Wire Sysio Wire Sysion 1.0.0
Loading...
Searching...
No Matches
mnt6_init.cpp
Go to the documentation of this file.
1
14#include <libff/algebra/curves/mnt/mnt6/mnt6_g1.hpp>
15#include <libff/algebra/curves/mnt/mnt6/mnt6_g2.hpp>
16#include <libff/algebra/curves/mnt/mnt6/mnt6_init.hpp>
17
18namespace libff {
19
20//bigint<mnt6_r_limbs> mnt6_modulus_r = mnt46_modulus_B;
21//bigint<mnt6_q_limbs> mnt6_modulus_q = mnt46_modulus_A;
22
23mnt6_Fq3 mnt6_twist;
24mnt6_Fq3 mnt6_twist_coeff_a;
25mnt6_Fq3 mnt6_twist_coeff_b;
26mnt6_Fq mnt6_twist_mul_by_a_c0;
27mnt6_Fq mnt6_twist_mul_by_a_c1;
28mnt6_Fq mnt6_twist_mul_by_a_c2;
29mnt6_Fq mnt6_twist_mul_by_b_c0;
30mnt6_Fq mnt6_twist_mul_by_b_c1;
31mnt6_Fq mnt6_twist_mul_by_b_c2;
32mnt6_Fq mnt6_twist_mul_by_q_X;
33mnt6_Fq mnt6_twist_mul_by_q_Y;
34
35bigint<mnt6_q_limbs> mnt6_ate_loop_count;
36bool mnt6_ate_is_loop_count_neg;
37bigint<6*mnt6_q_limbs> mnt6_final_exponent;
38bigint<mnt6_q_limbs> mnt6_final_exponent_last_chunk_abs_of_w0;
39bool mnt6_final_exponent_last_chunk_is_w0_neg;
40bigint<mnt6_q_limbs> mnt6_final_exponent_last_chunk_w1;
41
42void init_mnt6_params()
43{
44 typedef bigint<mnt6_r_limbs> bigint_r;
45 typedef bigint<mnt6_q_limbs> bigint_q;
46
47 assert(sizeof(mp_limb_t) == 8 || sizeof(mp_limb_t) == 4); // Montgomery assumes this
48
49 /* parameters for scalar field Fr */
50 mnt6_modulus_r = bigint_r("475922286169261325753349249653048451545124879242694725395555128576210262817955800483758081");
51 assert(mnt6_Fr::modulus_is_valid());
52 if (sizeof(mp_limb_t) == 8)
53 {
54 mnt6_Fr::Rsquared = bigint_r("273000478523237720910981655601160860640083126627235719712980612296263966512828033847775776");
55 mnt6_Fr::Rcubed = bigint_r("427298980065529822574935274648041073124704261331681436071990730954930769758106792920349077");
56 mnt6_Fr::inv = 0xb071a1b67165ffff;
57 }
58 if (sizeof(mp_limb_t) == 4)
59 {
60 mnt6_Fr::Rsquared = bigint_r("273000478523237720910981655601160860640083126627235719712980612296263966512828033847775776");
61 mnt6_Fr::Rcubed = bigint_r("427298980065529822574935274648041073124704261331681436071990730954930769758106792920349077");
62 mnt6_Fr::inv = 0x7165ffff;
63 }
64 mnt6_Fr::num_bits = 298;
65 mnt6_Fr::euler = bigint_r("237961143084630662876674624826524225772562439621347362697777564288105131408977900241879040");
66 mnt6_Fr::s = 17;
67 mnt6_Fr::t = bigint_r("3630998887399759870554727551674258816109656366292531779446068791017229177993437198515");
68 mnt6_Fr::t_minus_1_over_2 = bigint_r("1815499443699879935277363775837129408054828183146265889723034395508614588996718599257");
69 mnt6_Fr::multiplicative_generator = mnt6_Fr("17");
70 mnt6_Fr::root_of_unity = mnt6_Fr("264706250571800080758069302369654305530125675521263976034054878017580902343339784464690243");
71 mnt6_Fr::nqr = mnt6_Fr("17");
72 mnt6_Fr::nqr_to_t = mnt6_Fr("264706250571800080758069302369654305530125675521263976034054878017580902343339784464690243");
73
74 /* parameters for base field Fq */
75 mnt6_modulus_q = bigint_q("475922286169261325753349249653048451545124878552823515553267735739164647307408490559963137");
76 assert(mnt6_Fq::modulus_is_valid());
77 if (sizeof(mp_limb_t) == 8)
78 {
