UltrafastSecp256k1/docs/field_8hpp_source.html

#ifndef B9C07A97_9853_412C_BCB7_F2FB19B8C1A7

#define B9C07A97_9853_412C_BCB7_F2FB19B8C1A7


#include <array>

#include <cstdint>

#include <cstring>

#include <string>

#include <vector>

#include "config.hpp"

#include "secp256k1/types.hpp"


namespace secp256k1::fast {


// Forward declaration

class FieldElement;


// ============================================================================

// HYBRID 32/64-bit support: Zero-cost view for optimized operations

// ============================================================================

// MidFieldElement provides 32-bit limb view of FieldElement for operations

// where 32-bit multiplication is faster (benchmarked 1.10x faster than 64-bit)

// Memory layout is IDENTICAL - just different interpretation!


struct MidFieldElement {

    std::uint32_t limbs[8];  // Same 256 bits, different view


    // Safe conversion back to 64-bit representation (memcpy, compiler-optimized to noop)

    inline FieldElement ToFieldElement() const noexcept;

};


class FieldElement {

public:

    using limbs_type = std::array<std::uint64_t, 4>;


    FieldElement();

    static FieldElement zero();

    static FieldElement one();

    static FieldElement from_uint64(std::uint64_t value);

    static FieldElement from_limbs(const limbs_type& limbs);

    static FieldElement from_bytes(const std::array<std::uint8_t, 32>& bytes);


    // BIP-340 strict parsing: rejects values >= field prime p (no reduction).

    // Returns false if bytes represent a value >= p.

    // Use for pubkey/signature r-value parsing where canonical encoding is required.

    static bool parse_bytes_strict(const std::uint8_t* bytes32, FieldElement& out) noexcept;

    static bool parse_bytes_strict(const std::array<std::uint8_t, 32>& bytes, FieldElement& out) noexcept;


    // Convert from Montgomery domain (a*R) to Standard domain (a)

    static FieldElement from_mont(const FieldElement& a);


    // Developer-friendly: Create from hex string (64 hex chars)

    // Example: FieldElement::from_hex("09af57f4f5c1d64c6bea6d4193c5d9130421f4f078868e5ec00a56e68001136c")

    static FieldElement from_hex(const std::string& hex);


    std::array<std::uint8_t, 32> to_bytes() const;

    // Write 32 big-endian bytes into provided buffer (avoids temporary array)

    void to_bytes_into(std::uint8_t* out) const noexcept;

    std::string to_hex() const;

    const limbs_type& limbs() const noexcept { return limbs_; }


    // Non-const limb access for assembly wrappers that write into result directly.

    // Avoids const_cast UB. Caller must ensure the written values are canonical.

    limbs_type& limbs_mut() noexcept { return limbs_; }


    // Raw limb setter (no normalization) -- for use when caller guarantees canonical form.

    // Used by FieldElement52::to_fe() which already normalizes via fe52_normalize_inline.


    static FieldElement from_limbs_raw(const limbs_type& limbs) noexcept {

        FieldElement fe;

        fe.limbs_ = limbs;

        return fe;

    }


    FieldElement operator+(const FieldElement& rhs) const;

    FieldElement operator-(const FieldElement& rhs) const;

    FieldElement operator*(const FieldElement& rhs) const;

    FieldElement square() const;

    FieldElement inverse() const;


    // Square root: a^((p+1)/4) mod p.  Valid since p == 3 (mod 4).

    // Uses an optimized addition chain (~255 sqr + 13 mul).

    // Returns a root r such that r^2 == a (mod p). Caller must verify r^2==a.

    FieldElement sqrt() const;


    FieldElement& operator+=(const FieldElement& rhs);

    FieldElement& operator-=(const FieldElement& rhs);

    FieldElement& operator*=(const FieldElement& rhs);


    // Modular negation: returns p - this (mod p).

    // `magnitude` parameter exists for API compatibility with FieldElement52/26

    // (lazy-reduction magnitude tracking); ignored here since FE64 is always normalized.

    FieldElement negate(unsigned magnitude = 1) const;

    void negate_assign(unsigned magnitude = 1);


    // In-place mutable versions (modify this object directly)

    // ~10-15% faster than immutable versions due to no memory allocation

    void square_inplace();    // this = this^2 (modifies this)

    void inverse_inplace();   // this = this^-^1 (modifies this)


    bool operator==(const FieldElement& rhs) const noexcept;


    // Safe conversion to shared data type (memcpy, compiler-optimized to noop).

