Merge remote-tracking branch 'upstream/ripple/se/supported' into zhang/groth16

* remove `get_ledger_account_hash` and `get_ledger_tx_hash`

* fix build+tests

.github/CODEOWNERS

@@ -1,8 +1,2 @@
 # Allow anyone to review any change by default.
 *
-
-# Require the rpc-reviewers team to review changes to the rpc code.
-include/xrpl/protocol/ @xrplf/rpc-reviewers
-src/libxrpl/protocol/ @xrplf/rpc-reviewers
-src/xrpld/rpc/ @xrplf/rpc-reviewers
-src/xrpld/app/misc/ @xrplf/rpc-reviewers

.github/actions/build-deps/action.yml

@@ -4,23 +4,20 @@ description: "Install Conan dependencies, optionally forcing a rebuild of all de
 # Note that actions do not support 'type' and all inputs are strings, see
 # https://docs.github.com/en/actions/reference/workflows-and-actions/metadata-syntax#inputs.
 inputs:
+  verbosity:
+    description: "The build verbosity."
+    required: false
+    default: "verbose"
   build_dir:
     description: "The directory where to build."
     required: true
   build_type:
     description: 'The build type to use ("Debug", "Release").'
     required: true
-  build_nproc:
-    description: "The number of processors to use for building."
-    required: true
   force_build:
     description: 'Force building of all dependencies ("true", "false").'
     required: false
     default: "false"
-  log_verbosity:
-    description: "The logging verbosity."
-    required: false
-    default: "verbose"
 
 runs:
   using: composite
@@ -29,10 +26,9 @@ runs:
       shell: bash
       env:
         BUILD_DIR: ${{ inputs.build_dir }}
-        BUILD_NPROC: ${{ inputs.build_nproc }}
         BUILD_OPTION: ${{ inputs.force_build == 'true' && '*' || 'missing' }}
         BUILD_TYPE: ${{ inputs.build_type }}
-        LOG_VERBOSITY: ${{ inputs.log_verbosity }}
+        VERBOSITY: ${{ inputs.verbosity }}
       run: |
         echo 'Installing dependencies.'
         mkdir -p "${BUILD_DIR}"
@@ -43,7 +39,6 @@ runs:
           --options:host='&:tests=True' \
           --options:host='&:xrpld=True' \
           --settings:all build_type="${BUILD_TYPE}" \
-          --conf:all tools.build:jobs=${BUILD_NPROC} \
-          --conf:all tools.build:verbosity="${LOG_VERBOSITY}" \
-          --conf:all tools.compilation:verbosity="${LOG_VERBOSITY}" \
+          --conf:all tools.build:verbosity="${VERBOSITY}" \
+          --conf:all tools.compilation:verbosity="${VERBOSITY}" \
           ..

.github/scripts/levelization/results/loops.txt

@@ -17,7 +17,7 @@ Loop: xrpld.app xrpld.rpc
   xrpld.rpc > xrpld.app
 
 Loop: xrpld.app xrpld.shamap
-  xrpld.shamap ~= xrpld.app
+  xrpld.app > xrpld.shamap
 
 Loop: xrpld.core xrpld.perflog
   xrpld.perflog == xrpld.core

.github/scripts/levelization/results/ordering.txt

@@ -8,10 +8,6 @@ libxrpl.ledger > xrpl.ledger
 libxrpl.ledger > xrpl.protocol
 libxrpl.net > xrpl.basics
 libxrpl.net > xrpl.net
-libxrpl.nodestore > xrpl.basics
-libxrpl.nodestore > xrpl.json
-libxrpl.nodestore > xrpl.nodestore
-libxrpl.nodestore > xrpl.protocol
 libxrpl.protocol > xrpl.basics
 libxrpl.protocol > xrpl.json
 libxrpl.protocol > xrpl.protocol
@@ -22,9 +18,6 @@ libxrpl.server > xrpl.basics
 libxrpl.server > xrpl.json
 libxrpl.server > xrpl.protocol
 libxrpl.server > xrpl.server
-libxrpl.shamap > xrpl.basics
-libxrpl.shamap > xrpl.protocol
-libxrpl.shamap > xrpl.shamap
 test.app > test.jtx
 test.app > test.rpc
 test.app > test.toplevel
@@ -32,11 +25,11 @@ test.app > test.unit_test
 test.app > xrpl.basics
 test.app > xrpld.app
 test.app > xrpld.core
+test.app > xrpld.nodestore
 test.app > xrpld.overlay
 test.app > xrpld.rpc
 test.app > xrpl.json
 test.app > xrpl.ledger
-test.app > xrpl.nodestore
 test.app > xrpl.protocol
 test.app > xrpl.resource
 test.basics > test.jtx
@@ -93,7 +86,8 @@ test.nodestore > test.toplevel
 test.nodestore > test.unit_test
 test.nodestore > xrpl.basics
 test.nodestore > xrpld.core
-test.nodestore > xrpl.nodestore
+test.nodestore > xrpld.nodestore
+test.nodestore > xrpld.unity
 test.overlay > test.jtx
 test.overlay > test.toplevel
 test.overlay > test.unit_test
@@ -101,8 +95,8 @@ test.overlay > xrpl.basics
 test.overlay > xrpld.app
 test.overlay > xrpld.overlay
 test.overlay > xrpld.peerfinder
+test.overlay > xrpld.shamap
 test.overlay > xrpl.protocol
-test.overlay > xrpl.shamap
 test.peerfinder > test.beast
 test.peerfinder > test.unit_test
 test.peerfinder > xrpl.basics
@@ -137,21 +131,18 @@ test.server > xrpl.json
 test.server > xrpl.server
 test.shamap > test.unit_test
 test.shamap > xrpl.basics
-test.shamap > xrpl.nodestore
+test.shamap > xrpld.nodestore
+test.shamap > xrpld.shamap
 test.shamap > xrpl.protocol
-test.shamap > xrpl.shamap
 test.toplevel > test.csf
 test.toplevel > xrpl.json
 test.unit_test > xrpl.basics
 tests.libxrpl > xrpl.basics
-tests.libxrpl > xrpl.json
 tests.libxrpl > xrpl.net
 xrpl.json > xrpl.basics
 xrpl.ledger > xrpl.basics
 xrpl.ledger > xrpl.protocol
 xrpl.net > xrpl.basics
-xrpl.nodestore > xrpl.basics
-xrpl.nodestore > xrpl.protocol
 xrpl.protocol > xrpl.basics
 xrpl.protocol > xrpl.json
 xrpl.resource > xrpl.basics
@@ -160,21 +151,17 @@ xrpl.resource > xrpl.protocol
 xrpl.server > xrpl.basics
 xrpl.server > xrpl.json
 xrpl.server > xrpl.protocol
-xrpl.shamap > xrpl.basics
-xrpl.shamap > xrpl.nodestore
-xrpl.shamap > xrpl.protocol
 xrpld.app > test.unit_test
 xrpld.app > xrpl.basics
 xrpld.app > xrpld.conditions
 xrpld.app > xrpld.consensus
+xrpld.app > xrpld.nodestore
 xrpld.app > xrpld.perflog
 xrpld.app > xrpl.json
 xrpld.app > xrpl.ledger
 xrpld.app > xrpl.net
-xrpld.app > xrpl.nodestore
 xrpld.app > xrpl.protocol
 xrpld.app > xrpl.resource
-xrpld.app > xrpl.shamap
 xrpld.conditions > xrpl.basics
 xrpld.conditions > xrpl.protocol
 xrpld.consensus > xrpl.basics
@@ -184,6 +171,11 @@ xrpld.core > xrpl.basics
 xrpld.core > xrpl.json
 xrpld.core > xrpl.net
 xrpld.core > xrpl.protocol
+xrpld.nodestore > xrpl.basics
+xrpld.nodestore > xrpld.core
+xrpld.nodestore > xrpld.unity
+xrpld.nodestore > xrpl.json
+xrpld.nodestore > xrpl.protocol
 xrpld.overlay > xrpl.basics
 xrpld.overlay > xrpld.core
 xrpld.overlay > xrpld.peerfinder
@@ -199,11 +191,13 @@ xrpld.perflog > xrpl.basics
 xrpld.perflog > xrpl.json
 xrpld.rpc > xrpl.basics
 xrpld.rpc > xrpld.core
+xrpld.rpc > xrpld.nodestore
 xrpld.rpc > xrpl.json
 xrpld.rpc > xrpl.ledger
 xrpld.rpc > xrpl.net
-xrpld.rpc > xrpl.nodestore
 xrpld.rpc > xrpl.protocol
 xrpld.rpc > xrpl.resource
 xrpld.rpc > xrpl.server
-xrpld.shamap > xrpl.shamap
+xrpld.shamap > xrpl.basics
+xrpld.shamap > xrpld.nodestore
+xrpld.shamap > xrpl.protocol

.github/scripts/rename/README.md

@@ -1,36 +0,0 @@
-## Renaming ripple(d) to xrpl(d)
-
-In the initial phases of development of the XRPL, the open source codebase was
-called "rippled" and it remains with that name even today. Today, over 1000
-nodes run the application, and code contributions have been submitted by
-developers located around the world. The XRPL community is larger than ever.
-In light of the decentralized and diversified nature of XRPL, we will rename any
-references to `ripple` and `rippled` to `xrpl` and `xrpld`, when appropriate.
-
-See [here](https://xls.xrpl.org/xls/XLS-0095-rename-rippled-to-xrpld.html) for
-more information.
-
-### Scripts
-
-To facilitate this transition, there will be multiple scripts that developers
-can run on their own PRs and forks to minimize conflicts. Each script should be
-run from the repository root.
-
-1. `.github/scripts/rename/definitions.sh`: This script will rename all
-   definitions, such as include guards, from `RIPPLE_XXX` and `RIPPLED_XXX` to
-   `XRPL_XXX`.
-2. `.github/scripts/rename/copyright.sh`: This script will remove superflous
-   copyright notices.
-3. `.github/scripts/rename/cmake.sh`: This script will rename all CMake files
-   from `RippleXXX.cmake` or `RippledXXX.cmake` to `XrplXXX.cmake`, and any
-   references to `ripple` and `rippled` (with or without capital letters) to
-   `xrpl` and `xrpld`, respectively. The name of the binary will remain as-is,
-   and will only be renamed to `xrpld` by a later script.
-
-You can run all these scripts from the repository root as follows:
-
-```shell
-./.github/scripts/rename/definitions.sh .
-./.github/scripts/rename/copyright.sh .
-./.github/scripts/rename/cmake.sh .
-```

.github/scripts/rename/cmake.sh

@@ -1,92 +0,0 @@
-#!/bin/bash
-
-# Exit the script as soon as an error occurs.
-set -e
-
-# On MacOS, ensure that GNU sed and head are installed and available as `gsed`
-# and `ghead`, respectively.
-SED_COMMAND=sed
-HEAD_COMMAND=head
-if [[ "${OSTYPE}" == 'darwin'* ]]; then
-  if ! command -v gsed &> /dev/null; then
-      echo "Error: gsed is not installed. Please install it using 'brew install gnu-sed'."
-      exit 1
-  fi
-  SED_COMMAND=gsed
-  if ! command -v ghead &> /dev/null; then
-      echo "Error: ghead is not installed. Please install it using 'brew install coreutils'."
-      exit 1
-  fi
-  HEAD_COMMAND=ghead
-fi
-
-# This script renames CMake files from `RippleXXX.cmake` or `RippledXXX.cmake`
-# to `XrplXXX.cmake`, and any references to `ripple` and `rippled` (with or
-# without capital letters) to `xrpl` and `xrpld`, respectively. The name of the
-# binary will remain as-is, and will only be renamed to `xrpld` in a different
-# script, but the proto file will be renamed.
-# Usage: .github/scripts/rename/cmake.sh <repository directory>
-
-if [ "$#" -ne 1 ]; then
-    echo "Usage: $0 <repository directory>"
-    exit 1
-fi
-
-DIRECTORY=$1
-echo "Processing directory: ${DIRECTORY}"
-if [ ! -d "${DIRECTORY}" ]; then
-    echo "Error: Directory '${DIRECTORY}' does not exist."
-    exit 1
-fi
-pushd ${DIRECTORY}
-
-# Rename the files.
-find cmake -type f -name 'Rippled*.cmake' -exec bash -c 'mv "${1}" "${1/Rippled/Xrpl}"' - {} \;
-find cmake -type f -name 'Ripple*.cmake' -exec bash -c 'mv "${1}" "${1/Ripple/Xrpl}"' - {} \;
-if [ -e cmake/xrpl_add_test.cmake ]; then
-  mv cmake/xrpl_add_test.cmake cmake/XrplAddTest.cmake
-fi
-if [ -e include/xrpl/proto/ripple.proto ]; then
-  mv include/xrpl/proto/ripple.proto include/xrpl/proto/xrpl.proto
-fi
-
-# Rename inside the files.
-find cmake -type f -name '*.cmake' | while read -r FILE; do
-    echo "Processing file: ${FILE}"
-    ${SED_COMMAND} -i 's/Rippled/Xrpld/g' "${FILE}"
-    ${SED_COMMAND} -i 's/Ripple/Xrpl/g' "${FILE}"
-    ${SED_COMMAND} -i 's/rippled/xrpld/g' "${FILE}"
-    ${SED_COMMAND} -i 's/ripple/xrpl/g' "${FILE}"
-done
-${SED_COMMAND} -i -E 's/Rippled?/Xrpl/g' CMakeLists.txt
-${SED_COMMAND} -i 's/ripple/xrpl/g' CMakeLists.txt
-${SED_COMMAND} -i 's/include(xrpl_add_test)/include(XrplAddTest)/' src/tests/libxrpl/CMakeLists.txt
-${SED_COMMAND} -i 's/ripple.pb.h/xrpl.pb.h/' include/xrpl/protocol/messages.h
-${SED_COMMAND} -i 's/ripple.pb.h/xrpl.pb.h/' BUILD.md
-${SED_COMMAND} -i 's/ripple.pb.h/xrpl.pb.h/' BUILD.md
-
-# Restore the name of the validator keys repository.
-${SED_COMMAND} -i 's@xrpl/validator-keys-tool@ripple/validator-keys-tool@' cmake/XrplValidatorKeys.cmake
-
-# Ensure the name of the binary and config remain 'rippled' for now.
-${SED_COMMAND} -i -E 's/xrpld(-example)?\.cfg/rippled\1.cfg/g' cmake/XrplInstall.cmake
-if grep -q '"xrpld"' cmake/XrplCore.cmake; then
-  # The script has been rerun, so just restore the name of the binary.
-  ${SED_COMMAND} -i 's/"xrpld"/"rippled"/' cmake/XrplCore.cmake
-elif ! grep -q '"rippled"' cmake/XrplCore.cmake; then
-  ${HEAD_COMMAND} -n -1 cmake/XrplCore.cmake > cmake.tmp
-  echo '  # For the time being, we will keep the name of the binary as it was.' >> cmake.tmp
-  echo '  set_target_properties(xrpld PROPERTIES OUTPUT_NAME "rippled")' >> cmake.tmp
-  tail -1 cmake/XrplCore.cmake >> cmake.tmp
-  mv cmake.tmp cmake/XrplCore.cmake
-fi
-
-# Restore the symlink from 'xrpld' to 'rippled'.
-${SED_COMMAND} -i -E 's@create_symbolic_link\(xrpld@create_symbolic_link(rippled@' cmake/XrplInstall.cmake
-
-# Remove the symlink that previously pointed from 'ripple' to 'xrpl' but now is
-# no longer needed.
-${SED_COMMAND} -z -i -E 's@install\(CODE.+CMAKE_INSTALL_INCLUDEDIR}/xrpl\)\n"\)\n+@@' cmake/XrplInstall.cmake
-
-popd
-echo "Renaming complete."

.github/scripts/rename/copyright.sh

@@ -1,106 +0,0 @@
-#!/bin/bash
-
-# Exit the script as soon as an error occurs.
-set -e
-
-# On MacOS, ensure that GNU sed is installed and available as `gsed`.
-SED_COMMAND=sed
-if [[ "${OSTYPE}" == 'darwin'* ]]; then
-  if ! command -v gsed &> /dev/null; then
-      echo "Error: gsed is not installed. Please install it using 'brew install gnu-sed'."
-      exit 1
-  fi
-  SED_COMMAND=gsed
-fi
-
-# This script removes superfluous copyright notices in source and header files
-# in this project. Specifically, it removes all notices referencing Ripple,
-# XRPLF, and certain individual contributors upon mutual agreement, so the one
-# in the LICENSE.md file applies throughout. Copyright notices referencing
-# external contributions, e.g. from Bitcoin, remain as-is.
-# Usage: .github/scripts/rename/copyright.sh <repository directory>
-
-if [ "$#" -ne 1 ]; then
-    echo "Usage: $0 <repository directory>"
-    exit 1
-fi
-
-DIRECTORY=$1
-echo "Processing directory: ${DIRECTORY}"
-if [ ! -d "${DIRECTORY}" ]; then
-    echo "Error: Directory '${DIRECTORY}' does not exist."
-    exit 1
-fi
-pushd ${DIRECTORY}
-
-# Prevent sed and echo from removing newlines and tabs in string literals by
-# temporarily replacing them with placeholders. This only affects one file.
-PLACEHOLDER_NEWLINE="__NEWLINE__"
-PLACEHOLDER_TAB="__TAB__"
-${SED_COMMAND} -i -E "s@\\\n@${PLACEHOLDER_NEWLINE}@g" src/test/rpc/ValidatorInfo_test.cpp
-${SED_COMMAND} -i -E "s@\\\t@${PLACEHOLDER_TAB}@g" src/test/rpc/ValidatorInfo_test.cpp
-
-# Process the include/ and src/ directories.
-DIRECTORIES=("include" "src")
-for DIRECTORY in "${DIRECTORIES[@]}"; do
-  echo "Processing directory: ${DIRECTORY}"
-
-  find "${DIRECTORY}" -type f \( -name "*.h" -o -name "*.hpp" -o -name "*.ipp" -o -name "*.cpp" -o -name "*.macro" \) | while read -r FILE; do
-      echo "Processing file: ${FILE}"
-      # Handle the cases where the copyright notice is enclosed in /* ... */
-      # and usually surrounded by //---- and //======.
-      ${SED_COMMAND} -z -i -E 's@^//-------+\n+@@' "${FILE}"
-      ${SED_COMMAND} -z -i -E 's@^.*Copyright.+(Ripple|Bougalis|Falco|Hinnant|Null|Ritchford|XRPLF).+PERFORMANCE OF THIS SOFTWARE\.\n\*/\n+@@' "${FILE}"
-      ${SED_COMMAND} -z -i -E 's@^//=======+\n+@@' "${FILE}"
-
-      # Handle the cases where the copyright notice is commented out with //.
-      ${SED_COMMAND} -z -i -E 's@^//\n// Copyright.+Falco \(vinnie dot falco at gmail dot com\)\n//\n+@@' "${FILE}"
-  done
-done
-
-# Restore copyright notices that were removed from specific files, without
-# restoring the verbiage that is already present in LICENSE.md. Ensure that if
-# the script is run multiple times, duplicate notices are not added.
-if ! grep -q 'Raw Material Software' include/xrpl/beast/core/CurrentThreadName.h; then
-  echo -e "// Portions of this file are from JUCE (http://www.juce.com).\n// Copyright (c) 2013 - Raw Material Software Ltd.\n// Please visit http://www.juce.com\n\n$(cat include/xrpl/beast/core/CurrentThreadName.h)" > include/xrpl/beast/core/CurrentThreadName.h
-fi
-if ! grep -q 'Dev Null' src/test/app/NetworkID_test.cpp; then
-  echo -e "// Copyright (c) 2020 Dev Null Productions\n\n$(cat src/test/app/NetworkID_test.cpp)" > src/test/app/NetworkID_test.cpp
-fi
-if ! grep -q 'Dev Null' src/test/app/tx/apply_test.cpp; then
-  echo -e "// Copyright (c) 2020 Dev Null Productions\n\n$(cat src/test/app/tx/apply_test.cpp)" > src/test/app/tx/apply_test.cpp
-fi
-if ! grep -q 'Dev Null' src/test/app/NetworkOPs_test.cpp; then
-  echo -e "// Copyright (c) 2020 Dev Null Productions\n\n$(cat src/test/app/NetworkOPs_test.cpp)" > src/test/app/NetworkOPs_test.cpp
-fi
-if ! grep -q 'Dev Null' src/test/rpc/ManifestRPC_test.cpp; then
-  echo -e "// Copyright (c) 2020 Dev Null Productions\n\n$(cat src/test/rpc/ManifestRPC_test.cpp)" > src/test/rpc/ManifestRPC_test.cpp
-fi
-if ! grep -q 'Dev Null' src/test/rpc/ValidatorInfo_test.cpp; then
-  echo -e "// Copyright (c) 2020 Dev Null Productions\n\n$(cat src/test/rpc/ValidatorInfo_test.cpp)" > src/test/rpc/ValidatorInfo_test.cpp
-fi
-if ! grep -q 'Dev Null' src/xrpld/rpc/handlers/DoManifest.cpp; then
-  echo -e "// Copyright (c) 2019 Dev Null Productions\n\n$(cat src/xrpld/rpc/handlers/DoManifest.cpp)" > src/xrpld/rpc/handlers/DoManifest.cpp
-fi
-if ! grep -q 'Dev Null' src/xrpld/rpc/handlers/ValidatorInfo.cpp; then
-  echo -e "// Copyright (c) 2019 Dev Null Productions\n\n$(cat src/xrpld/rpc/handlers/ValidatorInfo.cpp)" > src/xrpld/rpc/handlers/ValidatorInfo.cpp
-fi
-if ! grep -q 'Bougalis' include/xrpl/basics/SlabAllocator.h; then
-  echo -e "// Copyright (c) 2022, Nikolaos D. Bougalis <nikb@bougalis.net>\n\n$(cat include/xrpl/basics/SlabAllocator.h)" > include/xrpl/basics/SlabAllocator.h
-fi
-if ! grep -q 'Bougalis' include/xrpl/basics/spinlock.h; then
-  echo -e "// Copyright (c) 2022, Nikolaos D. Bougalis <nikb@bougalis.net>\n\n$(cat include/xrpl/basics/spinlock.h)" > include/xrpl/basics/spinlock.h
-fi
-if ! grep -q 'Bougalis' include/xrpl/basics/tagged_integer.h; then
-  echo -e "// Copyright (c) 2014, Nikolaos D. Bougalis <nikb@bougalis.net>\n\n$(cat include/xrpl/basics/tagged_integer.h)" > include/xrpl/basics/tagged_integer.h
-fi
-if ! grep -q 'Ritchford' include/xrpl/beast/utility/Zero.h; then
-  echo -e "// Copyright (c) 2014, Tom Ritchford <tom@swirly.com>\n\n$(cat include/xrpl/beast/utility/Zero.h)" > include/xrpl/beast/utility/Zero.h
-fi
-
-# Restore newlines and tabs in string literals in the affected file.
-${SED_COMMAND} -i -E "s@${PLACEHOLDER_NEWLINE}@\\\n@g" src/test/rpc/ValidatorInfo_test.cpp
-${SED_COMMAND} -i -E "s@${PLACEHOLDER_TAB}@\\\t@g" src/test/rpc/ValidatorInfo_test.cpp
-
-popd
-echo "Removal complete."

.github/scripts/rename/definitions.sh

@@ -1,42 +0,0 @@
-#!/bin/bash
-
-# Exit the script as soon as an error occurs.
-set -e
-
-# On MacOS, ensure that GNU sed is installed and available as `gsed`.
-SED_COMMAND=sed
-if [[ "${OSTYPE}" == 'darwin'* ]]; then
-  if ! command -v gsed &> /dev/null; then
-      echo "Error: gsed is not installed. Please install it using 'brew install gnu-sed'."
-      exit 1
-  fi
-  SED_COMMAND=gsed
-fi
-
-# This script renames definitions, such as include guards, in this project.
-# Specifically, it renames "RIPPLED_XXX" and "RIPPLE_XXX" to "XRPL_XXX" by
-# scanning all cmake, header, and source files in the specified directory and
-# its subdirectories.
-# Usage: .github/scripts/rename/definitions.sh <repository directory>
-
-if [ "$#" -ne 1 ]; then
-    echo "Usage: $0 <repository directory>"
-    exit 1
-fi
-
-DIRECTORY=$1
-echo "Processing directory: ${DIRECTORY}"
-if [ ! -d "${DIRECTORY}" ]; then
-    echo "Error: Directory '${DIRECTORY}' does not exist."
-    exit 1
-fi
-
-find "${DIRECTORY}" -type f \( -name "*.h" -o -name "*.hpp" -o -name "*.ipp" -o -name "*.cpp" \) | while read -r FILE; do
-    echo "Processing file: ${FILE}"
-    ${SED_COMMAND} -i -E 's@#(define|endif|if|ifdef|ifndef)(.*)(RIPPLED_|RIPPLE_)([A-Z0-9_]+)@#\1\2XRPL_\4@g' "${FILE}"
-done
-find "${DIRECTORY}" -type f \( -name "*.cmake" -o -name "*.txt" \) | while read -r FILE; do
-    echo "Processing file: ${FILE}"
-    ${SED_COMMAND} -i -E 's@(RIPPLED_|RIPPLE_)([A-Z0-9_]+)@XRPL_\2@g' "${FILE}"
-done
-echo "Renaming complete."

.github/scripts/strategy-matrix/generate.py

@@ -138,6 +138,8 @@ def generate_strategy_matrix(all: bool, config: Config) -> list:
         # Unity on linux/amd64
         if f'{os['compiler_name']}-{os['compiler_version']}' == 'gcc-15' and build_type == 'Debug' and '-Dunity=OFF' in cmake_args and architecture['platform'] == 'linux/amd64':
             cmake_args = f'-Dcoverage=ON -Dcoverage_format=xml -DCODE_COVERAGE_VERBOSE=ON -DCMAKE_C_FLAGS=-O0 -DCMAKE_CXX_FLAGS=-O0 {cmake_args}'
+            cmake_target = 'coverage'
+            build_only = True
 
         # Generate a unique name for the configuration, e.g. macos-arm64-debug
         # or debian-bookworm-gcc-12-amd64-release-unity.

.github/scripts/strategy-matrix/linux.json

@@ -15,168 +15,168 @@
       "distro_version": "bookworm",
       "compiler_name": "gcc",
       "compiler_version": "12",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "gcc",
       "compiler_version": "13",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "gcc",
       "compiler_version": "14",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "gcc",
       "compiler_version": "15",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "clang",
       "compiler_version": "16",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "clang",
       "compiler_version": "17",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "clang",
       "compiler_version": "18",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "clang",
       "compiler_version": "19",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "debian",
       "distro_version": "bookworm",
       "compiler_name": "clang",
       "compiler_version": "20",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "rhel",
       "distro_version": "8",
       "compiler_name": "gcc",
       "compiler_version": "14",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "8",
       "compiler_name": "clang",
       "compiler_version": "any",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "9",
       "compiler_name": "gcc",
       "compiler_version": "12",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "9",
       "compiler_name": "gcc",
       "compiler_version": "13",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "9",
       "compiler_name": "gcc",
       "compiler_version": "14",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "9",
       "compiler_name": "clang",
       "compiler_version": "any",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "10",
       "compiler_name": "gcc",
       "compiler_version": "14",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "rhel",
       "distro_version": "10",
       "compiler_name": "clang",
       "compiler_version": "any",
-      "image_sha": "e1782cd"
+      "image_sha": "10e69b4"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "jammy",
       "compiler_name": "gcc",
       "compiler_version": "12",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "gcc",
       "compiler_version": "13",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "gcc",
       "compiler_version": "14",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "clang",
       "compiler_version": "16",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "clang",
       "compiler_version": "17",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "clang",
       "compiler_version": "18",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     },
     {
       "distro_name": "ubuntu",
       "distro_version": "noble",
       "compiler_name": "clang",
       "compiler_version": "19",
-      "image_sha": "e1782cd"
+      "image_sha": "6948666"
     }
   ],
   "build_type": ["Debug", "Release"],

.github/workflows/on-pr.yml

@@ -50,9 +50,7 @@ jobs:
           files: |
             # These paths are unique to `on-pr.yml`.
             .github/scripts/levelization/**
-            .github/scripts/rename/**
             .github/workflows/reusable-check-levelization.yml
-            .github/workflows/reusable-check-rename.yml
             .github/workflows/reusable-notify-clio.yml
             .github/workflows/on-pr.yml
 
@@ -100,11 +98,6 @@ jobs:
     if: ${{ needs.should-run.outputs.go == 'true' }}
     uses: ./.github/workflows/reusable-check-levelization.yml
 
-  check-rename:
-    needs: should-run
-    if: ${{ needs.should-run.outputs.go == 'true' }}
-    uses: ./.github/workflows/reusable-check-rename.yml
-
   build-test:
     needs: should-run
     if: ${{ needs.should-run.outputs.go == 'true' }}

.github/workflows/on-trigger.yml

@@ -50,12 +50,7 @@ on:
   workflow_dispatch:
 
 concurrency:
-  # When a PR is merged into the develop branch it will be assigned a unique
-  # group identifier, so execution will continue even if another PR is merged
-  # while it is still running. In all other cases the group identifier is shared
-  # per branch, so that any in-progress runs are cancelled when a new commit is
-  # pushed.
-  group: ${{ github.workflow }}-${{ github.event_name == 'push' && github.ref == 'refs/heads/develop' && github.sha || github.ref }}
+  group: ${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true
 
 defaults:

.github/workflows/pre-commit.yml

@@ -9,7 +9,7 @@ on:
 jobs:
   # Call the workflow in the XRPLF/actions repo that runs the pre-commit hooks.
   run-hooks:
-    uses: XRPLF/actions/.github/workflows/pre-commit.yml@34790936fae4c6c751f62ec8c06696f9c1a5753a
+    uses: XRPLF/actions/.github/workflows/pre-commit.yml@a8d7472b450eb53a1e5228f64552e5974457a21a
     with:
       runs_on: ubuntu-latest
       container: '{ "image": "ghcr.io/xrplf/ci/tools-rippled-pre-commit:sha-a8c7be1" }'

.github/workflows/publish-docs.yml

@@ -23,7 +23,6 @@ defaults:
 
 env:
   BUILD_DIR: .build
-  NPROC_SUBTRACT: 2
 
 jobs:
   publish:
@@ -34,13 +33,6 @@ jobs:
     steps:
       - name: Checkout repository
         uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
-
-      - name: Get number of processors
-        uses: XRPLF/actions/.github/actions/get-nproc@046b1620f6bfd6cd0985dc82c3df02786801fe0a
-        id: nproc
-        with:
-          subtract: ${{ env.NPROC_SUBTRACT }}
-
       - name: Check configuration
         run: |
           echo 'Checking path.'
@@ -54,16 +46,12 @@ jobs:
 
           echo 'Checking Doxygen version.'
           doxygen --version
-
       - name: Build documentation
-        env:
-          BUILD_NPROC: ${{ steps.nproc.outputs.nproc }}
         run: |
           mkdir -p "${BUILD_DIR}"
           cd "${BUILD_DIR}"
           cmake -Donly_docs=ON ..
-          cmake --build . --target docs --parallel ${BUILD_NPROC}
-
+          cmake --build . --target docs --parallel $(nproc)
       - name: Publish documentation
         if: ${{ github.ref_type == 'branch' && github.ref_name == github.event.repository.default_branch }}
         uses: peaceiris/actions-gh-pages@4f9cc6602d3f66b9c108549d475ec49e8ef4d45e # v4.0.0

.github/workflows/reusable-build-test-config.yml

@@ -7,23 +7,19 @@ on:
         description: "The directory where to build."
         required: true
         type: string
-
       build_only:
         description: 'Whether to only build or to build and test the code ("true", "false").'
         required: true
         type: boolean
-
       build_type:
         description: 'The build type to use ("Debug", "Release").'
         type: string
         required: true
-
       cmake_args:
         description: "Additional arguments to pass to CMake."
         required: false
         type: string
         default: ""
-
       cmake_target:
         description: "The CMake target to build."
         type: string
@@ -33,7 +29,6 @@ on:
         description: Runner to run the job on as a JSON string
         required: true
         type: string
-
       image:
         description: "The image to run in (leave empty to run natively)"
         required: true
@@ -44,170 +39,31 @@ on:
         required: true
         type: string
 
-      nproc_subtract:
-        description: "The number of processors to subtract when calculating parallelism."
-        required: false
-        type: number
-        default: 2
-
     secrets:
       CODECOV_TOKEN:
         description: "The Codecov token to use for uploading coverage reports."
         required: true
 
-defaults:
-  run:
-    shell: bash
-
 jobs:
-  build-and-test:
-    name: ${{ inputs.config_name }}
-    runs-on: ${{ fromJSON(inputs.runs_on) }}
-    container: ${{ inputs.image != '' && inputs.image || null }}
-    timeout-minutes: 60
-    env:
-      ENABLED_VOIDSTAR: ${{ contains(inputs.cmake_args, '-Dvoidstar=ON') }}
-      ENABLED_COVERAGE: ${{ contains(inputs.cmake_args, '-Dcoverage=ON') }}
-    steps:
-      - name: Cleanup workspace (macOS and Windows)
-        if: ${{ runner.os == 'macOS' || runner.os == 'Windows' }}
-        uses: XRPLF/actions/.github/actions/cleanup-workspace@01b244d2718865d427b499822fbd3f15e7197fcc
+  build:
+    uses: ./.github/workflows/reusable-build.yml
+    with:
+      build_dir: ${{ inputs.build_dir }}
+      build_type: ${{ inputs.build_type }}
+      cmake_args: ${{ inputs.cmake_args }}
+      cmake_target: ${{ inputs.cmake_target }}
+      runs_on: ${{ inputs.runs_on }}
+      image: ${{ inputs.image }}
+      config_name: ${{ inputs.config_name }}
+    secrets:
+      CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
 
