systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp
Go to the documentation of this file.
1 //---------------------------------------------------------------------------//
2 // Copyright (c) 2018-2021 Mikhail Komarov <nemo@nil.foundation>
3 // Copyright (c) 2020-2021 Nikita Kaskov <nbering@nil.foundation>
4 //
5 // MIT License
6 //
7 // Permission is hereby granted, free of charge, to any person obtaining a copy
8 // of this software and associated documentation files (the "Software"), to deal
9 // in the Software without restriction, including without limitation the rights
10 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
11 // copies of the Software, and to permit persons to whom the Software is
12 // furnished to do so, subject to the following conditions:
13 //
14 // The above copyright notice and this permission notice shall be included in all
15 // copies or substantial portions of the Software.
16 //
17 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
18 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
19 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
20 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
21 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
22 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
23 // SOFTWARE.
24 //---------------------------------------------------------------------------//
25 
26 #ifndef CRYPTO3_R1CS_SE_PPZKSNARK_PROVING_KEY_HPP
27 #define CRYPTO3_R1CS_SE_PPZKSNARK_PROVING_KEY_HPP
28 
29 #include <vector>
30 
31 namespace nil {
32  namespace crypto3 {
33  namespace zk {
34  namespace snark {
38  template<typename CurveType, typename ConstraintSystem>
40  using g1_type = typename CurveType::template g1_type<>;
41  using g2_type = typename CurveType::template g2_type<>;
42  public:
43 
44  typedef ConstraintSystem constraint_system_type;
45 
46  // G^{gamma * A_i(t)} for 0 <= i <= sap.num_variables()
47  std::vector<typename g1_type::value_type> A_query;
48 
49  // H^{gamma * A_i(t)} for 0 <= i <= sap.num_variables()
50  std::vector<typename g2_type::value_type> B_query;
51 
52  // G^{gamma^2 * C_i(t) + (alpha + beta) * gamma * A_i(t)}
53  // for sap.num_inputs() + 1 < i <= sap.num_variables()
54  std::vector<typename g1_type::value_type> C_query_1;
55 
56  // G^{2 * gamma^2 * Z(t) * A_i(t)} for 0 <= i <= sap.num_variables()
57  std::vector<typename g1_type::value_type> C_query_2;
58 
59  // G^{gamma * Z(t)}
60  typename g1_type::value_type G_gamma_Z;
61 
62  // H^{gamma * Z(t)}
63  typename g2_type::value_type H_gamma_Z;
64 
65  // G^{(alpha + beta) * gamma * Z(t)}
66  typename g1_type::value_type G_ab_gamma_Z;
67 
68  // G^{gamma^2 * Z(t)^2}
69  typename g1_type::value_type G_gamma2_Z2;
70 
71  // G^{gamma^2 * Z(t) * t^i} for 0 <= i < sap.degree
72  std::vector<typename g1_type::value_type> G_gamma2_Z_t;
73 
75 
80  r1cs_se_ppzksnark_proving_key(std::vector<typename g1_type::value_type> &&A_query,
81  std::vector<typename g2_type::value_type> &&B_query,
82  std::vector<typename g1_type::value_type> &&C_query_1,
83  std::vector<typename g1_type::value_type> &&C_query_2,
84  typename g1_type::value_type &G_gamma_Z,
85  typename g2_type::value_type &H_gamma_Z,
86  typename g1_type::value_type &G_ab_gamma_Z,
87  typename g1_type::value_type &G_gamma2_Z2,
88  std::vector<typename g1_type::value_type> &&G_gamma2_Z_t,
90  A_query(std::move(A_query)),
94 
95  std::size_t G1_size() const {
96  return A_query.size() + C_query_1.size() + C_query_2.size() + 3 + G_gamma2_Z_t.size();
97  }
98 
99  std::size_t G2_size() const {
100  return B_query.size() + 1;
101  }
102 
103  std::size_t size_in_bits() const {
104  return G1_size() * g1_type::value_bits + G2_size() * g2_type::value_bits;
105  }
106 
107  bool operator==(const r1cs_se_ppzksnark_proving_key &other) const {
108  return (this->A_query == other.A_query && this->B_query == other.B_query &&
109  this->C_query_1 == other.C_query_1 && this->C_query_2 == other.C_query_2 &&
110  this->G_gamma_Z == other.G_gamma_Z && this->H_gamma_Z == other.H_gamma_Z &&
111  this->G_ab_gamma_Z == other.G_ab_gamma_Z && this->G_gamma2_Z2 == other.G_gamma2_Z2 &&
112  this->G_gamma2_Z_t == other.G_gamma2_Z_t && this->constraint_system == other.constraint_system);
113  }
114  };
115  } // namespace snark
116  } // namespace zk
117  } // namespace crypto3
118 } // namespace nil
119 
120 #endif // CRYPTO3_R1CS_PPZKSNARK_BASIC_PROVER_HPP
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:39
std::vector< typename g2_type::value_type > B_query
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:50
constraint_system_type constraint_system
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:74
r1cs_se_ppzksnark_proving_key(std::vector< typename g1_type::value_type > &&A_query, std::vector< typename g2_type::value_type > &&B_query, std::vector< typename g1_type::value_type > &&C_query_1, std::vector< typename g1_type::value_type > &&C_query_2, typename g1_type::value_type &G_gamma_Z, typename g2_type::value_type &H_gamma_Z, typename g1_type::value_type &G_ab_gamma_Z, typename g1_type::value_type &G_gamma2_Z2, std::vector< typename g1_type::value_type > &&G_gamma2_Z_t, constraint_system_type &&constraint_system)
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:80
ConstraintSystem constraint_system_type
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:44
std::size_t size_in_bits() const
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:103
bool operator==(const r1cs_se_ppzksnark_proving_key &other) const
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:107
std::size_t G2_size() const
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:99
g1_type::value_type G_ab_gamma_Z
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:66
g1_type::value_type G_gamma2_Z2
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:69
g1_type::value_type G_gamma_Z
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:60
std::size_t G1_size() const
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:95
std::vector< typename g1_type::value_type > G_gamma2_Z_t
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:72
std::vector< typename g1_type::value_type > C_query_1
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:54
r1cs_se_ppzksnark_proving_key(r1cs_se_ppzksnark_proving_key &&other)=default
r1cs_se_ppzksnark_proving_key(const r1cs_se_ppzksnark_proving_key &other)=default
std::vector< typename g1_type::value_type > C_query_2
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:57
g2_type::value_type H_gamma_Z
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:63
std::vector< typename g1_type::value_type > A_query
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:47
r1cs_se_ppzksnark_proving_key & operator=(const r1cs_se_ppzksnark_proving_key &other)=default
r1cs_se_ppzksnark_proving_key()
Definition: systems/ppzksnark/r1cs_se_ppzksnark/proving_key.hpp:76
OutputIterator move(const SinglePassRange &rng, OutputIterator result)
Definition: move.hpp:45
Definition: pair.hpp:31