nothing happens.

Definition at line 361 of file bigint.cpp.

361 {
362 if(mod.is_negative() || this->is_negative()) {
363 throw Invalid_Argument("BigInt::ct_reduce_below both values must be positive");
364 }
365
366 const size_t mod_words = mod.sig_words();
367
368 grow_to(mod_words);
369
370 const size_t sz = size();
371
372 ws.resize(sz);
373
374 clear_mem(ws.data(), sz);
375
376 for(size_t i = 0; i != bound; ++i) {
377 const word borrow = bigint_sub3(ws.data(), _data(), sz, mod._data(), mod_words);
378
379 CT::Mask<word>::is_zero(borrow).select_n(mutable_data(), ws.data(), _data(), sz);
380 }
381}
Botan::CT::Mask::is_zero
static constexpr Mask< T > is_zero(T x)
Definition ct_utils.h:437
Botan::clear_mem
constexpr void clear_mem(T *ptr, size_t n)
Definition mem_ops.h:118

References _data(), BigInt(), Botan::bigint_sub3(), Botan::clear_mem(), grow_to(), is_negative(), Botan::CT::Mask< T >::is_zero(), mutable_data(), sig_words(), and size().

◆ ct_shift_left()

void Botan::BigInt::ct_shift_left ( size_t shift)

Shift shift bits to the left, runtime is independent of the value of shift.

Definition at line 473 of file bigint.cpp.

473 {
474 auto shl_bit = [](const BigInt& a, BigInt& result) {
475 BOTAN_DEBUG_ASSERT(a.size() + 1 == result.size());
476 bigint_shl2(result.mutable_data(), a._data(), a.size(), 1);
477 // shl2 may have shifted a bit into the next word, which must be dropped
478 clear_mem(result.mutable_data() + result.size() - 1, 1);
479 };
480
481 auto shl_word = [](const BigInt& a, BigInt& result) {
482 // the most significant word is not copied, aka. shifted out
483 bigint_shl2(result.mutable_data(), a._data(), a.size() - 1 /* ignore msw */, WordInfo<word>::bits);
484 // we left-shifted by a full word, the least significant word must be zero'ed
485 clear_mem(result.mutable_data(), 1);
486 };
487
488 BOTAN_ASSERT_NOMSG(size() > 0);
489
490 constexpr size_t bits_in_word = sizeof(word) * 8;
491 const size_t word_shift = shift >> ceil_log2(bits_in_word); // shift / bits_in_word
492 const size_t bit_shift = shift & ((1 << ceil_log2(bits_in_word)) - 1); // shift % bits_in_word
493 const size_t iterations = std::max(size(), bits_in_word) - 1; // uint64_t i; i << 64 is undefined behaviour
494
495 // In every iteration, shift one bit and one word to the left and use the
496 // shift results only when they are within the shift range.
497 BigInt tmp;
498 tmp.resize(size() + 1 /* to hold the shifted-out word */);
499 for(size_t i = 0; i < iterations; ++i) {
500 shl_bit(*this, tmp);
501 ct_cond_assign(i < bit_shift, tmp);
502 shl_word(*this, tmp);
503 ct_cond_assign(i < word_shift, tmp);
504 }
505}
BOTAN_ASSERT_NOMSG
#define BOTAN_ASSERT_NOMSG(expr)
Definition assert.h:75
BOTAN_DEBUG_ASSERT
#define BOTAN_DEBUG_ASSERT(expr)
Definition assert.h:129
Botan::BigInt::ct_cond_assign
void ct_cond_assign(bool predicate, const BigInt &other)
Definition bigint.cpp:527
Botan::ceil_log2
constexpr uint8_t ceil_log2(T x)
Definition bit_ops.h:140
Botan::bigint_shl2
constexpr void bigint_shl2(W y[], const W x[], size_t x_size, size_t shift)
Definition mp_core.h:350

References _data(), BigInt(), Botan::bigint_shl2(), BOTAN_ASSERT_NOMSG, BOTAN_DEBUG_ASSERT, Botan::ceil_log2(), Botan::clear_mem(), ct_cond_assign(), resize(), and size().

◆ data()

const word * Botan::BigInt::data ( ) const
inline

Return a const pointer to the register

Returns
a pointer to the start of the internal register

Definition at line 662 of file bigint.h.

662{ return m_data.const_data(); }

References data().

Referenced by add2(), data(), Botan::FPE::fe1_decrypt(), and Botan::FPE::fe1_encrypt().

◆ decode() [1/4]

BigInt Botan::BigInt::decode ( const uint8_t buf[],
size_t length )
inlinestatic

Create a BigInt from an integer in a byte array

Parameters
bufthe binary value to load
lengthsize of buf
Returns
BigInt representing the integer in the byte array

Definition at line 873 of file bigint.h.

873 {
874 return BigInt::from_bytes(std::span{buf, length});
875 }
Botan::BigInt::from_bytes
static BigInt from_bytes(std::span< const uint8_t > bytes)
Definition bigint.cpp:83

References BigInt(), decode(), and from_bytes().

Referenced by BigInt(), decode(), decode(), decode(), and Botan::OS2ECP().

◆ decode() [2/4]

BigInt Botan::BigInt::decode ( const uint8_t buf[],
size_t length,
Base base )
static

Create a BigInt from an integer in a byte array

Parameters
bufthe binary value to load
lengthsize of buf
basenumber-base of the integer in buf
Returns
BigInt representing the integer in the byte array

Definition at line 210 of file big_code.cpp.

210 {
211 if(base == Binary) {
212 return BigInt::from_bytes(std::span{buf, length});
213 } else if(base == Hexadecimal) {
214 const std::string_view sv{cast_uint8_ptr_to_char(buf), length};
215 return BigInt::from_radix_digits(sv, 16);
216 } else if(base == Decimal) {
217 const std::string_view sv{cast_uint8_ptr_to_char(buf), length};
218 return BigInt::from_radix_digits(sv, 10);
219 } else {
220 throw Invalid_Argument("Unknown BigInt decoding method");
221 }
222}
Botan::BigInt::from_radix_digits
static BigInt from_radix_digits(std::string_view digits, size_t radix)
Definition big_code.cpp:125
Botan::cast_uint8_ptr_to_char
const char * cast_uint8_ptr_to_char(const uint8_t *b)
Definition mem_ops.h:281

References BigInt(), Binary, Botan::cast_uint8_ptr_to_char(), Decimal, from_bytes(), from_radix_digits(), and Hexadecimal.

◆ decode() [3/4]

BigInt Botan::BigInt::decode ( std::span< const uint8_t > buf)
inlinestatic

Create a BigInt from an integer in a byte array

Parameters
bufthe binary value to load
Returns
BigInt representing the integer in the byte array

Definition at line 882 of file bigint.h.

882 {
883 return BigInt::from_bytes(buf);
884 }

References BigInt(), decode(), and from_bytes().

◆ decode() [4/4]

BigInt Botan::BigInt::decode ( std::span< const uint8_t > buf,
Base base )
static

Create a BigInt from an integer in a byte array

Parameters
bufthe binary value to load
basenumber-base of the integer in buf
Returns
BigInt representing the integer in the byte array

Definition at line 200 of file big_code.cpp.

200 {
201 if(base == Binary) {
202 return BigInt::from_bytes(buf);
203 }
204 return BigInt::decode(buf.data(), buf.size(), base);
205}

References BigInt(), Binary, decode(), and from_bytes().

◆ encode()

std::vector< uint8_t > Botan::BigInt::encode ( const BigInt & n)
inlinestatic

Encode the integer value from a BigInt to a std::vector of bytes

Parameters
nthe BigInt to use as integer source
Returns
secure_vector of bytes containing the bytes of the integer

Definition at line 847 of file bigint.h.

847 {
848 return n.serialize<std::vector<uint8_t>>(n.bytes());
849 }

References BigInt(), and encode().

Referenced by encode().

◆ encode_1363() [1/3]

secure_vector< uint8_t > Botan::BigInt::encode_1363 ( const BigInt & n,
size_t bytes )
inlinestatic

Encode a BigInt to a byte array according to IEEE 1363

Parameters
nthe BigInt to encode
bytesthe length of the resulting secure_vector<uint8_t>
Returns
a secure_vector<uint8_t> containing the encoded BigInt

Definition at line 911 of file bigint.h.

911 {
912 return n.serialize<secure_vector<uint8_t>>(bytes);
913 }
Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition secmem.h:68

References BigInt(), bytes(), and encode_1363().

Referenced by encode_1363(), encode_1363(), encode_1363(), Botan::EC_Point::x_bytes(), Botan::EC_Point::xy_bytes(), and Botan::EC_Point::y_bytes().

◆ encode_1363() [2/3]

void Botan::BigInt::encode_1363 ( std::span< uint8_t > out,
const BigInt & n )
inlinestatic

Definition at line 915 of file bigint.h.

915 {
916 n.serialize_to(out);
917 }

References BigInt(), and encode_1363().

