Robin Salen

Checks to do before official release: - [ ] add a CHANGELOG.md - [X] add a SECURITY.md - [ ] check rustdoc - [ ] check documentation/README - [ ]...

We currently support two types of encoding: - `CanonicalSerialize` / `CanonicalDeserialize` -> those are easily derived as all our wrapper types rely on `arkworks` traits that do implement those; -...

This PR adds a module for BLS12 curves. Note that the search, similarly to the code for BN curves, does not implement the subgroup security check mentioned in #3.

Faster squaring in Fp

1

[This paper](https://eprint.iacr.org/2020/1407.pdf) introduces a faster way than Tonelli-Shanks to compute the square root of a field element if the field characteristic is highly 2-adic. According to the table 1 page...

We were originally using Montgomery form for representing base field and scalar field elements, which has then be removed in favour of a canonical encoding for the base prime field,...

Now that inline assembly is stable with Rust 1.59.0 (https://blog.rust-lang.org/2022/02/24/Rust-1.59.0.html), it may be interesting to include conditional assembly feature to speed-up some arithmetic operations.

The current generator point, while not random (as coming from the "Topos" encoded string), still suffers from a non-standard generation procedure. In addition, having a hash-to-curve algorithm would be a...

Removes a constraint that asserts nothing in the evaluation of `ShiftRightChip`. Note that I haven't reviewed the whole associated constraint set, hence do not know if this is a miswritten...