sp_pcd_circuits.hpp
Go to the documentation of this file.
1 //---------------------------------------------------------------------------//
2 // Copyright (c) 2018-2021 Mikhail Komarov <nemo@nil.foundation>
3 // Copyright (c) 2020-2021 Nikita Kaskov <nbering@nil.foundation>
4 //
5 // MIT License
6 //
7 // Permission is hereby granted, free of charge, to any person obtaining a copy
8 // of this software and associated documentation files (the "Software"), to deal
9 // in the Software without restriction, including without limitation the rights
10 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
11 // copies of the Software, and to permit persons to whom the Software is
12 // furnished to do so, subject to the following conditions:
13 //
14 // The above copyright notice and this permission notice shall be included in all
15 // copies or substantial portions of the Software.
16 //
17 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
18 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
19 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
20 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
21 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
22 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
23 // SOFTWARE.
24 //---------------------------------------------------------------------------//
25 // @file Declaration of functionality for creating and using the two PCD circuits in
26 // a single-predicate PCD construction.
27 //
28 // The implementation follows, extends, and optimizes the approach described
29 // in \[BCTV14]. At high level, there is a "compliance step" circuit and a
30 // "translation step" circuit. For more details see Section 4 of \[BCTV14].
31 //
32 //
33 // References:
34 //
35 // \[BCTV14]:
36 // "Scalable Zero Knowledge via Cycles of Elliptic Curves",
37 // Eli Ben-Sasson, Alessandro Chiesa, Eran Tromer, Madars Virza,
38 // CRYPTO 2014,
39 // <http://eprint.iacr.org/2014/595>
40 //---------------------------------------------------------------------------//
41 
42 #ifndef CRYPTO3_ZK_SP_PCD_CIRCUITS_HPP
43 #define CRYPTO3_ZK_SP_PCD_CIRCUITS_HPP
44 
45 #include <nil/crypto3/zk/snark/components/component_from_r1cs.hpp>
46 #include <nil/crypto3/zk/snark/components/hashes/crh_component.hpp>
47 #include <nil/crypto3/zk/snark/components/pairing/pairing_params.hpp>
48 #include <nil/crypto3/zk/snark/components/verifiers/r1cs_ppzksnark_verifier_component.hpp>
49 
50 #include <nil/crypto3/zk/snark/blueprint.hpp>
51 #include <nil/crypto3/zk/snark/schemes/pcd/r1cs_pcd/compliance_predicate/cp_handler.hpp>
52 
53 namespace nil {
54  namespace crypto3 {
55  namespace zk {
56  namespace snark {
57 
58  /**************************** Compliance step ********************************/
59 
66  template<typename CurveType>
67  class sp_compliance_step_pcd_circuit_maker {
68  public:
69  typedef typename CurveType::scalar_field_type FieldType;
70 
71  r1cs_pcd_compliance_predicate<FieldType> compliance_predicate;
72 
73  blueprint<FieldType> bp;
74 
75  variable<FieldType> zero;
76 
77  std::shared_ptr<block_variable<FieldType>> block_for_outgoing_message;
78  std::shared_ptr<crh_with_field_out_component<FieldType>> hash_outgoing_message;
79 
80  std::vector<block_variable<FieldType>> blocks_for_incoming_messages;
81  std::vector<blueprint_variable_vector<FieldType>>
82  sp_translation_step_vk_and_incoming_message_payload_digests;
83  std::vector<multipacking_component<FieldType>>
84  unpack_sp_translation_step_vk_and_incoming_message_payload_digests;
85  std::vector<blueprint_variable_vector<FieldType>>
86  sp_translation_step_vk_and_incoming_message_payload_digest_bits;
87  std::vector<crh_with_field_out_component<FieldType>> hash_incoming_messages;
88 
89  std::shared_ptr<r1cs_ppzksnark_verification_key_variable<CurveType>> sp_translation_step_vk;
90  blueprint_variable_vector<FieldType> sp_translation_step_vk_bits;
91 
92  variable<FieldType> outgoing_message_type;
93  blueprint_variable_vector<FieldType> outgoing_message_payload;
94  blueprint_variable_vector<FieldType> outgoing_message_vars;
95 
96  variable<FieldType> arity;
97  std::vector<variable<FieldType>> incoming_message_types;
98  std::vector<blueprint_variable_vector<FieldType>> incoming_message_payloads;
99  std::vector<blueprint_variable_vector<FieldType>> incoming_message_vars;
100 
101  blueprint_variable_vector<FieldType> local_data;
102  blueprint_variable_vector<FieldType> cp_witness;
103  std::shared_ptr<component_from_r1cs<FieldType>> compliance_predicate_as_component;
104 
105  blueprint_variable_vector<FieldType> outgoing_message_bits;
106  std::shared_ptr<multipacking_component<FieldType>> unpack_outgoing_message;
107 
108  std::vector<blueprint_variable_vector<FieldType>> incoming_messages_bits;
109  std::vector<multipacking_component<FieldType>> unpack_incoming_messages;
110 
111  blueprint_variable_vector<FieldType> sp_compliance_step_pcd_circuit_input;
112  blueprint_variable_vector<FieldType> padded_translation_step_vk_and_outgoing_message_digest;
113  std::vector<blueprint_variable_vector<FieldType>>
114  padded_translation_step_vk_and_incoming_messages_digests;
115 
116  std::vector<blueprint_variable_vector<FieldType>> verifier_input;
117  std::vector<r1cs_ppzksnark_proof_variable<CurveType>> proof;
118  variable<FieldType> verification_result;
119  std::vector<r1cs_ppzksnark_verifier_component<CurveType>> verifiers;
120 
121  sp_compliance_step_pcd_circuit_maker(
122  const r1cs_pcd_compliance_predicate<FieldType> &compliance_predicate);
