arnaucube
/
cryptofun
mirror of https://github.com/arnaucube/cryptofun.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13 Commits
1 Branch
0 Tags
100 KiB
Tree: 3dfb1e5875
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3dfb1e5875'
${ noResults }
cryptofun/bn128/README.md

145 lines
4.1 KiB
Raw Normal View History

docs updated
5 years ago
  1. ## Bn128
  2. **[not finished]**
  4. This is implemented followng the implementations and info from:
  5. - https://github.com/zcash/zcash/tree/master/src/snark
  6. - https://github.com/iden3/snarkjs
  7. - https://github.com/ethereum/py_ecc/tree/master/py_ecc/bn128
  8. - `Multiplication and Squaring on Pairing-Friendly
  9. Fields`, Augusto Jun Devegili, Colm Ó hÉigeartaigh, Michael Scott, and Ricardo Dahab https://pdfs.semanticscholar.org/3e01/de88d7428076b2547b60072088507d881bf1.pdf
  10. - `Optimal Pairings`, Frederik Vercauteren https://www.cosic.esat.kuleuven.be/bcrypt/optimal.pdf
  11. - `Double-and-Add with Relative Jacobian
  12. Coordinates`, Björn Fay https://eprint.iacr.org/2014/1014.pdf
  13. - `Fast and Regular Algorithms for Scalar Multiplication
  14. over Elliptic Curves`, Matthieu Rivain https://eprint.iacr.org/2011/338.pdf
  16. - [x] Fq, Fq2, Fq6, Fq12 operations
  17. - [x] G1, G2 operations
  20. #### Usage
  21. First let's define three basic functions to convert integer compositions to big integer compositions:
  22. ```go
  23. func iToBig(a int) *big.Int {
  24. return big.NewInt(int64(a))
  25. }
  27. func iiToBig(a, b int) [2]*big.Int {
  28. return [2]*big.Int{iToBig(a), iToBig(b)}
  29. }
  31. func iiiToBig(a, b int) [2]*big.Int {
  32. return [2]*big.Int{iToBig(a), iToBig(b)}
  33. }
  34. ```
  36. - Finite Fields (1, 2, 6, 12) operations
  37. ```go
  38. // new finite field of order 1
  39. fq1 := NewFq(iToBig(7))
  41. // basic operations of finite field 1
  42. res := fq1.Add(iToBig(4), iToBig(4))
  43. res = fq1.Double(iToBig(5))
  44. res = fq1.Sub(iToBig(5), iToBig(7))
  45. res = fq1.Neg(iToBig(5))
  46. res = fq1.Mul(iToBig(5), iToBig(11))
  47. res = fq1.Inverse(iToBig(4))
  48. res = fq1.Square(iToBig(5))
  50. // new finite field of order 2
  51. nonResidueFq2str := "-1" // i / Beta
  52. nonResidueFq2, ok := new(big.Int).SetString(nonResidueFq2str, 10)
  53. fq2 := Fq2{fq1, nonResidueFq2}
  54. nonResidueFq6 := iiToBig(9, 1)
  56. // basic operations of finite field of order 2
  57. res := fq2.Add(iiToBig(4, 4), iiToBig(3, 4))
  58. res = fq2.Double(iiToBig(5, 3))
  59. res = fq2.Sub(iiToBig(5, 3), iiToBig(7, 2))
  60. res = fq2.Neg(iiToBig(4, 4))
  61. res = fq2.Mul(iiToBig(4, 4), iiToBig(3, 4))
  62. res = fq2.Inverse(iiToBig(4, 4))
  63. res = fq2.Div(iiToBig(4, 4), iiToBig(3, 4))
  64. res = fq2.Square(iiToBig(4, 4))
  67. // new finite field of order 6
  68. nonResidueFq6 := iiToBig(9, 1) // TODO
  69. fq6 := Fq6{fq2, nonResidueFq6}
  71. // define two new values of Finite Field 6, in order to be able to perform the operations
  72. a := [3][2]*big.Int{
  73. iiToBig(1, 2),
  74. iiToBig(3, 4),
  75. iiToBig(5, 6)}
  76. b := [3][2]*big.Int{
  77. iiToBig(12, 11),
  78. iiToBig(10, 9),
  79. iiToBig(8, 7)}
  81. // basic operations of finite field order 6
  82. res := fq6.Add(a, b)
  83. res = fq6.Sub(a, b)
  84. res = fq6.Mul(a, b)
  85. divRes := fq6.Div(mulRes, b)
  88. // new finite field of order 12
  89. q, ok := new(big.Int).SetString("21888242871839275222246405745257275088696311157297823662689037894645226208583", 10) // i
  90. if !ok {
  91. fmt.Println("error parsing string to big integer")
  92. }
  94. fq1 := NewFq(q)
  95. nonResidueFq2, ok := new(big.Int).SetString("21888242871839275222246405745257275088696311157297823662689037894645226208582", 10) // i
  96. assert.True(t, ok)
  97. nonResidueFq6 := iiToBig(9, 1)
  99. fq2 := Fq2{fq1, nonResidueFq2}
  100. fq6 := Fq6{fq2, nonResidueFq6}
  101. fq12 := Fq12{fq6, fq2, nonResidueFq6}
  103. ```
  105. - G1 operations
  106. ```go
  107. bn128, err := NewBn128()
  108. assert.Nil(t, err)
  110. r1 := big.NewInt(int64(33))
  111. r2 := big.NewInt(int64(44))
  113. gr1 := bn128.G1.MulScalar(bn128.G1.G, bn128.Fq1.Copy(r1))
  114. gr2 := bn128.G1.MulScalar(bn128.G1.G, bn128.Fq1.Copy(r2))
  116. grsum1 := bn128.G1.Add(gr1, gr2)
  117. r1r2 := bn128.Fq1.Add(r1, r2)
  118. grsum2 := bn128.G1.MulScalar(bn128.G1.G, r1r2)
  120. a := bn128.G1.Affine(grsum1)
  121. b := bn128.G1.Affine(grsum2)
  122. assert.Equal(t, a, b)
  123. assert.Equal(t, "0x2f978c0ab89ebaa576866706b14787f360c4d6c3869efe5a72f7c3651a72ff00", utils.BytesToHex(a[0].Bytes()))
  124. assert.Equal(t, "0x12e4ba7f0edca8b4fa668fe153aebd908d322dc26ad964d4cd314795844b62b2", utils.BytesToHex(a[1].Bytes()))
  125. ```
  127. - G2 operations
  128. ```go
  129. bn128, err := NewBn128()
  130. assert.Nil(t, err)
  132. r1 := big.NewInt(int64(33))
  133. r2 := big.NewInt(int64(44))
  135. gr1 := bn128.G2.MulScalar(bn128.G2.G, bn128.Fq1.Copy(r1))
  136. gr2 := bn128.G2.MulScalar(bn128.G2.G, bn128.Fq1.Copy(r2))
  138. grsum1 := bn128.G2.Add(gr1, gr2)
  139. r1r2 := bn128.Fq1.Add(r1, r2)
  140. grsum2 := bn128.G2.MulScalar(bn128.G2.G, r1r2)
  142. a := bn128.G2.Affine(grsum1)
  143. b := bn128.G2.Affine(grsum2)
  144. assert.Equal(t, a, b)
  145. ```