logos-storage/plonky2
1
0
Fork 0
mirror of https://github.com/logos-storage/plonky2.git synced 2026-01-08 00:33:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

Speed-up bn254 pairing operation (#1476)

Browse Source 
* Speed-up bn254 operations

* Add comment for write_fp254_12_unit macro

* Refactor some macros

* nit: comment

* Add newline
This commit is contained in:
Robin Salen 2024-01-23 17:36:14 -05:00 committed by GitHub
parent ae0907ff97
commit acc59c3563
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
5 changed files with 461 additions and 445 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/final_exponent.asm
View File

@ -56,14 +56,21 @@ final_exp:
%stack (val) -> (val, 0, val)
// stack: val, 0, val, retdest
%move_fp254_12
// stack: 0, val, retdest {0: sqr}
%stack () -> (1, 1, 1)
// stack: 1, 1, 1, 0, val, retdest
%mstore_bn254_pairing(12)
%mstore_bn254_pairing(24)
%mstore_bn254_pairing(36)
// stack: 0, val, retdest {0: sqr, 12: y0, 24: y2, 36: y4}
%stack () -> (64, 62, 65)
// dest addr returned by %move_fp254_12 is already scaled
// stack: addr, val, retdest {0: sqr}
// Write 1s at offset 12, 24 and 36
PUSH 12
ADD
DUP1 %add_const(12)
DUP1 %add_const(12)
// stack: addr_1, addr_2, addr_3
%rep 3
PUSH 1 MSTORE_GENERAL
%endrep
// stack: val, retdest {0: sqr, 12: y0, 24: y2, 36: y4}
%stack () -> (64, 62, 65, 0)
// stack: 64, 62, 65, 0, val, retdest {0: sqr, 12: y0, 24: y2, 36: y4}
%jump(power_loop_4)

100
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/miller_loop.asm
View File