123  void generate_r1cs_constraints();
124  r1cs_constraint_system<FieldType> get_circuit() const;
125 
126  void generate_r1cs_witness(
127  const r1cs_ppzksnark_verification_key<other_curve<CurveType>> &translation_step_pcd_circuit_vk,
128  const r1cs_pcd_compliance_predicate_primary_input<FieldType>
129  &compliance_predicate_primary_input,
130  const r1cs_pcd_compliance_predicate_auxiliary_input<FieldType>
131  &compliance_predicate_auxiliary_input,
132  const std::vector<r1cs_ppzksnark_proof<other_curve<CurveType>>> &incoming_proofs);
133  r1cs_primary_input<FieldType> get_primary_input() const;
134  r1cs_auxiliary_input<FieldType> get_auxiliary_input() const;
135 
136  static std::size_t field_logsize();
137  static std::size_t field_capacity();
138  static std::size_t input_size_in_elts();
139  static std::size_t input_capacity_in_bits();
140  static std::size_t input_size_in_bits();
141  };
142 
143  /*************************** Translation step ********************************/
144 
150  template<typename CurveType>
151  class sp_translation_step_pcd_circuit_maker {
152  public:
153  typedef typename CurveType::scalar_field_type FieldType;
154 
155  blueprint<FieldType> bp;
156 
157  blueprint_variable_vector<FieldType> sp_translation_step_pcd_circuit_input;
158  blueprint_variable_vector<FieldType> unpacked_sp_translation_step_pcd_circuit_input;
159  blueprint_variable_vector<FieldType> verifier_input;
160  std::shared_ptr<multipacking_component<FieldType>> unpack_sp_translation_step_pcd_circuit_input;
161 
162  std::shared_ptr<r1cs_ppzksnark_preprocessed_r1cs_ppzksnark_verification_key_variable<CurveType>>
163  hardcoded_sp_compliance_step_vk;
164  std::shared_ptr<r1cs_ppzksnark_proof_variable<CurveType>> proof;
165  std::shared_ptr<r1cs_ppzksnark_online_verifier_component<CurveType>> online_verifier;
166 
167  sp_translation_step_pcd_circuit_maker(
168  const r1cs_ppzksnark_verification_key<other_curve<CurveType>> &compliance_step_vk);
169  void generate_r1cs_constraints();
170  r1cs_constraint_system<FieldType> get_circuit() const;
171 
172  void generate_r1cs_witness(
173  const r1cs_primary_input<typename CurveType::scalar_field_type>
174  translation_step_input,
175  const r1cs_ppzksnark_proof<other_curve<CurveType>> &compliance_step_proof);
176  r1cs_primary_input<FieldType> get_primary_input() const;
177  r1cs_auxiliary_input<FieldType> get_auxiliary_input() const;
178 
179  static std::size_t field_logsize();
180  static std::size_t field_capacity();
181  static std::size_t input_size_in_elts();
182  static std::size_t input_capacity_in_bits();
183  static std::size_t input_size_in_bits();
184  };
185 
186  /****************************** Input maps ***********************************/
187 
191  template<typename CurveType>
192  r1cs_primary_input<typename CurveType::scalar_field_type> get_sp_compliance_step_pcd_circuit_input(
193  const std::vector<bool> &sp_translation_step_vk_bits,
194  const r1cs_pcd_compliance_predicate_primary_input<typename CurveType::scalar_field_type>
195  &primary_input);
196 
200  template<typename CurveType>
201  r1cs_primary_input<typename CurveType::scalar_field_type> get_sp_translation_step_pcd_circuit_input(
202  const std::vector<bool> &sp_translation_step_vk_bits,
203  const r1cs_pcd_compliance_predicate_primary_input<
204  other_curve<CurveType>::scalar_field_type::value_type> &primary_input);
205 
206  template<typename CurveType>
207  sp_compliance_step_pcd_circuit_maker<CurveType>::sp_compliance_step_pcd_circuit_maker(
208  const r1cs_pcd_compliance_predicate<FieldType> &compliance_predicate) :
209  compliance_predicate(compliance_predicate) {
210  /* calculate some useful sizes */
211  assert(compliance_predicate.is_well_formed());
212  assert(compliance_predicate.has_equal_input_and_output_lengths());
213 
214  const std::size_t compliance_predicate_arity = compliance_predicate.max_arity;
215  const std::size_t digest_size = crh_with_field_out_component<FieldType>::get_digest_len();
216  const std::size_t msg_size_in_bits =
217  field_logsize() * (1 + compliance_predicate.outgoing_message_payload_length);
218  const std::size_t sp_translation_step_vk_size_in_bits =
219  r1cs_ppzksnark_verification_key_variable<CurveType>::size_in_bits(
220  sp_translation_step_pcd_circuit_maker<other_curve<CurveType>>::input_size_in_elts());
221  const std::size_t padded_verifier_input_size =
222  sp_translation_step_pcd_circuit_maker<other_curve<CurveType>>::input_capacity_in_bits();
223 
224  const std::size_t block_size = msg_size_in_bits + sp_translation_step_vk_size_in_bits;
225  crh_with_bit_out_component<FieldType>::sample_randomness(block_size);
226 
227  /* allocate input of the compliance PCD circuit */
228  sp_compliance_step_pcd_circuit_input.allocate(bp, input_size_in_elts());
229 
230  /* allocate inputs to the compliance predicate */
231  outgoing_message_type.allocate(bp);
232  outgoing_message_payload.allocate(bp, compliance_predicate.outgoing_message_payload_length);
233 
234  outgoing_message_vars.insert(outgoing_message_vars.end(), outgoing_message_type);
235  outgoing_message_vars.insert(outgoing_message_vars.end(), outgoing_message_payload.begin(),
236  outgoing_message_payload.end());
237 
238  arity.allocate(bp);
239 
240  incoming_message_types.resize(compliance_predicate_arity);
241  incoming_message_payloads.resize(compliance_predicate_arity);
242  incoming_message_vars.resize(compliance_predicate_arity);
243  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
244  incoming_message_types[i].allocate(bp);