    // Returns by value -- no strict-aliasing UB.


    ::secp256k1::FieldElementData data() const noexcept {

        ::secp256k1::FieldElementData d;

        std::memcpy(&d, &limbs_, sizeof(d));

        return d;

    }


    static FieldElement from_data(const ::secp256k1::FieldElementData& d) {

        return from_limbs({d.limbs[0], d.limbs[1], d.limbs[2], d.limbs[3]});

    }


private:

    explicit FieldElement(const limbs_type& limbs, bool normalized);


    limbs_type limbs_{};

};


// Safe conversions for FieldElement <-> MidFieldElement (memcpy, compiler-optimized)


inline MidFieldElement toMid(const FieldElement& fe) noexcept {

    MidFieldElement mid;

    std::memcpy(&mid, &fe, sizeof(mid));

    return mid;

}


// Deferred inline definition (needs FieldElement to be complete)


inline FieldElement MidFieldElement::ToFieldElement() const noexcept {

    FieldElement::limbs_type lm;

    std::memcpy(&lm, limbs, sizeof(lm));

    return FieldElement::from_limbs_raw(lm);

}


// Compile-time verification

static_assert(sizeof(FieldElement) == sizeof(MidFieldElement),

              "FieldElement and MidFieldElement must be same size");

static_assert(sizeof(FieldElement) == 32, "Must be 256 bits");


// Cross-backend layout compatibility (shared types contract)

static_assert(sizeof(FieldElement) == sizeof(::secp256k1::FieldElementData),

              "CPU FieldElement must match shared data layout size");

static_assert(sizeof(MidFieldElement) == sizeof(::secp256k1::MidFieldElementData),

              "CPU MidFieldElement must match shared data layout size");

static_assert(sizeof(FieldElement) == 32, "Must be 256 bits");


// ============================================================================

// Montgomery Domain Constants

// ============================================================================

// Montgomery domain: R = 2^256 mod p

// For secp256k1, p = 2^256 - 0x1000003D1, so R = 0x1000003D1

//

// Usage:

//   - to_mont(a) = (a * R^2) mod p  // Convert a -> a*R

//   - from_mont(aR) = (aR * R^-^1) mod p  // Convert a*R -> a

//   - mont_mul(aR, bR) = (aR * bR * R^-^1) mod p = (ab)R  // Stays in Montgomery

//

// Benefits:

//   - Modular reduction uses cheap multiplication instead of division

//   - 10-15% faster in batch operations

//   - Required for GPU H-based inversion pipeline


namespace montgomery {

    // R = 2^256 mod p = 0x1000003D1

    inline const FieldElement& R() {

        static const FieldElement r = FieldElement::from_uint64(0x1000003D1ULL);

        return r;

    }


    // R^2 mod p = (2^256)^2 mod p = 0x000007A2000E90A1

    inline const FieldElement& R2() {

        static const FieldElement r2 = FieldElement::from_limbs(

            {0x000007A2000E90A1ULL, 0x0000000000000001ULL, 0ULL, 0ULL});

        return r2;

    }


    // R^3 mod p = (2^256)^3 mod p

    inline const FieldElement& R3() {

        static const FieldElement r3 = FieldElement::from_limbs(

            {0x002BB1E33795F671ULL, 0x0000000100000B73ULL, 0ULL, 0ULL});

        return r3;

    }


    // R^-^1 mod p = (2^256)^-^1 mod p

    inline const FieldElement& R_inv() {

        static const FieldElement r_inv = FieldElement::from_limbs(

            {0xD838091D0868192AULL, 0xBCB223FEDC24A059ULL,

             0x9C46C2C295F2B761ULL, 0xC9BD190515538399ULL});

        return r_inv;

    }


    // K = 2^32 + 977 = 0x1000003D1 (secp256k1 reduction constant)

    constexpr std::uint64_t K_MOD = 0x1000003D1ULL;

}


// ============================================================================

// Field Element Arithmetic Functions

// ============================================================================


FieldElement fe_inverse_binary(const FieldElement& value);