@ -27,9 +27,9 @@
global bn254_miller:
// stack: ptr, out, retdest
%stack (ptr, out) -> (out, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, ptr, out)
// stack: out, unit, ptr, out, retdest
%store_fp254_12
%stack (ptr, out) -> (out, ptr, out)
// stack: out, ptr, out, retdest
%write_fp254_12_unit
// stack: ptr, out, retdest
%load_fp254_6
// stack: P, Q, out, retdest
@ -188,43 +188,51 @@ after_add:
%macro tangent
// stack: px, py, qx, qx_, qy, qy_
%stack (px, py) -> (py, py , 9, px, py)
// stack: py, py , 9, px, py, qx, qx_, qy, qy_
PUSH 12
%create_bn254_pairing_address
%stack (addr12, px, py) -> (py, py, 9, addr12, addr12, px, py)
// stack: py, py, 9, addr12, addr12, px, py, qx, qx_, qy, qy_
MULFP254
// stack: py^2 , 9, px, py, qx, qx_, qy, qy_
// stack: py^2, 9, addr12, addr12, px, py, qx, qx_, qy, qy_
SUBFP254
// stack: py^2 - 9, px, py, qx, qx_, qy, qy_
%mstore_bn254_pairing(12)
// stack: px, py, qx, qx_, qy, qy_
// stack: py^2 - 9, addr12, addr12, px, py, qx, qx_, qy, qy_
MSTORE_GENERAL
// stack: addr12, px, py, qx, qx_, qy, qy_
%add_const(2) DUP1
SWAP2
DUP1
MULFP254
// stack: px^2, py, qx, qx_, qy, qy_
// stack: px^2, addr14, addr14, py, qx, qx_, qy, qy_
PUSH 3
MULFP254
// stack: 3*px^2, py, qx, qx_, qy, qy_
// stack: 3*px^2, addr14, addr14, py, qx, qx_, qy, qy_
PUSH 0
SUBFP254
// stack: -3*px^2, py, qx, qx_, qy, qy_
SWAP2
// stack: qx, py, -3px^2, qx_, qy, qy_
DUP3
// stack: -3*px^2, addr14, addr14, py, qx, qx_, qy, qy_
SWAP4
// stack: qx, addr14, addr14, py, -3px^2, qx_, qy, qy_
DUP5
MULFP254
// stack: (-3*px^2)qx, py, -3px^2, qx_, qy, qy_
%mstore_bn254_pairing(14)
// stack: py, -3px^2, qx_, qy, qy_
PUSH 2
// stack: (-3*px^2)qx, addr14, addr14, py, -3px^2, qx_, qy, qy_
MSTORE_GENERAL
// stack: addr14, py, -3px^2, qx_, qy, qy_
DUP1 %add_const(6)
// stack: addr20, addr14, py, -3px^2, qx_, qy, qy_
%stack (addr20, addr14, py) -> (2, py, addr20, addr14)
MULFP254
// stack: 2py, -3px^2, qx_, qy, qy_
SWAP3
// stack: qy, -3px^2, qx_, 2py, qy_
DUP4
// stack: 2py, addr20, addr14, -3px^2, qx_, qy, qy_
SWAP5
// stack: qy, addr20, addr14, -3px^2, qx_, 2py, qy_
DUP6
MULFP254
// stack: (2py)qy, -3px^2, qx_, 2py, qy_
%mstore_bn254_pairing(20)
// stack: -3px^2, qx_, 2py, qy_
// stack: (2py)qy, addr20, addr14, -3px^2, qx_, 2py, qy_
MSTORE_GENERAL
// stack: addr14, -3px^2, qx_, 2py, qy_
%add_const(1) SWAP2
// stack: qx_, -3px^2, addr15, 2py, qy_
MULFP254
// stack: (-3px^2)*qx_, 2py, qy_
%mstore_bn254_pairing(15)
// stack: (-3px^2)*qx_, addr15, 2py, qy_
MSTORE_GENERAL
// stack: 2py, qy_
MULFP254
// stack: (2py)*qy_
@ -284,10 +292,34 @@ after_add:
%endmacro
%macro clear_line
%stack () -> (0, 0, 0, 0, 0)
%mstore_bn254_pairing(12)
%mstore_bn254_pairing(14)
%mstore_bn254_pairing(15)
%mstore_bn254_pairing(20)
%mstore_bn254_pairing(21)
PUSH 12
%create_bn254_pairing_address
// stack: addr12
DUP1 %add_const(2)
// stack: addr14, addr12
DUP1 %add_const(1)
// stack: addr15, addr14, addr12
DUP1 %add_const(5)
// stack: addr20, addr15, addr14, addr12
DUP1 %add_const(1)
// stack: addr21, addr20, addr15, addr14, addr12
%rep 5
PUSH 0 MSTORE_GENERAL
%endrep
%endmacro
%macro write_fp254_12_unit
// Write 0x10000000000000000000000 with MSTORE_32BYTES_12,
// effectively storing 1 at the initial offset, and 11 0s afterwards.
// stack: out
%create_bn254_pairing_address
// stack: addr
PUSH 0x10000000000000000000000
SWAP1
// stack: addr, 0x10000000000000000000000
MSTORE_32BYTES_12
POP
// stack:
%endmacro

