void hec_fp_smul_2e128mc_g2i(DIV_hec_fp_2e128mc D1, const uni kn, DIV_hec_fp_2e128mc D2, CNS_hec_fp_2e128mc cn)
{
DIV_hec_fp_2e128mc_t D[TABLE_SIZE_LTR], mD2, tmD2;
int i, j, ni, k, wd;
hec_fp_neg_2e128mc_g2i(mD2, D2, cn);
fp_cnt_bits(&i, kn, FP_LEN*2); /*printf("%d ", i);*/
if(i == 0) {
fp_set_1_2e128mc_x8664(D1->Z, 0); /*Marker for identity.*/
}
else {
hec_fp_dbl_2e128mc_g2i(D[0], D2, cn); /* 2*D. */
hec_fp_madd_2e128mc_g2i(D[1], D[0], D2, cn); /* 3*D. */
for(j = 2; j < TABLE_SIZE_LTR; j++) {
hec_fp_add_2e128mc_g2i(D[j], D[j - 1], D[0], cn);
}
#ifdef AFFINE_LOOKUP
uni_t c[TABLE_SIZE_LTR][FP_LEN], u[FP_LEN], aa[TABLE_SIZE_LTR][FP_LEN];
fp_cpy_2e128mc_x8664(c[0], D[0]->Z);
for(j = 1; j < TABLE_SIZE_LTR; j++) {
fp_mul_2e128mc_x8664(c[j], cn->prm, NULL, D[j]->Z, c[j-1]);
}
fp_inv_2e128mc_x8664(u, cn->prm, c[TABLE_SIZE_LTR-1]);
for(j = TABLE_SIZE_LTR-1; j > 0; j--) {
fp_mul_2e128mc_x8664(aa[j], cn->prm, NULL, c[j-1], u);
fp_mul_2e128mc_x8664(u, cn->prm, NULL, D[j]->Z, u);
}
fp_cpy_2e128mc_x8664(aa[0], u);
for(j = 0; j < TABLE_SIZE_LTR; j++) {
fp_mul_2e128mc_x8664(D[j]->P, cn->prm, NULL, aa[j], D[j]->P);
fp_mul_2e128mc_x8664(D[j]->R, cn->prm, NULL, aa[j], D[j]->R);
fp_mul_2e128mc_x8664(D[j]->S, cn->prm, NULL, aa[j], D[j]->S);
fp_mul_2e128mc_x8664(D[j]->T, cn->prm, NULL, aa[j], D[j]->T);
fp_set_1_2e128mc_x8664(D[j]->Z, 1);
}
#endif
find_nextwindow(&ni, &k, 2*FP_LEN, &wd, kn, i, WINDOW_SIZE_LTR, TABLE_SIZE_LTR);
i -= wd;
if(ni > 0) {
ni >>= 1;
if(ni == 0) {
hec_fp_cpy_2e128mc_g2i(D1, D2);
}
else {
hec_fp_cpy_2e128mc_g2i(D1, D[ni]);
}
}
else {
void hec_fp_smul_2e127m1_g2i_jac(DIV_hec_fp_2e127m1 D1, const uni kn, DIV_hec_fp_2e127m1 D2, CNS_hec_fp_2e127m1 cn)
{
TEMP_hec_fp_2e127m1_t t;
DIV_hec_fp_2e127m1_t mD2, tmD2, nD2;
int i, j, ni, k, wd;
fp_neg_2e127m1_x8664_asm(t->cn->a2, NULL, NULL, cn->a2);
fp_cpy_2e127m1_x8664_asm(t->cn->a3, NULL, NULL, cn->a3);
hec_fp_neg_2e127m1_g2i_jac(mD2, D2);
fp_cnt_bits(&i, kn, FP_LEN*2); /*printf("%d ", i);*/
if(i == 0){
fp_st1_2e127m1_x8664_asm(t->D1->Z, NULL, NULL, 0); /* Marker for the identity. */
}
else{
hec_fp_cpy_2e127m1_g2i_jac(nD2, D2);
hec_fp_zdbl_2e127m1_g2i_jac(t, nD2);
hec_fp_zadd_2e127m1_g2i_jac(t, nD2);
hec_fp_cpy_2e127m1_g2i_jac(t->tbl[1], t->D3);
for(j = 2; j < TABLE_SIZE_LTR; j++){
hec_fp_zadd_2e127m1_g2i_jac(t, t->tbl[j-1]);
hec_fp_cpy_2e127m1_g2i_jac(t->tbl[j], t->D3);
}
hec_fp_cpy_2e127m1_g2i_jac(t->tbl[0], D2);
//t->tbl[0] is already affine.
//So, we start Montgomery's simultaneous inversion from t->tbl[1].