FieldElement fe_inverse_window4(const FieldElement& value);

FieldElement fe_inverse_addchain(const FieldElement& value);

FieldElement fe_inverse_eea(const FieldElement& value);


// Direct access to internal pow_p_minus_2 implementations for benchmarking

FieldElement pow_p_minus_2_binary(FieldElement base);

FieldElement pow_p_minus_2_window4(FieldElement base);

FieldElement pow_p_minus_2_addchain(FieldElement base);

FieldElement pow_p_minus_2_eea(FieldElement base);

FieldElement pow_p_minus_2_window_naf_v2(FieldElement base);

FieldElement pow_p_minus_2_hybrid_eea(FieldElement base);

FieldElement pow_p_minus_2_yao(FieldElement base);

FieldElement pow_p_minus_2_bos_coster(FieldElement base);

FieldElement pow_p_minus_2_ltr_precomp(FieldElement base);

FieldElement pow_p_minus_2_pippenger(FieldElement base);

FieldElement pow_p_minus_2_karatsuba(FieldElement base);

FieldElement pow_p_minus_2_booth(FieldElement base);

FieldElement pow_p_minus_2_strauss(FieldElement base);


// New optimized methods - Round 2

FieldElement pow_p_minus_2_kary16(FieldElement base);

FieldElement pow_p_minus_2_fixed_window5(FieldElement base);

FieldElement pow_p_minus_2_rtl_binary(FieldElement base);

FieldElement pow_p_minus_2_addchain_unrolled(FieldElement base);

FieldElement pow_p_minus_2_binary_opt(FieldElement base);

FieldElement pow_p_minus_2_sliding_dynamic(FieldElement base);


// Round 3 - GPU-optimized and ECC-specific

FieldElement pow_p_minus_2_fermat_gpu(FieldElement base);

FieldElement pow_p_minus_2_montgomery_redc(FieldElement base);

FieldElement pow_p_minus_2_branchless(FieldElement base);

FieldElement pow_p_minus_2_parallel_window(FieldElement base);

FieldElement pow_p_minus_2_binary_euclidean(FieldElement base);

FieldElement pow_p_minus_2_lehmer(FieldElement base);

FieldElement pow_p_minus_2_stein(FieldElement base);

FieldElement pow_p_minus_2_secp256k1_special(FieldElement base);

FieldElement pow_p_minus_2_warp_optimized(FieldElement base);

FieldElement pow_p_minus_2_double_base(const FieldElement& base);

FieldElement pow_p_minus_2_compact_table(FieldElement base);


// Wrapper functions

FieldElement fe_inverse_window_naf_v2(const FieldElement& value);

FieldElement fe_inverse_hybrid_eea(const FieldElement& value);

FieldElement fe_inverse_safegcd(const FieldElement& value);

FieldElement fe_inverse_yao(const FieldElement& value);

FieldElement fe_inverse_bos_coster(const FieldElement& value);

FieldElement fe_inverse_ltr_precomp(const FieldElement& value);

FieldElement fe_inverse_pippenger(const FieldElement& value);

FieldElement fe_inverse_karatsuba(const FieldElement& value);

FieldElement fe_inverse_booth(const FieldElement& value);

FieldElement fe_inverse_strauss(const FieldElement& value);


// New optimized wrappers

FieldElement fe_inverse_kary16(const FieldElement& value);

FieldElement fe_inverse_fixed_window5(const FieldElement& value);

FieldElement fe_inverse_rtl_binary(const FieldElement& value);

FieldElement fe_inverse_addchain_unrolled(const FieldElement& value);

FieldElement fe_inverse_binary_opt(const FieldElement& value);

FieldElement fe_inverse_sliding_dynamic(const FieldElement& value);


// Round 3 wrappers

FieldElement fe_inverse_fermat_gpu(const FieldElement& value);

FieldElement fe_inverse_montgomery_redc(const FieldElement& value);

FieldElement fe_inverse_branchless(const FieldElement& value);

FieldElement fe_inverse_parallel_window(const FieldElement& value);

FieldElement fe_inverse_binary_euclidean(const FieldElement& value);

FieldElement fe_inverse_lehmer(const FieldElement& value);

FieldElement fe_inverse_stein(const FieldElement& value);

FieldElement fe_inverse_secp256k1_special(const FieldElement& value);