◆ encode_1363() [3/3]

void Botan::BigInt::encode_1363 ( uint8_t out[],
size_t bytes,
const BigInt & n )
inlinestatic

Definition at line 920 of file bigint.h.

920 {
921 n.serialize_to(std::span{out, bytes});
922 }

References BigInt(), bytes(), and encode_1363().

◆ encode_fixed_length_int_pair()

secure_vector< uint8_t > Botan::BigInt::encode_fixed_length_int_pair ( const BigInt & n1,
const BigInt & n2,
size_t bytes )
static

Encode two BigInt to a byte array according to IEEE 1363

Parameters
n1the first BigInt to encode
n2the second BigInt to encode
bytesthe length of the encoding of each single BigInt
Returns
a secure_vector<uint8_t> containing the concatenation of the two encoded BigInt

Definition at line 186 of file big_code.cpp.

186 {
187 if(n1.is_negative() || n2.is_negative()) {
188 throw Encoding_Error("encode_fixed_length_int_pair: values must be positive");
189 }
190 if(n1.bytes() > bytes || n2.bytes() > bytes) {
191 throw Encoding_Error("encode_fixed_length_int_pair: values too large to encode properly");
192 }
193 secure_vector<uint8_t> output(2 * bytes);
194 BufferStuffer stuffer(output);
195 n1.serialize_to(stuffer.next(bytes));
196 n2.serialize_to(stuffer.next(bytes));
197 return output;
198}

References BigInt(), bytes(), is_negative(), Botan::BufferStuffer::next(), and serialize_to().

◆ encode_locked()

secure_vector< uint8_t > Botan::BigInt::encode_locked ( const BigInt & n)
inlinestatic

Encode the integer value from a BigInt to a secure_vector of bytes

Parameters
nthe BigInt to use as integer source
Returns
secure_vector of bytes containing the bytes of the integer

Definition at line 856 of file bigint.h.

856 {
857 return n.serialize<secure_vector<uint8_t>>(n.bytes());
858 }

References BigInt(), and encode_locked().

Referenced by encode_locked().

◆ encode_words()

void Botan::BigInt::encode_words ( word out[],
size_t size ) const

Place the value into out, zero-padding up to size words Throw if *this cannot be represented in size words

Definition at line 180 of file bigint.cpp.

180 {
181 const size_t words = sig_words();
182
183 if(words > size) {
184 throw Encoding_Error("BigInt::encode_words value too large to encode");
185 }
186
187 clear_mem(out, size);
188 copy_mem(out, _data(), words);
189}
Botan::copy_mem
constexpr void copy_mem(T *out, const T *in, size_t n)
Definition mem_ops.h:144

References _data(), Botan::clear_mem(), Botan::copy_mem(), sig_words(), and size().

◆ flip_sign()

void Botan::BigInt::flip_sign ( )
inline

Flip the sign of this BigInt

Definition at line 602 of file bigint.h.

602{ set_sign(reverse_sign()); }
Botan::BigInt::reverse_sign
Sign reverse_sign() const
Definition bigint.h:592

References flip_sign(), reverse_sign(), and set_sign().

Referenced by Botan::ct_divide_word(), Botan::BER_Decoder::decode(), flip_sign(), Botan::is_lucas_probable_prime(), and operator-().

◆ from_bytes()

BigInt Botan::BigInt::from_bytes ( std::span< const uint8_t > bytes)
static

Create a BigInt from an integer in a byte array

Parameters
bytesthe binary value to load
Returns
BigInt representing the integer in the byte array

Definition at line 83 of file bigint.cpp.

83 {
84 BigInt r;
85 r.assign_from_bytes(input);
86 return r;
87}

References BigInt().

Referenced by botan_srp6_client_agree(), botan_srp6_server_session_step1(), botan_srp6_server_session_step2(), botan_x509_cert_serial_number(), botan_x509_crl_entry_serial_number(), Botan::TLS::Client_Key_Exchange::Client_Key_Exchange(), decode(), decode(), decode(), decode(), Botan::BER_Decoder::decode_octet_string_bigint(), Botan::CRL_Entry::encode_into(), from_bytes_with_max_bits(), from_radix_digits(), Botan::TPM_PrivateKey::get_e(), Botan::TPM_PrivateKey::get_n(), Botan::OCSP::CertID::is_id_for(), Botan::TLS::Callbacks::tls_deserialize_peer_public_key(), and Botan::EC_Scalar::to_bigint().

◆ from_bytes_with_max_bits()

BigInt Botan::BigInt::from_bytes_with_max_bits ( const uint8_t buf[],
size_t length,
size_t max_bits )
static

Create a BigInt from an integer in a byte array

Note this function is primarily used for implementing signature schemes and is not useful in typical applications.

Parameters
bufthe byte array holding the value
lengthsize of buf
max_bitsif the resulting integer is more than max_bits, it will be shifted so it is at most max_bits in length.

Definition at line 97 of file bigint.cpp.

97 {
98 const size_t input_bits = 8 * length;
99
100 auto bn = BigInt::from_bytes(std::span{input, length});
101
102 if(input_bits > max_bits) {
103 const size_t bits_to_shift = input_bits - max_bits;
104
105 bn >>= bits_to_shift;
106 }
107
108 return bn;
109}

References BigInt(), and from_bytes().

◆ from_radix_digits()

BigInt Botan::BigInt::from_radix_digits ( std::string_view digits,
size_t radix )
static

Create BigInt from a sequence of digits

The string is interpreted as a sequence of digits in base radix.

Each character must be interpretable as such a digit; there is no support for whitespace or prefixes (eg '0x' or '-').

Currently radix must be 10 or 16.

Parameters
digitsthe sequence of digits
radixthe base

Definition at line 125 of file big_code.cpp.

125 {
126 if(radix == 16) {
127 secure_vector<uint8_t> binary;
128
129 if(digits.size() % 2 == 1) {
130 // Handle lack of leading 0
131 const char buf0_with_leading_0[2] = {'0', digits[0]};
132
133 binary = hex_decode_locked(buf0_with_leading_0, 2);
134
135 if(digits.size() > 1) {
136 binary += hex_decode_locked(&digits[1], digits.size() - 1, false);
137 }
138 } else {
139 binary = hex_decode_locked(digits, false);
140 }
141
142 return BigInt::from_bytes(binary);
143 } else if(radix == 10) {
144 // Use the largest power of 10 that fits in a word, accumulating
145 // groups of digits into word-sized chunks to minimize the number
146 // of multiprecision multiplications.
147 constexpr word conversion_radix = decimal_conversion_radix();
148 constexpr size_t radix_digits = decimal_conversion_radix_digits();
149
150 BigInt r;
151
152 // Handle the initial partial block (if digit count is not a multiple of radix_digits)
153 const size_t partial_block = digits.size() % radix_digits;
154
155 if(partial_block > 0) {
156 word acc = 0;
157 for(size_t i = 0; i < partial_block; ++i) {
158 const char c = digits[i];
159 BOTAN_ARG_CHECK(c >= '0' && c <= '9', "Invalid decimal character");
160 acc = acc * 10 + static_cast<word>(c - '0');
161 }
162 r += acc;
163 }
164
165 // Process full blocks of radix_digits
166 for(size_t i = partial_block; i != digits.size(); i += radix_digits) {
167 word acc = 0;
168 for(size_t j = 0; j < radix_digits; ++j) {
169 const char c = digits[i + j];
170 BOTAN_ARG_CHECK(c >= '0' && c <= '9', "Invalid decimal character");
171 acc = acc * 10 + static_cast<word>(c - '0');
172 }
173 r *= conversion_radix;
174 r += acc;
175 }
176
177 return r;
178 } else {
179 throw Invalid_Argument("BigInt::from_radix_digits unknown radix");
180 }
181}
BOTAN_ARG_CHECK
#define BOTAN_ARG_CHECK(expr, msg)
Definition assert.h:33
Botan::hex_decode_locked
secure_vector< uint8_t > hex_decode_locked(const char input[], size_t input_length, bool ignore_ws)
Definition hex.cpp:135

References BigInt(), BOTAN_ARG_CHECK, from_bytes(), and Botan::hex_decode_locked().

Referenced by botan_mp_set_from_radix_str(), decode(), and from_string().

◆ from_s32()

BigInt Botan::BigInt::from_s32 ( int32_t n)
static

Create BigInt from a signed 32 bit integer

Parameters
ninitial value of this BigInt

Definition at line 42 of file bigint.cpp.

42 {
43 if(n >= 0) {
44 return BigInt::from_u64(static_cast<uint64_t>(n));
45 } else {
46 return -BigInt::from_u64(static_cast<uint64_t>(-n));
47 }
48}
Botan::BigInt::from_u64
static BigInt from_u64(uint64_t n)
Definition bigint.cpp:30

References BigInt(), and from_u64().

Referenced by botan_mp_set_from_int(), Botan::EC_Group::EC_Group(), Botan::EC_Point::randomize_repr(), Botan::sqrt_modulo_prime(), and Botan::EC_Group::verify_group().

◆ from_string()

BigInt Botan::BigInt::from_string ( std::string_view str)
static

Create BigInt from a string.

