arnaucube
/
sonobe
mirror of https://github.com/arnaucube/sonobe.git
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
90 Commits
5 Branches
0 Tags
14 MiB
Branch: main
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'main'
${ noResults }
sonobe/examples/circom_full_flow.rs

167 lines
5.7 KiB
Raw Permalink Normal View History

Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Stabilize circom frontend (#101) * refactor test of compute_c circuit to use multiple lcccs&cccs instances * refactor hypernova's compute_c circuit to reduce from `110635` to `553` constraints * fix: change circom fcircuit to extract indexes of inputs and add keccak satisfaction test * fix: disable wire mapping when loading r1cs * chore: update .gitignore and compile.sh * fix: use fixed circom-compat branch * fix: use slice rather than vec ref * chore: add keccak-chain circom * chore: trigger checks * fix: make typos check circom files names but not their content * chore: remove keccak, add tests with more lightweight circom templates, test that circom circuits correctly result in Ok and Err when needed * chore: trigger checks * fix: re-add circuit for full flow example, change naming * chore: comment with link to issue 104, disable constraints check * chore: remove `full_flow_example` from the examples and its corresponding circom circuit * chore: update `circom-compat` repo * chore: clippy * chore: stop excluding circom files from typos checker * chore: remove changes on `typos.toml` --------- Co-authored-by: arnaucube <root@arnaucube.com>
5 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Stabilize circom frontend (#101) * refactor test of compute_c circuit to use multiple lcccs&cccs instances * refactor hypernova's compute_c circuit to reduce from `110635` to `553` constraints * fix: change circom fcircuit to extract indexes of inputs and add keccak satisfaction test * fix: disable wire mapping when loading r1cs * chore: update .gitignore and compile.sh * fix: use fixed circom-compat branch * fix: use slice rather than vec ref * chore: add keccak-chain circom * chore: trigger checks * fix: make typos check circom files names but not their content * chore: remove keccak, add tests with more lightweight circom templates, test that circom circuits correctly result in Ok and Err when needed * chore: trigger checks * fix: re-add circuit for full flow example, change naming * chore: comment with link to issue 104, disable constraints check * chore: remove `full_flow_example` from the examples and its corresponding circom circuit * chore: update `circom-compat` repo * chore: clippy * chore: stop excluding circom files from typos checker * chore: remove changes on `typos.toml` --------- Co-authored-by: arnaucube <root@arnaucube.com>
5 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
feat: Minimal in-browser compatibility for the crate (#149) * change: CircomWrapper constructor to use raw bytes * chore: tmp update to latest circom-compat * feat: Introduce PathOrBin to support in-browser CircomWrapper usage This changes the associated type `Params` of the `CircomFCircuit` to use the newly created `PathOrBin` type. This allows the user of the lib to directly send the binary of the files already read or instead, provide a path to it and let `sonobe` do the work. With this, Circom should be already usable from the browser if we allow JS to take care of reading the `.wasm` and `.r1cs` files. * feat: Introduce PathOrBin to support in-browser NoirFCircuit usage This commit temporarilly stands on top of https://github.com/dmpierre/arkworks_backend/pull/1 referenced as `rev`. This changes the associated type `Params` of the `CircomFCircuit` to use the newly created `PathOrBin` type. This allows the user of the lib to directly send the binary of the files already read or instead, provide a path to it and let `sonobe` do the work. With this, Noir should be already usable from the browser if we allow JS to take care of reading the `circuit.json` files * chore: Update deps to branch instead of `rev` * fix: use PathOrBin in examples * fix: clippy * fix: read file length for initializing vec size --------- Co-authored-by: dmpierre <pdaixmoreux@gmail.com>
2 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Enable hiding commitments in nova and hypernova (#129) * feat: enable hiding commitments in nova and hypernova * fix: set blinding values for witness vector * fix: remove cloning of the cyclefold running instance * fix: do not re-use blinding values between prove steps * fix: specify whether the witness should use blinding values using a const generic * feat: create a `dummy` method for nova witnesses as well * chore: clippy - removed unused imports
3 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
add hash of public params for Nova & HyperNova (#118) - implement hash of public params for Nova & HyperNova - abstract pp_hash computation for folding schemes - add pp_hash to solidity contract generator to verify the decider proof
4 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
HyperNova: add multi-instances folding to AugmentedFCircuit & IVC (#119) - Adds the logic to support multi-instances folding in HyperNova's AugmentedFCircuit & IVC. - Adds also methods to generate new LCCCS & CCCS instances that don't depend on the main folding chain, to be folded in in the next step - Updates CycleFold circuit & methods to work other folding schemes than Nova, adapting it to fold multiple points per circuit (instead of 2-to-1 as till now) - Handle multi-instances folding in the FoldingScheme trait interface, which expects 'None' in Nova, and 'Some' in HyperNova & other multi-folding schemes.