-      - name: Checkout repository
-        uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
-
-      - name: Prepare runner
-        uses: XRPLF/actions/.github/actions/prepare-runner@99685816bb60a95a66852f212f382580e180df3a
-        with:
-          disable_ccache: false
-
-      - name: Print build environment
-        uses: ./.github/actions/print-env
-
-      - name: Get number of processors
-        uses: XRPLF/actions/.github/actions/get-nproc@046b1620f6bfd6cd0985dc82c3df02786801fe0a
-        id: nproc
-        with:
-          subtract: ${{ inputs.nproc_subtract }}
-
-      - name: Setup Conan
-        uses: ./.github/actions/setup-conan
-
-      - name: Build dependencies
-        uses: ./.github/actions/build-deps
-        with:
-          build_dir: ${{ inputs.build_dir }}
-          build_nproc: ${{ steps.nproc.outputs.nproc }}
-          build_type: ${{ inputs.build_type }}
-          # Set the verbosity to "quiet" for Windows to avoid an excessive
-          # amount of logs. For other OSes, the "verbose" logs are more useful.
-          log_verbosity: ${{ runner.os == 'Windows' && 'quiet' || 'verbose' }}
-
-      - name: Configure CMake
-        working-directory: ${{ inputs.build_dir }}
-        env:
-          BUILD_TYPE: ${{ inputs.build_type }}
-          CMAKE_ARGS: ${{ inputs.cmake_args }}
-        run: |
-          cmake \
-            -G '${{ runner.os == 'Windows' && 'Visual Studio 17 2022' || 'Ninja' }}' \
-            -DCMAKE_TOOLCHAIN_FILE:FILEPATH=build/generators/conan_toolchain.cmake \
-            -DCMAKE_BUILD_TYPE="${BUILD_TYPE}" \
-            ${CMAKE_ARGS} \
-            ..
-
-      - name: Build the binary
-        working-directory: ${{ inputs.build_dir }}
-        env:
-          BUILD_NPROC: ${{ steps.nproc.outputs.nproc }}
-          BUILD_TYPE: ${{ inputs.build_type }}
-          CMAKE_TARGET: ${{ inputs.cmake_target }}
-        run: |
-          cmake \
-            --build . \
-            --config "${BUILD_TYPE}" \
-            --parallel "${BUILD_NPROC}" \
-            --target "${CMAKE_TARGET}"
-
-      - name: Upload rippled artifact (Linux)
-        if: ${{ runner.os == 'Linux' }}
-        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
-        env:
-          BUILD_DIR: ${{ inputs.build_dir }}
-        with:
-          name: rippled-${{ inputs.config_name }}
-          path: ${{ env.BUILD_DIR }}/rippled
-          retention-days: 3
-          if-no-files-found: error
-
-      - name: Check linking (Linux)
-        if: ${{ runner.os == 'Linux' }}
-        working-directory: ${{ inputs.build_dir }}
-        run: |
-          ldd ./rippled
-          if [ "$(ldd ./rippled | grep -E '(libstdc\+\+|libgcc)' | wc -l)" -eq 0 ]; then
-            echo 'The binary is statically linked.'
-          else
-            echo 'The binary is dynamically linked.'
-            exit 1
-          fi
-
-      - name: Verify presence of instrumentation (Linux)
-        if: ${{ runner.os == 'Linux' && env.ENABLED_VOIDSTAR == 'true' }}
-        working-directory: ${{ inputs.build_dir }}
-        run: |
-          ./rippled --version | grep libvoidstar
-
-      - name: Run the separate tests
-        if: ${{ !inputs.build_only }}
-        working-directory: ${{ inputs.build_dir }}
-        # Windows locks some of the build files while running tests, and parallel jobs can collide
-        env:
-          BUILD_TYPE: ${{ inputs.build_type }}
-          PARALLELISM: ${{ runner.os == 'Windows' && '1' || steps.nproc.outputs.nproc }}
-        run: |
-          ctest \
-            --output-on-failure \
-            -C "${BUILD_TYPE}" \
-            -j "${PARALLELISM}"
-
-      - name: Run the embedded tests
-        if: ${{ !inputs.build_only }}
-        working-directory: ${{ runner.os == 'Windows' && format('{0}/{1}', inputs.build_dir, inputs.build_type) || inputs.build_dir }}
-        env:
-          BUILD_NPROC: ${{ steps.nproc.outputs.nproc }}
-        run: |
-          ./rippled --unittest --unittest-jobs "${BUILD_NPROC}"
-
-      - name: Debug failure (Linux)
-        if: ${{ failure() && runner.os == 'Linux' && !inputs.build_only }}
-        run: |
-          echo "IPv4 local port range:"
-          cat /proc/sys/net/ipv4/ip_local_port_range
-          echo "Netstat:"
-          netstat -an
-
-      - name: Prepare coverage report
-        if: ${{ !inputs.build_only && env.ENABLED_COVERAGE == 'true' }}
-        working-directory: ${{ inputs.build_dir }}
-        env:
-          BUILD_NPROC: ${{ steps.nproc.outputs.nproc }}
-          BUILD_TYPE: ${{ inputs.build_type }}
-        run: |
-          cmake \
-            --build . \
-            --config "${BUILD_TYPE}" \
-            --parallel "${BUILD_NPROC}" \
-            --target coverage
-
-      - name: Upload coverage report
-        if: ${{ github.repository_owner == 'XRPLF' && !inputs.build_only && env.ENABLED_COVERAGE == 'true' }}
-        uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
-        with:
-          disable_search: true
-          disable_telem: true
-          fail_ci_if_error: true
-          files: ${{ inputs.build_dir }}/coverage.xml
-          plugins: noop
-          token: ${{ secrets.CODECOV_TOKEN }}
-          verbose: true
+  test:
+    needs: build
+    uses: ./.github/workflows/reusable-test.yml
+    with:
+      run_tests: ${{ !inputs.build_only }}
+      verify_voidstar: ${{ contains(inputs.cmake_args, '-Dvoidstar=ON') }}
+      runs_on: ${{ inputs.runs_on }}
+      image: ${{ inputs.image }}
+      config_name: ${{ inputs.config_name }}

.github/workflows/reusable-build.yml

@@ -0,0 +1,122 @@
+name: Build rippled
+
+on:
+  workflow_call:
+    inputs:
+      build_dir:
+        description: "The directory where to build."
+        required: true
+        type: string
+      build_type:
+        description: 'The build type to use ("Debug", "Release").'
+        required: true
+        type: string
+      cmake_args:
+        description: "Additional arguments to pass to CMake."
+        required: true
+        type: string
+      cmake_target:
+        description: "The CMake target to build."
+        required: true
+        type: string
+
+      runs_on:
+        description: Runner to run the job on as a JSON string
+        required: true
+        type: string
+      image:
+        description: "The image to run in (leave empty to run natively)"
+        required: true
+        type: string
+
+      config_name:
+        description: "The name of the configuration."
+        required: true
+        type: string
+
+    secrets:
+      CODECOV_TOKEN:
+        description: "The Codecov token to use for uploading coverage reports."
+        required: true
+
+defaults:
+  run:
+    shell: bash
+
+jobs:
+  build:
+    name: Build ${{ inputs.config_name }}
+    runs-on: ${{ fromJSON(inputs.runs_on) }}
+    container: ${{ inputs.image != '' && inputs.image || null }}
+    timeout-minutes: 60
+    steps:
+      - name: Cleanup workspace
+        if: ${{ runner.os == 'macOS' }}
+        uses: XRPLF/actions/.github/actions/cleanup-workspace@3f044c7478548e3c32ff68980eeb36ece02b364e
+
+      - name: Checkout repository
+        uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
+
+      - name: Prepare runner
+        uses: XRPLF/actions/.github/actions/prepare-runner@638e0dc11ea230f91bd26622fb542116bb5254d5
+        with:
+          disable_ccache: false
+
+      - name: Print build environment
+        uses: ./.github/actions/print-env
+
+      - name: Setup Conan
+        uses: ./.github/actions/setup-conan
+
+      - name: Build dependencies
+        uses: ./.github/actions/build-deps
+        with:
+          build_dir: ${{ inputs.build_dir }}
+          build_type: ${{ inputs.build_type }}
+
+      - name: Configure CMake
+        shell: bash
+        working-directory: ${{ inputs.build_dir }}
+        env:
+          BUILD_TYPE: ${{ inputs.build_type }}
+          CMAKE_ARGS: ${{ inputs.cmake_args }}
+        run: |
+          cmake \
+            -G '${{ runner.os == 'Windows' && 'Visual Studio 17 2022' || 'Ninja' }}' \
+            -DCMAKE_TOOLCHAIN_FILE:FILEPATH=build/generators/conan_toolchain.cmake \
+            -DCMAKE_BUILD_TYPE="${BUILD_TYPE}" \
+            ${CMAKE_ARGS} \
+            ..
+
+      - name: Build the binary
+        shell: bash
+        working-directory: ${{ inputs.build_dir }}
+        env:
+          BUILD_TYPE: ${{ inputs.build_type }}
+          CMAKE_TARGET: ${{ inputs.cmake_target }}
+        run: |
+          cmake \
+            --build . \
+            --config "${BUILD_TYPE}" \
+            --parallel $(nproc) \
+            --target "${CMAKE_TARGET}"
+
+      - name: Upload rippled artifact
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: rippled-${{ inputs.config_name }}
+          path: ${{ inputs.build_dir }}/${{ runner.os == 'Windows' && inputs.build_type || '' }}/rippled${{ runner.os == 'Windows' && '.exe' || '' }}
+          retention-days: 3
+          if-no-files-found: error
+
+      - name: Upload coverage report
+        if: ${{ inputs.cmake_target == 'coverage' }}
+        uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
+        with:
+          disable_search: true
+          disable_telem: true
+          fail_ci_if_error: true
+          files: ${{ inputs.build_dir }}/coverage.xml
+          plugins: noop
+          token: ${{ secrets.CODECOV_TOKEN }}
+          verbose: true

.github/workflows/reusable-check-rename.yml

@@ -1,46 +0,0 @@
-# This workflow checks if the codebase is properly renamed, see more info in
-# .github/scripts/rename/README.md.
-name: Check rename
-
-# This workflow can only be triggered by other workflows.
-on: workflow_call
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.ref }}-rename
-  cancel-in-progress: true
-
-defaults:
-  run:
-    shell: bash
-
-jobs:
-  rename:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
-      - name: Check definitions
-        run: .github/scripts/rename/definitions.sh .
-      - name: Check copyright notices
-        run: .github/scripts/rename/copyright.sh .
-      - name: Check CMake configs
-        run: .github/scripts/rename/cmake.sh .
-      - name: Check for differences
-        env:
-          MESSAGE: |
-
-            One or more files contain changes that do not adhere to new naming
-            conventions.
-
-            Run the scripts in '.github/scripts/rename/' in your repo, commit
-            and push the changes. See .github/scripts/rename/README.md for
-            more info.
-        run: |
-          DIFF=$(git status --porcelain)
-          if [ -n "${DIFF}" ]; then
-            # Print the differences to give the contributor a hint about what to
-            # expect when running the renaming scripts on their own machine.
-            git diff
-            echo "${MESSAGE}"
-            exit 1
-          fi

.github/workflows/reusable-strategy-matrix.yml

@@ -18,10 +18,6 @@ on:
         description: "The generated strategy matrix."
         value: ${{ jobs.generate-matrix.outputs.matrix }}
 
-defaults:
-  run:
-    shell: bash
-
 jobs:
   generate-matrix:
     runs-on: ubuntu-latest

.github/workflows/reusable-test.yml

@@ -0,0 +1,70 @@
+name: Test rippled
+
+on:
+  workflow_call:
+    inputs:
+      verify_voidstar:
+        description: "Whether to verify the presence of voidstar instrumentation."
+        required: true
+        type: boolean
+      run_tests:
+        description: "Whether to run unit tests"
+        required: true
+        type: boolean
+
+      runs_on:
+        description: Runner to run the job on as a JSON string
+        required: true
+        type: string
+      image:
+        description: "The image to run in (leave empty to run natively)"
+        required: true
+        type: string
+
+      config_name:
+        description: "The name of the configuration."
+        required: true
+        type: string
+
+jobs:
+  test:
+    name: Test ${{ inputs.config_name }}
+    runs-on: ${{ fromJSON(inputs.runs_on) }}
+    container: ${{ inputs.image != '' && inputs.image || null }}
+    timeout-minutes: 30
+    steps:
+      - name: Download rippled artifact
+        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        with:
+          name: rippled-${{ inputs.config_name }}
+
+      - name: Make binary executable (Linux and macOS)
+        shell: bash
+        if: ${{ runner.os == 'Linux' || runner.os == 'macOS' }}
+        run: |
+          chmod +x ./rippled
+
+      - name: Check linking (Linux)
+        if: ${{ runner.os == 'Linux' }}
+        shell: bash
+        run: |
+          ldd ./rippled
+          if [ "$(ldd ./rippled | grep -E '(libstdc\+\+|libgcc)' | wc -l)" -eq 0 ]; then
+            echo 'The binary is statically linked.'
+          else
+            echo 'The binary is dynamically linked.'
+            exit 1
+          fi
+
+      - name: Verifying presence of instrumentation
+        if: ${{ inputs.verify_voidstar }}
+        shell: bash
+        run: |
+          ./rippled --version | grep libvoidstar
+
+      - name: Test the binary
+        if: ${{ inputs.run_tests }}
+        shell: bash
+        run: |
+          ./rippled --unittest --unittest-jobs $(nproc)
+          ctest -j $(nproc) --output-on-failure

.github/workflows/upload-conan-deps.yml

@@ -34,16 +34,11 @@ on:
 env:
   CONAN_REMOTE_NAME: xrplf
   CONAN_REMOTE_URL: https://conan.ripplex.io
-  NPROC_SUBTRACT: 2
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true
 
-defaults:
-  run:
-    shell: bash
-
 jobs:
   # Generate the strategy matrix to be used by the following job.
   generate-matrix:
@@ -62,27 +57,16 @@ jobs:
     runs-on: ${{ matrix.architecture.runner }}
     container: ${{ contains(matrix.architecture.platform, 'linux') && format('ghcr.io/xrplf/ci/{0}-{1}:{2}-{3}-sha-{4}', matrix.os.distro_name, matrix.os.distro_version, matrix.os.compiler_name, matrix.os.compiler_version, matrix.os.image_sha) || null }}
     steps:
-      - name: Cleanup workspace (macOS and Windows)
-        if: ${{ runner.os == 'macOS' || runner.os == 'Windows' }}
-        uses: XRPLF/actions/.github/actions/cleanup-workspace@01b244d2718865d427b499822fbd3f15e7197fcc
-
-      - name: Checkout repository
-        uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
+      - name: Cleanup workspace
+        if: ${{ runner.os == 'macOS' }}
+        uses: XRPLF/actions/.github/actions/cleanup-workspace@3f044c7478548e3c32ff68980eeb36ece02b364e
 
+      - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
       - name: Prepare runner
-        uses: XRPLF/actions/.github/actions/prepare-runner@99685816bb60a95a66852f212f382580e180df3a
+        uses: XRPLF/actions/.github/actions/prepare-runner@638e0dc11ea230f91bd26622fb542116bb5254d5
         with:
           disable_ccache: false
 
-      - name: Print build environment
-        uses: ./.github/actions/print-env
-
-      - name: Get number of processors
-        uses: XRPLF/actions/.github/actions/get-nproc@046b1620f6bfd6cd0985dc82c3df02786801fe0a
-        id: nproc
-        with:
-          subtract: ${{ env.NPROC_SUBTRACT }}
-
       - name: Setup Conan
         uses: ./.github/actions/setup-conan
         with:
@@ -93,19 +77,18 @@ jobs:
         uses: ./.github/actions/build-deps
         with:
           build_dir: .build
-          build_nproc: ${{ steps.nproc.outputs.nproc }}
           build_type: ${{ matrix.build_type }}
           force_build: ${{ github.event_name == 'schedule' || github.event.inputs.force_source_build == 'true' }}
-          # Set the verbosity to "quiet" for Windows to avoid an excessive
-          # amount of logs. For other OSes, the "verbose" logs are more useful.
-          log_verbosity: ${{ runner.os == 'Windows' && 'quiet' || 'verbose' }}
+          # The verbosity is set to "quiet" for Windows to avoid an excessive amount of logs, while it
+          # is set to "verbose" otherwise to provide more information during the build process.
+          verbosity: ${{ runner.os == 'Windows' && 'quiet' || 'verbose' }}
 
       - name: Log into Conan remote
-        if: ${{ github.repository_owner == 'XRPLF' && (github.event_name == 'push' || github.event_name == 'workflow_dispatch') }}
+        if: ${{ github.repository_owner == 'XRPLF' && github.event_name != 'pull_request' }}
         run: conan remote login "${CONAN_REMOTE_NAME}" "${{ secrets.CONAN_REMOTE_USERNAME }}" --password "${{ secrets.CONAN_REMOTE_PASSWORD }}"
 
       - name: Upload Conan packages
-        if: ${{ github.repository_owner == 'XRPLF' && (github.event_name == 'push' || github.event_name == 'workflow_dispatch') }}
+        if: ${{ github.repository_owner == 'XRPLF' && github.event_name != 'pull_request' && github.event_name != 'schedule' }}
         env:
           FORCE_OPTION: ${{ github.event.inputs.force_upload == 'true' && '--force' || '' }}
         run: conan upload "*" --remote="${CONAN_REMOTE_NAME}" --confirm ${FORCE_OPTION}

.pre-commit-config.yaml

@@ -34,5 +34,6 @@ repos:
 exclude: |
   (?x)^(
       external/.*|
-      .github/scripts/levelization/results/.*\.txt
+      .github/scripts/levelization/results/.*\.txt|
+      conan\.lock
   )$

BUILD.md

@@ -495,18 +495,18 @@ A coverage report is created when the following steps are completed, in order:
 
 1. `rippled` binary built with instrumentation data, enabled by the `coverage`
    option mentioned above
-2. completed one or more run of the unit tests, which populates coverage capture data
+2. completed run of unit tests, which populates coverage capture data
 3. completed run of the `gcovr` tool (which internally invokes either `gcov` or `llvm-cov`)
    to assemble both instrumentation data and the coverage capture data into a coverage report
 
-The last step of the above is automated into a single target `coverage`. The instrumented
+The above steps are automated into a single target `coverage`. The instrumented
 `rippled` binary can also be used for regular development or testing work, at
 the cost of extra disk space utilization and a small performance hit
-(to store coverage capture data). Since `rippled` binary is simply a dependency of the
-coverage report target, it is possible to re-run the `coverage` target without
-rebuilding the `rippled` binary. Note, running of the unit tests before the `coverage`
-target is left to the developer. Each such run will append to the coverage data
-collected in the build directory.
+(to store coverage capture). In case of a spurious failure of unit tests, it is
+possible to re-run the `coverage` target without rebuilding the `rippled` binary
+(since it is simply a dependency of the coverage report target). It is also possible
+to select only specific tests for the purpose of the coverage report, by setting
+the `coverage_test` variable in `cmake`
 
 The default coverage report format is `html-details`, but the user
 can override it to any of the formats listed in `Builds/CMake/CodeCoverage.cmake`
@@ -515,6 +515,11 @@ to generate more than one format at a time by setting the `coverage_extra_args`
 variable in `cmake`. The specific command line used to run the `gcovr` tool will be
 displayed if the `CODE_COVERAGE_VERBOSE` variable is set.
 
+By default, the code coverage tool runs parallel unit tests with `--unittest-jobs`
+set to the number of available CPU cores. This may cause spurious test
+errors on Apple. Developers can override the number of unit test jobs with
+the `coverage_test_parallelism` variable in `cmake`.
+
 Example use with some cmake variables set:
 
 ```
@@ -585,7 +590,7 @@ you might have generated CMake files for a different `build_type` than the
 `CMAKE_BUILD_TYPE` you passed to Conan.
 
 ```
-/rippled/.build/pb-xrpl.libpb/xrpl/proto/xrpl.pb.h:10:10: fatal error: 'google/protobuf/port_def.inc' file not found
+/rippled/.build/pb-xrpl.libpb/xrpl/proto/ripple.pb.h:10:10: fatal error: 'google/protobuf/port_def.inc' file not found
    10 | #include <google/protobuf/port_def.inc>
       |          ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 1 error generated.

CMakeLists.txt

@@ -49,7 +49,7 @@ if(Git_FOUND)
 endif() #git
 
 if(thread_safety_analysis)
-  add_compile_options(-Wthread-safety -D_LIBCPP_ENABLE_THREAD_SAFETY_ANNOTATIONS -DXRPL_ENABLE_THREAD_SAFETY_ANNOTATIONS)
+  add_compile_options(-Wthread-safety -D_LIBCPP_ENABLE_THREAD_SAFETY_ANNOTATIONS -DRIPPLE_ENABLE_THREAD_SAFETY_ANNOTATIONS)
   add_compile_options("-stdlib=libc++")
   add_link_options("-stdlib=libc++")
 endif()
@@ -62,9 +62,9 @@ if (target)
   message (FATAL_ERROR "The target option has been removed - use native cmake options to control build")
 endif ()
 
-include(XrplSanity)
-include(XrplVersion)
-include(XrplSettings)
+include(RippledSanity)
+include(RippledVersion)
+include(RippledSettings)
 # this check has to remain in the top-level cmake
 # because of the early return statement
 if (packages_only)
@@ -73,11 +73,11 @@ if (packages_only)
   endif()
   return ()
 endif ()
-include(XrplCompiler)
-include(XrplInterface)
+include(RippledCompiler)
+include(RippledInterface)
 
 option(only_docs "Include only the docs target?" FALSE)
-include(XrplDocs)
+include(RippledDocs)
 if(only_docs)
   return()
 endif()
@@ -99,6 +99,8 @@ add_subdirectory(external/secp256k1)
 add_library(secp256k1::secp256k1 ALIAS secp256k1)
 add_subdirectory(external/ed25519-donna)
 add_subdirectory(external/antithesis-sdk)
+add_subdirectory(external/libff)
+add_library(libff::ff ALIAS ff)
 find_package(gRPC REQUIRED)
 find_package(lz4 REQUIRED)
 # Target names with :: are not allowed in a generator expression.
@@ -112,16 +114,106 @@ option(rocksdb "Enable RocksDB" ON)
 if(rocksdb)
   find_package(RocksDB REQUIRED)
   set_target_properties(RocksDB::rocksdb PROPERTIES
-    INTERFACE_COMPILE_DEFINITIONS XRPL_ROCKSDB_AVAILABLE=1
+    INTERFACE_COMPILE_DEFINITIONS RIPPLE_ROCKSDB_AVAILABLE=1
   )
-  target_link_libraries(xrpl_libs INTERFACE RocksDB::rocksdb)
+  target_link_libraries(ripple_libs INTERFACE RocksDB::rocksdb)
 endif()
 
 find_package(nudb REQUIRED)
 find_package(date REQUIRED)
 find_package(xxHash REQUIRED)
+find_package(wasm-xrplf REQUIRED)
 
-target_link_libraries(xrpl_libs INTERFACE
+# Silence noisy warnings just inside libff
+# Treat vendored headers as SYSTEM so their warnings don't bubble up.
+# Remove it if printing warnings is desired
+target_include_directories(ff SYSTEM PRIVATE
+  ${CMAKE_SOURCE_DIR}/external/libff/src
+  ${CMAKE_SOURCE_DIR}/external/libff/depends/xbyak/xbyak
+  ${CMAKE_SOURCE_DIR}/external/libff/depends/ate-pairing/include
+)
+
+# Suppress GCC array-bounds false positives (and related) only for libff.
+# Remove it if printing warnings is desired
+if (CMAKE_CXX_COMPILER_ID MATCHES "GNU")
+  target_compile_options(ff PRIVATE
+    -Wno-array-bounds
+    -Wno-stringop-overflow
+    -fno-strict-aliasing
+  )
+elseif (CMAKE_CXX_COMPILER_ID MATCHES "Clang")
+  target_compile_options(ff PRIVATE
+    -Wno-array-bounds
+  )
+endif()
+
+# Slience redundant constexpr data member if using C++17
+# Remove it if printing warnings is desired
+set(LIBFF_GF_SOURCES
+  ${PROJECT_SOURCE_DIR}/external/libff/libff/algebra/fields/binary/gf32.cpp
+  ${PROJECT_SOURCE_DIR}/external/libff/libff/algebra/fields/binary/gf64.cpp
+  ${PROJECT_SOURCE_DIR}/external/libff/libff/algebra/fields/binary/gf128.cpp
+  ${PROJECT_SOURCE_DIR}/external/libff/libff/algebra/fields/binary/gf192.cpp
+  ${PROJECT_SOURCE_DIR}/external/libff/libff/algebra/fields/binary/gf256.cpp
+)
+if (CMAKE_CXX_COMPILER_ID MATCHES "GNU|Clang")
+  set_source_files_properties(${LIBFF_GF_SOURCES}
+    PROPERTIES COMPILE_OPTIONS "-Wno-deprecated;-Wno-redundant-decls")
+endif()
+
+# --- Try config-mode first (works if someone provides GMPConfig.cmake) ---
+find_package(GMP CONFIG QUIET)
+
+# --- If no config package, synthesize imported targets with find_* and pkg-config ---
+if (NOT TARGET GMP::gmp)
+  find_package(PkgConfig QUIET)
+  if (PkgConfig_FOUND)
+    pkg_check_modules(PC_GMP   QUIET gmp)
+    pkg_check_modules(PC_GMPXX QUIET gmpxx)
+  endif()
+
+  # headers
+  find_path(GMP_INCLUDE_DIR
+    NAMES gmp.h
+    HINTS ${PC_GMP_INCLUDE_DIRS} ${PC_GMPXX_INCLUDE_DIRS}
+  )
+  # libraries
+  find_library(GMP_LIBRARY
+    NAMES gmp
+    HINTS ${PC_GMP_LIBRARY_DIRS}
+  )
+  find_library(GMPXX_LIBRARY
+    NAMES gmpxx
+    HINTS ${PC_GMPXX_LIBRARY_DIRS} ${PC_GMP_LIBRARY_DIRS}
+  )
+
+  if (GMP_INCLUDE_DIR AND GMP_LIBRARY)
+    add_library(GMP::gmp UNKNOWN IMPORTED)
+    set_target_properties(GMP::gmp PROPERTIES
+      IMPORTED_LOCATION "${GMP_LIBRARY}"
+      INTERFACE_INCLUDE_DIRECTORIES "${GMP_INCLUDE_DIR}"
+    )
+  endif()
+
+  if (GMP_INCLUDE_DIR AND GMPXX_LIBRARY)
+    add_library(GMP::gmpxx UNKNOWN IMPORTED)
+    set_target_properties(GMP::gmpxx PROPERTIES
+      IMPORTED_LOCATION "${GMPXX_LIBRARY}"
+      INTERFACE_INCLUDE_DIRECTORIES "${GMP_INCLUDE_DIR}"
+      INTERFACE_LINK_LIBRARIES GMP::gmp
+    )
+  endif()
+endif()
+
+# Final guard
+if (NOT TARGET GMP::gmp OR NOT TARGET GMP::gmpxx)
+  message(FATAL_ERROR "GMP/GMPXX not found. Install libgmp-dev (and gmpxx) or set CMAKE_PREFIX_PATH/GMP_DIR.")
+endif()
+
+# Link them transitively through ripple_libs
+target_link_libraries(ripple_libs INTERFACE GMP::gmp GMP::gmpxx)
+
+target_link_libraries(ripple_libs INTERFACE
   ed25519::ed25519
   lz4::lz4
   OpenSSL::Crypto
@@ -129,6 +221,7 @@ target_link_libraries(xrpl_libs INTERFACE
   secp256k1::secp256k1
   soci::soci
   SQLite::SQLite3
+  libff::ff
 )
 
 # Work around changes to Conan recipe for now.
@@ -139,18 +232,18 @@ elseif(TARGET NuDB::nudb)
 else()
   message(FATAL_ERROR "unknown nudb target")
 endif()
-target_link_libraries(xrpl_libs INTERFACE ${nudb})
+target_link_libraries(ripple_libs INTERFACE ${nudb})
 
 if(coverage)
-  include(XrplCov)
+  include(RippledCov)
 endif()
 
-set(PROJECT_EXPORT_SET XrplExports)
-include(XrplCore)
-include(XrplInstall)
-include(XrplValidatorKeys)
+set(PROJECT_EXPORT_SET RippleExports)
+include(RippledCore)
+include(RippledInstall)
+include(RippledValidatorKeys)
 
 if(tests)
   include(CTest)
   add_subdirectory(src/tests/libxrpl)
-endif()
+endif()

LICENSE.md

@@ -1,7 +1,7 @@
 ISC License
 
 Copyright (c) 2011, Arthur Britto, David Schwartz, Jed McCaleb, Vinnie Falco, Bob Way, Eric Lombrozo, Nikolaos D. Bougalis, Howard Hinnant.
-Copyright (c) 2012-2025, the XRP Ledger developers.
+Copyright (c) 2012-2020, the XRP Ledger developers.
 
 Permission to use, copy, modify, and distribute this software for any
 purpose with or without fee is hereby granted, provided that the above

cfg/rippled-example.cfg

@@ -1290,6 +1290,39 @@
 #       Example:
 #           owner_reserve = 2000000      # 2 XRP
 #
+#   extension_compute_limit = <gas>
+#
+#       The extension compute limit is the maximum amount of gas that can be
+#       consumed by a single transaction. The gas limit is used to prevent
+#       transactions from consuming too many resources.
+#
+#       If this parameter is unspecified, rippled will use an internal
+#       default. Don't change this without understanding the consequences.
+#
+#       Example:
+#           extension_compute_limit = 1000000      # 1 million gas
+#
+#   extension_size_limit = <bytes>
+#
+#       The extension size limit is the maximum size of a WASM extension in
+#       bytes. The size limit is used to prevent extensions from consuming
+#       too many resources.
+#
+#       If this parameter is unspecified, rippled will use an internal
+#       default. Don't change this without understanding the consequences.
+#
+#       Example:
+#           extension_size_limit = 100000      # 100 kb
+#
+#   gas_price = <bytes>
+#
+#       The gas price is the conversion between WASM gas and its price in drops.
+#
+#       If this parameter is unspecified, rippled will use an internal
+#       default. Don't change this without understanding the consequences.
+#
+#       Example:
+#           gas_price = 1000000      # 1 drop per gas
 #-------------------------------------------------------------------------------
 #
 # 9. Misc Settings

cmake/CMakeFuncs.cmake

@@ -1,3 +1,21 @@
+macro(group_sources_in source_dir curdir)
+  file(GLOB children RELATIVE ${source_dir}/${curdir}
+    ${source_dir}/${curdir}/*)
+  foreach (child ${children})
+    if (IS_DIRECTORY ${source_dir}/${curdir}/${child})
+      group_sources_in(${source_dir} ${curdir}/${child})
+    else()
+      string(REPLACE "/" "\\" groupname ${curdir})
+      source_group(${groupname} FILES
+        ${source_dir}/${curdir}/${child})
+    endif()
+  endforeach()
+endmacro()
+
+macro(group_sources curdir)
+  group_sources_in(${PROJECT_SOURCE_DIR} ${curdir})
+endmacro()
+
 macro (exclude_from_default target_)
   set_target_properties (${target_} PROPERTIES EXCLUDE_FROM_ALL ON)
   set_target_properties (${target_} PROPERTIES EXCLUDE_FROM_DEFAULT_BUILD ON)

cmake/CodeCoverage.cmake

@@ -109,9 +109,6 @@
 #     - add a new function add_code_coverage_to_target
 #     - remove some unused code
 #
-# 2025-11-11, Bronek Kozicki
-#     - make EXECUTABLE and EXECUTABLE_ARGS optional
-#
 # USAGE:
 #
 # 1. Copy this file into your cmake modules path.
@@ -320,10 +317,6 @@ function(setup_target_for_coverage_gcovr)
         set(Coverage_FORMAT xml)
     endif()
 
-    if(NOT DEFINED Coverage_EXECUTABLE AND DEFINED Coverage_EXECUTABLE_ARGS)
-        message(FATAL_ERROR "EXECUTABLE_ARGS must not be set if EXECUTABLE is not set")
-    endif()
-
     if("--output" IN_LIST GCOVR_ADDITIONAL_ARGS)
         message(FATAL_ERROR "Unsupported --output option detected in GCOVR_ADDITIONAL_ARGS! Aborting...")
     else()
@@ -405,18 +398,17 @@ function(setup_target_for_coverage_gcovr)
     endforeach()
 
     # Set up commands which will be run to generate coverage data
-    # If EXECUTABLE is not set, the user is expected to run the tests manually
-    # before running the coverage target NAME
-    if(DEFINED Coverage_EXECUTABLE)
-        set(GCOVR_EXEC_TESTS_CMD
-            ${Coverage_EXECUTABLE} ${Coverage_EXECUTABLE_ARGS}
-        )
-    endif()
+    # Run tests
+    set(GCOVR_EXEC_TESTS_CMD
+        ${Coverage_EXECUTABLE} ${Coverage_EXECUTABLE_ARGS}
+    )
 
     # Create folder
     if(DEFINED GCOVR_CREATE_FOLDER)
         set(GCOVR_FOLDER_CMD
             ${CMAKE_COMMAND} -E make_directory ${GCOVR_CREATE_FOLDER})
+    else()
+        set(GCOVR_FOLDER_CMD echo) # dummy
     endif()
 
     # Running gcovr
@@ -433,13 +425,11 @@ function(setup_target_for_coverage_gcovr)
     if(CODE_COVERAGE_VERBOSE)
         message(STATUS "Executed command report")
 
-        if(NOT "${GCOVR_EXEC_TESTS_CMD}" STREQUAL "")
-            message(STATUS "Command to run tests: ")
-            string(REPLACE ";" " " GCOVR_EXEC_TESTS_CMD_SPACED "${GCOVR_EXEC_TESTS_CMD}")
-            message(STATUS "${GCOVR_EXEC_TESTS_CMD_SPACED}")
-        endif()
+        message(STATUS "Command to run tests: ")
+        string(REPLACE ";" " " GCOVR_EXEC_TESTS_CMD_SPACED "${GCOVR_EXEC_TESTS_CMD}")
+        message(STATUS "${GCOVR_EXEC_TESTS_CMD_SPACED}")
 
-        if(NOT "${GCOVR_FOLDER_CMD}" STREQUAL "")
+        if(NOT GCOVR_FOLDER_CMD STREQUAL "echo")
             message(STATUS "Command to create a folder: ")
             string(REPLACE ";" " " GCOVR_FOLDER_CMD_SPACED "${GCOVR_FOLDER_CMD}")
             message(STATUS "${GCOVR_FOLDER_CMD_SPACED}")

cmake/RippleConfig.cmake

@@ -12,7 +12,7 @@ if (static OR MSVC)
 else ()
   set (Boost_USE_STATIC_RUNTIME OFF)
 endif ()
-find_dependency (Boost
+find_dependency (Boost 1.70
   COMPONENTS
     chrono
     container
@@ -45,10 +45,12 @@ if (static OR APPLE OR MSVC)
   set (OPENSSL_USE_STATIC_LIBS ON)
 endif ()
 set (OPENSSL_MSVC_STATIC_RT ON)
-find_dependency (OpenSSL REQUIRED)
+find_dependency (OpenSSL 1.1.1 REQUIRED)
 find_dependency (ZLIB)
 find_dependency (date)
 if (TARGET ZLIB::ZLIB)
   set_target_properties(OpenSSL::Crypto PROPERTIES
     INTERFACE_LINK_LIBRARIES ZLIB::ZLIB)
 endif ()
+
+include ("${CMAKE_CURRENT_LIST_DIR}/RippleTargets.cmake")

cmake/RippledCompiler.cmake

@@ -7,9 +7,9 @@
    toolchain file, especially the ABI-impacting ones
 #]=========================================================]
 add_library (common INTERFACE)
-add_library (Xrpl::common ALIAS common)
+add_library (Ripple::common ALIAS common)
 # add a single global dependency on this interface lib
-link_libraries (Xrpl::common)
+link_libraries (Ripple::common)
 set_target_properties (common
   PROPERTIES INTERFACE_POSITION_INDEPENDENT_CODE ON)
 set(CMAKE_CXX_EXTENSIONS OFF)

cmake/RippledCore.cmake

@@ -13,7 +13,7 @@ set_target_properties(xrpl.libpb PROPERTIES UNITY_BUILD OFF)
 target_protobuf_sources(xrpl.libpb xrpl/proto
   LANGUAGE cpp
   IMPORT_DIRS include/xrpl/proto
-  PROTOS include/xrpl/proto/xrpl.proto
+  PROTOS include/xrpl/proto/ripple.proto
 )
 
 file(GLOB_RECURSE protos "include/xrpl/proto/org/*.proto")
@@ -53,27 +53,35 @@ add_library(xrpl.imports.main INTERFACE)
 
 target_link_libraries(xrpl.imports.main
   INTERFACE
+    LibArchive::LibArchive
+    OpenSSL::Crypto
+    Ripple::boost
+    Ripple::opts
+    Ripple::syslibs
     absl::random_random
     date::date
     ed25519::ed25519
-    LibArchive::LibArchive
-    OpenSSL::Crypto
-    Xrpl::boost
-    Xrpl::libs
-    Xrpl::opts
-    Xrpl::syslibs
     secp256k1::secp256k1
     xrpl.libpb
     xxHash::xxhash
     $<$<BOOL:${voidstar}>:antithesis-sdk-cpp>
+    wasm-xrplf::wasm-xrplf
 )
 
