* Rework bw6-761 to bw6-767
use bls12-381 instead of 377 for test imports
fix the inline comments with correct name and params
Set the right base field
Equation for base curve is y2 = x3 + 1
fill in pairing params
adapt sage scripts with correct moduli
calculate the correct cubic non residue
correct the parameter B in the curve equation
remove the specialized method for mult by nonresidue
nonresidue is two, so default will be doubling
calculate more correct parameters for fq3
`TRACE_MINUS_ONE_DIV_TWO` and `QUADRATIC_NONRESIDUE_TO_T`
compute the right fq3 & fp6 frobenious coefficients
calculate the cofactor for g1
use the g1 generator from gnark's fork
use the right g2 equation
g2 cofactor is slightly smaller than g1 cofactor
get the g2 generators from gnark's fork
update g1 and g2 curve info in the comments
fill in `COFACTOR_INV` value for g1
fill in `COFACTOR_INV` value for g2
* update module description
author information
2-adicity of the scalar field
* update changelog
* remove trailing comma
* remove todo
* 2nd loop count is x^3 - x^2 - x
* Revert "2nd loop count is x^3 - x^2 - x"
This reverts commit 2b323db3ba.
* fix comment regarding non-residue
* first loop count should be X
* 1. Generic BW6 params added to BW6-761
2. Curve specific hard part of the final exp moved from algebra
* 1. Generic BW6 params added to BW6-767
2. Miller loop params changed to the "unoptimized" version
* cargo fmt
* changelog updated
* X_MINUS_1_DIV_3 added to BW6Config
* imports fixed
---------
Co-authored-by: mmagician <marcin.gorny.94@protonmail.com>
* include the coefficients of bls12-377 G1 and G2 isogenies for wb hash2curve
* replacing the ark-ec dependency to w3f/arkworks-algebra
* added parameters for isogenous curve to bls12-377 g1 curve for swu map
* fix dependency inconsistency problem
* implement WBParams and its isogenous curve for BLS12-377 G1
* implement the SWUParameters for isogenous curve to BLS12-377 g2 curve.
* implement WBParams for BLS12-377 G2 curve
* replacing const generic arrays with const slice in g1 and g2 iso coefficients
* - Implement WB hash to curve for BLS12-381 G1
- Improvement to WB hash to curve code for BLS12-377
- Update sage code for generating isogeny coefficients for arkworks.
* Implement WB hash to curve for BLS12-381 G2
* - fix the bug with base order for field_new for Fq2
- fix the polynomial coeffcient order for bls12-381 g1 and g2 isogenies.
- fix the polynomial coeffcient order for bls12-377 g1.
377-g2 needs to be fixed still.
* fix bls12-377 wb hash to curve isogeny coeffcients
* fixed sage code for generating the isogeny coefficients
* use patch.crates-io hack to resolve dependancy issues on w3f fork
* Rename `Parameters` to `Config` for all fields
* Rename `field_new` to `MontFp`
* Rename `field_new` to `QuadExt` and `CubicExt`
* Refactor bls12_381 crate based on update-ff branch. Close#9
* adapt bls12 wb hashing to new changes in algebra
* update bls12-381 dependancies and g1, g2 definition to pass tests
* adapt bls12-377 hash to curve to algebar updates
* depend on upstream for pull request
* cargo fmt
* - move the isogeny finder script from sage to script folder
- delete auxiliary isogeny coeff file
* add unit tests for wb hashing to bls12-377 g1 and g2
* - Use IsogenyMap struct to specify WB Isogeny for bls12-381 and bls12-377
- Do not use auxiliary constants to define generators of g2_swu_iso curve.
- Update change log
* Bump the Algebra dependencies of bls12_381 and bls12_377 to 0.4.0-alpha.4 so they could use the IsogenyMap struct.
* Add h2c tests for BLS12-381 curve
* Drop alpha sub-version in dependancies because it takes the lastest sub version
* Parameters → Config for bls12-377/381 curves
* do cargo fmt
* do SwuIsoParameters → SwuIsoConfig for bls12-377/381
* Adapt to new macro
* Fix macro invocation
should be semicolon not comma
* curves master should use algebra/r1cs default branch
* Add h2c test invocation for bls12-377 curve
no actual test vectors yet
* add faster cofactor clearing and tests for g1
* add faster cofactor clearing and tests for g2
parameters of endomorphisms are wrong for now
* add test vectors for bls12-377
* add h_eff to g2 tests for correctness
test
* improve cofactor tests g2
* add a test for psi(psi(P)) == psi2(P)
* fix bls12-377 psi & psi2 computation parameters
* rename const to DOUBLE_P_POWER_ENDOMORPHISM_COEFF_0 and make private
* fix clippy warnings in changed code
* use the same zeta as test suites
* update code comments, make methods private
* update changelog
Co-authored-by: Pratyush Mishra <pratyushmishra@berkeley.edu>
Co-authored-by: mmagician <marcin.gorny.94@protonmail.com>
* add faster cofactor clearing and tests for g1
* add faster cofactor clearing and tests for g2
parameters of endomorphisms are wrong for now
* add h_eff to g2 tests for correctness
test
* improve cofactor tests g2
* add a test for psi(psi(P)) == psi2(P)
* fix bls12-377 psi & psi2 computation parameters
* rename const to DOUBLE_P_POWER_ENDOMORPHISM_COEFF_0 and make private
* fix clippy warnings in changed code
* remove bls12-381-specific in line comment
* update code comments, make methods private
* master should be patched with master
* update changelog
* Fixed benchmarking compile error
* Updated CHANGELOG
* patch `algebra-test-templates` due to breaking changes since the last release
Co-authored-by: Marcin Górny <marcin.gorny.94@protonmail.com>
swasilyev
Chris Sosnin
Hossein Moghaddas
Davide Galassi
Michele Orrù
mmagician
Ruben De Smet
drskalman
Pratyush Mishra
Weikeng Chen
kevaundray
Yuncong Hu
Michael Rosenberg