79 mnt6_Fq::Rsquared = bigint_q("163983144722506446826715124368972380525894397127205577781234305496325861831001705438796139");
80 mnt6_Fq::Rcubed = bigint_q("207236281459091063710247635236340312578688659363066707916716212805695955118593239854980171");
81 mnt6_Fq::inv = 0xbb4334a3ffffffff;
82 }
83 if (sizeof(mp_limb_t) == 4)
84 {
85 mnt6_Fq::Rsquared = bigint_q("163983144722506446826715124368972380525894397127205577781234305496325861831001705438796139");
86 mnt6_Fq::Rcubed = bigint_q("207236281459091063710247635236340312578688659363066707916716212805695955118593239854980171");
87 mnt6_Fq::inv = 0xffffffff;
88 }
89 mnt6_Fq::num_bits = 298;
90 mnt6_Fq::euler = bigint_q("237961143084630662876674624826524225772562439276411757776633867869582323653704245279981568");
91 mnt6_Fq::s = 34;
92 mnt6_Fq::t = bigint_q("27702323054502562488973446286577291993024111641153199339359284829066871159442729");
93 mnt6_Fq::t_minus_1_over_2 = bigint_q("13851161527251281244486723143288645996512055820576599669679642414533435579721364");
94 mnt6_Fq::multiplicative_generator = mnt6_Fq("10");
95 mnt6_Fq::root_of_unity = mnt6_Fq("120638817826913173458768829485690099845377008030891618010109772937363554409782252579816313");
96 mnt6_Fq::nqr = mnt6_Fq("5");
97 mnt6_Fq::nqr_to_t = mnt6_Fq("406220604243090401056429458730298145937262552508985450684842547562990900634752279902740880");
98
99 /* parameters for twist field Fq3 */
100 mnt6_Fq3::euler = bigint<3*mnt6_q_limbs>("53898680178554951715397245154796036139463891589001478629193136369124915637741423690184935056189295242736833704290747216410090671804540908400210778934462129625646263095398323485795557551284190224166851571615834194321908328559167529729507439069424158411618728014749106176");
101 mnt6_Fq3::s = 34;
102 mnt6_Fq3::t = bigint<3*mnt6_q_limbs>("6274632199033507112809136178669989590936327770934612330653836993631547740397674926811006741620285348354004521888069251599964996777072188956687550402067383940523288107407084140669968625447269322370045302856694231080113482726640944570478452261237446033817102203");
103 mnt6_Fq3::t_minus_1_over_2 = bigint<3*mnt6_q_limbs>("3137316099516753556404568089334994795468163885467306165326918496815773870198837463405503370810142674177002260944034625799982498388536094478343775201033691970261644053703542070334984312723634661185022651428347115540056741363320472285239226130618723016908551101");
104 mnt6_Fq3::non_residue = mnt6_Fq("5");
105 mnt6_Fq3::nqr = mnt6_Fq3(mnt6_Fq("5"),mnt6_Fq("0"),mnt6_Fq("0"));
106 mnt6_Fq3::nqr_to_t = mnt6_Fq3(mnt6_Fq("154361449678783505076984156275977937654331103361174469632346230549735979552469642799720052"),mnt6_Fq("0"),mnt6_Fq("0"));
107 mnt6_Fq3::Frobenius_coeffs_c1[0] = mnt6_Fq("1");
108 mnt6_Fq3::Frobenius_coeffs_c1[1] = mnt6_Fq("471738898967521029133040851318449165997304108729558973770077319830005517129946578866686956");
109 mnt6_Fq3::Frobenius_coeffs_c1[2] = mnt6_Fq("4183387201740296620308398334599285547820769823264541783190415909159130177461911693276180");
110 mnt6_Fq3::Frobenius_coeffs_c2[0] = mnt6_Fq("1");
111 mnt6_Fq3::Frobenius_coeffs_c2[1] = mnt6_Fq("4183387201740296620308398334599285547820769823264541783190415909159130177461911693276180");
