Sarang Noether
80d5320fff
Hash domain separation
4 years ago
Sarang Noether
45fd72b0d7
Updated paper references
5 years ago
Sarang Noether
277003f145
Minor prover simplification
5 years ago
Sarang Noether
3a0451a8be
MLSAG speedup and additional checks
5 years ago
moneromooo-monero
acb68dbaa9
bulletproofs: cut down on keyV allocations
5 years ago
binaryFate
1f2930ce0b
Update 2019 copyright
5 years ago
moneromooo-monero
1bc5f9fa4b
bulletproofs: speed up vector_power_sum
...
found by sarang
5 years ago
Riccardo Spagni
c00ac446fd
Merge pull request #4854
...
bd98e99c
Removed a lot of unnecessary includes (Martijn Otto)
6 years ago
Riccardo Spagni
3e2abc9eaa
Merge pull request #4834
...
2c7195d8
bulletproofs: avoid std::vector allocations for slice (moneromooo-monero)
6 years ago
Martijn Otto
bd98e99c80
Removed a lot of unnecessary includes
6 years ago
moneromooo-monero
2c7195d80c
bulletproofs: avoid std::vector allocations for slice
6 years ago
moneromooo-monero
6a1062f560
bulletproofs: reserve vector memory when known in advance
6 years ago
moneromooo-monero
a6d2e246f3
bulletproofs: only enable profiling on request
6 years ago
moneromooo-monero
a110e6aa18
multiexp: tune which variants to use for which number of points
6 years ago
moneromooo-monero
8b4767221c
bulletproofs: speedup prover
6 years ago
moneromooo-monero
6f9ae5b6eb
multiexp: handle pippenger multiexps with part precalc
6 years ago
moneromooo-monero
10e5a92769
bulletproofs: maintain -z4, -z5, and -y0 to avoid subtractions
6 years ago
moneromooo-monero
8629a42cf6
bulletproofs: rework flow to use sarang's fast batch inversion code
6 years ago
moneromooo-monero
fc9f7d9c81
bulletproofs: merge multiexps as per sarang's new python code
6 years ago
moneromooo-monero
bf8e4b9870
bulletproofs: some more minor speedup
6 years ago
moneromooo-monero
a281b950bf
bulletproofs: remove single value prover
...
It is now expressed in terms of the array prover
6 years ago
moneromooo-monero
484155d043
bulletproofs: some more speedup
6 years ago
moneromooo-monero
a621d6c8b4
bulletproofs: random minor speedups
6 years ago
moneromooo-monero
a49a17618f
bulletproofs: shave off a lot of scalar muls from the g/h construction
6 years ago
moneromooo-monero
4564a5d17b
bulletproofs: speedup PROVE
6 years ago
moneromooo-monero
1dd5c73f62
bulletproofs: multiply points by 8 first thing in verification
...
instead of merging that with other scalar multiplications
where possible for speed, since this is not actually safe
6 years ago
moneromooo-monero
8f418a6db0
bulletproofs: #include <openssl/bn.h>
...
Apparently needed for openssl 1.1.x
6 years ago
moneromooo-monero
2bf636503f
bulletproofs: speed up the latest changes a bit
6 years ago
moneromooo-monero
044dff5a30
bulletproofs: scale points by 8 to ensure subgroup validity
6 years ago
moneromooo-monero
c83012c476
bulletproofs: match aggregated verification to sarang's latest prototype
6 years ago
moneromooo-monero
7ed496cc78
ringct: error out when hashToPoint* returns the point at infinity
...
Reported by QuarksLab.
6 years ago
moneromooo-monero
fe0fa3b9c5
bulletproofs: reject x, y, z, or w[i] being zero
...
Also try again when we're generate a proof with those characteristics
Reported by QuarksLab.
6 years ago
moneromooo-monero
869b3bf824
bulletproofs: a few fixes from the Kudelski review
...
- fix integer overflow in n_bulletproof_amounts
- check input scalars are in range
- remove use of environment variable to tweak straus performance
- do not use implementation defined signed shift for signum
6 years ago
moneromooo-monero
c429176248
bulletproofs: reject points not in the main subgroup
6 years ago
moneromooo-monero
1569717718
bulletproofs: speed up a few multiplies using existing Hi cache
6 years ago
moneromooo-monero
0b05a0fa74
Add Pippenger cache and limit Straus cache size
6 years ago
moneromooo-monero
263431c486
Pippenger multiexp
...
Based on sarang's python code
6 years ago
moneromooo-monero
1b867e7f40
precalc the ge_p3 representation of H
6 years ago
moneromooo-monero
7e67c52fa2
Add a define for the max number of bulletproof multi-outputs
6 years ago
moneromooo-monero
126196b017
multiexp: some speedups
...
- use a raw memory block to store cache
- use aligned memory
- use doubling API where appropriate
- calculate straus in bands
6 years ago
moneromooo-monero
bacf0a1e2f
bulletproofs: add aggregated verification
...
Ported from sarang's java code
6 years ago
moneromooo-monero
e895c3def1
make straus cached mode thread safe, and add tests for it
6 years ago
moneromooo-monero
939bc22332
add Straus multiexp
6 years ago
moneromooo-monero
9ff6e6a0a7
ringct: add bos coster multiexp
6 years ago
moneromooo-monero
e9164bb38b
bulletproofs: misc optimizations
...
Use double mults where possible, avoid conversions, simplify
6 years ago
moneromooo-monero
aacfd6e370
bulletproofs: multi-output bulletproofs
6 years ago
moneromooo-monero
3f1a3fac00
bulletproofs: more robust challenge computation
...
Changes from sarang, from a recommendation by an anonymous reviewer
6 years ago
xmr-eric
84a7f6a482
Readd copyright starting date
6 years ago
xmr-eric
18216f19dd
Update 2018 copyright
6 years ago
moneromooo-monero
8620ef0a0d
bulletproofs: switch H/G in Pedersen commitments to match rct
...
Changes from sarang
7 years ago