Currently a bit is set to distinguish between elements of compressed and uncompressed form, a bit is set to identify the "parity" of a compressed-form element. I should set another bit to indicate it's not the point at infinity, for the reason @daira suggests here: 3faf8c5#commitcomment-23094853

Looping in zcash/zcash#2517 on this.

Once the serialization is changed (and fully tested against rejection test vectors #10) this ticket should be closed when it is specified in src/bls12_381.