Loading...
Searching...
No Matches
Public Types |
Public Member Functions |
Static Public Member Functions |
Public Attributes |
Static Public Attributes |
Friends |
List of all members
libff::bn128_G2 Class Reference
#include <bn128_g2.hpp>
Collaboration diagram for libff::bn128_G2:
Public Types | |
| typedef bn128_Fq | base_field |
| typedef bn128_Fr | scalar_field |
Public Member Functions | |
| void | fill_coord (bn::Fp2 coord[3]) const |
| bn128_G2 () | |
| bn128_G2 (bn::Fp2 coord[3]) | |
| void | print () const |
| void | print_coordinates () const |
| void | to_affine_coordinates () |
| void | to_special () |
| bool | is_special () const |
| bool | is_zero () const |
| bool | operator== (const bn128_G2 &other) const |
| bool | operator!= (const bn128_G2 &other) const |
| bn128_G2 | operator+ (const bn128_G2 &other) const |
| bn128_G2 | operator- () const |
| bn128_G2 | operator- (const bn128_G2 &other) const |
| bn128_G2 | add (const bn128_G2 &other) const |
| bn128_G2 | mixed_add (const bn128_G2 &other) const |
| bn128_G2 | dbl () const |
| bool | is_well_formed () const |
Static Public Member Functions | |
| static bn128_G2 | zero () |
| static bn128_G2 | one () |
| static bn128_G2 | random_element () |
| static size_t | size_in_bits () |
| static bigint< base_field::num_limbs > | base_field_char () |
| static bigint< scalar_field::num_limbs > | order () |
| static void | batch_to_special_all_non_zeros (std::vector< bn128_G2 > &vec) |
Public Attributes | |
| bn::Fp2 | X |
| bn::Fp2 | Y |
| bn::Fp2 | Z |
Static Public Attributes | |
| static std::vector< size_t > | wnaf_window_table |
| static std::vector< size_t > | fixed_base_exp_window_table |
| static bn128_G2 | G2_zero = {} |
| static bn128_G2 | G2_one = {} |
| static bool | initialized = false |
Friends | |
| std::ostream & | operator<< (std::ostream &out, const bn128_G2 &g) |
| std::istream & | operator>> (std::istream &in, bn128_G2 &g) |
Detailed Description
Definition at line 24 of file bn128_g2.hpp.
Member Typedef Documentation
◆ base_field
Definition at line 38 of file bn128_g2.hpp.
◆ scalar_field
Definition at line 39 of file bn128_g2.hpp.
Constructor & Destructor Documentation
◆ bn128_G2() [1/2]
| libff::bn128_G2::bn128_G2 | ( | ) |
Definition at line 74 of file bn128_g2.cpp.
75{
77 {
81 }
82}
◆ bn128_G2() [2/2]
|
inline |
Definition at line 45 of file bn128_g2.hpp.
Member Function Documentation
◆ add()
Definition at line 224 of file bn128_g2.cpp.
225{
226#ifdef PROFILE_OP_COUNTS
227 this->add_cnt++;
228#endif
229
230 bn::Fp2 this_coord[3], other_coord[3], result_coord[3];
231 this->fill_coord(this_coord);
232 other.fill_coord(other_coord);
233 bn::ecop::ECAdd(result_coord, this_coord, other_coord);
234
235 bn128_G2 result(result_coord);
236 return result;
237}
Here is the call graph for this function:
Here is the caller graph for this function:
◆ base_field_char()
|
inlinestatic |
◆ batch_to_special_all_non_zeros()
|
static |
Definition at line 489 of file bn128_g2.cpp.
