MastersThesis/PQ_TIIGER_TLS/sal/miracl-ubuntu22-11-04-24/includes/pair8_BLS48556.h

/*
 * Copyright (c) 2012-2020 MIRACL UK Ltd.
 *
 * This file is part of MIRACL Core
 * (see https://github.com/miracl/core).
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

#ifndef PAIR8_BLS48556_H
#define PAIR8_BLS48556_H

#include "fp48_BLS48556.h"
#include "ecp8_BLS48556.h"
#include "ecp_BLS48556.h"

using namespace core;

namespace BLS48556 {
/* Pairing constants */

extern const B560_58::BIG CURVE_Bnx; /**< BN curve x parameter */
extern const B560_58::BIG CURVE_Cru; /**< BN curve Cube Root of Unity */

extern const B560_58::BIG CURVE_W[2];	 /**< BN curve constant for GLV decomposition */
extern const B560_58::BIG CURVE_SB[2][2]; /**< BN curve constant for GLV decomposition */
extern const B560_58::BIG CURVE_WB[4];	 /**< BN curve constant for GS decomposition */
extern const B560_58::BIG CURVE_BB[4][4]; /**< BN curve constant for GS decomposition */

/* Pairing function prototypes */

/**	@brief Precompute line functions details for fixed G2 value
 *
	@param T array of precomputed FP16 partial line functions
	@param GV a fixed ECP8 instance
 */
extern void PAIR_precomp(BLS48556::FP16 T[], ECP8* GV);


/**	@brief Calculate Miller loop for Optimal ATE pairing e(P,Q)
 *
	@param r FP48 result of the pairing calculation e(P,Q)
	@param P ECP8 instance, an element of G2
	@param Q ECP instance, an element of G1

 */
extern void PAIR_ate(BLS48556::FP48 *r, ECP8 *P, ECP *Q);
/**	@brief Calculate Miller loop for Optimal ATE double-pairing e(P,Q).e(R,S)
 *
	Faster than calculating two separate pairings
	@param r FP48 result of the pairing calculation e(P,Q).e(R,S), an element of GT
	@param P ECP8 instance, an element of G2
	@param Q ECP instance, an element of G1
	@param R ECP8 instance, an element of G2
	@param S ECP instance, an element of G1
 */
extern void PAIR_double_ate(BLS48556::FP48 *r, ECP8 *P, ECP *Q, ECP8 *R, ECP *S);
/**	@brief Final exponentiation of pairing, converts output of Miller loop to element in GT
 *
	Here p is the internal modulus, and r is the group order
	@param x FP48, on exit = x^((p^12-1)/r)
 */
extern void PAIR_fexp(BLS48556::FP48 *x);
/**	@brief Fast point multiplication of a member of the group G1 by a BIG number
 *
	May exploit endomorphism for speed.
	@param Q ECP member of G1.
	@param b BIG multiplier

 */
extern void PAIR_G1mul(ECP *Q, B560_58::BIG b);
/**	@brief Fast point multiplication of a member of the group G2 by a BIG number
 *
	May exploit endomorphism for speed.
	@param P ECP8 member of G1.
	@param b BIG multiplier

 */
extern void PAIR_G2mul(ECP8 *P, B560_58::BIG b);
/**	@brief Fast raising of a member of GT to a BIG power
 *
	May exploit endomorphism for speed.
	@param x FP48 member of GT.
	@param b BIG exponent

 */
extern void PAIR_GTpow(BLS48556::FP48 *x, B560_58::BIG b);

/**	@brief Tests ECP for membership of G1
 *
	@param P ECP member of G1
	@return true or false

 */
extern int PAIR_G1member(BLS48556::ECP *P);

/**	@brief Tests ECP8 for membership of G2
 *
	@param P ECP8 member of G2
	@return true or false

 */
extern int PAIR_G2member(BLS48556::ECP8 *P);

/**	@brief Tests FP48 for membership of cyclotomic subgroup
 *
	@param x FP48 instance
	@return 1 if x is cyclotomic, else return 0