245  incoming_message_payloads[i].allocate(bp, compliance_predicate.outgoing_message_payload_length);
246 
247  incoming_message_vars[i].insert(incoming_message_vars[i].end(), incoming_message_types[i]);
248  incoming_message_vars[i].insert(incoming_message_vars[i].end(),
249  incoming_message_payloads[i].begin(),
250  incoming_message_payloads[i].end());
251  }
252 
253  local_data.allocate(bp, compliance_predicate.local_data_length);
254  cp_witness.allocate(bp, compliance_predicate.witness_length);
255 
256  /* convert compliance predicate from a constraint system into a component */
257  blueprint_variable_vector<FieldType> incoming_messages_concat;
258  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
259  incoming_messages_concat.insert(incoming_messages_concat.end(),
260  incoming_message_vars[i].begin(),
261  incoming_message_vars[i].end());
262  }
263 
264  compliance_predicate_as_component.reset(new component_from_r1cs<FieldType>(
265  bp,
266  {outgoing_message_vars, blueprint_variable_vector<FieldType>(1, arity),
267  incoming_messages_concat, local_data, cp_witness},
268  compliance_predicate.constraint_system));
269 
270  /* unpack messages to bits */
271  outgoing_message_bits.allocate(bp, msg_size_in_bits);
272  unpack_outgoing_message.reset(new multipacking_component<FieldType>(
273  bp, outgoing_message_bits, outgoing_message_vars, field_logsize()));
274 
275  incoming_messages_bits.resize(compliance_predicate_arity);
276  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
277  incoming_messages_bits[i].allocate(bp, msg_size_in_bits);
278  unpack_incoming_messages.emplace_back(multipacking_component<FieldType>(
279  bp, incoming_messages_bits[i], incoming_message_vars[i], field_logsize()));
280  }
281 
282  /* allocate digests */
283  sp_translation_step_vk_and_incoming_message_payload_digests.resize(compliance_predicate_arity);
284  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
285  sp_translation_step_vk_and_incoming_message_payload_digests[i].allocate(bp, digest_size);
286  }
287 
288  /* allocate blocks */
289  sp_translation_step_vk_bits.allocate(bp, sp_translation_step_vk_size_in_bits);
290 
291  block_for_outgoing_message.reset(
292  new block_variable<FieldType>(bp, {sp_translation_step_vk_bits, outgoing_message_bits}));
293 
294  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
295  blocks_for_incoming_messages.emplace_back(
296  block_variable<FieldType>(bp, {sp_translation_step_vk_bits, incoming_messages_bits[i]}));
297  }
298 
299  /* allocate hash checkers */
300  hash_outgoing_message.reset(new crh_with_field_out_component<FieldType>(
301  bp, block_size, *block_for_outgoing_message, sp_compliance_step_pcd_circuit_input));
302 
303  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
304  hash_incoming_messages.emplace_back(crh_with_field_out_component<FieldType>(
305  bp, block_size, blocks_for_incoming_messages[i],
306  sp_translation_step_vk_and_incoming_message_payload_digests[i]));
307  }
308 
309  /* allocate useful zero variable */
310  zero.allocate(bp);
311 
312  /* prepare arguments for the verifier */
313  sp_translation_step_vk.reset(new r1cs_ppzksnark_verification_key_variable<CurveType>(
314  bp, sp_translation_step_vk_bits,
315  sp_translation_step_pcd_circuit_maker<other_curve<CurveType>>::input_size_in_elts()));
316 
317  verification_result.allocate(bp);
318  sp_translation_step_vk_and_incoming_message_payload_digest_bits.resize(compliance_predicate_arity);
319 
320  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
321  sp_translation_step_vk_and_incoming_message_payload_digest_bits[i].allocate(
322  bp, digest_size * field_logsize());
323  unpack_sp_translation_step_vk_and_incoming_message_payload_digests.emplace_back(
324  multipacking_component<FieldType>(
325  bp,
326  sp_translation_step_vk_and_incoming_message_payload_digest_bits[i],
327  sp_translation_step_vk_and_incoming_message_payload_digests[i],
328  field_logsize()));
329 
330  verifier_input.emplace_back(sp_translation_step_vk_and_incoming_message_payload_digest_bits[i]);
331  while (verifier_input[i].size() < padded_verifier_input_size) {
332  verifier_input[i].emplace_back(zero);
333  }
334 
335  proof.emplace_back(r1cs_ppzksnark_proof_variable<CurveType>(bp));
336  verifiers.emplace_back(r1cs_ppzksnark_verifier_component<CurveType>(
337  bp,
338  *sp_translation_step_vk,
339  verifier_input[i],
340  sp_translation_step_pcd_circuit_maker<other_curve<CurveType>>::field_capacity(),
341  proof[i],
342  verification_result));
343  }
344 
345  bp.set_input_sizes(input_size_in_elts());
346  }
347 
348  template<typename CurveType>
349  void sp_compliance_step_pcd_circuit_maker<CurveType>::generate_r1cs_constraints() {
350  const std::size_t digest_size = crh_with_bit_out_component<FieldType>::get_digest_len();
351  const std::size_t dimension = knapsack_dimension<FieldType>::dimension;
352  const std::size_t compliance_predicate_arity = compliance_predicate.max_arity;
353  unpack_outgoing_message->generate_r1cs_constraints(true);
354 
355  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
356  unpack_incoming_messages[i].generate_r1cs_constraints(true);
357  }
358 
359  sp_translation_step_vk->generate_r1cs_constraints(true);
360 
361  hash_outgoing_message->generate_r1cs_constraints();
362 
363  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
364  hash_incoming_messages[i].generate_r1cs_constraints();
365  }
366 
367  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
