Abstract out verify logic for fe_clear

sipa · sipa · commit c701d9a4719a · 2023-05-11T06:18:40.000-04:00
diff --git a/src/field.h b/src/field.h
@@ -81,6 +81,7 @@ static const secp256k1_fe secp256k1_const_beta = SECP256K1_FE_CONST(
 #  define secp256k1_fe_normalizes_to_zero secp256k1_fe_impl_normalizes_to_zero
 #  define secp256k1_fe_normalizes_to_zero_var secp256k1_fe_impl_normalizes_to_zero_var
 #  define secp256k1_fe_set_int secp256k1_fe_impl_set_int
+#  define secp256k1_fe_clear secp256k1_fe_impl_clear
 #endif /* !defined(VERIFY) */
 
 /** Normalize a field element.
@@ -123,7 +124,11 @@ static int secp256k1_fe_normalizes_to_zero_var(const secp256k1_fe *r);
  */
 static void secp256k1_fe_set_int(secp256k1_fe *r, int a);
 
-/** Sets a field element equal to zero, initializing all fields. */
+/** Set a field element to 0.
+ *
+ * On input, a does not need to be initialized.
+ * On output, a represents 0, is normalized and has magnitude 0.
+ */
 static void secp256k1_fe_clear(secp256k1_fe *a);
 
 /** Verify whether a field element is zero. Requires the input to be normalized. */
diff --git a/src/field_10x26_impl.h b/src/field_10x26_impl.h
@@ -286,12 +286,8 @@ SECP256K1_INLINE static int secp256k1_fe_is_odd(const secp256k1_fe *a) {
     return a->n[0] & 1;
 }
 
-SECP256K1_INLINE static void secp256k1_fe_clear(secp256k1_fe *a) {
+SECP256K1_INLINE static void secp256k1_fe_impl_clear(secp256k1_fe *a) {
     int i;
-#ifdef VERIFY
-    a->magnitude = 0;
-    a->normalized = 1;
-#endif
     for (i=0; i<10; i++) {
         a->n[i] = 0;
     }
diff --git a/src/field_5x52_impl.h b/src/field_5x52_impl.h
@@ -232,12 +232,8 @@ SECP256K1_INLINE static int secp256k1_fe_is_odd(const secp256k1_fe *a) {
     return a->n[0] & 1;
 }
 
-SECP256K1_INLINE static void secp256k1_fe_clear(secp256k1_fe *a) {
+SECP256K1_INLINE static void secp256k1_fe_impl_clear(secp256k1_fe *a) {
     int i;
-#ifdef VERIFY
-    a->magnitude = 0;
-    a->normalized = 1;
-#endif
     for (i=0; i<5; i++) {
         a->n[i] = 0;
     }
diff --git a/src/field_impl.h b/src/field_impl.h
@@ -194,6 +194,14 @@ SECP256K1_INLINE static void secp256k1_fe_set_int(secp256k1_fe *r, int a) {
     r->normalized = 1;
     secp256k1_fe_verify(r);
 }
+
+static void secp256k1_fe_impl_clear(secp256k1_fe *a);
+SECP256K1_INLINE static void secp256k1_fe_clear(secp256k1_fe *a) {
+    a->magnitude = 0;
+    a->normalized = 1;
+    secp256k1_fe_impl_clear(a);
+    secp256k1_fe_verify(a);
+}
 #endif /* defined(VERIFY) */
 
 #endif /* SECP256K1_FIELD_IMPL_H */

Original file line number	Diff line number	Diff line change
`@@ -286,12 +286,8 @@ SECP256K1_INLINE static int secp256k1_fe_is_odd(const secp256k1_fe *a) {`
`286`	`286`	`return a->n[0] & 1;`
`287`	`287`	`}`
`288`	`288`
`289`		`-SECP256K1_INLINE static void secp256k1_fe_clear(secp256k1_fe *a) {`
	`289`	`+SECP256K1_INLINE static void secp256k1_fe_impl_clear(secp256k1_fe *a) {`
`290`	`290`	`int i;`
`291`		`-#ifdef VERIFY`
`292`		`- a->magnitude = 0;`
`293`		`- a->normalized = 1;`
`294`		`-#endif`
`295`	`291`	`for (i=0; i<10; i++) {`
`296`	`292`	`a->n[i] = 0;`
`297`	`293`	`}`
Original file line number	Diff line number	Diff line change
`@@ -232,12 +232,8 @@ SECP256K1_INLINE static int secp256k1_fe_is_odd(const secp256k1_fe *a) {`
`232`	`232`	`return a->n[0] & 1;`
`233`	`233`	`}`
`234`	`234`
`235`		`-SECP256K1_INLINE static void secp256k1_fe_clear(secp256k1_fe *a) {`
	`235`	`+SECP256K1_INLINE static void secp256k1_fe_impl_clear(secp256k1_fe *a) {`
`236`	`236`	`int i;`
`237`		`-#ifdef VERIFY`
`238`		`- a->magnitude = 0;`
`239`		`- a->normalized = 1;`
`240`		`-#endif`
`241`	`237`	`for (i=0; i<5; i++) {`
`242`	`238`	`a->n[i] = 0;`
`243`	`239`	`}`