Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

changes to remove unwanted calculations #19

Merged
merged 22 commits into from
Aug 14, 2024
Merged

changes to remove unwanted calculations #19

Changes from 7 commits
Commits
Show all changes
22 commits
Select commit Hold shift + click to select a range
6991628
changes to remove unwanted calculations
Jul 28, 2024
7c4adb6
adding missing check when proving past end
Jul 28, 2024
5e896fb
cargo fmt formatted
Aug 2, 2024
2551da6
adding missing check
Aug 2, 2024
45de063
unused import apparently?
Aug 2, 2024
4f4cd78
removing the check
Aug 2, 2024
28499b0
Merge branch 'eigenda-v3.0.3' into fixing-proof-calculation
Aug 8, 2024
cb69b6d
removing unwanted comments
Aug 8, 2024
7fe62ad
moving from eval to coeff based on discussion
Aug 8, 2024
eaceba5
remaining changes to arbitrator
Aug 8, 2024
fedcfbb
changing submodules for testing
Aug 8, 2024
679f60f
rust fmt fix
Aug 9, 2024
cd7b3b8
adding keccak hasing
Aug 13, 2024
9f798b4
Merge branch 'eigenda-v3.0.3' into fixing-proof-calculation
Aug 13, 2024
38920de
cleanup
Aug 13, 2024
4f96110
using keccak hash instead of sha256. Removing 0x01 first byte set
Aug 13, 2024
1b6043b
cargo fmt and removing unwanted println
Aug 13, 2024
ceb177b
Merge branch 'eigenda-v3.0.3' into fixing-proof-calculation
anupsv Aug 13, 2024
e64ad57
pointing to custom branch
Aug 13, 2024
fdc5e39
submodules chnages
Aug 13, 2024
d1a77ba
changing hash commit
Aug 14, 2024
7236bfe
linting issue
Aug 14, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 23 additions & 21 deletions arbitrator/prover/src/kzgbn254.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,6 @@ use eyre::{ensure, Result};
use hex::encode;
use kzgbn254::{blob::Blob, kzg::Kzg, polynomial::PolynomialFormat};
use num::BigUint;
use num_traits::ToBytes;
use sha2::{Digest, Sha256};
use std::io::Write;

Expand Down Expand Up @@ -51,7 +50,7 @@ pub fn prove_kzg_preimage_bn254(
let blob_commitment = kzg.commit(&blob_polynomial_evaluation_form)?;

let mut commitment_bytes = Vec::new();
blob_commitment.serialize_uncompressed(&mut commitment_bytes)?;
blob_commitment.serialize_uncompressed(&mut commitment_bytes)?; // why uncompressed ?

let mut expected_hash: Bytes32 = Sha256::digest(&*commitment_bytes).into();
expected_hash[0] = 1;
Expand All @@ -69,39 +68,29 @@ pub fn prove_kzg_preimage_bn254(
offset,
);

// retrieve commitment to preimage
let preimage_polynomial = blob.to_polynomial(PolynomialFormat::InCoefficientForm)?;
let preimage_commitment = kzg.commit(&preimage_polynomial)?;
let mut preimage_commitment_bytes = Vec::new();
preimage_commitment.serialize_uncompressed(&mut preimage_commitment_bytes)?;
println!(
"preimage commitment: {}",
encode(&preimage_commitment_bytes)
);

let mut proving_offset = offset;

let length_usize = preimage.len() as u64;

assert!(length_usize / 32 == preimage_polynomial.len() as u64);
assert!(length_usize / 32 == blob_polynomial_evaluation_form.len() as u64);

// address proving past end edge case later
let proving_past_end = offset as u64 >= length_usize;
if proving_past_end {
// Proving any offset proves the length which is all we need here,
// because we're past the end of the preimage.
proving_offset = 0;
proving_offset = 0; // why 0? shouldn't this fail immediately ?
anupsv marked this conversation as resolved.
Show resolved Hide resolved
anupsv marked this conversation as resolved.
Show resolved Hide resolved
}

// Y = ϕ(offset) --> evaluation point for computing quotient proof
let proven_y_fr = preimage_polynomial
// confirming if this is actually ok ?
let proven_y_fr = blob_polynomial_evaluation_form
.get_at_index(proving_offset as usize / 32)
.ok_or_else(|| {
eyre::eyre!(
"Index ({}) out of bounds for preimage of length {} with data of ({} field elements x 32 bytes)",
proving_offset,
length_usize,
preimage_polynomial.len()
blob_polynomial_evaluation_form.len()
)
})?;

Expand All @@ -112,6 +101,7 @@ pub fn prove_kzg_preimage_bn254(
let proven_y = proven_y_fr.into_bigint().to_bytes_be();
let z = z_fr.into_bigint().to_bytes_be();

// probably should be a constant on the contract.
let g2_generator = G2Affine::generator();
let z_g2 = (g2_generator * z_fr).into_affine();

Expand All @@ -123,8 +113,20 @@ pub fn prove_kzg_preimage_bn254(
.clone();
let g2_tau_minus_g2_z = (g2_tau - z_g2).into_affine();

let kzg_proof = kzg
.compute_kzg_proof_with_roots_of_unity(&preimage_polynomial, proving_offset as u64 / 32)?;
let kzg_proof = kzg.compute_kzg_proof_with_roots_of_unity(
&blob_polynomial_evaluation_form,
proving_offset as u64 / 32,
)?;

// This should cause failure when proving past offset.
if !proving_past_end {
anupsv marked this conversation as resolved.
Show resolved Hide resolved
// This is required, but confirming what is the right way.
// ensure!(
// *proven_y == preimage[offset_usize..offset_usize + 32],
// "KZG proof produced wrong preimage for offset {}",
// offset,
// );
}

let xminusz_x0: BigUint = g2_tau_minus_g2_z.x.c0.into();
let xminusz_x1: BigUint = g2_tau_minus_g2_z.x.c1.into();
Expand All @@ -139,8 +141,8 @@ pub fn prove_kzg_preimage_bn254(
append_left_padded_biguint_be(&mut xminusz_encoded_bytes, &xminusz_y0);

// encode the commitment
let commitment_x_bigint: BigUint = preimage_commitment.x.into();
let commitment_y_bigint: BigUint = preimage_commitment.y.into();
let commitment_x_bigint: BigUint = blob_commitment.x.into();
let commitment_y_bigint: BigUint = blob_commitment.y.into();
let mut commitment_encoded_bytes = Vec::with_capacity(32);
append_left_padded_biguint_be(&mut commitment_encoded_bytes, &commitment_x_bigint);
append_left_padded_biguint_be(&mut commitment_encoded_bytes, &commitment_y_bigint);
Expand Down
Loading