368  unpack_sp_translation_step_vk_and_incoming_message_payload_digests[i].generate_r1cs_constraints(
369  true);
370  }
371 
372  compliance_predicate_as_component->generate_r1cs_constraints();
373 
374  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
375  proof[i].generate_r1cs_constraints();
376  }
377 
378  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
379  verifiers[i].generate_r1cs_constraints();
380  }
381 
382  generate_r1cs_equals_const_constraint<FieldType>(bp, zero, FieldType::value_type::zero());
383  generate_boolean_r1cs_constraint<FieldType>(bp, verification_result);
384 
385  /* type * (1-verification_result) = 0 */
386  bp.add_r1cs_constraint(
387  r1cs_constraint<FieldType>(incoming_message_types[0], 1 - verification_result, 0));
388 
389  /* all types equal */
390  for (std::size_t i = 1; i < compliance_predicate.max_arity; ++i) {
391  bp.add_r1cs_constraint(
392  r1cs_constraint<FieldType>(1, incoming_message_types[0], incoming_message_types[i]));
393  }
394 
395  bp.add_r1cs_constraint(r1cs_constraint<FieldType>(1, arity, compliance_predicate_arity));
396  bp.add_r1cs_constraint(r1cs_constraint<FieldType>(
397  1, outgoing_message_type, typename FieldType::value_type(compliance_predicate.type)));
398  }
399 
400  template<typename CurveType>
401  r1cs_constraint_system<typename CurveType::scalar_field_type>
402  sp_compliance_step_pcd_circuit_maker<CurveType>::get_circuit() const {
403  return bp.get_constraint_system();
404  }
405 
406  template<typename CurveType>
407  r1cs_primary_input<typename CurveType::scalar_field_type>
408  sp_compliance_step_pcd_circuit_maker<CurveType>::get_primary_input() const {
409  return bp.primary_input();
410  }
411 
412  template<typename CurveType>
413  r1cs_auxiliary_input<typename CurveType::scalar_field_type>
414  sp_compliance_step_pcd_circuit_maker<CurveType>::get_auxiliary_input() const {
415  return bp.auxiliary_input();
416  }
417 
418  template<typename CurveType>
419  void sp_compliance_step_pcd_circuit_maker<CurveType>::generate_r1cs_witness(
420  const r1cs_ppzksnark_verification_key<other_curve<CurveType>> &sp_translation_step_pcd_circuit_vk,
421  const r1cs_pcd_compliance_predicate_primary_input<FieldType> &compliance_predicate_primary_input,
422  const r1cs_pcd_compliance_predicate_auxiliary_input<FieldType>
423  &compliance_predicate_auxiliary_input,
424  const std::vector<r1cs_ppzksnark_proof<other_curve<CurveType>>> &incoming_proofs) {
425  const std::size_t compliance_predicate_arity = compliance_predicate.max_arity;
426  this->bp.clear_values();
427  this->bp.val(zero) = FieldType::value_type::zero();
428 
429  compliance_predicate_as_component->generate_r1cs_witness(
430  compliance_predicate_primary_input.as_r1cs_primary_input(),
431  compliance_predicate_auxiliary_input.as_r1cs_auxiliary_input(
432  compliance_predicate.incoming_message_payload_lengths));
433  this->bp.val(arity) = typename FieldType::value_type(compliance_predicate_arity);
434  unpack_outgoing_message->generate_r1cs_witness_from_packed();
435  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
436  unpack_incoming_messages[i].generate_r1cs_witness_from_packed();
437  }
438 
439  sp_translation_step_vk->generate_r1cs_witness(sp_translation_step_pcd_circuit_vk);
440  hash_outgoing_message->generate_r1cs_witness();
441  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
442  hash_incoming_messages[i].generate_r1cs_witness();
443  unpack_sp_translation_step_vk_and_incoming_message_payload_digests[i]
444  .generate_r1cs_witness_from_packed();
445  }
446 
447  for (std::size_t i = 0; i < compliance_predicate_arity; ++i) {
448  proof[i].generate_r1cs_witness(incoming_proofs[i]);
449  verifiers[i].generate_r1cs_witness();
450  }
451 
452  if (this->bp.val(incoming_message_types[0]) != FieldType::value_type::zero()) {
453  this->bp.val(verification_result) = FieldType::value_type::zero();
454  }
455  }
456 
457  template<typename CurveType>
458  std::size_t sp_compliance_step_pcd_circuit_maker<CurveType>::field_logsize() {
459  return typename CurveType::scalar_field_type::value_bits;
460  }
461 
462  template<typename CurveType>
463  std::size_t sp_compliance_step_pcd_circuit_maker<CurveType>::field_capacity() {
464  return typename CurveType::scalar_field_type::capacity();
465  }
466 
467  template<typename CurveType>
468  std::size_t sp_compliance_step_pcd_circuit_maker<CurveType>::input_size_in_elts() {
469  const std::size_t digest_size = crh_with_field_out_component<FieldType>::get_digest_len();
470  return digest_size;
471  }
472 
473  template<typename CurveType>
474  std::size_t sp_compliance_step_pcd_circuit_maker<CurveType>::input_capacity_in_bits() {
475  return input_size_in_elts() * field_capacity();
476  }
477 
478  template<typename CurveType>
479  std::size_t sp_compliance_step_pcd_circuit_maker<CurveType>::input_size_in_bits() {
480  return input_size_in_elts() * field_logsize();
481  }
482 
483  template<typename CurveType>
484  sp_translation_step_pcd_circuit_maker<CurveType>::sp_translation_step_pcd_circuit_maker(
485  const r1cs_ppzksnark_verification_key<other_curve<CurveType>> &sp_compliance_step_vk) {
486  /* allocate input of the translation PCD circuit */
487  sp_translation_step_pcd_circuit_input.allocate(bp, input_size_in_elts());
488 
489  /* unpack translation step PCD circuit input */
490  unpacked_sp_translation_step_pcd_circuit_input.allocate(
491  bp, sp_compliance_step_pcd_circuit_maker<other_curve<CurveType>>::input_size_in_bits());
492  unpack_sp_translation_step_pcd_circuit_input.reset(
