bench: weigh montgomery - fixed - Pure Haskell large fixed-width integers.

commit b6444006e248c269da8d565c3d50f4d723c60a5a
parent b70839aef46fc10c553c02837b15722eff9d8056
Author: Jared Tobin <jared@jtobin.io>
Date:   Fri, 21 Nov 2025 13:37:02 +0400

bench: weigh montgomery

Diffstat:
M bench/Weight.hs  | 237 +++++++++++++++++++++++++++++++++----------------------------------------------

1 file changed, 98 insertions(+), 139 deletions(-)
diff --git a/bench/Weight.hs b/bench/Weight.hs
@@ -1,4 +1,4 @@
-{-# OPTIONS_GHC -fno-warn-incomplete-uni-patterns #-}
+{-# OPTIONS_GHC -fno-warn-incomplete-uni-patterns -fno-warn-type-defaults #-}
 {-# LANGUAGE BangPatterns #-}
 {-# LANGUAGE OverloadedStrings #-}
 
@@ -7,149 +7,108 @@ module Main where
 import qualified Data.Word.Wider as W
 import qualified Numeric.Montgomery.Secp256k1.Curve as C
 import qualified Numeric.Montgomery.Secp256k1.Scalar as S
-import qualified Weigh
+import Weigh
 
 -- note that 'weigh' doesn't work properly in a repl
 main :: IO ()
-main = W.mainWith $ do
+main = mainWith $ do
   add
+  sub
+  mul
+  sqr
+  inv
+  redc
+  retr
 
-add = W.wgroup "add" $ do
-  W.func "M(1) + M(2)" (C.add one) (to (W.to 2))
-  W.func "M(1) + M(2 ^ 255 - 19)" (C.add one) (to (W.to (2 ^ 255 - 19)))
+add :: Weigh ()
+add = wgroup "add" $ do
+  func "curve:  M(1) + M(2)"
+    (C.add C.one)
+    (C.to (W.to 2))
+  func "curve:  M(1) + M(2 ^ 255 - 19)"
+    (C.add C.one)
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: M(1) + M(2)"
+    (S.add S.one)
+    (S.to (W.to 2))
+  func "scalar: M(1) + M(2 ^ 255 - 19)"
+    (S.add S.one)
+    (S.to (W.to (2 ^ 255 - 19)))
 
+sub :: Weigh ()
+sub = wgroup "sub" $ do
+  func "curve:  M(2 ^ 255 - 1) - M(1)"
+    (C.sub (C.to (W.to (2 ^ 255 - 1))))
+    C.one
+  func "curve:  M(2 ^ 255 - 1) - M(2 ^ 255 - 19)"
+    (C.sub (C.to (W.to (2 ^ 255 - 1))))
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: M(2 ^ 255 - 1) - M(1)"
+    (S.sub (S.to (W.to (2 ^ 255 - 1))))
+    S.one
+  func "scalar: M(2 ^ 255 - 1) - M(2 ^ 255 - 19)"
+    (S.sub (S.to (W.to (2 ^ 255 - 1))))
+    (S.to (W.to (2 ^ 255 - 19)))
 
