add naive reference implementation of MultiExponentiation for cross-validation with gnark fast impl

jwasinger · jwasinger · commit 084a1101cbb7 · 2024-08-13T18:07:08.000-07:00
diff --git a/tests/fuzzers/bls12381/bls12381_fuzz.go b/tests/fuzzers/bls12381/bls12381_fuzz.go
@@ -203,12 +203,10 @@ func fuzzCrossG1MultiExp(data []byte) int {
 	cp := new(bls12381.G1Affine)
 	cp.MultiExp(gnarkPoints, gnarkScalars, ecc.MultiExpConfig{})
 
-	/* TODO: add back but compare against reference impl
-	// compare result
-	if !(bytes.Equal(cp.Marshal(), g1.ToBytes(&kp))) {
-		panic("G1 multi exponentiation mismatch gnark / geth ")
+	expected := multiExpG1(gnarkPoints, gnarkScalars)
+	if !bytes.Equal(cp.Marshal(), expected.Marshal()) {
+		panic("g1 multi exponentiation mismatch")
 	}
-	*/
 	return 1
 }
 
@@ -267,3 +265,16 @@ func randomScalar(r io.Reader, max *big.Int) (k *big.Int, err error) {
 		}
 	}
 }
+
+// multiExpG1 is a naive implementation of G1 multi-exponentiation
+func multiExpG1(gs []bls12381.G1Affine, scalars []fr.Element) bls12381.G1Affine {
+	_, _, res, _ := bls12381.Generators()
+	for i := 0; i < len(gs); i++ {
+		tmp := new(bls12381.G1Affine)
+		sb := scalars[i].Bytes()
+		scalarBytes := new(big.Int).SetBytes(sb[:])
+		tmp.ScalarMultiplication(&gs[i], scalarBytes)
+		res.Add(&res, tmp)
+	}
+	return res
+}
