arnaucube
/
grapevine-sonobe
mirror of https://github.com/arnaucube/grapevine-sonobe.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
8.1 MiB
Tree: 556d570e80
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '556d570e80'
${ noResults }
grapevine-sonobe/circom/node_modules/circomlib/circuits/smt/smtprocessorsm.circom

165 lines
7.4 KiB
Raw Normal View History

out of bounds on constraint gen maybe 2d array?
5 months ago
  1. /*
  2. Copyright 2018 0KIMS association.
  4. This file is part of circom (Zero Knowledge Circuit Compiler).
  6. circom is a free software: you can redistribute it and/or modify it
  7. under the terms of the GNU General Public License as published by
  8. the Free Software Foundation, either version 3 of the License, or
  9. (at your option) any later version.
  11. circom is distributed in the hope that it will be useful, but WITHOUT
  12. ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
  13. or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public
  14. License for more details.
  16. You should have received a copy of the GNU General Public License
  17. along with circom. If not, see <https://www.gnu.org/licenses/>.
  18. */
  20. /***************************************************************************************************
  21. Each level on a SMTProcessor has a state.
  23. The state of the level depends on the state of te botom level and on `xor` and
  24. `is0` signals.
  26. `isOldLev` 1 when is the level where oldLeaf is.
  28. `xor` signal is 0 if the index bit at the current level is the same in the old
  29. and the new index, and 1 if it is different.
  31. `is0` signal, is 1 if we are inserting/deleting in an empty leaf and 0 if we
  32. are inserting/deleting in a leaf that contains an element.
  34. The states are:
  36. top: While the index bits of the old and new insex in the top level is the same, whe are in the top state.
  37. old0: When the we reach insert level, we go to old0 state
  38. if `is0`=1.
  39. btn: Once in insert level and `is0` =0 we go to btn or new1 level if xor=1
  40. new1: This level is reached when xor=1. Here is where we insert/delete the hash of the
  41. old and the new trees with just one element.
  42. na: Not appliable. After processing it, we go to the na level.
  45. Fnction
  46. fnc[0] fnc[1]
  47. 0 0 NOP
  48. 0 1 UPDATE
  49. 1 0 INSERT
  50. 1 1 DELETE
  53. ###########
  54. # #
  55. ┌────────────────────────────▶# upd #─────────────────────┐
  56. │ ## ## │
  57. │ ######### │
  58. levIns=1 │ │
  59. fnc[0]=0 │ │ any
  60. │ │
  61. │ │
  62. │ │
  63. │ ########### │
  64. │ levIns=1 # # │
  65. levIns=0 │ is0=1 ┌────────────▶# old0 #────────┐ │ any
  66. ┌─────┐ │ fnc[0]=1│ ## ## │ │ ┌──────┐
  67. │ │ │ │ ######### │ any │ │ │
  68. │ ▼ │ │ │ ▼ ▼ │
  69. │ ########### │ │ ########### │
  70. │ # # ────────────┘ └────────▶# #│
  71. └──# top # # na #
  72. ## ## ───────────────────┐ levIns=1 ┌──▶## ##
  73. ######### │ is0=0 │ #########
  74. │ │ fnc[0]=1 │
  75. │ │ xor=1 ########### │ any
  76. │ └──────────────────▶# # │
  77. │ # new1 #──┘
  78. │ ## ##
  79. └────────────────────────────────┐ #########
  80. levIns=1 │ ▲
  81. is0=0 │ ┌─────┘
  82. fnc[0]=1 │ ###########│ xor=1
  83. xor=0 │ # #
  84. ▼# btn #
  85. ## ##
  86. #########◀───────┐
  87. │ │
  88. │ │
  89. └────────────┘
  90. xor=0
  92. ***************************************************************************************************/
  93. pragma circom 2.0.0;
  95. template SMTProcessorSM() {
  96. signal input xor;
  97. signal input is0;
  98. signal input levIns;
  99. signal input fnc[2];
  101. signal input prev_top;
  102. signal input prev_old0;
  103. signal input prev_bot;
  104. signal input prev_new1;
  105. signal input prev_na;
  106. signal input prev_upd;
  108. signal output st_top;
  109. signal output st_old0;
  110. signal output st_bot;
  111. signal output st_new1;
  112. signal output st_na;
  113. signal output st_upd;
  115. signal aux1;
  116. signal aux2;
  118. aux1 <== prev_top * levIns;
  119. aux2 <== aux1*fnc[0]; // prev_top * levIns * fnc[0]
  121. // st_top = prev_top*(1-levIns)
  122. // = + prev_top
  123. // - prev_top * levIns = aux1
  125. st_top <== prev_top - aux1;
  127. // st_old0 = prev_top * levIns * is0 * fnc[0]
  128. // = + prev_top * levIns * is0 * fnc[0] = aux2 * is0
  130. st_old0 <== aux2 * is0; // prev_top * levIns * is0 * fnc[0]
  132. // st_new1 = prev_top * levIns * (1-is0)*fnc[0] * xor + prev_bot*xor =
  133. // = + prev_top * levIns * fnc[0] * xor = aux2 * xor
  134. // - prev_top * levIns * is0 * fnc[0] * xor = st_old0 * xor
  135. // + prev_bot * xor = prev_bot * xor
  137. st_new1 <== (aux2 - st_old0 + prev_bot)*xor;
  140. // st_bot = prev_top * levIns * (1-is0)*fnc[0] * (1-xor) + prev_bot*(1-xor);
  141. // = + prev_top * levIns * fnc[0]
  142. // - prev_top * levIns * is0 * fnc[0]
  143. // - prev_top * levIns * fnc[0] * xor
  144. // + prev_top * levIns * is0 * fnc[0] * xor
  145. // + prev_bot
  146. // - prev_bot * xor
  148. st_bot <== (1-xor) * (aux2 - st_old0 + prev_bot);
  151. // st_upd = prev_top * (1-fnc[0]) *levIns;
  152. // = + prev_top * levIns
  153. // - prev_top * levIns * fnc[0]
  155. st_upd <== aux1 - aux2;
  157. // st_na = prev_new1 + prev_old0 + prev_na + prev_upd;
  158. // = + prev_new1
  159. // + prev_old0
  160. // + prev_na
  161. // + prev_upd
  163. st_na <== prev_new1 + prev_old0 + prev_na + prev_upd;
  165. }