 */
extern int PAIR_GTcyclotomic(BLS48556::FP48 *x);

/**	@brief Tests FP48 for full membership of GT
 *
	@param x FP48 instance
	@return 1 if x is in GT, else return 0

 */
extern int PAIR_GTmember(BLS48556::FP48 *x);

/**	@brief Precompute line functions for n-pairing
 *
	@param r array of precomputed FP48 products of line functions
	@param PV ECP8 instance, an element of G2
	@param QV ECP instance, an element of G1

 */
extern void PAIR_another(BLS48556::FP48 r[], ECP8* PV, ECP* QV);


/**	@brief Compute line functions for n-pairing, assuming precomputation on G2
 *
	@param r array of precomputed FP48 products of line functions
	@param T array contains precomputed partial line fucntions from G2
	@param QV ECP instance, an element of G1

 */
extern void PAIR_another_pc(BLS48556::FP48 r[], BLS48556::FP16 T[], ECP *QV);


/**	@brief Prepare Ate parameter
 *
	@param n BIG parameter
	@param n3 BIG paramter = 3*n
	@return number of nits in n3

 */
extern int PAIR_nbits(B560_58::BIG n3, B560_58::BIG n);

/**	@brief Initialise structure for multi-pairing
 *
	@param r FP48 array, to be initialised to 1

 */
extern void PAIR_initmp(BLS48556::FP48 r[]);


/**	@brief Miller loop
 *
 	@param res FP48 result
	@param r FP48 precomputed array of accumulated line functions

 */
extern void PAIR_miller(BLS48556::FP48 *res, BLS48556::FP48 r[]);

}

#endif
update tiigertls 2024-04-15 09:53:30 +00:00			`/*`
			`* Copyright (c) 2012-2020 MIRACL UK Ltd.`
			`*`
			`* This file is part of MIRACL Core`
			`* (see https://github.com/miracl/core).`
			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`

			`#ifndef PAIR8_BLS48556_H`
			`#define PAIR8_BLS48556_H`

			`#include "fp48_BLS48556.h"`
			`#include "ecp8_BLS48556.h"`
			`#include "ecp_BLS48556.h"`

			`using namespace core;`

			`namespace BLS48556 {`
			`/* Pairing constants */`

			`extern const B560_58::BIG CURVE_Bnx; /*< BN curve x parameter /`
			`extern const B560_58::BIG CURVE_Cru; /*< BN curve Cube Root of Unity /`

			`extern const B560_58::BIG CURVE_W[2]; /*< BN curve constant for GLV decomposition /`
			`extern const B560_58::BIG CURVE_SB[2][2]; /*< BN curve constant for GLV decomposition /`
			`extern const B560_58::BIG CURVE_WB[4]; /*< BN curve constant for GS decomposition /`
			`extern const B560_58::BIG CURVE_BB[4][4]; /*< BN curve constant for GS decomposition /`

			`/* Pairing function prototypes */`

			`/** @brief Precompute line functions details for fixed G2 value`
			`*`
			`@param T array of precomputed FP16 partial line functions`
			`@param GV a fixed ECP8 instance`
			`*/`
			`extern void PAIR_precomp(BLS48556::FP16 T[], ECP8* GV);`


			`/** @brief Calculate Miller loop for Optimal ATE pairing e(P,Q)`
			`*`
			`@param r FP48 result of the pairing calculation e(P,Q)`
			`@param P ECP8 instance, an element of G2`
			`@param Q ECP instance, an element of G1`

