grassrootseconomics/openethereum
5
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

wip

Browse Source
This commit is contained in:
NikVolf 2017-03-27 19:44:35 +03:00
parent 3d2e9efb1e
commit 9271dd0cc7
1 changed files with 85 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

103
ethcore/src/builtin.rs
View File

@ -396,26 +396,103 @@ impl Impl for Bn128MulImpl {
} }
} }
mod bn128_gen {
use bn::{AffineG1, AffineG2, Fq, Fq2, G1, G2, Gt, pairing};
lazy_static! {
pub static ref P1: G1 = G1::from(AffineG1::new(
Fq::from_str("1").expect("1 is a valid field element"),
Fq::from_str("2").expect("2 is a valid field element"),
).expect("Generator P1(1, 2) is a valid curve point"));
}
lazy_static! {
pub static ref P2: G2 = G2::from(AffineG2::new(
Fq2::new(
Fq::from_str("1").expect("1 is a valid field element"),
Fq::from_str("2").expect("2 is a valid field element"),
),
Fq2::new(
Fq::from_str("1").expect("1 is a valid field element"),
Fq::from_str("2").expect("2 is a valid field element"),
),
).expect("Generator P2(i+2b, i+2b) is a valid curve point"));
}
lazy_static! {
pub static ref P1xP2: Gt = pairing(P1.clone(), P2.clone());
}
}
impl Impl for Bn128ParingImpl { impl Impl for Bn128ParingImpl {
// Can fail if any of the 2 points does not belong the bn128 curve // Can fail if any of the 2 points does not belong the bn128 curve
fn execute(&self, input: &[u8], output: &mut BytesRef) -> Result<(), Error> { fn execute(&self, input: &[u8], output: &mut BytesRef) -> Result<(), Error> {
use bn::{Fq, Fq2, AffineG1, AffineG2}; use bn::{AffineG1, AffineG2, Fq, Fq2, pairing, G1, G2};
let p1 = AffineG1::new( let elements = input.len() / 192; // (a, b_a, b_b - each 64-byte affine coordinates)
Fq::from_str("1").expect("1 is a valid field element"), if input.len() % 192 != 0 {
Fq::from_str("2").expect("2 is a valid field element"), return Err("Invalid input length, must be multiple of 192 (3 * (32*2))".into())
).expect("Generator P1(1, 2) is a valid curve point"); }
let ret_val = if input.len() == 0 {
U256::one()
} else {
let mut vals = Vec::new();
for idx in 0..elements {
let a_x = Fq::from_slice(&input[idx*192..idx*192+32])
.map_err(|_| Error::from("Invalid a argument x coordinate"))?;
let p2 = AffineG2::new( let a_y = Fq::from_slice(&input[idx*192+32..idx*192+64])
Fq2::new( .map_err(|_| Error::from("Invalid a argument y coordinate"))?;
Fq::from_str("1").expect("1 is a valid field element"),
Fq::from_str("2").expect("2 is a valid field element"), let b_b_x = Fq::from_slice(&input[idx*192+64..idx*192+96])
.map_err(|_| Error::from("Invalid b argument imaginary coeff x coordinate"))?;
let b_b_y = Fq::from_slice(&input[idx*192+96..idx*192+128])
.map_err(|_| Error::from("Invalid b argument imaginary coeff y coordinate"))?;
let b_a_x = Fq::from_slice(&input[idx*192+128..idx*192+160])
.map_err(|_| Error::from("Invalid b argument real coeff x coordinate"))?;
let b_a_y = Fq::from_slice(&input[idx*192+160..idx*192+192])
.map_err(|_| Error::from("Invalid b argument real coeff y coordinate"))?;
vals.push((
G1::from(
AffineG1::new(a_x, a_y).map_err(|_| Error::from("Invalid a argument - not on curve"))?
), ),
Fq2::new( G2::from(
Fq::from_str("1").expect("1 is a valid field element"), AffineG2::new(
Fq::from_str("2").expect("2 is a valid field element"), Fq2::new(b_a_x, b_a_y),
Fq2::new(b_b_x, b_b_y),
).map_err(|_| Error::from("Invalid b argument - not on curve"))?
), ),
).expect("Generator P2(i+2b, i+2b) is a valid curve point"); ));
};
let mul = if elements == 1 {
let (a, b) = vals[0];
pairing(a, b)
} else {
let mut drain = vals.drain(..);
let mut mul = {
let (a, b) = drain.next()
.expect("Checked above that elements > 1, so 0th element should exist; qed");
pairing(a, b)
};
for _ in 1..elements {
let (a, b) = drain.next()
.expect("idx-th element should exist, because we do next() no more than elements-1 times; qed");
mul = mul * pairing(a, b);
}
mul
};
if mul == *bn128_gen::P1xP2 {
U256::one()
} else {
U256::zero()
}
};
Ok(()) Ok(())
} }