490{
491 std::vector<bn::Fp2> Z_vec;
492 Z_vec.reserve(vec.size());
493
494 for (auto &el: vec)
495 {
496 Z_vec.emplace_back(el.Z);
497 }
498 bn_batch_invert<bn::Fp2>(Z_vec);
499
501
502 for (size_t i = 0; i < vec.size(); ++i)
503 {
504 bn::Fp2 Z2, Z3;
505 bn::Fp2::square(Z2, Z_vec[i]);
506 bn::Fp2::mul(Z3, Z2, Z_vec[i]);
507
510 vec[i].Z = one;
511 }
512}
void bn_batch_invert(std::vector< FieldT > &vec)
Here is the call graph for this function:
◆ dbl()
| bn128_G2 libff::bn128_G2::dbl | ( | ) | const |
Definition at line 326 of file bn128_g2.cpp.
327{
328#ifdef PROFILE_OP_COUNTS
329 this->dbl_cnt++;
330#endif
331
332 bn::Fp2 this_coord[3], result_coord[3];
333 this->fill_coord(this_coord);
334 bn::ecop::ECDouble(result_coord, this_coord);
335
336 bn128_G2 result(result_coord);
337 return result;
338}
Here is the call graph for this function:
Here is the caller graph for this function:
◆ fill_coord()
|
inline |
◆ is_special()
| bool libff::bn128_G2::is_special | ( | ) | const |
◆ is_well_formed()
| bool libff::bn128_G2::is_well_formed | ( | ) | const |
Definition at line 340 of file bn128_g2.cpp.
341{
343 {
344 return true;
345 }
346 else
347 {
348 /*
349 y^2 = x^3 + b
350
351 We are using Jacobian coordinates, so equation we need to check is actually
352
353 (y/z^3)^2 = (x/z^2)^3 + b
354 y^2 / z^6 = x^3 / z^6 + b
355 y^2 = x^3 + b z^6
356 */
357 bn::Fp2 X2, Y2, Z2;
361
362 bn::Fp2 X3, Z3, Z6;
365 bn::Fp2::square(Z6, Z3);
366
368 }
369}
Here is the call graph for this function:
◆ is_zero()
| bool libff::bn128_G2::is_zero | ( | ) | const |
Definition at line 141 of file bn128_g2.cpp.
Here is the call graph for this function:
Here is the caller graph for this function:
◆ mixed_add()
Definition at line 239 of file bn128_g2.cpp.
240{
242 {
244 }
245
247 {
248 return *this;
249 }
250
251 // no need to handle points of order 2,4
252 // (they cannot exist in a prime-order subgroup)
253
254#ifdef DEBUG
255 assert(other.is_special());
256#endif
257
258 // check for doubling case
259
260 // using Jacobian coordinates so:
261 // (X1:Y1:Z1) = (X2:Y2:Z2)
262 // iff
263 // X1/Z1^2 == X2/Z2^2 and Y1/Z1^3 == Y2/Z2^3
264 // iff
265 // X1 * Z2^2 == X2 * Z1^2 and Y1 * Z2^3 == Y2 * Z1^3
266
267 // we know that Z2 = 1
268
269 bn::Fp2 Z1Z1;
272 bn::Fp2 U2;
274 bn::Fp2 Z1_cubed;
276
278 bn::Fp2 S2;
280
281 if (U1 == U2 && S1 == S2)
282 {
283 // dbl case; nothing of above can be reused
285 }
286
287#ifdef PROFILE_OP_COUNTS
288 this->add_cnt++;
289#endif
290
291 bn128_G2 result;
293 // H = U2-X1
295 // HH = H^2
296 bn::Fp2::square(HH, H);
297 // I = 4*HH
298 bn::Fp2::add(tmp, HH, HH);
299 bn::Fp2::add(I, tmp, tmp);
300 // J = H*I
301 bn::Fp2::mul(J, H, I);
302 // r = 2*(S2-Y1)
304 bn::Fp2::add(r, tmp, tmp);
305 // V = X1*I
307 // X3 = r^2-J-2*V
309 bn::Fp2::sub(result.X, result.X, J);
312 // Y3 = r*(V-X3)-2*Y1*J
316 bn::Fp2::sub(result.Y, result.Y, tmp);
317 bn::Fp2::sub(result.Y, result.Y, tmp);
318 // Z3 = (Z1+H)^2-Z1Z1-HH
320 bn::Fp2::square(result.Z, tmp);
321 bn::Fp2::sub(result.Z, result.Z, Z1Z1);
322 bn::Fp2::sub(result.Z, result.Z, HH);
323 return result;
324}
Definition test_zm.cpp:19
Here is the call graph for this function:
◆ one()
|
static |
◆ operator!=()
| bool libff::bn128_G2::operator!= | ( | const bn128_G2 & | other | ) | const |
◆ operator+()
Definition at line 185 of file bn128_g2.cpp.