+if (WIN32)
+  target_link_libraries(xrpl.imports.main INTERFACE ntdll)
+endif()
+
+
 include(add_module)
 include(target_link_modules)
 
 # Level 01
 add_module(xrpl beast)
-target_link_libraries(xrpl.libxrpl.beast PUBLIC xrpl.imports.main)
+target_link_libraries(xrpl.libxrpl.beast PUBLIC
+  xrpl.imports.main
+  xrpl.libpb
+)
 
 # Level 02
 add_module(xrpl basics)
@@ -109,21 +117,6 @@ target_link_libraries(xrpl.libxrpl.net PUBLIC
 add_module(xrpl server)
 target_link_libraries(xrpl.libxrpl.server PUBLIC xrpl.libxrpl.protocol)
 
-add_module(xrpl nodestore)
-target_link_libraries(xrpl.libxrpl.nodestore PUBLIC
-        xrpl.libxrpl.basics
-        xrpl.libxrpl.json
-        xrpl.libxrpl.protocol
-)
-
-add_module(xrpl shamap)
-target_link_libraries(xrpl.libxrpl.shamap PUBLIC
-        xrpl.libxrpl.basics
-        xrpl.libxrpl.crypto
-        xrpl.libxrpl.protocol
-        xrpl.libxrpl.nodestore
-)
-
 add_module(xrpl ledger)
 target_link_libraries(xrpl.libxrpl.ledger PUBLIC
   xrpl.libxrpl.basics
@@ -149,8 +142,6 @@ target_link_modules(xrpl PUBLIC
   protocol
   resource
   server
-  nodestore
-  shamap
   net
   ledger
 )
@@ -165,14 +156,14 @@ target_link_modules(xrpl PUBLIC
 #     $<INSTALL_INTERFACE:include>)
 
 if(xrpld)
-  add_executable(xrpld)
+  add_executable(rippled)
   if(tests)
-    target_compile_definitions(xrpld PUBLIC ENABLE_TESTS)
-    target_compile_definitions(xrpld PRIVATE
+    target_compile_definitions(rippled PUBLIC ENABLE_TESTS)
+    target_compile_definitions(rippled PRIVATE
                                        UNIT_TEST_REFERENCE_FEE=${UNIT_TEST_REFERENCE_FEE}
     )
   endif()
-  target_include_directories(xrpld
+  target_include_directories(rippled
     PRIVATE
       $<BUILD_INTERFACE:${CMAKE_CURRENT_SOURCE_DIR}/src>
   )
@@ -180,36 +171,36 @@ if(xrpld)
   file(GLOB_RECURSE sources CONFIGURE_DEPENDS
     "${CMAKE_CURRENT_SOURCE_DIR}/src/xrpld/*.cpp"
   )
-  target_sources(xrpld PRIVATE ${sources})
+  target_sources(rippled PRIVATE ${sources})
 
   if(tests)
     file(GLOB_RECURSE sources CONFIGURE_DEPENDS
       "${CMAKE_CURRENT_SOURCE_DIR}/src/test/*.cpp"
     )
-    target_sources(xrpld PRIVATE ${sources})
+    target_sources(rippled PRIVATE ${sources})
   endif()
 
-  target_link_libraries(xrpld
-    Xrpl::boost
-    Xrpl::opts
-    Xrpl::libs
+  target_link_libraries(rippled
+    Ripple::boost
+    Ripple::opts
+    Ripple::libs
     xrpl.libxrpl
   )
-  exclude_if_included(xrpld)
+  exclude_if_included(rippled)
   # define a macro for tests that might need to
   # be exluded or run differently in CI environment
   if(is_ci)
-    target_compile_definitions(xrpld PRIVATE XRPL_RUNNING_IN_CI)
+    target_compile_definitions(rippled PRIVATE RIPPLED_RUNNING_IN_CI)
   endif ()
 
   if(voidstar)
-    target_compile_options(xrpld
+    target_compile_options(rippled
       PRIVATE
         -fsanitize-coverage=trace-pc-guard
     )
-    # xrpld requires access to antithesis-sdk-cpp implementation file
+    # rippled requires access to antithesis-sdk-cpp implementation file
     # antithesis_instrumentation.h, which is not exported as INTERFACE
-    target_include_directories(xrpld
+    target_include_directories(rippled
       PRIVATE
         ${CMAKE_SOURCE_DIR}/external/antithesis-sdk
     )
@@ -223,6 +214,4 @@ if(xrpld)
       src/test/ledger/Invariants_test.cpp
       PROPERTIES SKIP_UNITY_BUILD_INCLUSION TRUE)
   endif()
-  # For the time being, we will keep the name of the binary as it was.
-  set_target_properties(xrpld PROPERTIES OUTPUT_NAME "rippled")
 endif()

cmake/RippledCov.cmake

@@ -11,9 +11,6 @@ if(CMAKE_CXX_COMPILER_ID MATCHES "MSVC")
   return()
 endif()
 
-include(ProcessorCount)
-ProcessorCount(PROCESSOR_COUNT)
-
 include(CodeCoverage)
 
 # The instructions for these commands come from the `CodeCoverage` module,
@@ -29,13 +26,15 @@ list(APPEND GCOVR_ADDITIONAL_ARGS
   --exclude-throw-branches
   --exclude-noncode-lines
   --exclude-unreachable-branches -s
-  -j ${PROCESSOR_COUNT})
+  -j ${coverage_test_parallelism})
 
 setup_target_for_coverage_gcovr(
   NAME coverage
   FORMAT ${coverage_format}
+  EXECUTABLE rippled
+  EXECUTABLE_ARGS --unittest$<$<BOOL:${coverage_test}>:=${coverage_test}> --unittest-jobs ${coverage_test_parallelism} --quiet --unittest-log
   EXCLUDE "src/test" "src/tests" "include/xrpl/beast/test" "include/xrpl/beast/unit_test" "${CMAKE_BINARY_DIR}/pb-xrpl.libpb"
-  DEPENDENCIES xrpld xrpl.tests
+  DEPENDENCIES rippled
 )
 
 add_code_coverage_to_target(opts INTERFACE)

cmake/RippledInstall.cmake

@@ -8,25 +8,22 @@ install (
   TARGETS
     common
     opts
-    xrpl_boost
-    xrpl_libs
-    xrpl_syslibs
+    ripple_syslibs
+    ripple_boost
     xrpl.imports.main
     xrpl.libpb
-    xrpl.libxrpl
     xrpl.libxrpl.basics
     xrpl.libxrpl.beast
     xrpl.libxrpl.crypto
     xrpl.libxrpl.json
-    xrpl.libxrpl.ledger
-    xrpl.libxrpl.net
-    xrpl.libxrpl.nodestore
     xrpl.libxrpl.protocol
     xrpl.libxrpl.resource
+    xrpl.libxrpl.ledger
     xrpl.libxrpl.server
-    xrpl.libxrpl.shamap
+    xrpl.libxrpl.net
+    xrpl.libxrpl
     antithesis-sdk-cpp
-  EXPORT XrplExports
+  EXPORT RippleExports
   LIBRARY DESTINATION lib
   ARCHIVE DESTINATION lib
   RUNTIME DESTINATION bin
@@ -37,19 +34,26 @@ install(
   DESTINATION "${CMAKE_INSTALL_INCLUDEDIR}"
 )
 
-install (EXPORT XrplExports
-  FILE XrplTargets.cmake
-  NAMESPACE Xrpl::
-  DESTINATION lib/cmake/xrpl)
+install(CODE "
+  set(CMAKE_MODULE_PATH \"${CMAKE_MODULE_PATH}\")
+  include(create_symbolic_link)
+  create_symbolic_link(xrpl \
+    \$ENV{DESTDIR}\${CMAKE_INSTALL_PREFIX}/${CMAKE_INSTALL_INCLUDEDIR}/ripple)
+")
+
+install (EXPORT RippleExports
+  FILE RippleTargets.cmake
+  NAMESPACE Ripple::
+  DESTINATION lib/cmake/ripple)
 include (CMakePackageConfigHelpers)
 write_basic_package_version_file (
-  XrplConfigVersion.cmake
-  VERSION ${xrpld_version}
+  RippleConfigVersion.cmake
+  VERSION ${rippled_version}
   COMPATIBILITY SameMajorVersion)
 
-if (is_root_project AND TARGET xrpld)
-  install (TARGETS xrpld RUNTIME DESTINATION bin)
-  set_target_properties(xrpld PROPERTIES INSTALL_RPATH_USE_LINK_PATH ON)
+if (is_root_project AND TARGET rippled)
+  install (TARGETS rippled RUNTIME DESTINATION bin)
+  set_target_properties(rippled PROPERTIES INSTALL_RPATH_USE_LINK_PATH ON)
   # sample configs should not overwrite existing files
   # install if-not-exists workaround as suggested by
   # https://cmake.org/Bug/view.php?id=12646
@@ -74,6 +78,6 @@ endif ()
 
 install (
   FILES
-    ${CMAKE_CURRENT_SOURCE_DIR}/cmake/XrplConfig.cmake
-    ${CMAKE_CURRENT_BINARY_DIR}/XrplConfigVersion.cmake
-  DESTINATION lib/cmake/xrpl)
+    ${CMAKE_CURRENT_SOURCE_DIR}/cmake/RippleConfig.cmake
+    ${CMAKE_CURRENT_BINARY_DIR}/RippleConfigVersion.cmake
+  DESTINATION lib/cmake/ripple)

cmake/RippledInterface.cmake

@@ -1,9 +1,9 @@
 #[===================================================================[
-   xrpld compile options/settings via an interface library
+   rippled compile options/settings via an interface library
 #]===================================================================]
 
 add_library (opts INTERFACE)
-add_library (Xrpl::opts ALIAS opts)
+add_library (Ripple::opts ALIAS opts)
 target_compile_definitions (opts
   INTERFACE
     BOOST_ASIO_DISABLE_HANDLER_TYPE_REQUIREMENTS
@@ -21,7 +21,7 @@ target_compile_definitions (opts
     >
     $<$<BOOL:${beast_no_unit_test_inline}>:BEAST_NO_UNIT_TEST_INLINE=1>
     $<$<BOOL:${beast_disable_autolink}>:BEAST_DONT_AUTOLINK_TO_WIN32_LIBRARIES=1>
-    $<$<BOOL:${single_io_service_thread}>:XRPL_SINGLE_IO_SERVICE_THREAD=1>
+    $<$<BOOL:${single_io_service_thread}>:RIPPLE_SINGLE_IO_SERVICE_THREAD=1>
     $<$<BOOL:${voidstar}>:ENABLE_VOIDSTAR>)
 target_compile_options (opts
   INTERFACE
@@ -59,12 +59,12 @@ if (san)
 endif ()
 
 #[===================================================================[
-   xrpld transitive library deps via an interface library
+   rippled transitive library deps via an interface library
 #]===================================================================]
 
-add_library (xrpl_syslibs INTERFACE)
-add_library (Xrpl::syslibs ALIAS xrpl_syslibs)
-target_link_libraries (xrpl_syslibs
+add_library (ripple_syslibs INTERFACE)
+add_library (Ripple::syslibs ALIAS ripple_syslibs)
+target_link_libraries (ripple_syslibs
   INTERFACE
     $<$<BOOL:${MSVC}>:
       legacy_stdio_definitions.lib
@@ -89,9 +89,9 @@ target_link_libraries (xrpl_syslibs
 if (NOT MSVC)
   set (THREADS_PREFER_PTHREAD_FLAG ON)
   find_package (Threads)
-  target_link_libraries (xrpl_syslibs INTERFACE Threads::Threads)
+  target_link_libraries (ripple_syslibs INTERFACE Threads::Threads)
 endif ()
 
-add_library (xrpl_libs INTERFACE)
-add_library (Xrpl::libs ALIAS xrpl_libs)
-target_link_libraries (xrpl_libs INTERFACE Xrpl::syslibs)
+add_library (ripple_libs INTERFACE)
+add_library (Ripple::libs ALIAS ripple_libs)
+target_link_libraries (ripple_libs INTERFACE Ripple::syslibs)

cmake/RippledSanity.cmake

@@ -1,5 +1,5 @@
 #[===================================================================[
-   sanity checks
+   convenience variables and sanity checks
 #]===================================================================]
 
 get_property(is_multiconfig GLOBAL PROPERTY GENERATOR_IS_MULTI_CONFIG)
@@ -16,19 +16,39 @@ if (NOT is_multiconfig)
   endif ()
 endif ()
 
+get_directory_property(has_parent PARENT_DIRECTORY)
+if (has_parent)
+  set (is_root_project OFF)
+else ()
+  set (is_root_project ON)
+endif ()
+
 if ("${CMAKE_CXX_COMPILER_ID}" MATCHES ".*Clang") # both Clang and AppleClang
   set (is_clang TRUE)
   if ("${CMAKE_CXX_COMPILER_ID}" STREQUAL "Clang" AND
-         CMAKE_CXX_COMPILER_VERSION VERSION_LESS 16.0)
-    message (FATAL_ERROR "This project requires clang 16 or later")
+         CMAKE_CXX_COMPILER_VERSION VERSION_LESS 8.0)
+    message (FATAL_ERROR "This project requires clang 8 or later")
   endif ()
+  # TODO min AppleClang version check ?
 elseif ("${CMAKE_CXX_COMPILER_ID}" STREQUAL "GNU")
   set (is_gcc TRUE)
-  if (CMAKE_CXX_COMPILER_VERSION VERSION_LESS 12.0)
-    message (FATAL_ERROR "This project requires GCC 12 or later")
+  if (CMAKE_CXX_COMPILER_VERSION VERSION_LESS 8.0)
+    message (FATAL_ERROR "This project requires GCC 8 or later")
   endif ()
 endif ()
 
+if (CMAKE_SYSTEM_NAME STREQUAL "Linux")
+  set (is_linux TRUE)
+else ()
+  set (is_linux FALSE)
+endif ()
+
+if ("$ENV{CI}" STREQUAL "true" OR "$ENV{CONTINUOUS_INTEGRATION}" STREQUAL "true")
+  set (is_ci TRUE)
+else ()
+  set (is_ci FALSE)
+endif ()
+
 # check for in-source build and fail
 if ("${CMAKE_CURRENT_SOURCE_DIR}" STREQUAL "${CMAKE_BINARY_DIR}")
   message (FATAL_ERROR "Builds (in-source) are not allowed in "
@@ -41,8 +61,8 @@ if (MSVC AND CMAKE_GENERATOR_PLATFORM STREQUAL "Win32")
 endif ()
 
 if (NOT CMAKE_SIZEOF_VOID_P EQUAL 8)
-  message (FATAL_ERROR "Xrpld requires a 64 bit target architecture.\n"
-    "The most likely cause of this warning is trying to build xrpld with a 32-bit OS.")
+  message (FATAL_ERROR "Rippled requires a 64 bit target architecture.\n"
+    "The most likely cause of this warning is trying to build rippled with a 32-bit OS.")
 endif ()
 
 if (APPLE AND NOT HOMEBREW)

cmake/RippledSettings.cmake

@@ -1,25 +1,10 @@
 #[===================================================================[
-   declare options and variables
+   declare user options/settings
 #]===================================================================]
 
-if(CMAKE_SYSTEM_NAME STREQUAL "Linux")
-  set (is_linux TRUE)
-else()
-  set(is_linux FALSE)
-endif()
+include(ProcessorCount)
 
-if("$ENV{CI}" STREQUAL "true" OR "$ENV{CONTINUOUS_INTEGRATION}" STREQUAL "true")
-  set(is_ci TRUE)
-else()
-  set(is_ci FALSE)
-endif()
-
-get_directory_property(has_parent PARENT_DIRECTORY)
-if(has_parent)
-  set(is_root_project OFF)
-else()
-  set(is_root_project ON)
-endif()
+ProcessorCount(PROCESSOR_COUNT)
 
 option(assert "Enables asserts, even in release builds" OFF)
 
@@ -40,30 +25,31 @@ if(unity)
   endif()
   set(CMAKE_UNITY_BUILD ON CACHE BOOL "Do a unity build")
 endif()
-
 if(is_clang AND is_linux)
   option(voidstar "Enable Antithesis instrumentation." OFF)
 endif()
-
 if(is_gcc OR is_clang)
-  include(ProcessorCount)
-  ProcessorCount(PROCESSOR_COUNT)
-
   option(coverage "Generates coverage info." OFF)
   option(profile "Add profiling flags" OFF)
+  set(coverage_test_parallelism "${PROCESSOR_COUNT}" CACHE STRING
+    "Unit tests parallelism for the purpose of coverage report.")
   set(coverage_format "html-details" CACHE STRING
     "Output format of the coverage report.")
   set(coverage_extra_args "" CACHE STRING
     "Additional arguments to pass to gcovr.")
+  set(coverage_test "" CACHE STRING
+    "On gcc & clang, the specific unit test(s) to run for coverage. Default is all tests.")
+  if(coverage_test AND NOT coverage)
+    set(coverage ON CACHE BOOL "gcc/clang only" FORCE)
+  endif()
   option(wextra "compile with extra gcc/clang warnings enabled" ON)
 else()
   set(profile OFF CACHE BOOL "gcc/clang only" FORCE)
   set(coverage OFF CACHE BOOL "gcc/clang only" FORCE)
   set(wextra OFF CACHE BOOL "gcc/clang only" FORCE)
 endif()
-
 if(is_linux)
-  option(BUILD_SHARED_LIBS "build shared xrpl libraries" OFF)
+  option(BUILD_SHARED_LIBS "build shared ripple libraries" OFF)
   option(static "link protobuf, openssl, libc++, and boost statically" ON)
   option(perf "Enables flags that assist with perf recording" OFF)
   option(use_gold "enables detection of gold (binutils) linker" ON)
@@ -72,19 +58,17 @@ else()
   # we are not ready to allow shared-libs on windows because it would require
   # export declarations. On macos it's more feasible, but static openssl
   # produces odd linker errors, thus we disable shared lib builds for now.
-  set(BUILD_SHARED_LIBS OFF CACHE BOOL "build shared xrpl libraries - OFF for win/macos" FORCE)
+  set(BUILD_SHARED_LIBS OFF CACHE BOOL "build shared ripple libraries - OFF for win/macos" FORCE)
   set(static ON CACHE BOOL "static link, linux only. ON for WIN/macos" FORCE)
   set(perf OFF CACHE BOOL "perf flags, linux only" FORCE)
   set(use_gold OFF CACHE BOOL "gold linker, linux only" FORCE)
   set(use_mold OFF CACHE BOOL "mold linker, linux only" FORCE)
 endif()
-
 if(is_clang)
   option(use_lld "enables detection of lld linker" ON)
 else()
   set(use_lld OFF CACHE BOOL "try lld linker, clang only" FORCE)
 endif()
-
 option(jemalloc "Enables jemalloc for heap profiling" OFF)
 option(werr "treat warnings as errors" OFF)
 option(local_protobuf
@@ -118,6 +102,16 @@ if(san)
     message(FATAL_ERROR "${san} sanitizer does not seem to be supported by your compiler")
   endif()
 endif()
+set(container_label "" CACHE STRING "tag to use for package building containers")
+option(packages_only
+  "ONLY generate package building targets. This is special use-case and almost \
+   certainly not what you want. Use with caution as you won't be able to build \
+   any compiled targets locally." OFF)
+option(have_package_container
+  "Sometimes you already have the tagged container you want to use for package \
+   building and you don't want docker to rebuild it. This flag will detach the \
+   dependency of the package build from the container build. It's an advanced \
+   use case and most likely you should not be touching this flag." OFF)
 
 # the remaining options are obscure and rarely used
 option(beast_no_unit_test_inline
@@ -131,13 +125,15 @@ option(boost_show_deprecated
   "Allow boost to fail on deprecated usage. Only useful if you're trying\
   to find deprecated calls."
   OFF)
+option(beast_hashers
+  "Use local implementations for sha/ripemd hashes (experimental, not recommended)"
+  OFF)
 
 if(WIN32)
   option(beast_disable_autolink "Disables autolinking of system libraries on WIN32" OFF)
 else()
   set(beast_disable_autolink OFF CACHE BOOL "WIN32 only" FORCE)
 endif()
-
 if(coverage)
   message(STATUS "coverage build requested - forcing Debug build")
   set(CMAKE_BUILD_TYPE Debug CACHE STRING "build type" FORCE)

cmake/RippledVersion.cmake

@@ -5,11 +5,11 @@
 file(STRINGS src/libxrpl/protocol/BuildInfo.cpp BUILD_INFO)
 foreach(line_ ${BUILD_INFO})
   if(line_ MATCHES "versionString[ ]*=[ ]*\"(.+)\"")
-    set(xrpld_version ${CMAKE_MATCH_1})
+    set(rippled_version ${CMAKE_MATCH_1})
   endif()
 endforeach()
-if(xrpld_version)
-  message(STATUS "xrpld version: ${xrpld_version}")
+if(rippled_version)
+  message(STATUS "rippled version: ${rippled_version}")
 else()
-  message(FATAL_ERROR "unable to determine xrpld version")
+  message(FATAL_ERROR "unable to determine rippled version")
 endif()

cmake/deps/Boost.cmake

@@ -12,10 +12,10 @@ find_package(Boost 1.82 REQUIRED
     thread
 )
 
-add_library(xrpl_boost INTERFACE)
-add_library(Xrpl::boost ALIAS xrpl_boost)
+add_library(ripple_boost INTERFACE)
+add_library(Ripple::boost ALIAS ripple_boost)
 
-target_link_libraries(xrpl_boost
+target_link_libraries(ripple_boost
   INTERFACE
     Boost::headers
     Boost::chrono
@@ -30,7 +30,7 @@ target_link_libraries(xrpl_boost
     Boost::system
     Boost::thread)
 if(Boost_COMPILER)
-  target_link_libraries(xrpl_boost INTERFACE Boost::disable_autolinking)
+  target_link_libraries(ripple_boost INTERFACE Boost::disable_autolinking)
 endif()
 if(san AND is_clang)
   # TODO: gcc does not support -fsanitize-blacklist...can we do something else

cmake/xrpl_add_test.cmake

@@ -7,7 +7,7 @@ function(xrpl_add_test name)
   "${CMAKE_CURRENT_SOURCE_DIR}/${name}/*.cpp"
   "${CMAKE_CURRENT_SOURCE_DIR}/${name}.cpp"
   )
-  add_executable(${target} ${ARGN} ${sources})
+  add_executable(${target} EXCLUDE_FROM_ALL ${ARGN} ${sources})
 
   isolate_headers(
     ${target}
@@ -22,4 +22,20 @@ function(xrpl_add_test name)
     UNITY_BUILD_BATCH_SIZE 0)  # Adjust as needed
 
   add_test(NAME ${target} COMMAND ${target})
+  set_tests_properties(
+    ${target} PROPERTIES
+    FIXTURES_REQUIRED ${target}_fixture
+  )
+
+  add_test(
+    NAME ${target}.build
+    COMMAND
+      ${CMAKE_COMMAND}
+      --build ${CMAKE_BINARY_DIR}
+      --config $<CONFIG>
+      --target ${target}
+  )
+  set_tests_properties(${target}.build PROPERTIES
+    FIXTURES_SETUP ${target}_fixture
+  )
 endfunction()

conan.lock

@@ -1,23 +1,26 @@
 {
     "version": "0.5",
     "requires": [
-        "zlib/1.3.1#b8bc2603263cf7eccbd6e17e66b0ed76%1756234269.497",
+        "zlib/1.3.1#b8bc2603263cf7eccbd6e17e66b0ed76%1733936244.862",
         "xxhash/0.8.3#681d36a0a6111fc56e5e45ea182c19cc%1756234289.683",
+        "wasm-xrplf/2.4.1-xrplf#dc67c558e283593ef0edd7eb00e9fa0d%1759862247.891",
         "sqlite3/3.49.1#8631739a4c9b93bd3d6b753bac548a63%1756234266.869",
         "soci/4.0.3#a9f8d773cd33e356b5879a4b0564f287%1756234262.318",
         "snappy/1.1.10#968fef506ff261592ec30c574d4a7809%1756234314.246",
-        "rocksdb/10.5.1#4a197eca381a3e5ae8adf8cffa5aacd0%1762797952.535",
+        "rocksdb/10.0.1#85537f46e538974d67da0c3977de48ac%1756234304.347",
         "re2/20230301#dfd6e2bf050eb90ddd8729cfb4c844a4%1756234257.976",
         "protobuf/3.21.12#d927114e28de9f4691a6bbcdd9a529d1%1756234251.614",
         "openssl/3.5.4#a1d5835cc6ed5c5b8f3cd5b9b5d24205%1760106486.594",
-        "nudb/2.0.9#fb8dfd1a5557f5e0528114c2da17721e%1763150366.909",
-        "lz4/1.10.0#59fc63cac7f10fbe8e05c7e62c2f3504%1756234228.999",
+        "nudb/2.0.9#c62cfd501e57055a7e0d8ee3d5e5427d%1756234237.107",
+        "lz4/1.10.0#59fc63cac7f10fbe8e05c7e62c2f3504%1743433196.251",
+        "libsodium/1.0.20#d2baa92ed999abe295ff63e2ee25b4f3%1743063880.072",
         "libiconv/1.17#1e65319e945f2d31941a9d28cc13c058%1756223727.64",
-        "libbacktrace/cci.20210118#a7691bfccd8caaf66309df196790a5a1%1756230911.03",
+        "libbacktrace/cci.20210118#a7691bfccd8caaf66309df196790a5a1%1722218217.276",
         "libarchive/3.8.1#5cf685686322e906cb42706ab7e099a8%1756234256.696",
         "jemalloc/5.3.0#e951da9cf599e956cebc117880d2d9f8%1729241615.244",
         "grpc/1.50.1#02291451d1e17200293a409410d1c4e1%1756234248.958",
-        "doctest/2.4.12#eb9fb352fb2fdfc8abb17ec270945165%1762797941.757",
+        "gmp/6.3.0#76a423d206f8aedd6bf8fc4e271467d2%1756240296.179",
+        "doctest/2.4.11#a4211dfc329a16ba9f280f9574025659%1756234220.819",
         "date/3.0.4#f74bbba5a08fa388256688743136cb6f%1756234217.493",
         "c-ares/1.34.5#b78b91e7cfb1f11ce777a285bbf169c6%1756234217.915",
         "bzip2/1.0.8#00b4a4658791c1f06914e087f0e792f5%1756234261.716",
@@ -25,12 +28,12 @@
         "abseil/20230802.1#f0f91485b111dc9837a68972cb19ca7b%1756234220.907"
     ],
     "build_requires": [
-        "zlib/1.3.1#b8bc2603263cf7eccbd6e17e66b0ed76%1756234269.497",
+        "zlib/1.3.1#b8bc2603263cf7eccbd6e17e66b0ed76%1733936244.862",
         "strawberryperl/5.32.1.1#707032463aa0620fa17ec0d887f5fe41%1756234281.733",
         "protobuf/3.21.12#d927114e28de9f4691a6bbcdd9a529d1%1756234251.614",
         "nasm/2.16.01#31e26f2ee3c4346ecd347911bd126904%1756234232.901",
         "msys2/cci.latest#5b73b10144f73cc5bfe0572ed9be39e1%1751977009.857",
-        "m4/1.4.19#f119296e5c4772b3bb7ab060ae8f417b%1760707875.678",
+        "m4/1.4.19#b38ced39a01e31fef5435bc634461fd2%1700758725.451",
         "cmake/3.31.8#dde3bde00bb843687e55aea5afa0e220%1756234232.89",
         "b2/5.3.3#107c15377719889654eb9a162a673975%1756234226.28",
         "automake/1.16.5#b91b7c384c3deaa9d535be02da14d04f%1755524470.56",
@@ -48,15 +51,9 @@
         "boost/1.83.0": [
             "boost/1.88.0"
         ],
-        "sqlite3/[>=3.44 <4]": [
-            "sqlite3/3.49.1"
-        ],
-        "lz4/[>=1.9.4 <2]": [
-            "lz4/1.10.0#59fc63cac7f10fbe8e05c7e62c2f3504"
-        ],
         "sqlite3/3.44.2": [
             "sqlite3/3.49.1"
         ]
     },
     "config_requires": []
-}
+}

conan/global.conf

@@ -1,5 +1,6 @@
 # Global configuration for Conan. This is used to set the number of parallel
-# downloads and uploads.
+# downloads, uploads, and build jobs.
 core:non_interactive=True
 core.download:parallel={{ os.cpu_count() }}
 core.upload:parallel={{ os.cpu_count() }}
+tools.build:jobs={{ os.cpu_count() - 1 }}

conan/profiles/default

@@ -21,11 +21,11 @@ compiler.libcxx={{detect_api.detect_libcxx(compiler, version, compiler_exe)}}
 
 [conf]
 {% if compiler == "clang" and compiler_version >= 19 %}
-grpc/1.50.1:tools.build:cxxflags+=['-Wno-missing-template-arg-list-after-template-kw']
+tools.build:cxxflags=['-Wno-missing-template-arg-list-after-template-kw']
 {% endif %}
 {% if compiler == "apple-clang" and compiler_version >= 17 %}
-grpc/1.50.1:tools.build:cxxflags+=['-Wno-missing-template-arg-list-after-template-kw']
+tools.build:cxxflags=['-Wno-missing-template-arg-list-after-template-kw']
 {% endif %}
 {% if compiler == "gcc" and compiler_version < 13 %}
-tools.build:cxxflags+=['-Wno-restrict']
+tools.build:cxxflags=['-Wno-restrict']
 {% endif %}

conanfile.py

@@ -2,6 +2,7 @@ from conan import ConanFile, __version__ as conan_version
 from conan.tools.cmake import CMake, CMakeToolchain, cmake_layout
 import re
 
+
 class Xrpl(ConanFile):
     name = 'xrpl'
 
