logos-storage/plonky2
1
0
Fork 0
mirror of https://github.com/logos-storage/plonky2.git synced 2026-01-11 02:03:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

new power works

Browse Source
This commit is contained in:
Dmitry Vagner 2023-01-24 17:08:29 +07:00
parent 5deb164865
commit c9b005d22e
3 changed files with 97 additions and 89 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

166
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/final_power.asm
View File

@ -18,62 +18,66 @@
/// return y * y2 * y4 * y0
global final_exp:
// stack: val, retdest
// stack: val, retdest
%stack (val) -> (val, 300, val)
// stack: val, 300, val, retdest
%move_fp12
// stack: 300, val, retdest
%stack () -> (1, 1, 1)
// stack: 1, 1, 1, val, retdest
// stack: 1, 1, 1, 300, val, retdest
%mstore_kernel_general(200)
%mstore_kernel_general(224)
%mstore_kernel_general(212)
// stack: val, retdest {200: y0, 212: y2, 224: y4}
stack () -> 64, 62, 65
// stack: 64, 62, 65, val, retdest {200: y0, 212: y2, 224: y4}
// stack: 300, val, retdest {200: y0, 212: y2, 224: y4}
%stack () -> (64, 62, 65)
// stack: 64, 62, 65, 300, val, retdest {200: y0, 212: y2, 224: y4}
%jump(power_loop_4)
custom_powers:
// stack: val, retdest {200: y0, 212: y2, 224: y4}
%stack () -> (200, 236, make_y1_1)
// stack: 200, 236, make_y1_1, val, retdest {200: y0, 212: y2, 224: y4}
%stack () -> (200, 236, make_term_1)
// stack: 200, 236, make_term_1, val, retdest {200: y0, 212: y2, 224: y4}
%jump(inv_fp12)
make_y1_1:
// stack: val, retdest {236: y0^-1, 212: y2, 224: y4}
%stack () -> (212, 224, 224, make_y1_2)
// stack: 212, 224, 224, make_y1_2, val, retdest {236: y0^-1, 212: y2, 224: y4}
make_term_1:
// stack: val, retdest {212: y2, 224: y4, 236: y0^-1}
%stack () -> (212, 224, 224, make_term_2)
// stack: 212, 224, 224, make_term_2, val, retdest {212: y2, 224: y4, 236: y0^-1}
%jump(mul_fp12)
make_y1_2:
// stack: val, retdest {236: y0^-1, 212: y2, 224: y4 * y2}
%stack () -> (212, 224, 224, make_y1_3)
// stack: 212, 224, 224, make_y1_3, val, retdest {236: y0^-1, 212: y2, 224: y4 * y2}
make_term_2:
// stack: val, retdest {212: y2, 224: y4 * y2, 236: y0^-1}
%stack () -> (212, 224, 224, make_term_3)
// stack: 212, 224, 224, make_term_3, val, retdest {212: y2, 224: y4 * y2, 236: y0^-1}
%jump(mul_fp12)
make_y1_3:
// stack: val, retdest {236: y0^-1, 212: y2, 224: y4 * y2^2}
make_term_3:
// stack: val, retdest {212: y2, 224: y4 * y2^2, 236: y0^-1}
%stack () -> (236, 224, 224, final_power)
// stack: 236, 224, 224, final_power, val, retdest {236: y0^-1, 212: y2, 224: y4 * y2^2}
// stack: 236, 224, 224, final_power, val, retdest {212: y2, 224: y4 * y2^2, 236: y0^-1}
%jump(mul_fp12)
final_power:
// stack: val, retdest {val: y , 212: y^a2 , 224: y^a1 , 236: y^a0}
// stack: val, retdest {val: y , 212: y^a2 , 224: y^a1 , 236: y^a0}
%frob_fp12_3
// stack: val, retdest {val: y_3, 212: y^a2 , 224: y^a1 , 236: y^a0}
// stack: val, retdest {val: y_3, 212: y^a2 , 224: y^a1 , 236: y^a0}
%stack () -> (212, 212)
%frob_fp12_2_
POP
// stack: val, retdest {val: y_3, 212: (y^a2)_2, 224: y^a1 , 236: y^a0}
// stack: val, retdest {val: y_3, 212: (y^a2)_2, 224: y^a1 , 236: y^a0}
PUSH 224
%frob_fp12_1
POP
// stack: val, retdest {val: y_3, 212: (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
// stack: val, retdest {val: y_3, 212: (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
%stack (val) -> (212, val, val, penult_mul, val)
// stack: 212, val, val, penult_mul, val, retdest {val: y_3, 212: (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
// stack: 212, val, val, penult_mul, val, retdest {val: y_3, 212: (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
%jump(mul_fp12)
penult_mul:
// stack: val, retdest {val: y_3 * (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
// stack: val, retdest {val: y_3 * (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
%stack (val) -> (224, val, val, final_mul, val)
// stack: 224, val, val, final_mul, val, retdest {val: y_3 * (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
// stack: 224, val, val, final_mul, val, retdest {val: y_3 * (y^a2)_2, 224: (y^a1)_1, 236: y^a0}
%jump(mul_fp12)
final_mul:
// stack: val, retdest {val: y_3 * (y^a2)_2 * (y^a1)_1, 236: y^a0}
// stack: val, retdest {val: y_3 * (y^a2)_2 * (y^a1)_1, 236: y^a0}
%stack (val) -> (236, val, val)
// stack: 236, val, val, retdest {val: y_3 * (y^a2)_2 * (y^a1)_1, 236: y^a0}
// stack: 236, val, val, retdest {val: y_3 * (y^a2)_2 * (y^a1)_1, 236: y^a0}
%jump(mul_fp12)
@ -108,122 +112,122 @@ final_mul:
/// y0 *= acc
power_loop_4:
// stack: i , j, k, val {200: y0, 212: y2, 224: y4}
// stack: i , j, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 ISZERO
// stack: break?, i , j, k, val {200: y0, 212: y2, 224: y4}
// stack: break?, i , j, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_4_end)
// stack: i , j, k, val {200: y0, 212: y2, 224: y4}
// stack: i , j, k, sqr {200: y0, 212: y2, 224: y4}
%sub_const(1)
// stack: i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 %mload_kernel_code(power_data_4)
// stack: abc, i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: abc, i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 %lt_const(100)
// stack: skip?, abc, i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: skip?, abc, i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_4_b)
// stack: abc, i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: abc, i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
%sub_const(100)
// stack: bc, i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: bc, i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_4_b PUSH 224 DUP1 DUP8
// stack: val, 224, 224, power_loop_4_b, bc, i-1, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 224, 224, power_loop_4_b, bc, i-1, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_4_b:
// stack: bc, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: bc, i, j, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 %lt_const(10)
// stack: skip?, bc, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: skip?, bc, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_4_c)
