Clearmatics Libff  0.1
C++ library for Finite Fields and Elliptic Curves
alt_bn128_g2.cpp
Go to the documentation of this file.
1 
8 #include <libff/algebra/curves/alt_bn128/alt_bn128_g2.hpp>
9 
10 namespace libff
11 {
12 
13 static const uint8_t G2_ZERO_FLAG = 1 << 0;
14 static const uint8_t G2_Y_LSB_FLAG = 1 << 1;
15 
16 #ifdef PROFILE_OP_COUNTS
17 long long alt_bn128_G2::add_cnt = 0;
18 long long alt_bn128_G2::dbl_cnt = 0;
19 #endif
20 
21 std::vector<size_t> alt_bn128_G2::wnaf_window_table;
22 std::vector<size_t> alt_bn128_G2::fixed_base_exp_window_table;
23 alt_bn128_G2 alt_bn128_G2::G2_zero;
24 alt_bn128_G2 alt_bn128_G2::G2_one;
25 alt_bn128_Fq2 alt_bn128_G2::coeff_a;
26 alt_bn128_Fq2 alt_bn128_G2::coeff_b;
27 bigint<alt_bn128_G2::h_limbs> alt_bn128_G2::h;
28 
29 alt_bn128_G2::alt_bn128_G2()
30 {
31  this->X = G2_zero.X;
32  this->Y = G2_zero.Y;
33  this->Z = G2_zero.Z;
34 }
35 
36 alt_bn128_Fq2 alt_bn128_G2::mul_by_b(const alt_bn128_Fq2 &elt)
37 {
38  return alt_bn128_Fq2(
39  alt_bn128_twist_mul_by_b_c0 * elt.coeffs[0],
40  alt_bn128_twist_mul_by_b_c1 * elt.coeffs[1]);
41 }
42 
43 void alt_bn128_G2::print() const
44 {
45  if (this->is_zero()) {
46  printf("O\n");
47  } else {
48  alt_bn128_G2 copy(*this);
49  copy.to_affine_coordinates();
50  gmp_printf(
51  "(%Nd*z + %Nd , %Nd*z + %Nd)\n",
52  copy.X.coeffs[1].as_bigint().data,
53  alt_bn128_Fq::num_limbs,
54  copy.X.coeffs[0].as_bigint().data,
55  alt_bn128_Fq::num_limbs,
56  copy.Y.coeffs[1].as_bigint().data,
57  alt_bn128_Fq::num_limbs,
58  copy.Y.coeffs[0].as_bigint().data,
59  alt_bn128_Fq::num_limbs);
60  }
61 }
62 
63 void alt_bn128_G2::print_coordinates() const
64 {
65  if (this->is_zero()) {
66  printf("O\n");
67  } else {
68  gmp_printf(
69  "(%Nd*z + %Nd : %Nd*z + %Nd : %Nd*z + %Nd)\n",
70  this->X.coeffs[1].as_bigint().data,
71  alt_bn128_Fq::num_limbs,
72  this->X.coeffs[0].as_bigint().data,
73  alt_bn128_Fq::num_limbs,
74  this->Y.coeffs[1].as_bigint().data,
75  alt_bn128_Fq::num_limbs,
76  this->Y.coeffs[0].as_bigint().data,
77  alt_bn128_Fq::num_limbs,
78  this->Z.coeffs[1].as_bigint().data,
79  alt_bn128_Fq::num_limbs,
80  this->Z.coeffs[0].as_bigint().data,
81  alt_bn128_Fq::num_limbs);
82  }
83 }
84 
85 void alt_bn128_G2::to_affine_coordinates()
86 {
87  if (this->is_zero()) {
88  this->X = alt_bn128_Fq2::zero();
89  this->Y = alt_bn128_Fq2::one();
90  this->Z = alt_bn128_Fq2::zero();
91  } else {
92  const alt_bn128_Fq2 Z_inv = Z.inverse();
93  const alt_bn128_Fq2 Z2_inv = Z_inv.squared();
94  const alt_bn128_Fq2 Z3_inv = Z2_inv * Z_inv;
95  this->X = this->X * Z2_inv;
96  this->Y = this->Y * Z3_inv;
97  this->Z = alt_bn128_Fq2::one();
98  }
99 }
100 
101 void alt_bn128_G2::to_special() { this->to_affine_coordinates(); }
102 
103 bool alt_bn128_G2::is_special() const
104 {