186{
187 // handle special cases having to do with O
189 {
191 }
192
194 {
195 return *this;
196 }
197
198 // no need to handle points of order 2,4
199 // (they cannot exist in a prime-order subgroup)
200
201 // handle double case, and then all the rest
202 if (this->operator==(other))
203 {
205 }
206 else
207 {
209 }
210}
Here is the call graph for this function:
◆ operator-() [1/2]
| bn128_G2 libff::bn128_G2::operator- | ( | ) | const |
Definition at line 212 of file bn128_g2.cpp.
Here is the call graph for this function:
◆ operator-() [2/2]
Definition at line 219 of file bn128_g2.cpp.
◆ operator==()
| bool libff::bn128_G2::operator== | ( | const bn128_G2 & | other | ) | const |
Definition at line 146 of file bn128_g2.cpp.
147{
149 {
151 }
152
154 {
155 return false;
156 }
157
158 /* now neither is O */
159
160 bn::Fp2 Z1sq, Z2sq, lhs, rhs;
165
166 if (lhs != rhs)
167 {
168 return false;
169 }
170
171 bn::Fp2 Z1cubed, Z2cubed;
176
177 return (lhs == rhs);
178}
Here is the call graph for this function:
Here is the caller graph for this function:
◆ order()
|
inlinestatic |
◆ print()
| void libff::bn128_G2::print | ( | ) | const |
Definition at line 84 of file bn128_g2.cpp.
85{
87 {
89 }
90 else
91 {
93 copy.to_affine_coordinates();
94 std::cout << "(" << copy.X.toString(10) << " : " << copy.Y.toString(10) << " : " << copy.Z.toString(10) << ")\n";
95 }
96}
LOGGING_API void printf(Category category, const char *format,...)
Definition Logging.cpp:30
Here is the call graph for this function:
◆ print_coordinates()
| void libff::bn128_G2::print_coordinates | ( | ) | const |
◆ random_element()
|
static |
Definition at line 381 of file bn128_g2.cpp.
382{
384}
static Fp_model< n, modulus > random_element()
Here is the call graph for this function:
◆ size_in_bits()
|
inlinestatic |
◆ to_affine_coordinates()
| void libff::bn128_G2::to_affine_coordinates | ( | ) |
◆ to_special()
| void libff::bn128_G2::to_special | ( | ) |
Definition at line 131 of file bn128_g2.cpp.
Here is the call graph for this function:
◆ zero()
|
static |
Definition at line 371 of file bn128_g2.cpp.
Friends And Related Symbol Documentation
◆ operator<<
|
friend |
Definition at line 386 of file bn128_g2.cpp.