If the string starts with 0x the rest of the string will be interpreted as hexadecimal digits. Otherwise, it will be interpreted as a decimal number.

A prefix of "-" will result in a negative integer

Parameters
strthe string to parse for an integer value

Definition at line 57 of file bigint.cpp.

57 {
58 size_t prefix_bytes = 0;
59 bool negative = false;
60 size_t radix = 10;
61
62 if(!str.empty() && str[0] == '-') {
63 prefix_bytes += 1;
64 negative = true;
65 }
66
67 if(str.length() > prefix_bytes + 2 && str[prefix_bytes] == '0' && str[prefix_bytes + 1] == 'x') {
68 prefix_bytes += 2;
69 radix = 16;
70 }
71
72 BigInt r = BigInt::from_radix_digits(str.substr(prefix_bytes), radix);
73
74 if(negative) {
75 r.set_sign(Negative);
76 } else {
77 r.set_sign(Positive);
78 }
79
80 return r;
81}

References BigInt(), from_radix_digits(), Negative, Positive, and set_sign().

Referenced by BigInt().

◆ from_u64()

BigInt Botan::BigInt::from_u64 ( uint64_t n)
static

Create BigInt from an unsigned 64 bit integer

Parameters
ninitial value of this BigInt

Definition at line 30 of file bigint.cpp.

30 {
31 return BigInt(n);
32}

References BigInt().

Referenced by Botan::DER_Encoder::encode(), Botan::DER_Encoder::encode(), from_s32(), one(), and Botan::RSA_PrivateKey::RSA_PrivateKey().

◆ from_word()

BigInt Botan::BigInt::from_word ( word n)
static

Create BigInt from a word (limb)

Parameters
ninitial value of this BigInt

Definition at line 35 of file bigint.cpp.

35 {
36 BigInt bn;
37 bn.set_word_at(0, n);
38 return bn;
39}

References BigInt(), and set_word_at().

Referenced by Botan::DL_Group::DL_Group(), Botan::is_bailie_psw_probable_prime(), Botan::is_lucas_probable_prime(), Botan::is_miller_rabin_probable_prime(), Botan::operator%(), Botan::random_prime(), Botan::sqrt_modulo_prime(), and Botan::DL_Group::verify_group().

◆ get_bit()

bool Botan::BigInt::get_bit ( size_t n) const
inline

Return bit value at specified position

Parameters
nthe bit offset to test
Returns
true, if the bit at position n is set, false otherwise

Definition at line 512 of file bigint.h.

512{ return ((word_at(n / (sizeof(word) * 8)) >> (n % (sizeof(word) * 8))) & 1) == 1; }

References word_at().

Referenced by Botan::ct_divide(), Botan::ct_divide_word(), Botan::ct_mod_word(), Botan::ct_modulo(), Botan::EC_Point::encode(), Botan::inverse_mod_general(), is_even(), Botan::is_lucas_probable_prime(), is_odd(), Botan::EC_Point::mul(), and Botan::power_mod().

◆ get_substring()

uint32_t Botan::BigInt::get_substring ( size_t offset,
size_t length ) const

Return (a maximum of) 32 bits of the complete value

Parameters
offsetthe offset to start extracting
lengthamount of bits to extract (starting at offset)
Returns
the integer extracted from the register starting at offset with specified length

Definition at line 239 of file bigint.cpp.

239 {
240 if(length == 0 || length > 32) {
241 throw Invalid_Argument("BigInt::get_substring invalid substring length");
242 }
243
244 const uint32_t mask = 0xFFFFFFFF >> (32 - length);
245
246 const size_t word_offset = offset / WordInfo<word>::bits;
247 const size_t wshift = (offset % WordInfo<word>::bits);
248
249 /*
250 * The substring is contained within one or at most two words. The
251 * offset and length are not secret, so we can perform conditional
252 * operations on those values.
253 */
254 const word w0 = word_at(word_offset);
255
256 if(wshift == 0 || (offset + length) / WordInfo<word>::bits == word_offset) {
257 return static_cast<uint32_t>(w0 >> wshift) & mask;
258 } else {
259 const word w1 = word_at(word_offset + 1);
260 return static_cast<uint32_t>((w0 >> wshift) | (w1 << (WordInfo<word>::bits - wshift))) & mask;
261 }
262}

References word_at().

Referenced by Botan::monty_multi_exp(), Botan::EC_Point_Base_Point_Precompute::mul(), Botan::EC_Point_Var_Point_Precompute::mul(), and Botan::EC_Point_Multi_Point_Precompute::multi_exp().

◆ get_word_vector() [1/2]

secure_vector< word > & Botan::BigInt::get_word_vector ( )
inline

Don't use this function in application code

Definition at line 667 of file bigint.h.

667 {
668 return m_data.mutable_vector();
669 }

References get_word_vector().

Referenced by get_word_vector(), and get_word_vector().

◆ get_word_vector() [2/2]

const secure_vector< word > & Botan::BigInt::get_word_vector ( ) const
inline

Don't use this function in application code

Definition at line 674 of file bigint.h.

674 {
675 return m_data.const_vector();
676 }

References get_word_vector().

◆ grow_to()

void Botan::BigInt::grow_to ( size_t n) const
inline

Increase internal register buffer to at least n words

Parameters
nnew size of register

Definition at line 682 of file bigint.h.

682{ m_data.grow_to(n); }

References grow_to().

Referenced by add(), ct_cond_add(), ct_cond_assign(), ct_cond_swap(), ct_reduce_below(), grow_to(), mod_add(), mod_sub(), mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul_by(), Botan::Montgomery_Params::redc(), Botan::Barrett_Reduction::reduce(), reduce_below(), Botan::Montgomery_Params::sqr(), Botan::vartime_divide(), Botan::vartime_divide_pow2k(), and with_capacity().

◆ is_equal()

bool Botan::BigInt::is_equal ( const BigInt & n) const

Compare this to another BigInt

Parameters
nthe BigInt value to compare with
Returns
true if this == n or false otherwise

Definition at line 156 of file bigint.cpp.

156 {
157 if(this->sign() != other.sign()) {
158 return false;
159 }
160
161 return bigint_ct_is_eq(this->_data(), this->size(), other._data(), other.size()).as_bool();
162}
Botan::bigint_ct_is_eq
constexpr auto bigint_ct_is_eq(const W x[], size_t x_size, const W y[], size_t y_size) -> CT::Mask< W >
Definition mp_core.h:506

References _data(), BigInt(), Botan::bigint_ct_is_eq(), sign(), and size().

Referenced by Botan::operator!=().

◆ is_even()

bool Botan::BigInt::is_even ( ) const
inline

Test if the integer has an even value

Returns
true if the integer is even, false otherwise

Definition at line 455 of file bigint.h.

455{ return !get_bit(0); }
Botan::BigInt::get_bit
bool get_bit(size_t n) const
Definition bigint.h:512

References get_bit().

Referenced by Botan::generate_rsa_prime(), Botan::inverse_mod(), Botan::inverse_mod_general(), Botan::is_bailie_psw_probable_prime(), Botan::is_lucas_probable_prime(), Botan::is_miller_rabin_probable_prime(), Botan::is_prime(), Botan::passes_miller_rabin_test(), and Botan::random_prime().

◆ is_less_than()

bool Botan::BigInt::is_less_than ( const BigInt & n) const

Compare this to another BigInt

Parameters
nthe BigInt value to compare with
Returns
true if this < n or false otherwise

Definition at line 164 of file bigint.cpp.

164 {
165 if(this->is_negative() && other.is_positive()) {
166 return true;
167 }
168
169 if(this->is_positive() && other.is_negative()) {
170 return false;
171 }
172
173 if(other.is_negative() && this->is_negative()) {
174 return bigint_ct_is_lt(other._data(), other.size(), this->_data(), this->size()).as_bool();
175 }
176
177 return bigint_ct_is_lt(this->_data(), this->size(), other._data(), other.size()).as_bool();
178}
Botan::BigInt::is_positive
bool is_positive() const
Definition bigint.h:581
Botan::bigint_ct_is_lt
constexpr auto bigint_ct_is_lt(const W x[], size_t x_size, const W y[], size_t y_size, bool lt_or_equal=false) -> CT::Mask< W >
Definition mp_core.h:473

References _data(), BigInt(), Botan::bigint_ct_is_lt(), is_negative(), is_positive(), and size().

Referenced by Botan::operator<(), and Botan::operator>().

◆ is_negative()

bool Botan::BigInt::is_negative ( ) const
inline

Tests if the sign of the integer is negative

Returns
true, iff the integer has a negative sign

Definition at line 575 of file bigint.h.

575{ return (sign() == Negative); }

References Negative, and sign().