FieldElement fe_inverse_warp_optimized(const FieldElement& value);

FieldElement fe_inverse_double_base(const FieldElement& value);

FieldElement fe_inverse_compact_table(const FieldElement& value);


// Montgomery batch inversion - invert N field elements simultaneously

// Uses Montgomery's trick: (a*b*c)^-1 -> compute individual a^-1, b^-1, c^-1

// Cost: 1 inverse + 3*(N-1) multiplications instead of N inverses

// For N=8: ~8 us instead of 28 us (3.5x speedup!)

void fe_batch_inverse(FieldElement* elements, size_t count);


// Zero-allocation version: uses provided scratch buffer

// scratch buffer must be at least size 'count'

void fe_batch_inverse(FieldElement* elements, size_t count, std::vector<FieldElement>& scratch);


} // namespace secp256k1::fast


// Direct 5x52 SafeGCD inverse — bypasses 4x64 intermediate.

// Input: 5 limbs (52-bit each, normalized). Output: 5 limbs (52-bit, normalized).

// Declared outside namespace for C-style linkage from FE52 code.

#if defined(__SIZEOF_INT128__)

namespace secp256k1::fast {

void fe52_inverse_safegcd_var(const std::uint64_t* in5, std::uint64_t* out5);

}

#endif


#endif /* B9C07A97_9853_412C_BCB7_F2FB19B8C1A7 */

secp256k1::fast::FieldElement
Definition field.hpp:30

secp256k1::fast::FieldElement::limbs
const limbs_type & limbs() const noexcept
Definition field.hpp:58

secp256k1::fast::FieldElement::operator+=
FieldElement & operator+=(const FieldElement &rhs)

secp256k1::fast::FieldElement::square
FieldElement square() const

secp256k1::fast::FieldElement::operator+
FieldElement operator+(const FieldElement &rhs) const

secp256k1::fast::FieldElement::parse_bytes_strict
static bool parse_bytes_strict(const std::uint8_t *bytes32, FieldElement &out) noexcept

secp256k1::fast::FieldElement::operator*=
FieldElement & operator*=(const FieldElement &rhs)

secp256k1::fast::FieldElement::limbs_mut
limbs_type & limbs_mut() noexcept
Definition field.hpp:62

secp256k1::fast::FieldElement::limbs_type
std::array< std::uint64_t, 4 > limbs_type
Definition field.hpp:32

secp256k1::fast::FieldElement::square_inplace
void square_inplace()

secp256k1::fast::FieldElement::to_bytes
std::array< std::uint8_t, 32 > to_bytes() const

secp256k1::fast::FieldElement::operator==
bool operator==(const FieldElement &rhs) const noexcept

secp256k1::fast::FieldElement::from_data
static FieldElement from_data(const ::secp256k1::FieldElementData &d)
Definition field.hpp:107

secp256k1::fast::FieldElement::FieldElement
FieldElement()

secp256k1::fast::FieldElement::inverse_inplace
void inverse_inplace()

secp256k1::fast::FieldElement::operator-=
FieldElement & operator-=(const FieldElement &rhs)

secp256k1::fast::FieldElement::from_hex
static FieldElement from_hex(const std::string &hex)

secp256k1::fast::FieldElement::zero
static FieldElement zero()

secp256k1::fast::FieldElement::from_limbs_raw
static FieldElement from_limbs_raw(const limbs_type &limbs) noexcept
Definition field.hpp:66

secp256k1::fast::FieldElement::data
::secp256k1::FieldElementData data() const noexcept
Definition field.hpp:102

secp256k1::fast::FieldElement::from_mont
static FieldElement from_mont(const FieldElement &a)

secp256k1::fast::FieldElement::from_limbs
static FieldElement from_limbs(const limbs_type &limbs)

secp256k1::fast::FieldElement::operator*
FieldElement operator*(const FieldElement &rhs) const

secp256k1::fast::FieldElement::operator-
FieldElement operator-(const FieldElement &rhs) const

secp256k1::fast::FieldElement::to_hex
std::string to_hex() const

secp256k1::fast::FieldElement::inverse
FieldElement inverse() const

secp256k1::fast::FieldElement::one
static FieldElement one()

secp256k1::fast::FieldElement::negate_assign
void negate_assign(unsigned magnitude=1)