112 mnt6_Fq3::Frobenius_coeffs_c2[2] = mnt6_Fq("471738898967521029133040851318449165997304108729558973770077319830005517129946578866686956");
113
114 /* parameters for Fq6 */
115 mnt6_Fq6::non_residue = mnt6_Fq("5");
116 mnt6_Fq6::Frobenius_coeffs_c1[0] = mnt6_Fq("1");
117 mnt6_Fq6::Frobenius_coeffs_c1[1] = mnt6_Fq("471738898967521029133040851318449165997304108729558973770077319830005517129946578866686957");
118 mnt6_Fq6::Frobenius_coeffs_c1[2] = mnt6_Fq("471738898967521029133040851318449165997304108729558973770077319830005517129946578866686956");
119 mnt6_Fq6::Frobenius_coeffs_c1[3] = mnt6_Fq("475922286169261325753349249653048451545124878552823515553267735739164647307408490559963136");
120 mnt6_Fq6::Frobenius_coeffs_c1[4] = mnt6_Fq("4183387201740296620308398334599285547820769823264541783190415909159130177461911693276180");
121 mnt6_Fq6::Frobenius_coeffs_c1[5] = mnt6_Fq("4183387201740296620308398334599285547820769823264541783190415909159130177461911693276181");
122 mnt6_Fq6::my_Fp2::non_residue = mnt6_Fq3::non_residue;
123
124 /* choice of short Weierstrass curve and its twist */
125 mnt6_G1::coeff_a = mnt6_Fq("11");
126 mnt6_G1::coeff_b = mnt6_Fq("106700080510851735677967319632585352256454251201367587890185989362936000262606668469523074");
127 mnt6_twist = mnt6_Fq3(mnt6_Fq::zero(), mnt6_Fq::one(), mnt6_Fq::zero());
128 mnt6_twist_coeff_a = mnt6_Fq3(mnt6_Fq::zero(), mnt6_Fq::zero(),
129 mnt6_G1::coeff_a);
130 mnt6_twist_coeff_b = mnt6_Fq3(mnt6_G1::coeff_b * mnt6_Fq3::non_residue,
131 mnt6_Fq::zero(), mnt6_Fq::zero());
132 mnt6_G2::twist = mnt6_twist;
133 mnt6_G2::coeff_a = mnt6_twist_coeff_a;
134 mnt6_G2::coeff_b = mnt6_twist_coeff_b;
135 mnt6_twist_mul_by_a_c0 = mnt6_G1::coeff_a * mnt6_Fq3::non_residue;
136 mnt6_twist_mul_by_a_c1 = mnt6_G1::coeff_a * mnt6_Fq3::non_residue;
137 mnt6_twist_mul_by_a_c2 = mnt6_G1::coeff_a;
138 mnt6_twist_mul_by_b_c0 = mnt6_G1::coeff_b * mnt6_Fq3::non_residue;
139 mnt6_twist_mul_by_b_c1 = mnt6_G1::coeff_b * mnt6_Fq3::non_residue;
140 mnt6_twist_mul_by_b_c2 = mnt6_G1::coeff_b * mnt6_Fq3::non_residue;
141 mnt6_twist_mul_by_q_X = mnt6_Fq("4183387201740296620308398334599285547820769823264541783190415909159130177461911693276180");
142 mnt6_twist_mul_by_q_Y = mnt6_Fq("475922286169261325753349249653048451545124878552823515553267735739164647307408490559963136");
143
144 /* choice of group G1 */
145 mnt6_G1::G1_zero = mnt6_G1(mnt6_Fq::zero(),
146 mnt6_Fq::one(),
147 mnt6_Fq::zero());
148 mnt6_G1::G1_one = mnt6_G1(mnt6_Fq("336685752883082228109289846353937104185698209371404178342968838739115829740084426881123453"),
149 mnt6_Fq("402596290139780989709332707716568920777622032073762749862342374583908837063963736098549800"),
150 mnt6_Fq::one());
151 mnt6_G1::initialized = true;
152
153 mnt6_G1::wnaf_window_table.resize(0);
154 mnt6_G1::wnaf_window_table.push_back(11);
155 mnt6_G1::wnaf_window_table.push_back(24);
156 mnt6_G1::wnaf_window_table.push_back(60);
157 mnt6_G1::wnaf_window_table.push_back(127);
158
159 mnt6_G1::fixed_base_exp_window_table.resize(0);
160 // window 1 is unbeaten in [-inf, 3.96]
161 mnt6_G1::fixed_base_exp_window_table.push_back(1);
162 // window 2 is unbeaten in [3.96, 9.67]
163 mnt6_G1::fixed_base_exp_window_table.push_back(4);
164 // window 3 is unbeaten in [9.67, 25.13]
