zec
/
mpc
mirror of https://github.com/zcash/mpc.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

More comparisons and tests of lagrange coefficients in G2.

This commit is contained in:
Sean Bowe 2016-08-06 07:23:46 -06:00
parent 5a929abebe
commit ff21686e97
No known key found for this signature in database
GPG Key ID: 95684257D8F8B031
3 changed files with 38 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
snark/src/lib.rs
View File

@ -39,7 +39,8 @@ extern "C" {
Bt2: *const G2,
Ct: *const G1) -> bool;
fn libsnarkwrap_test_compare_tau(
i: *const G1,
i1: *const G1,
i2: *const G2,
tau: *const Fr,
d: libc::uint64_t,
qap: *const libc::c_void) -> bool;
@ -123,8 +124,9 @@ pub fn getqap() -> (usize, usize, Fr, CS) {
/// Check that the lagrange coefficients computed by tau over
/// G1 equal the expected vector.
pub fn compare_tau(v: &[G1], tau: &Fr, cs: &CS) -> bool {
unsafe { libsnarkwrap_test_compare_tau(&v[0], tau, v.len() as u64, cs.0) }
pub fn compare_tau(v1: &[G1], v2: &[G2], tau: &Fr, cs: &CS) -> bool {
assert_eq!(v1.len(), v2.len());
unsafe { libsnarkwrap_test_compare_tau(&v1[0], &v2[0], tau, v1.len() as u64, cs.0) }
}
pub trait Pairing<Other: Group> {

6
snark/src/libsnarkwrap.cpp
View File

@ -208,7 +208,8 @@ extern "C" void libsnarkwrap_dropcs(r1cs_constraint_system<curve_Fr> *cs)
}
extern "C" bool libsnarkwrap_test_compare_tau(
const curve_G1 *inputs,
const curve_G1 *inputs1,
const curve_G2 *inputs2,
const curve_Fr *tau,
uint64_t d,
const r1cs_constraint_system<curve_Fr> *cs
@ -221,7 +222,8 @@ extern "C" bool libsnarkwrap_test_compare_tau(
bool res = true;
for (size_t i = 0; i < d; i++) {
res &= (coeffs[i] * curve_G1::one()) == inputs[i];
res &= (coeffs[i] * curve_G1::one()) == inputs1[i];
res &= (coeffs[i] * curve_G2::one()) == inputs2[i];
}
return res;

43
src/fft.rs
View File

@ -1,6 +1,16 @@
use snark::{Group, Fr};
pub fn fft<G: Group>(v: &[G], omega: Fr) -> Vec<G>
pub fn lagrange_coeffs<G: Group>(v: &[G], omega: Fr, d: usize) -> Vec<G>
{
let overd = Fr::from_str(&format!("{}", d)).inverse();
fft(v, omega)
.into_iter()
.rev() // coefficients are in reverse
.map(|e| e * overd) // divide by d
.collect::<Vec<_>>()
}
fn fft<G: Group>(v: &[G], omega: Fr) -> Vec<G>
{
if v.len() == 2 {
vec![
@ -37,7 +47,7 @@ pub fn fft<G: Group>(v: &[G], omega: Fr) -> Vec<G>
#[cfg(test)]
mod test {
use super::fft;
use super::lagrange_coeffs;
use snark::*;
use util::*;
@ -53,25 +63,30 @@ mod test {
// Generate powers of tau in G1, from 0 to d exclusive of d
let powers_of_tau_g1 = TauPowers::new(tau).take(d).map(|e| G1::one() * e).collect::<Vec<_>>();
// Generate powers of tau in G2, from 0 to d exclusive of d
let powers_of_tau_g2 = TauPowers::new(tau).take(d).map(|e| G2::one() * e).collect::<Vec<_>>();
// Perform FFT to compute lagrange coeffs in G1/G2
let overd = Fr::from_str(&format!("{}", d)).inverse();
let lc1 = fft(&powers_of_tau_g1, omega) // omit tau^d
.into_iter()
.rev() // coefficients are in reverse
.map(|e| e * overd) // divide by d
.collect::<Vec<_>>();
let lc2 = fft(&powers_of_tau_g2, omega) // omit tau^d
.into_iter()
.rev() // coefficients are in reverse
.map(|e| e * overd) // divide by d
.collect::<Vec<_>>();
let lc1 = lagrange_coeffs(&powers_of_tau_g1, omega, d);
let lc2 = lagrange_coeffs(&powers_of_tau_g2, omega, d);
{
// Perform G1 FFT with wrong omega
let lc1 = lagrange_coeffs(&powers_of_tau_g1, Fr::random(), d);
assert!(!compare_tau(&lc1, &lc2, &tau, &cs));
}
{
// Perform G2 FFT with wrong omega
let lc2 = lagrange_coeffs(&powers_of_tau_g2, Fr::random(), d);
assert!(!compare_tau(&lc1, &lc2, &tau, &cs));
}
// Compare against libsnark
assert!(compare_tau(&lc1, &tau, &cs));
assert!(compare_tau(&lc1, &lc2, &tau, &cs));
// Wrong tau
assert!(!compare_tau(&lc1, &Fr::random(), &cs));
assert!(!compare_tau(&lc1, &lc2, &Fr::random(), &cs));
// Evaluate At, Ct in G1 and Bt in G1/G2
let mut At = (0..num_vars).map(|_| G1::zero()).collect::<Vec<_>>();