17
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/pairing.asm
View File

@ -83,9 +83,9 @@ bn_pairing_invalid_input:
bn254_pairing_start:
// stack: 0, k, inp, out, retdest
%stack (j, k, inp, out) -> (out, 1, k, inp, out, bn254_pairing_output_validation, out)
// stack: out, 1, k, inp, out, bn254_pairing_output_validation, out, retdest
%mstore_bn254_pairing
%stack (j, k, inp, out) -> (out, k, inp, out, bn254_pairing_output_validation, out)
// stack: out, k, inp, out, bn254_pairing_output_validation, out, retdest
%mstore_bn254_pairing_value(1)
// stack: k, inp, out, bn254_pairing_output_validation, out, retdest
bn254_pairing_loop:
@ -125,8 +125,9 @@ bn_skip_input:
bn254_pairing_output_validation:
// stack: out, retdest
%create_bn254_pairing_address
PUSH 1
// stack: check, out, retdest
// stack: check, out_addr, retdest
%check_output_term
%check_output_term(1)
%check_output_term(2)
@ -139,15 +140,15 @@ bn254_pairing_output_validation:
%check_output_term(9)
%check_output_term(10)
%check_output_term(11)
// stack: check, out, retdest
%stack (check, out, retdest) -> (retdest, check)
// stack: check, out_addr, retdest
%stack (check, out_addr, retdest) -> (retdest, check)
JUMP
%macro check_output_term
// stack: check, out
DUP2
// stack: out0, check, out
%mload_bn254_pairing
MLOAD_GENERAL
// stack: f0, check, out
%eq_const(1)
// stack: check0, check, out
@ -160,7 +161,7 @@ bn254_pairing_output_validation:
DUP2
%add_const($j)
// stack: outj, check, out
%mload_bn254_pairing
MLOAD_GENERAL
// stack: fj, check, out
ISZERO
// stack: checkj, check, out

7
evm/src/cpu/kernel/asm/curve/bn254/field_arithmetic/inverse.asm
View File

@ -42,9 +42,12 @@ check_inv_fp254_12:
// stack: unit?, retdest
%assert_eq_unit_fp254_12
// stack: retdest
PUSH 60
%create_bn254_pairing_address
PUSH 0
// stack: 0, retdest
%mstore_bn254_pairing(60)
// stack: 0, addr, retdest
MSTORE_GENERAL
// stack: retdest
JUMP
%macro prover_inv_fp254_12

