PoS_EVM
/
mcl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
a portable and fast pairing-based cryptography library
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
859 Commits
7 Branches
3 Tags
6.5 MiB
Tag: Branch: Tree: 4ce42c26b4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4ce42c26b4'
${ noResults }
mcl/test/bn256_test.cpp

294 lines
8.0 KiB
Raw Normal View History Unescape

add apis to precompute
8 years ago
#include <cybozu/test.hpp>
#include <mcl/bn256.hpp>
#define BN256_DEFINE_STRUCT
#include <mcl/bn256.h>
#include <iostream>
template<size_t N>
std::ostream dump(std::ostream& os, const uint64_t (&x)[N])
{
for (size_t i = 0; i < N; i++) {
char buf[64];
CYBOZU_SNPRINTF(buf, sizeof(buf), "%016llx", (long long)x[i]);
os << buf;
}
return os;
}
using namespace mcl::bn256;
CYBOZU_TEST_AUTO(init)
{
int ret;
CYBOZU_TEST_EQUAL(sizeof(BN256_Fr), sizeof(Fr));
CYBOZU_TEST_EQUAL(sizeof(BN256_G1), sizeof(G1));
CYBOZU_TEST_EQUAL(sizeof(BN256_G2), sizeof(G2));
CYBOZU_TEST_EQUAL(sizeof(BN256_GT), sizeof(Fp12));
ret = BN256_setErrFile("stderr");
CYBOZU_TEST_EQUAL(ret, 0);
ret = BN256_init();
CYBOZU_TEST_EQUAL(ret, 0);
}
CYBOZU_TEST_AUTO(Fr)
{
BN256_Fr x, y;
memset(&x, 0xff, sizeof(x));
CYBOZU_TEST_ASSERT(!BN256_Fr_isValid(&x));
memset(&x, 1, sizeof(x));
CYBOZU_TEST_ASSERT(BN256_Fr_isValid(&x));
CYBOZU_TEST_ASSERT(!BN256_Fr_isZero(&x));
BN256_Fr_clear(&x);
CYBOZU_TEST_ASSERT(BN256_Fr_isZero(&x));
BN256_Fr_setInt(&x, 1);
CYBOZU_TEST_ASSERT(BN256_Fr_isOne(&x));
BN256_Fr_setInt(&y, -1);
CYBOZU_TEST_ASSERT(!BN256_Fr_isSame(&x, &y));
BN256_Fr_copy(&y, &x);
CYBOZU_TEST_ASSERT(BN256_Fr_isSame(&x, &y));
BN256_Fr_setMsg(&x, "");
BN256_Fr_setMsg(&y, "abc");
CYBOZU_TEST_ASSERT(!BN256_Fr_isSame(&x, &y));
BN256_Fr_setMsg(&x, "abc");
CYBOZU_TEST_ASSERT(BN256_Fr_isSame(&x, &y));
char buf[1024];
BN256_Fr_setInt(&x, 12345678);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "12345678");
BN256_Fr_setInt(&x, -7654321);
BN256_Fr_neg(&x, &x);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "7654321");
BN256_Fr_setInt(&y, 123 - 7654321);
BN256_Fr_add(&x, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "123");
BN256_Fr_setInt(&y, 100);
BN256_Fr_sub(&x, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "23");
BN256_Fr_mul(&x, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "2300");
BN256_Fr_div(&x, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "23");
CYBOZU_TEST_ASSERT(!BN256_Fr_setStr(&x, "12345678901234567"));
CYBOZU_TEST_ASSERT(!BN256_Fr_setStr(&y, "20000000000000000"));
BN256_Fr_add(&x, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "32345678901234567");
BN256_Fr_setInt(&x, 1);
BN256_Fr_neg(&x, &x);
CYBOZU_TEST_ASSERT(!BN256_Fr_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_ASSERT(!BN256_Fr_setStr(&y, buf));
