jaromil edited a comment on issue #32: Miller loop test fail in Zenroom using BLS383 and BLS381 URL: https://github.com/apache/incubator-milagro-crypto-c/issues/32#issuecomment-567972400 Just tested 2.0.0 release using curve BLS381 and confirm the above test still fails, but without indeterminism: it fails always. Will keep investigating, insights welcome. I forgot to mention another miller loop (ate pairing) test succeeds (it always did) for this property: ``` miller(sQ,P) = miller(Q,sP) - where s is a random big number ``` Zenroom code: ```lua s = R() g1 = ECP2.miller( Q1*s, P1) g2 = ECP2.miller( Q1, P1*s) assert(g1 == g2) ``` Perhaps the problem is in FP12_pow? Since that's what I use for the `^` operator in the failing test: ``` ECP2.miller( Q1, P1)^s ``` Also worth mentioning ECP2.miller(...) in Zenroom corresponds to PAIR_ZZZ_ate(...) in Milagro. I tested a trivial substitution of the `pair_ate` and `fp12_pow` functions from zenroom's milagro version to 2.0.0 and ran the tests, but that did no solve the problem, so maybe somewhere deeper in the functions called by them.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