secp256k1::fast::FieldElement::parse_bytes_strict
static bool parse_bytes_strict(const std::array< std::uint8_t, 32 > &bytes, FieldElement &out) noexcept

secp256k1::fast::FieldElement::from_uint64
static FieldElement from_uint64(std::uint64_t value)

secp256k1::fast::FieldElement::to_bytes_into
void to_bytes_into(std::uint8_t *out) const noexcept

secp256k1::fast::FieldElement::negate
FieldElement negate(unsigned magnitude=1) const

secp256k1::fast::FieldElement::from_bytes
static FieldElement from_bytes(const std::array< std::uint8_t, 32 > &bytes)

secp256k1::fast::FieldElement::sqrt
FieldElement sqrt() const

secp256k1::ct::FieldElement
secp256k1::fast::FieldElement FieldElement
Definition field.hpp:33

secp256k1::fast
Definition batch_add_affine.hpp:8

secp256k1::fast::fe_inverse_secp256k1_special
FieldElement fe_inverse_secp256k1_special(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_rtl_binary
FieldElement pow_p_minus_2_rtl_binary(FieldElement base)

secp256k1::fast::pow_p_minus_2_yao
FieldElement pow_p_minus_2_yao(FieldElement base)

secp256k1::fast::pow_p_minus_2_binary
FieldElement pow_p_minus_2_binary(FieldElement base)

secp256k1::fast::fe_inverse_strauss
FieldElement fe_inverse_strauss(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_binary_euclidean
FieldElement pow_p_minus_2_binary_euclidean(FieldElement base)

secp256k1::fast::pow_p_minus_2_addchain
FieldElement pow_p_minus_2_addchain(FieldElement base)

secp256k1::fast::fe_inverse_kary16
FieldElement fe_inverse_kary16(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_montgomery_redc
FieldElement pow_p_minus_2_montgomery_redc(FieldElement base)

secp256k1::fast::pow_p_minus_2_double_base
FieldElement pow_p_minus_2_double_base(const FieldElement &base)

secp256k1::fast::pow_p_minus_2_pippenger
FieldElement pow_p_minus_2_pippenger(FieldElement base)

secp256k1::fast::fe_inverse_bos_coster
FieldElement fe_inverse_bos_coster(const FieldElement &value)

secp256k1::fast::fe_inverse_window_naf_v2
FieldElement fe_inverse_window_naf_v2(const FieldElement &value)

secp256k1::fast::fe_inverse_ltr_precomp
FieldElement fe_inverse_ltr_precomp(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_lehmer
FieldElement pow_p_minus_2_lehmer(FieldElement base)

secp256k1::fast::fe_inverse_binary_euclidean
FieldElement fe_inverse_binary_euclidean(const FieldElement &value)

secp256k1::fast::fe_inverse_fermat_gpu
FieldElement fe_inverse_fermat_gpu(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_stein
FieldElement pow_p_minus_2_stein(FieldElement base)

secp256k1::fast::pow_p_minus_2_window4
FieldElement pow_p_minus_2_window4(FieldElement base)

secp256k1::fast::toMid
MidFieldElement toMid(const FieldElement &fe) noexcept
Definition field.hpp:118

secp256k1::fast::fe_inverse_safegcd
FieldElement fe_inverse_safegcd(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_ltr_precomp
FieldElement pow_p_minus_2_ltr_precomp(FieldElement base)

secp256k1::fast::fe_inverse_branchless
FieldElement fe_inverse_branchless(const FieldElement &value)

secp256k1::fast::fe_inverse_parallel_window
FieldElement fe_inverse_parallel_window(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_kary16
FieldElement pow_p_minus_2_kary16(FieldElement base)

secp256k1::fast::pow_p_minus_2_window_naf_v2
FieldElement pow_p_minus_2_window_naf_v2(FieldElement base)

secp256k1::fast::fe_batch_inverse
void fe_batch_inverse(FieldElement *elements, size_t count)

secp256k1::fast::pow_p_minus_2_compact_table
FieldElement pow_p_minus_2_compact_table(FieldElement base)

secp256k1::fast::pow_p_minus_2_sliding_dynamic
FieldElement pow_p_minus_2_sliding_dynamic(FieldElement base)