@@ -30,10 +31,11 @@ class Xrpl(ConanFile):
         'openssl/3.5.4',
         'soci/4.0.3',
         'zlib/1.3.1',
+        'wasm-xrplf/2.4.1-xrplf',
     ]
 
     test_requires = [
-        'doctest/2.4.12',
+        'doctest/2.4.11',
     ]
 
     tool_requires = [
@@ -111,10 +113,13 @@ class Xrpl(ConanFile):
         self.requires('lz4/1.10.0', force=True)
         self.requires('protobuf/3.21.12', force=True)
         self.requires('sqlite3/3.49.1', force=True)
+        self.requires('gmp/6.3.0', force=True)
+        self.requires('libsodium/1.0.20', force=True)
+
         if self.options.jemalloc:
             self.requires('jemalloc/5.3.0')
         if self.options.rocksdb:
-            self.requires('rocksdb/10.5.1')
+            self.requires('rocksdb/10.0.1')
         self.requires('xxhash/0.8.3', **transitive_headers_opt)
 
     exports_sources = (
@@ -133,6 +138,7 @@ class Xrpl(ConanFile):
         self.folders.generators = 'build/generators'
 
     generators = 'CMakeDeps'
+
     def generate(self):
         tc = CMakeToolchain(self)
         tc.variables['tests'] = self.options.tests
@@ -190,6 +196,7 @@ class Xrpl(ConanFile):
             'protobuf::libprotobuf',
             'soci::soci',
             'sqlite3::sqlite',
+            'wasm-xrplf::wasm-xrplf',
             'xxhash::xxhash',
             'zlib::zlib',
         ]

external/libff/AUTHORS

@@ -0,0 +1,10 @@
+SCIPR Lab:
+    Eli Ben-Sasson
+    Alessandro Chiesa
+    Eran Tromer
+    Madars Virza
+    Howard Wu
+
+External contributors:
+    Alexander Chernyakhovsky (Google Inc.)
+    Aleksejs Popovs

external/libff/CHANGELOG.md

@@ -0,0 +1,52 @@
+## v0.3.0
+
+This update introduces new field and curve API's, and enforces they are used consistently across the library. Furthermore it makes it possible to use fields, without having to initialize elliptic curves.
+
+### Breaking Changes
+- #23 Remove unused exponent param of curves
+- #58 Add a defined API for every field type, and have minor tweaks to all fields to implement it (Thanks @alexander-zw)
+- #79 Separate field initialization from curves (Thanks @alexander-zw)
+### Features
+- #71 Add BLS12-381 (Thanks @yelhousni)
+- #80 Add clang-tidy checks to library and CI
+- #82 Convert tests to use Google test (Thanks @alexander-zw)
+- #83 Make run-clang-tidy return an error when linting fails
+- #85 Add more unit tests for fields (Thanks @alexander-zw)
+- #86 Add binary fields from [libiop](https://github.com/scipr-lab/libiop)
+- #100 Move utils in from [libiop](https://github.com/scipr-lab/libiop)
+
+### Bug fixes
+- #75 Get rid of warning for unused constant PI, in complex field
+- #78 Reduce prints when inhibit_profiling_info is set
+- #79 & #87 Use std::size_t for all code, fix bugs introduced by #58
+- #94 & #96 Fix bugs that make libff incompatible with
+  [libfqfft](https://github.com/scipr-lab/libfqfft) and [libiop](https://github.com/scipr-lab/libiop)
+- #103 Fix bugs that make libff incompatible with [libsnark](https://github.com/scipr-lab/libsnark)
+  and add more tests for the field utils
+
+## v0.2.0
+
+_Special thanks to all downstream projects upstreaming their patches!_
+
+### Breaking Changes
+- File structure changed: All field utils are now in `libff/algebra/field_utils/`, `Fp_model` is
+  now in `libff/algebra/fields/prime_base/`, and all other F_p^n fields in
+  `libff/algebra/fields/prime_extension/`.
+- The function `base_field_char()` of all fields and curves have been renamed to `field_char()`.
+- The provided fields used in curves have been moved to separate files so that they can be imported
+  separately from `[field name]_fields.hpp`. However they are still accessible from the init file.
+
+### Features
+- #20 Improve operator+ speed for alt_bn, correct the corresponding docs, and reduce code duplication.
+- #50 Add mul_by_cofactor to elliptic curve groups
+- #50 Add sage scripts for altbn and mnt curves, to verify cofactors and generators
+- #52 Change default procps build flags to work with Mac OS
+
+### Bug fixes
+- #19 Fix is_little_endian always returning true
+- #20 Fix operator+ not contributing to alt_bn_128 profiling opcount 
+- #26 Remove unused warnings in release build
+- #39 Update Travis Config for newer Ubuntu mirror defaults
+- #50 Fix incorrect mnt4 g2 generator
+- #54 Fix is_power_of_two for n > 2^32
+- #55 Throw informative error for division by zero in div_ceil

external/libff/CMakeLists.txt

@@ -0,0 +1,236 @@
+cmake_minimum_required(VERSION 3.5...3.25)
+
+project (libff)
+# Default to RelWithDebInfo configuration if no configuration is explicitly specified.
+if(NOT CMAKE_BUILD_TYPE AND NOT CMAKE_CONFIGURATION_TYPES)
+  set(CMAKE_BUILD_TYPE RelWithDebInfo CACHE STRING "Build type on single-configuration generators" FORCE)
+endif()
+
+set(
+  CURVE
+  "BN128"
+  CACHE
+  STRING
+  "Default curve: one of BLS12_381, ALT_BN128, BN128, EDWARDS, MNT4, MNT6"
+)
+
+option(
+  DEBUG
+  "Enable debugging mode"
+  OFF
+)
+option(
+  LOWMEM
+  "Limit the size of multi-exponentiation tables, for low-memory platforms"
+  OFF
+)
+option(
+  MULTICORE
+  "Enable parallelized execution, using OpenMP"
+  OFF
+)
+option(
+  BINARY_OUTPUT
+  "In serialization, output raw binary data (instead of decimal), which is smaller and faster."
+  ON
+)
+option(
+  MONTGOMERY_OUTPUT
+  "Use Montgomery representations for serialization and words representation of Fp elements (faster but not human-readable)"
+  ON
+)
+option(
+  USE_PT_COMPRESSION
+  "Use point compression"
+  ON
+)
+option(
+  PROFILE_OP_COUNTS
+  "Collect counts for field and curve operations"
+  OFF
+)
+option(
+  USE_MIXED_ADDITION
+  "Convert each element of the key pair to affine coordinates"
+  OFF
+)
+
+# This option does not work on macOS, since there is no /proc
+option(
+  WITH_PROCPS
+  "Use procps for memory profiling"
+  OFF
+)
+
+option(
+  CPPDEBUG
+  "Enable debugging of C++ STL (does not imply DEBUG)"
+  OFF
+)
+
+option(
+  PERFORMANCE
+  "Enable link-time and aggressive optimizations"
+  OFF
+)
+
+option(
+  USE_ASM
+  "Use architecture-specific optimized assembly code"
+  ON
+)
+
+option(
+  IS_LIBFF_PARENT
+  "Install submodule dependencies if caller originates from here"
+  ON
+)
+
+if(CMAKE_COMPILER_IS_GNUCXX OR "${CMAKE_CXX_COMPILER_ID}" STREQUAL "Clang")
+  # Common compilation flags and warning configuration
+  set(
+    CMAKE_CXX_FLAGS
+    "${CMAKE_CXX_FLAGS} -std=c++11 -Wall -Wextra -Wfatal-errors"
+  )
+  if("${MULTICORE}")
+      set(CMAKE_CXX_FLAGS "${CMAKE_CXX_FLAGS} -fopenmp")
+  endif()
+endif()
+
+find_path(GMP_INCLUDE_DIR NAMES gmp.h)
+find_library(GMP_LIBRARY gmp)
+if(GMP_LIBRARY MATCHES ${CMAKE_SHARED_LIBRARY_SUFFIX})
+  set(gmp_library_type SHARED)
+else()
+  set(gmp_library_type STATIC)
+endif()
+message(STATUS "GMP: ${GMP_LIBRARY}, ${GMP_INCLUDE_DIR}")
+add_library(GMP::gmp ${gmp_library_type} IMPORTED)
+set_target_properties(
+  GMP::gmp PROPERTIES
+  IMPORTED_LOCATION ${GMP_LIBRARY}
+  INTERFACE_INCLUDE_DIRECTORIES ${GMP_INCLUDE_DIR}
+)
+
+if("${WITH_PROCPS}")
+  if(APPLE)
+    message(WARNING "WITH_PROCPS must be set to OFF for macOS build")
+  endif()
+  include(FindPkgConfig)
+  pkg_check_modules(
+    PROCPS
+    REQUIRED
+
+    libprocps
+  )
+else()
+  add_definitions(
+    -DNO_PROCPS
+  )
+endif()
+
+add_definitions(
+  -DCURVE_${CURVE}
+)
+
+enable_testing()
+
+if(${CURVE} STREQUAL "BN128")
+  include_directories(depends)
+  add_definitions(
+    -DBN_SUPPORT_SNARK=1
+  )
+endif()
+
+if("${DEBUG}")
+  add_definitions(-DDEBUG=1)
+endif()
+
+if("${LOWMEM}")
+  add_definitions(-DLOWMEM=1)
+endif()
+
+if("${MULTICORE}")
+  add_definitions(-DMULTICORE=1)
+endif()
+
+if("${BINARY_OUTPUT}")
+  add_definitions(-DBINARY_OUTPUT)
+endif()
+
+if("${MONTGOMERY_OUTPUT}")
+  add_definitions(-DMONTGOMERY_OUTPUT)
+endif()
+
+if(NOT "${USE_PT_COMPRESSION}")
+  add_definitions(-DNO_PT_COMPRESSION=1)
+endif()
+
+if("${PROFILE_OP_COUNTS}")
+  add_definitions(-DPROFILE_OP_COUNTS=1)
+endif()
+
+if("${USE_MIXED_ADDITION}")
+  add_definitions(-DUSE_MIXED_ADDITION=1)
+endif()
+
+if("${CPPDEBUG}")
+  add_definitions(-D_GLIBCXX_DEBUG -D_GLIBCXX_DEBUG_PEDANTIC)
+endif()
+
+if("${PERFORMANCE}")
+  add_definitions(-DNDEBUG)
+  set(
+    CMAKE_CXX_FLAGS
+    "${CMAKE_CXX_FLAGS} -flto -fuse-linker-plugin"
+  )
+  set(
+    CMAKE_EXE_LINKER_FLAGS
+    "${CMAKE_EXE_LINKER_FLAGS} -flto"
+  )
+endif()
+
+if("${USE_ASM}")
+  add_definitions(-DUSE_ASM)
+  set(CMAKE_CXX_FLAGS "${CMAKE_CXX_FLAGS} -mpclmul -msse4.1") # Used for binary fields.
+endif()
+
+# Configure CCache if available
+find_program(CCACHE_FOUND ccache)
+if(CCACHE_FOUND)
+        set_property(GLOBAL PROPERTY RULE_LAUNCH_COMPILE ccache)
+        set_property(GLOBAL PROPERTY RULE_LAUNCH_LINK ccache)
+endif(CCACHE_FOUND)
+
+if ("${IS_LIBFF_PARENT}")
+  find_program(
+    MARKDOWN
+
+    markdown_py
+    DOC "Path to markdown_py binary"
+  )
+  if(MARKDOWN-NOTFOUND)
+  else()
+     add_custom_target(
+       doc
+       ${MARKDOWN} -f ${CMAKE_CURRENT_BINARY_DIR}/README.html -x toc -x extra --noisy ${CMAKE_CURRENT_SOURCE_DIR}/README.md
+       WORKING_DIRECTORY ${CMAKE_CURRENT_BINARY_DIR}
+       COMMENT "Translating from markdown to HTML" VERBATIM
+     )
+  endif()
+
+  # Add a `make check` target that builds and tests
+  add_custom_target(check COMMAND ${CMAKE_CTEST_COMMAND})
+
+  # Add a `make profile` target that builds and profiles
+  add_custom_target(
+    profile
+    COMMAND ${CMAKE_COMMAND}
+     -E echo 'Built target finished'
+  )
+
+  add_subdirectory(depends)
+  # Add a 'make clang-tidy' target that runs clang-tidy using checks specified in .clang-tidy
+  include(clang-tidy.cmake)
+endif()
+add_subdirectory(libff)

external/libff/CONTRIBUTING.md

@@ -0,0 +1,72 @@
+# Contributing
+
+Thank you for considering making contributions to libff!
+
+Contributing to this repo can be done in several forms, such as participating in discussion or proposing code changes.
+To ensure a smooth workflow for all contributors, the following general procedure for contributing has been established:
+
+1) Either open or find an issue you'd like to help with
+2) Participate in thoughtful discussion on that issue
+3) If you would like to contribute:
+    * If the issue is a feature proposal, ensure that the proposal has been accepted
+    * Ensure that nobody else has already begun working on this issue. 
+    If they have, please try to contact them to collaborate
+    * If nobody has been assigned for the issue and you would like to work on it, make a comment on the issue to inform the community of your intentions to begin work. (So we can avoid duplication of efforts)
+    * We suggest using standard Github best practices for contributing: fork the repo, branch from the HEAD of develop, make some commits on your branch, and submit a PR from the branch to develop.
+    More detail on this is below
+    * Be sure to include a relevant change log entry in the Pending section of CHANGELOG.md (see file for log format)
+
+Note that for very small or clear problems (such as typos), or well isolated improvements, it is not required to an open issue to submit a PR. But be aware that for more complex problems/features touching multiple parts of the codebase, if a PR is opened before an adequate design discussion has taken place in a github issue, that PR runs a larger likelihood of being rejected.
+
+Looking for a good place to start contributing? How about checking out some ["good first issues"](https://github.com/scipr-lab/libff/issues?q=is%3Aissue+is%3Aopen+label%3A%22good+first+issue%22)
+
+## Branch Structure
+
+Libff has its default branch as `develop`, which is where PRs are merged into. The `master` branch should only contain code that is part of a release. Releases will be periodically made. All other branches should be assumed to be miscellaneous feature development branches.
+
+All downstream users should be using tagged versions of the library.
+
+## How to work on a fork
+
+Please skip this section if you're familiar with contributing to open-source github projects.
+
+First, fork the repo from the github UI, and clone your fork locally (we denote
+by `<path-to-libff>` the path to your `libff` fork on your machine).
+After cloning your fork on your machine, it may be useful to add the upstream
+project as a git remote (to periodically update your fork for instance).
+You can do so by running the following command:
+```bash
+# Go to your fork cloned repository (replacing <path-to-libff> by the appropriate path)
+cd <path-to-libff>
+# Add the upstream project to your remotes
+git remote add upstream git@github.com:scipr-lab/libff.git
+# (Optional) Check the addition by inspecting your remotes
+git remote -vv
+```
+
+Then the way you make code contributions is to first think of a branch name that describes your change.
+Then do the following:
+```bash
+# Make sure your "develop" branch is up to date with the upstream repository
+git pull upstream develop
+# Create a branch for your contribution (replacing <your-branch-name> by the appropriate value)
+git checkout -b <your-branch-name>
+```
+and then work as normal on that branch, and PR'ing to upstream `develop` when you're done =)
+
+## Updating documentation
+
+All PRs should aim to leave the code more documented than it started with.
+Please don't assume that its easy to infer what the code is doing, 
+as that is usually not the case for these complex protocols unless one has been working with it recently. 
+(Even if you understand the paper!)
+
+Its often very useful to describe what is the high level view of what a code block is doing,
+and either refer to the relevant section of a paper or include a short proof/argument for why it makes sense before the actual logic.
+
+## Performance improvements
+
+All performance improvements should be accompanied with benchmarks improving, or otherwise have it be clear that things have improved.
+For some areas of the codebase, performance roughly follows the number of field multiplications, but there are also many areas where
+low level system effects such as cache locality and superscalar operations become important for performance. 
+Thus performance can often become very non-intuitive / diverge from minimizing the number of arithmetic operations.

external/libff/README.md

@@ -0,0 +1,137 @@
+<h1 align="center">libff</h1>
+<h4 align="center">C++ library for Finite Fields and Elliptic Curves</h4>
+
+___libff___ is a C++ library for finite fields and elliptic curves. The library is developed by [SCIPR Lab] and contributors (see [AUTHORS] file) and is released under the MIT License (see [LICENSE] file).
+
+## Table of contents
+
+- [Directory structure](#directory-structure)
+- [Elliptic curve choices](#elliptic-curve-choices)
+- [Build guide](#build-guide)
+
+## Directory structure
+
+The directory structure is as follows:
+
+* [__libff__](libff): C++ source code, containing the following modules:
+  * [__algebra__](libff/algebra): fields and elliptic curve groups
+  * [__common__](libff/common): miscellaneous utilities
+* [__depends__](depends): dependency libraries
+
+## Elliptic curve choices
+
+The libsnark library currently provides three options:
+
+* `edwards`:
+   an instantiation based on an Edwards curve, providing 80 bits of security.
+
+* `bn128`:
+   an instantiation based on a Barreto-Naehrig curve, providing 128
+   bits of security. The underlying curve implementation is
+   \[ate-pairing], which has incorporated our patch that changes the
+   BN curve to one suitable for SNARK applications.
+
+    *   This implementation uses dynamically-generated machine code for the curve
+        arithmetic. Some modern systems disallow execution of code on the heap, and
+        will thus block this implementation.
+
+        For example, on Fedora 20 at its default settings, you will get the error
+        `zmInit ERR:can't protect` when running this code. To solve this,
+        run `sudo setsebool -P allow_execheap 1` to allow execution,
+        or use `make CURVE=ALT_BN128` instead.
+
+* `alt_bn128`:
+   an alternative to `bn128`, somewhat slower but avoids dynamic code generation.
+
+Note that `bn128` requires an x86-64 CPU while the other curve choices
+should be architecture-independent.
+
+## Build guide
+
+The library has the following dependencies:
+
+* [Boost](http://www.boost.org/)
+* [CMake](http://cmake.org/)
+* [GMP](http://gmplib.org/)
+* [libsodium](https://libsodium.gitbook.io/doc/)
+* [libprocps](http://packages.ubuntu.com/trusty/libprocps-dev) (turned off by default)
+
+The library has been tested on Linux, but it is compatible with Windows and MacOS.
+
+### Installation
+
+On Ubuntu 14.04 LTS:
+
+```
+sudo apt-get install build-essential git libboost-all-dev cmake libgmp3-dev libssl-dev libprocps3-dev pkg-config libsodium-dev
+```
+
+
+On MacOS, all of the libraries from the previous section can be installed with `brew`, except for `libprocps`, which is turned off by default.
+
+Fetch dependencies from their GitHub repos:
+
+```
+git submodule init && git submodule update
+```
+
+### Compilation
+
+To compile, starting at the project root directory, create the build directory and Makefile:
+
+```
+mkdir build && cd build
+cmake ..
+```
+
+If you are on macOS, change the cmake command to be
+
+```
+cmake .. -DOPENSSL_ROOT_DIR=$(brew --prefix openssl)
+```
+
+Other build flags include:
+| Flag | Value | Description |
+| ---- | ----- | ----------- |
+| MAKE_INSTALL_PREFIX | (your path) | Specifies the desired install location. |
+| CMAKE_BUILD_TYPE | Debug | Enables asserts. Note that tests now use gtest instead of asserts. |
+| WITH_PROCPS | ON | Enables `libprocps`, which is by default turned off since it is not supported on some systems such as MacOS. |
+
+Then, to compile and install the library, run this within the build directory:
+```
+make
+make install
+```
+
+This will install `libff.a` into `/install/path/lib`; so your application should be linked using `-L/install/path/lib -lff`. It also installs the requisite headers into `/install/path/include`; so your application should be compiled using `-I/install/path/include`.
+
+## Testing
+
+To build and execute the tests for this library, run:
+```
+make check
+```
+
+## Code formatting and linting
+
+To run clang-tidy on this library, specify the variable `USE_CLANG_TIDY` (eg. `cmake .. -D USE_CLANG_TIDY=ON`).
+Then, run:
+```
+make clang-tidy
+```
+
+One can specify which clang-tidy checks to run and which files to run clang-tidy on using the `.clang-tidy` file in the root directory of the project.
+
+## Profile
+
+To compile the multi-exponentiation profiler in this library, run:
+```
+make profile
+```
+The resulting profiler is named `multiexp_profile` and can be found in the `libff` folder under the build directory.
+
+[SCIPR Lab]: http://www.scipr-lab.org/ (Succinct Computational Integrity and Privacy Research Lab)
+
+[LICENSE]: LICENSE (LICENSE file in top directory of libff distribution)
+
+[AUTHORS]: AUTHORS (AUTHORS file in top directory of libff distribution)

external/libff/clang-tidy.cmake

@@ -0,0 +1,30 @@
+option(
+  USE_CLANG_TIDY
+  "Use clang-tidy if the program is found."
+  OFF
+)
+
+if(USE_CLANG_TIDY)
+  find_program(CLANG_TIDY clang-tidy)
+  if(CLANG_TIDY)
+    file(DOWNLOAD
+      https://raw.githubusercontent.com/llvm-mirror/clang-tools-extra/master/clang-tidy/tool/run-clang-tidy.py
+      ${PROJECT_BINARY_DIR}/run-clang-tidy.py
+    )
+    find_program(RUN_CLANG_TIDY run-clang-tidy.py)
+    if(RUN_CLANG_TIDY)
+      message("Using clang-tidy. Creating target... To run, use: make clang-tidy")
+      add_custom_target(
+        clang-tidy
+        COMMAND python3 run-clang-tidy.py ../libff/algebra ../libff/common -quiet 2>&1
+        WORKING_DIRECTORY ${PROJECT_BINARY_DIR}
+        )
+    else()
+      message(
+        FATAL_ERROR
+        "run-clang-tidy.py not found. (Download and place in PATH). Aborting...")
+    endif()
+  else()
+    message(FATAL_ERROR "clang-tidy not found. Aborting...")
+  endif()
+endif()

external/libff/depends/CMakeLists.txt

@@ -0,0 +1,13 @@
+add_subdirectory(gtest EXCLUDE_FROM_ALL)
+
+if(${CURVE} STREQUAL "BN128")
+  include_directories(ate-pairing/include)
+  include_directories(xbyak)
+  add_library(
+    zm
+    STATIC
+
+    ate-pairing/src/zm.cpp
+    ate-pairing/src/zm2.cpp
+  )
+endif()

external/libff/depends/ate-pairing/.gitignore

@@ -0,0 +1,7 @@
+*~
+\#*\#
+.\#*
+*.omc
+.omakedb*
+lib/
+CVS

external/libff/depends/ate-pairing/Makefile

@@ -0,0 +1,10 @@
+all:
+	$(MAKE) -C src
+	$(MAKE) -C test
+
+clean:
+	$(MAKE) -C src clean
+	$(MAKE) -C test clean
+
+check:
+	$(MAKE) -C test check

external/libff/depends/ate-pairing/ate.sln

@@ -0,0 +1,38 @@
+<EFBFBD><EFBFBD><EFBFBD><EFBFBD>
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio Express 2012 for Windows Desktop
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "zmlib", "proj\11\zmlib\zmlib.vcxproj", "{2F9B80B9-D6A5-4534-94A3-7B42F5623193}"
+EndProject
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "sample", "proj\11\sample\sample.vcxproj", "{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}"
+	ProjectSection(ProjectDependencies) = postProject
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193} = {2F9B80B9-D6A5-4534-94A3-7B42F5623193}
+	EndProjectSection
+EndProject
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "test_bn", "proj\11\test_bn\test_bn.vcxproj", "{F4B8F9CD-2E24-4374-9BF6-6886347E861B}"
+	ProjectSection(ProjectDependencies) = postProject
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193} = {2F9B80B9-D6A5-4534-94A3-7B42F5623193}
+	EndProjectSection
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|x64 = Debug|x64
+		Release|x64 = Release|x64
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193}.Debug|x64.ActiveCfg = Debug|x64
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193}.Debug|x64.Build.0 = Debug|x64
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193}.Release|x64.ActiveCfg = Release|x64
+		{2F9B80B9-D6A5-4534-94A3-7B42F5623193}.Release|x64.Build.0 = Release|x64
+		{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}.Debug|x64.ActiveCfg = Debug|x64
+		{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}.Debug|x64.Build.0 = Debug|x64
+		{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}.Release|x64.ActiveCfg = Release|x64
+		{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}.Release|x64.Build.0 = Release|x64
+		{F4B8F9CD-2E24-4374-9BF6-6886347E861B}.Debug|x64.ActiveCfg = Debug|x64
+		{F4B8F9CD-2E24-4374-9BF6-6886347E861B}.Debug|x64.Build.0 = Debug|x64
+		{F4B8F9CD-2E24-4374-9BF6-6886347E861B}.Release|x64.ActiveCfg = Release|x64
+		{F4B8F9CD-2E24-4374-9BF6-6886347E861B}.Release|x64.Build.0 = Release|x64
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+EndGlobal

external/libff/depends/ate-pairing/ate.vsprops

@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="shift_jis"?>
+<VisualStudioPropertySheet
+	ProjectType="Visual C++"
+	Version="8.00"
+	Name="ate"
+	>
+	<Tool
+		Name="VCCLCompilerTool"
+		AdditionalIncludeDirectories="$(SolutionDir)../xbyak;$(SolutionDir)src;$(SolutionDir)include;$(SolutionDir)test"
+		PreprocessorDefinitions="WIN32;NOMINMAX;WIN32_LEAN_AND_MEAN"
+		WarningLevel="4"
+		DisableSpecificWarnings="4996"
+	/>
+</VisualStudioPropertySheet>

external/libff/depends/ate-pairing/common.mk

@@ -0,0 +1,55 @@
+# common definition for Makefile
+# for GNU c++
+#CCACHE=$(shell eval ls /usr/local/bin/ccache 2>/dev/null)
+
+#CXX = g++
+#CC = gcc
+#LD = g++
+CP = cp -f
+AR = ar r
+MKDIR=mkdir -p
+RM=rm -f
+CFLAGS = -fPIC -O3 -fomit-frame-pointer -DNDEBUG -msse2 -mfpmath=sse -march=native
+CFLAGS_WARN=-Wall -Wextra -Wformat=2 -Wcast-qual -Wcast-align -Wwrite-strings -Wfloat-equal -Wpointer-arith #-Wswitch-enum -Wstrict-aliasing=2
+CFLAGS_ALWAYS = -D_FILE_OFFSET_BITS=64 -DMIE_ATE_USE_GMP
+LDFLAGS = -lm -lzm $(LIB_DIR) -lgmp -lgmpxx
+AS = nasm
+AFLAGS = -f elf -D__unix__
+ifeq ($(SUPPORT_SNARK),1)
+CFLAGS += -DBN_SUPPORT_SNARK
+endif
+ifneq ($(VUINT_BIT_LEN),)
+CFLAGS += -D"MIE_ZM_VUINT_BIT_LEN=$(VUINT_BIT_LEN)"
+endif
+
+# for only 64-bit
+BIT=-m64
+#BIT=-m32
+#ifeq ($(shell uname -s),x86_64)
+#BIT=-m64
+#endif
+#ifeq ($(shell uname -s),Darwin)
+#BIT=-m64
+#endif
+ifeq ($(shell uname -s),Cygwin)
+# install mingw64-x86_64-gcc-g++
+CXX=x86_64-w64-mingw32-g++
+LD=x86_64-w64-mingw32-g++
+AR=x86_64-w64-mingw32-ar r
+#LDFLAGS+=-L/usr/x86_64-w64-mingw32/sys-root/mingw/lib
+endif
+
+ifeq ($(DBG),on)
+CFLAGS += -O0 -g3 -UNDEBUG
+LDFLAGS += -g3
+endif
+
+.SUFFIXES: .cpp
+.cpp.o:
+	$(CXX) -c $< -o $@ $(CFLAGS) $(CFLAGS_WARN) $(CFLAGS_ALWAYS) $(INC_DIR) $(BIT)
+
+.c.o:
+	$(CC) -c $< -o $@ $(CFLAGS) $(CFLAGS_WARN) $(CFLAGS_ALWAYS) $(INC_DIR) $(BIT)
+
+INC_DIR+= -I../src -I../../xbyak -I../include
+LIB_DIR+= -L../lib

external/libff/depends/ate-pairing/common.props

@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ImportGroup Label="PropertySheets" />
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup>
+    <OutDir>$(SolutionDir)bin\</OutDir>
+  </PropertyGroup>
+  <ItemDefinitionGroup>
+    <ClCompile>
+      <AdditionalIncludeDirectories>$(SolutionDir)../xbyak;$(SolutionDir)include</AdditionalIncludeDirectories>
+    </ClCompile>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup>
+    <ClCompile>
+      <WarningLevel>Level4</WarningLevel>
+      <RuntimeLibrary>MultiThreaded</RuntimeLibrary>
+      <PrecompiledHeaderFile />
+      <PrecompiledHeaderOutputFile />
+      <PreprocessorDefinitions>_MBCS;%(PreprocessorDefinitions);NOMINMAX</PreprocessorDefinitions>
+      <OpenMPSupport>false</OpenMPSupport>
+    </ClCompile>
+    <Link>
+      <AdditionalLibraryDirectories>$(SolutionDir)lib\</AdditionalLibraryDirectories>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup />
+</Project>

external/libff/depends/ate-pairing/debug.props

@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ImportGroup Label="PropertySheets" />
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup>
+    <TargetName>$(ProjectName)d</TargetName>
+  </PropertyGroup>
+  <ItemDefinitionGroup>
+    <ClCompile>
+      <RuntimeLibrary>MultiThreadedDebugDLL</RuntimeLibrary>
+    </ClCompile>
+  </ItemDefinitionGroup>
+  <ItemGroup />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <LocalDebuggerWorkingDirectory>$(SolutionDir)bin</LocalDebuggerWorkingDirectory>
+    <DebuggerFlavor>WindowsLocalDebugger</DebuggerFlavor>
+  </PropertyGroup>
+</Project>

external/libff/depends/ate-pairing/include/cybozu/benchmark.hpp

@@ -0,0 +1,169 @@
+#pragma once
+/**
+	@file
+	@brief measure exec time of function
+	@author MITSUNARI Shigeo
+*/
+#if defined(_MSC_VER) && (MSC_VER <= 1500)
+	#include <cybozu/inttype.hpp>
+#else
+	#include <stdint.h>
+#endif
+#include <stdio.h>
+
+#if defined(_M_IX86) || defined(_M_X64) || defined(__i386__) || defined(__x86_64__)
+	#define CYBOZU_BENCH_USE_RDTSC
+#endif
+#ifdef CYBOZU_BENCH_USE_RDTSC
+#ifdef _MSC_VER
+	#include <intrin.h>
+#endif
+#else
+	#include <cybozu/time.hpp>
+#endif
+
+namespace cybozu {
+
+#ifdef CYBOZU_BENCH_USE_RDTSC
+class CpuClock {
+public:
+	static inline uint64_t getRdtsc()
+	{
+#ifdef _MSC_VER
+		return __rdtsc();
+#else
+		unsigned int eax, edx;
+		__asm__ volatile("rdtsc" : "=a"(eax), "=d"(edx));
+		return ((uint64_t)edx << 32) | eax;
+#endif
+	}
+	CpuClock()
+		: clock_(0)
+		, count_(0)
+	{
+	}
+	void begin()
+	{
+		clock_ -= getRdtsc();
+	}
+	void end()
+	{
+		clock_ += getRdtsc();
+		count_++;
+	}
+	int getCount() const { return count_; }
+	uint64_t getClock() const { return clock_; }
+	void clear() { count_ = 0; clock_ = 0; }
+	void put(const char *msg = 0, int N = 1) const
+	{
+		double t = getClock() / double(getCount()) / N;
+		if (msg && *msg) printf("%s ", msg);
+		if (t > 1e6) {
+			printf("%7.3fMclk", t * 1e-6);
+		} else if (t > 1e3) {
+			printf("%7.3fKclk", t * 1e-3);
+		} else {
+			printf("%6.2f clk", t);
+		}
+		if (msg && *msg) printf("\n");
+	}
+	// adhoc constatns for CYBOZU_BENCH
+	static const int loopN1 = 1000;
+	static const int loopN2 = 1000000;
+	static const uint64_t maxClk = (uint64_t)3e8;
+private:
+	uint64_t clock_;
+	int count_;
+};
+#else
+class CpuClock {
+	cybozu::Time t_;
+	uint64_t clock_;
+	int count_;
+public:
+	CpuClock() : clock_(0), count_(0) { t_.setTime(0, 0); }
+	void begin()
+	{
+		if (count_ == 0) t_.setCurrentTime(); // start
+	}
+	/*
+		@note QQQ ; this is not same api as rdtsc version
+	*/
+	void end()
+	{
+		cybozu::Time cur(true);
+		int diffSec = (int)(cur.getTime() - t_.getTime());
+		int diffMsec = cur.getMsec() - t_.getMsec();
+		const int diff = diffSec * 1000 + diffMsec;
+		clock_ = diff;
+		count_++;
+	}
+	int getCount() const { return count_; }
+	uint64_t getClock() const { return clock_; }
+	void clear() { t_.setTime(0, 0); clock_ = 0; count_ = 0; }
+	void put(const char *msg = 0, int N = 1) const
+	{
+		double t = getClock() / double(getCount()) / N;
+		if (msg && *msg) printf("%s ", msg);
+		if (t > 1) {
+			printf("%6.2fmsec", t);
+		} else if (t > 1e-3) {
+			printf("%6.2fusec", t * 1e3);
+		} else {
+			printf("%6.2fnsec", t * 1e6);
+		}
+		if (msg && *msg) printf("\n");
+	}
+	// adhoc constatns for CYBOZU_BENCH
+	static const int loopN1 = 1000000;
+	static const int loopN2 = 1000;
+	static const uint64_t maxClk = (uint64_t)500;
+};
+#endif
+
+namespace bench {
+
+static CpuClock g_clk;
+#ifdef __GNUC__
+	#define CYBOZU_UNUSED __attribute__((unused))
+#else
+	#define CYBOZU_UNUSED
+#endif
+static int CYBOZU_UNUSED g_loopNum;
+
+} // cybozu::bench
+/*
+	loop counter is automatically determined
+	CYBOZU_BENCH(<msg>, <func>, <param1>, <param2>, ...);
+	if msg == "" then only set g_clk, g_loopNum
+*/
+#define CYBOZU_BENCH(msg, func, ...) \
+{ \
+	const uint64_t maxClk = cybozu::CpuClock::maxClk; \
+	cybozu::CpuClock clk; \
+	for (int i = 0; i < cybozu::CpuClock::loopN2; i++) { \
+		clk.begin(); \
+		for (int j = 0; j < cybozu::CpuClock::loopN1; j++) { func(__VA_ARGS__); } \
+		clk.end(); \
+		if (clk.getClock() > maxClk) break; \
+	} \
+	if (msg && *msg) clk.put(msg, cybozu::CpuClock::loopN1); \
+	cybozu::bench::g_clk = clk; cybozu::bench::g_loopNum = cybozu::CpuClock::loopN1; \
+}
+
+/*
+	loop counter N is given
+	CYBOZU_BENCH_C(<msg>, <counter>, <func>, <param1>, <param2>, ...);
+	if msg == "" then only set g_clk, g_loopNum
+*/
+#define CYBOZU_BENCH_C(msg, _N, func, ...) \
+{ \
+	cybozu::CpuClock clk; \
+	clk.begin(); \
+	for (int j = 0; j < _N; j++) { func(__VA_ARGS__); } \
+	clk.end(); \
+	if (msg && *msg) clk.put(msg, _N); \
+	cybozu::bench::g_clk = clk; cybozu::bench::g_loopNum = _N; \
+}
+
+} // cybozu

external/libff/depends/ate-pairing/include/cybozu/inttype.hpp

@@ -0,0 +1,121 @@
+#pragma once
+/**
+	@file
+	@brief int type definition and macros
+	Copyright (C) 2008 Cybozu Labs, Inc., all rights reserved.
+*/
+
+#if defined(_MSC_VER) && (MSC_VER <= 1500) && !defined(CYBOZU_DEFINED_INTXX)
+	#define CYBOZU_DEFINED_INTXX
+	typedef __int64 int64_t;
+	typedef unsigned __int64 uint64_t;
+	typedef unsigned int uint32_t;
+	typedef int int32_t;
+	typedef unsigned short uint16_t;
+	typedef short int16_t;
+	typedef unsigned char uint8_t;
+	typedef signed char int8_t;
+#else
+	#include <stdint.h>
+#endif
+
+#ifdef _MSC_VER
+	#ifndef CYBOZU_DEFINED_SSIZE_T
+		#define CYBOZU_DEFINED_SSIZE_T
+		#ifdef _WIN64
+			typedef int64_t ssize_t;
+		#else
+			typedef int32_t ssize_t;
+		#endif
+	#endif
+#else
+	#include <unistd.h> // for ssize_t
+#endif
+
+#ifndef CYBOZU_ALIGN
+	#ifdef _MSC_VER
+		#define CYBOZU_ALIGN(x) __declspec(align(x))
+	#else
+		#define CYBOZU_ALIGN(x) __attribute__((aligned(x)))
+	#endif
+#endif
+#ifndef CYBOZU_FORCE_INLINE
+	#ifdef _MSC_VER
+		#define CYBOZU_FORCE_INLINE __forceinline
+	#else
+		#define CYBOZU_FORCE_INLINE __attribute__((always_inline))
+	#endif
+#endif
+#ifndef CYBOZU_ALLOCA
+	#ifdef _MSC_VER
+		#include <malloc.h>
+		#define CYBOZU_ALLOCA(x) _malloca(x)
+	#else
+		#define CYBOZU_ALLOCA_(x) __builtin_alloca(x)
+	#endif
+#endif
+#ifndef CYBOZU_NUM_OF_ARRAY
+	#define CYBOZU_NUM_OF_ARRAY(x) (sizeof(x) / sizeof(*x))
+#endif
+#ifndef CYBOZU_SNPRINTF
+	#if defined(_MSC_VER) && (_MSC_VER < 1900)
+		#define CYBOZU_SNPRINTF(x, len, ...) (void)_snprintf_s(x, len, len - 1, __VA_ARGS__)
+	#else
+		#define CYBOZU_SNPRINTF(x, len, ...) (void)snprintf(x, len, __VA_ARGS__)
+	#endif
+#endif
+
+#define CYBOZU_CPP_VERSION_CPP03 0
+#define CYBOZU_CPP_VERSION_TR1 1
+#define CYBOZU_CPP_VERSION_CPP11 2
+
+#if (__cplusplus >= 201103) || (_MSC_VER >= 1500) || defined(__GXX_EXPERIMENTAL_CXX0X__)
+	#if defined(_MSC_VER) && (_MSC_VER <= 1600)
+		#define CYBOZU_CPP_VERSION CYBOZU_CPP_VERSION_TR1
+	#else
+		#define CYBOZU_CPP_VERSION CYBOZU_CPP_VERSION_CPP11
+	#endif
+#elif (__GNUC__ >= 4 && __GNUC_MINOR__ >= 5) || (__clang_major__ >= 3)
+	#define CYBOZU_CPP_VERSION CYBOZU_CPP_VERSION_TR1
+#else
+	#define CYBOZU_CPP_VERSION CYBOZU_CPP_VERSION_CPP03
+#endif
+
+#if (CYBOZU_CPP_VERSION == CYBOZU_CPP_VERSION_TR1)
+	#define CYBOZU_NAMESPACE_STD std::tr1
+	#define CYBOZU_NAMESPACE_TR1_BEGIN namespace tr1 {
+	#define CYBOZU_NAMESPACE_TR1_END }
+#else
+	#define CYBOZU_NAMESPACE_STD std
+	#define CYBOZU_NAMESPACE_TR1_BEGIN
+	#define CYBOZU_NAMESPACE_TR1_END
+#endif
+
+#ifndef CYBOZU_OS_BIT
+	#if defined(_WIN64) || defined(__x86_64__)
+		#define CYBOZU_OS_BIT 64
+	#else
+		#define CYBOZU_OS_BIT 32
+	#endif
+#endif
+
+
+#ifndef CYBOZU_ENDIAN
+	#define CYBOZU_ENDIAN_UNKNOWN 0
+	#define CYBOZU_ENDIAN_LITTLE 1
+	#define CYBOZU_ENDIAN_BIG 2
+	#if defined(_M_IX86) || defined(_M_AMD64) || defined(__x86_64__) || defined(__i386__)
+		#define CYBOZU_ENDIAN CYBOZU_ENDIAN_LITTLE
+	#else
+		#define CYBOZU_ENDIAN CYBOZU_ENDIAN_UNKNOWN
+	#endif
+#endif
+
+namespace cybozu {
+template<class T>
+void disable_warning_unused_variable(const T&) { }
+template<class T, class S>
+T cast(const S* ptr) { return static_cast<T>(static_cast<const void*>(ptr)); }
+template<class T, class S>
+T cast(S* ptr) { return static_cast<T>(static_cast<void*>(ptr)); }
+} // cybozu