Referenced by cmp(), cmp_word(), ct_cond_add(), Botan::ct_divide_pow2k(), Botan::ct_divide_word(), Botan::ct_modulo(), ct_reduce_below(), Botan::BER_Decoder::decode(), encode_fixed_length_int_pair(), Botan::Barrett_Reduction::for_public_modulus(), Botan::Barrett_Reduction::for_secret_modulus(), Botan::EC_AffinePoint::from_bigint_xy(), Botan::inverse_mod(), Botan::inverse_mod_general(), is_less_than(), Botan::is_lucas_probable_prime(), mod_add(), mod_mul(), mod_sub(), Botan::monty_multi_exp(), Botan::EC_Point::mul(), Botan::EC_Point_Base_Point_Precompute::mul(), Botan::EC_Point_Var_Point_Precompute::mul(), Botan::EC_Point_Multi_Point_Precompute::multi_exp(), Botan::operator%(), Botan::operator>>(), operator>>=(), Botan::power_mod(), random_integer(), Botan::random_prime(), reduce_below(), to_dec_string(), to_hex_string(), to_u32bit(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ is_nonzero()

bool Botan::BigInt::is_nonzero ( ) const
inline

Test if the integer is not zero

Returns
true if the integer is non-zero, false otherwise

Definition at line 467 of file bigint.h.

467{ return (!is_zero()); }
Botan::BigInt::is_zero
bool is_zero() const
Definition bigint.h:473

References is_zero().

Referenced by Botan::ct_modulo(), Botan::inverse_mod_general(), and operator!().

◆ is_odd()

bool Botan::BigInt::is_odd ( ) const
inline

Test if the integer has an odd value

Returns
true if the integer is odd, false otherwise

Definition at line 461 of file bigint.h.

461{ return get_bit(0); }

References get_bit().

Referenced by Botan::inverse_mod_general(), Botan::inverse_mod_rsa_public_modulus(), Botan::inverse_mod_secret_prime(), Botan::is_lucas_probable_prime(), Botan::jacobi(), Botan::power_mod(), and Botan::sqrt_modulo_prime().

◆ is_positive()

bool Botan::BigInt::is_positive ( ) const
inline

Tests if the sign of the integer is positive

Returns
true, iff the integer has a positive sign

Definition at line 581 of file bigint.h.

581{ return (sign() == Positive); }

References Positive, and sign().

Referenced by Botan::EC_Point::_is_x_eq_to_v_mod_order(), cmp(), Botan::ct_mod_word(), Botan::inverse_mod_rsa_public_modulus(), Botan::inverse_mod_secret_prime(), is_less_than(), Botan::is_lucas_probable_prime(), Botan::operator%(), Botan::operator%(), Botan::operator/(), operator/=(), Botan::Barrett_Reduction::reduce(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ is_zero()

bool Botan::BigInt::is_zero ( ) const
inline

Test if the integer is zero

Returns
true if the integer is zero, false otherwise

Definition at line 473 of file bigint.h.

473{ return (sig_words() == 0); }

References sig_words().

Referenced by Botan::EC_Point::add(), Botan::EC_Point::add_affine(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_modulo(), Botan::DL_Group::DL_Group(), Botan::EC_PrivateKey::EC_PrivateKey(), Botan::Barrett_Reduction::for_public_modulus(), Botan::Barrett_Reduction::for_secret_modulus(), Botan::gcd(), Botan::inverse_mod(), Botan::inverse_mod_general(), Botan::inverse_mod_rsa_public_modulus(), is_nonzero(), Botan::EC_Scalar_Data_BN::is_zero(), Botan::operator%(), Botan::operator<<(), Botan::operator>>(), operator>>=(), Botan::power_mod(), Botan::random_prime(), Botan::RSA_PrivateKey::RSA_PrivateKey(), Botan::EC_Group_Data::scalar_deserialize(), set_sign(), to_dec_string(), Botan::vartime_divide(), Botan::vartime_divide_pow2k(), and Botan::DL_Group::verify_public_element().

◆ mask_bits()

void Botan::BigInt::mask_bits ( size_t n)
inline

Clear all but the lowest n bits

Parameters
namount of bits to keep

Definition at line 505 of file bigint.h.

505{ m_data.mask_bits(n); }

References mask_bits().

Referenced by Botan::inverse_mod_general(), and mask_bits().

◆ mod_add()

BigInt & Botan::BigInt::mod_add ( const BigInt & y,
const BigInt & mod,
secure_vector< word > & ws )

Set *this to (*this + y) % mod This function assumes *this is >= 0 && < mod

Parameters
ythe BigInt to add - assumed y >= 0 and y < mod
modthe positive modulus
wsa temp workspace

Definition at line 45 of file big_ops2.cpp.

45 {
46 if(this->is_negative() || s.is_negative() || mod.is_negative()) {
47 throw Invalid_Argument("BigInt::mod_add expects all arguments are positive");
48 }
49
50 BOTAN_DEBUG_ASSERT(*this < mod);
51 BOTAN_DEBUG_ASSERT(s < mod);
52
53 /*
54 t + s or t + s - p == t - (p - s)
55
56 So first compute ws = p - s
57
58 Then compute t + s and t - ws
59
60 If t - ws does not borrow, then that is the correct valued
61 */
62
63 const size_t mod_sw = mod.sig_words();
64 BOTAN_ARG_CHECK(mod_sw > 0, "BigInt::mod_add modulus must be positive");
65
66 this->grow_to(mod_sw);
67 s.grow_to(mod_sw);
68
69 // First mod_sw for p - s, 2*mod_sw for bigint_addsub workspace
70 if(ws.size() < 3 * mod_sw) {
71 ws.resize(3 * mod_sw);
72 }
73
74 // NOLINTBEGIN(readability-container-data-pointer)
75
76 word borrow = bigint_sub3(&ws[0], mod._data(), mod_sw, s._data(), mod_sw);
77 BOTAN_DEBUG_ASSERT(borrow == 0);
78 BOTAN_UNUSED(borrow);
79
80 // Compute t - ws
81 borrow = bigint_sub3(&ws[mod_sw], this->_data(), mod_sw, &ws[0], mod_sw);
82
83 // Compute t + s
84 bigint_add3(&ws[mod_sw * 2], this->_data(), mod_sw, s._data(), mod_sw);
85
86 CT::conditional_copy_mem(borrow, &ws[0], &ws[mod_sw * 2], &ws[mod_sw], mod_sw);
87 set_words(&ws[0], mod_sw);
88
89 // NOLINTEND(readability-container-data-pointer)
90
91 return (*this);
92}
BOTAN_UNUSED
#define BOTAN_UNUSED
Definition assert.h:144
Botan::BigInt::set_words
void set_words(const word w[], size_t len)
Definition bigint.h:567
Botan::CT::conditional_copy_mem
constexpr Mask< T > conditional_copy_mem(Mask< T > mask, T *dest, const T *if_set, const T *if_unset, size_t elems)
Definition ct_utils.h:732

References _data(), BigInt(), Botan::bigint_add3(), Botan::bigint_sub3(), BOTAN_ARG_CHECK, BOTAN_DEBUG_ASSERT, BOTAN_UNUSED, Botan::CT::conditional_copy_mem(), grow_to(), is_negative(), set_words(), and sig_words().

Referenced by Botan::EC_Point::mult2().

◆ mod_mul()

BigInt & Botan::BigInt::mod_mul ( uint8_t y,
const BigInt & mod,
secure_vector< word > & ws )

Set *this to (*this * y) % mod This function assumes *this is >= 0 && < mod y should be small, less than 16

Parameters
ythe small integer to multiply by
modthe positive modulus
wsa temp workspace

Definition at line 122 of file big_ops2.cpp.

122 {
123 BOTAN_ARG_CHECK(this->is_negative() == false, "*this must be positive");
124 BOTAN_ARG_CHECK(y < 16, "y too large");
125
126 BOTAN_DEBUG_ASSERT(*this < mod);
127
128 *this *= static_cast<word>(y);
129 this->reduce_below(mod, ws);
130 return (*this);
131}
Botan::BigInt::reduce_below
size_t reduce_below(const BigInt &mod, secure_vector< word > &ws)
Definition bigint.cpp:329

References BigInt(), BOTAN_ARG_CHECK, BOTAN_DEBUG_ASSERT, is_negative(), and reduce_below().

◆ mod_sub()

BigInt & Botan::BigInt::mod_sub ( const BigInt & y,
const BigInt & mod,
secure_vector< word > & ws )

Set *this to (*this - y) % mod This function assumes *this is >= 0 && < mod

Parameters
ythe BigInt to subtract - assumed y >= 0 and y < mod
modthe positive modulus
wsa temp workspace

Definition at line 94 of file big_ops2.cpp.