493  new multipacking_component<FieldType>(bp, unpacked_sp_translation_step_pcd_circuit_input,
494  sp_translation_step_pcd_circuit_input, field_capacity()));
495 
496  /* prepare arguments for the verifier */
497  hardcoded_sp_compliance_step_vk.reset(
498  new r1cs_ppzksnark_preprocessed_r1cs_ppzksnark_verification_key_variable<CurveType>(
499  bp, sp_compliance_step_vk));
500  proof.reset(new r1cs_ppzksnark_proof_variable<CurveType>(bp));
501 
502  /* verify previous proof */
503  online_verifier.reset(new r1cs_ppzksnark_online_verifier_component<CurveType>(
504  bp,
505  *hardcoded_sp_compliance_step_vk,
506  unpacked_sp_translation_step_pcd_circuit_input,
507  sp_compliance_step_pcd_circuit_maker<other_curve<CurveType>>::field_logsize(),
508  *proof,
509  variable<FieldType>(0)));
510  bp.set_input_sizes(input_size_in_elts());
511  }
512 
513  template<typename CurveType>
514  void sp_translation_step_pcd_circuit_maker<CurveType>::generate_r1cs_constraints() {
515  unpack_sp_translation_step_pcd_circuit_input->generate_r1cs_constraints(true);
516 
517  proof->generate_r1cs_constraints();
518 
519  online_verifier->generate_r1cs_constraints();
520  }
521 
522  template<typename CurveType>
523  r1cs_constraint_system<typename CurveType::scalar_field_type>
524  sp_translation_step_pcd_circuit_maker<CurveType>::get_circuit() const {
525  return bp.get_constraint_system();
526  }
527 
528  template<typename CurveType>
529  void sp_translation_step_pcd_circuit_maker<CurveType>::generate_r1cs_witness(
530  const r1cs_primary_input<typename CurveType::scalar_field_type>
531  sp_translation_step_input,
532  const r1cs_ppzksnark_proof<other_curve<CurveType>> &compliance_step_proof) {
533  this->bp.clear_values();
534  sp_translation_step_pcd_circuit_input.fill_with_field_elements(bp, sp_translation_step_input);
535  unpack_sp_translation_step_pcd_circuit_input->generate_r1cs_witness_from_packed();
536 
537  proof->generate_r1cs_witness(compliance_step_proof);
538  online_verifier->generate_r1cs_witness();
539  }
540 
541  template<typename CurveType>
542  r1cs_primary_input<typename CurveType::scalar_field_type>
543  sp_translation_step_pcd_circuit_maker<CurveType>::get_primary_input() const {
544  return bp.primary_input();
545  }
546 
547  template<typename CurveType>
548  r1cs_auxiliary_input<typename CurveType::scalar_field_type>
549  sp_translation_step_pcd_circuit_maker<CurveType>::get_auxiliary_input() const {
550  return bp.auxiliary_input();
551  }
552 
553  template<typename CurveType>
554  std::size_t sp_translation_step_pcd_circuit_maker<CurveType>::field_logsize() {
555  return typename CurveType::scalar_field_type::value_bits;
556  }
557 
558  template<typename CurveType>
559  std::size_t sp_translation_step_pcd_circuit_maker<CurveType>::field_capacity() {
560  return typename CurveType::scalar_field_type::capacity();
561  }
562 
563  template<typename CurveType>
564  std::size_t sp_translation_step_pcd_circuit_maker<CurveType>::input_size_in_elts() {
565  return algebra::div_ceil(
566  sp_compliance_step_pcd_circuit_maker<other_curve<CurveType>>::input_size_in_bits(),
567  sp_translation_step_pcd_circuit_maker<CurveType>::field_capacity());
568  }
569 
570  template<typename CurveType>
571  std::size_t sp_translation_step_pcd_circuit_maker<CurveType>::input_capacity_in_bits() {
572  return input_size_in_elts() * field_capacity();
573  }
574 
575  template<typename CurveType>
576  std::size_t sp_translation_step_pcd_circuit_maker<CurveType>::input_size_in_bits() {
577  return input_size_in_elts() * field_logsize();
578  }
579 
580  template<typename CurveType>
581  r1cs_primary_input<typename CurveType::scalar_field_type> get_sp_compliance_step_pcd_circuit_input(
582  const std::vector<bool> &sp_translation_step_vk_bits,
583  const r1cs_pcd_compliance_predicate_primary_input<typename CurveType::scalar_field_type>
584  &primary_input) {
585  typedef typename CurveType::scalar_field_type FieldType;
586 
587  const r1cs_variable_assignment<FieldType> outgoing_message_as_va =
588  primary_input.outgoing_message->as_r1cs_variable_assignment();
589  std::vector<bool> msg_bits;
590  for (const typename FieldType::value_type &elt : outgoing_message_as_va) {
591  const std::vector<bool> elt_bits = algebra::convert_field_element_to_bit_vector(elt);
592  msg_bits.insert(msg_bits.end(), elt_bits.begin(), elt_bits.end());
593  }
594 
595  std::vector<bool> block;
596  block.insert(block.end(), sp_translation_step_vk_bits.begin(), sp_translation_step_vk_bits.end());
597  block.insert(block.end(), msg_bits.begin(), msg_bits.end());
598 
599  crh_with_field_out_component<FieldType>::sample_randomness(block.size());
600 
601  const std::vector<typename FieldType::value_type> digest =
602  crh_with_field_out_component<FieldType>::get_hash(block);
603 
604  return digest;
605  }
606 
607  template<typename CurveType>
608  r1cs_primary_input<typename CurveType::scalar_field_type> get_sp_translation_step_pcd_circuit_input(
609  const std::vector<bool> &sp_translation_step_vk_bits,
610  const r1cs_pcd_compliance_predicate_primary_input<
611  other_curve<CurveType>::scalar_field_type::value_type> &primary_input) {
612  typedef typename CurveType::scalar_field_type FieldType;
613 
614  const std::vector<other_curve<CurveType>::scalar_field_type::value_type>
615  sp_compliance_step_pcd_circuit_input =
616  get_sp_compliance_step_pcd_circuit_input<other_curve<CurveType>>(
617  sp_translation_step_vk_bits, primary_input);