595
evm/src/cpu/kernel/asm/curve/bn254/field_arithmetic/util.asm
View File

@ -20,6 +20,24 @@
// stack:
%endmacro
// Build an address on the current context within SEGMENT_BN_PAIRING.
%macro create_bn254_pairing_address
// stack: offset
PUSH @SEGMENT_BN_PAIRING
GET_CONTEXT
%build_address
// stack: addr
%endmacro
// Store a single value to bn254 pairings memory.
%macro mstore_bn254_pairing_value(value)
// stack: offset
%create_bn254_pairing_address
PUSH $value
MSTORE_GENERAL
// stack:
%endmacro
%macro mstore_bn254_pairing(offset)
// stack: value
PUSH $offset
@ -32,14 +50,15 @@
%macro load_fp254_2
// stack: ptr
%create_bn254_pairing_address
DUP1
%add_const(1)
// stack: ind1, ptr
%mload_bn254_pairing
// stack: x1, ptr
// stack: addr1, addr
MLOAD_GENERAL
// stack: x1, addr
SWAP1
// stack: ind0, x1
%mload_bn254_pairing
// stack: addr0, x1
MLOAD_GENERAL
// stack: x0, x1
%endmacro
@ -145,24 +164,25 @@
%macro load_fp254_4
// stack: ptr
%create_bn254_pairing_address
DUP1
%add_const(2)
// stack: ind2, ptr
%mload_bn254_pairing
// stack: x2, ptr
// stack: addr2, addr
MLOAD_GENERAL
// stack: x2, addr
DUP2
%add_const(1)
// stack: ind1, x2, ptr
%mload_bn254_pairing
// stack: x1, x2, ptr
// stack: addr1, x2, addr
MLOAD_GENERAL
// stack: x1, x2, addr
DUP3
%add_const(3)
// stack: ind3, x1, x2, ptr
%mload_bn254_pairing
// stack: x3, x1, x2, ptr
// stack: addr3, x1, x2, addr
MLOAD_GENERAL
// stack: x3, x1, x2, addr
SWAP3
// stack: ind0, x1, x2, x3
%mload_bn254_pairing
// stack: addr0, x1, x2, x3
MLOAD_GENERAL
// stack: x0, x1, x2, x3
%endmacro
@ -170,228 +190,177 @@
%macro load_fp254_6
// stack: ptr
%create_bn254_pairing_address
DUP1
%add_const(4)
// stack: ind4, ptr
%mload_bn254_pairing
// stack: x4, ptr
// stack: addr4, addr
MLOAD_GENERAL
// stack: x4, addr
DUP2
%add_const(3)
// stack: ind3, x4, ptr
%mload_bn254_pairing
// stack: x3, x4, ptr
// stack: addr3, x4, addr
MLOAD_GENERAL
// stack: x3, x4, addr
DUP3
%add_const(2)
// stack: ind2, x3, x4, ptr
%mload_bn254_pairing
// stack: x2, x3, x4, ptr
// stack: addr2, x3, x4, addr
MLOAD_GENERAL
// stack: x2, x3, x4, addr
DUP4
%add_const(1)
// stack: ind1, x2, x3, x4, ptr
%mload_bn254_pairing
// stack: x1, x2, x3, x4, ptr
// stack: addr1, x2, x3, x4, addr
MLOAD_GENERAL
// stack: x1, x2, x3, x4, addr
DUP5
%add_const(5)
// stack: ind5, x1, x2, x3, x4, ptr
%mload_bn254_pairing
// stack: x5, x1, x2, x3, x4, ptr
// stack: addr5, x1, x2, x3, x4, addr
MLOAD_GENERAL
// stack: x5, x1, x2, x3, x4, addr
SWAP5
// stack: ind0, x1, x2, x3, x4, x5
%mload_bn254_pairing
// stack: addr0, x1, x2, x3, x4, x5
MLOAD_GENERAL
// stack: x0, x1, x2, x3, x4, x5
%endmacro
// cost: 6 loads + 6 pushes + 5 adds = 6*4 + 6*1 + 5*2 = 40
%macro load_fp254_6(ptr)
// stack:
PUSH $ptr
%add_const(5)
// stack: ind5
%mload_bn254_pairing
// stack: x5
PUSH $ptr
%add_const(4)
// stack: ind4, x5
%mload_bn254_pairing
// stack: x4, x5
PUSH $ptr
%add_const(3)
// stack: ind3, x4, x5
%mload_bn254_pairing
// stack: x3, x4, x5
PUSH $ptr
%add_const(2)
// stack: ind2, x3, x4, x5
%mload_bn254_pairing
// stack: x2, x3, x4, x5
PUSH $ptr
%add_const(1)
// stack: ind1, x2, x3, x4, x5
%mload_bn254_pairing
// stack: x1, x2, x3, x4, x5
PUSH $ptr
// stack: ind0, x1, x2, x3, x4, x5
%mload_bn254_pairing
%load_fp254_6
// stack: x0, x1, x2, x3, x4, x5
%endmacro
// cost: 6 stores + 6 swaps/dups + 5 adds = 6*4 + 6*1 + 5*2 = 40
%macro store_fp254_6
// stack: ptr, x0, x1, x2, x3, x4 , x5
%create_bn254_pairing_address
SWAP5
// stack: x4, x0, x1, x2, x3, ptr, x5
// stack: x4, x0, x1, x2, x3, addr, x5
DUP6
%add_const(4)