94 {
95 if(this->is_negative() || s.is_negative() || mod.is_negative()) {
96 throw Invalid_Argument("BigInt::mod_sub expects all arguments are positive");
97 }
98
99 // We are assuming in this function that *this and s are no more than mod_sw words long
100 BOTAN_DEBUG_ASSERT(*this < mod);
101 BOTAN_DEBUG_ASSERT(s < mod);
102
103 const size_t mod_sw = mod.sig_words();
104
105 this->grow_to(mod_sw);
106 s.grow_to(mod_sw);
107
108 if(ws.size() < mod_sw) {
109 ws.resize(mod_sw);
110 }
111
112 const word borrow = bigint_sub3(ws.data(), mutable_data(), mod_sw, s._data(), mod_sw);
113
114 // Conditionally add back the modulus
115 bigint_cnd_add(borrow, ws.data(), mod._data(), mod_sw);
116
117 unchecked_copy_memory(mutable_data(), ws.data(), mod_sw);
118
119 return (*this);
120}
Botan::bigint_cnd_add
constexpr W bigint_cnd_add(W cnd, W x[], const W y[], size_t size)
Definition mp_core.h:45
Botan::unchecked_copy_memory
void unchecked_copy_memory(T *out, const T *in, size_t n)
Definition mem_utils.h:44

References _data(), BigInt(), Botan::bigint_cnd_add(), Botan::bigint_sub3(), BOTAN_DEBUG_ASSERT, grow_to(), is_negative(), mutable_data(), sig_words(), and Botan::unchecked_copy_memory().

Referenced by Botan::EC_Point::add(), Botan::EC_Point::add_affine(), and Botan::EC_Point::mult2().

◆ mul()

BigInt & Botan::BigInt::mul ( const BigInt & y,
secure_vector< word > & ws )

Multiply this with y

Parameters
ythe BigInt to multiply with this
wsa temp workspace

Definition at line 149 of file big_ops2.cpp.

149 {
150 const size_t x_sw = sig_words();
151 const size_t y_sw = y.sig_words();
152 set_sign((sign() == y.sign()) ? Positive : Negative);
153
154 if(x_sw == 0 || y_sw == 0) {
155 clear();
156 set_sign(Positive);
157 } else if(x_sw == 1 && y_sw > 0) {
158 grow_to(y_sw + 1);
159 bigint_linmul3(mutable_data(), y._data(), y_sw, word_at(0));
160 } else {
161 const size_t new_size = x_sw + y_sw + 1;
162 if(ws.size() < new_size) {
163 ws.resize(new_size);
164 }
165 secure_vector<word> z_reg(new_size);
166
167 bigint_mul(z_reg.data(), z_reg.size(), _data(), size(), x_sw, y._data(), y.size(), y_sw, ws.data(), ws.size());
168
169 this->swap_reg(z_reg);
170 }
171
172 return (*this);
173}
Botan::BigInt::clear
void clear()
Definition bigint.h:415
Botan::BigInt::swap_reg
void swap_reg(secure_vector< word > &reg)
Definition bigint.h:214
Botan::bigint_linmul3
constexpr void bigint_linmul3(W z[], const W x[], size_t x_size, W y)
Definition mp_core.h:403
Botan::bigint_mul
void bigint_mul(word z[], size_t z_size, const word x[], size_t x_size, size_t x_sw, const word y[], size_t y_size, size_t y_sw, word workspace[], size_t ws_size)
Definition mp_karat.cpp:283

References _data(), BigInt(), Botan::bigint_linmul3(), Botan::bigint_mul(), clear(), grow_to(), mutable_data(), Negative, Positive, set_sign(), sig_words(), sign(), size(), swap_reg(), and word_at().

Referenced by operator*=().

◆ mutable_data()

word * Botan::BigInt::mutable_data ( )
inline

Return a mutable pointer to the register

Returns
a pointer to the start of the internal register

Definition at line 656 of file bigint.h.

656{ return m_data.mutable_data(); }

References BOTAN_DEPRECATED, and mutable_data().

Referenced by add(), add2(), ct_cond_add(), ct_cond_swap(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_modulo(), ct_reduce_below(), mod_sub(), mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul_by(), mutable_data(), Botan::operator*(), Botan::operator*(), operator*=(), Botan::operator>>(), Botan::Montgomery_Params::redc(), Botan::Montgomery_Params::sqr(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ one()

BigInt Botan::BigInt::one ( )
inlinestatic

Create a 1-value BigInt

Definition at line 55 of file bigint.h.

55{ return BigInt::from_u64(1); }

References BigInt(), and from_u64().

Referenced by Botan::is_lucas_probable_prime(), Botan::is_perfect_square(), Botan::power_mod(), Botan::EC_Group_Data::scalar_one(), and Botan::EC_Group_Data::scalar_random().

◆ operator!()

bool Botan::BigInt::operator! ( ) const
inline

! operator

Returns
true iff this is zero, otherwise false

Definition at line 323 of file bigint.h.

323{ return (!is_nonzero()); }
Botan::BigInt::is_nonzero
bool is_nonzero() const
Definition bigint.h:467

References is_nonzero().

◆ operator%=() [1/2]

BigInt & Botan::BigInt::operator%= ( const BigInt & y)

Modulo operator

Parameters
ythe modulus to reduce this by

Definition at line 216 of file big_ops2.cpp.

216 {
217 return (*this = (*this) % mod);
218}

References BigInt().

◆ operator%=() [2/2]

word Botan::BigInt::operator%= ( word y)

Modulo operator

Parameters
ythe modulus (word) to reduce this by

Definition at line 223 of file big_ops2.cpp.

223 {
224 if(mod == 0) {
225 throw Invalid_Argument("BigInt::operator%= divide by zero");
226 }
227
228 word remainder = 0;
229
230 if(is_power_of_2(mod)) {
231 remainder = (word_at(0) & (mod - 1));
232 } else {
233 const divide_precomp redc_mod(mod);
234 const size_t sw = sig_words();
235 for(size_t i = sw; i > 0; --i) {
236 remainder = redc_mod.vartime_mod_2to1(remainder, word_at(i - 1));
237 }
238 }
239
240 if(remainder != 0 && sign() == BigInt::Negative) {
241 remainder = mod - remainder;
242 }
243
244 m_data.set_to_zero();
245 m_data.set_word_at(0, remainder);
246 set_sign(BigInt::Positive);
247 return remainder;
248}
Botan::is_power_of_2
BOTAN_FORCE_INLINE constexpr bool is_power_of_2(T arg)
Definition bit_ops.h:62

References Botan::is_power_of_2(), Negative, Positive, set_sign(), sig_words(), sign(), Botan::divide_precomp< W >::vartime_mod_2to1(), and word_at().

◆ operator*=() [1/2]

BigInt & Botan::BigInt::operator*= ( const BigInt & y)

*= operator

Parameters
ythe BigInt to multiply with this

Definition at line 144 of file big_ops2.cpp.

144 {
145 secure_vector<word> ws;
146 return this->mul(y, ws);
147}
Botan::BigInt::mul
BigInt & mul(const BigInt &y, secure_vector< word > &ws)
Definition big_ops2.cpp:149

References BigInt(), and mul().

◆ operator*=() [2/2]

BigInt & Botan::BigInt::operator*= ( word y)

*= operator

Parameters
ythe word to multiply with this

Definition at line 189 of file big_ops2.cpp.

189 {
190 if(y == 0) {
191 clear();
192 set_sign(Positive);
193 }
194
195 const word carry = bigint_linmul2(mutable_data(), size(), y);
196 set_word_at(size(), carry);
197
198 return (*this);
199}
Botan::bigint_linmul2
constexpr auto bigint_linmul2(W x[], size_t x_size, W y) -> W
Definition mp_core.h:392

References BigInt(), Botan::bigint_linmul2(), Botan::carry(), clear(), mutable_data(), Positive, set_sign(), set_word_at(), and size().

◆ operator++() [1/2]

BigInt & Botan::BigInt::operator++ ( )
inline

Increment operator

Definition at line 288 of file bigint.h.

288{ return (*this += 1); }

References BigInt().

◆ operator++() [2/2]

BigInt Botan::BigInt::operator++ ( int )
inline

Postfix increment operator

Definition at line 298 of file bigint.h.

298 {
299 BigInt x = (*this);
300 ++(*this);
301 return x;
302 }

References BigInt().

◆ operator+=() [1/2]

BigInt & Botan::BigInt::operator+= ( const BigInt & y)
inline

+= operator

Parameters
ythe BigInt to add to this

Definition at line 223 of file bigint.h.

223{ return add(y._data(), y.sig_words(), y.sign()); }
Botan::BigInt::add
BigInt & add(const word y[], size_t y_words, Sign sign)
Definition big_ops2.cpp:16

References _data(), add(), BigInt(), sig_words(), and sign().

◆ operator+=() [2/2]

BigInt & Botan::BigInt::operator+= ( word y)
inline

+= operator

Parameters
ythe word to add to this

Definition at line 229 of file bigint.h.

229{ return add(&y, 1, Positive); }

References add(), BigInt(), and Positive.

◆ operator-()

BigInt Botan::BigInt::operator- ( ) const

Unary negation operator

Returns
negative this

Definition at line 323 of file bigint.cpp.

323 {
324 BigInt x = (*this);
325 x.flip_sign();
326 return x;
327}

References BigInt(), and flip_sign().

◆ operator--() [1/2]

BigInt & Botan::BigInt::operator-- ( )
inline

Decrement operator

Definition at line 293 of file bigint.h.

293{ return (*this -= 1); }

References BigInt().

◆ operator--() [2/2]

BigInt Botan::BigInt::operator-- ( int )
inline

Postfix decrement operator

Definition at line 307 of file bigint.h.

