logos-storage/plonky2
1
0
Fork 0
mirror of https://github.com/logos-storage/plonky2.git synced 2026-05-02 00:03:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

tate

Browse Source
This commit is contained in:
Dmitry Vagner 2022-11-18 16:48:11 -08:00
parent 68cde336a3
commit 84c1954daf
3 changed files with 82 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

80
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/tate_pairing.asm
View File

@ -1,30 +1,80 @@
/// def tate(P : [Fp; 2], Q: [Fp2; 2]) -> Fp12: /// def tate(P : [Fp; 2], Q: [Fp2; 2]) -> Fp12:
/// out = miller_loop(P) /// out = miller_loop(P, Q)
/// ///
/// inv = inverse_fp12(out) /// inv = inverse_fp12(out)
/// out = frob_fp12_6(out) /// out = frob_fp12_6(out)
/// out = mul_fp12(out, inv) /// out = mul_fp12(out, inv)
/// ///
/// acx = frob_fp12_2(out) /// acc = frob_fp12_2(out)
/// out = mul_fp12(acx, out) /// out = mul_fp12(out, acc)
/// ///
/// pow = fast_exp(out) /// pow = fast_exp(out)
/// out = frob_fp12_3(out) /// out = frob_fp12_3(out)
/// return mul_fp12(out, pow) /// out = mul_fp12(out, pow)
///
/// return out
global tate: global tate:
// stack: ptr, out // stack: ptr, out, retdest
PUSH 1 PUSH tate_mul3 SWAP2
// stack: 1, ptr, out // stack: out, ptr, tate_mul3, retdest
PUSH tate_mul2 SWAP2
// stack: ptr, out, tate_mul2, tate_mul3, retdest
PUSH tate_mul1 SWAP2
// stack: out, ptr, tate_mul1, tate_mul2, tate_mul3, retdest
PUSH post_mllr SWAP2
// stack: ptr, out, post_mllr, tate_mul1, tate_mul2, tate_mul3, retdest
%jump(miller_loop)
post_mllr:
// stack: out, tate_mul1, tate_mul2, tate_mul3, retdest
PUSH 100
// stack: 100, out, tate_mul1, tate_mul2, tate_mul3, retdest
DUP2
// stack: out, 100, out, tate_mul1, tate_mul2, tate_mul3, retdest
%inverse_fp12
// stack: 100, out, tate_mul1, tate_mul2, tate_mul3, retdest {100: inv}
PUSH mul_fp12
// stack: mul_fp12, 100, out, tate_mul1, tate_mul2, tate_mul3, retdest {100: inv}
DUP3
// stack: out, mul_fp12, 100, out, tate_mul1, tate_mul2, tate_mul3, retdest {100: inv}
%jump(frob_fp12_6)
tate_mul1:
// stack: out, tate_mul2, tate_mul3, retdest {100: inv}
DUP1
// stack: out, out, tate_mul2, tate_mul3, retdest {100: inv}
PUSH mul_fp12
// stack: mul_fp12, out, out, tate_mul2, tate_mul3, retdest {100: inv}
PUSH 100 PUSH 100
// stack: 100, 1, ptr, out // stack: 100, mul_fp12, out, out, tate_mul2, tate_mul3, retdest {100: inv}
%mstore_kernel_general DUP3
// stack: out, 100, mul_fp12, out, out, tate_mul2, tate_mul3, retdest {100: inv}
%jump(frob_fp12_2)
tate_mul2:
// stack: out, tate_mul3, retdest {100: acc}
PUSH post_pow
// stack: post_pow, out, tate_mul3, retdest {100: acc}
PUSH 100
// stack: 100, post_pow, out, tate_mul3, retdest {100: acc}
DUP1
// stack: out, 100, post_pow, out, tate_mul3, retdest {100: acc}
%jump(power)
post_pow:
// stack: 100, out, tate_mul3, retdest {100: pow}
PUSH mul_fp12
// stack: mul_fp12, 100, out, tate_mul3, retdest {100: pow}
DUP3
// stack: out, mul_fp12, 100, out, tate_mul3, retdest {100: pow}
%jump(frob_fp12_3)
tate_mul3:
// stack: out, retdest {100: pow}
SWAP1
JUMP
/// def miller_loop(P): /// def miller_loop(P, Q):
/// out = 1 /// out = 1
/// O = P /// O = P
/// for i in EXP[1:-1]: /// for i in EXP:
/// out = square_fp12(out) /// out = square_fp12(out)
/// line = tangent(O, Q) /// line = tangent(O, Q)
/// out = mul_fp12_sparse(out, line) /// out = mul_fp12_sparse(out, line)
@ -36,6 +86,10 @@ global tate:
/// out = square_fp12(out) /// out = square_fp12(out)
/// line = tangent(O, Q) /// line = tangent(O, Q)
/// return mul_fp12_sparse(out, line) /// return mul_fp12_sparse(out, line)
///
/// EXP is the binary expansion of the BN254 prime
global miller_loop:
// stack: ptr, out, retdest
// stack: out

