In [3]:
BLS12_381_FR = 0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000001



In [4]:
P = BLS12_381_FR
A = 0xec16b4441608ea5c955282418f882a4bdfd42168ccf447394f1d4546b9ca4c5
B = 0x547e4510e6c9d8b086d8a258704296b37ebaa877ee6fe9e43b4a3a84f9854f5f

print(hex((A*B)%P))

0x895e85c7af747dfe9b49261cfd69000928e038bd867259b7f7ae1ff84681614


In [5]:
P = BLS12_381_FR
A = 0x45ac411bed701ce7f02188e01653c6ccd89bf96021e9d95b52b2a2ba23d89d20
B = 0x3683eb4ea07253bd6c974375cec2fbe36b8a69643d13a7db647ae6a66f793473

print(hex((A*B)%P))

0xd5039d89dbd10a47ee3219ae9f0bb6c1996fe5967bfaf40f89e87ed57986b20


In [6]:
# Python3 program to find primitive root
# of a given number n
from math import sqrt
from gmpy2 import is_prime
import primefac

# Function to find smallest primitive
# root of n
def findPrimitive(n):

    if is_prime(n) == False:
        return -1

    phi = n - 1

    # Find prime factors of phi and store in a set
    s = set(primefac.primefac(phi))
    print(s)

    # Check for every number from 2 to phi
    for r in range(2, phi + 1):

        # Iterate through all prime factors of phi.
        # and check if we found a power with value 1
        flag = False
        for it in s:

            # Check if r^((phi)/primefactors)
            # mod n is 1 or not
            if pow(r, phi // it, n) == 1:

                flag = True
                break

        # If there was no power with value 1.
        if flag == False:
            return r

    # If no primitive root found
    return -1


# Driver Code
n = 0x73EDA753299D7D483339D80809A1D80553BDA402FFFE5BFEFFFFFFFF00000001
print("Smallest primitive root of", n, "is", findPrimitive(n))

{10177, 2, 3, 859267, 254760293, 11, 52437899, 906349, 19, 125527, 2508409, 2529403}
Smallest primitive root of 52435875175126190479447740508185965837690552500527637822603658699938581184513 is 7


In [28]:
import numpy as np
from gmpy2 import mpz

def ntt(values, omega, modulus):
    n = len(values)
    if n == 1:
        return values
    even_vals = ntt(values[0::2], pow(omega, 2, modulus), modulus)
    odd_vals = ntt(values[1::2], pow(omega, 2, modulus), modulus)
    
    factor = 1
    result = [mpz(0)] * n
    half = n // 2
    for i in range(half):
        temp = (factor * odd_vals[i]) % modulus
        result[i] = (even_vals[i] + temp) % modulus
        result[i + half] = (even_vals[i] - temp) % modulus
        factor = (factor * omega) % modulus
    return result

def inverse_ntt(values, omega_inv, modulus):
    n = len(values)
    result = ntt(values, omega_inv, modulus)
    n_inv = pow(n, -1, modulus)
    return [(x * n_inv) % modulus for x in result]

# Function to perform polynomial multiplication using NWC
def polynomial_multiplication_ntt(a, b, omega, modulus):
    n = len(a)
    # Forward NTT on both polynomials
    ntt_a = ntt(a, omega, modulus)
    ntt_b = ntt(b, omega, modulus)
    
    # Pointwise multiplication in NTT domain
    ntt_c = [(ntt_a[i] * ntt_b[i]) % modulus for i in range(n)]
    
    # Inverse NTT
    omega_inv = pow(omega, -1, modulus)
    c = inverse_ntt(ntt_c, omega_inv, modulus)
    
    return c

def print_polynomial(a):
    print('-'*50)
    for i, coeff in enumerate(a):
        print(f"Coefficient {i}: {hex(coeff)} ({coeff})")
    print('-'*50)

In [32]:
# Function to read bigint<4> values from a binary file
def read_bigint_file(filename, element_size=32):
    values = []
    with open(filename, "rb") as f:
        while True:
            data = f.read(element_size)
            if not data:
                break
            value = int.from_bytes(data, byteorder='little', signed=False)
            values.append(mpz(value))
    return values

# Main function
def main():
    # Read input polynomials from binary files
    a = [mpz(1), mpz(2)]
    b = [mpz(3), mpz(4)]

    # Parameters for NTT
    modulus = mpz('0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000001')
    omega = mpz('3465144826073652318776269530687742778270252468765361963008')
    # Primitive 2n-th root of unity

    # Perform polynomial multiplication using NWC and NTT
    c = polynomial_multiplication_ntt(a, b, omega, modulus)

    # Print the result
    print_polynomial(a)
    print_polynomial(b)
    print_polynomial(c)
    

if __name__ == "__main__":
    main()


--------------------------------------------------
Coefficient 0: 0x1 (1)
Coefficient 1: 0x2 (2)
--------------------------------------------------
--------------------------------------------------
Coefficient 0: 0x3 (3)
Coefficient 1: 0x4 (4)
--------------------------------------------------
--------------------------------------------------
Coefficient 0: 0xb (11)
Coefficient 1: 0xa (10)
--------------------------------------------------


In [31]:
# Main function
def main():
    # Read input polynomials from binary files
    a = read_bigint_file("../build/data/input_a.txt")
    b = read_bigint_file("../build/data/input_b.txt")
    
    # Parameters for NTT
    modulus = mpz('0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000001')
    omega = mpz('3465144826073652318776269530687742778270252468765361963008')
    # Primitive 2n-th root of unity

    # Perform polynomial multiplication using NWC and NTT
    c = polynomial_multiplication_ntt(a, b, omega, modulus)

    # Print the result
    print_polynomial(a)
    print_polynomial(b)
    print_polynomial(c)

if __name__ == "__main__":
    main()


--------------------------------------------------
Coefficient 0: 0x69a06a3b3f6677a49a1bbbc34e74e4fad0f07d0ded2040f0679455341ae888c9 (47776277814033952433763050678231901420087055211578601955827204569246456121545)
Coefficient 1: 0x5f699348721708d60f83e3205a8a172b30584d19880212f22b6d0c83fad7c5e6 (43156256067056252598399532458876302212078633050381310887173681826697148089830)
--------------------------------------------------
--------------------------------------------------
Coefficient 0: 0x205903ea0489513c68fd5dbcc02f38f8aa18518c723c4a4ee084a8386246b19a (14631287557774099357164870252181119603705593507631397245646808807593795301786)
Coefficient 1: 0x5c1c4d5d469c3478fb4d40aed0e39be97e0870b99610d2f1cb2d3f4aa1e3ebfc (41662787736654164824722229693790626207035314492169741764232259058989898394620)
--------------------------------------------------
--------------------------------------------------
Coefficient 0: 0x28da7877d75d5c1a9ce4872b86b72fc562ea8a518a9d02f6a7d1241839606a4 (115490737774551

In [18]:
A = 0x69a06a3b3f6677a49a1bbbc34e74e4fad0f07d0ded2040f0679455341ae888c9
B = 0x5f699348721708d60f83e3205a8a172b30584d19880212f22b6d0c83fad7c5e6
P = 0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000001
omega = 3465144826073652318776269530687742778270252468765361963008

A_o = (A + B * omega) % P
A_e = (A - B * omega) % P

print(hex(o))
print(hex(e))

0x3ff007093d47cd14370f5585a6f9a02850bdac81591dce2ad4de45951169918e
0x1f63261a17e7a4ecc9ee49f8ec4e51c7fd65a997812457b6fa4a64d424678003