CYBOZU_TEST_ASSERT(BN256_Fr_isSame(&x, &y));
}
CYBOZU_TEST_AUTO(G1)
{
BN256_G1 x, y, z;
memset(&x, 0xff, sizeof(x));
CYBOZU_TEST_ASSERT(!BN256_G1_isValid(&x));
BN256_G1_clear(&x);
CYBOZU_TEST_ASSERT(BN256_G1_isValid(&x));
BN256_G1_setStr(&y, "0");
CYBOZU_TEST_ASSERT(BN256_G1_isZero(&x));
CYBOZU_TEST_ASSERT(BN256_G1_isZero(&y));
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&y, "1 -1 1")); // "1 <x> <y>"
CYBOZU_TEST_ASSERT(!BN256_G1_isZero(&y));
char buf[1024];
CYBOZU_TEST_ASSERT(!BN256_G1_getStr(buf, sizeof(buf), &y));
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&x, buf));
CYBOZU_TEST_ASSERT(BN256_G1_isSame(&x, &y));
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&x, "1 -1 -1")); // "1 <x> <y>"
CYBOZU_TEST_ASSERT(!BN256_G1_isZero(&x));
BN256_G1_add(&x, &x, &y);
CYBOZU_TEST_ASSERT(BN256_G1_isZero(&x));
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&x, "1 -1 -1")); // "1 <x> <y>"
BN256_G1_neg(&x, &x);
CYBOZU_TEST_ASSERT(BN256_G1_isSame(&x, &y));
CYBOZU_TEST_ASSERT(!BN256_G1_hashAndMapTo(&y, "abc"));
BN256_G1_dbl(&x, &y); // x = 2y
BN256_G1_add(&z, &y, &y);
CYBOZU_TEST_ASSERT(BN256_G1_isSame(&x, &z));
BN256_G1_add(&z, &z, &y); // z = 3y
BN256_Fr n;
BN256_Fr_setInt(&n, 3);
BN256_G1_mul(&x, &y, &n); // x = 3y
CYBOZU_TEST_ASSERT(BN256_G1_isSame(&x, &z));
BN256_G1_sub(&x, &x, &y); // x = 2y
BN256_Fr_setInt(&n, 2);
BN256_G1_mul(&z, &y, &n); // z = 2y
CYBOZU_TEST_ASSERT(BN256_G1_isSame(&x, &z));
}
CYBOZU_TEST_AUTO(G2)
{
BN256_G2 x, y, z;
memset(&x, 0xff, sizeof(x));
CYBOZU_TEST_ASSERT(!BN256_G2_isValid(&x));
BN256_G2_clear(&x);
CYBOZU_TEST_ASSERT(BN256_G2_isValid(&x));
BN256_G2_setStr(&y, "0");
CYBOZU_TEST_ASSERT(BN256_G2_isZero(&x));
CYBOZU_TEST_ASSERT(BN256_G2_isZero(&y));
CYBOZU_TEST_ASSERT(!BN256_G2_hashAndMapTo(&x, "abc"));
char buf[1024];
CYBOZU_TEST_ASSERT(!BN256_G2_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_ASSERT(!BN256_G2_setStr(&y, buf));
CYBOZU_TEST_ASSERT(BN256_G2_isSame(&x, &y));
BN256_G2_neg(&x, &x);
BN256_G2_add(&x, &x, &y);
CYBOZU_TEST_ASSERT(BN256_G2_isZero(&x));
BN256_G2_dbl(&x, &y); // x = 2y
BN256_G2_add(&z, &y, &y);
CYBOZU_TEST_ASSERT(BN256_G2_isSame(&x, &z));
BN256_G2_add(&z, &z, &y); // z = 3y
BN256_Fr n;
BN256_Fr_setInt(&n, 3);
BN256_G2_mul(&x, &y, &n); // x = 3y
CYBOZU_TEST_ASSERT(BN256_G2_isSame(&x, &z));
BN256_G2_sub(&x, &x, &y); // x = 2y
BN256_Fr_setInt(&n, 2);
BN256_G2_mul(&z, &y, &n); // z = 2y
CYBOZU_TEST_ASSERT(BN256_G2_isSame(&x, &z));
}
CYBOZU_TEST_AUTO(GT)
{
BN256_GT x, y, z;
memset(&x, 1, sizeof(x));
CYBOZU_TEST_ASSERT(!BN256_GT_isZero(&x));
BN256_GT_clear(&x);
CYBOZU_TEST_ASSERT(BN256_GT_isZero(&x));
char buf[1024];
CYBOZU_TEST_ASSERT(!BN256_GT_setStr(&x, "1 2 3 4 5 6 7 8 9 10 11 12"));
CYBOZU_TEST_ASSERT(!BN256_GT_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_EQUAL(buf, "1 2 3 4 5 6 7 8 9 10 11 12");