31
evm/src/cpu/kernel/asm/curve/bn254/field_arithmetic/fp12_mul.asm
View File

@ -2,27 +2,27 @@
/// cost: 220 /// cost: 220
global test_mul_fp12: global test_mul_fp12:
// stack: f, inA , f', g, inB , g', inB, out, inA, out // stack: f, inA , f', g, inB , g', inB, out, inA
DUP7 DUP7
// stack: inA, f, inA , f', g, inB , g', inB, out, inA, out // stack: inA, f, inA , f', g, inB , g', inB, out, inA
%store_fp6 %store_fp6
// stack: inA , f', g, inB , g', inB, out, inA, out // stack: inA , f', g, inB , g', inB, out, inA
%offset_fp6 %offset_fp6
// stack: inA', f', g, inB , g', inB, out, inA, out // stack: inA', f', g, inB , g', inB, out, inA
%store_fp6 %store_fp6
// stack: g, inB , g', inB, out, inA, out // stack: g, inB , g', inB, out, inA
DUP7 DUP7
// stack: inB, g, inB , g', inB, out, inA, out // stack: inB, g, inB , g', inB, out, inA
%store_fp6 %store_fp6
// stack: inB , g', inB, out, inA, out // stack: inB , g', inB, out, inA
%offset_fp6 %offset_fp6
// stack: inB', g', inB, out, inA, out // stack: inB', g', inB, out, inA
%store_fp6 %store_fp6
// stack: inB, out, inA, out // stack: inB, out, inA
PUSH ret_stack PUSH ret_stack
// stack: ret_stack, inB, out, inA, out // stack: ret_stack, inB, out, inA
SWAP3 SWAP3
// stack: inA, inB, out, ret_stack, out // stack: inA, inB, out, ret_stack
%jump(square_fp12_test) %jump(square_fp12_test)
ret_stack: ret_stack:
// stack: out // stack: out
@ -173,8 +173,7 @@ ret_3:
// stack: out, sh(f'g') + fg, inB, out {0: sh(f'g'), 6: f'g', 12: fg} // stack: out, sh(f'g') + fg, inB, out {0: sh(f'g'), 6: f'g', 12: fg}
%store_fp6 %store_fp6
// stack: inB, out {0: sh(f'g'), 6: f'g', 12: fg} // stack: inB, out {0: sh(f'g'), 6: f'g', 12: fg}
%pop2 POP SWAP1 JUMP
JUMP
////////////////////////////////////// //////////////////////////////////////
@ -304,8 +303,7 @@ global mul_fp12_sparse:
// stack: out', G1 * sh(f') + G2 * sh(f) + g0 * f', inA, inB, out // stack: out', G1 * sh(f') + G2 * sh(f) + g0 * f', inA, inB, out
%store_fp6 %store_fp6
// stack: inA, inB, out // stack: inA, inB, out
%pop3 %pop2 SWAP1 JUMP
JUMP
/// global mul_fp12_sparse_fast: /// global mul_fp12_sparse_fast:
/// // stack: inA, inB, out /// // stack: inA, inB, out
@ -449,5 +447,4 @@ post_sq2:
// stack: out, ff + sh(f'f'), inp, out // stack: out, ff + sh(f'f'), inp, out
%store_fp6 %store_fp6
// stack: inp, out // stack: inp, out
%pop2 POP SWAP1 JUMP
JUMP

2
evm/src/cpu/kernel/tests/fields.rs
View File

@ -188,7 +188,7 @@ fn make_initial_stack(
input.extend(g0); input.extend(g0);
input.extend(vec![in2]); input.extend(vec![in2]);
input.extend(g1); input.extend(g1);
input.extend(vec![in2, out, in1, out]); input.extend(vec![in2, out, in1]);
as_stack(input) as_stack(input)
} }