Class: BLS::ProjectivePoint

Inherits:

Object

• Object
• BLS::ProjectivePoint

Defined in:

lib/bls/point.rb

Overview

Abstract Point class that consist of projective coordinates.

Direct Known Subclasses

PointG1, PointG2

Instance Attribute Summary

• #m_precomputes ⇒ Object

  Returns the value of attribute m_precomputes.

• #x ⇒ Object readonly

  Returns the value of attribute x.

• #y ⇒ Object readonly

  Returns the value of attribute y.

• #z ⇒ Object readonly

  Returns the value of attribute z.

Instance Method Summary

• #==(other) ⇒ Boolean

  Compare one point to another.

• #add(other) ⇒ Object (also: #+)

  hyperelliptic.org/EFD/g1p/auto-shortw-projective.html#addition-add-1998-cmo-2.

• #calc_multiply_precomputes(w) ⇒ Object
• #clear_multiply_precomputes ⇒ Object
• #double ⇒ Object

  hyperelliptic.org/EFD/g1p/auto-shortw-projective.html#doubling-dbl-1998-cmo-2.

• #from_affine_tuple(xy) ⇒ Object
• #gen_invert_batch(nums) ⇒ Object
• #initialize(x, y, z) ⇒ ProjectivePoint constructor

  A new instance of ProjectivePoint.

• #max_bits ⇒ Object
• #multiply(scalar) ⇒ Object (also: #*)

  Constant time multiplication.

• #multiply_unsafe(scalar) ⇒ Object
• #negate ⇒ Object
• #new_point(x, y, z) ⇒ Object
• #normalize_z(points) ⇒ Object
• #precomputes_window(w) ⇒ Object
• #subtract(other) ⇒ Object (also: #-)
• #to_affine(inv_z = z.invert) ⇒ Object
• #to_affine_batch(points) ⇒ Object
• #zero ⇒ Object
• #zero? ⇒ Boolean

Constructor Details

#initialize(x, y, z) ⇒ ProjectivePoint

Returns a new instance of ProjectivePoint.

# File 'lib/bls/point.rb', line 24

def initialize(x, y, z)
  @x = x
  @y = y
  @z = z
  @m_precomputes = nil
end

Instance Attribute Details

#m_precomputes ⇒ Object

Returns the value of attribute m_precomputes.

# File 'lib/bls/point.rb', line 22

def m_precomputes
  @m_precomputes
end

#x ⇒ Object (readonly)

Returns the value of attribute x.

# File 'lib/bls/point.rb', line 21

def x
  @x
end

#y ⇒ Object (readonly)

Returns the value of attribute y.

# File 'lib/bls/point.rb', line 21

def y
  @y
end

#z ⇒ Object (readonly)

Returns the value of attribute z.

# File 'lib/bls/point.rb', line 21

def z
  @z
end

Instance Method Details

#==(other) ⇒ Boolean

Compare one point to another.

Parameters:

• other (ProjectivePoint) —

  another point.

Returns:

• (Boolean) —

  whether same point or not.

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 47

def ==(other)
  raise PointError, "ProjectivePoint#==: this is #{self.class}, but other is #{other.class}" unless self.class == other.class

  (x * other.z) == (other.x * z) && (y * other.z) == (other.y * z)
end

#add(other) ⇒ Object Also known as: +

hyperelliptic.org/EFD/g1p/auto-shortw-projective.html#addition-add-1998-cmo-2

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 72

def add(other)
  raise PointError, "ProjectivePoint#add: this is #{self.class}, but other is #{other.class}" unless self.class == other.class

  return other if zero?
  return self if other.zero?

  x1 = self.x
  y1 = self.y
  z1 = self.z
  x2 = other.x
  y2 = other.y
  z2 = other.z
  u1 = y2 * z1
  u2 = y1 * z2
  v1 = x2 * z1
  v2 = x1 * z2
  return double if v1 == v2 && u1 == u2
  return zero if v1 == v2

  u = u1 - u2
  v = v1 - v2
  vv = v * v
  vvv = vv * v
  v2vv = v2 * vv
  w = z1 * z2
  a = u * u * w - vvv - v2vv * 2
  x3 = v * a
  y3 = u * (v2vv - a) - vvv * u2
  z3 = vvv * w
  new_point(x3, y3, z3)
end