165 mnt6_G1::fixed_base_exp_window_table.push_back(10);
166 // window 4 is unbeaten in [25.13, 60.31]
167 mnt6_G1::fixed_base_exp_window_table.push_back(25);
168 // window 5 is unbeaten in [60.31, 146.07]
169 mnt6_G1::fixed_base_exp_window_table.push_back(60);
170 // window 6 is unbeaten in [146.07, 350.09]
171 mnt6_G1::fixed_base_exp_window_table.push_back(146);
172 // window 7 is unbeaten in [350.09, 844.54]
173 mnt6_G1::fixed_base_exp_window_table.push_back(350);
174 // window 8 is unbeaten in [844.54, 1839.64]
175 mnt6_G1::fixed_base_exp_window_table.push_back(845);
176 // window 9 is unbeaten in [1839.64, 3904.26]
177 mnt6_G1::fixed_base_exp_window_table.push_back(1840);
178 // window 10 is unbeaten in [3904.26, 11309.42]
179 mnt6_G1::fixed_base_exp_window_table.push_back(3904);
180 // window 11 is unbeaten in [11309.42, 24015.57]
181 mnt6_G1::fixed_base_exp_window_table.push_back(11309);
182 // window 12 is unbeaten in [24015.57, 72288.57]
183 mnt6_G1::fixed_base_exp_window_table.push_back(24016);
184 // window 13 is unbeaten in [72288.57, 138413.22]
185 mnt6_G1::fixed_base_exp_window_table.push_back(72289);
186 // window 14 is unbeaten in [138413.22, 156390.30]
187 mnt6_G1::fixed_base_exp_window_table.push_back(138413);
188 // window 15 is unbeaten in [156390.30, 562560.50]
189 mnt6_G1::fixed_base_exp_window_table.push_back(156390);
190 // window 16 is unbeaten in [562560.50, 1036742.02]
191 mnt6_G1::fixed_base_exp_window_table.push_back(562560);
192 // window 17 is unbeaten in [1036742.02, 2053818.86]
193 mnt6_G1::fixed_base_exp_window_table.push_back(1036742);
194 // window 18 is unbeaten in [2053818.86, 4370223.95]
195 mnt6_G1::fixed_base_exp_window_table.push_back(2053819);
196 // window 19 is unbeaten in [4370223.95, 8215703.81]
197 mnt6_G1::fixed_base_exp_window_table.push_back(4370224);
198 // window 20 is unbeaten in [8215703.81, 42682375.43]
199 mnt6_G1::fixed_base_exp_window_table.push_back(8215704);
200 // window 21 is never the best
201 mnt6_G1::fixed_base_exp_window_table.push_back(0);
202 // window 22 is unbeaten in [42682375.43, inf]
203 mnt6_G1::fixed_base_exp_window_table.push_back(42682375);
204
205 /* choice of group G2 */
206 mnt6_G2::G2_zero = mnt6_G2(mnt6_Fq3::zero(),
207 mnt6_Fq3::one(),
208 mnt6_Fq3::zero());
209 mnt6_G2::G2_one = mnt6_G2(mnt6_Fq3(mnt6_Fq("421456435772811846256826561593908322288509115489119907560382401870203318738334702321297427"),
210 mnt6_Fq("103072927438548502463527009961344915021167584706439945404959058962657261178393635706405114"),
211 mnt6_Fq("143029172143731852627002926324735183809768363301149009204849580478324784395590388826052558")),
212 mnt6_Fq3(mnt6_Fq("464673596668689463130099227575639512541218133445388869383893594087634649237515554342751377"),
213 mnt6_Fq("100642907501977375184575075967118071807821117960152743335603284583254620685343989304941678"),
214 mnt6_Fq("123019855502969896026940545715841181300275180157288044663051565390506010149881373807142903")),
215 mnt6_Fq3::one());
216 mnt6_G2::initialized = true;
217
218 mnt6_G2::wnaf_window_table.resize(0);
219 mnt6_G2::wnaf_window_table.push_back(5);
220 mnt6_G2::wnaf_window_table.push_back(15);
