277003f145
Minor prover simplification
2019-10-28 09:34:49 -04:00
3a0451a8be
MLSAG speedup and additional checks
2019-08-27 16:22:44 -04:00
acb68dbaa9
bulletproofs: cut down on keyV allocations
2019-04-13 22:37:08 +00:00
1f2930ce0b
Update 2019 copyright
2019-03-05 22:05:34 +01:00
1bc5f9fa4b
bulletproofs: speed up vector_power_sum
...
found by sarang
2019-01-19 00:18:34 +00:00
c00ac446fd
Merge pull request #4854
...
bd98e99c
2018-12-04 17:08:42 +02:00
3e2abc9eaa
Merge pull request #4834
...
2c7195d8
2018-11-26 20:30:15 +02:00
bd98e99c80
Removed a lot of unnecessary includes
2018-11-15 17:29:34 +01:00
2c7195d80c
bulletproofs: avoid std::vector allocations for slice
2018-11-09 19:58:11 +00:00
6a1062f560
bulletproofs: reserve vector memory when known in advance
2018-11-05 14:32:32 +00:00
a6d2e246f3
bulletproofs: only enable profiling on request
2018-10-22 16:07:44 +00:00
a110e6aa18
multiexp: tune which variants to use for which number of points
2018-10-22 16:07:44 +00:00
8b4767221c
bulletproofs: speedup prover
2018-10-22 16:07:44 +00:00
6f9ae5b6eb
multiexp: handle pippenger multiexps with part precalc
2018-10-22 16:07:44 +00:00
10e5a92769
bulletproofs: maintain -z4, -z5, and -y0 to avoid subtractions
2018-10-22 16:07:44 +00:00
8629a42cf6
bulletproofs: rework flow to use sarang's fast batch inversion code
2018-10-22 16:07:44 +00:00
fc9f7d9c81
bulletproofs: merge multiexps as per sarang's new python code
2018-10-22 16:07:44 +00:00
bf8e4b9870
bulletproofs: some more minor speedup
2018-10-22 16:07:44 +00:00
a281b950bf
bulletproofs: remove single value prover
...
It is now expressed in terms of the array prover
2018-10-22 16:07:44 +00:00
484155d043
bulletproofs: some more speedup
2018-10-22 16:07:44 +00:00
a621d6c8b4
bulletproofs: random minor speedups
2018-10-22 16:07:44 +00:00
a49a17618f
bulletproofs: shave off a lot of scalar muls from the g/h construction
2018-10-22 16:07:44 +00:00
4564a5d17b
bulletproofs: speedup PROVE
2018-10-22 16:07:44 +00:00
1dd5c73f62
bulletproofs: multiply points by 8 first thing in verification
...
instead of merging that with other scalar multiplications
where possible for speed, since this is not actually safe
2018-09-24 14:02:51 +00:00
8f418a6db0
bulletproofs: #include <openssl/bn.h>
...
Apparently needed for openssl 1.1.x
2018-09-11 13:38:34 +00:00
2bf636503f
bulletproofs: speed up the latest changes a bit
2018-09-11 13:38:32 +00:00
044dff5a30
bulletproofs: scale points by 8 to ensure subgroup validity
2018-09-11 13:38:31 +00:00
c83012c476
bulletproofs: match aggregated verification to sarang's latest prototype
2018-09-11 13:38:30 +00:00
7ed496cc78
ringct: error out when hashToPoint* returns the point at infinity
...
Reported by QuarksLab.
2018-09-11 13:38:16 +00:00
fe0fa3b9c5
bulletproofs: reject x, y, z, or w[i] being zero
...
Also try again when we're generate a proof with those characteristics
Reported by QuarksLab.
2018-09-11 13:38:08 +00:00
869b3bf824
bulletproofs: a few fixes from the Kudelski review
...
- fix integer overflow in n_bulletproof_amounts
- check input scalars are in range
- remove use of environment variable to tweak straus performance
- do not use implementation defined signed shift for signum
2018-09-11 13:38:05 +00:00
c429176248
bulletproofs: reject points not in the main subgroup
2018-09-11 13:38:04 +00:00
1569717718
bulletproofs: speed up a few multiplies using existing Hi cache
2018-09-11 13:38:03 +00:00
0b05a0fa74
Add Pippenger cache and limit Straus cache size
2018-09-11 13:38:02 +00:00
263431c486
Pippenger multiexp
...
Based on sarang's python code
2018-09-11 13:37:45 +00:00
1b867e7f40
precalc the ge_p3 representation of H
2018-09-11 13:37:42 +00:00
7e67c52fa2
Add a define for the max number of bulletproof multi-outputs
2018-09-11 13:37:38 +00:00
126196b017
multiexp: some speedups
...
- use a raw memory block to store cache
- use aligned memory
- use doubling API where appropriate
- calculate straus in bands
2018-09-11 13:37:35 +00:00
bacf0a1e2f
bulletproofs: add aggregated verification
...
Ported from sarang's java code
2018-09-11 13:37:32 +00:00
e895c3def1
make straus cached mode thread safe, and add tests for it
2018-09-11 13:37:31 +00:00
939bc22332
add Straus multiexp
2018-09-11 13:37:25 +00:00
9ff6e6a0a7
ringct: add bos coster multiexp
2018-09-11 13:37:24 +00:00
e9164bb38b
bulletproofs: misc optimizations
...
Use double mults where possible, avoid conversions, simplify
2018-09-11 13:37:23 +00:00
aacfd6e370
bulletproofs: multi-output bulletproofs
2018-09-11 13:37:17 +00:00
3f1a3fac00
bulletproofs: more robust challenge computation
...
Changes from sarang, from a recommendation by an anonymous reviewer
2018-01-31 15:57:01 +00:00
84a7f6a482
Readd copyright starting date
2018-01-26 10:03:20 -05:00
18216f19dd
Update 2018 copyright
2018-01-26 10:03:20 -05:00
8620ef0a0d
bulletproofs: switch H/G in Pedersen commitments to match rct
...
Changes from sarang
2017-12-08 13:48:18 +00:00
90b8d9f271
add bulletproofs to the build, with basic unit tests
...
Based on Java code from Sarang Noether
2017-12-08 13:41:13 +00:00
Sarang Noether
moneromooo-monero
binaryFate
Riccardo Spagni
Martijn Otto
xmr-eric