Skip to content

k256+p256: impl ff::Field trait for FieldElement types #498

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tarcieri merged 1 commit into from
Dec 23, 2021
Merged

k256+p256: impl ff::Field trait for FieldElement types #498

tarcieri merged 1 commit into from
Dec 23, 2021

Conversation

@tarcieri
Copy link
Member

@tarcieri tarcieri commented Dec 23, 2021

Allows for writing code which is generic over field elements, such as the optimized SWU implementation added in RustCrypto/traits#854

@tarcieri
k256+p256: impl ff::Field trait for FieldElement
27794cc 
Allows for writing code which is generic over field elements, such as
the optimized SWU implementation added in RustCrypto/traits#854
@tarcieri tarcieri changed the title k256+p256: impl ff::Field trait for FieldElement k256+p256: impl ff::Field trait for FieldElement types Dec 23, 2021
@tarcieri
Copy link
Member Author

tarcieri commented Dec 23, 2021

One thing I'm a bit worried about in regard to generic field arithmetic is lazy normalization used by k256. It feels like a potentially leaky abstraction.

tarcieri
tarcieri commented Dec 23, 2021
View reviewed changes
k256/src/arithmetic/field.rs
@@ -1,5 +1,7 @@
//! Field arithmetic modulo p = 2^256 - 2^32 - 2^9 - 2^8 - 2^7 - 2^6 - 2^4 - 1
#![allow(clippy::assign_op_pattern, clippy::op_ref)]
Copy link
Member Author

@tarcieri tarcieri Dec 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left all of the current arithmetic borrowing as-is in order to not affect performance as part of this PR, but it's probably worth benchmarking removing these in a followup and seeing if it affects performance

Copy link
Contributor

@mikelodder7 mikelodder7 Dec 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah I can fix in a follow up PR. I did this crypto-bigint

Copy link
Member Author

@tarcieri tarcieri Dec 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's really easy to fix automatically with cargo clippy --fix, but I just want to make sure it doesn't cause a performance regression

mikelodder7
mikelodder7 reviewed Dec 23, 2021
View reviewed changes
p256/src/arithmetic/affine.rs
@@ -1,5 +1,7 @@
//! Affine points
#![allow(clippy::op_ref)]
Copy link
Contributor

@mikelodder7 mikelodder7 Dec 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could probably fix this in a subsequent PR

@mikelodder7
Copy link
Contributor

mikelodder7 commented Dec 23, 2021

One thing I'm a bit worried about in regard to generic field arithmetic is lazy normalization used by k256. It feels like a potentially leaky abstraction.

How much performance do we loose if normalization is applied with each call? We could add a benchmark for it

@tarcieri
Copy link
Member Author

tarcieri commented Dec 23, 2021

How much performance do we loose if normalization is applied with each call? We could add a benchmark for it

I think it could potentially be a lot for the core::ops::* traits.

@mikelodder7
Copy link
Contributor

mikelodder7 commented Dec 23, 2021

How much performance do we loose if normalization is applied with each call? We could add a benchmark for it

I think it could potentially be a lot for the core::ops::* traits.

Hmm well not sure how to avoid the leaky then

@tarcieri
Copy link
Member Author

tarcieri commented Dec 23, 2021

Given that FieldElement is an internal type, I think this is less worrisome than leaking these details outside the crate, but I would expect cases where a generic implementation may not do what you expect with k256's FieldElement type.

Going to go ahead and merge this, but I'd love to get some additional feedback if anyone has anything to add in perpetuity.

@tarcieri tarcieri merged commit f60fc7f into master Dec 23, 2021
@tarcieri tarcieri deleted the k256+p256/impl-field-trait-for-fieldelement branch December 23, 2021 18:30
This was referenced Jan 5, 2022
Merged
Merged
@tarcieri tarcieri mentioned this pull request Jan 17, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fjarri fjarri Awaiting requested review from fjarri

@tuxxy tuxxy Awaiting requested review from tuxxy

@str4d str4d Awaiting requested review from str4d

1 more reviewer

@mikelodder7 mikelodder7 mikelodder7 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tarcieri @mikelodder7