#calc_multiply_precomputes(w) ⇒ Object

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 196

def calc_multiply_precomputes(w)
  raise PointError, 'This point already has precomputes.' if m_precomputes

  self.m_precomputes = [w, normalize_z(precomputes_window(w))]
end

#clear_multiply_precomputes ⇒ Object

# File 'lib/bls/point.rb', line 202

def clear_multiply_precomputes
  self.m_precomputes = nil
end

#double ⇒ Object

hyperelliptic.org/EFD/g1p/auto-shortw-projective.html#doubling-dbl-1998-cmo-2

# File 'lib/bls/point.rb', line 58

def double
  w = x * x * 3
  s = y * z
  ss = s * s
  sss = ss * s
  b = x * y * s
  h = w * w - ( b * 8)
  x3 = h * s * 2
  y3 = w * (b * 4 - h) - (y * y * 8 * ss) # W * (4 * B - H) - 8 * y * y * S_squared
  z3 = sss * 8
  new_point(x3, y3, z3)
end

#from_affine_tuple(xy) ⇒ Object

# File 'lib/bls/point.rb', line 135

def from_affine_tuple(xy)
  new_point(xy[0], xy[1], x.class.const_get(:ONE))
end

#gen_invert_batch(nums) ⇒ Object

# File 'lib/bls/point.rb', line 139

def gen_invert_batch(nums)
  len = nums.length
  scratch = Array.new(len)
  acc = x.class::ONE
  len.times do |i|
    next if nums[i].zero?

    scratch[i] = acc
    acc *= nums[i]
  end
  acc = acc.invert
  len.times do |t|
    i = len - t - 1
    next if nums[i].zero?

    tmp = acc * nums[i]
    nums[i] = acc * scratch[i]
    acc = tmp
  end
  nums
end

#max_bits ⇒ Object

# File 'lib/bls/point.rb', line 188

def max_bits
  self.class.const_get(:MAX_BITS)
end

#multiply(scalar) ⇒ Object Also known as: *

Constant time multiplication. Uses wNAF.

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 162

def multiply(scalar)
  n = scalar.is_a?(Field) ? scalar.value : scalar
  raise PointError, 'Invalid scalar, expected positive integer' if n <= 0
  raise PointError, "Scalar has more bits than maxBits, shouldn't happen" if n.bit_length > max_bits

  wNAF(n).first
end

#multiply_unsafe(scalar) ⇒ Object

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 112

def multiply_unsafe(scalar)
  n = scalar.is_a?(Field) ? scalar.value : scalar
  raise PointError, 'Point#multiply: invalid scalar, expected positive integer' if n <= 0

  p = zero
  d = self
  while n.positive?
    p += d unless (n & 1).zero?
    d = d.double
    n >>= 1
  end
  p
end

#negate ⇒ Object

# File 'lib/bls/point.rb', line 53

def negate
  new_point(x, y.negate, z)
end

#new_point(x, y, z) ⇒ Object

# File 'lib/bls/point.rb', line 40

def new_point(x, y, z)
  self.class.new(x, y, z)
end

#normalize_z(points) ⇒ Object

# File 'lib/bls/point.rb', line 192

def normalize_z(points)
  to_affine_batch(points).map{ |p| from_affine_tuple(p) }
end

#precomputes_window(w) ⇒ Object

# File 'lib/bls/point.rb', line 171

def precomputes_window(w)
  windows = (BigDecimal(max_bits) / w).ceil
  window_size = 2**(w - 1)
  points = []
  p = self
  windows.times do
    base = p
    points << base
    (1...window_size).each do
      base += p
      points << base
    end
    p = base.double
  end
  points
end

#subtract(other) ⇒ Object Also known as: -

Raises:

• (PointError)

# File 'lib/bls/point.rb', line 105

def subtract(other)
  raise PointError, "ProjectivePoint#subtract: this is #{self.class}, but other is #{other.class}" unless self.class == other.class

  add(other.negate)
end

#to_affine(inv_z = z.invert) ⇒ Object

# File 'lib/bls/point.rb', line 126

def to_affine(inv_z = z.invert)
  [x * inv_z, y * inv_z]
end

#to_affine_batch(points) ⇒ Object

# File 'lib/bls/point.rb', line 130

def to_affine_batch(points)
  to_inv = gen_invert_batch(points.map(&:z))
  points.map.with_index { |p, i| p.to_affine(to_inv[i]) }
end

#zero ⇒ Object

# File 'lib/bls/point.rb', line 35

def zero
  one = x.class.const_get(:ONE)
  new_point(one, one, x.class.const_get(:ZERO))
end

#zero? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/bls/point.rb', line 31

def zero?
  z.zero?
end