307 {
308 BigInt x = (*this);
309 --(*this);
310 return x;
311 }

References BigInt().

◆ operator-=() [1/2]

BigInt & Botan::BigInt::operator-= ( const BigInt & y)
inline

-= operator

Parameters
ythe BigInt to subtract from this

Definition at line 235 of file bigint.h.

235{ return sub(y._data(), y.sig_words(), y.sign()); }
Botan::BigInt::sub
BigInt & sub(const word y[], size_t y_words, Sign sign)
Definition bigint.h:332

References _data(), BigInt(), sig_words(), sign(), and sub().

◆ operator-=() [2/2]

BigInt & Botan::BigInt::operator-= ( word y)
inline

-= operator

Parameters
ythe word to subtract from this

Definition at line 241 of file bigint.h.

241{ return sub(&y, 1, Positive); }

References BigInt(), Positive, and sub().

◆ operator/=()

BigInt & Botan::BigInt::operator/= ( const BigInt & y)

/= operator

Parameters
ythe BigInt to divide this by

Definition at line 204 of file big_ops2.cpp.

204 {
205 if(y.sig_words() == 1 && is_positive() && y.is_positive() && is_power_of_2(y.word_at(0))) {
206 (*this) >>= (y.bits() - 1);
207 } else {
208 (*this) = (*this) / y;
209 }
210 return (*this);
211}

References BigInt(), bits(), is_positive(), Botan::is_power_of_2(), sig_words(), and word_at().

◆ operator<<=()

BigInt & Botan::BigInt::operator<<= ( size_t shift)

Left shift operator

Parameters
shiftthe number of bits to shift this left by

Definition at line 253 of file big_ops2.cpp.

253 {
254 const size_t sw = sig_words();
255 const size_t new_size = sw + (shift + WordInfo<word>::bits - 1) / WordInfo<word>::bits;
256
257 m_data.grow_to(new_size);
258
259 bigint_shl1(m_data.mutable_data(), new_size, sw, shift);
260
261 return (*this);
262}
Botan::bigint_shl1
constexpr void bigint_shl1(W x[], size_t x_size, size_t x_words, size_t shift)
Definition mp_core.h:307

References BigInt(), Botan::bigint_shl1(), and sig_words().

◆ operator=() [1/2]

BigInt & Botan::BigInt::operator= ( BigInt && other)
inlinenoexcept

Move assignment

Definition at line 190 of file bigint.h.

190 {
191 if(this != &other) {
192 this->swap(other);
193 }
194
195 return (*this);
196 }

References BigInt(), and swap().

◆ operator=() [2/2]

BigInt & Botan::BigInt::operator= ( const BigInt & )
default

Copy assignment

References BigInt().

◆ operator>>=()

BigInt & Botan::BigInt::operator>>= ( size_t shift)

Right shift operator

Parameters
shiftthe number of bits to shift this right by

Definition at line 267 of file big_ops2.cpp.

267 {
268 bigint_shr1(m_data.mutable_data(), m_data.size(), shift);
269
270 if(is_negative() && is_zero()) {
271 set_sign(Positive);
272 }
273
274 return (*this);
275}
Botan::bigint_shr1
constexpr void bigint_shr1(W x[], size_t x_size, size_t shift)
Definition mp_core.h:326

References BigInt(), Botan::bigint_shr1(), is_negative(), is_zero(), Positive, and set_sign().

◆ power_of_2()

BigInt Botan::BigInt::power_of_2 ( size_t n)
inlinestatic

Create a power of two

Parameters
nthe power of two to create
Returns
bigint representing 2^n

Definition at line 836 of file bigint.h.

836 {
837 BigInt b;
838 b.set_bit(n);
839 return b;
840 }

References BigInt(), and set_bit().

Referenced by Botan::EC_Group::EC_Group(), Botan::inverse_mod_general(), Botan::is_perfect_square(), and Botan::sqrt_modulo_prime().

◆ random_integer()

BigInt Botan::BigInt::random_integer ( RandomNumberGenerator & rng,
const BigInt & min,
const BigInt & max )
static
Parameters
rnga random number generator
minthe minimum value (must be non-negative)
maxthe maximum value (must be non-negative and > min)
Returns
random integer in [min,max)

Definition at line 44 of file big_rand.cpp.

44 {
45 if(min.is_negative() || max.is_negative() || max <= min) {
46 throw Invalid_Argument("BigInt::random_integer invalid range");
47 }
48
49 /*
50 If min is > 1 then we generate a random number `r` in [0,max-min)
51 and return min + r.
52
53 This same logic could also be reasonably chosen for min == 1, but
54 that breaks certain tests which expect stability of this function
55 when generating within [1,n)
56 */
57 if(min > 1) {
58 const BigInt diff = max - min;
59 // This call is recursive, but will not recurse further
60 return min + BigInt::random_integer(rng, BigInt::zero(), diff);
61 }
62
63 BOTAN_DEBUG_ASSERT(min <= 1);
64
65 const size_t bits = max.bits();
66
67 for(;;) {
68 BigInt r;
69 r.randomize(rng, bits, false);
70 if(r >= min && r < max) {
71 return r;
72 }
73 }
74}
Botan::BigInt::zero
static BigInt zero()
Definition bigint.h:50
Botan::BigInt::random_integer
static BigInt random_integer(RandomNumberGenerator &rng, const BigInt &min, const BigInt &max)
Definition big_rand.cpp:44

References BigInt(), bits(), BOTAN_DEBUG_ASSERT, is_negative(), random_integer(), randomize(), and zero().

Referenced by botan_mp_rand_range(), Botan::is_miller_rabin_probable_prime(), random_integer(), Botan::EC_Point::randomize_repr(), and Botan::EC_Group_Data::scalar_random().

◆ randomize()

void Botan::BigInt::randomize ( RandomNumberGenerator & rng,
size_t bitsize,
bool set_high_bit = true )

Fill BigInt with a random number with size of bitsize

If set_high_bit is true, the highest bit will be set, which causes the entropy to be bits-1. Otherwise the highest bit is randomly chosen by the rng, causing the entropy to be bits.

Parameters
rngthe random number generator to use
bitsizenumber of bits the created random value should have
set_high_bitif true, the highest bit is always set

Definition at line 19 of file big_rand.cpp.

19 {
20 set_sign(Positive);
21
22 if(bitsize == 0) {
23 clear();
24 } else {
25 secure_vector<uint8_t> array = rng.random_vec(round_up(bitsize, 8) / 8);
26
27 // Always cut unwanted bits
28 if(bitsize % 8 > 0) {
29 array[0] &= 0xFF >> (8 - (bitsize % 8));
30 }
31
32 // Set the highest bit if wanted
33 if(set_high_bit) {
34 array[0] |= 0x80 >> ((bitsize % 8) > 0 ? (8 - bitsize % 8) : 0);
35 }
36
37 assign_from_bytes(array);
38 }
39}

References clear(), Positive, Botan::RandomNumberGenerator::random_vec(), Botan::round_up(), and set_sign().

Referenced by BigInt(), Botan::DL_Group::DL_Group(), and random_integer().

◆ reduce_below()

size_t Botan::BigInt::reduce_below ( const BigInt & mod,
secure_vector< word > & ws )

Return *this % mod

Assumes that *this is (if anything) only slightly larger than mod and performs repeated subtractions. It should not be used if *this is much larger than mod, instead use modulo operator.

Definition at line 329 of file bigint.cpp.

329 {
330 if(p.is_negative() || this->is_negative()) {
331 throw Invalid_Argument("BigInt::reduce_below both values must be positive");
332 }
333
334 const size_t p_words = p.sig_words();
335
336 if(size() < p_words + 1) {
337 grow_to(p_words + 1);
338 }
339
340 if(ws.size() < p_words + 1) {
341 ws.resize(p_words + 1);
342 }
343
344 clear_mem(ws.data(), ws.size());
345
346 size_t reductions = 0;
347
348 for(;;) {
349 const word borrow = bigint_sub3(ws.data(), _data(), p_words + 1, p._data(), p_words);
350 if(borrow > 0) {
351 break;
352 }
353
354 ++reductions;
355 swap_reg(ws);
356 }
357
358 return reductions;
359}

References _data(), BigInt(), Botan::bigint_sub3(), Botan::clear_mem(), grow_to(), is_negative(), sig_words(), size(), and swap_reg().

Referenced by mod_mul(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ resize()

void Botan::BigInt::resize ( size_t s)
inline

Definition at line 684 of file bigint.h.

684{ m_data.resize(s); }

References resize().

Referenced by ct_shift_left(), and resize().

◆ rev_sub()

BigInt & Botan::BigInt::rev_sub ( const word y[],
size_t y_words,
secure_vector< word > & ws )

Set *this to y - *this

Parameters
ythe BigInt to subtract from as a sequence of words
y_wordslength of y in words
wsa temp workspace

Definition at line 133 of file big_ops2.cpp.