external/libff/depends/ate-pairing/include/cybozu/readme.txt

@@ -0,0 +1,2 @@
+see
+https://github.com/herumi/cybozulib/

external/libff/depends/ate-pairing/include/cybozu/test.hpp

@@ -0,0 +1,371 @@
+#pragma once
+/**
+	@file
+	@brief unit test class
+
+	Copyright (C) 2008 Cybozu Labs, Inc., all rights reserved.
+*/
+
+#include <stdio.h>
+#include <string.h>
+#include <string>
+#include <list>
+#include <iostream>
+#include <utility>
+#if defined(_MSC_VER) && (MSC_VER <= 1500)
+	#include <cybozu/inttype.hpp>
+#else
+	#include <stdint.h>
+#endif
+
+namespace cybozu { namespace test {
+
+class AutoRun {
+	typedef void (*Func)();
+	typedef std::list<std::pair<const char*, Func> > UnitTestList;
+public:
+	AutoRun()
+		: init_(0)
+		, term_(0)
+		, okCount_(0)
+		, ngCount_(0)
+		, exceptionCount_(0)
+	{
+	}
+	void setup(Func init, Func term)
+	{
+		init_ = init;
+		term_ = term;
+	}
+	void append(const char *name, Func func)
+	{
+		list_.push_back(std::make_pair(name, func));
+	}
+	void set(bool isOK)
+	{
+		if (isOK) {
+			okCount_++;
+		} else {
+			ngCount_++;
+		}
+	}
+	std::string getBaseName(const std::string& name) const
+	{
+#ifdef _WIN32
+		const char sep = '\\';
+#else
+		const char sep = '/';
+#endif
+		size_t pos = name.find_last_of(sep);
+		std::string ret = name.substr(pos + 1);
+		pos = ret.find('.');
+		return ret.substr(0, pos);
+	}
+	int run(int, char *argv[])
+	{
+		std::string msg;
+		try {
+			if (init_) init_();
+			for (UnitTestList::const_iterator i = list_.begin(), ie = list_.end(); i != ie; ++i) {
+				std::cout << "ctest:module=" << i->first << std::endl;
+				try {
+					(i->second)();
+				} catch (std::exception& e) {
+					exceptionCount_++;
+					std::cout << "ctest:  " << i->first << " is stopped by exception " << e.what() << std::endl;
+				} catch (...) {
+					exceptionCount_++;
+					std::cout << "ctest:  " << i->first << " is stopped by unknown exception" << std::endl;
+				}
+			}
+			if (term_) term_();
+		} catch (std::exception& e) {
+			msg = std::string("ctest:err:") + e.what();
+		} catch (...) {
+			msg = "ctest:err: catch unknown exception";
+		}
+		fflush(stdout);
+		if (msg.empty()) {
+			std::cout << "ctest:name=" << getBaseName(*argv)
+					  << ", module=" << list_.size()
+					  << ", total=" << (okCount_ + ngCount_ + exceptionCount_)
+					  << ", ok=" << okCount_
+					  << ", ng=" << ngCount_
+					  << ", exception=" << exceptionCount_ << std::endl;
+			return 0;
+		} else {
+			std::cout << msg << std::endl;
+			return 1;
+		}
+	}
+	static inline AutoRun& getInstance()
+	{
+		static AutoRun instance;
+		return instance;
+	}
+private:
+	Func init_;
+	Func term_;
+	int okCount_;
+	int ngCount_;
+	int exceptionCount_;
+	UnitTestList list_;
+};
+
+static AutoRun& autoRun = AutoRun::getInstance();
+
+inline void test(bool ret, const std::string& msg, const std::string& param, const char *file, int line)
+{
+	autoRun.set(ret);
+	if (!ret) {
+		printf("%s(%d):ctest:%s(%s);\n", file, line, msg.c_str(), param.c_str());
+	}
+}
+
+template<typename T, typename U>
+bool isEqual(const T& lhs, const U& rhs)
+{
+	return lhs == rhs;
+}
+
+// avoid warning of comparision of integers of different signs
+inline bool isEqual(size_t lhs, int rhs)
+{
+	return lhs == size_t(rhs);
+}
+inline bool isEqual(int lhs, size_t rhs)
+{
+	return size_t(lhs) == rhs;
+}
+inline bool isEqual(const char *lhs, const char *rhs)
+{
+	return strcmp(lhs, rhs) == 0;
+}
+inline bool isEqual(char *lhs, const char *rhs)
+{
+	return strcmp(lhs, rhs) == 0;
+}
+inline bool isEqual(const char *lhs, char *rhs)
+{
+	return strcmp(lhs, rhs) == 0;
+}
+inline bool isEqual(char *lhs, char *rhs)
+{
+	return strcmp(lhs, rhs) == 0;
+}
+// avoid to compare float directly
+inline bool isEqual(float lhs, float rhs)
+{
+	union fi {
+		float f;
+		uint32_t i;
+	} lfi, rfi;
+	lfi.f = lhs;
+	rfi.f = rhs;
+	return lfi.i == rfi.i;
+}
+// avoid to compare double directly
+inline bool isEqual(double lhs, double rhs)
+{
+	union di {
+		double d;
+		uint64_t i;
+	} ldi, rdi;
+	ldi.d = lhs;
+	rdi.d = rhs;
+	return ldi.i == rdi.i;
+}
+
+} } // cybozu::test
+
+#ifndef CYBOZU_TEST_DISABLE_AUTO_RUN
+int main(int argc, char *argv[])
+{
+	return cybozu::test::autoRun.run(argc, argv);
+}
+#endif
+
+/**
+	alert if !x
+	@param x [in]
+*/
+#define CYBOZU_TEST_ASSERT(x) cybozu::test::test(!!(x), "CYBOZU_TEST_ASSERT", #x, __FILE__, __LINE__)
+
+/**
+	alert if x != y
+	@param x [in]
+	@param y [in]
+*/
+#define CYBOZU_TEST_EQUAL(x, y) { \
+	bool eq = cybozu::test::isEqual(x, y); \
+	cybozu::test::test(eq, "CYBOZU_TEST_EQUAL", #x ", " #y, __FILE__, __LINE__); \
+	if (!eq) { \
+		std::cout << "ctest:  lhs=" << (x) << std::endl; \
+		std::cout << "ctest:  rhs=" << (y) << std::endl; \
+	} \
+}
+/**
+	alert if fabs(x, y) >= eps
+	@param x [in]
+	@param y [in]
+*/
+#define CYBOZU_TEST_NEAR(x, y, eps) { \
+	bool isNear = fabs((x) - (y)) < eps; \
+	cybozu::test::test(isNear, "CYBOZU_TEST_NEAR", #x ", " #y, __FILE__, __LINE__); \
+	if (!isNear) { \
+		std::cout << "ctest:  lhs=" << (x) << std::endl; \
+		std::cout << "ctest:  rhs=" << (y) << std::endl; \
+	} \
+}
+
+#define CYBOZU_TEST_EQUAL_POINTER(x, y) { \
+	bool eq = x == y; \
+	cybozu::test::test(eq, "CYBOZU_TEST_EQUAL_POINTER", #x ", " #y, __FILE__, __LINE__); \
+	if (!eq) { \
+		std::cout << "ctest:  lhs=" << static_cast<const void*>(x) << std::endl; \
+		std::cout << "ctest:  rhs=" << static_cast<const void*>(y) << std::endl; \
+	} \
+}
+/**
+	alert if x[] != y[]
+	@param x [in]
+	@param y [in]
+	@param n [in]
+*/
+#define CYBOZU_TEST_EQUAL_ARRAY(x, y, n) { \
+	for (size_t i = 0, ie = (size_t)(n); i < ie; i++) { \
+		bool eq = cybozu::test::isEqual(x, y); \
+		cybozu::test::test(eq, "CYBOZU_TEST_EQUAL_ARRAY", #x ", " #y, __FILE__, __LINE__); \
+		if (!eq) { \
+			std::cout << "ctest:  i=" << i << std::endl; \
+			std::cout << "ctest:  lhs=" << (x) << std::endl; \
+			std::cout << "ctest:  rhs=" << (y) << std::endl; \
+		} \
+	} \
+}
+
+/**
+	always alert
+	@param msg [in]
+*/
+#define CYBOZU_TEST_FAIL(msg) cybozu::test::test(false, "CYBOZU_TEST_FAIL", msg, __FILE__, __LINE__)
+
+/**
+	verify message in exception
+*/
+#define CYBOZU_TEST_EXCEPTION_MESSAGE(statement, Exception, msg) \
+{ \
+	int ret = 0; \
+	std::string errMsg; \
+	try { \
+		statement; \
+		ret = 1; \
+	} catch (const Exception& e) { \
+		errMsg = e.what(); \
+		if (errMsg.find(msg) == std::string::npos) { \
+			ret = 2; \
+		} \
+	} catch (...) { \
+		ret = 3; \
+	} \
+	if (ret) { \
+		cybozu::test::test(false, "CYBOZU_TEST_EXCEPTION_MESSAGE", #statement ", " #Exception ", " #msg, __FILE__, __LINE__); \
+		if (ret == 1) { \
+			std::cout << "ctest:  no exception" << std::endl; \
+		} else if (ret == 2) { \
+			std::cout << "ctest:  bad exception msg:" << errMsg << std::endl; \
+		} else { \
+			std::cout << "ctest:  unexpected exception" << std::endl; \
+		} \
+	} else { \
+		cybozu::test::autoRun.set(true); \
+	} \
+}
+
+#define CYBOZU_TEST_EXCEPTION(statement, Exception) \
+{ \
+	int ret = 0; \
+	try { \
+		statement; \
+		ret = 1; \
+	} catch (const Exception&) { \
+	} catch (...) { \
+		ret = 2; \
+	} \
+	if (ret) { \
+		cybozu::test::test(false, "CYBOZU_TEST_EXCEPTION", #statement ", " #Exception, __FILE__, __LINE__); \
+		if (ret == 1) { \
+			std::cout << "ctest:  no exception" << std::endl; \
+		} else { \
+			std::cout << "ctest:  unexpected exception" << std::endl; \
+		} \
+	} else { \
+		cybozu::test::autoRun.set(true); \
+	} \
+}
+
+/**
+	verify statement does not throw
+*/
+#define CYBOZU_TEST_NO_EXCEPTION(statement) \
+try { \
+	statement; \
+	cybozu::test::autoRun.set(true); \
+} catch (...) { \
+	cybozu::test::test(false, "CYBOZU_TEST_NO_EXCEPTION", #statement, __FILE__, __LINE__); \
+}
+
+/**
+	append auto unit test
+	@param name [in] module name
+*/
+#define CYBOZU_TEST_AUTO(name) \
+void cybozu_test_ ## name(); \
+struct cybozu_test_local_ ## name { \
+	cybozu_test_local_ ## name() \
+	{ \
+		cybozu::test::autoRun.append(#name, cybozu_test_ ## name); \
+	} \
+} cybozu_test_local_instance_ ## name; \
+void cybozu_test_ ## name()
+
+/**
+	append auto unit test with fixture
+	@param name [in] module name
+*/
+#define CYBOZU_TEST_AUTO_WITH_FIXTURE(name, Fixture) \
+void cybozu_test_ ## name(); \
+void cybozu_test_real_ ## name() \
+{ \
+	Fixture f; \
+	cybozu_test_ ## name(); \
+} \
+struct cybozu_test_local_ ## name { \
+	cybozu_test_local_ ## name() \
+	{ \
+		cybozu::test::autoRun.append(#name, cybozu_test_real_ ## name); \
+	} \
+} cybozu_test_local_instance_ ## name; \
+void cybozu_test_ ## name()
+
+/**
+	setup fixture
+	@param Fixture [in] class name of fixture
+	@note cstr of Fixture is called before test and dstr of Fixture is called after test
+*/
+#define CYBOZU_TEST_SETUP_FIXTURE(Fixture) \
+Fixture *cybozu_test_local_fixture; \
+void cybozu_test_local_init() \
+{ \
+	cybozu_test_local_fixture = new Fixture(); \
+} \
+void cybozu_test_local_term() \
+{ \
+	delete cybozu_test_local_fixture; \
+} \
+struct cybozu_test_local_fixture_setup_ { \
+	cybozu_test_local_fixture_setup_() \
+	{ \
+		cybozu::test::autoRun.setup(cybozu_test_local_init, cybozu_test_local_term); \
+	} \
+} cybozu_test_local_fixture_setup_instance_;

external/libff/depends/ate-pairing/include/zm2.h

@@ -0,0 +1,432 @@
+#pragma once
+
+/**
+	Fp : finite field with characteristic 254bit prime
+	t = - 2^62 - 2^55 + 2^0
+	p = 36*t*t*t*t + 36*t*t*t + 24*t*t + 6*t + 1
+*/
+#include "zm.h"
+#ifdef MIE_ATE_USE_GMP
+#include <gmpxx.h>
+#endif
+
+namespace mie {
+
+class Fp : public local::addsubmul<Fp,
+					 local::comparable<Fp,
+					 local::hasNegative<Fp,
+					 local::inversible<Fp> > > > {
+public:
+	typedef mie::Unit value_type;
+
+	/*
+		double size of Fp
+	*/
+	enum {
+		N = 32 / sizeof(Unit)
+	};
+	Fp()
+	{
+	}
+	MIE_FORCE_INLINE Fp(int x)
+	{
+		set(x);
+	}
+	MIE_FORCE_INLINE explicit Fp(const std::string& str)
+	{
+		set(str);
+	}
+	MIE_FORCE_INLINE explicit Fp(const mie::Unit *x)
+	{
+		std::copy(x, x + N, v_);
+	}
+	Fp(const mie::Vuint& rhs)
+	{
+		set(rhs);
+	}
+	void set(int x)
+	{
+		if (x == 0) {
+			clear();
+		} else if (x == 1) {
+			const mie::Vuint& r = getMontgomeryR();
+			assert(r.size() == N);
+			std::copy(&r[0], &r[0] + N, v_);
+		} else if (x > 0) {
+			v_[0] = x;
+			std::fill(v_ + 1, v_ + N, 0);
+			mul(*this, *this, montgomeryR2_);
+		} else {
+			v_[0] = -x;
+			std::fill(v_ + 1, v_ + N, 0);
+			mul(*this, *this, montgomeryR2_);
+			neg(*this, *this);
+		}
+	}
+	void set(const std::string& str)
+	{
+		set(mie::Vuint(str));
+	}
+	void set(const mie::Vuint& x)
+	{
+		assert(x < getModulo());
+		mie::Vuint y(x);
+//		count++;std::cout << "count=" << count << ", x=" << x << std::endl;
+		y *= getMontgomeryR();
+		y %= getModulo();
+		setDirect(*this, y);
+	}
+	static inline int compare(const Fp& x, const Fp& y)
+	{
+		return mie::local::PrimitiveFunction::compare(&x[0], N, &y[0], N);
+	}
+	static void (*add)(Fp& out, const Fp& x, const Fp& y);
+
+	// add without mod
+	static void (*addNC)(Fp& out, const Fp& x, const Fp& y);
+	static void (*subNC)(Fp& out, const Fp& x, const Fp& y);
+	static void (*shr1)(Fp& out, const Fp& x);
+	static void (*shr2)(Fp& out, const Fp& x);
+
+	static void (*sub)(Fp& out, const Fp& x, const Fp& y);
+	static void (*neg)(Fp& out, const Fp& x);
+	static void (*mul)(Fp& out, const Fp& x, const Fp& y);
+	static int (*preInv)(Fp& r, const Fp& x);
+	/*
+		z = 3z + 2x
+	*/
+	static inline void _3z_add_2xC(Fp& z, const Fp& x)
+	{
+		addNC(z, z, x);
+		addNC(z, z, z);
+		addNC(z, z, x);
+		fast_modp(z);
+	}
+	/*
+		z = 2z + 3x
+	*/
+	static inline void _2z_add_3x(Fp& z, const Fp& x)
+	{
+		addNC(z, x, z);
+		addNC(z, z, z);
+		addNC(z, z, x);
+		fast_modp(z);
+	}
+
+	inline friend std::ostream& operator<<(std::ostream& os, const Fp& x)
+	{
+		return os << x.toString(os.flags() & std::ios_base::hex ? 16 : 10);
+	}
+	inline friend std::istream& operator>>(std::istream& is, Fp& x)
+	{
+		std::string str;
+		mie::local::getDigits(is, str);
+		x.set(str);
+		return is;
+	}
+	MIE_FORCE_INLINE bool isZero() const
+	{
+		Unit t = 0;
+		for (size_t i = 0; i < N; i++) {
+			t |= v_[i];
+		}
+		return t == 0;
+	}
+	MIE_FORCE_INLINE void clear()
+	{
+		std::fill(v_, v_ + N, 0);
+	}
+	static inline void fromMont(Fp& y, const Fp& x)
+	{
+		mul(y, x, one_);
+	}
+	static inline void toMont(Fp& y, const Fp& x)
+	{
+		mul(y, x, montgomeryR2_);
+	}
+	// return real low value
+	Unit getLow() const
+	{
+		Fp t;
+		fromMont(t, *this);
+		return t.v_[0];
+	}
+	bool isOdd() const
+	{
+		return (getLow() & 1) != 0;
+	}
+	mie::Vuint get() const
+	{
+		Fp t;
+		fromMont(t, *this);
+		mie::Vuint ret(t.v_, N);
+		return ret;
+	}
+	static inline void inv(Fp& out, const Fp& x)
+	{
+#ifdef MIE_USE_X64ASM
+		Fp r;
+		int k = preInv(r, x);
+#else
+		static const Fp p(&p_[0]);
+		Fp u, v, r, s;
+		u = p;
+		v = x;
+		r.clear();
+		s.clear(); s[0] = 1; // s is real 1
+		int k = 0;
+		while (!v.isZero()) {
+			if ((u[0] & 1) == 0) {
+				shr1(u, u);
+				addNC(s, s, s);
+			} else if ((v[0] & 1) == 0) {
+				shr1(v, v);
+				addNC(r, r, r);
+			} else if (v >= u) {
+				subNC(v, v, u);
+				addNC(s, s, r);
+				shr1(v, v);
+				addNC(r, r, r);
+			} else {
+				subNC(u, u, v);
+				addNC(r, r, s);
+				shr1(u, u);
+				addNC(s, s, s);
+			}
+			k++;
+		}
+		if (r >= p) {
+			subNC(r, r, p);
+		}
+		assert(!r.isZero());
+		subNC(r, p, r);
+#endif
+		/*
+			xr = 2^k
+			R = 2^256
+			get r2^(-k)R^2 = r 2^(512 - k)
+		*/
+		mul(out, r, invTbl_[k]);
+	}
+	void inverse()
+	{
+		inv(*this, *this);
+	}
+
+	static inline void divBy2(Fp &z, const Fp &x)
+	{
+		unsigned int i = x[0] & 0x1;
+		shr1(z, x);
+		addNC(z, z, halfTbl_[i]);
+	}
+
+	static inline void divBy4(Fp &z, const Fp &x)
+	{
+		unsigned int i = x[0] & 0x3;
+		shr2(z, x);
+		addNC(z, z, quarterTbl_[i]);
+	}
+
+	/* z <- z mod p for z in [0, 6p] */
+	static inline void fast_modp(Fp &z)
+	{
+		uint64_t t = z.v_[3] >> 61;
+		z -= getDirectP((int)t);
+	}
+
+	template<class T>
+	static MIE_FORCE_INLINE void setDirect(Fp& out, const T& in)
+	{
+		const size_t n = in.size();
+//		assert(n <= N);
+		if (n < N) {
+			std::copy(&in[0], &in[0] + n, out.v_);
+			std::fill(out.v_ + n, out.v_ + N, 0);
+		} else {
+			// ignore in[i] for i >= N
+			std::copy(&in[0], &in[0] + N, out.v_);
+		}
+	}
+	std::string toString(int base = 10) const { return get().toString(base); }
+	MIE_FORCE_INLINE const Unit& operator[](size_t i) const { return v_[i]; }
+	MIE_FORCE_INLINE Unit& operator[](size_t i) { return v_[i]; }
+	MIE_FORCE_INLINE size_t size() const { return N; }
+
+	static void setModulo(const mie::Vuint& p, int mode, bool useMulx = true, bool definedBN_SUPPORT_SNARK =
+#ifdef BN_SUPPORT_SNARK
+		true
+#else
+		false
+#endif
+	);
+	static inline const mie::Vuint& getModulo() { return p_; }
+	static const Fp& getDirectP(int n); /* n = 0..6 */
+	static inline const mie::Vuint& getMontgomeryR() { return montgomeryR_; }
+private:
+	MIE_ALIGN(16) Unit v_[N];
+	static mie::Vuint p_;
+	static mie::Fp invTbl_[512];
+public:
+	static mie::Fp *halfTbl_; // [2] = [0, 1/2 mod p]
+private:
+	static mie::Fp *quarterTbl_; // [4] = [0, 1/4, 2/4, 3/4]
+	static mie::Vuint montgomeryR_; // 1 = 1r
+	static mie::Vuint p_add1_div4_; // (p + 1) / 4
+	static mie::Fp montgomeryR2_; // m(x, r^2) = xr ; x -> xr
+	static mie::Fp one_; // 1
+	// m(xr, r^(-2)r) = xr^(-1) ; xr -> xr^(-1)
+
+	static void setTablesForDiv(const mie::Vuint& p);
+
+public:
+	static inline void square(Fp& out, const Fp& x) { mul(out, x, x); }
+#ifdef MIE_ATE_USE_GMP
+	static void toMpz(mpz_class& y, const Fp& x)
+	{
+		mpz_import(y.get_mpz_t(), N, -1, sizeof(Unit), 0, 0, x.v_);
+	}
+	static void fromMpz(Fp& y, const mpz_class& x)
+	{
+		size_t size;
+		mpz_export(y.v_, &size, -1, sizeof(Unit), 0, 0, x.get_mpz_t());
+		for (size_t i = size; i < N; i++) {
+			y.v_[i] = 0;
+		}
+	}
+#endif
+	static bool squareRoot(Fp& y, const Fp& x)
+	{
+		Fp t;
+		t = mie::power(x, p_add1_div4_);
+		if (t * t != x) return false;
+		y = t;
+		return true;
+	}
+
+	struct Dbl : public local::addsubmul<Dbl,
+		local::comparable<Dbl,
+		local::hasNegative<Dbl> > > {
+		enum {
+			SIZE = sizeof(Unit) * N * 2
+		};
+		static MIE_FORCE_INLINE void setDirect(Dbl &out, const mie::Vuint &in)
+		{
+			const size_t n = in.size();
+			if (n < N * 2) {
+				std::copy(&in[0], &in[0] + n, out.v_);
+				std::fill(out.v_ + n, out.v_ + N * 2, 0);
+			} else {
+				// ignore in[i] for i >= N * 2
+				std::copy(&in[0], &in[0] + N * 2, out.v_);
+			}
+		}
+		static MIE_FORCE_INLINE void setDirect(Dbl &out, const std::string &in)
+		{
+			mie::Vuint t(in);
+			setDirect(out, t);
+		}
+
+		template<class T>
+		void setDirect(const T &in) { setDirect(*this, in); }
+
+		MIE_FORCE_INLINE void clear()
+		{
+			std::fill(v_, v_ + N * 2, 0);
+		}
+
+		Unit *ptr() { return v_; }
+		const Unit *const_ptr() const { return v_; }
+		mie::Vuint getDirect() const { return mie::Vuint(v_, N * 2); }
+		MIE_FORCE_INLINE const Unit& operator[](size_t i) const { return v_[i]; }
+		MIE_FORCE_INLINE Unit& operator[](size_t i) { return v_[i]; }
+		MIE_FORCE_INLINE size_t size() const { return N * 2; }
+
+		std::string toString(int base = 10) const
+		{
+			return ("Dbl(" + getDirect().toString(base) + ")");
+		}
+		friend inline std::ostream& operator<<(std::ostream& os, const Dbl& x)
+		{
+			return os << x.toString(os.flags() & std::ios_base::hex ? 16 : 10);
+		}
+
+		Dbl() {}
+		explicit Dbl(const Fp &x)
+		{
+			mul(*this, x, montgomeryR2_);
+		}
+		explicit Dbl(const std::string &str) { setDirect(*this, str); }
+
+		static inline int compare(const Dbl& x, const Dbl& y)
+		{
+			return mie::local::PrimitiveFunction::compare(&x[0], N * 2, &y[0], N * 2);
+		}
+
+		typedef void (uni_op)(Dbl &z, const Dbl &x);
+		typedef void (bin_op)(Dbl &z, const Dbl &x, const Dbl &y);
+
+		/*
+			z = (x + y) mod px
+		*/
+		static bin_op *add;
+		static bin_op *addNC;
+
+		static uni_op *neg;
+
+		/*
+			z = (x - y) mod px
+		*/
+		static bin_op *sub;
+		static bin_op *subNC;
+
+		static void subOpt1(Dbl &z, const Dbl &x, const Dbl &y)
+		{
+			assert(&z != &x);
+			assert(&z != &y);
+			addNC(z, x, pNTbl_[1]);
+			subNC(z, z, y);
+		}
+
+		/*
+			z = x * y
+		*/
+		static void (*mul)(Dbl &z, const Fp &x, const Fp &y);
+
+		/*
+			z = MontgomeryReduction(x)
+		*/
+		static void (*mod)(Fp &z, const Dbl &x);
+
+		/*
+			x <- x mod pN
+		*/
+		static Dbl *pNTbl_; // [4];
+	private:
+			MIE_ALIGN(16) Unit v_[N * 2];
+	};
+};
+
+namespace util {
+template<>
+struct IntTag<mie::Fp> {
+	typedef size_t value_type;
+	static inline value_type getBlock(const mie::Fp&, size_t)
+	{
+		err();
+		return 0;
+	}
+	static inline size_t getBlockSize(const mie::Fp&)
+	{
+		err();
+		return 0;
+	}
+	static inline void err()
+	{
+		printf("Use mie::Vuint intead of Fp for the 3rd parameter for ScalarMulti\n");
+		exit(1);
+	}
+};
+
+} // mie::util
+
+} // mie

external/libff/depends/ate-pairing/java/BN254Test.java

@@ -0,0 +1,95 @@
+import java.io.*;
+import mcl.bn254.*;
+
+public class BN254Test {
+	static {
+		System.loadLibrary("bn254_if_wrap");
+	}
+	public static void main(String argv[]) {
+		try {
+			BN254.SystemInit();
+
+			Fp aa = new Fp("12723517038133731887338407189719511622662176727675373276651903807414909099441");
+			Fp ab = new Fp("4168783608814932154536427934509895782246573715297911553964171371032945126671");
+			Fp ba = new Fp("13891744915211034074451795021214165905772212241412891944830863846330766296736");
+			Fp bb = new Fp("7937318970632701341203597196594272556916396164729705624521405069090520231616");
+			Ec1 g1 = new Ec1(new Fp(-1), new Fp(1));
+			Ec2 g2 = new Ec2(new Fp2(aa, ab), new Fp2(ba, bb));
+			System.out.println("g1=" + g1);
+			System.out.println("g2=" + g2);
+			assertBool("g1 is on EC", g1.isValid());
+			assertBool("g2 is on twist EC", g2.isValid());
+			Mpz r = BN254.GetParamR();
+			System.out.println("r=" + r);
+
+			{
+				Ec1 t = new Ec1(g1);
+				t.mul(r);
+				assertBool("orgder of g1 == r", t.isZero());
+			}
+			{
+				Ec2 t = new Ec2(g2);
+				t.mul(r);
+				assertBool("order of g2 == r", t.isZero());
+			}
+			Mpz a = new Mpz("123456789012345");
+			Mpz b = new Mpz("998752342342342342424242421");
+			// scalar-multiplication sample
+			{
+				Mpz c = new Mpz(a);
+				c.add(b);
+				Ec1 Pa = new Ec1(g1); Pa.mul(a);
+				Ec1 Pb = new Ec1(g1); Pb.mul(b);
+				Ec1 Pc = new Ec1(g1); Pc.mul(c);
+				Ec1 out = new Ec1(Pa);
+				out.add(Pb);
+				assertEqual("check g1 * c = g1 * a + g1 * b", Pc, out);
+			}
+			Fp12 e = new Fp12();
+			// calc e : G2 x G1 -> G3 pairing
+			e.pairing(g2, g1); // e = e(g2, g1)
+			System.out.println("e=" + e);
+			{
+				Fp12 t = new Fp12(e);
+				t.power(r);
+				assertEqual("order of e == r", t, new Fp12(1));
+			}
+			Ec2 g2a = new Ec2(g2);
+			g2a.mul(a);
+			Fp12 ea1 = new Fp12();
+			ea1.pairing(g2a, g1);
+			Fp12 ea2 = new Fp12(e);
+			ea2.power(a); // ea2 = e^a
+			assertEqual("e(g2 * a, g1) = e(g2, g1)^a", ea1, ea2);
+
+			Ec1 q1 = new Ec1(g1);
+			q1.mul(new Mpz(12345));
+			assertBool("q1 is on EC", q1.isValid());
+			Fp12 e1 = new Fp12();
+			Fp12 e2 = new Fp12();
+			e1.pairing(g2, g1); // e1 = e(g2, g1)
+			e2.pairing(g2, q1); // e2 = e(g2, q1)
+			Ec1 q2 = new Ec1(g1);
+			q2.add(q1);
+			e.pairing(g2, q2); // e = e(g2, q2)
+			e1.mul(e2);
+			assertEqual("e = e1 * e2", e, e1);
+		} catch (RuntimeException e) {
+			System.out.println("unknown exception :" + e);
+		}
+	}
+	public static void assertBool(String msg, Boolean b) {
+		if (b) {
+			System.out.println("OK : " + msg);
+		} else {
+			System.out.println("NG : " + msg);
+		}
+	}
+	public static void assertEqual(String msg, Object lhs, Object rhs) {
+		if (lhs.equals(rhs)) {
+			System.out.println("OK : " + msg);
+		} else {
+			System.out.println("NG : " + msg + ", lhs = " + lhs + ", rhs = " + rhs);
+		}
+	}
+}

external/libff/depends/ate-pairing/java/Makefile

@@ -0,0 +1,48 @@
+MODULE_NAME=bn254
+JAVA_NAME=BN254
+IF_NAME=$(MODULE_NAME)_if
+WRAP_CXX=$(IF_NAME)_wrap.cxx
+include ../common.mk
+LDFLAGS=-lgmp -lgmpxx
+ifeq ($(UNAME_S),Darwin)
+  JAVA_HOME=$(shell /usr/libexec/java_home)
+  JAVA_INC=$(addprefix -I$(JAVA_HOME)/include,/ /darwin)
+  LIB_SUF=dylib
+else
+  JAVA_HOME=$(realpath $(dir $(realpath $(shell which javac)))..)
+  JAVA_INC=-I$(JAVA_HOME)/include
+  LIB_SUF=so
+  CFLAGS+=-z noexecstack
+  LIB+=-lrt
+endif
+CFLAGS+= -shared -fPIC $(JAVA_INC)
+
+PACKAGE_NAME=mcl.$(MODULE_NAME)
+PACKAGE_DIR=$(subst .,/,$(PACKAGE_NAME))
+
+TARGET=../bin/lib$(IF_NAME)_wrap.$(LIB_SUF)
+JAVA_EXE=cd ../bin && LD_LIBRARY_PATH=./:$(LD_LIBRARY_PATH) java -classpath ../java
+all: $(TARGET)
+
+$(IF_NAME)_wrap.cxx: $(IF_NAME).i $(IF_NAME).hpp
+	$(MKDIR) $(PACKAGE_DIR)
+	swig -java -package $(PACKAGE_NAME) -outdir $(PACKAGE_DIR) -c++ -Wall $<
+
+$(TARGET): $(IF_NAME)_wrap.cxx
+	$(MKDIR) ../bin
+	$(PRE)$(CXX) $? -o $@ $(CFLAGS) $(LDFLAGS) -I../include ../src/zm2.cpp ../src/zm.cpp -I../../xbyak
+
+%.class: %.java
+	javac $<
+
+$(JAVA_NAME)Test.class: $(JAVA_NAME)Test.java $(TARGET)
+
+jar:
+	jar cvf $(MODULE_NAME).jar mcl
+
+test: $(JAVA_NAME)Test.class $(TARGET)
+	$(JAVA_EXE) $(JAVA_NAME)Test
+
+clean:
+	rm -rf *.class $(TARGET) $(PACKAGE_DIR)/*.class $(IF_NAME)_wrap.cxx
+