// stack: ind4, x4, x0, x1, x2, x3, ptr, x5
%mstore_bn254_pairing
// stack: x0, x1, x2, x3, ptr, x5
// stack: addr4, x4, x0, x1, x2, x3, addr, x5
%swap_mstore
// stack: x0, x1, x2, x3, addr, x5
DUP5
// stack: ind0, x0, x1, x2, x3, ptr, x5
%mstore_bn254_pairing
// stack: x1, x2, x3, ptr, x5
// stack: addr0, x0, x1, x2, x3, addr, x5
%swap_mstore
// stack: x1, x2, x3, addr, x5
DUP4
%add_const(1)
// stack: ind1, x1, x2, x3, ptr, x5
%mstore_bn254_pairing
// stack: x2, x3, ptr, x5
// stack: addr1, x1, x2, x3, addr, x5
%swap_mstore
// stack: x2, x3, addr, x5
DUP3
%add_const(2)
// stack: ind2, x2, x3, ptr, x5
%mstore_bn254_pairing
// stack: x3, ptr, x5
// stack: addr2, x2, x3, addr, x5
%swap_mstore
// stack: x3, addr, x5
DUP2
%add_const(3)
// stack: ind3, x3, ptr, x5
%mstore_bn254_pairing
// stack: ptr, x5
// stack: addr3, x3, addr, x5
%swap_mstore
// stack: addr, x5
%add_const(5)
// stack: ind5, x5
%mstore_bn254_pairing
// stack: addr5, x5
%swap_mstore
// stack:
%endmacro
// cost: 6 stores + 7 swaps/dups + 5 adds + 6 doubles = 6*4 + 7*1 + 5*2 + 6*2 = 53
%macro store_fp254_6_double
// stack: ptr, x0, x1, x2, x3, x4, x5
%create_bn254_pairing_address
SWAP6
// stack: x5, x0, x1, x2, x3, x4, ptr
// stack: x5, x0, x1, x2, x3, x4, addr
PUSH 2
MULFP254
// stack: 2*x5, x0, x1, x2, x3, x4, ptr
// stack: 2*x5, x0, x1, x2, x3, x4, addr
DUP7
%add_const(5)
// stack: ind5, 2*x5, x0, x1, x2, x3, x4, ptr
%mstore_bn254_pairing
// stack: x0, x1, x2, x3, x4, ptr
// stack: addr5, 2*x5, x0, x1, x2, x3, x4, addr
%swap_mstore
// stack: x0, x1, x2, x3, x4, addr
PUSH 2
MULFP254
// stack: 2*x0, x1, x2, x3, x4, ptr
// stack: 2*x0, x1, x2, x3, x4, addr
DUP6
// stack: ind0, 2*x0, x1, x2, x3, x4, ptr
%mstore_bn254_pairing
// stack: x1, x2, x3, x4, ptr
// stack: addr0, 2*x0, x1, x2, x3, x4, addr
%swap_mstore
// stack: x1, x2, x3, x4, addr
PUSH 2
MULFP254
// stack: 2*x1, x2, x3, x4, ptr
// stack: 2*x1, x2, x3, x4, addr
DUP5
%add_const(1)
// stack: ind1, 2*x1, x2, x3, x4, ptr
%mstore_bn254_pairing
// stack: x2, x3, x4, ptr
// stack: addr1, 2*x1, x2, x3, x4, addr
%swap_mstore
// stack: x2, x3, x4, addr
PUSH 2
MULFP254
// stack: 2*x2, x3, x4, ptr
// stack: 2*x2, x3, x4, addr
DUP4
%add_const(2)
// stack: ind2, 2*x2, x3, x4, ptr
%mstore_bn254_pairing
// stack: x3, x4, ptr
// stack: addr2, 2*x2, x3, x4, addr
%swap_mstore
// stack: x3, x4, addr
PUSH 2
MULFP254
// stack: 2*x3, x4, ptr
// stack: 2*x3, x4, addr
DUP3
%add_const(3)
// stack: ind3, 2*x3, x4, ptr
%mstore_bn254_pairing
// stack: x4, ptr
// stack: addr3, 2*x3, x4, addr
%swap_mstore
// stack: x4, addr
PUSH 2
MULFP254
// stack: 2*x4, ptr
// stack: 2*x4, addr
SWAP1
// stack: ptr, 2*x4
// stack: addr, 2*x4
%add_const(4)
// stack: ind4, 2*x4
%mstore_bn254_pairing
// stack: addr4, 2*x4
%swap_mstore
// stack:
%endmacro
// cost: 6 stores + 6 pushes + 5 adds = 6*4 + 6*1 + 5*2 = 40
%macro store_fp254_6(ptr)
// stack: x0, x1, x2, x3, x4, x5
PUSH $ptr
// stack: ind0, x0, x1, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x1, x2, x3, x4, x5
PUSH $ptr
%add_const(1)
// stack: ind1, x1, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x2, x3, x4, x5
PUSH $ptr
%add_const(2)
// stack: ind2, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x3, x4, x5
PUSH $ptr
%add_const(3)
// stack: ind3, x3, x4, x5
%mstore_bn254_pairing
// stack: x4, x5
PUSH $ptr
%add_const(4)
// stack: ind4, x4, x5
%mstore_bn254_pairing
// stack: x5
PUSH $ptr
%add_const(5)
// stack: ind5, x5
%mstore_bn254_pairing
%store_fp254_6
// stack:
%endmacro
// cost: store (40) + i9 (9) = 49
%macro store_fp254_6_sh(ptr)
// stack: x0, x1, x2, x3, x4, x5
