Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add BLS Elliptic Curve support in Cryptol #14

Merged
merged 12 commits into from
Sep 24, 2024
Merged

Add BLS Elliptic Curve support in Cryptol #14

Changes from 1 commit
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
51b9b45
readme: Whitespace
b13decker Sep 17, 2024
68ca478
utils: Add modular pow function
b13decker Sep 17, 2024
b23d4fb
blshelpers: Add module with modular inverse and division
b13decker Sep 17, 2024
ed6f745
blshelpers: Add compute_powers function
b13decker Sep 17, 2024
707624a
utils: Move pow tests into repl doc tests
b13decker Sep 18, 2024
52f42d0
utils: Add functions for division and modular inverse
b13decker Sep 18, 2024
23d1df8
blshelpers: Fix implementation of bls_modular_inverse
b13decker Sep 18, 2024
e27b3e9
util: Switch modular inverse and div to use Integer type
b13decker Sep 18, 2024
3252d32
util: Remove unnecessary fromInteger conversions
b13decker Sep 18, 2024
96a76a5
utils: Remove unused pow function
b13decker Sep 18, 2024
1750405
blsec: Add module that handles BLS elliptic curve operations
b13decker Sep 18, 2024
5aa3ce5
blshelper: Remove unused constant NEGATIVE_ONE
b13decker Sep 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
72 changes: 72 additions & 0 deletions spec/Spec/BlsHelpers.cry
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,72 @@
/**
* The module contains functions that perform BLS operations.
* @see https://github.com/ethereum/consensus-specs/blob/dev/specs/deneb/polynomial-commitments.md#bls12-381-helpers
*/
module Spec::BlsHelpers where

import Common::Utils

/**
* BLS field elements are 256-bits long.
* @see https://github.com/ethereum/consensus-specs/blob/dev/specs/deneb/polynomial-commitments.md#custom-types
*/
type BlsFieldSize = 256
type BlsFieldElement = [BlsFieldSize]
b13decker marked this conversation as resolved.
Show resolved Hide resolved

/**
* Specified by the consensus-specs.
* @see https://github.com/ethereum/consensus-specs/blob/dev/specs/deneb/polynomial-commitments.md#constants
*/
BLS_MODULUS : BlsFieldElement
BLS_MODULUS = 52435875175126190479447740508185965837690552500527637822603658699938581184513

NEGATIVE_ONE : BlsFieldElement
NEGATIVE_ONE = -1

/**
* Compute the modular inverse of x
* i.e. return y such that x * y % BLS_MODULUS == 1
* Precondition: x != 0
b13decker marked this conversation as resolved.
Show resolved Hide resolved
* @see https://github.com/ethereum/consensus-specs/blob/dev/specs/deneb/polynomial-commitments.md#bls_modular_inverse
*/
bls_modular_inverse : BlsFieldElement -> BlsFieldElement
bls_modular_inverse x = pow`{BlsFieldSize} x NEGATIVE_ONE BLS_MODULUS

/**
* Divide two field elements: x by y
* @see https://github.com/ethereum/consensus-specs/blob/dev/specs/deneb/polynomial-commitments.md#div
*/
bls_div : BlsFieldElement -> BlsFieldElement -> BlsFieldElement
bls_div x y = (x * (bls_modular_inverse y)) % BLS_MODULUS
b13decker marked this conversation as resolved.
Show resolved Hide resolved

/*
* ===============
* Unit test suite
* ===============
*/

/**
* Unit tests for `bls_modular_inverse`.
* ```repl
* :prove test_bls_modular_inverse 1 1
* :prove test_bls_modular_inverse 2 0
* :prove test_bls_modular_inverse 3 0x36bd0357810d2d627770d2a2a108d2a556ed06a7aaac4eabaaaaaaabaaaaaaaa
* ```
* NOTE: we just chose the last value at "random"
*/
test_bls_modular_inverse : BlsFieldElement -> BlsFieldElement -> Bit
property test_bls_modular_inverse x expectedY =
bls_modular_inverse x == expectedY

/**
* Unit tests for `bls_modular_inverse`.
* ```repl
* :prove test_bls_div 1 2 0
* :prove test_bls_div 13 1 13
* :prove test_bls_div 57 13 0x15eaf636af000c906a5000958036c58484dfe5d59d8b7c9e89d89d8ad89d89dc
* ```
* NOTE: we just chose the last value at "random"
*/
test_bls_div : BlsFieldElement -> BlsFieldElement -> BlsFieldElement -> Bit
property test_bls_div x y expected =
bls_div x y == expected