external/libff/depends/ate-pairing/java/bn254_if.hpp

@@ -0,0 +1,282 @@
+#pragma once
+/**
+	@file
+	@brief api for Java
+	@author herumi
+	@note modified new BSD license
+	http://opensource.org/licenses/BSD-3-Clause
+*/
+#ifndef MIE_ATE_USE_GMP
+	#define MIE_ATE_USE_GMP
+#endif
+#include "bn.h"
+
+inline void SystemInit() throw(std::exception)
+{
+	::bn::Param::init();
+}
+
+class Fp2;
+class Fp12;
+class Ec1;
+class Ec2;
+
+class Mpz {
+	mpz_class self_;
+	friend class Fp;
+	friend class Fp2;
+	friend class Fp12;
+	friend class Ec1;
+	friend class Ec2;
+public:
+	Mpz() {}
+	Mpz(const Mpz& x) : self_(x.self_) {}
+	Mpz(int x) throw(std::exception) : self_(x) {}
+	Mpz(const std::string& str) throw(std::exception)
+	{
+		set(str);
+	}
+	void set(int x) throw(std::exception) { self_ = x; }
+	void set(const std::string& str) throw(std::exception)
+	{
+		self_.set_str(str, 0);
+	}
+	std::string toString() const throw(std::exception)
+	{
+		return self_.get_str();
+	}
+	bool equals(const Mpz& rhs) const { return self_ == rhs.self_; }
+	int compareTo(const Mpz& rhs) const { return mpz_cmp(self_.get_mpz_t(), rhs.self_.get_mpz_t()); }
+	void add(const Mpz& rhs) throw(std::exception) { self_ += rhs.self_; }
+	void sub(const Mpz& rhs) throw(std::exception) { self_ -= rhs.self_; }
+	void mul(const Mpz& rhs) throw(std::exception) { self_ *= rhs.self_; }
+	void mod(const Mpz& rhs) throw(std::exception) { self_ %= rhs.self_; }
+};
+
+class Fp {
+	::bn::Fp self_;
+	friend class Fp2;
+	friend class Ec1;
+public:
+	Fp() {}
+	Fp(const Fp& x) : self_(x.self_) {}
+	Fp(int x) : self_(x) {}
+	Fp(const std::string& str) throw(std::exception)
+	{
+		self_.set(str);
+	}
+	void set(int x) { self_ = x; }
+	void set(const std::string& str) throw(std::exception)
+	{
+		self_.set(str);
+	}
+	std::string toString() const throw(std::exception)
+	{
+		return self_.toString();
+	}
+	bool equals(const Fp& rhs) const { return self_ == rhs.self_; }
+	void add(const Fp& rhs) throw(std::exception) { self_ += rhs.self_; }
+	void sub(const Fp& rhs) throw(std::exception) { self_ -= rhs.self_; }
+	void mul(const Fp& rhs) throw(std::exception) { self_ *= rhs.self_; }
+	void power(const Mpz& x)
+	{
+		self_ = mie::power(self_, x.self_);
+	}
+};
+
+class Fp2 {
+	::bn::Fp2 self_;
+	friend class Ec2;
+public:
+	Fp2() {}
+	Fp2(const Fp2& x) : self_(x.self_) {}
+	Fp2(int a) : self_(a) {}
+	Fp2(int a, int b) : self_(a, b) {}
+	Fp2(const Fp& a, const Fp& b) throw(std::exception)
+		: self_(a.self_, b.self_)
+	{
+	}
+	Fp2(const std::string& a, const std::string& b) throw(std::exception)
+		: self_(Fp(a).self_, Fp(b).self_)
+	{
+	}
+	Fp& getA() { return *reinterpret_cast<Fp*>(&self_.a_); }
+	Fp& getB() { return *reinterpret_cast<Fp*>(&self_.b_); }
+	void set(const std::string& str) throw(std::exception)
+	{
+		self_.set(str);
+	}
+	std::string toString() const throw(std::exception)
+	{
+		return self_.toString();
+	}
+	bool equals(const Fp2& rhs) const { return self_ == rhs.self_; }
+	void add(const Fp2& rhs) throw(std::exception) { self_ += rhs.self_; }
+	void sub(const Fp2& rhs) throw(std::exception) { self_ -= rhs.self_; }
+	void mul(const Fp2& rhs) throw(std::exception) { self_ *= rhs.self_; }
+	void power(const Mpz& x)
+	{
+		self_ = mie::power(self_, x.self_);
+	}
+};
+
+class Fp12 {
+	::bn::Fp12 self_;
+public:
+	Fp12() {}
+	Fp12(const Fp12& x) : self_(x.self_) {}
+	Fp12(int x) : self_(x) {}
+	void set(const std::string& str) throw(std::exception)
+	{
+		std::istringstream iss(str);
+		iss >> self_;
+	}
+	std::string toString() const throw(std::exception)
+	{
+		std::ostringstream oss;
+		oss << self_;
+		return oss.str();
+	}
+	bool equals(const Fp12& rhs) const { return self_ == rhs.self_; }
+	void add(const Fp12& rhs) throw(std::exception) { self_ += rhs.self_; }
+	void sub(const Fp12& rhs) throw(std::exception) { self_ -= rhs.self_; }
+	void mul(const Fp12& rhs) throw(std::exception) { self_ *= rhs.self_; }
+	void pairing(const Ec2& ec2, const Ec1& ec1);
+	void power(const Mpz& x)
+	{
+		self_ = mie::power(self_, x.self_);
+	}
+};
+
+class Ec1 {
+	::bn::Ec1 self_;
+	friend class Fp12;
+public:
+	Ec1() { self_.clear(); }
+	Ec1(const Ec1& x) : self_(x.self_) {}
+	Ec1(const Fp& x, const Fp& y) throw(std::exception)
+	{
+		set(x, y);
+	}
+	Ec1(const Fp& x, const Fp& y, const Fp& z) throw(std::exception)
+	{
+		set(x, y, z);
+	}
+	bool isValid() const { return self_.isValid(); }
+	void set(const Fp& x, const Fp& y) throw(std::exception)
+	{
+		self_.set(x.self_, y.self_);
+	}
+	void set(const Fp& x, const Fp& y, const Fp& z) throw(std::exception)
+	{
+		self_.set(x.self_, y.self_, z.self_);
+	}
+	void set(const std::string& str) throw(std::exception)
+	{
+		std::istringstream iss(str);
+		iss >> self_;
+	}
+	std::string toString() const throw(std::exception)
+	{
+		std::ostringstream oss;
+		oss << self_;
+		return oss.str();
+	}
+	bool equals(const Ec1& rhs) const { return self_ == rhs.self_; }
+	bool isZero() const { return self_.isZero(); }
+	void clear() { self_.clear(); }
+	void dbl() { ::bn::Ec1::dbl(self_, self_); }
+	void neg() { ::bn::Ec1::neg(self_, self_); }
+	void add(const Ec1& rhs) { ::bn::Ec1::add(self_, self_, rhs.self_); }
+	void sub(const Ec1& rhs) { ::bn::Ec1::sub(self_, self_, rhs.self_); }
+	void mul(const Mpz& rhs) { ::bn::Ec1::mul(self_, self_, rhs.self_); }
+	Fp& getX() { return *reinterpret_cast<Fp*>(&self_.p[0]); }
+	Fp& getY() { return *reinterpret_cast<Fp*>(&self_.p[1]); }
+	Fp& getZ() { return *reinterpret_cast<Fp*>(&self_.p[2]); }
+};
+
+class Ec2 {
+	::bn::Ec2 self_;
+	friend class Fp12;
+public:
+	Ec2() {}
+	Ec2(const Ec2& x) : self_(x.self_) {}
+	Ec2(const Fp2& x, const Fp2& y) throw(std::exception)
+	{
+		set(x, y);
+	}
+	Ec2(const Fp2& x, const Fp2& y, const Fp2& z) throw(std::exception)
+	{
+		set(x, y, z);
+	}
+	bool isValid() const { return self_.isValid(); }
+	void set(const Fp2& x, const Fp2& y) throw(std::exception)
+	{
+		self_.set(x.self_, y.self_);
+	}
+	void set(const Fp2& x, const Fp2& y, const Fp2& z) throw(std::exception)
+	{
+		self_.set(x.self_, y.self_, z.self_);
+	}
+	void set(const std::string& str) throw(std::exception)
+	{
+		std::istringstream iss(str);
+		iss >> self_;
+	}
+	std::string toString() const throw(std::exception)
+	{
+		std::ostringstream oss;
+		oss << self_;
+		return oss.str();
+	}
+	bool equals(const Ec2& rhs) const { return self_ == rhs.self_; }
+	bool isZero() const { return self_.isZero(); }
+	void clear() { self_.clear(); }
+	void dbl() { ::bn::Ec2::dbl(self_, self_); }
+	void neg() { ::bn::Ec2::neg(self_, self_); }
+	void add(const Ec2& rhs) { ::bn::Ec2::add(self_, self_, rhs.self_); }
+	void sub(const Ec2& rhs) { ::bn::Ec2::sub(self_, self_, rhs.self_); }
+	void mul(const Mpz& rhs) { ::bn::Ec2::mul(self_, self_, rhs.self_); }
+	Fp2& getX() { return *reinterpret_cast<Fp2*>(&self_.p[0]); }
+	Fp2& getY() { return *reinterpret_cast<Fp2*>(&self_.p[1]); }
+	Fp2& getZ() { return *reinterpret_cast<Fp2*>(&self_.p[2]); }
+};
+
+void Fp12::pairing(const Ec2& ec2, const Ec1& ec1)
+{
+	::bn::opt_atePairing(self_, ec2.self_, ec1.self_);
+}
+
+inline const Mpz& GetParamR()
+{
+	static Mpz r("16798108731015832284940804142231733909759579603404752749028378864165570215949");
+	return r;
+}
+
+#ifdef _MSC_VER
+#if _MSC_VER == 1900
+#ifdef _DEBUG
+#pragma comment(lib, "14/mpird.lib")
+#pragma comment(lib, "14/mpirxxd.lib")
+#else
+#pragma comment(lib, "14/mpir.lib")
+#pragma comment(lib, "14/mpirxx.lib")
+#endif
+#elif _MSC_VER == 1800
+#ifdef _DEBUG
+#pragma comment(lib, "12/mpird.lib")
+#pragma comment(lib, "12/mpirxxd.lib")
+#else
+#pragma comment(lib, "12/mpir.lib")
+#pragma comment(lib, "12/mpirxx.lib")
+#endif
+#else
+#ifdef _DEBUG
+#pragma comment(lib, "mpird.lib")
+#pragma comment(lib, "mpirxxd.lib")
+#else
+#pragma comment(lib, "mpir.lib")
+#pragma comment(lib, "mpirxx.lib")
+#endif
+#endif
+#endif

external/libff/depends/ate-pairing/java/bn254_if.i

@@ -0,0 +1,59 @@
+%module BN254
+
+%include "std_string.i"
+%include "std_except.i"
+
+%{
+#include "bn254_if.hpp"
+%}
+
+%typemap(javacode) Mpz %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%typemap(javacode) Fp %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%typemap(javacode) Fp2 %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%typemap(javacode) Fp12 %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%typemap(javacode) Ec1 %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%typemap(javacode) Ec2 %{
+  public boolean equals(Object obj) {
+    if (this == obj) return true;
+    if (!(obj instanceof $javaclassname)) return false;
+    return equals(($javaclassname)obj);
+  }
+%}
+
+%include "bn254_if.hpp"
+

external/libff/depends/ate-pairing/java/java.md

@@ -0,0 +1,126 @@
+# Java class files(under construction)
+
+## Build
+
+* Install [swig](http://www.swig.org/) and Java.
+
+### Windows
+
+* set SWIG to the path to swig in make_wrap.bat
+* set JAVA_DIR to the path to java in set-java-path.bat.
+* Use the follogin commands:
+```
+    > cd java
+    > make_wrap.bat
+```
+* bin/bn254_if_wrap.dll is a dll for java.
+
+### Linux
+
+* set JAVA_INC to the path to Java in Makefile
+
+    > make test
+
+* bin/libbn254_if_wrap.so is a shared library for java.
+
+## API and Class
+
+### Setup
+
+* At first, call these functions.
+```
+    > System.loadLibrary("bn254_if_wrap");
+	> BN254.SystemInit();
+```
+### class Mpz
+
+* a wrapped class of mpz_class of GMP.
+
+* Mpz(int), Mpz(String)
+* void set(int x)
+    * Set x to this.
+* void set(String x)
+    * Set x to this.
+* void add(Mpz x)
+    * Set (this + x) to this.
+* void sub(Mpz x)
+    * Set (this - x) to this.
+* void mul(Mpz x)
+    * Set (this * x) to this.
+* void mod(Mpz x)
+    * Set (this % x) to this.
+
+### class Fp, Fp2, Fp12
+
+* a wrapped class of bn::Fp, bn::Fp2, bn::Fp12.
+
+#### common method
+
+* Fp(int), Fp(String)
+* void set(int x)
+    * Set x to this.
+* void set(String x)
+    * Set x to this.
+    * The format of Fp is "123", "0xabc"
+    * The format of Fp2 is "[a,b]" ; a, b are the format of Fp
+    * The format of Fp12 is "[[[a0,b0],[a1,b1],[a2,b2]], [[a3,b3],[a4,b4],[a5,b5]]]"
+* void add(Fp x)
+    * Set (this + x) to this.
+* void sub(Fp x)
+    * Set (this - x) to this.
+* void mul(Fp x)
+    * Set (this * x) to this.
+* void power(Mpz x)
+    * Set (this ^ x) to this.
+
+#### Fp2
+* Fp2(int a, int b)
+    * Set (a, b) to this.
+* Fp2(Fp a, Fp b)
+    * Set (a, b) to this.
+* Fp2(String a, String b)
+    * Set (a, b) to this.
+* Fp getA()
+    * Return the reference to a where this = (a, b).
+* Fp getB()
+    * Return the reference to b where this = (a, b).
+
+#### Fp12
+* pairing(Ec2 ec2, Ec1 ec1)
+    * Set opt_ate_pairing(ec2, ec1) to this.
+
+### Ec1, Ec2
+
+* a wrapped class of bn::Ec1 and bn::Ec2.
+
+* Ec1(Fp x, Fp y)
+    * Set (x, y, 1) to this.
+* Ec1(Fp x, Fp y, Fp z)
+    * Set (x:y:z) to this.
+* Ec1(String x)
+    * Set x to this.
+    * The format of Ec1 is "x_y" or "0" ; x, y are the format of Fp. "0" is the infinity point.
+    * The format of Ec2 is "x_y" or "0" ; x, y are the format of Fp2.
+* Boolean isValid()
+    * Is (x:y:z) on the curve?
+* Boolean isZero()
+    * Is this equal to the infinity point?
+* void clear()
+    * set this to the infinity point.
+* dbl()
+    * set (this * 2) to this.
+* neg()
+    * Set (-this) to this.
+* add(Ec1 x)
+    * Set (this + x) to this.
+* sub(Ec1 x)
+    * Set (this - x) to this.
+* mul(Mpz& x)
+    * Set (this * x) to this.
+* Fp getX()
+    * Return the value of x.
+* Fp getY()
+    * Return the value of y.
+* Fp getZ()
+    * Return the value of z.
+

external/libff/depends/ate-pairing/java/make_wrap.bat

@@ -0,0 +1,19 @@
+@echo off
+call set-java-path.bat
+set JAVA_INCLUDE=%JAVA_DIR%\include
+set SWIG=..\..\swig\swigwin-3.0.2\swig.exe
+set PACKAGE_NAME=mcl.bn254
+set PACKAGE_DIR=%PACKAGE_NAME:.=\%
+
+echo [[run swig]]
+mkdir %PACKAGE_DIR%
+echo %SWIG% -java -package %PACKAGE_NAME% -outdir %PACKAGE_DIR% -c++ -Wall bn254_if.i
+%SWIG% -java -package %PACKAGE_NAME% -outdir %PACKAGE_DIR% -c++ -Wall bn254_if.i
+echo [[make dll]]
+mkdir ..\bin
+cl /MD /DNOMINMAX /DNDEBUG /LD /Ox /EHsc bn254_if_wrap.cxx ../src/zm.cpp ../src/zm2.cpp -I%JAVA_INCLUDE% -I%JAVA_INCLUDE%\win32 -I../include -I../../cybozulib_ext/mpir/include -I../../xbyak  /link /LIBPATH:../../cybozulib_ext/mpir/lib /OUT:../bin/bn254_if_wrap.dll
+
+call run-bn254.bat
+
+echo [[make jar]]
+%JAVA_DIR%\bin\jar cvf bn254.jar mcl

external/libff/depends/ate-pairing/java/run-bn254.bat

@@ -0,0 +1,8 @@
+@echo off
+echo [[compile BN254Test.java]]
+%JAVA_DIR%\bin\javac BN254Test.java
+
+echo [[run BN254Test]]
+pushd ..\bin
+%JAVA_DIR%\bin\java -classpath ..\java BN254Test %1 %2 %3 %4 %5 %6
+popd

external/libff/depends/ate-pairing/java/set-java-path.bat

@@ -0,0 +1,8 @@
+@echo off
+if "%JAVA_HOME%"=="" (
+	set JAVA_DIR=c:/p/Java/jdk
+) else (
+	set JAVA_DIR=%JAVA_HOME%
+)
+echo JAVA_DIR=%JAVA_DIR%
+rem set PATH=%PATH%;%JAVA_DIR%\bin

external/libff/depends/ate-pairing/proj/11/sample/sample.vcxproj

@@ -0,0 +1,71 @@
+<EFBFBD><EFBFBD><EFBFBD><EFBFBD><?xml version="1.0" encoding="utf-8"?>
+<Project DefaultTargets="Build" ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ItemGroup Label="ProjectConfigurations">
+    <ProjectConfiguration Include="Debug|x64">
+      <Configuration>Debug</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Release|x64">
+      <Configuration>Release</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+  </ItemGroup>
+  <PropertyGroup Label="Globals">
+    <ProjectGuid>{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}</ProjectGuid>
+    <RootNamespace>sample</RootNamespace>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>true</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>false</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <WholeProgramOptimization>true</WholeProgramOptimization>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
+  <ImportGroup Label="ExtensionSettings">
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)debug.props" />
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)release.props" />
+  </ImportGroup>
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <TargetName>sample</TargetName>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <TargetName>sample</TargetName>
+  </PropertyGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <ClCompile>
+      <Optimization>Disabled</Optimization>
+    </ClCompile>
+    <Link>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+      <SubSystem>Console</SubSystem>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <Link>
+      <AdditionalDependencies>kernel32.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies);zmlib.lib</AdditionalDependencies>
+      <SubSystem>Console</SubSystem>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup>
+    <ClCompile Include="$(SolutionDir)test\sample.cpp" />
+  </ItemGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
+  <ImportGroup Label="ExtensionTargets">
+  </ImportGroup>
+</Project>

external/libff/depends/ate-pairing/proj/11/test_bn/test_bn.vcxproj

@@ -0,0 +1,71 @@
+<EFBFBD><EFBFBD><EFBFBD><EFBFBD><?xml version="1.0" encoding="utf-8"?>
+<Project DefaultTargets="Build" ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ItemGroup Label="ProjectConfigurations">
+    <ProjectConfiguration Include="Debug|x64">
+      <Configuration>Debug</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Release|x64">
+      <Configuration>Release</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+  </ItemGroup>
+  <PropertyGroup Label="Globals">
+    <ProjectGuid>{F4B8F9CD-2E24-4374-9BF6-6886347E861B}</ProjectGuid>
+    <RootNamespace>test_bn</RootNamespace>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>true</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>false</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <WholeProgramOptimization>true</WholeProgramOptimization>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
+  <ImportGroup Label="ExtensionSettings">
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)debug.props" />
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)release.props" />
+  </ImportGroup>
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <TargetName>test_bn</TargetName>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <TargetName>test_bn</TargetName>
+  </PropertyGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <ClCompile>
+      <Optimization>Disabled</Optimization>
+    </ClCompile>
+    <Link>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+      <SubSystem>Console</SubSystem>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <Link>
+      <AdditionalDependencies>kernel32.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies);zmlib.lib</AdditionalDependencies>
+      <SubSystem>Console</SubSystem>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup>
+    <ClCompile Include="$(SolutionDir)test\bn.cpp" />
+  </ItemGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
+  <ImportGroup Label="ExtensionTargets">
+  </ImportGroup>
+</Project>

external/libff/depends/ate-pairing/proj/11/zmlib/zmlib.vcxproj

@@ -0,0 +1,80 @@
+<EFBFBD><EFBFBD><EFBFBD><EFBFBD><?xml version="1.0" encoding="utf-8"?>
+<Project DefaultTargets="Build" ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ItemGroup Label="ProjectConfigurations">
+    <ProjectConfiguration Include="Debug|x64">
+      <Configuration>Debug</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Release|x64">
+      <Configuration>Release</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+  </ItemGroup>
+  <PropertyGroup Label="Globals">
+    <ProjectGuid>{2F9B80B9-D6A5-4534-94A3-7B42F5623193}</ProjectGuid>
+    <RootNamespace>zmlib</RootNamespace>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
+    <ConfigurationType>StaticLibrary</ConfigurationType>
+    <UseDebugLibraries>true</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
+    <ConfigurationType>StaticLibrary</ConfigurationType>
+    <UseDebugLibraries>false</UseDebugLibraries>
+    <PlatformToolset>v110</PlatformToolset>
+    <WholeProgramOptimization>true</WholeProgramOptimization>
+    <CharacterSet>MultiByte</CharacterSet>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
+  <ImportGroup Label="ExtensionSettings">
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)debug.props" />
+  </ImportGroup>
+  <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="PropertySheets">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+    <Import Project="$(SolutionDir)common.props" />
+    <Import Project="$(SolutionDir)release.props" />
+  </ImportGroup>
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <OutDir>$(SolutionDir)lib\</OutDir>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <OutDir>$(SolutionDir)lib\</OutDir>
+  </PropertyGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <ClCompile>
+      <Optimization>Disabled</Optimization>
+    </ClCompile>
+    <Link>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <ClCompile>
+      <WarningLevel>Level3</WarningLevel>
+      <Optimization>MaxSpeed</Optimization>
+      <FunctionLevelLinking>true</FunctionLevelLinking>
+      <IntrinsicFunctions>true</IntrinsicFunctions>
+      <SDLCheck>true</SDLCheck>
+    </ClCompile>
+    <Link>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+      <EnableCOMDATFolding>true</EnableCOMDATFolding>
+      <OptimizeReferences>true</OptimizeReferences>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup>
+    <ClCompile Include="$(SolutionDir)src\zm.cpp" />
+    <ClCompile Include="$(SolutionDir)src\zm2.cpp" />
+  </ItemGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
+  <ImportGroup Label="ExtensionTargets">
+  </ImportGroup>
+</Project>

external/libff/depends/ate-pairing/readme.md

@@ -0,0 +1,245 @@
+
+High-Speed Software Implementation of the Optimal Ate Pairing over Barreto-Naehrig Curves
+=============
+
+This library provides functionality to compute the optimal ate pairing over Barreto-Naehrig (BN) curves.
+It is released under the [BSD 3-Clause License](http://opensource.org/licenses/BSD-3-Clause).
+
+Now I'm developing a new pairing library [mcl](https://github.com/herumi/mcl/), which is more portable and supports larger primes than this library though it is a little slower.
+
+History
+-------------
+
+* 2015/May/15: add [java api](java/java.md)
+* 2014/Jun/15: support a BN curve for SNARKs, incorporating code from [libsnark](https://github.com/scipr-lab/libsnark)
+* 2013/Jun/02: support `mulx` on [Haswell](http://en.wikipedia.org/wiki/Haswell_%28microarchitecture%29)
+* 2013/Mar/08: add elliptic curve class
+* 2012/Jan/30: rewrite ate pairing according to [Faster explicit formulas for computing pairings over ordinary curves](http://www.patricklonga.bravehost.com/speed_pairing.html)
+* 2010/Sep/8: change twist xi from u + 12 to u
+* 2010/Jul/15: use cyclotomic squaring for final exponentiation
+* 2010/Jun/18: first release
+
+Overview
+-------------
+
+The following two BN curves are supported:
+
+1. a BN curve over the 254-bit prime p = 36z^4 + 36z^3 + 24z^2 + 6z + 1 where z = -(2^62 + 2^55 + 1); and
+2. a BN curve over a 254-bit prime p such that n := p + 1 - t has high 2-adicity.
+
+By default, the first curve (we call it as CurveFp254BNb) is used; when setting the flag `SUPPORT_SNARK`, the second curve (we call it as CurveSNARK) is used instead.
+
+* __CurveFp254BNb__
+The value of z is found by [\[NASKM\]](http://dx.doi.org/10.1007/978-3-540-85538-5_13) first.
+The curve instantiated by z is investigated by [\[PSNB\]](http://eprint.iacr.org/2010/429) for an efficient implementation.
+Our library implements a fast algorithm, which is proposed by [\[AKLGL\]](http://eprint.iacr.org/2010/526) for this curve.
+The performance of this library is competitive to the state-of-the-art implementation report in [\[ABLR\]](http://sac2013.irmacs.sfu.ca/slides/s1.pdf).
+
+* __CurveSNARK__
+Support for the second curve builds on code provided by [SCIPR Lab](http://www.scipr-lab.org/) in [libsnark](https://github.com/scipr-lab/libsnark). The curve was specifically selected for speeding up __Succinct Non-interactive ARguments of Knowledge__ (SNARKs), which benefit from its high 2-adicity (see [\[BCGTV13\]](http://eprint.iacr.org/2013/507) and [\[BCTV14\]](http://eprint.iacr.org/2013/879)).
+
+Pairing computations on the first curve are more efficient, and the performance numbers reported below (and in our papers) are achieved using this curve (which is prefered for applications that do not benefit from high 2-adicity).
+Note that the old parameters in \[BDMOHT\] are not used now.
+
+
+Parameters
+-------------
+
+The curve equation for a BN curve is:
+
+	E/Fp: y^2 = x^3 + b .
+
+The two supported BN curves have the following parameters:
+
+1. b = 2 and p = 16798108731015832284940804142231733909889187121439069848933715426072753864723; and
+2. b = 3 and p = 21888242871839275222246405745257275088696311157297823662689037894645226208583.
+
+As usual,
+
+* the cyclic group G1 (aka Ec1) is instantiated as E(Fp)[n] where n := p + 1 - t;
+* the cyclic group G2 (aka Ec2) is instantiated as the inverse image of E'(Fp^2)[n] under a twisting isomorphism from E' to E; and
+* the pairing e: G1 x G2 -> Fp12 is the optimal ate pairing.
+
+The field Fp12 is constructed via the following tower:
+
+* Fp2 = Fp[u] / (u^2 + 1)
+* Fp6 = Fp2[v] / (v^3 - Xi) where Xi = u + 1
+* Fp12 = Fp6[w] / (w^2 - v)
+
+Requirements
+-------------
+
+* OS: 64-bit Windows; 64-bit Linux; Mac OS X
+* CPU: x64 Intel; AMD processor
+* C++ compiler: Visual Studio 2012; gcc 4.4.1 or later
+
+
+Build instructions
+-------------
+
+### Windows
+
+    > git clone git://github.com/herumi/xbyak.git
+    > git clone git://github.com/herumi/ate-pairing.git
+    > git clone git://github.com/herumi/cybozulib-ext.git ; compiled binary of mpir
+
+Open `ate/ate.sln` and compile `test_bn` with Release mode. The produced binary is `ate/x64/Release/test_bn.exe`.
+
+### Cygwin
+
+Install `mingw64-x86_64-gcc-g++` (run Cygwin setup and search `mingw64`). Then use the following commands:
+
+    PATH=/usr/x86_64-w64-mingw32/sys-root/mingw/bin/:$PATH
+    make -j
+    test/bn.exe
+
+Note that `test/bn.exe` uses `mulx` if possible; if you do not want to use it, run the executable as `test/bn.exe -mulx 0`. (This allows you to verify the difference with/without mulx on Haswell.)
+
+### Linux
+
+Use the following commands:
+
+    $ git clone git://github.com/herumi/xbyak.git
+    $ git clone git://github.com/herumi/ate-pairing.git
+    $ cd ate-pairing
+    $ make -j
+    $ test/bn
+
+The library [xbyak](https://github.com/herumi/xbyak) is a x86/x86-64 JIT assembler for C++, developed for efficient pairing implementations. (See also [this webpage](http://homepage1.nifty.com/herumi/soft/xbyak_e.html).) Note that binaries other than `test/bn` are used for testing purposes only.
+
+* This implementation uses dynamically-generated code, so you will get the error
+`zmInit ERR:can't protect` if execution of code on the heap is disallowed by
+some modern systems.
+For example, on Fedora 20, run `sudo setsebool -P allow_execheap 1` to allow execution to solve this.
+
+By the default, the first BN curve is used. If instead you want to use the second BN curve (specialized to SNARKs), modify the fourth line above to:
+
+    $ make -j SUPPORT_SNARK=1
+
+* REMARK. You *defined* `BN_SUPPORT_SNARK` macro for a compile when if you use a library(libzm.a) made by `SUPPORT_SNARK=1`.
+
+
+Usage
+-------------
+
+See the function `sample2()` in [sample.cpp](https://github.com/herumi/ate-pairing/blob/master/test/sample.cpp). Also, use can use `mpz_class` for scalar multiplication of points on the elliptic curves,
+if `MIE_ATE_USE_GMP` is defined. For instance:
+
+    using namespace bn;
+    Param::init();
+    const Ec2 g2(...);
+    const Ec1 g1(...);
+    mpz_class a("123456789");
+    mpz_class b("98765432");
+    Ec1 g1a = g1 * a;
+    Ec2 g2b = g2 * b;
+    Fp12 e;
+    opt_atePairing(e, g2b, g1a);
+
+Usage for Java
+-------------
+See [java.md](java/java.md).
+A sample code is [BN254Test.java](java/BN254Test.java).
+
+Operation costs
+-------------
+
+Let mu be the cost of _unreduced multiplication_ producing double-precision result (i.e., 256-bit int x 256-bit int to 512-bit int); and let r be the cost of _modular reduction_ of double-precision integers (i.e., 512-bit int to 256-bit int in Fp). Then, for us,
+
+* Fp::mul = mu + r
+* Fp2::mul = 3mu + 2r
+* Fp2::square = 2mu + 2r
+
+Next, we compare the costs of our library with the one of [\[AKLGL10\]](http://eprint.iacr.org/2010/526):
+
+Phase               | [AKLGL10]     | This work
+--------------------|---------------|---------------
+Miller loop         | 6792mu + 3022r| 6785mu + 3022r
+Final exponentiation| 3753mu + 2006r| 3526mu + 1932r
+Optimal ate pairing |10545mu + 5028r|10311mu + 4954r
+
+Note: [\[Table 2 in p. 17, AKLGL10\]](http://eprint.iacr.org/2010/526) does not contain the cost of (m, r) so we have added the costs of (282m + 6mu + 4r) and (30m + 75mu + 50r) to ML and FE respectively.
+
+Finally, at the moment, our implementation does not support the algorithm in [PSNB10](https://eprint.iacr.org/2010/429).
+
+Benchmark
+-------------
+
+The cost of a pairing is __1.17M__ clock cycles on Core i7 4700MQ (Haswell) 2.4GHz processor with TurboBoost disabled. Below, we also include clock cycle counts on Core i7 2600 3.4GHz, Xeon X5650 2.6GHz, and Core i7 4700MQ 2.4GHz.
+The formal benchmark is written in \[ZPMRTH\].
+
+    % sudo sh -c "echo 0 > /sys/devices/system/cpu/cpufreq/boost"
+    % cat /sys/devices/system/cpu/cpufreq/boost
+    0
+
+operation   | i7 2600|Xeon X5650|Haswell|Haswell with mulx
+------------|--------|----------|-------|-----------------
+TurboBoost  |on      |on        |off    |off
+            |        |          |       |
+mu          | 50     |60        |42     |38
+r           | 80     |98        |69     |65
+Fp:mul      |124     |146       |98     |90
+Fp2:mul     |360     |412       |       |
+Fp2:square  |288     |335       |       |
+            |        |          |       |
+G1::double  |1150    |1300      |       |
+G1::add     |2200    |2600      |       |
+G2::double  |2500    |2900      |       |
+G2::add     |5650    |6500      |       |
+Fp12::square|4500    |5150      |       |
+Fp12::mul   |6150    |7000      |       |
+            |        |          |       |
+Miller loop |0.83M   |0.97M     |0.82M  |0.71M
+final_exp   |0.53M   |0.63M     |0.51M  |0.46M
+            |        |          |       |
+pairing     |1.36M   |1.60M     |1.33M  |1.17M
+
+
+
+References
+-------------
+
+* \[ABLR\] [_The Realm of the Pairings_](http://dx.doi.org/10.1007/978-3-662-43414-7_1) (Invited Talk),
+ Diego F. Aranha, Paulo S. L. M. Barreto, Patrick Longa, and Jefferson E. Ricardini,
+ SAC 2013, ([preprint](http://eprint.iacr.org/2013/722), [slide](http://sac2013.irmacs.sfu.ca/slides/s1.pdf))
+
+* \[NASKM\] [_Integer Variable chi-Based Ate Pairing_](http://dx.doi.org/10.1007/978-3-540-85538-5_13), Y. Nogami, M. Akane, Y. Sakemi, H. Kato, and Y. Morikawa,
+ Pairing 2008
+
+* \[PSNB\] [_A Family of Implementation-Friendly BN Elliptic Curves_](http://dx.doi.org/10.1016/j.jss.2011.03.083),
+ G.C.C.F. Pereira, M.A. Simplicio Jr, M. Naehrig, P.S.L.M. Barreto, J. Systems and Software 2011, ([preprint](http://eprint.iacr.org/2010/429))
+
+* \[AKLGL\] [_Faster Explicit Formulas for Computing Pairings over Ordinary Curves_](http://dx.doi.org/10.1007/978-3-642-20465-4_5),
+ D.F. Aranha, K. Karabina, P. Longa, C.H. Gebotys, J. Lopez,
+ EUROCRYPTO 2011, ([preprint](http://eprint.iacr.org/2010/526))
+
+* \[BDMOHT\] [_High-Speed Software Implementation of the Optimal Ate Pairing over Barreto-Naehrig Curves_](http://dx.doi.org/10.1007/978-3-642-17455-1_2),
+   Jean-Luc Beuchat, Jorge Enrique González Díaz, Shigeo Mitsunari, Eiji Okamoto, Francisco Rodríguez-Henríquez, Tadanori Teruya,
+  Pairing 2010, ([preprint](http://eprint.iacr.org/2010/354))
+
+* [_A Fast Implementation of the Optimal Ate Pairing over BN curve on Intel Haswell Processor_](http://eprint.iacr.org/2013/362),
+  Shigeo Mitsunari,
+  IACR ePrint 2013/362
+
+* [_Succinct Non-Interactive Zero Knowledge for a von Neumann Architecture_](http://eprint.iacr.org/2013/879),
+  Eli Ben-Sasson, Alessandro Chiesa, Eran Tromer, Madars Virza,
+  USENIX Security 2014
+
+* \[ZPMRTH\] [_Software implementation of an Attribute-Based Encryption scheme_](http://dx.doi.org/10.1109/TC.2014.2329681),
+  Eric Zavattoni and Luis J. Dominguez Perez and Shigeo Mitsunari and Ana H. Sanchez-Ramirez and Tadanori Teruya and Francisco Rodriguez-Henriquez,
+  IEEE Transactions on Computers, To appear, ([preprint](https://eprint.iacr.org/2014/401), [project Web page and source code](http://sandia.cs.cinvestav.mx/index.php?n=Site.CPABE))
+
+* [This library's old webpage](http://homepage1.nifty.com/herumi/crypt/ate-pairing.html)
+
+
+Authors
+-------------
+
+* MITSUNARI Shigeo (`herumi@nifty.com`)
+* TERUYA Tadanori (`tadanori.teruya@gmail.com`)
+
+Contributors
+-------------
+
+* Alessandro Chiesa (`alexch@mit.edu`)
+* Madars Virza (`madars@mit.edu`)

