Add PrimeField::to_le_repr

tarcieri · tarcieri · commit 70dccf5d74b7 · 2026-03-31T08:12:42.000-06:00
The current `group::Wnaf` implementation assumes `PrimeField::to_repr` returns a little endian encoding, so it doesn't work with our implementations of the NIST P-curves, which return a big endian SEC1 encoding. Following the general idea from RustCrypto/group#10, this adds an API which is guaranteed to return a little endian encoding which will always work with the current implementation of `group::Wnaf`. This is largely a stopgap solution which allows us to begin using `group::Wnaf` at all, though ideally we can find a more elegant upstream solution.
diff --git a/src/lib.rs b/src/lib.rs
@@ -304,6 +304,15 @@ pub trait PrimeField: Field + From<u64> {
     /// encodings of field elements should be treated as opaque.
     fn to_repr(&self) -> Self::Repr;
 
+    /// Convert an element of the prime field into a little endian byte representation.
+    ///
+    /// The provided implementation assumes [`PrimeField::to_repr`] returns a little endian
+    /// representation and needs to be overridden if it uses big endian.
+    // TODO(tarcieri): this is largely a hack to make `group::Wnaf` work. Ideally it could go away.
+    fn to_le_repr(&self) -> Self::Repr {
+        self.to_repr()
+    }
+
     /// Returns true iff this element is odd.
     fn is_odd(&self) -> Choice;
 