105  return (this->is_zero() || this->Z == alt_bn128_Fq2::one());
106 }
107 
108 bool alt_bn128_G2::is_zero() const { return (this->Z.is_zero()); }
109 
110 bool alt_bn128_G2::operator==(const alt_bn128_G2 &other) const
111 {
112  if (this->is_zero()) {
113  return other.is_zero();
114  }
115 
116  if (other.is_zero()) {
117  return false;
118  }
119 
120  /* now neither is O */
121 
122  // using Jacobian coordinates so:
123  // (X1:Y1:Z1) = (X2:Y2:Z2)
124  // iff
125  // X1/Z1^2 == X2/Z2^2 and Y1/Z1^3 == Y2/Z2^3
126  // iff
127  // X1 * Z2^2 == X2 * Z1^2 and Y1 * Z2^3 == Y2 * Z1^3
128 
129  const alt_bn128_Fq2 Z1_squared = (this->Z).squared();
130  const alt_bn128_Fq2 Z2_squared = (other.Z).squared();
131 
132  if ((this->X * Z2_squared) != (other.X * Z1_squared)) {
133  return false;
134  }
135 
136  const alt_bn128_Fq2 Z1_cubed = (this->Z) * Z1_squared;
137  const alt_bn128_Fq2 Z2_cubed = (other.Z) * Z2_squared;
138 
139  if ((this->Y * Z2_cubed) != (other.Y * Z1_cubed)) {
140  return false;
141  }
142 
143  return true;
144 }
145 
146 bool alt_bn128_G2::operator!=(const alt_bn128_G2 &other) const
147 {
148  return !(operator==(other));
149 }
150 
151 alt_bn128_G2 alt_bn128_G2::operator+(const alt_bn128_G2 &other) const
152 {
153  return add(other);
154 }
155 
156 alt_bn128_G2 alt_bn128_G2::operator-() const
157 {
158  return alt_bn128_G2(this->X, -(this->Y), this->Z);
159 }
160 
161 alt_bn128_G2 alt_bn128_G2::operator-(const alt_bn128_G2 &other) const
162 {
163  return (*this) + (-other);
164 }
165 
166 alt_bn128_G2 alt_bn128_G2::add(const alt_bn128_G2 &other) const
167 {
168  // handle special cases having to do with O
169  if (this->is_zero()) {
170  return other;
171  }
172 
173  if (other.is_zero()) {
174  return *this;
175  }
176 
177  // no need to handle points of order 2,4
178  // (they cannot exist in a prime-order subgroup)
179 
180  // check for doubling case
181 
182  // using Jacobian coordinates so:
183  // (X1:Y1:Z1) = (X2:Y2:Z2)
184  // iff
185  // X1/Z1^2 == X2/Z2^2 and Y1/Z1^3 == Y2/Z2^3
186  // iff
187  // X1 * Z2^2 == X2 * Z1^2 and Y1 * Z2^3 == Y2 * Z1^3
188 
189  const alt_bn128_Fq2 Z1Z1 = (this->Z).squared();
190  const alt_bn128_Fq2 Z2Z2 = (other.Z).squared();
191 
192  const alt_bn128_Fq2 U1 = this->X * Z2Z2;
193  const alt_bn128_Fq2 U2 = other.X * Z1Z1;
194 
195  const alt_bn128_Fq2 Z1_cubed = (this->Z) * Z1Z1;
196  const alt_bn128_Fq2 Z2_cubed = (other.Z) * Z2Z2;
197 
198  // S1 = Y1 * Z2 * Z2Z2
199  const alt_bn128_Fq2 S1 = (this->Y) * Z2_cubed;
200  // S2 = Y2 * Z1 * Z1Z1
201  const alt_bn128_Fq2 S2 = (other.Y) * Z1_cubed;
202 
203  if (U1 == U2 && S1 == S2) {
204  // dbl case; nothing of above can be reused
205  return this->dbl();
206  }
207 
208 #ifdef PROFILE_OP_COUNTS
209  this->add_cnt++;
210 #endif
211 
212  // rest of add case
213  const alt_bn128_Fq2 H = U2 - U1; // H = U2-U1