618  std::vector<bool> sp_compliance_step_pcd_circuit_input_bits;
619  for (const other_curve<CurveType>::scalar_field_type::value_type &elt :
620  sp_compliance_step_pcd_circuit_input) {
621  const std::vector<bool> elt_bits = algebra::convert_field_element_to_bit_vector<
622  other_curve<CurveType>::scalar_field_type::value_type>(elt);
623  sp_compliance_step_pcd_circuit_input_bits.insert(
624  sp_compliance_step_pcd_circuit_input_bits.end(), elt_bits.begin(), elt_bits.end());
625  }
626 
627  sp_compliance_step_pcd_circuit_input_bits.resize(
628  sp_translation_step_pcd_circuit_maker<CurveType>::input_capacity_in_bits(), false);
629 
630  const r1cs_primary_input<FieldType> result =
631  algebra::pack_bit_vector_into_field_element_vector<FieldType>(
632  sp_compliance_step_pcd_circuit_input_bits,
633  sp_translation_step_pcd_circuit_maker<CurveType>::field_capacity());
634 
635  return result;
636  }
637  } // namespace snark
638  } // namespace zk
639  } // namespace crypto3
640 } // namespace nil
641 
642 #endif // CRYPTO3_ZK_SP_PCD_CIRCUITS_HPP
nil::crypto3::zk::snark::proof
Definition: snark/proof.hpp:37
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate_auxiliary_input
Definition: r1cs_pcd_params.hpp:54
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate_auxiliary_input::as_r1cs_auxiliary_input
r1cs_auxiliary_input< FieldType > as_r1cs_auxiliary_input(const std::vector< std::size_t > &incoming_message_payload_lengths) const
Definition: r1cs_pcd_params.hpp:68
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate_primary_input
Definition: r1cs_pcd_params.hpp:40
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate_primary_input::outgoing_message
std::shared_ptr< r1cs_pcd_message< FieldType > > outgoing_message
Definition: r1cs_pcd_params.hpp:42
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate_primary_input::as_r1cs_primary_input
r1cs_primary_input< FieldType > as_r1cs_primary_input() const
Definition: r1cs_pcd_params.hpp:48
nil::crypto3::zk::snark::r1cs_pcd_compliance_predicate
Definition: compliance_predicate.hpp:123
nil::crypto3::zk::snark::r1cs_ppzksnark_proof
Definition: snark/systems/ppzksnark/r1cs_ppzksnark/proof.hpp:43
nil::crypto3::zk::snark::r1cs_ppzksnark_verification_key
Definition: zk/include/nil/crypto3/zk/snark/systems/ppzksnark/r1cs_ppzksnark/verification_key.hpp:42
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker
Definition: sp_pcd_circuits.hpp:67
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::unpack_incoming_messages
std::vector< multipacking_component< FieldType > > unpack_incoming_messages
Definition: sp_pcd_circuits.hpp:109
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::verifiers
std::vector< r1cs_ppzksnark_verifier_component< CurveType > > verifiers
Definition: sp_pcd_circuits.hpp:119
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_translation_step_vk_bits
blueprint_variable_vector< FieldType > sp_translation_step_vk_bits
Definition: sp_pcd_circuits.hpp:90
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::get_auxiliary_input
r1cs_auxiliary_input< FieldType > get_auxiliary_input() const
Definition: sp_pcd_circuits.hpp:414
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_compliance_step_pcd_circuit_maker
sp_compliance_step_pcd_circuit_maker(const r1cs_pcd_compliance_predicate< FieldType > &compliance_predicate)
Definition: sp_pcd_circuits.hpp:207
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::unpack_sp_translation_step_vk_and_incoming_message_payload_digests
std::vector< multipacking_component< FieldType > > unpack_sp_translation_step_vk_and_incoming_message_payload_digests
Definition: sp_pcd_circuits.hpp:84
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::unpack_outgoing_message
std::shared_ptr< multipacking_component< FieldType > > unpack_outgoing_message
Definition: sp_pcd_circuits.hpp:106
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::input_capacity_in_bits
static std::size_t input_capacity_in_bits()
Definition: sp_pcd_circuits.hpp:474
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::verification_result
variable< FieldType > verification_result
Definition: sp_pcd_circuits.hpp:118
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::padded_translation_step_vk_and_incoming_messages_digests
std::vector< blueprint_variable_vector< FieldType > > padded_translation_step_vk_and_incoming_messages_digests
Definition: sp_pcd_circuits.hpp:114
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::blocks_for_incoming_messages
std::vector< block_variable< FieldType > > blocks_for_incoming_messages
Definition: sp_pcd_circuits.hpp:80
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::outgoing_message_vars
blueprint_variable_vector< FieldType > outgoing_message_vars
Definition: sp_pcd_circuits.hpp:94
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::generate_r1cs_witness
void generate_r1cs_witness(const r1cs_ppzksnark_verification_key< other_curve< CurveType >> &translation_step_pcd_circuit_vk, const r1cs_pcd_compliance_predicate_primary_input< FieldType > &compliance_predicate_primary_input, const r1cs_pcd_compliance_predicate_auxiliary_input< FieldType > &compliance_predicate_auxiliary_input, const std::vector< r1cs_ppzksnark_proof< other_curve< CurveType >>> &incoming_proofs)
Definition: sp_pcd_circuits.hpp:419
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::compliance_predicate_as_component
std::shared_ptr< component_from_r1cs< FieldType > > compliance_predicate_as_component
Definition: sp_pcd_circuits.hpp:103