---
---
--- remQ :: W.Weigh ()
--- remQ = W.wgroup "remQ" $ do
---   W.func "remQ 2" S.remQ 2
---   W.func "remQ (2 ^ 255 - 19)" S.remQ big
---
--- parse_int256 :: W.Weigh ()
--- parse_int256 = W.wgroup "parse_int256" $ do
---   W.func' "parse_int (small)" parse_int (BS.replicate 32 0x00)
---   W.func' "parse_int (big)" parse_int (BS.replicate 32 0xFF)
---
--- add :: W.Weigh ()
--- add = W.wgroup " add" $ do
---   W.func "2 p (double, trivial projective point)" (S.add p) p
---   W.func "2 r (double, nontrivial projective point)" (S.add r) r
---   W.func "p + q (trivial projective points)" (S.add p) q
---   W.func "p + s (nontrivial mixed points)" (S.add p) s
---   W.func "s + r (nontrivial projective points)" (S.add s) r
---
--- mul :: W.Weigh ()
--- mul = W.wgroup "mul" $ do
---   W.func "2 G" (S.mul S._CURVE_G) 2
---   W.func "(2 ^ 255 - 19) G" (S.mul S._CURVE_G) big
---
--- mul_unsafe :: W.Weigh ()
--- mul_unsafe = W.wgroup "mul_unsafe" $ do
---   W.func "2 G" (S.mul_unsafe S._CURVE_G) 2
---   W.func "(2 ^ 255 - 19) G" (S.mul_unsafe S._CURVE_G) big
---
--- mul_wnaf :: W.Weigh ()
--- mul_wnaf = W.wgroup "mul_wnaf" $ do
---   W.value "precompute" S.precompute
---   W.func "2 G" (S.mul_wnaf tex) 2
---   W.func "(2 ^ 255 - 19) G" (S.mul_wnaf tex) big
---
--- derive_pub :: W.Weigh ()
--- derive_pub = W.wgroup "derive_pub" $ do
---   W.func "sk = 2" S.derive_pub 2
---   W.func "sk = 2 ^ 255 - 19" S.derive_pub big
---   W.func "wnaf, sk = 2" (S.derive_pub' tex) 2
---   W.func "wnaf, sk = 2 ^ 255 - 19" (S.derive_pub' tex) big
---
--- schnorr :: W.Weigh ()
--- schnorr = W.wgroup "schnorr" $ do
---   W.func "sign_schnorr (small)" (S.sign_schnorr 2 s_msg) s_aux
---   W.func "sign_schnorr (large)" (S.sign_schnorr big s_msg) s_aux
---   W.func "sign_schnorr' (small)" (S.sign_schnorr' tex 2 s_msg) s_aux
---   W.func "sign_schnorr' (large)" (S.sign_schnorr' tex big s_msg) s_aux
---   W.func "verify_schnorr" (S.verify_schnorr s_msg s_pk) s_sig
---   W.func "verify_schnorr'" (S.verify_schnorr' tex s_msg s_pk) s_sig
---
--- ecdsa :: W.Weigh ()
--- ecdsa = W.wgroup "ecdsa" $ do
---     W.func "sign_ecdsa (small)" (S.sign_ecdsa 2) s_msg
---     W.func "sign_ecdsa (large)" (S.sign_ecdsa big) s_msg
---     W.func "sign_ecdsa' (small)" (S.sign_ecdsa' tex 2) s_msg
---     W.func "sign_ecdsa' (large)" (S.sign_ecdsa' tex big) s_msg
---     W.func "verify_ecdsa" (S.verify_ecdsa msg pub) sig
---     W.func "verify_ecdsa'" (S.verify_ecdsa' tex msg pub) sig
---   where
---     Just pub = S.derive_pub big
---     msg = "i approve of this message"
---     Just sig = S.sign_ecdsa big s_msg
---
--- ecdh :: W.Weigh ()
--- ecdh = W.wgroup "ecdh" $ do
---     W.func "ecdh (small)" (S.ecdh pub) 2
---     W.func "ecdh (large)" (S.ecdh pub) b
---   where
---     b = 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed
---     Just pub = S.parse_point . decodeLenient $
---       "bd02b9dfc8ef760708950bd972f2dc244893b61b6b46c3b19be1b2da7b034ac5"
---
--- s_sk :: Integer
--- s_sk = parse_int . decodeLenient $
---   "B7E151628AED2A6ABF7158809CF4F3C762E7160F38B4DA56A784D9045190CFEF"
---
--- s_sig :: BS.ByteString
--- s_sig = decodeLenient "6896BD60EEAE296DB48A229FF71DFE071BDE413E6D43F917DC8DCF8C78DE33418906D11AC976ABCCB20B091292BFF4EA897EFCB639EA871CFA95F6DE339E4B0A"
---
--- s_pk_raw :: BS.ByteString
--- s_pk_raw = decodeLenient
---   "DFF1D77F2A671C5F36183726DB2341BE58FEAE1DA2DECED843240F7B502BA659"
---
--- s_pk :: S.Projective
--- s_pk = case S.parse_point s_pk_raw of
---   Nothing -> error "bang"
---   Just !pt -> pt
---
--- s_msg :: BS.ByteString
--- s_msg = decodeLenient
---   "243F6A8885A308D313198A2E03707344A4093822299F31D0082EFA98EC4E6C89"
---
--- s_aux :: BS.ByteString
--- s_aux = decodeLenient
---   "0000000000000000000000000000000000000000000000000000000000000001"
---
--- p_bs :: BS.ByteString
--- p_bs = decodeLenient
---   "0279be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798"
---
--- p :: S.Projective
--- p = case S.parse_point p_bs of
---   Nothing -> error "bang"
---   Just !pt -> pt
---
--- q_bs :: BS.ByteString
--- q_bs = decodeLenient
---   "02f9308a019258c31049344f85f89d5229b531c845836f99b08601f113bce036f9"
---
--- q :: S.Projective
--- q = case S.parse_point q_bs of
---   Nothing -> error "bang"
---   Just !pt -> pt
---
--- r_bs :: BS.ByteString
--- r_bs = decodeLenient
---   "03a2113cf152585d96791a42cdd78782757fbfb5c6b2c11b59857eb4f7fda0b0e8"
---
--- r :: S.Projective
--- r = case S.parse_point r_bs of
---   Nothing -> error "bang"
---   Just !pt -> pt
---
--- s_bs :: BS.ByteString
--- s_bs = decodeLenient
---   "0306413898a49c93cccf3db6e9078c1b6a8e62568e4a4770e0d7d96792d1c580ad"
---
--- s :: S.Projective
--- s = case S.parse_point s_bs of
---   Nothing -> error "bang"
---   Just !pt -> pt
+mul :: Weigh ()
+mul = wgroup "mul" $ do
+  func "curve:  M(2) * M(2)"
+    (C.mul (C.to (W.to 2)))
+    (C.to (W.to 2))
+  func "curve:  M(2) * M(2 ^ 255 - 19)"
+    (C.mul (C.to (W.to 2)))
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: M(2) * M(2)"
+    (S.mul (S.to (W.to 2)))
+    (S.to (W.to 2))
+  func "scalar: M(2) * M(2 ^ 255 - 19)"
+    (S.mul (S.to (W.to 2)))
+    (S.to (W.to (2 ^ 255 - 19)))
 