214  const alt_bn128_Fq2 S2_minus_S1 = S2 - S1;
215  // I = (2 * H)^2
216  const alt_bn128_Fq2 I = (H + H).squared();
217  // J = H * I
218  const alt_bn128_Fq2 J = H * I;
219  // r = 2 * (S2-S1)
220  const alt_bn128_Fq2 r = S2_minus_S1 + S2_minus_S1;
221  // V = U1 * I
222  const alt_bn128_Fq2 V = U1 * I;
223  // X3 = r^2 - J - 2 * V
224  const alt_bn128_Fq2 X3 = r.squared() - J - (V + V);
225  const alt_bn128_Fq2 S1_J = S1 * J;
226  // Y3 = r * (V-X3)-2 S1 J
227  const alt_bn128_Fq2 Y3 = r * (V - X3) - (S1_J + S1_J);
228  // Z3 = ((Z1+Z2)^2-Z1Z1-Z2Z2) * H
229  const alt_bn128_Fq2 Z3 = ((this->Z + other.Z).squared() - Z1Z1 - Z2Z2) * H;
230 
231  return alt_bn128_G2(X3, Y3, Z3);
232 }
233 
234 alt_bn128_G2 alt_bn128_G2::mixed_add(const alt_bn128_G2 &other) const
235 {
236 #ifdef DEBUG
237  assert(other.is_special());
238 #endif
239 
240  // handle special cases having to do with O
241  if (this->is_zero()) {
242  return other;
243  }
244 
245  if (other.is_zero()) {
246  return *this;
247  }
248 
249  // no need to handle points of order 2,4
250  // (they cannot exist in a prime-order subgroup)
251 
252  // check for doubling case
253 
254  // using Jacobian coordinates so:
255  // (X1:Y1:Z1) = (X2:Y2:Z2)
256  // iff
257  // X1/Z1^2 == X2/Z2^2 and Y1/Z1^3 == Y2/Z2^3
258  // iff
259  // X1 * Z2^2 == X2 * Z1^2 and Y1 * Z2^3 == Y2 * Z1^3
260 
261  // we know that Z2 = 1
262 
263  const alt_bn128_Fq2 Z1Z1 = (this->Z).squared();
264 
265  const alt_bn128_Fq2 &U1 = this->X;
266  const alt_bn128_Fq2 U2 = other.X * Z1Z1;
267 
268  const alt_bn128_Fq2 Z1_cubed = (this->Z) * Z1Z1;
269 
270  // S1 = Y1 * Z2 * Z2Z2
271  const alt_bn128_Fq2 &S1 = (this->Y);
272  // S2 = Y2 * Z1 * Z1Z1
273  const alt_bn128_Fq2 S2 = (other.Y) * Z1_cubed;
274 
275  if (U1 == U2 && S1 == S2) {
276  // dbl case; nothing of above can be reused
277  return this->dbl();
278  }
279 
280 #ifdef PROFILE_OP_COUNTS
281  this->add_cnt++;
282 #endif
283 
284  // NOTE: does not handle O and pts of order 2,4
285  // http://www.hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-0.html#addition-madd-2007-bl
286  // H = U2-X1
287  const alt_bn128_Fq2 H = U2 - (this->X);
288  // HH = H&2
289  const alt_bn128_Fq2 HH = H.squared();
290  // I = 4*HH
291  alt_bn128_Fq2 I = HH + HH;
292  I = I + I;
293  // J = H*I
294  const alt_bn128_Fq2 J = H * I;
295  // r = 2*(S2-Y1)
296  alt_bn128_Fq2 r = S2 - (this->Y);
297  r = r + r;
298  // V = X1*I
299  const alt_bn128_Fq2 V = (this->X) * I;
300  // X3 = r^2-J-2*V
301  const alt_bn128_Fq2 X3 = r.squared() - J - V - V;
302  // Y3 = r*(V-X3)-2*Y1*J
303  alt_bn128_Fq2 Y3 = (this->Y) * J;
304  Y3 = r * (V - X3) - Y3 - Y3;
305  // Z3 = (Z1+H)^2-Z1Z1-HH
306  const alt_bn128_Fq2 Z3 = ((this->Z) + H).squared() - Z1Z1 - HH;
307 
308  return alt_bn128_G2(X3, Y3, Z3);
309 }