//We first switch to homogeneous projective coordinates (without W or V=W^2) to save field operations and space.
fp_mul_2e127m1_x8664_asm(t->tbl[1]->W, NULL, NULL, t->tbl[1]->Z, t->tbl[1]->W); //W := W*Z
fp_sqr_2e127m1_x8664_asm(t->tbl[1]->Z, NULL, NULL, t->tbl[1]->Z); //Z := Z^2
fp_mul_2e127m1_x8664_asm(t->tbl[1]->S, NULL, NULL, t->tbl[1]->S, t->tbl[1]->Z); //S := S*Z^2
fp_mul_2e127m1_x8664_asm(t->tbl[1]->R, NULL, NULL, t->tbl[1]->R, t->tbl[1]->W); //R := R*W*Z
fp_mul_2e127m1_x8664_asm(t->tbl[1]->W, NULL, NULL, t->tbl[1]->Z, t->tbl[1]->W); //W := W*Z^3
fp_mul_2e127m1_x8664_asm(t->tbl[1]->Q, NULL, NULL, t->tbl[1]->Q, t->tbl[1]->W); //Q := Q*W*Z^3
fp_mul_2e127m1_x8664_asm(t->tbl[1]->Z, NULL, NULL, t->tbl[1]->Z, t->tbl[1]->W); //Z := W*Z^5
fp_cpy_2e127m1_x8664_asm(t->tbl[1]->V, NULL, NULL, t->tbl[1]->Z); //V is accumulator now.
for(j = 2; j < TABLE_SIZE_LTR; j++){
fp_mul_2e127m1_x8664_asm(t->tbl[j]->W, NULL, NULL, t->tbl[j]->Z, t->tbl[j]->W); //W := W*Z
fp_sqr_2e127m1_x8664_asm(t->tbl[j]->Z, NULL, NULL, t->tbl[j]->Z); //Z := Z^2
fp_mul_2e127m1_x8664_asm(t->tbl[j]->S, NULL, NULL, t->tbl[j]->S, t->tbl[j]->Z); //S := S*Z^2
fp_mul_2e127m1_x8664_asm(t->tbl[j]->R, NULL, NULL, t->tbl[j]->R, t->tbl[j]->W); //R := R*W*Z
fp_mul_2e127m1_x8664_asm(t->tbl[j]->W, NULL, NULL, t->tbl[j]->Z, t->tbl[j]->W); //W := W*Z^3
fp_mul_2e127m1_x8664_asm(t->tbl[j]->Q, NULL, NULL, t->tbl[j]->Q, t->tbl[j]->W); //Q := Q*W*Z^3
fp_mul_2e127m1_x8664_asm(t->tbl[j]->Z, NULL, NULL, t->tbl[j]->Z, t->tbl[j]->W); //Z := W*Z^5
fp_mul_2e127m1_x8664_asm(t->tbl[j]->V, NULL, NULL, t->tbl[j]->Z, t->tbl[j-1]->V);
}
fp_inv_2e127m1_x8664(t->tbl[TABLE_SIZE_LTR-1]->V, NULL, NULL, t->tbl[TABLE_SIZE_LTR-1]->V);
for(j = TABLE_SIZE_LTR-1; j > 1; j--){
fp_mul_2e127m1_x8664_asm(t->tbl[j]->W, NULL, NULL, t->tbl[j-1]->V, t->tbl[TABLE_SIZE_LTR-1]->V);
fp_mul_2e127m1_x8664_asm(t->tbl[TABLE_SIZE_LTR-1]->V, NULL, NULL, t->tbl[j]->Z, t->tbl[TABLE_SIZE_LTR-1]->V);
fp_mul_2e127m1_x8664_asm(t->tbl[j]->Q, NULL, NULL, t->tbl[j]->W, t->tbl[j]->Q);
fp_mul_2e127m1_x8664_asm(t->tbl[j]->R, NULL, NULL, t->tbl[j]->W, t->tbl[j]->R);
fp_mul_2e127m1_x8664_asm(t->tbl[j]->S, NULL, NULL, t->tbl[j]->W, t->tbl[j]->S);
fp_mul_2e127m1_x8664_asm(t->tbl[j]->T, NULL, NULL, t->tbl[j]->W, t->tbl[j]->T);
}
fp_mul_2e127m1_x8664_asm(t->tbl[1]->Q, NULL, NULL, t->tbl[1]->Q, t->tbl[TABLE_SIZE_LTR-1]->V);
fp_mul_2e127m1_x8664_asm(t->tbl[1]->R, NULL, NULL, t->tbl[1]->R, t->tbl[TABLE_SIZE_LTR-1]->V);
fp_mul_2e127m1_x8664_asm(t->tbl[1]->S, NULL, NULL, t->tbl[1]->S, t->tbl[TABLE_SIZE_LTR-1]->V);
fp_mul_2e127m1_x8664_asm(t->tbl[1]->T, NULL, NULL, t->tbl[1]->T, t->tbl[TABLE_SIZE_LTR-1]->V);
for(j = 1; j < TABLE_SIZE_LTR; j++){
fp_st1_2e127m1_x8664_asm(t->tbl[j]->Z, NULL, NULL, 1);
fp_st1_2e127m1_x8664_asm(t->tbl[j]->W, NULL, NULL, 1);
fp_st1_2e127m1_x8664_asm(t->tbl[j]->V, NULL, NULL, 1);
}
find_nextwindow(&ni, &k, 2*FP_LEN, &wd, kn, i, WINDOW_SIZE_LTR, TABLE_SIZE_LTR);
i -= wd;
if(ni > 0){
ni >>= 1;
hec_fp_cpy_2e127m1_g2i_jac(t->D1, t->tbl[ni]);
}
else{