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::hash_incoming_messages
std::vector< crh_with_field_out_component< FieldType > > hash_incoming_messages
Definition: sp_pcd_circuits.hpp:87
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::arity
variable< FieldType > arity
Definition: sp_pcd_circuits.hpp:96
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::input_size_in_elts
static std::size_t input_size_in_elts()
Definition: sp_pcd_circuits.hpp:468
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::incoming_message_types
std::vector< variable< FieldType > > incoming_message_types
Definition: sp_pcd_circuits.hpp:97
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::field_capacity
static std::size_t field_capacity()
Definition: sp_pcd_circuits.hpp:463
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::FieldType
CurveType::scalar_field_type FieldType
Definition: sp_pcd_circuits.hpp:69
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::outgoing_message_type
variable< FieldType > outgoing_message_type
Definition: sp_pcd_circuits.hpp:92
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::generate_r1cs_constraints
void generate_r1cs_constraints()
Definition: sp_pcd_circuits.hpp:349
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::hash_outgoing_message
std::shared_ptr< crh_with_field_out_component< FieldType > > hash_outgoing_message
Definition: sp_pcd_circuits.hpp:78
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::get_circuit
r1cs_constraint_system< FieldType > get_circuit() const
Definition: sp_pcd_circuits.hpp:402
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::cp_witness
blueprint_variable_vector< FieldType > cp_witness
Definition: sp_pcd_circuits.hpp:102
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::input_size_in_bits
static std::size_t input_size_in_bits()
Definition: sp_pcd_circuits.hpp:479
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::outgoing_message_payload
blueprint_variable_vector< FieldType > outgoing_message_payload
Definition: sp_pcd_circuits.hpp:93
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::padded_translation_step_vk_and_outgoing_message_digest
blueprint_variable_vector< FieldType > padded_translation_step_vk_and_outgoing_message_digest
Definition: sp_pcd_circuits.hpp:112
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::zero
variable< FieldType > zero
Definition: sp_pcd_circuits.hpp:75
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_compliance_step_pcd_circuit_input
blueprint_variable_vector< FieldType > sp_compliance_step_pcd_circuit_input
Definition: sp_pcd_circuits.hpp:111
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::verifier_input
std::vector< blueprint_variable_vector< FieldType > > verifier_input
Definition: sp_pcd_circuits.hpp:116
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::block_for_outgoing_message
std::shared_ptr< block_variable< FieldType > > block_for_outgoing_message
Definition: sp_pcd_circuits.hpp:77
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::outgoing_message_bits
blueprint_variable_vector< FieldType > outgoing_message_bits
Definition: sp_pcd_circuits.hpp:105
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_translation_step_vk
std::shared_ptr< r1cs_ppzksnark_verification_key_variable< CurveType > > sp_translation_step_vk
Definition: sp_pcd_circuits.hpp:89
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::proof
std::vector< r1cs_ppzksnark_proof_variable< CurveType > > proof
Definition: sp_pcd_circuits.hpp:117
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_translation_step_vk_and_incoming_message_payload_digest_bits
std::vector< blueprint_variable_vector< FieldType > > sp_translation_step_vk_and_incoming_message_payload_digest_bits
Definition: sp_pcd_circuits.hpp:86
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::incoming_message_payloads
std::vector< blueprint_variable_vector< FieldType > > incoming_message_payloads
Definition: sp_pcd_circuits.hpp:98
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::incoming_message_vars
std::vector< blueprint_variable_vector< FieldType > > incoming_message_vars
Definition: sp_pcd_circuits.hpp:99
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::bp
blueprint< FieldType > bp
Definition: sp_pcd_circuits.hpp:73
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::field_logsize
static std::size_t field_logsize()
Definition: sp_pcd_circuits.hpp:458
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::local_data
blueprint_variable_vector< FieldType > local_data
Definition: sp_pcd_circuits.hpp:101
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::incoming_messages_bits
std::vector< blueprint_variable_vector< FieldType > > incoming_messages_bits
Definition: sp_pcd_circuits.hpp:108
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::get_primary_input
r1cs_primary_input< FieldType > get_primary_input() const
Definition: sp_pcd_circuits.hpp:408
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::compliance_predicate
r1cs_pcd_compliance_predicate< FieldType > compliance_predicate
Definition: sp_pcd_circuits.hpp:71
nil::crypto3::zk::snark::sp_compliance_step_pcd_circuit_maker::sp_translation_step_vk_and_incoming_message_payload_digests
std::vector< blueprint_variable_vector< FieldType > > sp_translation_step_vk_and_incoming_message_payload_digests
Definition: sp_pcd_circuits.hpp:82
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker
Definition: sp_pcd_circuits.hpp:151
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::proof
std::shared_ptr< r1cs_ppzksnark_proof_variable< CurveType > > proof
