barretenberg-doxygen/3f0fad0de81d472cf71c03df11cf01ed6e7e09e0/affine__element_8hpp_source.html

#pragma once

#include "barretenberg/ecc/curves/bn254/fq2.hpp"

#include "barretenberg/numeric/uint256/uint256.hpp"

#include "barretenberg/serialize/msgpack.hpp"

#include <type_traits>

#include <vector>


namespace barretenberg::group_elements {

template <typename T>

concept SupportsHashToCurve = T::can_hash_to_curve;

template <typename Fq, typename Fr, typename Params> class alignas(64) affine_element {

  public:

    using in_buf = const uint8_t*;

    using vec_in_buf = const uint8_t*;

    using out_buf = uint8_t*;

    using vec_out_buf = uint8_t**;


    affine_element() noexcept = default;

    ~affine_element() noexcept = default;


    constexpr affine_element(const Fq& a, const Fq& b) noexcept;


    constexpr affine_element(const affine_element& other) noexcept = default;


    constexpr affine_element(affine_element&& other) noexcept = default;


    static constexpr affine_element one() noexcept { return { Params::one_x, Params::one_y }; };


    template <typename BaseField = Fq,

              typename CompileTimeEnabled = std::enable_if_t<(BaseField::modulus >> 255) == uint256_t(0), void>>

    static constexpr affine_element from_compressed(const uint256_t& compressed) noexcept;


    template <typename BaseField = Fq,

              typename CompileTimeEnabled = std::enable_if_t<(BaseField::modulus >> 255) == uint256_t(1), void>>

    static constexpr std::array<affine_element, 2> from_compressed_unsafe(const uint256_t& compressed) noexcept;


    constexpr affine_element& operator=(const affine_element& other) noexcept = default;


    constexpr affine_element& operator=(affine_element&& other) noexcept = default;


    constexpr affine_element operator+(const affine_element& other) const noexcept;


    template <typename BaseField = Fq,

              typename CompileTimeEnabled = std::enable_if_t<(BaseField::modulus >> 255) == uint256_t(0), void>>

    [[nodiscard]] constexpr uint256_t compress() const noexcept;


    static affine_element infinity();

    constexpr affine_element set_infinity() const noexcept;

    constexpr void self_set_infinity() noexcept;


    [[nodiscard]] constexpr bool is_point_at_infinity() const noexcept;


    [[nodiscard]] constexpr bool on_curve() const noexcept;


    static constexpr std::optional<affine_element> derive_from_x_coordinate(const Fq& x, bool sign_bit) noexcept;


    static affine_element random_element(numeric::random::Engine* engine = nullptr) noexcept;

    static constexpr affine_element hash_to_curve(const std::vector<uint8_t>& seed, uint8_t attempt_count = 0) noexcept

        requires SupportsHashToCurve<Params>;


    constexpr bool operator==(const affine_element& other) const noexcept;


    constexpr affine_element operator-() const noexcept { return { x, -y }; }


    constexpr bool operator>(const affine_element& other) const noexcept;

    constexpr bool operator<(const affine_element& other) const noexcept { return (other > *this); }


    static void serialize_to_buffer(const affine_element& value, uint8_t* buffer)

    {

        if (value.is_point_at_infinity()) {

            if constexpr (Fq::modulus.get_msb() == 255) {

                write(buffer, uint256_t(0));

                write(buffer, Fq::modulus);

            } else {

                write(buffer, uint256_t(0));

                write(buffer, uint256_t(1) << 255);

            }

        } else {

            Fq::serialize_to_buffer(value.y, buffer);

            Fq::serialize_to_buffer(value.x, buffer + sizeof(Fq));

        }

    }


    static affine_element serialize_from_buffer(uint8_t* buffer)

    {

        affine_element result;


        // need to read a raw uint256_t to avoid reductions so we can check whether the point is the point at infinity

        auto raw_x = from_buffer<uint256_t>(buffer + sizeof(Fq));


        if constexpr (Fq::modulus.get_msb() == 255) {

            if (raw_x == Fq::modulus) {

                result.y = Fq::zero();

                result.x.data[0] = raw_x.data[0];

                result.x.data[1] = raw_x.data[1];

                result.x.data[2] = raw_x.data[2];

                result.x.data[3] = raw_x.data[3];

            } else {

                result.y = Fq::serialize_from_buffer(buffer);

                result.x = Fq(raw_x);

            }

        } else {

            if (raw_x.get_msb() == 255) {

                result.y = Fq::zero();

                result.x = Fq::zero();

                result.self_set_infinity();

            } else {

                // conditional here to avoid reading the same data twice in case of a field of prime order

                if constexpr (std::is_same<Fq, fq2>::value) {

                    result.y = Fq::serialize_from_buffer(buffer);

                    result.x = Fq::serialize_from_buffer(buffer + sizeof(Fq));

                } else {

                    result.y = Fq::serialize_from_buffer(buffer);

                    result.x = Fq(raw_x);

                }

            }

        }

        return result;

    }


    [[nodiscard]] inline std::vector<uint8_t> to_buffer() const

    {

        std::vector<uint8_t> buffer(sizeof(affine_element));

        affine_element::serialize_to_buffer(*this, &buffer[0]);

        return buffer;

    }


    friend std::ostream& operator<<(std::ostream& os, const affine_element& a)

    {

        os << "{ " << a.x << ", " << a.y << " }";

        return os;

    }

    Fq x;

    Fq y;

    // for serialization: update with new fields

    MSGPACK_FIELDS(x, y);

};

} // namespace barretenberg::group_elements


#include "./affine_element_impl.hpp"

barretenberg::group_elements::affine_element
Definition: affine_element.hpp:11

barretenberg::group_elements::affine_element::serialize_to_buffer
static void serialize_to_buffer(const affine_element &value, uint8_t *buffer)
Serialize the point to the given buffer.
Definition: affine_element.hpp:100

barretenberg::group_elements::affine_element::serialize_from_buffer
static affine_element serialize_from_buffer(uint8_t *buffer)
Restore point from a buffer.
Definition: affine_element.hpp:128

barretenberg::group_elements::affine_element::hash_to_curve
static constexpr affine_element hash_to_curve(const std::vector< uint8_t > &seed, uint8_t attempt_count=0) noexcept
Hash a seed buffer into a point.
Definition: affine_element_impl.hpp:224

barretenberg::group_elements::affine_element::from_compressed
static constexpr affine_element from_compressed(const uint256_t &compressed) noexcept
Reconstruct a point in affine coordinates from compressed form.

barretenberg::group_elements::affine_element::operator>
constexpr bool operator>(const affine_element &other) const noexcept
Definition: affine_element_impl.hpp:153

barretenberg::group_elements::affine_element::random_element
static affine_element random_element(numeric::random::Engine *engine=nullptr) noexcept
Samples a random point on the curve.
Definition: affine_element_impl.hpp:266

barretenberg::group_elements::affine_element::to_buffer
std::vector< uint8_t > to_buffer() const
Serialize the point to a byte vector.
Definition: affine_element.hpp:170

barretenberg::group_elements::affine_element::from_compressed_unsafe
static constexpr std::array< affine_element, 2 > from_compressed_unsafe(const uint256_t &compressed) noexcept
Reconstruct a point in affine coordinates from compressed form.

numeric::uint256_t
Definition: uint256.hpp:25

barretenberg::group_elements::SupportsHashToCurve
Definition: affine_element.hpp:10

numeric
Definition: field2_declarations.hpp:6

barretenberg::field< Bn254FqParams >