Skip to content

Commit

Permalink
837 - compute hints on TS and pass them to ordering circuit
Browse files Browse the repository at this point in the history
  • Loading branch information
jeanmon committed Sep 6, 2023
1 parent cc4ccd3 commit 6ea86e7
Show file tree
Hide file tree
Showing 3 changed files with 46 additions and 7 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,6 @@
#include "aztec3/circuits/abis/private_kernel/private_kernel_inputs_ordering.hpp"
#include "aztec3/circuits/abis/read_request_membership_witness.hpp"
#include "aztec3/circuits/apps/test_apps/escrow/deposit.hpp"
#include "aztec3/circuits/hash.hpp"
#include "aztec3/circuits/kernel/private/common.hpp"
#include "aztec3/circuits/kernel/private/init.hpp"
#include "aztec3/constants.hpp"
Expand Down Expand Up @@ -176,7 +175,7 @@ TEST_F(native_private_kernel_tests, native_empty_nullified_commitment_respected)

private_inputs_inner.private_call.call_stack_item.public_inputs.nullified_commitments[0] =
fr(EMPTY_NULLIFIED_COMMITMENT);
private_inputs_inner.private_call.call_stack_item.public_inputs.nullified_commitments[1] = fr(23);
private_inputs_inner.private_call.call_stack_item.public_inputs.nullified_commitments[1] = fr(33);

// update the private call stack contents to reflect the above changes which affect the item hash
private_inputs_inner.previous_kernel.public_inputs.end.private_call_stack[0] =
Expand All @@ -203,7 +202,9 @@ TEST_F(native_private_kernel_tests, native_empty_nullified_commitment_respected)
auto& previous_kernel = private_inputs_inner.previous_kernel;
previous_kernel.public_inputs = public_inputs;

PrivateKernelInputsOrdering<NT> private_inputs{ .previous_kernel = previous_kernel };
PrivateKernelInputsOrdering<NT> private_inputs{ .previous_kernel = previous_kernel,
.nullifier_commitment_hints =
std::array<fr, MAX_NEW_NULLIFIERS_PER_TX>{ 0, 1 } };

auto final_public_inputs = native_private_kernel_circuit_ordering(builder, private_inputs);

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -92,19 +92,26 @@ void match_nullifiers_to_commitments_and_squash(
DummyCircuitBuilder& builder,
std::array<NT::fr, MAX_NEW_NULLIFIERS_PER_TX>& new_nullifiers,
std::array<NT::fr, MAX_NEW_NULLIFIERS_PER_TX> const& nullified_commitments,
std::array<NT::fr, MAX_NEW_NULLIFIERS_PER_TX> const& nullifier_commitment_hints,
std::array<NT::fr, MAX_NEW_COMMITMENTS_PER_TX>& new_commitments)
{
// match reads to commitments from the previous call(s)
// match nullifiers/nullified_commitments to commitments from the previous call(s)
for (size_t n_idx = 0; n_idx < MAX_NEW_NULLIFIERS_PER_TX; n_idx++) {
const auto& nullified_commitment = nullified_commitments[n_idx];
const auto& nullifier_commitment_hint = nullifier_commitment_hints[n_idx];
const auto hint_pos = static_cast<size_t>(uint64_t(nullifier_commitment_hint));
// Nullified_commitment of value `EMPTY_NULLIFIED_COMMITMENT` implies non-transient (persistable)
// nullifier in which case no attempt will be made to match it to a commitment.
// Non-empty nullified_commitment implies transient nullifier which MUST be matched to a commitment below!
// 0-valued nullified_commitment is empty and will be ignored
if (nullified_commitments[n_idx] != NT::fr(0) &&
nullified_commitments[n_idx] != NT::fr(EMPTY_NULLIFIED_COMMITMENT)) {
size_t match_pos = MAX_NEW_COMMITMENTS_PER_TX;
// TODO(https://github.com/AztecProtocol/aztec-packages/issues/837): inefficient
// O(n^2) inner loop will be optimized via matching hints

if (hint_pos < MAX_NEW_COMMITMENTS_PER_TX) {
match_pos = nullified_commitment == new_commitments[hint_pos] ? hint_pos : match_pos;
}

for (size_t c_idx = 0; c_idx < MAX_NEW_COMMITMENTS_PER_TX; c_idx++) {
// If there are multiple matches, this picks the last one
match_pos = (nullified_commitments[n_idx] == new_commitments[c_idx]) ? c_idx : match_pos;
Expand Down Expand Up @@ -180,6 +187,7 @@ KernelCircuitPublicInputsFinal<NT> native_private_kernel_circuit_ordering(
match_nullifiers_to_commitments_and_squash(builder,
public_inputs.end.new_nullifiers,
public_inputs.end.nullified_commitments,
private_inputs.nullifier_commitment_hints,
public_inputs.end.new_commitments);

// tx hash
Expand Down
32 changes: 31 additions & 1 deletion yarn-project/aztec-rpc/src/kernel_prover/kernel_prover.ts
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ import {
makeEmptyProof,
makeTuple,
} from '@aztec/circuits.js';
import { EMPTY_NULLIFIED_COMMITMENT } from '@aztec/circuits.js';
import { Tuple, assertLength } from '@aztec/foundation/serialize';

import { KernelProofCreator, ProofCreator, ProofOutput, ProofOutputFinal } from './proof_creator.js';
Expand Down Expand Up @@ -176,10 +177,16 @@ export class KernelProver {
output.publicInputs.end.readRequests,
output.publicInputs.end.newCommitments,
);

const nullifierCommitmentHints = this.getNullifierHints(
output.publicInputs.end.nullifiedCommitments,
output.publicInputs.end.newCommitments,
);

const privateInputs = new PrivateKernelInputsOrdering(
previousKernelData,
readCommitmentHints,
makeTuple(MAX_NEW_NULLIFIERS_PER_TX, Fr.zero),
nullifierCommitmentHints,
);
const outputFinal = await this.proofCreator.createProofOrdering(privateInputs);

Expand Down Expand Up @@ -269,4 +276,27 @@ export class KernelProver {
}
return hints;
}

private getNullifierHints(
nullifiedCommitments: Tuple<Fr, typeof MAX_NEW_NULLIFIERS_PER_TX>,
commitments: Tuple<Fr, typeof MAX_NEW_COMMITMENTS_PER_TX>,
): Tuple<Fr, typeof MAX_NEW_NULLIFIERS_PER_TX> {
const hints = makeTuple(MAX_NEW_NULLIFIERS_PER_TX, Fr.zero);
for (let i = 0; i < MAX_NEW_NULLIFIERS_PER_TX; i++) {
if (!nullifiedCommitments[i].isZero() && !nullifiedCommitments[i].equals(new Fr(EMPTY_NULLIFIED_COMMITMENT))) {
const equalToCommitment = (cmt: Fr) => cmt.equals(nullifiedCommitments[i]);
const result = commitments.findIndex(equalToCommitment);
if (result == -1) {
throw new Error(
`The nullified commitment at index ${i} with value ${nullifiedCommitments[
i
].toString()} does not match to any commitment.`,
);
} else {
hints[i] = new Fr(result);
}
}
}
return hints;
}
}

0 comments on commit 6ea86e7

Please sign in to comment.