summary refs log tree commit diff
path: root/crypto/src
diff options
context:
space:
mode:
Diffstat (limited to 'crypto/src')
-rw-r--r--crypto/src/math/ec/ECFieldElement.cs10
1 files changed, 8 insertions, 2 deletions
diff --git a/crypto/src/math/ec/ECFieldElement.cs b/crypto/src/math/ec/ECFieldElement.cs

index 93f63a435..f29d1f1b0 100644
--- a/crypto/src/math/ec/ECFieldElement.cs
+++ b/crypto/src/math/ec/ECFieldElement.cs
@@ -79,8 +79,14 @@ namespace Org.BouncyCastle.Math.EC
             int bitLength = p.BitLength;
             if (bitLength > 128)
             {
-                BigInteger firstWord = p.ShiftRight(bitLength - 64);
-                if (firstWord.LongValue == -1L)
+                /*
+                 * NOTE: Due to poor performance of BigInteger.Mod in C#, the residue-based reduction is
+                 * currently faster even for e.g. P-256, where the prime has 32 leading 1 bits.
+                 */
+                //BigInteger firstWord = p.ShiftRight(bitLength - 64);
+                //if (firstWord.LongValue == -1L)
+                BigInteger firstWord = p.ShiftRight(bitLength - 32);
+                if (firstWord.IntValue == -1)
                 {
                     return BigInteger.One.ShiftLeft(bitLength).Subtract(p);
                 }
generated by cgit-magenta 1.5.1 (git 2.48.1) at 2025-07-26 00:58:18 +0000