221 mnt6_G2::wnaf_window_table.push_back(39);
222 mnt6_G2::wnaf_window_table.push_back(109);
223
224 mnt6_G2::fixed_base_exp_window_table.resize(0);
225 // window 1 is unbeaten in [-inf, 4.25]
226 mnt6_G2::fixed_base_exp_window_table.push_back(1);
227 // window 2 is unbeaten in [4.25, 10.22]
228 mnt6_G2::fixed_base_exp_window_table.push_back(4);
229 // window 3 is unbeaten in [10.22, 24.85]
230 mnt6_G2::fixed_base_exp_window_table.push_back(10);
231 // window 4 is unbeaten in [24.85, 60.06]
232 mnt6_G2::fixed_base_exp_window_table.push_back(25);
233 // window 5 is unbeaten in [60.06, 143.61]
234 mnt6_G2::fixed_base_exp_window_table.push_back(60);
235 // window 6 is unbeaten in [143.61, 345.66]
236 mnt6_G2::fixed_base_exp_window_table.push_back(144);
237 // window 7 is unbeaten in [345.66, 818.56]
238 mnt6_G2::fixed_base_exp_window_table.push_back(346);
239 // window 8 is unbeaten in [818.56, 1782.06]
240 mnt6_G2::fixed_base_exp_window_table.push_back(819);
241 // window 9 is unbeaten in [1782.06, 4002.45]
242 mnt6_G2::fixed_base_exp_window_table.push_back(1782);
243 // window 10 is unbeaten in [4002.45, 10870.18]
244 mnt6_G2::fixed_base_exp_window_table.push_back(4002);
245 // window 11 is unbeaten in [10870.18, 18022.51]
246 mnt6_G2::fixed_base_exp_window_table.push_back(10870);
247 // window 12 is unbeaten in [18022.51, 43160.74]
248 mnt6_G2::fixed_base_exp_window_table.push_back(18023);
249 // window 13 is unbeaten in [43160.74, 149743.32]
250 mnt6_G2::fixed_base_exp_window_table.push_back(43161);
251 // window 14 is never the best
252 mnt6_G2::fixed_base_exp_window_table.push_back(0);
253 // window 15 is unbeaten in [149743.32, 551844.13]
254 mnt6_G2::fixed_base_exp_window_table.push_back(149743);
255 // window 16 is unbeaten in [551844.13, 1041827.91]
256 mnt6_G2::fixed_base_exp_window_table.push_back(551844);
257 // window 17 is unbeaten in [1041827.91, 1977371.53]
258 mnt6_G2::fixed_base_exp_window_table.push_back(1041828);
259 // window 18 is unbeaten in [1977371.53, 3703619.51]
260 mnt6_G2::fixed_base_exp_window_table.push_back(1977372);
261 // window 19 is unbeaten in [3703619.51, 7057236.87]
262 mnt6_G2::fixed_base_exp_window_table.push_back(3703620);
263 // window 20 is unbeaten in [7057236.87, 38554491.67]
264 mnt6_G2::fixed_base_exp_window_table.push_back(7057237);
265 // window 21 is never the best
266 mnt6_G2::fixed_base_exp_window_table.push_back(0);
267 // window 22 is unbeaten in [38554491.67, inf]
268 mnt6_G2::fixed_base_exp_window_table.push_back(38554492);
269
270 /* pairing parameters */
271 mnt6_ate_loop_count = bigint_q("689871209842287392837045615510547309923794944");
272 mnt6_ate_is_loop_count_neg = true;
273 mnt6_final_exponent = bigint<6*mnt6_q_limbs>("24416320138090509697890595414313438768353977489862543935904010715439066975957855922532159264213056712140358746422742237328406558352706591021642230618060502855451264045397444793186876199015256781648746888625527075466063075011307800862173764236311342105211681121426931616843635215852236649271569251468773714424208521977615548771268520882870120900360322044218806712027729351845307690474985502587527753847200130592058098363641559341826790559426614919168");