PUSH $ptr
%create_bn254_pairing_address
// stack: addr, x0, x1, x2, x3, x4, x5
%add_const(2)
// stack: ind2, x0, x1, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x1, x2, x3, x4, x5
PUSH $ptr
%add_const(3)
// stack: ind3, x1, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x2, x3, x4, x5
PUSH $ptr
%add_const(4)
// stack: ind4, x2, x3, x4, x5
%mstore_bn254_pairing
// stack: x3, x4, x5
PUSH $ptr
%add_const(5)
// stack: ind5, x3, x4, x5
%mstore_bn254_pairing
DUP1
// stack: addr2, addr2, x0, x1, x2, x3, x4, x5
SWAP2 MSTORE_GENERAL
// stack: addr2, x1, x2, x3, x4, x5
%add_const(1)
DUP1
// stack: addr3, addr3, x1, x2, x3, x4, x5
SWAP2 MSTORE_GENERAL
// stack: addr3, x2, x3, x4, x5
%add_const(1)
DUP1
// stack: addr4, addr4, x2, x3, x4, x5
SWAP2 MSTORE_GENERAL
// stack: addr4, x3, x4, x5
%add_const(1)
// stack: addr5, x3, x4, x5
%swap_mstore
// stack: x4, x5
%i9
// stack: y5, y4
PUSH $ptr
%create_bn254_pairing_address
DUP1
%add_const(1)
// stack: ind1, y5, y4
%mstore_bn254_pairing
// stack: y4
PUSH $ptr
// stack: ind0, y4
%mstore_bn254_pairing
// stack: addr1, addr, y5, y4
SWAP3
MSTORE_GENERAL
// stack: y5, addr1
MSTORE_GENERAL
// stack:
%endmacro
@ -864,264 +833,268 @@
%macro load_fp254_12
// stack: ptr
%create_bn254_pairing_address
DUP1
%add_const(10)
// stack: ind10, ptr
%mload_bn254_pairing
// stack: x10, ptr
// stack: addr10, addr
MLOAD_GENERAL
// stack: x10, addr
DUP2
%add_const(9)
// stack: ind09, x10, ptr
%mload_bn254_pairing
// stack: x09, x10, ptr
// stack: addr09, x10, addr
MLOAD_GENERAL
// stack: x09, x10, addr
DUP3
%add_const(8)
// stack: ind08, x09, x10, ptr
%mload_bn254_pairing
// stack: x08, x09, x10, ptr
// stack: addr08, x09, x10, addr
MLOAD_GENERAL
// stack: x08, x09, x10, addr
DUP4
%add_const(7)
// stack: ind07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x07, x08, x09, x10, ptr
// stack: addr07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x07, x08, x09, x10, addr
DUP5
%add_const(6)
// stack: ind06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x06, x07, x08, x09, x10, ptr
// stack: addr06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x06, x07, x08, x09, x10, addr
DUP6
%add_const(5)
// stack: ind05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x05, x06, x07, x08, x09, x10, ptr
// stack: addr05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x05, x06, x07, x08, x09, x10, addr
DUP7
%add_const(4)
// stack: ind04, x05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x04, x05, x06, x07, x08, x09, x10, ptr
// stack: addr04, x05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x04, x05, x06, x07, x08, x09, x10, addr
DUP8
%add_const(3)
// stack: ind03, x04, x05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x03, x04, x05, x06, x07, x08, x09, x10, ptr
// stack: addr03, x04, x05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x03, x04, x05, x06, x07, x08, x09, x10, addr
DUP9
%add_const(2)
// stack: ind02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
// stack: addr02, x03, x04, x05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x02, x03, x04, x05, x06, x07, x08, x09, x10, addr
DUP10
%add_const(1)
// stack: ind01, x02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
// stack: addr01, x02, x03, x04, x05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, addr
DUP11
%add_const(11)
// stack: ind11, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
%mload_bn254_pairing
// stack: x11, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, ptr
// stack: addr11, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, addr
