Skip to content

TMUL Integration into Groth16 Verifier #93

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
lucidLuckylee merged 36 commits into from
Sep 14, 2024
Merged

TMUL Integration into Groth16 Verifier #93

lucidLuckylee merged 36 commits into from
Sep 14, 2024

Conversation

@Hakkush-07
Copy link
Collaborator

@Hakkush-07 Hakkush-07 commented Sep 13, 2024
edited
Loading

This PR contributes the following:

  • integrates the new tmul function into Groth16 verifier and all the functions that it uses. Hinted Groth16 Verifier is 1.43 Gb instead of 2.65 Gb. To do that, we introduce modified functions that expect inputs in the standard form instead of Montgomery since tmul expects that. These functions also returns the list of hints.

  • improves newly introduced limb_add_with_carry_prevent_overflow and limb_double_with_carry_prevent_overflow functions which results in around 1 Kb improvement in tmul.

  • adds hinted Fq.inv() so closes Compute inverses using a hint #72

  • fixes BigIntImpl::is_positive() because it was considering 0 as positive.

  • separates N_WINDOW const in tmul because it should be two separate consts for different MOD_WIDTH and VAR_WIDTH.

Note: The original tmul and also this one currently do not not work with different MOD_WIDTH and VAR_WIDTH. You need to select the same MOD_WIDTH and VAR_WIDTH, for example (4, 4) is the best option in terms of script size currently.

Hakkush-07 and others added 30 commits September 5, 2024 12:25
@Hakkush-07
fix is_positive()
892eba4
@Hakkush-07
fix N_WINDOW
6b5170d
@Hakkush-07
better limb_add_with_carry_prevent_overflow and limb_double_with_carr…
22929e8 
…y_prevent_overflow
@FatihSolak
feat: hinted mul integration
2bf2a78
@Hakkush-07
Fq.hinted_square
61badf8
@Hakkush-07
Fq2.hinted_square
a817f1b
@FatihSolak
feat: hinted mul by const
6d2b4de
@FatihSolak
test
c1dcea1
@FatihSolak
Merge branch 'BitVM:main' into test
3692776
@Hakkush-07
Fq6.hinted_square
e133ca3
@FatihSolak
feat: fq2 hinted mul by const
9b318bd
@Hakkush-07
Fq12.hinted_square
25e4216
@FatihSolak
feat: hinted line utils
8080454
@Hakkush-07
hinted_frobenius functions
3ade7fa
@Hakkush-07
G1Projective.hinted_double
31becf7
@FatihSolak
feat: hinted g1 projective add
af74327
@FatihSolak
feat: hinted scalar mul by const g1
042b2c8
@FatihSolak
fix: hinted scalar mul
f12087b
@FatihSolak
feat: hinted g1p equal verify
b95c78b
@Hakkush-07
hinted_quad_miller_with_c_wi but test can not be run
dc26fc6
@FatihSolak
fix: memory issues
75c85dd
@FatihSolak
fix: curves.rs memory issues
7f1b22b
@FatihSolak
fix: utils.rs memory issues
fe8cd23
@Hakkush-07
change the hinted scripts for Fq12, Fq6, Fq2
68f9852
@FatihSolak
fix: quad miller memory issue
9d11b24
@FatihSolak
fix: quad miller loop test
af79500
@Hakkush-07
G1Projective.hinted_into_affine
e80c8af
@FatihSolak
feat: hinted msm
21aba99
@Hakkush-07
hinted_groth16_verifier done
d42ef0c
@Hakkush-07
uncomment lines that push hints
152b86c
@lucidLuckylee lucidLuckylee merged commit 4e5dd90 into BitVM:main Sep 14, 2024
@dylanCai9 dylanCai9 mentioned this pull request Oct 12, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Compute inverses using a hint

3 participants

@Hakkush-07 @lucidLuckylee @FatihSolak