274 mnt6_final_exponent_last_chunk_abs_of_w0 = bigint_q("689871209842287392837045615510547309923794944");
275 mnt6_final_exponent_last_chunk_is_w0_neg = true;
276 mnt6_final_exponent_last_chunk_w1 = bigint_q("1");
277}
278
279} // libff
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::nqr_to_t
static Fp3_model< n, modulus > nqr_to_t
Definition fp3.hpp:46
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::t
static bigint< 3 *n > t
Definition fp3.hpp:42
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::Frobenius_coeffs_c1
static my_Fp Frobenius_coeffs_c1[3]
Definition fp3.hpp:47
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::one
static Fp3_model< n, modulus > one()
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::s
static size_t s
Definition fp3.hpp:41
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::t_minus_1_over_2
static bigint< 3 *n > t_minus_1_over_2
Definition fp3.hpp:43
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::Frobenius_coeffs_c2
static my_Fp Frobenius_coeffs_c2[3]
Definition fp3.hpp:48
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::zero
static Fp3_model< n, modulus > zero()
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::euler
static bigint< 3 *n > euler
Definition fp3.hpp:40
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::nqr
static Fp3_model< n, modulus > nqr
Definition fp3.hpp:45
libff::Fp3_model< mnt6_q_limbs, mnt6_modulus_q >::non_residue
static my_Fp non_residue
Definition fp3.hpp:44
libff::Fp6_2over3_model::non_residue
static my_Fp non_residue
Definition fp6_2over3.hpp:43
libff::Fp6_2over3_model::Frobenius_coeffs_c1
static my_Fp Frobenius_coeffs_c1[6]
Definition fp6_2over3.hpp:44
libff::Fp_model< mnt6_q_limbs, mnt6_modulus_q >
libff::Fp_model::euler
static bigint< n > euler
Definition fp.hpp:54
libff::Fp_model::multiplicative_generator
static Fp_model< n, modulus > multiplicative_generator
Definition fp.hpp:60
libff::Fp_model< mnt6_q_limbs, mnt6_modulus_q >::zero
static Fp_model< n, modulus > zero()
libff::Fp_model< mnt6_q_limbs, mnt6_modulus_q >::one
static Fp_model< n, modulus > one()
libff::Fp_model::s
static size_t s
Definition fp.hpp:55
libff::Fp_model::t
static bigint< n > t
Definition fp.hpp:56
libff::Fp_model::t_minus_1_over_2
static bigint< n > t_minus_1_over_2
Definition fp.hpp:57
libff::Fp_model::root_of_unity
static Fp_model< n, modulus > root_of_unity
Definition fp.hpp:61
libff::Fp_model::Rcubed
static bigint< n > Rcubed
Definition fp.hpp:64
libff::Fp_model::modulus_is_valid
static bool modulus_is_valid()
Definition fp.hpp:66
libff::Fp_model::inv
static mp_limb_t inv
Definition fp.hpp:62
libff::Fp_model::nqr_to_t
static Fp_model< n, modulus > nqr_to_t
Definition fp.hpp:59
libff::Fp_model::nqr
static Fp_model< n, modulus > nqr
Definition fp.hpp:58
libff::Fp_model::Rsquared
static bigint< n > Rsquared
Definition fp.hpp:63
libff::Fp_model::num_bits
static size_t num_bits
Definition fp.hpp:53
libff::mnt6_G1
Definition mnt6_g1.hpp:26
libff::mnt6_G1::fixed_base_exp_window_table
static std::vector< size_t > fixed_base_exp_window_table
Definition mnt6_g1.hpp:33
libff::mnt6_G1::coeff_a
static mnt6_Fq coeff_a
Definition mnt6_g1.hpp:37
libff::mnt6_G1::coeff_b
static mnt6_Fq coeff_b