MLOAD_GENERAL
// stack: x11, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, addr
SWAP11
// stack: ind00, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, x11
%mload_bn254_pairing
// stack: addr00, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, x11
MLOAD_GENERAL
// stack: x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, x11
%endmacro
%macro store_fp254_12
// stack: ptr, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, x10, x11
%create_bn254_pairing_address
SWAP11
// stack: x10, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
// stack: x10, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
DUP12
%add_const(10)
// stack: ind10, x10, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
// stack: addr10, x10, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
DUP11
// stack: ind00, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
// stack: addr00, x00, x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
DUP10
%add_const(01)
// stack: ind01, x01, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
// stack: addr01, x01, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
DUP9
%add_const(02)
// stack: ind02, x02, x03, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x03, x04, x05, x06, x07, x08, x09, ptr, x11
// stack: addr02, x02, x03, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x03, x04, x05, x06, x07, x08, x09, addr, x11
DUP8
%add_const(03)
// stack: ind03, x03, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x04, x05, x06, x07, x08, x09, ptr, x11
// stack: addr03, x03, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x04, x05, x06, x07, x08, x09, addr, x11
DUP7
%add_const(04)
// stack: ind04, x04, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x05, x06, x07, x08, x09, ptr, x11
// stack: addr04, x04, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x05, x06, x07, x08, x09, addr, x11
DUP6
%add_const(05)
// stack: ind05, x05, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x06, x07, x08, x09, ptr, x11
// stack: addr05, x05, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x06, x07, x08, x09, addr, x11
DUP5
%add_const(06)
// stack: ind06, x06, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x07, x08, x09, ptr, x11
// stack: addr06, x06, x07, x08, x09, addr, x11
%swap_mstore
// stack: x07, x08, x09, addr, x11
DUP4
%add_const(07)
// stack: ind07, x07, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x08, x09, ptr, x11
// stack: addr07, x07, x08, x09, addr, x11
%swap_mstore
// stack: x08, x09, addr, x11
DUP3
%add_const(08)
// stack: ind08, x08, x09, ptr, x11
%mstore_bn254_pairing
// stack: x09, ptr, x11
// stack: addr08, x08, x09, addr, x11
%swap_mstore
// stack: x09, addr, x11
DUP2
%add_const(09)
// stack: ind09, x09, ptr, x11
%mstore_bn254_pairing
// stack: ptr, x11
// stack: addr09, x09, addr, x11
%swap_mstore
// stack: addr, x11
%add_const(11)
// stack: ind11, x11
%mstore_bn254_pairing
// stack: addr11, x11
%swap_mstore
// stack:
%endmacro
/// moves fp254_12 from src..src+12 to dest..dest+12
/// these should not overlap. leaves dest on stack
/// these should not overlap. leaves scaled DEST on stack
%macro move_fp254_12
// stack: src, dest
PUSH @SEGMENT_BN_PAIRING
GET_CONTEXT
%build_address_no_offset
DUP1
// stack: ind00, src, dest
%mload_bn254_pairing
// stack: x00, src, dest
// stack: base_addr, base_addr, src, dest
SWAP3 ADD
// stack: DEST, src, base_addr
SWAP2 ADD
// stack: SRC, DEST
DUP1
// stack: addr00, SRC, DEST
MLOAD_GENERAL
// stack: x00, SRC, DEST
DUP3
