dilithium: useHint: use Poly.Decompose, which might be faster

cloudflare · May 14, 2020 · c8d81f9 · c8d81f9
1 parent 21fbd12
commit c8d81f9
Showing 1 changed file with 13 additions and 1 deletion.
diff --git a/sign/dilithium/internal/common/poly.go b/sign/dilithium/internal/common/poly.go
@@ -105,9 +105,21 @@ func (p *Poly) MakeHint(p0, p1 *Poly) (pop uint32) {
 // Computes corrections to the high bits of the polynomial q according
 // to the hints in h and sets p to the corrected high bits.  Returns p.
 func (p *Poly) UseHint(q, hint *Poly) *Poly {
+	var q0PlusQ Poly
+
+	q.Decompose(&q0PlusQ, p)
+
 	for i := 0; i < N; i++ {
-		p[i] = useHint(q[i], hint[i])
+		if hint[i] == 0 {
+			continue
+		}
+		if q0PlusQ[i] > Q {
+			p[i] = (p[i] + 1) & 15
+		} else {
+			p[i] = (p[i] - 1) & 15
+		}
 	}
+
 	return p
 }