[Libre-soc-bugs] [Bug 1166] Ed25519 documentation.
bugzilla-daemon at libre-soc.org
bugzilla-daemon at libre-soc.org
Mon Jun 24 11:58:41 BST 2024
https://bugs.libre-soc.org/show_bug.cgi?id=1166
--- Comment #3 from Luke Kenneth Casson Leighton <lkcl at lkcl.net> ---
(In reply to Luke Kenneth Casson Leighton from comment #2)
> BTW: are you aware of https://nlnet.nl/project/lib25519 - this is the most
> optimised version I'm aware of, overseen by Dan Bernstein himself ...
let's have a look
https://lib25519.cr.yp.to/lib25519-20240321/crypto_mGnP/ed25519/ref10/fe_mul.c.html
*massively* loop-unrolled algorithm. precisely and exactly
the antithesis of the benefits of Simple-V multi-dimensional
assembler!
it also is not useful in that it uses entire 64-bit computations
to calculate a single carry-bit, where the underlying POWER ISA
has carry flags that can be CHAINED. a big-integer add is therefore
a single instruction! sv.adde!
looking at this - it contains no notes.
https://lib25519.cr.yp.to/lib25519-20240321/crypto_pow/inv25519/amd64-mxaa/fe25519_mul.S.html
unfortunately therefore it is far beyond scope to assess, although
useful in the large number of instructions as a comparative point
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the libre-soc-bugs
mailing list