133 {
134 BOTAN_UNUSED(ws);
135 BigInt y_bn;
136 y_bn.m_data.set_words(y, y_sw);
137 *this = y_bn - *this;
138 return (*this);
139}

References BigInt(), and BOTAN_UNUSED.

◆ reverse_sign()

Sign Botan::BigInt::reverse_sign ( ) const
inline
Returns
the opposite sign of the represented integer value

Definition at line 592 of file bigint.h.

592 {
593 if(sign() == Positive) {
594 return Negative;
595 }
596 return Positive;
597 }

References Negative, Positive, and sign().

Referenced by flip_sign(), and Botan::operator-().

◆ serialize() [1/2]

template<typename T = std::vector<uint8_t>>
T Botan::BigInt::serialize ( ) const
inline

Serialize the value of this BigInt as a big endian encoding.

Definition at line 740 of file bigint.h.

740 {
741 return serialize<T>(this->bytes());
742 }
Botan::BigInt::serialize
T serialize() const
Definition bigint.h:740

References bytes(), and serialize().

◆ serialize() [2/2]

template<typename T = std::vector<uint8_t>>
T Botan::BigInt::serialize ( size_t len) const
inline

Serialize the value of this BigInt as a big endian encoding, always returning the specified number of bytes.

Throws if the BigInt is too large to encode in the length specified.

Definition at line 727 of file bigint.h.

727 {
728 // TODO this supports std::vector and secure_vector
729 // it would be nice if this also could work with std::array as in
730 // bn.serialize_to<std::array<uint8_t, 32>>(32);
731 T out(len);
732 this->serialize_to(out);
733 return out;
734 }

References serialize_to().

Referenced by Botan::base58_decode(), Botan::DER_Encoder::encode(), Botan::FPE_FE1::FPE_FE1(), Botan::EC_Group_Data::scalar_from_bigint(), serialize(), Botan::Montgomery_Int::serialize(), Botan::sm2_compute_za(), Botan::srp6_client_agree(), and Botan::SRP6_Server_Session::step2().

◆ serialize_to()

void Botan::BigInt::serialize_to ( std::span< uint8_t > out) const

Serialize the absolute value of this BigInt as a big endian encoding.

If out is smaller than the total bytes of the BigInt then an exception is thrown.

If out is larger than the total bytes of the BigInt then the necessary number of zeros are prefixed to produce the desired output length

Zero-padding the binary encoding is useful to ensure that other applications correctly parse the encoded value as "positive integer", as a leading 1-bit may be interpreted as a sign bit. It also is necessary when using a fixed size encoding for the integers.

Parameters
outdestination byte span for the integer value

Definition at line 395 of file bigint.cpp.

395 {
396 BOTAN_ARG_CHECK(this->bytes() <= output.size(), "Insufficient output space");
397
398 this->binary_encode(output.data(), output.size());
399}
Botan::BigInt::binary_encode
void binary_encode(uint8_t buf[]) const
Definition bigint.h:748

References binary_encode(), BOTAN_ARG_CHECK, and bytes().

Referenced by binary_encode(), Botan::EC_Point::encode(), encode_fixed_length_int_pair(), Botan::EC_AffinePoint::from_bigint_xy(), Botan::RFC6979_Nonce_Generator::nonce_for(), Botan::RFC6979_Nonce_Generator::RFC6979_Nonce_Generator(), serialize(), and to_hex_string().

◆ set_bit()

void Botan::BigInt::set_bit ( size_t n)
inline

Set bit at specified position

Parameters
nbit position to set

Definition at line 479 of file bigint.h.

479{ conditionally_set_bit(n, true); }
Botan::BigInt::conditionally_set_bit
void conditionally_set_bit(size_t n, bool set_it)
Definition bigint.h:489

References conditionally_set_bit().

Referenced by Botan::ct_divide_pow2k(), Botan::EC_Group::EC_Group(), Botan::generate_dsa_primes(), Botan::generate_rsa_prime(), power_of_2(), Botan::random_prime(), and Botan::vartime_divide_pow2k().

◆ set_sign()

void Botan::BigInt::set_sign ( Sign sign)
inline

Set sign of the integer

Parameters
signnew Sign to set

Definition at line 608 of file bigint.h.

608 {
609 if(sign == Negative && is_zero()) {
610 sign = Positive;
611 }
612
613 m_signedness = sign;
614 }

References is_zero(), Negative, Positive, and sign().

Referenced by abs(), add(), add2(), cond_flip_sign(), flip_sign(), from_string(), Botan::inverse_mod_general(), Botan::lcm(), mul(), operator%=(), Botan::operator*(), operator*=(), Botan::operator>>(), operator>>=(), randomize(), square(), to_dec_string(), and Botan::vartime_divide().

◆ set_word_at()

void Botan::BigInt::set_word_at ( size_t i,
word w )
inline

Definition at line 565 of file bigint.h.

565{ m_data.set_word_at(i, w); }

References set_word_at().

Referenced by ct_cond_assign(), from_word(), operator*=(), and set_word_at().

◆ set_words()

void Botan::BigInt::set_words ( const word w[],
size_t len )
inline

Definition at line 567 of file bigint.h.

567 {
568 m_data.set_words(w, len);
569 }

References set_words().

Referenced by mod_add(), and set_words().

◆ sig_words()

size_t Botan::BigInt::sig_words ( ) const
inline

Return how many words we need to hold this value

Returns
significant words of the represented integer value

Definition at line 631 of file bigint.h.

631{ return m_data.sig_words(); }

Referenced by add(), add2(), bits(), cmp_word(), ct_cond_add(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_divide_word(), Botan::ct_modulo(), ct_reduce_below(), encode_words(), Botan::Barrett_Reduction::for_public_modulus(), Botan::Barrett_Reduction::for_secret_modulus(), Botan::gcd(), is_zero(), mod_add(), mod_sub(), mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul_by(), Botan::operator%(), Botan::operator%(), operator%=(), Botan::operator*(), Botan::operator*(), Botan::operator+(), operator+=(), Botan::operator-(), operator-=(), Botan::operator/(), operator/=(), Botan::operator<<(), operator<<=(), Botan::operator>>(), Botan::Barrett_Reduction::reduce(), reduce_below(), Botan::Montgomery_Params::sqr(), square(), top_bits_free(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ sign()

Sign Botan::BigInt::sign ( ) const
inline

Return the sign of the integer

Returns
the sign of the integer

Definition at line 587 of file bigint.h.

587{ return (m_signedness); }

Referenced by add(), add2(), cond_flip_sign(), ct_cond_assign(), is_equal(), is_negative(), is_positive(), mul(), Botan::operator%(), operator%=(), Botan::operator*(), Botan::operator*(), Botan::operator+(), operator+=(), operator-=(), Botan::operator<<(), Botan::operator>>(), reverse_sign(), set_sign(), and sub().

◆ size()

size_t Botan::BigInt::size ( ) const
inline

Give size of internal register

Returns
size of internal register in words

Definition at line 625 of file bigint.h.

625{ return m_data.size(); }

Referenced by add(), Botan::EC_Point::add(), Botan::EC_Point::add_affine(), clear_bit(), cmp(), ct_cond_add(), ct_cond_assign(), ct_cond_swap(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_modulo(), ct_reduce_below(), ct_shift_left(), encode_words(), is_equal(), is_less_than(), Botan::low_zero_bits(), mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul(), Botan::Montgomery_Params::mul_by(), Botan::Barrett_Reduction::multiply(), Botan::operator*(), operator*=(), reduce_below(), Botan::Montgomery_Params::sqr(), Botan::Montgomery_Params::sqr(), Botan::Montgomery_Params::sqr(), Botan::Barrett_Reduction::square(), square(), and with_capacity().

◆ square()

BigInt & Botan::BigInt::square ( secure_vector< word > & ws)

Square value of *this

Parameters
wsa temp workspace

Definition at line 175 of file big_ops2.cpp.

175 {
176 const size_t sw = sig_words();
177
178 secure_vector<word> z(2 * sw);
179 ws.resize(z.size());
180
181 bigint_sqr(z.data(), z.size(), _data(), size(), sw, ws.data(), ws.size());
182
183 swap_reg(z);
184 set_sign(BigInt::Positive);
185
186 return (*this);
187}
Botan::bigint_sqr
void bigint_sqr(word z[], size_t z_size, const word x[], size_t x_size, size_t x_sw, word workspace[], size_t ws_size)
Definition mp_karat.cpp:327

References _data(), BigInt(), Botan::bigint_sqr(), Positive, set_sign(), sig_words(), size(), and swap_reg().

Referenced by Botan::sqrt_modulo_prime(), Botan::square(), and Botan::DL_Group::square_mod_q().

◆ sub()

BigInt & Botan::BigInt::sub ( const word y[],
size_t y_words,
Sign sign )
inline

Definition at line 332 of file bigint.h.

332 {
333 return add(y, y_words, sign == Positive ? Negative : Positive);
334 }

References add(), BigInt(), Negative, Positive, and sign().

Referenced by operator-=(), and operator-=().