external/libff/depends/ate-pairing/release.props

@@ -0,0 +1,29 @@
+<EFBFBD><EFBFBD><EFBFBD><EFBFBD><?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ImportGroup Label="PropertySheets" />
+  <PropertyGroup Label="UserMacros" />
+  <PropertyGroup />
+  <ItemDefinitionGroup>
+    <ClCompile>
+      <RuntimeLibrary>MultiThreadedDLL</RuntimeLibrary>
+      <EnableCOMDATFolding>true</EnableCOMDATFolding>
+      <Optimization>MaxSpeed</Optimization>
+      <InlineFunctionExpansion>AnySuitable</InlineFunctionExpansion>
+      <IntrinsicFunctions>true</IntrinsicFunctions>
+      <FavorSizeOrSpeed>Speed</FavorSizeOrSpeed>
+      <OmitFramePointers>true</OmitFramePointers>
+      <BufferSecurityCheck>false</BufferSecurityCheck>
+      <FunctionLevelLinking>true</FunctionLevelLinking>
+      <EnableEnhancedInstructionSet>AdvancedVectorExtensions</EnableEnhancedInstructionSet>
+      <FloatingPointModel>Fast</FloatingPointModel>
+    </ClCompile>
+    <Link>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <LocalDebuggerWorkingDirectory>$(SolutionDir)bin</LocalDebuggerWorkingDirectory>
+    <DebuggerFlavor>WindowsLocalDebugger</DebuggerFlavor>
+  </PropertyGroup>
+</Project>

external/libff/depends/ate-pairing/release.vsprops

@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="shift_jis"?>
+<VisualStudioPropertySheet
+	ProjectType="Visual C++"
+	Version="8.00"
+	Name="release"
+	>
+	<Tool
+		Name="VCCLCompilerTool"
+		Optimization="3"
+		InlineFunctionExpansion="2"
+		EnableIntrinsicFunctions="true"
+		FavorSizeOrSpeed="1"
+		OmitFramePointers="true"
+		PreprocessorDefinitions="NDEBUG;_SECURE_SCL=0"
+		BufferSecurityCheck="false"
+		FloatingPointModel="2"
+		BrowseInformation="1"
+	/>
+	<Tool
+		Name="VCLinkerTool"
+		GenerateDebugInformation="true"
+		LinkTimeCodeGeneration="1"
+	/>
+</VisualStudioPropertySheet>

external/libff/depends/ate-pairing/src/.gitignore

@@ -0,0 +1 @@
+*.o

external/libff/depends/ate-pairing/src/Makefile

@@ -0,0 +1,24 @@
+include ../common.mk
+
+ifeq ($(UNAME_S),Darwin)
+  LIB_SUF=dylib
+else
+  LIB_SUF=so
+endif
+
+TARGET=../lib/libzm.a
+all:$(TARGET)
+
+OBJ=zm2.o zm.o
+clean:
+	$(RM) *.o $(TARGET)
+
+../lib/libzm.a: $(OBJ)
+	$(MKDIR) ../lib
+	-$(RM) $@
+	$(AR) $@ $(OBJ)
+	$(CXX) -fPIC -shared -o ../lib/zm.$(LIB_SUF) $(OBJ)
+
+zm.o: zm.cpp ../include/zm.h
+zm2.o: zm2.cpp ../include/zm2.h ../include/bn.h
+

external/libff/depends/ate-pairing/src/zm.cpp

@@ -0,0 +1,570 @@
+#include "zm.h"
+#include <cstdio>
+
+using namespace mie;
+
+#ifdef MIE_USE_X64ASM
+	#define XBYAK_NO_OP_NAMES
+#include "xbyak/xbyak.h"
+using namespace Xbyak;
+#endif
+/**
+	out[] = x[] + y[]
+	@note the sizeof out >= n
+	@return size of x[] + y[]
+*/
+static inline bool in_addN(Unit *out, const Unit *x, const Unit *y, size_t n)
+{
+	assert(n > 0);
+	Unit c = 0;
+	for (size_t i = 0; i < n; i++) {
+		Unit xc = x[i] + c;
+		if (xc < c) {
+			// x[i] = Unit(-1) and c = 1
+			out[i] = y[i];
+		} else {
+			xc += y[i];
+			c = y[i] > xc ? 1 : 0;
+			out[i] = xc;
+		}
+	}
+	return c != 0;
+}
+
+/**
+	out[] = x[] + y
+*/
+static inline bool in_add(Unit *out, const Unit *x, size_t n, Unit y)
+{
+	assert(n > 0);
+	Unit xc = x[0] + y;
+	Unit c = y > xc ? 1 : 0;
+	out[0] = xc;
+	for (size_t i = 1; i < n; i++) {
+		Unit xc = x[i] + c;
+		if (xc < c) {
+			out[i] = 0;
+		} else {
+			out[i] = xc;
+			c = 0;
+		}
+	}
+	return c != 0;
+}
+/**
+	out[] = x[] - y[]
+*/
+static inline bool in_subN(Unit *out, const Unit *x, const Unit *y, size_t n)
+{
+	assert(n > 0);
+	Unit c = 0;
+	for (size_t i = 0; i < n; i++) {
+		Unit yc = y[i] + c;
+		if (yc < c) {
+			// y[i] = Unit(-1) and c = 1
+			out[i] = x[i];
+		} else {
+			c = x[i] < yc ? 1 : 0;
+			out[i] = x[i] - yc;
+		}
+	}
+	return c != 0;
+}
+
+/**
+	out[] = x[] - y
+*/
+static inline bool in_sub(Unit *out, const Unit *x, size_t n, Unit y)
+{
+	assert(n > 0);
+	Unit c = x[0] < y ? 1 : 0;
+	out[0] = x[0] - y;
+	for (size_t i = 1; i < n; i++) {
+		if (x[i] < c) {
+			out[i] = Unit(-1);
+		} else {
+			out[i] = x[i] - c;
+			c = 0;
+		}
+	}
+	return c != 0;
+}
+
+/*
+	[H:L] <= a * b
+	@return L
+*/
+static inline Unit mulUnit(Unit *H, Unit a, Unit b)
+{
+#ifdef MIE_USE_UNIT32
+#if defined(_MSC_VER) && !defined(__INTEL_COMPILER)
+	uint64_t t = __emulu(a, b);
+#else
+	uint64_t t = uint64_t(a) * b;
+#endif
+	uint32_t L;
+	split64(H, &L, t);
+	return L;
+#else
+#if defined(_WIN64) && !defined(__INTEL_COMPILER)
+	return _umul128(a, b, H);
+#else
+	typedef __attribute__((mode(TI))) unsigned int uint128;
+	uint128 t = uint128(a) * b;
+	*H = uint64_t(t >> 64);
+	return uint64_t(t);
+#endif
+#endif
+}
+
+/*
+	out[0..n + 1] = x[0..n] * y
+	@note accept out == x
+*/
+static inline void in_mul(Unit *out, const Unit *x, size_t n, Unit y)
+{
+	assert(n > 0);
+	Unit H = 0;
+	for (size_t i = 0; i < n; i++) {
+		Unit t = H;
+		Unit L = mulUnit(&H, x[i], y);
+		out[i] = t + L;
+		if (out[i] < t) {
+			H++;
+		}
+	}
+	out[n] = H;
+}
+
+/*
+	q = [H:L] / y
+	r = [H:L] % y
+	return q
+*/
+static inline Unit divUnit(Unit *r, Unit H, Unit L, Unit y)
+{
+#ifdef MIE_USE_UNIT32
+	uint64_t t = make64(H, L);
+	uint32_t q = uint32_t(t / y);
+	*r = Unit(t % y);
+	return q;
+#elif defined(_MSC_VER)
+	#pragma
+	fprintf(stderr, "not implemented divUnit\n");
+	exit(1);
+#else
+	typedef __attribute__((mode(TI))) unsigned int uint128;
+	uint128 t = (uint128(H) << 64) | L;
+	uint64_t q = uint64_t(t / y);
+	*r = Unit(t % y);
+	return q;
+#endif
+}
+
+/*
+	q = x[] / y
+	@retval r = x[] % y
+	@note accept q == x
+*/
+static inline Unit in_div(Unit *q, const Unit *x, size_t xn, Unit y)
+{
+	Unit r = 0;
+	for (int i = (int)xn - 1; i >= 0; i--) {
+		q[i] = divUnit(&r, r, x[i], y);
+	}
+	return r;
+}
+
+static inline Unit in_mod(const Unit *x, size_t xn, Unit y)
+{
+	Unit r = 0;
+	for (int i = (int)xn - 1; i >= 0; i--) {
+		divUnit(&r, r, x[i], y);
+	}
+	return r;
+}
+
+bool (*mie::local::PrimitiveFunction::addN)(Unit *out, const Unit *x, const Unit *y, size_t n) = &in_addN;
+bool (*mie::local::PrimitiveFunction::add1)(Unit *out, const Unit *x, size_t n, Unit y) = &in_add;
+bool (*mie::local::PrimitiveFunction::subN)(Unit *out, const Unit *x, const Unit *y, size_t n) = &in_subN;
+bool (*mie::local::PrimitiveFunction::sub1)(Unit *out, const Unit *x, size_t n, Unit y) = &in_sub;
+void (*mie::local::PrimitiveFunction::mul1)(Unit *out, const Unit *x, size_t n, Unit y) = &in_mul;
+Unit (*mie::local::PrimitiveFunction::div1)(Unit *q, const Unit *x, size_t n, Unit y) = &in_div;
+Unit (*mie::local::PrimitiveFunction::mod1)(const Unit *x, size_t n, Unit y) = &in_mod;
+
+#ifdef MIE_USE_X64ASM
+class Code : public Xbyak::CodeGenerator {
+	void genAddSub(bool isAdd)
+	{
+		using namespace Xbyak;
+		inLocalLabel();
+		const Reg64& a = rax;
+#ifdef XBYAK64_WIN
+		const Reg64& out = rcx;
+		const Reg64& x = rdx;
+		const Reg64& y = r8;
+		const Reg64& n = r9;
+		const Reg64& t0 = r10;
+		const Reg64& t1 = r11;
+		const Reg64& t2 = rsi;
+#else
+		const Reg64& out = rdi;
+		const Reg64& x = rsi;
+		const Reg64& y = rdx;
+		const Reg64& n = rcx;
+		const Reg64& t0 = r8;
+		const Reg64& t1 = r9;
+		const Reg64& t2 = r10;
+#endif
+		cmp(n, 4);
+		jge(".main", T_NEAR);
+		cmp(n, 1);
+		jne("@f");
+		// n == 1
+		mov(a, ptr [x]);
+		if (isAdd) {
+			add(a, ptr [y]);
+		} else {
+			sub(a, ptr [y]);
+		}
+		mov(ptr [out], a);
+		mov(a, 0);
+		setc(al);
+		ret();
+	L("@@");
+		cmp(n, 2);
+		jne("@f");
+		// n == 2
+		mov(a , ptr [x + 8 * 0]);
+		mov(t0, ptr [x + 8 * 1]);
+		if (isAdd) {
+			add(a , ptr [y + 8 * 0]);
+			adc(t0, ptr [y + 8 * 1]);
+		} else {
+			sub(a , ptr [y + 8 * 0]);
+			sbb(t0, ptr [y + 8 * 1]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		mov(ptr [out + 8 * 1], t0);
+		mov(a, 0);
+		setc(al);
+		ret();
+	L("@@");
+		// n == 3
+		mov(a , ptr [x + 8 * 0]);
+		mov(t0, ptr [x + 8 * 1]);
+		mov(t1, ptr [x + 8 * 2]);
+		if (isAdd) {
+			add(a , ptr [y + 8 * 0]);
+			adc(t0, ptr [y + 8 * 1]);
+			adc(t1, ptr [y + 8 * 2]);
+		} else {
+			sub(a , ptr [y + 8 * 0]);
+			sbb(t0, ptr [y + 8 * 1]);
+			sbb(t1, ptr [y + 8 * 2]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		mov(ptr [out + 8 * 1], t0);
+		mov(ptr [out + 8 * 2], t1);
+		mov(a, 0);
+		setc(al);
+		ret();
+	L(".main"); // n >= 4
+#ifdef XBYAK64_WIN
+		mov(ptr [rsp + 8 * 1], t2);
+#endif
+		mov(a, n);
+		shr(n, 2);
+		and_(a, 3);
+		jz(".lp");
+		cmp(a, 1);
+		jne("@f");
+		// 4x + 1
+		mov(a, ptr [x + 8 * 0]);
+		if (isAdd) {
+			add(a, ptr [y + 8 * 0]);
+		} else {
+			sub(a, ptr [y + 8 * 0]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		lea(x, ptr [x + 8]);
+		lea(y, ptr [y + 8]);
+		lea(out, ptr [out + 8]);
+		jmp(".lp");
+	L("@@");
+		cmp(a, 2);
+		jne("@f");
+		// 4x + 2
+		mov(a , ptr [x + 8 * 0]);
+		mov(t0, ptr [x + 8 * 1]);
+		if (isAdd) {
+			add(a , ptr [y + 8 * 0]);
+			adc(t0, ptr [y + 8 * 1]);
+		} else {
+			sub(a , ptr [y + 8 * 0]);
+			sbb(t0, ptr [y + 8 * 1]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		mov(ptr [out + 8 * 1], t0);
+		lea(x, ptr [x + 8 * 2]);
+		lea(y, ptr [y + 8 * 2]);
+		lea(out, ptr [out + 8 * 2]);
+		jmp(".lp");
+	L("@@");
+		// 4x + 3
+		mov(a , ptr [x + 8 * 0]);
+		mov(t0, ptr [x + 8 * 1]);
+		mov(t1, ptr [x + 8 * 2]);
+		if (isAdd) {
+			add(a , ptr [y + 8 * 0]);
+			adc(t0, ptr [y + 8 * 1]);
+			adc(t1, ptr [y + 8 * 2]);
+		} else {
+			sub(a , ptr [y + 8 * 0]);
+			sbb(t0, ptr [y + 8 * 1]);
+			sbb(t1, ptr [y + 8 * 2]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		mov(ptr [out + 8 * 1], t0);
+		mov(ptr [out + 8 * 2], t1);
+		lea(x, ptr [x + 8 * 3]);
+		lea(y, ptr [y + 8 * 3]);
+		lea(out, ptr [out + 8 * 3]);
+		align(16);
+	L(".lp");
+		mov(a , ptr [x + 8 * 0]);
+		mov(t0, ptr [x + 8 * 1]);
+		mov(t1, ptr [x + 8 * 2]);
+		mov(t2, ptr [x + 8 * 3]);
+		if (isAdd) {
+			adc(a , ptr [y + 8 * 0]);
+			adc(t0, ptr [y + 8 * 1]);
+			adc(t1, ptr [y + 8 * 2]);
+			adc(t2, ptr [y + 8 * 3]);
+		} else {
+			sbb(a , ptr [y + 8 * 0]);
+			sbb(t0, ptr [y + 8 * 1]);
+			sbb(t1, ptr [y + 8 * 2]);
+			sbb(t2, ptr [y + 8 * 3]);
+		}
+		mov(ptr [out + 8 * 0], a);
+		mov(ptr [out + 8 * 1], t0);
+		mov(ptr [out + 8 * 2], t1);
+		mov(ptr [out + 8 * 3], t2);
+		lea(x, ptr [x + 8 * 4]);
+		lea(y, ptr [y + 8 * 4]);
+		lea(out, ptr [out + 8 * 4]);
+		dec(n);
+		jnz(".lp");
+	L(".exit");
+		mov(a, 0);
+		setc(al);
+#ifdef XBYAK64_WIN
+		mov(t2, ptr [rsp + 8 * 1]);
+#endif
+		ret();
+		outLocalLabel();
+	}
+	// add1(Unit *out, const Unit *x, size_t n, Unit y);
+	void genAddSub1(bool isAdd)
+	{
+		using namespace Xbyak;
+		inLocalLabel();
+		const Reg64& a = rax;
+		const Reg64& c = rcx;
+#ifdef XBYAK64_WIN
+		mov(r10, c);
+		mov(c, r8); // n
+		const Reg64& out = r10;
+		const Reg64& x = rdx;
+		const Reg64& y = r9;
+		const Reg64& t = r11;
+#else
+		mov(r10, c);
+		mov(c, rdx); // n
+		const Reg64& out = rdi;
+		const Reg64& x = rsi;
+		const Reg64& y = r10;
+		const Reg64& t = r8;
+#endif
+		lea(out, ptr [out + c * 8]);
+		lea(x, ptr [x + c * 8]);
+		xor_(a, a);
+		neg(c);
+		mov(t, ptr [x + c * 8]);
+		if (isAdd) {
+			add(t, y);
+		} else {
+			sub(t, y);
+		}
+		mov(ptr [out + c * 8], t);
+		inc(c);
+	// faster on Core i3
+		jz(".exit");
+	L(".lp");
+		mov(t, ptr [x + c * 8]);
+		if (isAdd) {
+			adc(t, a);
+		} else {
+			sbb(t, a);
+		}
+		mov(ptr [out + c * 8], t);
+		inc(c);
+		jnz(".lp");
+	L(".exit");
+		setc(al);
+		ret();
+		outLocalLabel();
+	}
+	void genMul()
+	{
+		using namespace Xbyak;
+		inLocalLabel();
+
+		// void in_mul(Unit *out, const Unit *x, size_t n, Unit y)
+
+		const Reg64& a = rax;
+		const Reg64& d = rdx;
+		const Reg64& t = r11;
+		mov(r10, rdx);
+
+#ifdef XBYAK64_WIN
+
+		const Reg64& out = rcx;
+		const Reg64& x = r10; // rdx
+		const Reg64& n = r8;
+		const Reg64& y = r9;
+#else
+		const Reg64& out = rdi;
+		const Reg64& x = rsi;
+		const Reg64& n = r10; // rdx
+		const Reg64& y = rcx;
+#endif
+		const int s = (int)sizeof(Unit);
+		xor_(d, d);
+	L(".lp");
+		mov(t, d);
+		mov(a, ptr [x]);
+		mul(y); // [d:a] = [x] * y
+		add(t, a);
+		adc(d, 0);
+		mov(ptr [out], t);
+		add(x, s);
+		add(out, s);
+		sub(n, 1);
+		jnz(".lp");
+		mov(ptr [out], d);
+
+		ret();
+		outLocalLabel();
+	}
+	void genDiv()
+	{
+		using namespace Xbyak;
+		inLocalLabel();
+
+		// Unit in_div(Unit *q, const Unit *x, size_t xn, Unit y)
+		const Reg64& a = rax;
+		const Reg64& d = rdx;
+		mov(r10, rdx);
+
+#ifdef XBYAK64_WIN
+
+		const Reg64& q = rcx;
+		const Reg64& x = r10; // rdx
+		const Reg64& n = r8;
+		const Reg64& y = r9;
+#else
+		const Reg64& q = rdi;
+		const Reg64& x = rsi;
+		const Reg64& n = r10; // rdx
+		const Reg64& y = rcx;
+#endif
+		const int s = (int)sizeof(Unit);
+		lea(x, ptr [x + n * s - s]); // x = &x[xn - 1]
+		lea(q, ptr [q + n * s - s]); // q = &q[xn - 1]
+		xor_(d, d); // r = 0
+	L(".lp");
+		mov(a, ptr [x]);
+		div(y); // [d:a] / y = a ... d ; q = a, r = d
+		mov(ptr [q], a);
+		sub(x, s);
+		sub(q, s);
+		sub(n, 1);
+		jnz(".lp");
+		mov(a, d);
+		ret();
+		outLocalLabel();
+	}
+	void genMod()
+	{
+		using namespace Xbyak;
+		inLocalLabel();
+
+		// Unit mod1(const Unit *x, size_t n, Unit y);
+		const Reg64& a = rax;
+		const Reg64& d = rdx;
+		mov(r10, rdx);
+
+#ifdef XBYAK64_WIN
+
+		const Reg64& x = rcx;
+		const Reg64& n = r10; // rdx
+		const Reg64& y = r8;
+#else
+		const Reg64& x = rdi;
+		const Reg64& n = rsi;
+		const Reg64& y = r10; // rdx
+#endif
+		const int s = (int)sizeof(Unit);
+		lea(x, ptr [x + n * s - s]); // x = &x[xn - 1]
+		xor_(d, d); // r = 0
+	L(".lp");
+		mov(a, ptr [x]);
+		div(y); // [d:a] / y = a ... d ; q = a, r = d
+		sub(x, s);
+		sub(n, 1);
+		jnz(".lp");
+		mov(a, d);
+
+		ret();
+		outLocalLabel();
+	}
+public:
+	Code()
+	{
+		mie::local::PrimitiveFunction::addN = getCurr<bool (*)(Unit *, const Unit *, const Unit *, size_t)>();
+		genAddSub(true);
+		align(16);
+		mie::local::PrimitiveFunction::add1 = getCurr<bool (*)(Unit *, const Unit *, size_t, Unit)>();
+		genAddSub1(true);
+		align(16);
+		mie::local::PrimitiveFunction::subN = getCurr<bool (*)(Unit *, const Unit *, const Unit *, size_t)>();
+		genAddSub(false);
+		align(16);
+		mie::local::PrimitiveFunction::mul1 = getCurr<void (*)(Unit *, const Unit *, size_t, Unit)>();
+		genMul();
+		align(16);
+		mie::local::PrimitiveFunction::div1 = getCurr<Unit (*)(Unit *, const Unit *, size_t, Unit)>();
+		genDiv();
+		align(16);
+		mie::local::PrimitiveFunction::mod1 = getCurr<Unit (*)(const Unit *, size_t, Unit)>();
+		genMod();
+	}
+};
+#endif
+
+void mie::zmInit()
+{
+#ifdef MIE_USE_X64ASM
+	static bool isInit = false;
+	if (isInit) return;
+	isInit = true;
+	try {
+		static Code code;
+	} catch (std::exception& e) {
+		fprintf(stderr, "zmInit ERR:%s\n", e.what());
+		exit(1);
+	}
+#endif
+}

external/libff/depends/ate-pairing/test/.gitignore

@@ -0,0 +1,4 @@
+*.o
+bench_test
+bn
+test_zm

external/libff/depends/ate-pairing/test/Makefile

@@ -0,0 +1,54 @@
+include ../common.mk
+
+HEADER= ../include/zm.h ../include/bn.h ../include/zm2.h test_point.hpp
+TARGET=test_zm bn ../lib/libzm.a
+
+ifeq ($(BIT),-m64)
+TARGET += bench_test sample loop_test java_api
+endif
+
+all:$(TARGET)
+
+.SUFFIXES: .cpp
+
+test_zm: test_zm.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+bn: bn.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+sample: sample.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+java_api: java_api.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+loop_test: loop_test.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+bench_test: bench.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+../lib/libzm.a: $(HEADER) ../src/zm2.cpp ../src/zm.cpp
+	$(MAKE) -C ../src ../lib/libzm.a
+
+clean:
+	$(RM) *.o $(TARGET)
+	$(MAKE) -C ../src clean
+
+test: $(TARGET)
+	./test_zm && ./bn
+
+test_zm.o: test_zm.cpp $(HEADER)
+bn.o: bn.cpp $(HEADER)
+bench.o: bench.cpp $(HEADER)
+sample.o: sample.cpp $(HEADER)
+java_api.o: java_api.cpp $(HEADER) ../java/bn254_if.hpp
+loop_test.o: loop_test.cpp $(HEADER)
+minitest.o: minitest.cpp $(HEADER)
+
+minitest: minitest.o ../lib/libzm.a
+	$(CXX) -o $@ $< $(LDFLAGS) $(BIT)
+
+check: minitest
+	./minitest

external/libff/depends/ate-pairing/test/bench.cpp

@@ -0,0 +1,163 @@
+#include "zm.h"
+#ifndef XBYAK_NO_OP_NAMES
+	#define XBYAK_NO_OP_NAMES
+#endif
+#include <xbyak/xbyak.h>
+#include <xbyak/xbyak_util.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <memory.h>
+#include <iostream>
+
+#define NUM_OF_ARRAY(x) (sizeof(x) / sizeof(*x))
+
+using namespace Xbyak;
+
+const int innerN = 1;
+
+struct Code : CodeGenerator {
+
+	void makeBench(int N, int mode)
+	{
+#ifdef XBYAK64_WIN
+		const Reg64& pz = rcx;
+		const Reg64& px = rdx;
+		const Reg64& py = r8;
+#else
+		const Reg64& pz = rdi;
+		const Reg64& px = rsi;
+		const Reg64& py = rdx;
+#endif
+		mov(r10, pz);
+		mov(r9, px);
+		mov(r8, py);
+		push(r12);
+		push(r13);
+
+		mov(ecx, N);
+	L(".lp");
+		for (int i = 0; i < innerN; i++) {
+			switch (mode) {
+			case 0:
+				mov(r10, ptr [px]);
+				mov(r11, ptr [px + 8]);
+				mov(r12, ptr [px + 16]);
+				mov(r13, ptr [px + 24]);
+				add(r10, r10);
+				adc(r8, r11);
+				adc(r9, r12);
+				adc(py, r13);
+				break;
+			case 1:
+				add(r10, ptr [px]);
+				adc(r8, ptr [px + 8]);
+				adc(r9, ptr [px + 16]);
+				adc(py, ptr [px + 24]);
+				break;
+			}
+		}
+		sub(ecx, 1);
+		jnz(".lp");
+		xor_(eax, eax);
+		pop(r13);
+		pop(r12);
+		ret();
+	}
+	/*
+		[t4:t3:t2:t1:t0] <- py[3:2:1:0] * x
+	*/
+	void makeMul4x1(const Reg64& t4, const Reg64& t3, const Reg64& t2, const Reg64& t1, const Reg64& t0, const Reg64& py, const Reg64& x)
+	{
+		const Reg64& a = rax;
+		const Reg64& d = rdx;
+
+		mov(a, ptr [py]);
+		mul(x);
+		mov(t0, a);
+		mov(t1, d);
+		mov(a, ptr [py + 8]);
+		mul(x);
+		xor_(t2, t2);
+		add(t1, a);
+		adc(t2, d);
+		mov(a, ptr [py + 16]);
+		mul(x);
+		xor_(t3, t3);
+		add(t2, a);
+		adc(t3, d);
+		mov(a, ptr [py + 24]);
+		mul(x);
+		xor_(t4, t4);
+		add(t3, a);
+		adc(t4, d);
+	}
+};
+
+mie::Vuint Put(const uint64_t *x, size_t n)
+{
+	mie::Vuint t;
+	t.set(x, n);
+	std::cout << t << std::endl;
+	return t;
+}
+
+void bench(int mode)
+{
+	const int N = 100000;
+	Code code;
+	code.makeBench(N, mode);
+	int (*p)(uint64_t*, const uint64_t*, const uint64_t*) = code.getCode<int (*)(uint64_t*, const uint64_t*, const uint64_t*)>();
+
+	uint64_t a[4] = { uint64_t(-1), uint64_t(-2), uint64_t(-3), 544443221 };
+	uint64_t b[4] = { uint64_t(-123), uint64_t(-3), uint64_t(-4), 222222222 };
+	uint64_t c[5] = { 0, 0, 0, 0, 0 };
+
+	const int M = 100;
+	Xbyak::util::Clock clk;
+	for (int i = 0; i < M; i++) {
+		clk.begin();
+		p(c, a, b);
+		clk.end();
+	}
+	printf("%.2fclk\n", clk.getClock() / double(M) / double(N) / innerN);
+}
+
+struct Call : Xbyak::CodeGenerator {
+	Call(const void **p)
+	{
+		const void *f = (const void *)getCurr();
+		sub();
+		align(16);
+		*p = (const void*)getCurr();
+		mov(eax, 3);
+		call(f);
+		ret();
+	}
+	void sub()
+	{
+		add(eax, eax);
+		ret();
+	}
+};
+
+int main(int argc, char *argv[])
+{
+	argc--, argv++;
+	/*
+		Core i7
+		add :  8.0clk
+		mul1: 10.7clk
+		mul2: 17.5clk
+	*/
+	try {
+		puts("test0");
+		bench(0);
+		puts("test1");
+		bench(1);
+		int (*f)();
+		Call call((const void**)&f);
+		printf("%d\n", f());
+	} catch (std::exception& e) {
+		fprintf(stderr, "ExpCode ERR:%s\n", e.what());
+	}
+}

external/libff/depends/ate-pairing/test/bench/bench.vcproj

@@ -0,0 +1,194 @@
+<?xml version="1.0" encoding="shift_jis"?>
+<VisualStudioProject
+	ProjectType="Visual C++"
+	Version="9.00"
+	Name="bench"
+	ProjectGUID="{D3016C82-693F-4C7A-9BA7-5C658EDE39ED}"
+	RootNamespace="bench"
+	Keyword="Win32Proj"
+	TargetFrameworkVersion="196613"
+	>
+	<Platforms>
+		<Platform
+			Name="Win32"
+		/>
+		<Platform
+			Name="x64"
+		/>
+	</Platforms>
+	<ToolFiles>
+	</ToolFiles>
+	<Configurations>
+		<Configuration
+			Name="Debug|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\..\ate.vsprops"
+			CharacterSet="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+				TargetEnvironment="3"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="0"
+				PreprocessorDefinitions="WIN32;_DEBUG;_CONSOLE"
+				MinimalRebuild="true"
+				BasicRuntimeChecks="3"
+				RuntimeLibrary="3"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				LinkIncremental="2"
+				GenerateDebugInformation="true"
+				SubSystem="1"
+				TargetMachine="17"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+		<Configuration
+			Name="Release|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\..\release.vsprops;..\..\ate.vsprops"
+			CharacterSet="1"
+			WholeProgramOptimization="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+				TargetEnvironment="3"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="2"
+				EnableIntrinsicFunctions="true"
+				PreprocessorDefinitions="WIN32;NDEBUG;_CONSOLE"
+				RuntimeLibrary="2"
+				EnableFunctionLevelLinking="true"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				LinkIncremental="1"
+				GenerateDebugInformation="true"
+				SubSystem="1"
+				OptimizeReferences="2"
+				EnableCOMDATFolding="2"
+				TargetMachine="17"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+	</Configurations>
+	<References>
+	</References>
+	<Files>
+		<Filter
+			Name="source"
+			Filter="cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx"
+			UniqueIdentifier="{4FC737F1-C7A5-4376-A066-2A32D752A2FF}"
+			>
+			<File
+				RelativePath="..\bench.cpp"
+				>
+			</File>
+		</Filter>
+		<Filter
+			Name="header"
+			Filter="h;hpp;hxx;hm;inl;inc;xsd"
+			UniqueIdentifier="{93995380-89BD-4b04-88EB-625FBE52EBFB}"
+			>
+		</Filter>
+	</Files>
+	<Globals>
+	</Globals>
+</VisualStudioProject>