310 
311 alt_bn128_G2 alt_bn128_G2::dbl() const
312 {
313 #ifdef PROFILE_OP_COUNTS
314  this->dbl_cnt++;
315 #endif
316  // handle point at infinity
317  if (this->is_zero()) {
318  return (*this);
319  }
320 
321  // NOTE: does not handle O and pts of order 2,4
322  // http://www.hyperelliptic.org/EFD/g1p/auto-shortw-projective.html#doubling-dbl-2007-bl
323 
324  // A = X1^2
325  const alt_bn128_Fq2 A = (this->X).squared();
326  // B = Y1^2
327  const alt_bn128_Fq2 B = (this->Y).squared();
328  // C = B^2
329  const alt_bn128_Fq2 C = B.squared();
330  alt_bn128_Fq2 D = (this->X + B).squared() - A - C;
331  // D = 2 * ((X1 + B)^2 - A - C)
332  D = D + D;
333  // E = 3 * A
334  const alt_bn128_Fq2 E = A + A + A;
335  // F = E^2
336  const alt_bn128_Fq2 F = E.squared();
337  // X3 = F - 2 D
338  const alt_bn128_Fq2 X3 = F - (D + D);
339  alt_bn128_Fq2 eightC = C + C;
340  eightC = eightC + eightC;
341  eightC = eightC + eightC;
342  // Y3 = E * (D - X3) - 8 * C
343  const alt_bn128_Fq2 Y3 = E * (D - X3) - eightC;
344  const alt_bn128_Fq2 Y1Z1 = (this->Y) * (this->Z);
345  // Z3 = 2 * Y1 * Z1
346  const alt_bn128_Fq2 Z3 = Y1Z1 + Y1Z1;
347 
348  return alt_bn128_G2(X3, Y3, Z3);
349 }
350 
351 alt_bn128_G2 alt_bn128_G2::mul_by_q() const
352 {
353  return alt_bn128_G2(
354  alt_bn128_twist_mul_by_q_X * (this->X).Frobenius_map(1),
355  alt_bn128_twist_mul_by_q_Y * (this->Y).Frobenius_map(1),
356  (this->Z).Frobenius_map(1));
357 }
358 
359 alt_bn128_G2 alt_bn128_G2::mul_by_cofactor() const
360 {
361  return alt_bn128_G2::h * (*this);
362 }
363 
364 bool alt_bn128_G2::is_well_formed() const
365 {
366  if (this->is_zero()) {
367  return true;
368  } else {
369  // y^2 = x^3 + b
370  //
371  // We are using Jacobian coordinates, so equation we need to check is
372  // actually
373  //
374  // (y/z^3)^2 = (x/z^2)^3 + b
375  // y^2 / z^6 = x^3 / z^6 + b
376  // y^2 = x^3 + b z^6
377  const alt_bn128_Fq2 X2 = this->X.squared();
378  const alt_bn128_Fq2 Y2 = this->Y.squared();
379  const alt_bn128_Fq2 Z2 = this->Z.squared();
380 
381  const alt_bn128_Fq2 X3 = this->X * X2;
382  const alt_bn128_Fq2 Z3 = this->Z * Z2;
383  const alt_bn128_Fq2 Z6 = Z3.squared();
384 
385  return (Y2 == X3 + alt_bn128_twist_coeff_b * Z6);
386  }
387 }
388 
389 bool alt_bn128_G2::is_in_safe_subgroup() const
390 {
391  return zero() == scalar_field::mod * (*this);
392 }
393 
394 const alt_bn128_G2 &alt_bn128_G2::zero() { return G2_zero; }
395 
396 const alt_bn128_G2 &alt_bn128_G2::one() { return G2_one; }
397 
398 alt_bn128_G2 alt_bn128_G2::random_element()
399 {
400  return (alt_bn128_Fr::random_element().as_bigint()) * G2_one;
401 }
402 
403 void alt_bn128_G2::write_uncompressed(std::ostream &out) const
404 {
405  // <is_zero> | <x-coord> | <y-coord>
406  alt_bn128_G2 copy(*this);
407  copy.to_affine_coordinates();