secp256k1::fast::fe_inverse_eea
FieldElement fe_inverse_eea(const FieldElement &value)

secp256k1::fast::fe_inverse_double_base
FieldElement fe_inverse_double_base(const FieldElement &value)

secp256k1::fast::fe_inverse_karatsuba
FieldElement fe_inverse_karatsuba(const FieldElement &value)

secp256k1::fast::fe_inverse_compact_table
FieldElement fe_inverse_compact_table(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_booth
FieldElement pow_p_minus_2_booth(FieldElement base)

secp256k1::fast::pow_p_minus_2_binary_opt
FieldElement pow_p_minus_2_binary_opt(FieldElement base)

secp256k1::fast::fe_inverse_warp_optimized
FieldElement fe_inverse_warp_optimized(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_warp_optimized
FieldElement pow_p_minus_2_warp_optimized(FieldElement base)

secp256k1::fast::fe_inverse_addchain
FieldElement fe_inverse_addchain(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_hybrid_eea
FieldElement pow_p_minus_2_hybrid_eea(FieldElement base)

secp256k1::fast::fe_inverse_montgomery_redc
FieldElement fe_inverse_montgomery_redc(const FieldElement &value)

secp256k1::fast::fe_inverse_fixed_window5
FieldElement fe_inverse_fixed_window5(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_eea
FieldElement pow_p_minus_2_eea(FieldElement base)

secp256k1::fast::fe_inverse_lehmer
FieldElement fe_inverse_lehmer(const FieldElement &value)

secp256k1::fast::fe_inverse_sliding_dynamic
FieldElement fe_inverse_sliding_dynamic(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_strauss
FieldElement pow_p_minus_2_strauss(FieldElement base)

secp256k1::fast::fe_inverse_binary
FieldElement fe_inverse_binary(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_secp256k1_special
FieldElement pow_p_minus_2_secp256k1_special(FieldElement base)

secp256k1::fast::pow_p_minus_2_fermat_gpu
FieldElement pow_p_minus_2_fermat_gpu(FieldElement base)

secp256k1::fast::pow_p_minus_2_bos_coster
FieldElement pow_p_minus_2_bos_coster(FieldElement base)

secp256k1::fast::fe_inverse_addchain_unrolled
FieldElement fe_inverse_addchain_unrolled(const FieldElement &value)

secp256k1::fast::fe_inverse_stein
FieldElement fe_inverse_stein(const FieldElement &value)

secp256k1::fast::fe_inverse_binary_opt
FieldElement fe_inverse_binary_opt(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_parallel_window
FieldElement pow_p_minus_2_parallel_window(FieldElement base)

secp256k1::fast::fe_inverse_window4
FieldElement fe_inverse_window4(const FieldElement &value)

secp256k1::fast::fe_inverse_booth
FieldElement fe_inverse_booth(const FieldElement &value)

secp256k1::fast::fe_inverse_pippenger
FieldElement fe_inverse_pippenger(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_addchain_unrolled
FieldElement pow_p_minus_2_addchain_unrolled(FieldElement base)

secp256k1::fast::pow_p_minus_2_fixed_window5
FieldElement pow_p_minus_2_fixed_window5(FieldElement base)

secp256k1::fast::pow_p_minus_2_karatsuba
FieldElement pow_p_minus_2_karatsuba(FieldElement base)

secp256k1::fast::fe_inverse_rtl_binary
FieldElement fe_inverse_rtl_binary(const FieldElement &value)

secp256k1::fast::pow_p_minus_2_branchless
FieldElement pow_p_minus_2_branchless(FieldElement base)

secp256k1::fast::fe_inverse_hybrid_eea
FieldElement fe_inverse_hybrid_eea(const FieldElement &value)

secp256k1::fast::fe_inverse_yao
FieldElement fe_inverse_yao(const FieldElement &value)

secp256k1::FieldElementData
Definition types.hpp:31

secp256k1::MidFieldElementData
Definition types.hpp:39

secp256k1::fast::MidFieldElement
Definition field.hpp:23

secp256k1::fast::MidFieldElement::limbs
std::uint32_t limbs[8]
Definition field.hpp:24

secp256k1::fast::MidFieldElement::ToFieldElement
FieldElement ToFieldElement() const noexcept
Definition field.hpp:125