external/libff/depends/ate-pairing/test/calc-multi.cpp

@@ -0,0 +1,216 @@
+#include <stdio.h>
+#include <memory.h>
+#include "xbyak/xbyak_util.h"
+extern Xbyak::util::Clock sclk;
+#include "bn.h"
+#include "bn-multi.h"
+#include <iostream>
+#include "util.h"
+/*
+	define DEBUG_COUNT in zm2.cpp
+	m = mul256 ; ~50clk@i7-2600
+	r = r512   ; ~75clk@i7-2600
+	Fp::mul = m + r
+	Fp2::mul = 3m + 2r
+	Fp2::square = 2m + 2r
+
+	EXP = 3526m + 1932r + 18328a
+	single                     = (6785m + 3022r + 31752a) * N + EXP = (10311m + 4954r + 50080a) * N
+	opt_ateMultiPairingJ       = (4604m + 2301r + 18858a) * N + EXP + 2268m +  758r + 13215a
+	opt_atePairingKnownG2Mixed = (3011m + 1125r + 13324a) * N + EXP + 6872m + 3059r + 32073a
+*/
+
+#define NUM_OF_ARRAY(x) (sizeof(x) / sizeof(*x))
+
+using namespace bn;
+using namespace ecop;
+
+const mie::Vuint& p = Param::p;
+const mie::Vuint& r = Param::r;
+
+int g_count_m256;
+int g_count_r512;
+int g_count_add256;
+
+void setQn(Fp2 Qn[8][3])
+{
+	Qn[0][0]=Fp2(Fp("11517672169287316361176188794386139376898724198982915810069006199968038420191"),Fp("10835361915836038157486987955558731390170808906118754364538491386961053655274"));
+	Qn[0][1]=Fp2(Fp("1778069034406611548660214861031659277772705043859539974021985347836919469866"),Fp("13681662439753864346331726398353760699598198306861051081413655381467995631936"));
+	Qn[0][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[1][0]=Fp2(Fp("11390001546001864402600540835220615821206485289741226204852043657103214655977"),Fp("213486898011631016451079100860803230206220441184056952439876131775418552592"));
+	Qn[1][1]=Fp2(Fp("5965151828180680581929387432038466302456180976708258052725425526886445195733"),Fp("12702697697694570150381325292928077349338690254734620977056113962521966534889"));
+	Qn[1][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[2][0]=Fp2(Fp("317827852388030917234217793035893093021483955938125136386577929112148939582"),Fp("9278896717834347780025960489604748790341527699671814896844481527020420813618"));
+	Qn[2][1]=Fp2(Fp("4604308811892940474377307346344747500789112678674827642409858197234913520861"),Fp("1070757109492256048282468809751283274011240272126145201336641668031831023352"));
+	Qn[2][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[3][0]=Fp2(Fp("15141009173450567653529452777511404553752377160725217686850520933697466610083"),Fp("16629468586199856290567823389372902473847532496895550111471616660495281795606"));
+	Qn[3][1]=Fp2(Fp("16359294718145568711088295546349667627209864787890529421842732282659027460110"),Fp("4591971789740803293911582763487966490224517350021416286195900260588416606065"));
+	Qn[3][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[4][0]=Fp2(Fp("10488487177327651775576239839542683920101411453666780842090527101415731001540"),Fp("2602939798302577793362090318279109373481010951639935585239213420440620860256"));
+	Qn[4][1]=Fp2(Fp("9863609696075612874186230195435829835812764055187360738836832136664960165343"),Fp("9165168201048188946636094951894632779149730577982455486230427162387564949929"));
+	Qn[4][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[5][0]=Fp2(Fp("5292072187326998897140340417009249180463237659578606571855121284655134215860"),Fp("10689661392573589494547928414723411741556083467963111340842112372714719466139"));
+	Qn[5][1]=Fp2(Fp("10086838226925579349559952786276070806316934197051675278290874521792223694104"),Fp("13667433560602011720585073415592848192740319254215300890305616288368916516198"));
+	Qn[5][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[6][0]=Fp2(Fp("3324985573750603904527543011287473872994996187451653207674213275952327637416"),Fp("11720559305674136650678029454774125211095289377686252974953815151770225790606"));
+	Qn[6][1]=Fp2(Fp("16223977577427149050185260579094435839305544920515759664940268454263915683853"),Fp("11626391287612250863586482028776561221723650762976964634697768152047450671751"));
+	Qn[6][2]=Fp2(Fp("1"),Fp("0"));
+
+	Qn[7][0]=Fp2(Fp("11092045417843901853363139904491331290984929202254355616261729225837031249105"),Fp("16375618814835183841514709507215753591504289965694221131243608575439086917851"));
+	Qn[7][1]=Fp2(Fp("11975761771951146049662473814541920209508901398043990032621984937015757049692"),Fp("9935470201967315109600907913103514245507786763785970745954141872305198444941"));
+	Qn[7][2]=Fp2(Fp("1"),Fp("0"));
+}
+
+void setPn(Fp Pn[8][3])
+{
+	const char *tbl[24] = {
+		"15005210600138052046451246658259670676477715213603446606994004703153823368243", "4343577407084448292832047972972645626170560205031956773324523863608486249664", "1",
+		"15457516573829718488435745408064186554479833481222785826769940346975045420508", "2364160699533534328839631410506819262600701890275670413410946410280478989668", "1",
+		"15003436906848848651695496307412705267730348433833218834960455592435929249345", "10438564479059694929228270049917726710497181841089954820494133901102091831646", "1",
+		"14972172091841485293055489162518763468703573114581772138812357514357617047461", "15977643626927900448562211593960826565665302700760283301009127977689582843731", "1",
+		"15003436851221616142043118946721100720407021250819020617903326552093126299817", "10454848416660761219292910571291338353428640207324163522494422111725972067818", "1",
+		"15455749699910633167624727292022947052630250106502406644415113459134577275001", "4855673267417630607411742108134371885186924557679407788265067025515460883257", "1",
+		"15457516574066288719995335683976973092876237104757111162798583482630975970975", "15911868723492233724159130363827027376562792523950861658431560892650986377042", "1",
+		"15457523448721782653342827839546724569763830282323659028716247514367541280549", "10929099066851842018351837306432073284036718863229651547413986283505570608536", "1",
+	};
+	Fp *p = &Pn[8][3];
+	for (int i = 0; i < 24; i++) {
+		p[i].set(tbl[i]);
+	}
+}
+
+void testPairing()
+{
+	Fp2 Qn[8][3];
+	Fp Pn[8][3];
+	Fp6 l_T[8][70];
+	Fp12 e;
+
+	setQn(Qn);
+	setPn(Pn);
+	{
+		Fp6 *p = &l_T[0][0];
+		for (int i = 0; i < 8 * 70; i++) {
+			p[i] = i + 1;
+		}
+	}
+#if 0
+	double pre = 0;
+	for (int i = 1; i < 8; i++) {
+		Xbyak::util::Clock clk;
+		clk.begin();
+		const int N = 3000;
+		for (int j = 0; j < N; j++) {
+			bn::opt_atePairingKnownG2Mixed(e, i, l_T, 1, Qn, Pn);
+		}
+		clk.end();
+		double t = clk.getClock() / double(N) / 1e3;
+		printf("pairing %d %7.2fKclk %7.2fKclk\n", i, t, t - pre);
+		pre = t;
+	}
+#endif
+#if 1
+	{
+		int c1[9];
+		int c2[9];
+		int c3[9];
+
+		for (int i = 1; i < 8; i++) {
+			g_count_m256 = 0;
+			g_count_r512 = 0;
+			g_count_add256 = 0;
+//			bn::opt_ateMultiPairingJ(e, i, Qn, Pn);
+			bn::opt_atePairingKnownG2Mixed(e, i, l_T, 1, Qn, Pn);
+			c1[i] = g_count_m256;
+			c2[i] = g_count_r512;
+			c3[i] = g_count_add256;
+			printf("%d m=%d r=%d a=%d\n", i, g_count_m256, g_count_r512, g_count_add256);
+		}
+		puts("extra");
+		for (int i = 1; i < 7; i++) {
+			printf("%d %d %d\n", c1[i + 1] - c1[i], c2[i + 1] - c2[i], c3[i + 1] - c3[i]);
+		}
+		int m = c1[3] - c1[2];
+		int r = c2[3] - c2[2];
+		int a = c3[3] - c3[2];
+		int em;
+		int er;
+		int ea;
+		{
+			g_count_m256 = 0;
+			g_count_r512 = 0;
+			g_count_add256 = 0;
+			e.final_exp();
+			em = g_count_m256;
+			er = g_count_r512;
+			ea = g_count_add256;
+		}
+		int sm;
+		int sr;
+		int sa;
+		{
+			g_count_m256 = 0;
+			g_count_r512 = 0;
+			g_count_add256 = 0;
+			bn::opt_atePairing(e, Qn[0], Pn[0]);
+			sm = g_count_m256;
+			sr = g_count_r512;
+			sa = g_count_add256;
+		}
+		int km;
+		int kr;
+		int ka;
+		{
+			Fp6 pre[8][70];
+			memset(pre, 0, sizeof(pre));
+			PrecomputePairingKnownG2(pre, 8, Qn);
+			g_count_m256 = 0;
+			g_count_r512 = 0;
+			g_count_add256 = 0;
+			bn::opt_atePairingKnownG2(e, pre[0], Pn[0]);
+			km = g_count_m256;
+			kr = g_count_r512;
+			ka = g_count_add256;
+		}
+		printf("(%dm + %dr + %da) * N + EXP + %dm + %dr + %da\n"
+			, m, r, a
+			, c1[2] - 2 * m - em, c2[2] - 2 * r - er, c3[2] - 2 * a - ea);
+		printf("EXP = %dm + %dr + %da\n", em, er, ea);
+		printf("single U = (%dm + %dr + %da) + EXP\n", sm - em, sr - er, sa - ea);
+		printf("       U = %dm + %dr + %da\n", sm, sr, sa);
+		printf("       K = %dm + %dr + %da\n", km, kr, ka);
+#if 0
+		{
+			Fp12 f;
+			Fp6 l;
+			g_count_m256 = 0;
+			g_count_r512 = 0;
+			g_count_add256 = 0;
+//			Fp6::pointDblLineEval(e.a_, Qn[0], Pn[0]); // 25m + 20r + 76a
+//			e *= e; // 54m + 12r + 316a
+//			Fp6::pointAddLineEval(e.a_, Qn[0], Qn[0], Pn[0]); // 41m + 26r + 102a
+//			Fp12::Dbl::mul_Fp2_024(f, l); // 39m + 12r + 190a
+//			Fp12::square(f); // 36m + 12r + 210a
+			Fp12::Dbl::mul_Fp2_024_Fp2_024(e, l, l); // 18m + 10r + 88a
+			printf("op = %dm + %dr + %da\n", g_count_m256, g_count_r512, g_count_add256);
+		}
+#endif
+	}
+#endif
+}
+
+int main(int argc, char *argv[]) try
+{
+	argc--, argv++;
+	Param::init(-1);
+	testPairing();
+} catch (std::exception& e) {
+	fprintf(stderr, "exception %s\n", e.what());
+	return 1;
+}

external/libff/depends/ate-pairing/test/java_api.cpp

@@ -0,0 +1,134 @@
+/*
+	a new api of pairing for Java
+*/
+#include "../java/bn254_if.hpp"
+#include <iostream>
+
+#undef PUT
+#define PUT(x) std::cout << #x "\t=" << (x).toString() << std::endl
+
+static int errNum = 0;
+
+void assertBool(const char *msg, bool b)
+{
+	if (b) {
+		printf("%s : ok\n", msg);
+	} else {
+		printf("%s : ng\n", msg);
+		errNum++;
+	}
+}
+
+template<class T, class S>
+void assertEqual(const char *msg, const T& a, const S& b)
+{
+	if (a.equals(b)) {
+		printf("%s : ok\n", msg);
+	} else {
+		PUT(a);
+		PUT(b);
+		errNum++;
+	}
+}
+
+struct G2 {
+	const char *aa;
+	const char *ab;
+	const char *ba;
+	const char *bb;
+} g2c = {
+	"12723517038133731887338407189719511622662176727675373276651903807414909099441",
+	"4168783608814932154536427934509895782246573715297911553964171371032945126671",
+	"13891744915211034074451795021214165905772212241412891944830863846330766296736",
+	"7937318970632701341203597196594272556916396164729705624521405069090520231616",
+};
+
+int main()
+{
+	SystemInit();
+	const Ec1 g1(-1, 1);
+	const Ec2 g2(
+		Fp2(Fp(g2c.aa), Fp(g2c.ab)),
+		Fp2(Fp(g2c.ba), Fp(g2c.bb))
+	);
+	// assertBool g2 and g1 on curve
+	assertBool("g1 is on EC", g1.isValid());
+	assertBool("g2 is on twist EC", g2.isValid());
+	puts("order of group");
+	const Mpz& r = GetParamR();
+	PUT(r);
+	{
+		Ec1 t = g1;
+		t.mul(r);
+		assertBool("orgder of g1 == r", t.isZero());
+	}
+	{
+		Ec2 t = g2;
+		t.mul(r);
+		assertBool("order of g2 == r", t.isZero());
+	}
+	const Mpz a("123456789012345");
+	const Mpz b("998752342342342342424242421");
+
+	// scalar-multiplication sample
+	{
+		Mpz c = a;
+		c.add(b);
+		Ec1 Pa = g1; Pa.mul(a);
+		Ec1 Pb = g1; Pb.mul(b);
+		Ec1 Pc = g1; Pc.mul(c);
+		Ec1 out = Pa;
+		out.add(Pb);
+
+		assertEqual("check g1 * c = g1 * a + g1 * b", Pc, out);
+	}
+
+	Fp12 e;
+	// calc e : G2 x G1 -> G3 pairing
+	e.pairing(g2, g1); // e = e(g2, g1)
+	PUT(e);
+	{
+		Fp12 t = e;
+		t.power(r);
+		assertEqual("order of e == r", t, Fp12(1));
+	}
+	Ec2 g2a = g2;
+	g2a.mul(a);
+	Fp12 ea1;
+	ea1.pairing(g2a, g1);
+	Fp12 ea2 = e;
+	ea2.power(a); // ea2 = e^a
+	assertEqual("e(g2 * a, g1) = e(g2, g1)^a", ea1, ea2);
+
+	Ec1 g1b = g1;
+	g1b.mul(b);
+	Fp12 eb1;
+	eb1.pairing(g2, g1b); // eb1 = e(g2, g1b)
+	Fp12 eb2 = e;
+	eb2.power(b); // eb2 = e^b
+	assertEqual("e(g2a, g1 * b) = e(g2, g1)^b", eb1, eb2);
+
+	Ec1 q1 = g1;
+	q1.mul(12345);
+	assertBool("q1 is on EC", q1.isValid());
+	Fp12 e1, e2;
+	e1.pairing(g2, g1); // e1 = e(g2, g1)
+	e2.pairing(g2, q1); // e2 = e(g2, q1)
+	Ec1 q2 = g1;
+	q2.add(q1);
+	e.pairing(g2, q2); // e = e(g2, q2)
+	e1.mul(e2);
+	assertEqual("e = e1 * e2", e, e1);
+	/*
+		reduce one copy as the following
+	*/
+	g2a = g2;
+	g2a.mul(a);
+	g1b = g1;
+	g1b.mul(b);
+	Ec2 g2at = g2; g2at.mul(a);
+	Ec1 g1bt = g1; g1bt.mul(b);
+	assertEqual("g2a == g2 * a", g2a, g2at);
+	assertEqual("g1b == g1 * b", g1b, g1bt);
+	printf("errNum = %d\n", errNum);
+}

external/libff/depends/ate-pairing/test/loop_test.cpp

@@ -0,0 +1,51 @@
+/*
+	loop test
+*/
+#include "bn.h"
+#include "test_point.hpp"
+
+using namespace bn;
+using namespace ecop;
+
+int main()
+{
+#ifdef BN_SUPPORT_SNARK
+	puts("snark");
+	bn::CurveParam cp = bn::CurveSNARK1;
+#else
+	puts("fp254BNb");
+	bn::CurveParam cp = bn::CurveFp254BNb;
+#endif
+	// init my library
+	Param::init();
+	// prepair a generator
+	const Point& pt = selectPoint(cp);
+	const Ec2 g2(
+		Fp2(Fp(pt.g2.aa), Fp(pt.g2.ab)),
+		Fp2(Fp(pt.g2.ba), Fp(pt.g2.bb))
+	);
+	const Ec1 g1(pt.g1.a, pt.g1.b);
+	Fp12 e, ea, ea1, ea2;
+	Ec2 g2a;
+	Ec1 g1a;
+	// calc e : G2 x G1 -> G3 pairing
+	opt_atePairing(e, g2, g1); // e = e(g2, g1)
+	mie::Vuint a("0x18b48dddfb2f81cc829b4b9acd393ccb1e90909aabe126bcdbe6a96438eaf313");
+	for (int i = 0; i < 3000; i++) {
+		ea = power(e, a);
+		g1a = g1 * a;
+		g2a = g2 * a;
+		opt_atePairing(ea1, g2, g1a); // ea1 = e(g2, g1a)
+		opt_atePairing(ea2, g2a, g1); // ea2 = e(g2a, g1)
+		if (ea != ea1 || ea != ea2) {
+			printf("ERR i=%d\n", i);
+			PUT(a);
+			PUT(ea);
+			PUT(ea1);
+			PUT(ea2);
+			exit(1);
+		}
+		a -= 1;
+	}
+	puts("ok");
+}

external/libff/depends/ate-pairing/test/minitest.cpp

@@ -0,0 +1,54 @@
+#include "bn.h"
+#include "test_point.hpp"
+
+static int errNum = 0;
+const char *expect = "[[[8118772341496577043438385328606447626730215814727396173233264007541007797690,6742571767760762192519140673058087976840103832045324348366170860928670686713],"
+" [9727912590495366720378364920530546614235713408261568635512172059018197267630,10180700148605185348549931182990442059136187839792856455707820203302941578832],"
+" [5054507763444412917986776641611331046146804026682679569910978464879371792565,6917005519826733659554708445125877487590687705432214234949972860245110398023]],"
+" [[10448556317747236258066222816126375978842661908560317699736569642190930635294,1516980358051268127904344653343215863076753141133525905743113718749531324025],"
+" [9794836735385959178744195210089532061310424844916928682580569566332541022353,9375574834170998962484906689780052970915033987453510324648351251071086068423],"
+" [710778048594563655498360873129325895716179849942646859397874562033386335205,10688745994254573144943003027511098295097561129365638275727908595677791826005]]]";
+
+template<class T, class S>
+void verify(const char *msg, const T& a, const S& b)
+{
+	if (a == b) {
+		printf("%s : ok\n", msg);
+	} else {
+		printf("%s : ng\n", msg);
+		PUT(a);
+		PUT(b);
+		errNum++;
+	}
+}
+
+int main()
+	try
+{
+//	bn::CurveParam cp = bn::CurveSNARK1;
+	bn::CurveParam cp = bn::CurveFp254BNb;
+	using namespace bn;
+	// init my library
+	Param::init(cp);
+	const Point& pt = selectPoint(cp);
+	const Ec2 g2(
+		Fp2(Fp(pt.g2.aa), Fp(pt.g2.ab)),
+		Fp2(Fp(pt.g2.ba), Fp(pt.g2.bb))
+	);
+	const Ec1 g1(pt.g1.a, pt.g1.b);
+
+	PUT(g1);
+	PUT(g2);
+	Fp12 e1, e2;
+	opt_atePairing(e1, g2, g1);
+	PUT(e1);
+	{
+		std::stringstream ss(expect);
+		ss >> e2;
+	}
+	printf("%s\n", e1 == e2 ? "OK" : "NG");
+} catch (std::exception& e) {
+	printf("ERR %s\n", e.what());
+}
+
+

external/libff/depends/ate-pairing/test/sample.cpp

@@ -0,0 +1,288 @@
+/*
+	a tiny sample of optimal ate pairing
+*/
+#include "bn.h"
+#include "test_point.hpp"
+
+static int errNum = 0;
+
+template<class T, class S>
+void verify(const char *msg, const T& a, const S& b)
+{
+	if (a == b) {
+		printf("%s : ok\n", msg);
+	} else {
+		printf("%s : ng\n", msg);
+		PUT(a);
+		PUT(b);
+		errNum++;
+	}
+}
+
+void sample1(const bn::CurveParam& cp)
+{
+	using namespace bn;
+	// init my library
+	Param::init(cp);
+	// prepair a generator
+	const Point& pt = selectPoint(cp);
+	const Fp2 g2[3] = {
+		Fp2(Fp(pt.g2.aa), Fp(pt.g2.ab)),
+		Fp2(Fp(pt.g2.ba), Fp(pt.g2.bb)),
+		Fp2(1, 0),
+	};
+	const Fp g1[3] = { pt.g1.a, pt.g1.b, 1 };
+	// verify g2 and g1 on curve
+	verify("g1 is on EC", ecop::isOnECJac3(g1), true);
+	verify("g2 is on twist EC", ecop::isOnTwistECJac3(g2), true);
+	puts("order of group");
+	PUT(Param::r);
+	PUT(Param::p);
+	PUT(Param::t);
+	{
+		Fp t[3];
+		ecop::ScalarMult(t, g1, Param::r);
+		// (x, y, 0) means 0 at Jacobi coordinate
+		verify("orgder of g1 == r", t[2], 0);
+	}
+	{
+		Fp2 t[3];
+		ecop::ScalarMult(t, g2, Param::r);
+		verify("order of g2 == r", t[2], 0);
+	}
+	const char *aStr = "123456789012345";
+	const char *bStr = "998752342342342342424242421";
+	const mie::Vuint a(aStr);
+	const mie::Vuint b(bStr);
+
+	// scalar-multiplication sample
+	{
+		Fp Pa[3];
+		Fp Pb[3];
+		Fp Pc[3];
+		Fp out[3];
+		const mie::Vuint c = a + b;
+
+		ecop::ScalarMult(Pa, g1, a); // Pa = g1 * a
+		ecop::ScalarMult(Pb, g1, b); // Pb = g1 * b
+		ecop::ScalarMult(Pc, g1, c); // Pc = g1 * (a + b)
+		ecop::ECAdd(out, Pa, Pb); // g1 * a + g1 * b
+		ecop::NormalizeJac(Pc, Pc);
+		ecop::NormalizeJac(out, out);
+		std::cout << std::hex;
+		verify("check g1 * c = g1 * a + g1 * b", Pc[0] == out[0] && Pc[1] == out[1] && Pc[2] == out[2], true);
+
+#ifdef MIE_ATE_USE_GMP
+		{
+			mpz_class aa(aStr);
+			mpz_class bb(bStr);
+			mpz_class cc = aa + bb;
+			Fp Paa[3];
+			Fp Pbb[3];
+			Fp Pcc[3];
+			ecop::ScalarMult(Paa, g1, aa); // Pa = g1 * a
+			ecop::ScalarMult(Pbb, g1, bb); // Pb = g1 * b
+			ecop::ScalarMult(Pcc, g1, cc); // Pc = g1 * (a + b)
+			ecop::NormalizeJac(Pcc, Pcc);
+			verify("gmp Paa == Pa", Paa[0] == Pa[0] && Paa[1] == Pa[1] && Paa[2] == Pa[2], true);
+			verify("gmp Pbb == Pb", Pbb[0] == Pb[0] && Pbb[1] == Pb[1] && Pbb[2] == Pb[2], true);
+			verify("gmp Pcc == Pc", Pcc[0] == Pc[0] && Pcc[1] == Pc[1] && Pcc[2] == Pc[2], true);
+		}
+#endif
+	}
+
+	Fp12 e;
+	// calc e : G2 x G1 -> G3 pairing
+	opt_atePairingJac<Fp>(e, g2, g1); // e = e(g2, g1)
+	PUT(e);
+	{
+		Fp12 t = power(e, Param::r);
+		verify("order of e == r", t, 1);
+	}
+	Fp2 g2a[3];
+	ecop::ScalarMult(g2a, g2, a); // g2a = g2 * a
+	Fp12 ea1;
+	opt_atePairingJac<Fp>(ea1, g2a, g1); // ea1 = e(g2a, g1)
+	Fp12 ea2 = power(e, a); // ea2 = e^a
+	verify("e(g2 * a, g1) = e(g2, g1)^a", ea1, ea2);
+
+	Fp g1b[3];
+	ecop::ScalarMult(g1b, g1, b); // g1b = g1 * b
+	Fp12 eb1;
+	opt_atePairingJac<Fp>(eb1, g2, g1b); // eb1 = e(g2, g1b)
+	Fp12 eb2 = power(e, b); // eb2 = e^b
+	verify("e(g2a, g1 * b) = e(g2, g1)^b", eb1, eb2);
+
+	Fp q1[3];
+	ecop::ScalarMult(q1, g1, 12345);
+
+	verify("q1 is on EC", ecop::isOnECJac3(q1), true);
+	Fp12 e1, e2;
+	opt_atePairingJac<Fp>(e1, g2, g1); // e1 = e(g2, g1)
+	opt_atePairingJac<Fp>(e2, g2, q1); // e2 = e(g2, q1)
+	Fp q2[3];
+	ecop::ECAdd(q2, g1, q1); // q2 = g1 + q1
+	opt_atePairingJac<Fp>(e, g2, q2); // e = e(g2, q2)
+	verify("e = e1 * e2", e, e1 * e2);
+}
+
+void sample2(const bn::CurveParam& cp)
+{
+	using namespace bn;
+	// init my library
+	Param::init(cp);
+	const Point& pt = selectPoint(cp);
+	const Ec2 g2(
+		Fp2(Fp(pt.g2.aa), Fp(pt.g2.ab)),
+		Fp2(Fp(pt.g2.ba), Fp(pt.g2.bb))
+	);
+	const Ec1 g1(pt.g1.a, pt.g1.b);
+	// verify g2 and g1 on curve
+	verify("g1 is on EC", g1.isValid(), true);
+	verify("g2 is on twist EC", g2.isValid(), true);
+	puts("order of group");
+	PUT(Param::r);
+	{
+		Ec1 t = g1 * Param::r;
+		// Ec1::mul(t, g1, Param::r);
+		verify("orgder of g1 == r", t.isZero(), true);
+	}
+	{
+		Ec2 t = g2 * Param::r;
+		// Ec2::mul(t, g2, Param::r);
+		verify("order of g2 == r", t.isZero(), true);
+	}
+	const char *aStr = "123456789012345";
+	const char *bStr = "998752342342342342424242421";
+	const mie::Vuint a(aStr);
+	const mie::Vuint b(bStr);
+
+	// scalar-multiplication sample
+	{
+		const mie::Vuint c = a + b;
+		Ec1 Pa = g1 * a;
+		Ec1 Pb = g1 * b;
+		Ec1 Pc = g1 * c;
+		Ec1 out = Pa + Pb;
+
+		verify("check g1 * c = g1 * a + g1 * b", Pc, out);
+#ifdef MIE_ATE_USE_GMP
+		{
+			mpz_class aa(aStr);
+			mpz_class bb(bStr);
+			mpz_class cc = aa + bb;
+			Ec1 Paa = g1 * aa;
+			Ec1 Pbb = g1 * bb;
+			Ec1 Pcc = g1 * cc;
+			verify("gmp Paa == Pa", Paa, Pa);
+			verify("gmp Pbb == Pb", Pbb, Pb);
+			verify("gmp Pcc == Pc", Pcc, Pc);
+		}
+#endif
+	}
+
+	Fp12 e;
+	// calc e : G2 x G1 -> G3 pairing
+	opt_atePairing(e, g2, g1); // e = e(g2, g1)
+	PUT(e);
+	{
+		Fp12 t = power(e, Param::r);
+		verify("order of e == r", t, 1);
+	}
+	Ec2 g2a = g2 * a;
+	// Ec2::mul(g2a, g2, a);
+	Fp12 ea1;
+	opt_atePairing(ea1, g2a, g1); // ea1 = e(g2a, g1)
+	Fp12 ea2 = power(e, a); // ea2 = e^a
+	verify("e(g2 * a, g1) = e(g2, g1)^a", ea1, ea2);
+
+	Ec1 g1b = g1 * b;
+	// Ec1::mul(g1b, g1, b);
+	Fp12 eb1;
+	opt_atePairing(eb1, g2, g1b); // eb1 = e(g2, g1b)
+	Fp12 eb2 = power(e, b); // eb2 = e^b
+	verify("e(g2a, g1 * b) = e(g2, g1)^b", eb1, eb2);
+
+	Ec1 q1 = g1 * 12345;
+	verify("q1 is on EC", q1.isValid(), true);
+	Fp12 e1, e2;
+	opt_atePairing(e1, g2, g1); // e1 = e(g2, g1)
+	opt_atePairing(e2, g2, q1); // e2 = e(g2, q1)
+	Ec1 q2 = g1 + q1;
+	opt_atePairing(e, g2, q2); // e = e(g2, q2)
+	verify("e = e1 * e2", e, e1 * e2);
+
+	/*
+		reduce one copy as the following
+	*/
+	Ec2::mul(g2a, g2, a); // g2a = g2 * a
+	Ec1::mul(g1b, g1, b);
+	verify("g2a == g2 * a", g2a, g2 * a);
+	verify("g1b == g1 * b", g1b, g1 * b);
+}
+
+void multi(const bn::CurveParam& cp)
+{
+	using namespace bn;
+	// init my library
+	Param::init(cp);
+	const Point& pt = selectPoint(cp);
+	const Ec2 g2(
+		Fp2(Fp(pt.g2.aa), Fp(pt.g2.ab)),
+		Fp2(Fp(pt.g2.ba), Fp(pt.g2.bb))
+	);
+	const Ec1 g1(pt.g1.a, pt.g1.b);
+	const size_t N = 10;
+	const int c = 234567;
+	std::vector<Ec1> g1s;
+	g1s.resize(N);
+
+	for (size_t i = 0; i < N; i++) {
+		Ec1::mul(g1s[i], g1, c + i);
+		g1s[i] = g1 * (c + i);
+		g1s[i].normalize();
+	}
+	std::vector<Fp6> Qcoeff;
+	Fp2 precQ[3];
+	bn::components::precomputeG2(Qcoeff, precQ, g2.p);
+	for (size_t i = 0; i < N; i++) {
+		Fp12 e1;
+		bn::components::millerLoop(e1, Qcoeff, g1s[i].p);
+		e1.final_exp();
+		Fp12 e2;
+		opt_atePairing(e2, g2, g1s[i]);
+		if (e1 != e2) {
+			printf("err multi %d\n", (int)i);
+		}
+	}
+}
+
+int main(int argc, char *argv[])
+{
+#ifdef BN_SUPPORT_SNARK
+	int b = 3;
+	if (argc >= 2) {
+		b = atoi(argv[1]);
+		if (b != 3 && b != 82) {
+			printf("not support b=%d\n", b);
+			return 1;
+		}
+	}
+	printf("SNARK b = %d\n", b);
+	bn::CurveParam cp = bn::CurveSNARK1;
+	cp.b = b;
+#else
+	if (argc > 1 && argv[1]) {
+		printf("not support\n");
+		return 1;
+	}
+	bn::CurveParam cp = bn::CurveFp254BNb;
+#endif
+	puts("sample1");
+	sample1(cp);
+	puts("sample2");
+	sample2(cp);
+	puts("multi");
+	multi(cp);
+	printf("errNum = %d\n", errNum);
+}

external/libff/depends/ate-pairing/test/test_bn.vcproj

@@ -0,0 +1,184 @@
+<?xml version="1.0" encoding="shift_jis"?>
+<VisualStudioProject
+	ProjectType="Visual C++"
+	Version="9.00"
+	Name="test_bn"
+	ProjectGUID="{F4B8F9CD-2E24-4374-9BF6-6886347E861B}"
+	RootNamespace="test_bn"
+	TargetFrameworkVersion="131072"
+	>
+	<Platforms>
+		<Platform
+			Name="x64"
+		/>
+	</Platforms>
+	<ToolFiles>
+	</ToolFiles>
+	<Configurations>
+		<Configuration
+			Name="Debug|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\ate.vsprops"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="0"
+				RuntimeLibrary="3"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				GenerateDebugInformation="true"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+		<Configuration
+			Name="Release|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\release.vsprops;..\ate.vsprops"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				AdditionalOptions="/GS-"
+				Optimization="3"
+				InlineFunctionExpansion="2"
+				EnableIntrinsicFunctions="true"
+				FavorSizeOrSpeed="1"
+				OmitFramePointers="true"
+				WholeProgramOptimization="true"
+				AdditionalIncludeDirectories="C:\Program Files (x86)\Intel\VTune Amplifier XE\include"
+				PreprocessorDefinitions="WIN32;NDEBUG;_CONSOLE"
+				RuntimeLibrary="2"
+				BufferSecurityCheck="false"
+				EnableFunctionLevelLinking="false"
+				FloatingPointModel="2"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				AdditionalLibraryDirectories="C:\Program Files (x86)\Intel\VTune Amplifier XE\lib64"
+				GenerateDebugInformation="true"
+				LinkTimeCodeGeneration="1"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+	</Configurations>
+	<References>
+	</References>
+	<Files>
+		<Filter
+			Name="header"
+			>
+		</Filter>
+		<Filter
+			Name="source"
+			>
+			<File
+				RelativePath=".\bn.cpp"
+				>
+				<FileConfiguration
+					Name="Release|x64"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						AssemblerOutput="0"
+					/>
+				</FileConfiguration>
+			</File>
+		</Filter>
+	</Files>
+	<Globals>
+	</Globals>
+</VisualStudioProject>

external/libff/depends/ate-pairing/test/test_point.hpp

@@ -0,0 +1,74 @@
+#pragma once
+#include "bn.h"
+
+#define PUT(x) std::cout << #x << "\t=" << (x) << std::endl;
+
+const struct Point {
+	struct G2 {
+		const char *aa;
+		const char *ab;
+		const char *ba;
+		const char *bb;
+	} g2;
+	struct G1 {
+		int a;
+		int b;
+	} g1;
+} g_pointTbl[] = {
+#ifdef BN_SUPPORT_SNARK
+	// SNARK1(b = 3)
+	{
+		{
+			"15267802884793550383558706039165621050290089775961208824303765753922461897946",
+			"9034493566019742339402378670461897774509967669562610788113215988055021632533",
+			"644888581738283025171396578091639672120333224302184904896215738366765861164",
+			"20532875081203448695448744255224543661959516361327385779878476709582931298750",
+		},
+		{
+			1, 2
+		},
+	},
+	// SNARK2(b = 82)
+	{
+		{
+			"7281644703356799059368313064438243279269372005747477888712173236228325795991",
+			"15160700668152503952980485502602536850541312794041965342451842375663084147486",
+			"13523979532236795535820810482891703536907572704519492618036353386190612673074",
+			"15929067770616689398844794432758732907995965312283969374632681891490787470887",
+		},
+		{
+			-1, 9
+		},
+	},
+#else
+	// Aranha
+	{
+		{
+			"12723517038133731887338407189719511622662176727675373276651903807414909099441",
+			"4168783608814932154536427934509895782246573715297911553964171371032945126671",
+			"13891744915211034074451795021214165905772212241412891944830863846330766296736",
+			"7937318970632701341203597196594272556916396164729705624521405069090520231616",
+		},
+		{
+			-1, 1
+		},
+	},
+#endif
+};
+
+inline const Point& selectPoint(const bn::CurveParam& cp)
+{
+#ifdef BN_SUPPORT_SNARK
+	if (cp.b != 3 && cp.b != 82) {
+		printf("not support point for b=%d\n", cp.b);
+		exit(1);
+	}
+	return g_pointTbl[cp.b == 3 ? 0 : 1];
+#else
+	if (cp != bn::CurveFp254BNb) {
+		printf("not support except for CurveFp254BNb");
+		exit(1);
+	}
+	return g_pointTbl[0];
+#endif
+}

external/libff/depends/ate-pairing/test/test_zm.vcproj

@@ -0,0 +1,166 @@
+<?xml version="1.0" encoding="shift_jis"?>
+<VisualStudioProject
+	ProjectType="Visual C++"
+	Version="9.00"
+	Name="test_zm"
+	ProjectGUID="{C8EC3A26-31ED-4764-A6F1-D5EBD2D09AFF}"
+	RootNamespace="test_zm"
+	TargetFrameworkVersion="131072"
+	>
+	<Platforms>
+		<Platform
+			Name="x64"
+		/>
+	</Platforms>
+	<ToolFiles>
+	</ToolFiles>
+	<Configurations>
+		<Configuration
+			Name="Debug|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\ate.vsprops"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="0"
+				RuntimeLibrary="3"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				GenerateDebugInformation="true"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+		<Configuration
+			Name="Release|x64"
+			OutputDirectory="$(SolutionDir)$(PlatformName)\$(ConfigurationName)"
+			IntermediateDirectory="$(PlatformName)\$(ConfigurationName)"
+			ConfigurationType="1"
+			InheritedPropertySheets="..\release.vsprops;..\ate.vsprops"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="3"
+				InlineFunctionExpansion="2"
+				EnableIntrinsicFunctions="true"
+				FavorSizeOrSpeed="1"
+				OmitFramePointers="true"
+				PreprocessorDefinitions="WIN32;NDEBUG;_CONSOLE"
+				RuntimeLibrary="2"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+	</Configurations>
+	<References>
+	</References>
+	<Files>
+		<Filter
+			Name="header"
+			>
+		</Filter>
+		<Filter
+			Name="source"
+			>
+			<File
+				RelativePath=".\test_zm.cpp"
+				>
+			</File>
+		</Filter>
+	</Files>
+	<Globals>
+	</Globals>
+</VisualStudioProject>

external/libff/depends/ate-pairing/test/util.h

@@ -0,0 +1,25 @@
+#ifndef MIE_ATE_UTIL_H_
+#define MIE_ATE_UTIL_H_
+
+#ifdef _WIN32
+
+#include <time.h>
+
+static inline double GetCurrTime()
+{
+	return clock() / double(CLOCKS_PER_SEC);
+}
+#else
+
+#include <sys/time.h>
+#include <stdio.h>
+
+static inline double GetCurrTime()
+{
+	struct timeval tv;
+	gettimeofday(&tv, NULL);
+	return tv.tv_sec + (double) tv.tv_usec * 1e-6;
+}
+#endif
+
+#endif

external/libff/depends/gtest/.gitignore

@@ -0,0 +1,40 @@
+# Ignore CI build directory
+build/
+xcuserdata
+cmake-build-debug/
+.idea/
+bazel-bin
+bazel-genfiles
+bazel-googletest
+bazel-out
+bazel-testlogs
+# python
+*.pyc
+
+# Visual Studio files
+*.sdf
+*.opensdf
+*.VC.opendb
+*.suo
+*.user
+_ReSharper.Caches/
+Win32-Debug/
+Win32-Release/
+x64-Debug/
+x64-Release/
+
+# Ignore autoconf / automake files
+Makefile.in
+aclocal.m4
+configure
+build-aux/
+autom4te.cache/
+googletest/m4/libtool.m4
+googletest/m4/ltoptions.m4
+googletest/m4/ltsugar.m4
+googletest/m4/ltversion.m4
+googletest/m4/lt~obsolete.m4
+
+# Ignore generated directories.
+googlemock/fused-src/
+googletest/fused-src/