Definition mnt6_g1.hpp:38
libff::mnt6_G1::initialized
static bool initialized
Definition mnt6_g1.hpp:36
libff::mnt6_G1::G1_zero
static mnt6_G1 G1_zero
Definition mnt6_g1.hpp:34
libff::mnt6_G1::G1_one
static mnt6_G1 G1_one
Definition mnt6_g1.hpp:35
libff::mnt6_G1::wnaf_window_table
static std::vector< size_t > wnaf_window_table
Definition mnt6_g1.hpp:32
libff::mnt6_G2
Definition mnt6_g2.hpp:26
libff::mnt6_G2::wnaf_window_table
static std::vector< size_t > wnaf_window_table
Definition mnt6_g2.hpp:32
libff::mnt6_G2::initialized
static bool initialized
Definition mnt6_g2.hpp:36
libff::mnt6_G2::G2_one
static mnt6_G2 G2_one
Definition mnt6_g2.hpp:35
libff::mnt6_G2::twist
static mnt6_Fq3 twist
Definition mnt6_g2.hpp:37
libff::mnt6_G2::G2_zero
static mnt6_G2 G2_zero
Definition mnt6_g2.hpp:34
libff::mnt6_G2::coeff_a
static mnt6_Fq3 coeff_a
Definition mnt6_g2.hpp:38
libff::mnt6_G2::coeff_b
static mnt6_Fq3 coeff_b
Definition mnt6_g2.hpp:39
libff::mnt6_G2::fixed_base_exp_window_table
static std::vector< size_t > fixed_base_exp_window_table
Definition mnt6_g2.hpp:33
mnt6_g1.hpp
mnt6_g2.hpp
mnt6_init.hpp
libff::mnt6_modulus_r
bigint< mnt6_r_limbs > mnt6_modulus_r
libff::mnt6_final_exponent
bigint< 6 *mnt6_q_limbs > mnt6_final_exponent
Definition mnt6_init.cpp:37
libff::mnt6_final_exponent_last_chunk_abs_of_w0
bigint< mnt6_q_limbs > mnt6_final_exponent_last_chunk_abs_of_w0
Definition mnt6_init.cpp:38
libff::init_mnt6_params
void init_mnt6_params()
Definition mnt6_init.cpp:42
libff::mnt6_modulus_q
bigint< mnt6_q_limbs > mnt6_modulus_q
libff::mnt6_final_exponent_last_chunk_is_w0_neg
bool mnt6_final_exponent_last_chunk_is_w0_neg
Definition mnt6_init.cpp:39
libff::mnt6_twist_mul_by_a_c0
mnt6_Fq mnt6_twist_mul_by_a_c0
Definition mnt6_init.cpp:26
libff::mnt6_final_exponent_last_chunk_w1
bigint< mnt6_q_limbs > mnt6_final_exponent_last_chunk_w1
Definition mnt6_init.cpp:40
libff::mnt6_twist_mul_by_a_c2
mnt6_Fq mnt6_twist_mul_by_a_c2
Definition mnt6_init.cpp:28
libff::mnt6_Fr
Fp_model< mnt6_r_limbs, mnt6_modulus_r > mnt6_Fr
Definition mnt6_init.hpp:35
libff::mnt6_twist_mul_by_b_c2
mnt6_Fq mnt6_twist_mul_by_b_c2
Definition mnt6_init.cpp:31
libff::mnt6_Fq
Fp_model< mnt6_q_limbs, mnt6_modulus_q > mnt6_Fq
Definition mnt6_init.hpp:36
libff::mnt6_twist
mnt6_Fq3 mnt6_twist
Definition mnt6_init.cpp:23
libff::mnt6_twist_mul_by_b_c1
mnt6_Fq mnt6_twist_mul_by_b_c1
Definition mnt6_init.cpp:30
libff::mnt6_ate_is_loop_count_neg
bool mnt6_ate_is_loop_count_neg
Definition mnt6_init.cpp:36
libff::mnt6_twist_coeff_a
mnt6_Fq3 mnt6_twist_coeff_a
Definition mnt6_init.cpp:24
libff::mnt6_twist_mul_by_q_Y
mnt6_Fq mnt6_twist_mul_by_q_Y
Definition mnt6_init.cpp:33
libff::mnt6_twist_mul_by_b_c0
mnt6_Fq mnt6_twist_mul_by_b_c0
Definition mnt6_init.cpp:29
libff::mnt6_twist_mul_by_q_X
mnt6_Fq mnt6_twist_mul_by_q_X
Definition mnt6_init.cpp:32
libff::mnt6_Fq3
Fp3_model< mnt6_q_limbs, mnt6_modulus_q > mnt6_Fq3
Definition mnt6_init.hpp:37
libff::mnt6_twist_coeff_b
mnt6_Fq3 mnt6_twist_coeff_b
Definition mnt6_init.cpp:25
libff::mnt6_ate_loop_count
bigint< mnt6_q_limbs > mnt6_ate_loop_count
Definition mnt6_init.cpp:35
libff::mnt6_twist_mul_by_a_c1
mnt6_Fq mnt6_twist_mul_by_a_c1
Definition mnt6_init.cpp:27