BN256_GT_copy(&y, &x);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&x, &y));
CYBOZU_TEST_ASSERT(!BN256_GT_setStr(&z, "-1 -2 -3 -4 -5 -6 -7 -8 -9 -10 -11 -12"));
CYBOZU_TEST_ASSERT(!BN256_GT_getStr(buf, sizeof(buf), &z));
CYBOZU_TEST_ASSERT(!BN256_GT_setStr(&y, buf));
BN256_GT_neg(&z, &y);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&x, &z));
BN256_GT_add(&y, &x, &y);
CYBOZU_TEST_ASSERT(BN256_GT_isZero(&y));
CYBOZU_TEST_ASSERT(!BN256_GT_setStr(&y, "2 0 0 0 0 0 0 0 0 0 0 0"));
BN256_GT_mul(&z, &x, &y);
CYBOZU_TEST_ASSERT(!BN256_GT_getStr(buf, sizeof(buf), &z));
CYBOZU_TEST_EQUAL(buf, "2 4 6 8 10 12 14 16 18 20 22 24");
BN256_GT_div(&z, &z, &y);
CYBOZU_TEST_ASSERT(!BN256_GT_getStr(buf, sizeof(buf), &x));
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&x, &z));
BN256_Fr n;
BN256_Fr_setInt(&n, 3);
BN256_GT_pow(&z, &x, &n);
BN256_GT_mul(&y, &x, &x);
BN256_GT_mul(&y, &y, &x);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&y, &z));
}
CYBOZU_TEST_AUTO(pairing)
{
BN256_Fr a, b, ab;
BN256_Fr_setInt(&a, 123);
BN256_Fr_setInt(&b, 456);
BN256_Fr_mul(&ab, &a, &b);
BN256_G1 P, aP;
BN256_G2 Q, bQ;
BN256_GT e, e1, e2;
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&P, "1 -1 1")); // "1 <x> <y>"
CYBOZU_TEST_ASSERT(!BN256_G2_hashAndMapTo(&Q, "1"));
BN256_G1_mul(&aP, &P, &a);
BN256_G2_mul(&bQ, &Q, &b);
BN256_pairing(&e, &P, &Q);
BN256_GT_pow(&e1, &e, &a);
BN256_pairing(&e2, &aP, &Q);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&e1, &e2));
BN256_GT_pow(&e1, &e, &b);
BN256_pairing(&e2, &P, &bQ);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&e1, &e2));
}
CYBOZU_TEST_AUTO(precomputed)
{
BN256_G1 P1, P2;
BN256_G2 Q1, Q2;
CYBOZU_TEST_ASSERT(!BN256_G1_setStr(&P1, "1 -1 1")); // "1 <x> <y>"
CYBOZU_TEST_ASSERT(!BN256_G1_hashAndMapTo(&P2, "123"));
CYBOZU_TEST_ASSERT(!BN256_G2_hashAndMapTo(&Q1, "1"));
CYBOZU_TEST_ASSERT(!BN256_G2_hashAndMapTo(&Q2, "2"));
const int size = BN256_getUint64NumToPrecompute();
std::vector<uint64_t> Q1buf, Q2buf;
Q1buf.resize(size);
Q2buf.resize(size);
BN256_precomputeG2(Q1buf.data(), &Q1);
BN256_precomputeG2(Q2buf.data(), &Q2);
BN256_GT e1, e2, f1, f2, f3;
BN256_pairing(&e1, &P1, &Q1);
BN256_precomputedMillerLoop(&f1, &P1, Q1buf.data());
BN256_GT_finalExp(&f1, &f1);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&e1, &f1));
BN256_pairing(&e2, &P2, &Q2);
BN256_precomputedMillerLoop(&f2, &P2, Q2buf.data());
BN256_GT_finalExp(&f2, &f2);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&e2, &f2));
BN256_precomputedMillerLoop2(&f3, &P1, Q1buf.data(), &P2, Q2buf.data());
BN256_GT_finalExp(&f3, &f3);
BN256_GT_mul(&e1, &e1, &e2);
CYBOZU_TEST_ASSERT(BN256_GT_isSame(&e1, &f3));
}
CYBOZU_TEST_AUTO(end)
{
int ret = BN256_setErrFile("");
CYBOZU_TEST_EQUAL(ret, 0);
}