387{
388 bn128_G2 gcopy(g);
389 gcopy.to_affine_coordinates();
390
392
393#ifdef NO_PT_COMPRESSION
394 /* no point compression case */
395#ifndef BINARY_OUTPUT
397 out << gcopy.Y.a_ << OUTPUT_SEPARATOR << gcopy.Y.b_;
398#else
399 out.write((char*) &gcopy.X.a_, sizeof(gcopy.X.a_));
400 out.write((char*) &gcopy.X.b_, sizeof(gcopy.X.b_));
401 out.write((char*) &gcopy.Y.a_, sizeof(gcopy.Y.a_));
402 out.write((char*) &gcopy.Y.b_, sizeof(gcopy.Y.b_));
403#endif
404
405#else
406 /* point compression case */
407#ifndef BINARY_OUTPUT
408 out << gcopy.X.a_ << OUTPUT_SEPARATOR << gcopy.X.b_;
409#else
410 out.write((char*) &gcopy.X.a_, sizeof(gcopy.X.a_));
411 out.write((char*) &gcopy.X.b_, sizeof(gcopy.X.b_));
412#endif
414#endif
415
416 return out;
417}
◆ operator>>
|
friend |
Definition at line 419 of file bn128_g2.cpp.
420{
424 consume_OUTPUT_SEPARATOR(in);
425
426#ifdef NO_PT_COMPRESSION
427 /* no point compression case */
428#ifndef BINARY_OUTPUT
429 in >> g.X.a_;
430 consume_OUTPUT_SEPARATOR(in);
431 in >> g.X.b_;
432 consume_OUTPUT_SEPARATOR(in);
433 in >> g.Y.a_;
434 consume_OUTPUT_SEPARATOR(in);
435 in >> g.Y.b_;
436#else
437 in.read((char*) &g.X.a_, sizeof(g.X.a_));
438 in.read((char*) &g.X.b_, sizeof(g.X.b_));
439 in.read((char*) &g.Y.a_, sizeof(g.Y.a_));
440 in.read((char*) &g.Y.b_, sizeof(g.Y.b_));
441#endif
442
443#else
444 /* point compression case */
445 bn::Fp2 tX;
446#ifndef BINARY_OUTPUT
447 in >> tX.a_;
448 consume_OUTPUT_SEPARATOR(in);
449 in >> tX.b_;
450#else
453#endif
454 consume_OUTPUT_SEPARATOR(in);
455 unsigned char Y_lsb;
456 in.read((char*)&Y_lsb, 1);
457 Y_lsb -= '0';
458
459 // y = +/- sqrt(x^3 + b)
461 {
462 g.X = tX;
463 bn::Fp2 tX2, tY2;
464 bn::Fp2::square(tX2, tX);
465 bn::Fp2::mul(tY2, tX2, tX);
467
468 g.Y = bn128_G2::sqrt(tY2);
469 if ((((unsigned char*)&g.Y.a_)[0] & 1) != Y_lsb)
470 {
471 bn::Fp2::neg(g.Y, g.Y);
472 }
473 }
474#endif
475
476 /* finalize */
478 {
480 }
481 else
482 {
483 g = bn128_G2::zero();
484 }
485
486 return in;
487}
void consume_OUTPUT_SEPARATOR(std::istream &in)
Member Data Documentation
◆ fixed_base_exp_window_table
|
static |
Definition at line 33 of file bn128_g2.hpp.
◆ G2_one
|
static |
Definition at line 35 of file bn128_g2.hpp.
◆ G2_zero
|
static |
Definition at line 34 of file bn128_g2.hpp.
◆ initialized
|
static |
Definition at line 36 of file bn128_g2.hpp.
◆ wnaf_window_table
|
static |
Definition at line 32 of file bn128_g2.hpp.
◆ X
| bn::Fp2 libff::bn128_G2::X |
Definition at line 41 of file bn128_g2.hpp.
◆ Y
| bn::Fp2 libff::bn128_G2::Y |
Definition at line 41 of file bn128_g2.hpp.
◆ Z
| bn::Fp2 libff::bn128_G2::Z |
Definition at line 41 of file bn128_g2.hpp.
The documentation for this class was generated from the following files:
- libraries/fc/libraries/ff/libff/algebra/curves/bn128/bn128_g2.hpp
- libraries/fc/libraries/ff/libff/algebra/curves/bn128/bn128_g2.cpp