◆ swap()

void Botan::BigInt::swap ( BigInt & other)
inlinenoexcept

Swap this value with another

Parameters
otherBigInt to swap values with

Definition at line 207 of file bigint.h.

207 {
208 m_data.swap(other.m_data);
209 std::swap(m_signedness, other.m_signedness);
210 }

References BigInt().

Referenced by Botan::EC_Point::add_affine(), BigInt(), Botan::EC_Point::mult2(), and operator=().

◆ swap_reg()

void Botan::BigInt::swap_reg ( secure_vector< word > & reg)
inline

Definition at line 214 of file bigint.h.

214 {
215 m_data.swap(reg);
216 // sign left unchanged
217 }

References swap_reg().

Referenced by mul(), reduce_below(), square(), and swap_reg().

◆ to_dec_string()

std::string Botan::BigInt::to_dec_string ( ) const

Convert this value to a decimal string. Warning: decimal conversions are relatively slow

If the integer is zero then "0" is returned. If the integer is negative then "-" is prefixed.

Definition at line 40 of file big_code.cpp.

40 {
41 // Use the largest power of 10 that fits in a word
42 constexpr word conversion_radix = decimal_conversion_radix();
43 constexpr size_t radix_digits = decimal_conversion_radix_digits();
44
45 // (over-)estimate of the number of digits needed; log2(10) ~ 3.3219
46 const size_t digit_estimate = static_cast<size_t>(1 + (static_cast<double>(this->bits()) / 3.32));
47
48 // (over-)estimate of db such that conversion_radix^db > *this
49 const size_t digit_blocks = (digit_estimate + radix_digits - 1) / radix_digits;
50
51 BigInt value = *this;
52 value.set_sign(Positive);
53
54 // Extract groups of digits into words
55 std::vector<word> digit_groups(digit_blocks);
56
57 for(size_t i = 0; i != digit_blocks; ++i) {
58 word remainder = 0;
59 ct_divide_word(value, conversion_radix, value, remainder);
60 digit_groups[i] = remainder;
61 }
62
63 BOTAN_ASSERT_NOMSG(value.is_zero());
64
65 // Extract digits from the groups
66 std::vector<uint8_t> digits(digit_blocks * radix_digits);
67
68 for(size_t i = 0; i != digit_blocks; ++i) {
69 word remainder = digit_groups[i];
70 for(size_t j = 0; j != radix_digits; ++j) {
71 const word new_remainder = divide_10(remainder);
72 const word digit = remainder - new_remainder * 10;
73 digits[radix_digits * i + j] = static_cast<uint8_t>(digit);
74 remainder = new_remainder;
75 }
76 }
77
78 // remove leading zeros
79 while(!digits.empty() && digits.back() == 0) {
80 digits.pop_back();
81 }
82
83 BOTAN_ASSERT_NOMSG(digit_estimate >= digits.size());
84
85 // Reverse the digits to big-endian and format to text
86 std::string s;
87 s.reserve(1 + digits.size());
88
89 if(is_negative()) {
90 s += "-";
91 }
92
93 // Reverse and convert to textual digits
94 // TODO(Botan4) use std::ranges::reverse_view here once available (need newer Clang)
95 // NOLINTNEXTLINE(modernize-loop-convert)
96 for(auto i = digits.rbegin(); i != digits.rend(); ++i) {
97 s.push_back(*i + '0'); // assumes ASCII
98 }
99
100 if(s.empty()) {
101 s += "0";
102 }
103
104 return s;
105}
Botan::divide_10
constexpr W divide_10(W x)
Definition mp_core.h:545
Botan::ct_divide_word
void ct_divide_word(const BigInt &x, word y, BigInt &q_out, word &r_out)
Definition divide.cpp:123

References BigInt(), bits(), BOTAN_ASSERT_NOMSG, Botan::ct_divide_word(), Botan::divide_10(), is_negative(), is_zero(), Positive, and set_sign().

Referenced by Botan::operator<<().

◆ to_hex_string()

std::string Botan::BigInt::to_hex_string ( ) const

Convert this value to a hexadecimal string.

If the integer is negative then "-" is prefixed. Then a prefix of "0x" is added. Follows is a sequence of hexadecimal characters in uppercase.

The number of hexadecimal characters is always an even number, with a zero prefix being included if necessary. For example encoding the integer "5" results in "0x05"

Definition at line 107 of file big_code.cpp.

107 {
108 const size_t this_bytes = this->bytes();
109 std::vector<uint8_t> bits(std::max<size_t>(1, this_bytes));
110
111 if(this_bytes > 0) {
112 this->serialize_to(bits);
113 }
114
115 std::string hrep;
116 if(is_negative()) {
117 hrep += "-";
118 }
119 hrep += "0x";
120 hrep += hex_encode(bits);
121 return hrep;
122}
Botan::hex_encode
void hex_encode(char output[], const uint8_t input[], size_t input_length, bool uppercase)
Definition hex.cpp:34

References bits(), bytes(), Botan::hex_encode(), is_negative(), and serialize_to().

Referenced by Botan::operator<<().

◆ to_u32bit()

uint32_t Botan::BigInt::to_u32bit ( ) const

Convert this value into a uint32_t, if it is in the range [0 ... 2**32-1], or otherwise throw an exception.

Returns
the value as a uint32_t if conversion is possible

Definition at line 267 of file bigint.cpp.

267 {
268 if(is_negative()) {
269 throw Encoding_Error("BigInt::to_u32bit: Number is negative");
270 }
271 if(bits() > 32) {
272 throw Encoding_Error("BigInt::to_u32bit: Number is too big to convert");
273 }
274
275 uint32_t out = 0;
276 for(size_t i = 0; i != 4; ++i) {
277 out = (out << 8) | byte_at(3 - i);
278 }
279 return out;
280}
Botan::BigInt::byte_at
uint8_t byte_at(size_t n) const
Definition bigint.cpp:118

References bits(), byte_at(), and is_negative().

◆ top_bits_free()

size_t Botan::BigInt::top_bits_free ( ) const

Get the number of high bits unset in the top (allocated) word of this integer. Returns (sizeof(word) * 8) only iff *this is zero. Ignores sign.

Definition at line 298 of file bigint.cpp.

298 {
299 const size_t words = sig_words();
300
301 const word top_word = word_at(words - 1);
302 const size_t bits_used = high_bit(CT::value_barrier(top_word));
303 CT::unpoison(bits_used);
304 return WordInfo<word>::bits - bits_used;
305}
Botan::CT::value_barrier
constexpr T value_barrier(T x)
Definition value_barrier.h:43
Botan::high_bit
BOTAN_FORCE_INLINE constexpr size_t high_bit(T n)
Definition bit_ops.h:73

References Botan::high_bit(), sig_words(), Botan::CT::unpoison(), Botan::CT::value_barrier(), and word_at().

Referenced by bits(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ with_capacity()

BigInt Botan::BigInt::with_capacity ( size_t n)
static

Create BigInt of specified size, all zeros

Parameters
nsize of the internal register in words

Definition at line 51 of file bigint.cpp.

51 {
52 BigInt bn;
53 bn.grow_to(size);
54 return bn;
55}

References BigInt(), grow_to(), and size().

Referenced by add2(), Botan::ct_divide(), Botan::ct_divide_pow2k(), Botan::ct_divide_word(), Botan::ct_modulo(), Botan::gcd(), Botan::Montgomery_Params::mul(), Botan::operator*(), Botan::operator*(), Botan::operator<<(), and Botan::operator>>().

◆ word_at()

word Botan::BigInt::word_at ( size_t n) const
inline

Return the word at a specified position of the internal register

Parameters
nposition in the register
Returns
value at position n

Definition at line 563 of file bigint.h.

563{ return m_data.get_word_at(n); }

References word_at().

Referenced by binary_encode(), byte_at(), clear_bit(), conditionally_set_bit(), ct_cond_assign(), Botan::EC_Group::EC_group_identity_from_order(), get_bit(), get_substring(), Botan::is_prime(), Botan::jacobi(), Botan::low_zero_bits(), mul(), Botan::operator%(), Botan::operator%(), operator%=(), Botan::operator*(), Botan::operator/(), operator/=(), top_bits_free(), Botan::vartime_divide(), Botan::vartime_divide_pow2k(), and word_at().

◆ zero()

BigInt Botan::BigInt::zero ( )
inlinestatic

Create a 0-value BigInt

Definition at line 50 of file bigint.h.

50{ return BigInt(); }

References BigInt().

Referenced by botan_mp_mod_inverse(), Botan::ct_divide_pow2k(), Botan::EC_Group_Data::gk_x_mod_order(), Botan::inverse_mod(), Botan::is_perfect_square(), Botan::operator<<(), Botan::operator>>(), Botan::power_mod(), random_integer(), Botan::random_safe_prime(), Botan::vartime_divide(), and Botan::vartime_divide_pow2k().

◆ swap

void swap ( BigInt & x,
BigInt & y )
friend

Definition at line 212 of file bigint.h.

212{ x.swap(y); }

References BigInt().

The documentation for this class was generated from the following files:
Generated by doxygen 1.15.0