Struct risc0_zkp::field::baby_bear::Elem

source · 
pub struct Elem(/* private fields */);
Expand description

The BabyBear class is an element of the finite field F_p, where P is the prime number 15*2^27 + 1. Put another way, Fp is basically integer arithmetic modulo P.

The Fp datatype is the core type of all of the operations done within the zero knowledge proofs, and is the smallest ‘addressable’ datatype, and the base type of which all composite types are built. In many ways, one can imagine it as the word size of a very strange architecture.

This specific prime P was chosen to:

  • Be less than 2^31 so that it fits within a 32 bit word and doesn’t overflow on addition.
  • Otherwise have as large a power of 2 in the factors of P-1 as possible.

This last property is useful for number theoretical transforms (the fast fourier transform equivelant on finite fields). See NTT.h for details.

The Fp class wraps all the standard arithmetic operations to make the finite field elements look basically like ordinary numbers (which they mostly are).

Implementations§

source§

impl Elem

source

pub const fn new(x: u32) -> Elem

Create a new BabyBear from a raw integer.

source

pub const fn new_raw(x: u32) -> Elem

Create a new BabyBear from a Montgomery form representation

Requires that x comes pre-encoded in Montegomery form.

source

pub const fn as_u32(&self) -> u32

Cast a BabyBear to an integer

source

pub const fn as_u32_montgomery(&self) -> u32

Return the Montgomery form representation used for byte-based hashes of slices of BabyBears.

Trait Implementations§

source§

impl Add for Elem

source§

fn add(self, rhs: Elem) -> Elem

Addition for Baby Bear Elem

§

type Output = Elem

The resulting type after applying the + operator.
source§

impl AddAssign for Elem

source§

fn add_assign(&mut self, rhs: Elem)

Simple addition case for Baby Bear Elem

source§

impl Clone for Elem

source§

fn clone(&self) -> Elem

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
source§

impl Debug for Elem

source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more
source§

impl Default for Elem

source§

fn default() -> Elem

Returns the “default value” for a type. Read more
source§

impl Elem for Elem

source§

fn inv(self) -> Elem

Compute the multiplicative inverse of x, or 1 / x in finite field terms. Since we know by Fermat’s Little Theorem that x ^ (P - 1) == 1 % P for any x != 0, it follows that x * x ^ (P - 2) == 1 % P for x != 0. That is, x ^ (P - 2) is the multiplicative inverse of x. Note that if computed this way, the inverse of zero comes out as zero, which we allow because it is convenient in many cases.

source§

fn random(rng: &mut impl RngCore) -> Elem

Generate a random value within the Baby Bear field

source§

const INVALID: Elem = _

Invalid, a value that is not a member of the field. This should only be used with the “is_valid” or “unwrap_or_zero” methods.
source§

const ZERO: Elem = _

Zero, the additive identity.
source§

const ONE: Elem = _

One, the multiplicative identity.
source§

const WORDS: usize = 1usize

How many u32 words are required to hold a single element
source§

fn from_u64(val: u64) -> Elem

Import a number into the field from the natural numbers.
source§

fn to_u32_words(&self) -> Vec<u32>

Represent a field element as a sequence of u32s
source§

fn from_u32_words(val: &[u32]) -> Elem

Interpret a sequence of u32s as a field element
source§

fn is_valid(&self) -> bool

Returns true if this element is not INVALID. Unlike most methods, this may be called on an INVALID element.
source§

fn pow(self, exp: usize) -> Self

Return an element raised to the given power.
source§

fn valid_or_zero(&self) -> Self

Returns 0 if this element is INVALID, else the value of this element. Unlike most methods, this may be called on an INVALID element.
source§

fn ensure_valid(&self) -> &Self

Returns this element, but checks to make sure it’s valid.
source§

fn as_u32_slice(elems: &[Self]) -> &[u32]

Interprets a slice of these elements as u32s. These elements may not be INVALID.
source§

fn as_u32_slice_unchecked(elems: &[Self]) -> &[u32]

Interprets a slice of these elements as u32s. These elements may potentially be INVALID.
source§

fn from_u32_slice(u32s: &[u32]) -> &[Self]

Interprets a slice of u32s as a slice of these elements. These elements may not be INVALID.
source§

fn from_u32_slice_unchecked(u32s: &[u32]) -> &[Self]

