arnaucube
/
circomlib
mirror of https://github.com/arnaucube/circomlib.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
129 Commits
7 Branches
7 Tags
11 MiB
Tree: b2ac4daaa7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b2ac4daaa7'
${ noResults }
circomlib/src/mimcsponge.js

86 lines
2.3 KiB
Raw Normal View History

Blake to Blake2b and use of native big num
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
pre 0.5 all working
4 years ago
Blake to Blake2b and use of native big num
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
fix: makes mimcsponge act like the paper description * last constant is 0 * no swap at the last round
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
fix: makes mimcsponge act like the paper description * last constant is 0 * no swap at the last round
4 years ago
All tests working
4 years ago
fix: makes mimcsponge act like the paper description * last constant is 0 * no swap at the last round
4 years ago
All tests working
4 years ago
fix: makes mimcsponge act like the paper description * last constant is 0 * no swap at the last round
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
fix: makes mimcsponge usable
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
Blake to Blake2b and use of native big num
4 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
All tests working
4 years ago
Adds a sponge hash function based on MiMC2n-n
5 years ago
  1. const Scalar = require("ffjavascript").Scalar
  2. const Web3Utils = require("web3-utils");
  3. const ZqField = require("ffjavascript").ZqField;
  4. const F = new ZqField(Scalar.fromString("21888242871839275222246405745257275088548364400416034343698204186575808495617"));
  6. const SEED = "mimcsponge";
  7. const NROUNDS = 220;
  9. exports.getIV = (seed) => {
  10. if (typeof seed === "undefined") seed = SEED;
  11. const c = Web3Utils.keccak256(seed+"_iv");
  12. const cn = Scalar.fromString(Web3Utils.toBN(c).toString());
  13. const iv = cn.mod(F.p);
  14. return iv;
  15. };
  17. exports.getConstants = (seed, nRounds) => {
  18. if (typeof seed === "undefined") seed = SEED;
  19. if (typeof nRounds === "undefined") nRounds = NROUNDS;
  20. const cts = new Array(nRounds);
  21. let c = Web3Utils.keccak256(SEED);
  22. for (let i=1; i<nRounds; i++) {
  23. c = Web3Utils.keccak256(c);
  25. const n1 = Web3Utils.toBN(c).mod(Web3Utils.toBN(F.p.toString()));
  26. const c2 = Web3Utils.padLeft(Web3Utils.toHex(n1), 64);
  27. cts[i] = F.e(Web3Utils.toBN(c2).toString());
  28. }
  29. cts[0] = F.e(0);
  30. cts[cts.length - 1] = F.e(0);
  31. return cts;
  32. };
  34. const cts = exports.getConstants(SEED, NROUNDS);
  36. exports.hash = (_xL_in, _xR_in, _k) =>{
  37. let xL = F.e(_xL_in);
  38. let xR = F.e(_xR_in);
  39. const k = F.e(_k);
  40. for (let i=0; i<NROUNDS; i++) {
  41. const c = cts[i];
  42. const t = (i==0) ? F.add(xL, k) : F.add(F.add(xL, k), c);
  43. const xR_tmp = F.e(xR);
  44. if (i < (NROUNDS - 1)) {
  45. xR = xL;
  46. xL = F.add(xR_tmp, F.pow(t, 5));
  47. } else {
  48. xR = F.add(xR_tmp, F.pow(t, 5));
  49. }
  50. }
  51. return {
  52. xL: F.normalize(xL),
  53. xR: F.normalize(xR),
  54. };
  55. };
  57. exports.multiHash = (arr, key, numOutputs) => {
  58. if (typeof(numOutputs) === "undefined") {
  59. numOutputs = 1;
  60. }
  61. if (typeof(key) === "undefined") {
  62. key = F.zero;
  63. }
  65. let R = F.zero;
  66. let C = F.zero;
  68. for (let i=0; i<arr.length; i++) {
  69. R = F.add(R, F.e(arr[i]));
  70. const S = exports.hash(R, C, key);
  71. R = S.xL;
  72. C = S.xR;
  73. }
  74. let outputs = [R];
  75. for (let i=1; i < numOutputs; i++) {
  76. const S = exports.hash(R, C, key);
  77. R = S.xL;
  78. C = S.xR;
  79. outputs.push(R);
  80. }
  81. if (numOutputs == 1) {
  82. return F.normalize(outputs[0]);
  83. } else {
  84. return outputs.map(x => F.normalize(x));
  85. }
  86. };