			`*/`
			`extern void PAIR_ate(BLS48556::FP48 r, ECP8 P, ECP *Q);`
			`/** @brief Calculate Miller loop for Optimal ATE double-pairing e(P,Q).e(R,S)`
			`*`
			`Faster than calculating two separate pairings`
			`@param r FP48 result of the pairing calculation e(P,Q).e(R,S), an element of GT`
			`@param P ECP8 instance, an element of G2`
			`@param Q ECP instance, an element of G1`
			`@param R ECP8 instance, an element of G2`
			`@param S ECP instance, an element of G1`
			`*/`
			`extern void PAIR_double_ate(BLS48556::FP48 r, ECP8 P, ECP Q, ECP8 R, ECP *S);`
			`/** @brief Final exponentiation of pairing, converts output of Miller loop to element in GT`
			`*`
			`Here p is the internal modulus, and r is the group order`
			`@param x FP48, on exit = x^((p^12-1)/r)`
			`*/`
			`extern void PAIR_fexp(BLS48556::FP48 *x);`
			`/** @brief Fast point multiplication of a member of the group G1 by a BIG number`
			`*`
			`May exploit endomorphism for speed.`
			`@param Q ECP member of G1.`
			`@param b BIG multiplier`

			`*/`
			`extern void PAIR_G1mul(ECP *Q, B560_58::BIG b);`
			`/** @brief Fast point multiplication of a member of the group G2 by a BIG number`
			`*`
			`May exploit endomorphism for speed.`
			`@param P ECP8 member of G1.`
			`@param b BIG multiplier`

			`*/`
			`extern void PAIR_G2mul(ECP8 *P, B560_58::BIG b);`
			`/** @brief Fast raising of a member of GT to a BIG power`
			`*`
			`May exploit endomorphism for speed.`
			`@param x FP48 member of GT.`
			`@param b BIG exponent`

			`*/`
			`extern void PAIR_GTpow(BLS48556::FP48 *x, B560_58::BIG b);`

			`/** @brief Tests ECP for membership of G1`
			`*`
			`@param P ECP member of G1`
			`@return true or false`

			`*/`
			`extern int PAIR_G1member(BLS48556::ECP *P);`

			`/** @brief Tests ECP8 for membership of G2`
			`*`
			`@param P ECP8 member of G2`
			`@return true or false`

			`*/`
			`extern int PAIR_G2member(BLS48556::ECP8 *P);`

			`/** @brief Tests FP48 for membership of cyclotomic subgroup`
			`*`
			`@param x FP48 instance`
			`@return 1 if x is cyclotomic, else return 0`

			`*/`
			`extern int PAIR_GTcyclotomic(BLS48556::FP48 *x);`

			`/** @brief Tests FP48 for full membership of GT`
			`*`
			`@param x FP48 instance`
			`@return 1 if x is in GT, else return 0`

			`*/`
			`extern int PAIR_GTmember(BLS48556::FP48 *x);`

			`/** @brief Precompute line functions for n-pairing`
			`*`
			`@param r array of precomputed FP48 products of line functions`
			`@param PV ECP8 instance, an element of G2`
			`@param QV ECP instance, an element of G1`

			`*/`
			`extern void PAIR_another(BLS48556::FP48 r[], ECP8* PV, ECP* QV);`


			`/** @brief Compute line functions for n-pairing, assuming precomputation on G2`
			`*`
			`@param r array of precomputed FP48 products of line functions`
			`@param T array contains precomputed partial line fucntions from G2`
			`@param QV ECP instance, an element of G1`

			`*/`
			`extern void PAIR_another_pc(BLS48556::FP48 r[], BLS48556::FP16 T[], ECP *QV);`



			`/** @brief Prepare Ate parameter`
			`*`
			`@param n BIG parameter`
			`@param n3 BIG paramter = 3*n`
			`@return number of nits in n3`

			`*/`
			`extern int PAIR_nbits(B560_58::BIG n3, B560_58::BIG n);`

			`/** @brief Initialise structure for multi-pairing`
			`*`
			`@param r FP48 array, to be initialised to 1`

			`*/`
			`extern void PAIR_initmp(BLS48556::FP48 r[]);`


			`/** @brief Miller loop`
			`*`
			`@param res FP48 result`
			`@param r FP48 precomputed array of accumulated line functions`

			`*/`
			`extern void PAIR_miller(BLS48556::FP48 *res, BLS48556::FP48 r[]);`

			`}`

			`#endif`