// stack: ind00', x00, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr00', x00, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(1)
// stack: ind01, src, dest
%mload_bn254_pairing
// stack: x01, src, dest
// stack: addr01, SRC, DEST
MLOAD_GENERAL
// stack: x01, SRC, DEST
DUP3
%add_const(1)
// stack: ind01', x01, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr01', x01, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(2)
// stack: ind02, src, dest
%mload_bn254_pairing
// stack: x02, src, dest
// stack: addr02, SRC, DEST
MLOAD_GENERAL
// stack: x02, SRC, DEST
DUP3
%add_const(2)
// stack: ind02', x02, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr02', x02, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(3)
// stack: ind03, src, dest
%mload_bn254_pairing
// stack: x03, src, dest
// stack: addr03, SRC, DEST
MLOAD_GENERAL
// stack: x03, SRC, DEST
DUP3
%add_const(3)
// stack: ind03', x03, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr03', x03, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(4)
// stack: ind04, src, dest
%mload_bn254_pairing
// stack: x04, src, dest
// stack: addr04, SRC, DEST
MLOAD_GENERAL
// stack: x04, SRC, DEST
DUP3
%add_const(4)
// stack: ind04', x04, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr04', x04, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(5)
// stack: ind05, src, dest
%mload_bn254_pairing
// stack: x05, src, dest
// stack: addr05, SRC, DEST
MLOAD_GENERAL
// stack: x05, SRC, DEST
DUP3
%add_const(5)
// stack: ind05', x05, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr05', x05, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(6)
// stack: ind06, src, dest
%mload_bn254_pairing
// stack: x06, src, dest
// stack: addr06, SRC, DEST
MLOAD_GENERAL
// stack: x06, SRC, DEST
DUP3
%add_const(6)
// stack: ind06', x06, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr06', x06, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(7)
// stack: ind07, src, dest
%mload_bn254_pairing
// stack: x07, src, dest
// stack: addr07, SRC, DEST
MLOAD_GENERAL
// stack: x07, SRC, DEST
DUP3
%add_const(7)
// stack: ind07', x07, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr07', x07, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(8)
// stack: ind08, src, dest
%mload_bn254_pairing
// stack: x08, src, dest
// stack: addr08, SRC, DEST
MLOAD_GENERAL
// stack: x08, SRC, DEST
DUP3
%add_const(8)
// stack: ind08', x08, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr08', x08, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(9)
// stack: ind09, src, dest
%mload_bn254_pairing
// stack: x09, src, dest
// stack: addr09, SRC, DEST
MLOAD_GENERAL
// stack: x09, SRC, DEST
DUP3
%add_const(9)
// stack: ind09', x09, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr09', x09, SRC, DEST
%swap_mstore
// stack: SRC, DEST
DUP1
%add_const(10)
// stack: ind10, src, dest
%mload_bn254_pairing
// stack: x10, src, dest
// stack: addr10, SRC, DEST
MLOAD_GENERAL
// stack: x10, SRC, DEST
DUP3
%add_const(10)
// stack: ind10', x10, src, dest
%mstore_bn254_pairing
// stack: src, dest
// stack: addr10', x10, SRC, DEST
%swap_mstore
// stack: SRC, DEST
%add_const(11)
// stack: ind11, dest
%mload_bn254_pairing
// stack: x11, dest
// stack: addr11, DEST
MLOAD_GENERAL
// stack: x11, DEST
DUP2
%add_const(11)
// stack: ind11', x11, dest
%mstore_bn254_pairing
// stack: addr11', x11, DEST
%swap_mstore
%endmacro
%macro assert_eq_unit_fp254_12
%assert_eq_const(1)
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%assert_zero
%rep 10
OR
%endrep
%assert_zero
%endmacro