408  const char is_zero = copy.is_zero() ? '1' : '0';
409  out.write(&is_zero, 1) << copy.X << copy.Y;
410 }
411 
412 void alt_bn128_G2::write_compressed(std::ostream &out) const
413 {
414  // <flags> | <x-coord>
415  alt_bn128_G2 copy(*this);
416  copy.to_affine_coordinates();
417 
418  const uint8_t flags =
419  (copy.is_zero() ? G2_ZERO_FLAG : 0) |
420  ((copy.Y.coeffs[0].as_bigint().data[0] & 1) ? G2_Y_LSB_FLAG : 0);
421  const char flags_char = '0' + flags;
422  out.write(&flags_char, 1) << copy.X;
423 }
424 
425 void alt_bn128_G2::read_uncompressed(std::istream &in, alt_bn128_G2 &g)
426 {
427  // <is_zero> | <x-coord> | <y-coord>
428  char is_zero;
429  in.read(&is_zero, 1) >> g.X >> g.Y;
430  ;
431  is_zero -= '0';
432 
433  if (!is_zero) {
434  g.Z = alt_bn128_Fq2::one();
435  } else {
436  g = alt_bn128_G2::zero();
437  }
438 }
439 
440 void alt_bn128_G2::read_compressed(std::istream &in, alt_bn128_G2 &g)
441 {
442  // <flags> | <x-coord>
443  char flags_char;
444  in.read(&flags_char, 1) >> g.X;
445  const uint8_t flags = flags_char - '0';
446 
447  // alt_bn128_Fq2 tX;
448 
449  // y = +/- sqrt(x^3 + b)
450  if (0 == (flags & G2_ZERO_FLAG)) {
451  const uint8_t Y_lsb = (flags & G2_Y_LSB_FLAG) ? 1 : 0;
452  const alt_bn128_Fq2 tX2 = g.X.squared();
453  const alt_bn128_Fq2 tY2 = tX2 * g.X + alt_bn128_twist_coeff_b;
454  g.Y = tY2.sqrt();
455 
456  if ((uint8_t)(g.Y.coeffs[0].as_bigint().data[0] & 1) != Y_lsb) {
457  g.Y = -g.Y;
458  }
459 
460  g.Z = alt_bn128_Fq2::one();
461  } else {
462  g = alt_bn128_G2::zero();
463  }
464 }
465 
466 std::ostream &operator<<(std::ostream &out, const alt_bn128_G2 &g)
467 {
468 #ifdef NO_PT_COMPRESSION
469  g.write_uncompressed(out);
470 #else
471  g.write_compressed(out);
472 #endif
473  return out;
474 }
475 
476 std::istream &operator>>(std::istream &in, alt_bn128_G2 &g)
477 {
478 #ifdef NO_PT_COMPRESSION
479  alt_bn128_G2::read_uncompressed(in, g);
480 #else
481  alt_bn128_G2::read_compressed(in, g);
482 #endif
483  return in;
484 }
485 
486 void alt_bn128_G2::batch_to_special_all_non_zeros(
487  std::vector<alt_bn128_G2> &vec)
488 {
489  std::vector<alt_bn128_Fq2> Z_vec;
490  Z_vec.reserve(vec.size());
491 
492  for (auto &el : vec) {
493  Z_vec.emplace_back(el.Z);
494  }
495  batch_invert<alt_bn128_Fq2>(Z_vec);
496 
497  const alt_bn128_Fq2 one = alt_bn128_Fq2::one();
498 
499  for (size_t i = 0; i < vec.size(); ++i) {
500  const alt_bn128_Fq2 Z2 = Z_vec[i].squared();
501  const alt_bn128_Fq2 Z3 = Z_vec[i] * Z2;
502 
503  vec[i].X = vec[i].X * Z2;
504  vec[i].Y = vec[i].Y * Z3;
505  vec[i].Z = one;
506  }
507 }
508 
509 } // namespace libff
libff::Fp2_model::coeffs
my_Fp coeffs[2]
Definition: fp2.hpp:63
libff::alt_bn128_G2::read_uncompressed
static void read_uncompressed(std::istream &, alt_bn128_G2 &)
Definition: alt_bn128_g2.cpp:425