Definition: sp_pcd_circuits.hpp:164
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::sp_translation_step_pcd_circuit_maker
sp_translation_step_pcd_circuit_maker(const r1cs_ppzksnark_verification_key< other_curve< CurveType >> &compliance_step_vk)
Definition: sp_pcd_circuits.hpp:484
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::generate_r1cs_witness
void generate_r1cs_witness(const r1cs_primary_input< typename CurveType::scalar_field_type > translation_step_input, const r1cs_ppzksnark_proof< other_curve< CurveType >> &compliance_step_proof)
Definition: sp_pcd_circuits.hpp:529
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::generate_r1cs_constraints
void generate_r1cs_constraints()
Definition: sp_pcd_circuits.hpp:514
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::field_logsize
static std::size_t field_logsize()
Definition: sp_pcd_circuits.hpp:554
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::input_size_in_bits
static std::size_t input_size_in_bits()
Definition: sp_pcd_circuits.hpp:576
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::hardcoded_sp_compliance_step_vk
std::shared_ptr< r1cs_ppzksnark_preprocessed_r1cs_ppzksnark_verification_key_variable< CurveType > > hardcoded_sp_compliance_step_vk
Definition: sp_pcd_circuits.hpp:163
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::get_primary_input
r1cs_primary_input< FieldType > get_primary_input() const
Definition: sp_pcd_circuits.hpp:543
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::online_verifier
std::shared_ptr< r1cs_ppzksnark_online_verifier_component< CurveType > > online_verifier
Definition: sp_pcd_circuits.hpp:165
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::input_size_in_elts
static std::size_t input_size_in_elts()
Definition: sp_pcd_circuits.hpp:564
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::sp_translation_step_pcd_circuit_input
blueprint_variable_vector< FieldType > sp_translation_step_pcd_circuit_input
Definition: sp_pcd_circuits.hpp:157
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::get_circuit
r1cs_constraint_system< FieldType > get_circuit() const
Definition: sp_pcd_circuits.hpp:524
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::input_capacity_in_bits
static std::size_t input_capacity_in_bits()
Definition: sp_pcd_circuits.hpp:571
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::bp
blueprint< FieldType > bp
Definition: sp_pcd_circuits.hpp:155
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::verifier_input
blueprint_variable_vector< FieldType > verifier_input
Definition: sp_pcd_circuits.hpp:159
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::FieldType
CurveType::scalar_field_type FieldType
Definition: sp_pcd_circuits.hpp:153
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::unpack_sp_translation_step_pcd_circuit_input
std::shared_ptr< multipacking_component< FieldType > > unpack_sp_translation_step_pcd_circuit_input
Definition: sp_pcd_circuits.hpp:160
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::field_capacity
static std::size_t field_capacity()
Definition: sp_pcd_circuits.hpp:559
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::get_auxiliary_input
r1cs_auxiliary_input< FieldType > get_auxiliary_input() const
Definition: sp_pcd_circuits.hpp:549
nil::crypto3::zk::snark::sp_translation_step_pcd_circuit_maker::unpacked_sp_translation_step_pcd_circuit_input
blueprint_variable_vector< FieldType > unpacked_sp_translation_step_pcd_circuit_input
Definition: sp_pcd_circuits.hpp:158
nil::crypto3::algebra::vector
vector(T, U...) -> vector< std::enable_if_t<(std::is_same_v< T, U > &&...), T >, 1+sizeof...(U)>
deduction guide for uniform initialization
nil::crypto3::accumulators::extract::block
boost::mpl::apply< AccumulatorSet, tag::block< Mode > >::type::result_type block(const AccumulatorSet &acc)
Definition: accumulators/block.hpp:259
nil::crypto3::zk::snark::r1cs_auxiliary_input
std::vector< typename FieldType::value_type > r1cs_auxiliary_input
Definition: r1cs.hpp:104
nil::crypto3::zk::snark::get_sp_translation_step_pcd_circuit_input
r1cs_primary_input< typename CurveType::scalar_field_type > get_sp_translation_step_pcd_circuit_input(const std::vector< bool > &sp_translation_step_vk_bits, const r1cs_pcd_compliance_predicate_primary_input< other_curve< CurveType >::scalar_field_type::value_type > &primary_input)
Definition: sp_pcd_circuits.hpp:608
nil::crypto3::zk::snark::r1cs_primary_input
std::vector< typename FieldType::value_type > r1cs_primary_input
Definition: r1cs.hpp:101
nil::crypto3::zk::snark::get_sp_compliance_step_pcd_circuit_input
r1cs_primary_input< typename CurveType::scalar_field_type > get_sp_compliance_step_pcd_circuit_input(const std::vector< bool > &sp_translation_step_vk_bits, const r1cs_pcd_compliance_predicate_primary_input< typename CurveType::scalar_field_type > &primary_input)
Definition: sp_pcd_circuits.hpp:581
nil::crypto3::zk::snark::r1cs_variable_assignment
std::vector< typename FieldType::value_type > r1cs_variable_assignment
Definition: r1cs.hpp:107
nil::crypto3::digest
boost::container::small_vector< octet_type, DigestBits/octet_bits > digest
Definition: codec/include/nil/crypto3/detail/digest.hpp:71
nil
Definition: pair.hpp:31
nil::crypto3::digest
Definition: block/include/nil/crypto3/detail/digest.hpp:72
nil::crypto3::zk::snark::r1cs_constraint_system
Definition: r1cs.hpp:124
nil::crypto3::zk::snark::r1cs_constraint
Definition: r1cs.hpp:60
nil::crypto3::zk::snark::variable
Definition: variable.hpp:66