Interprets a slice of u32s as a slice of these elements. These elements may be INVALID.
source§

impl From<Elem> for ExtElem

source§

fn from(x: Elem) -> ExtElem

Converts to this type from the input type.
source§

impl From<u32> for Elem

source§

fn from(x: u32) -> Elem

Converts to this type from the input type.
source§

impl From<u64> for Elem

source§

fn from(x: u64) -> Elem

Converts to this type from the input type.
source§

impl Mul<Elem> for ExtElem

source§

fn mul(self, rhs: Elem) -> ExtElem

Multiplication by a Baby Bear Elem

§

type Output = ExtElem

The resulting type after applying the * operator.
source§

impl Mul<ExtElem> for Elem

source§

fn mul(self, rhs: ExtElem) -> ExtElem

Multiplication for a subfield Elem by an ExtElem

§

type Output = ExtElem

The resulting type after applying the * operator.
source§

impl Mul for Elem

source§

fn mul(self, rhs: Elem) -> Elem

Multiplication for Baby Bear Elem

§

type Output = Elem

The resulting type after applying the * operator.
source§

impl MulAssign<Elem> for ExtElem

source§

fn mul_assign(&mut self, rhs: Elem)

Simple multiplication case by a Baby Bear Elem

source§

impl MulAssign for Elem

source§

fn mul_assign(&mut self, rhs: Elem)

Simple multiplication case for Baby Bear Elem

source§

impl Neg for Elem

§

type Output = Elem

The resulting type after applying the - operator.
source§

fn neg(self) -> Elem

Performs the unary - operation. Read more
source§

impl Ord for Elem

source§

fn cmp(&self, rhs: &Elem) -> Ordering

This method returns an Ordering between self and other. Read more
1.21.0 · source§

fn max(self, other: Self) -> Self
where Self: Sized,

Compares and returns the maximum of two values. Read more
1.21.0 · source§

fn min(self, other: Self) -> Self
where Self: Sized,

Compares and returns the minimum of two values. Read more
1.50.0 · source§

fn clamp(self, min: Self, max: Self) -> Self
where Self: Sized + PartialOrd,

Restrict a value to a certain interval. Read more
source§

impl PartialEq for Elem

source§

fn eq(&self, rhs: &Elem) -> bool

This method tests for self and other values to be equal, and is used by ==.
1.0.0 · source§

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
source§

impl PartialOrd for Elem

source§

fn partial_cmp(&self, rhs: &Elem) -> Option<Ordering>

This method returns an ordering between self and other values if one exists. Read more
1.0.0 · source§

fn lt(&self, other: &Rhs) -> bool

This method tests less than (for self and other) and is used by the < operator. Read more
1.0.0 · source§

fn le(&self, other: &Rhs) -> bool

This method tests less than or equal to (for self and other) and is used by the <= operator. Read more
1.0.0 · source§

fn gt(&self, other: &Rhs) -> bool

This method tests greater than (for self and other) and is used by the > operator. Read more
1.0.0 · source§

fn ge(&self, other: &Rhs) -> bool

This method tests greater than or equal to (for self and other) and is used by the >= operator. Read more
source§

impl RootsOfUnity for Elem

source§

const MAX_ROU_PO2: usize = 27usize

Maximum power of two for which we have a root of unity using Baby Bear field

source§

const ROU_FWD: &'static [Elem] = _

‘Forward’ root of unity for each power of two.

source§

const ROU_REV: &'static [Elem] = _

‘Reverse’ root of unity for each power of two.

source§

impl Sub for Elem

source§

fn sub(self, rhs: Elem) -> Elem

Subtraction for Baby Bear Elem

§

type Output = Elem

The resulting type after applying the - operator.
source§

impl SubAssign for Elem

source§

fn sub_assign(&mut self, rhs: Elem)

Simple subtraction case for Baby Bear Elem

source§

impl Zeroable for Elem

source§

fn zeroed() -> Self

Calls zeroed. Read more
source§

impl Copy for Elem

source§

impl Eq for Elem

source§

impl Pod for Elem

Auto Trait Implementations§

§

impl RefUnwindSafe for Elem

§

impl Send for Elem

§

impl Sync for Elem

§

impl Unpin for Elem

§

impl UnwindSafe for Elem

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> CheckedBitPattern for T
where T: AnyBitPattern,

§

type Bits = T

Self must have the same layout as the specified Bits except for the possible invalid bit patterns being checked during is_valid_bit_pattern.
source§

fn is_valid_bit_pattern(_bits: &T) -> bool

If this function returns true, then it must be valid to reinterpret bits as &Self.
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T> Instrument for T

source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> Same for T

§

type Output = T

Should always be Self
source§

impl<T> ToOwned for T
where T: Clone,

§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
source§

impl<T> WithSubscriber for T

source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

impl<T> AnyBitPattern for T
where T: Pod,

source§

impl<T> NoUninit for T
where T: Pod,