libff::alt_bn128_G2::batch_to_special_all_non_zeros
static void batch_to_special_all_non_zeros(std::vector< alt_bn128_G2 > &vec)
Definition: alt_bn128_g2.cpp:486
libff::alt_bn128_G2::is_special
bool is_special() const
Definition: alt_bn128_g2.cpp:103
libff::alt_bn128_twist_mul_by_q_Y
alt_bn128_Fq2 alt_bn128_twist_mul_by_q_Y
Definition: alt_bn128_init.cpp:24
libff::alt_bn128_G2::one
static const alt_bn128_G2 & one()
Definition: alt_bn128_g2.cpp:396
libff::Fp_model::random_element
static Fp_model< n, modulus > random_element()
returns random element of Fp_model
libff::alt_bn128_G2::operator==
bool operator==(const alt_bn128_G2 &other) const
Definition: alt_bn128_g2.cpp:110
libff::alt_bn128_G2::operator+
alt_bn128_G2 operator+(const alt_bn128_G2 &other) const
Definition: alt_bn128_g2.cpp:151
libff
Definition: ffi.cpp:8
libff::Fp2_model< alt_bn128_q_limbs, alt_bn128_modulus_q >::one
static const Fp2_model< n, modulus > & one()
libff::operator>>
std::istream & operator>>(std::istream &in, alt_bn128_G1 &g)
Definition: alt_bn128_g1.cpp:446
libff::alt_bn128_G2::h
static bigint< h_limbs > h
Definition: alt_bn128_g2.hpp:43
libff::alt_bn128_G2::Y
alt_bn128_Fq2 Y
Definition: alt_bn128_g2.hpp:45
libff::alt_bn128_G2::mul_by_q
alt_bn128_G2 mul_by_q() const
Definition: alt_bn128_g2.cpp:351
libff::alt_bn128_twist_coeff_b
alt_bn128_Fq2 alt_bn128_twist_coeff_b
Definition: alt_bn128_init.cpp:20
libff::alt_bn128_G2::Z
alt_bn128_Fq2 Z
Definition: alt_bn128_g2.hpp:45
libff::alt_bn128_G2::X
alt_bn128_Fq2 X
Definition: alt_bn128_g2.hpp:45
libff::alt_bn128_twist_mul_by_q_X
alt_bn128_Fq2 alt_bn128_twist_mul_by_q_X
Definition: alt_bn128_init.cpp:23
libff::Fp2_model::inverse
Fp2_model inverse() const
libff::alt_bn128_G2::operator-
alt_bn128_G2 operator-() const
Definition: alt_bn128_g2.cpp:156
libff::alt_bn128_G2::write_uncompressed
void write_uncompressed(std::ostream &) const
Definition: alt_bn128_g2.cpp:403
libff::alt_bn128_G2::fixed_base_exp_window_table
static std::vector< size_t > fixed_base_exp_window_table
Definition: alt_bn128_g2.hpp:29
libff::alt_bn128_G2::print
void print() const
Definition: alt_bn128_g2.cpp:43
libff::alt_bn128_G2::mul_by_cofactor
alt_bn128_G2 mul_by_cofactor() const
Definition: alt_bn128_g2.cpp:359
libff::alt_bn128_G2::G2_zero
static alt_bn128_G2 G2_zero
Definition: alt_bn128_g2.hpp:30
libff::Fp2_model::is_zero
bool is_zero() const
Definition: fp2.hpp:89
libff::alt_bn128_twist_mul_by_b_c1
alt_bn128_Fq alt_bn128_twist_mul_by_b_c1
Definition: alt_bn128_init.cpp:22
libff::alt_bn128_Fq2
Fp2_model< alt_bn128_q_limbs, alt_bn128_modulus_q > alt_bn128_Fq2
Definition: alt_bn128_init.hpp:32
libff::alt_bn128_G2::add
alt_bn128_G2 add(const alt_bn128_G2 &other) const
Definition: alt_bn128_g2.cpp:166
libff::Fp_model< alt_bn128_q_limbs, alt_bn128_modulus_q >::num_limbs