// stack: bc, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: bc, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%sub_const(10)
// stack: c, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: c, i, j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_4_c PUSH 212 DUP1 DUP8
// stack: val, 212, 212, power_loop_4_c, c, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 212, 212, power_loop_4_c, c, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_4_c:
// stack: c, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: c, i, j, k, sqr {200: y0, 212: y2, 224: y4}
ISZERO
// stack: skip?, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: skip?, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_4_sq)
// stack: i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: i, j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_4_sq PUSH 200 DUP1 DUP7
// stack: val, 200, 200, power_loop_4_sq, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 200, 200, power_loop_4_sq, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_4_sq:
// stack: i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: i, j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_4 DUP5 DUP1
// stack: val, val, power_loop_4, i, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, sqr, power_loop_4, i, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(square_fp12)
power_loop_4_end:
// stack: 0, j, k, val {200: y0, 212: y2, 224: y4}
// stack: 0, j, k, sqr {200: y0, 212: y2, 224: y4}
POP
// stack: j, k, val {200: y0, 212: y2, 224: y4}
// stack: j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_2 PUSH 224 DUP1 DUP6
// stack: val, 224, 224, power_loop_2, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 224, 224, power_loop_2, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_2:
// stack: j , k, val {200: y0, 212: y2, 224: y4}
// stack: j , k, sqr {200: y0, 212: y2, 224: y4}
DUP1 ISZERO
// stack: break?, j , k, val {200: y0, 212: y2, 224: y4}
// stack: break?, j , k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_2_end)
// stack: j , k, val {200: y0, 212: y2, 224: y4}
// stack: j , k, sqr {200: y0, 212: y2, 224: y4}
%sub_const(1)
// stack: j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: j-1, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 %mload_kernel_code(power_data_2)
// stack: ab, j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: ab, j-1, k, sqr {200: y0, 212: y2, 224: y4}
DUP1 %lt_const(10)
// stack: skip?, ab, j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: skip?, ab, j-1, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_2_b)
// stack: ab, j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: ab, j-1, k, sqr {200: y0, 212: y2, 224: y4}
%sub_const(10)
// stack: b, j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: b, j-1, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_2_b PUSH 212 DUP1 DUP7
// stack: val, 212, 212, power_loop_2_b, b, j-1, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 212, 212, power_loop_2_b, b, j-1, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_2_b:
// stack: b, j, k, val {200: y0, 212: y2, 224: y4}
// stack: b, j, k, sqr {200: y0, 212: y2, 224: y4}
ISZERO
// stack: skip?, j, k, val {200: y0, 212: y2, 224: y4}
// stack: skip?, j, k, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_2_sq)
// stack: j, k, val {200: y0, 212: y2, 224: y4}
// stack: j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_2_sq PUSH 200 DUP1 DUP6
// stack: val, 200, 200, power_loop_2_sq, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 200, 200, power_loop_2_sq, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_2_sq:
// stack: j, k, val {200: y0, 212: y2, 224: y4}
// stack: j, k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_2 DUP4 DUP1
// stack: val, val, power_loop_2, j, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, sqr, power_loop_2, j, k, sqr {200: y0, 212: y2, 224: y4}
%jump(square_fp12)
power_loop_2_end:
// stack: 0, k, val {200: y0, 212: y2, 224: y4}
// stack: 0, k, sqr {200: y0, 212: y2, 224: y4}
POP
// stack: k, val {200: y0, 212: y2, 224: y4}
// stack: k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_0 PUSH 212 DUP1 DUP5
// stack: val, 212, 212, power_loop_0, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 212, 212, power_loop_0, k, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_0:
// stack: k , val {200: y0, 212: y2, 224: y4}
// stack: k , sqr {200: y0, 212: y2, 224: y4}
DUP1 ISZERO
// stack: break?, k , val {200: y0, 212: y2, 224: y4}
// stack: break?, k , sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_0_end)
// stack: k , val {200: y0, 212: y2, 224: y4}
// stack: k , sqr {200: y0, 212: y2, 224: y4}
%sub_const(1)
// stack: k-1, val {200: y0, 212: y2, 224: y4}
// stack: k-1, sqr {200: y0, 212: y2, 224: y4}
DUP1 %mload_kernel_code(power_data_0)
// stack: a, k-1, val {200: y0, 212: y2, 224: y4}
// stack: a, k-1, sqr {200: y0, 212: y2, 224: y4}
ISZERO
// stack: skip?, k-1, val {200: y0, 212: y2, 224: y4}
// stack: skip?, k-1, sqr {200: y0, 212: y2, 224: y4}
%jumpi(power_loop_0_sq)
// stack: k-1, val {200: y0, 212: y2, 224: y4}
// stack: k-1, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_0_sq PUSH 200 DUP1 DUP5
// stack: val, 200, 200, power_loop_0_sq, k-1, val {200: y0, 212: y2, 224: y4}
// stack: sqr, 200, 200, power_loop_0_sq, k-1, sqr {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)
power_loop_0_sq:
// stack: k, val {200: y0, 212: y2, 224: y4}
// stack: k, sqr {200: y0, 212: y2, 224: y4}
PUSH power_loop_0 DUP3 DUP1
// stack: val, val, power_loop_0, k, val {200: y0, 212: y2, 224: y4}
// stack: sqr, sqr, power_loop_0, k, sqr {200: y0, 212: y2, 224: y4}
%jump(square_fp12)
power_loop_0_end:
// stack: 0, val {200: y0, 212: y2, 224: y4}
%stack (i, val) -> (200, val, 200, custom_powers, val)
// stack: 200, val, 200, custom_powers, val {200: y0, 212: y2, 224: y4}
// stack: 0, sqr {200: y0, 212: y2, 224: y4}
%stack (i, sqr) -> (200, sqr, 200, custom_powers)
// stack: 200, sqr, 200, custom_powers {200: y0, 212: y2, 224: y4}
%jump(mul_fp12)

