--- Day changed Fri Nov 13 2015
00:07 -!- GAit [~GAit@2-230-161-158.ip202.fastwebnet.it] has joined #secp256k1
00:43 -!- fkhan [weechat@gateway/vpn/mullvad/x-ukhjypffubvqyonq] has quit [Ping timeout: 255 seconds]
00:55 -!- fkhan [weechat@gateway/vpn/mullvad/x-iruedugszfxodfum] has joined #secp256k1
00:56 -!- aburan28 [~xypher@static-108-45-93-78.washdc.fios.verizon.net] has quit [Ping timeout: 244 seconds]
04:37 -!- jtimon [~quassel@74.29.134.37.dynamic.jazztel.es] has joined #secp256k1
05:40 -!- sipa_ is now known as sipa
05:50 -!- sipa [~pw@2a02:348:86:3011::1] has quit [Changing host]
05:50 -!- sipa [~pw@unaffiliated/sipa1024] has joined #secp256k1
06:29 -!- jtimon [~quassel@74.29.134.37.dynamic.jazztel.es] has quit [Ping timeout: 244 seconds]
08:23 < andytoshi> hmm, so i can't tell exactly what's slowing the tests in #290. except definitely *not* the jacobi symbol
08:23 < andytoshi> on my system the tests binary takes 17 secs with GMP vs 21 secs with my code
08:23 < andytoshi> profiling shows a long of time spent doing field inversions in the ECDSA test, but replacing that with const-time only gets me down to 20 secs
08:24 < andytoshi> also shows a bunch of time in the scalar_tests doing modular inversion, but cutting the count on that down also only gets me to 20 secs
08:25 < andytoshi> i suspect that even with GMP we're close to the edge of what travis will time out on
08:26 < sipa> usually the unit tests run within 1-2 minutes
08:26 < sipa> these time out after 10 minutes!
08:26 < andytoshi> hmmmm, i can't reproduce that
08:29 < andytoshi> i've got a copy of gcc 4.9 on my IRC system, i'll try with that..
08:32 < andytoshi> nope, wtf
08:33 < andytoshi> i'm also weirded out that travis is giving me a "shadowed variable" warning that none of my other compilers will
08:37 < andytoshi> travis says, src/num_native_impl.h:315:19: warning: declaration of ‘div’ shadows a global declaration [-Wshadow]
08:37 < andytoshi> but you can grep the codebase for 'div', this is never declared except at src/num_native_impl.h:315:19
08:38 < sipa> maybe there is a system function with that name?
08:39 < sipa> yup!
08:39 < andytoshi> lol, i guess that's a gcc bug then is why my newer compilers don't flag it..
08:50 -!- GAit [~GAit@2-230-161-158.ip202.fastwebnet.it] has quit [Quit: Leaving.]
08:50 -!- GAit [~GAit@2-230-161-158.ip202.fastwebnet.it] has joined #secp256k1
08:50 -!- GAit [~GAit@2-230-161-158.ip202.fastwebnet.it] has quit [Client Quit]
10:29 -!- nullbyte [~NSA@cpe-66-68-54-206.austin.res.rr.com] has joined #secp256k1
11:15 -!- jtimon [~quassel@74.29.134.37.dynamic.jazztel.es] has joined #secp256k1
14:11 < gmaxwell> hm. does our thinking about the quadratic residue y test help at all with x-only ecdh?
14:48 < sipa> how so?
14:55 -!- nullbyte [~NSA@cpe-66-68-54-206.austin.res.rr.com] has quit [Ping timeout: 240 seconds]
14:57 -!- nullbyte [~NSA@cpe-66-68-54-206.austin.res.rr.com] has joined #secp256k1
16:31 -!- nullbyte_ [~NSA@cpe-66-68-54-206.austin.res.rr.com] has joined #secp256k1
16:32 -!- nullbyte_ is now known as Guest22102
18:09 < gmaxwell> sipa: multiplication has a consistent action on the jacobi symbol of y.
18:09 < gmaxwell> sage: P1 = C.random_point(); P2 = -P1
18:09 < gmaxwell> sage: all([(n*P1).xy()[1].is_square() != (n*P2).xy()[1].is_square() for n in range(1,1000)])
18:10 < gmaxwell> (True)
18:11 < gmaxwell> So I think if we know the input jacobi (by using that as the definition of the sign in a compressed point form). Then we only need measure the action on the jacobi symbol in the isomorphic multiplication, to know the final jacobi symbol.
18:18 < gmaxwell> I think it might only take one jacobi symbol to do this, because the isomorphism is something like P.x = y^2, P.y = x, P.z = y^4;  so the initial jacobi symbol is defined, so we just need to learn the final one to know if multiplication by n swapped it or not.
18:29 < gmaxwell> oh bleh, I think the action holds across change of sign but not the isomorphism.
18:56 -!- TD-Linux [~Thomas@about/essy/indecisive/TD-Linux] has quit [Ping timeout: 246 seconds]
18:58 -!- TD-Linux [~Thomas@about/essy/indecisive/TD-Linux] has joined #secp256k1
--- Log closed Fri Nov 13 21:09:23 2015
--- Log opened Fri Nov 13 21:10:10 2015
21:10 -!- kanzure_ [~kanzure@unaffiliated/kanzure] has joined #secp256k1
21:10 -!- Irssi: #secp256k1: Total of 26 nicks [0 ops, 0 halfops, 0 voices, 26 normal]
21:14 -!- Netsplit *.net <-> *.split quits: kanzure
21:19 -!- Irssi: Join to #secp256k1 was synced in 590 secs
21:31 -!- jtimon [~quassel@74.29.134.37.dynamic.jazztel.es] has quit [Ping timeout: 264 seconds]
21:48 -!- luke-jr_ [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1
21:51 -!- Luke-Jr [~luke-jr@unaffiliated/luke-jr] has quit [Ping timeout: 250 seconds]
21:51 -!- zmanian_ [uid113594@gateway/web/irccloud.com/x-ctiruyqstvnupaaf] has quit [Ping timeout: 250 seconds]
21:51 -!- midnightmagic [~midnightm@unaffiliated/midnightmagic] has quit [Ping timeout: 250 seconds]
21:52 -!- zmanian_ [uid113594@gateway/web/irccloud.com/x-gsfqmaxordvbkuwq] has joined #secp256k1
21:52 -!- midnightmagic [~midnightm@unaffiliated/midnightmagic] has joined #secp256k1
22:08 -!- luke-jr_ is now known as Luke-Jr