+sqr :: Weigh ()
+sqr = wgroup "sqr" $ do
+  func "curve:  M(2) ^ 2" C.sqr
+    (C.to (W.to 2))
+  func "curve:  M(2 ^ 255 - 19) ^ 2" C.sqr
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: M(2) ^ 2" S.sqr
+    (S.to (W.to 2))
+  func "scalar: M(2 ^ 255 - 19) ^ 2" S.sqr
+    (S.to (W.to (2 ^ 255 - 19)))
+
+inv :: Weigh ()
+inv = wgroup "inv" $ do
+  func "curve:  M(2) ^ -1" C.inv
+    (C.to (W.to 2))
+  func "curve:  M(2 ^ 255 - 19) ^ -1" C.inv
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: M(2) ^ -1" S.inv
+    (S.to (W.to 2))
+  func "scalar: M(2 ^ 255 - 19) ^ -1" S.inv
+    (S.to (W.to (2 ^ 255 - 19)))
+
+redc :: Weigh ()
+redc = wgroup "redc" $ do
+  func "curve:  REDC(M(2), M(2))"
+    (C.redc (C.to (W.to 2)))
+    (C.to (W.to 2))
+  func "curve:  REDC(M(2), M(2 ^ 255 - 19))"
+    (C.redc (C.to (W.to 2)))
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: REDC(M(2), M(2))"
+    (S.redc (S.to (W.to 2)))
+    (S.to (W.to 2))
+  func "scalar: REDC(M(2), M(2 ^ 255 - 19))"
+    (S.redc (S.to (W.to 2)))
+    (S.to (W.to (2 ^ 255 - 19)))
+
+retr :: Weigh ()
+retr = wgroup "retr" $ do
+  func "curve:  RETR(M(2))" C.retr
+    (C.to (W.to 2))
+  func "curve:  RETR(M(2 ^ 255 - 19))" C.retr
+    (C.to (W.to (2 ^ 255 - 19)))
+  func "scalar: RETR(M(2))" S.retr
+    (S.to (W.to 2))
+  func "scalar: RETR(M(2 ^ 255 - 19))" S.retr
+    (S.to (W.to (2 ^ 255 - 19)))

	fixed Pure Haskell large fixed-width integers.
	git clone git://git.ppad.tech/fixed.git
	Log \| Files \| Refs \| README \| LICENSE