19
evm/src/cpu/kernel/asm/curve/bn254/curve_arithmetic/tate_pairing.asm
View File

@ -13,8 +13,10 @@ global tate:
/// y = second_exp(y)
/// return final_exponentiation(y)
global make_invariant:
/// def first_exp(t):
/// return t.frob(6) / t
/// map t to t^(p^6 - 1) via
/// def first_exp(t):
/// return t.frob(6) / t
// stack: out, retdest {out: y}
%stack (out) -> (out, 100, first_exp, out)
// stack: out, 100, first_exp, out, retdest {out: y}
@ -27,12 +29,13 @@ global first_exp:
// stack: out, 100, out, second_exp, out, retdest {out: y_6, 100: y^-1}
%jump(mul_fp12)
/// def second_exp(t):
/// return t.frob(2) * t
/// map t to t^(p^2 + 1) via
/// def second_exp(t):
/// return t.frob(2) * t
global second_exp:
// stack: out, retdest {out: y}
%stack (out) -> (out, 100, out, final_exp, out)
// stack: out, 100, out, final_exp, out, retdest {out: y}
// stack: out, retdest {out: y}
%stack (out) -> (out, 100, out, out, final_exp, out)
// stack: out, 100, out, out, final_exp, out, retdest {out: y}
%frob_fp12_2_
// stack: 100, out, final_exp, out, retdest {out: y, 100: y_2}
// stack: 100, out, out, final_exp, out, retdest {out: y, 100: y_2}
%jump(mul_fp12)

1
evm/src/cpu/kernel/tests/bn254.rs
View File

@ -224,6 +224,7 @@ fn test_tate() -> Result<()> {
};
let interpreter = run_setup_interpreter(setup).unwrap();
let output: Vec<U256> = extract_kernel_output(out..out + 12, interpreter);
// let output: Vec<U256> = interpreter.stack().to_vec();
let expected = fp12_on_stack(tate(CURVE_GENERATOR, TWISTED_GENERATOR));
assert_eq!(output, expected);