static const mp_size_t num_limbs
Definition: fp.hpp:47
libff::alt_bn128_G2::coeff_a
static alt_bn128_Fq2 coeff_a
Definition: alt_bn128_g2.hpp:32
libff::alt_bn128_G2
Definition: alt_bn128_g2.hpp:21
libff::alt_bn128_G2::is_well_formed
bool is_well_formed() const
Definition: alt_bn128_g2.cpp:364
libff::Fp_model::as_bigint
bigint< n > as_bigint() const
libff::alt_bn128_G2::alt_bn128_G2
alt_bn128_G2()
Definition: alt_bn128_g2.cpp:29
libff::operator<<
std::ostream & operator<<(std::ostream &out, const alt_bn128_G1 &g)
Definition: alt_bn128_g1.cpp:436
libff::alt_bn128_G2::to_affine_coordinates
void to_affine_coordinates()
Definition: alt_bn128_g2.cpp:85
libff::alt_bn128_G2::read_compressed
static void read_compressed(std::istream &, alt_bn128_G2 &)
Definition: alt_bn128_g2.cpp:440
libff::alt_bn128_G2::zero
static const alt_bn128_G2 & zero()
Definition: alt_bn128_g2.cpp:394
libff::Fp2_model::squared
Fp2_model squared() const
default is squared_complex
libff::Fp2_model< alt_bn128_q_limbs, alt_bn128_modulus_q >
libff::alt_bn128_G2::wnaf_window_table
static std::vector< size_t > wnaf_window_table
Definition: alt_bn128_g2.hpp:28
libff::alt_bn128_twist_mul_by_b_c0
alt_bn128_Fq alt_bn128_twist_mul_by_b_c0
Definition: alt_bn128_init.cpp:21
libff::Fp_model::mod
static const constexpr bigint< n > & mod
Definition: fp.hpp:48
libff::Fp2_model::sqrt
Fp2_model sqrt() const
HAS TO BE A SQUARE (else does not terminate)
libff::alt_bn128_G2::G2_one
static alt_bn128_G2 G2_one
Definition: alt_bn128_g2.hpp:31
libff::Fp2_model< alt_bn128_q_limbs, alt_bn128_modulus_q >::zero
static const Fp2_model< n, modulus > & zero()
libff::alt_bn128_G2::to_special
void to_special()
Definition: alt_bn128_g2.cpp:101
libff::alt_bn128_G2::is_zero
bool is_zero() const
Definition: alt_bn128_g2.cpp:108
libff::alt_bn128_G2::operator!=
bool operator!=(const alt_bn128_G2 &other) const
Definition: alt_bn128_g2.cpp:146
libff::alt_bn128_G2::coeff_b
static alt_bn128_Fq2 coeff_b
Definition: alt_bn128_g2.hpp:33
libff::alt_bn128_G2::random_element
static alt_bn128_G2 random_element()
Definition: alt_bn128_g2.cpp:398
libff::alt_bn128_G2::mul_by_b
static alt_bn128_Fq2 mul_by_b(const alt_bn128_Fq2 &elt)
Definition: alt_bn128_g2.cpp:36
libff::alt_bn128_G2::write_compressed
void write_compressed(std::ostream &) const
Definition: alt_bn128_g2.cpp:412
libff::alt_bn128_G2::dbl
alt_bn128_G2 dbl() const
Definition: alt_bn128_g2.cpp:311
libff::alt_bn128_G2::mixed_add
alt_bn128_G2 mixed_add(const alt_bn128_G2 &other) const
Definition: alt_bn128_g2.cpp:234
libff::alt_bn128_G2::print_coordinates
void print_coordinates() const
Definition: alt_bn128_g2.cpp:63
alt_bn128_g2.hpp
libff::alt_bn128_G2::is_in_safe_subgroup
bool is_in_safe_subgroup() const
Definition: alt_bn128_g2.cpp:389
Generated on Thu Aug 18 2022 12:42:18 for Clearmatics Libff by   doxygen 1.8.17