4 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Add IVCProof to the existing folding schemes (Nova,HyperNova,ProtoGalaxy) (#167) * Add IVCProof to the existing folding schemes (Nova,HyperNova,ProtoGalaxy) * Implement `from_ivc_proof` for the FoldingSchemes trait (and Nova, HyperNova, ProtoGalaxy), so that the FoldingScheme IVC's instance can be constructed from the given parameters and the last IVCProof, which allows to sent the IVCProof between different parties, so that they can continue iterating the IVC from the received IVCProof. Also the serializers allow for the IVCProof to be sent to a verifier that can deserialize it and verify it. This allows to remove the logic from the file [folding/nova/serialize.rs](https://github.com/privacy-scaling-explorations/sonobe/blob/f1d82418ba047cf90805f2d0505370246df24d68/folding-schemes/src/folding/nova/serialize.rs) and [folding/hypernova/serialize.rs](https://github.com/privacy-scaling-explorations/sonobe/blob/f1d82418ba047cf90805f2d0505370246df24d68/folding-schemes/src/folding/hypernova/serialize.rs) (removing the whole files), which is now covered by the `IVCProof` generated serializers (generated by macro instead of handwritten), and the test that the file contained is now abstracted and applied to all the 3 existing folding schemes (Nova, HyperNova, ProtoGalaxy) at the folding/mod.rs file. * update Nova VerifierParams serializers to avoid serializing the R1CS to save big part of the old serialized size * rm .instances() since it's not needed * add nova params serialization to nova's ivc test to ensure that IVC verification works with deserialized data * Add unified FS::ProverParam & VerifierParam serialization & deserialization (for all Nova, HyperNova and ProtoGalaxy), without serializing the R1CS/CCS and thus saving substantial serialized bytes space. * rm CanonicalDeserialize warnings msgs for VerifierParams
1 month ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
HyperNova: add multi-instances folding to AugmentedFCircuit & IVC (#119) - Adds the logic to support multi-instances folding in HyperNova's AugmentedFCircuit & IVC. - Adds also methods to generate new LCCCS & CCCS instances that don't depend on the main folding chain, to be folded in in the next step - Updates CycleFold circuit & methods to work other folding schemes than Nova, adapting it to fold multiple points per circuit (instead of 2-to-1 as till now) - Handle multi-instances folding in the FoldingScheme trait interface, which expects 'None' in Nova, and 'Some' in HyperNova & other multi-folding schemes.
4 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Add IVCProof to the existing folding schemes (Nova,HyperNova,ProtoGalaxy) (#167) * Add IVCProof to the existing folding schemes (Nova,HyperNova,ProtoGalaxy) * Implement `from_ivc_proof` for the FoldingSchemes trait (and Nova, HyperNova, ProtoGalaxy), so that the FoldingScheme IVC's instance can be constructed from the given parameters and the last IVCProof, which allows to sent the IVCProof between different parties, so that they can continue iterating the IVC from the received IVCProof. Also the serializers allow for the IVCProof to be sent to a verifier that can deserialize it and verify it. This allows to remove the logic from the file [folding/nova/serialize.rs](https://github.com/privacy-scaling-explorations/sonobe/blob/f1d82418ba047cf90805f2d0505370246df24d68/folding-schemes/src/folding/nova/serialize.rs) and [folding/hypernova/serialize.rs](https://github.com/privacy-scaling-explorations/sonobe/blob/f1d82418ba047cf90805f2d0505370246df24d68/folding-schemes/src/folding/hypernova/serialize.rs) (removing the whole files), which is now covered by the `IVCProof` generated serializers (generated by macro instead of handwritten), and the test that the file contained is now abstracted and applied to all the 3 existing folding schemes (Nova, HyperNova, ProtoGalaxy) at the folding/mod.rs file. * update Nova VerifierParams serializers to avoid serializing the R1CS to save big part of the old serialized size * rm .instances() since it's not needed * add nova params serialization to nova's ivc test to ensure that IVC verification works with deserialized data * Add unified FS::ProverParam & VerifierParam serialization & deserialization (for all Nova, HyperNova and ProtoGalaxy), without serializing the R1CS/CCS and thus saving substantial serialized bytes space. * rm CanonicalDeserialize warnings msgs for VerifierParams
1 month ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
Implement HyperNova's IVC into the FoldingScheme trait (#116) - implement the IVC `FoldingScheme` trait for HyperNova - refactor Nova's preprocess logic to make it simplier to use - add to Decider trait (& Nova's DeciderEth) a preprocess method - get rid of the `init_nova_ivc_params` and `init_ivc_and_decider_params` methods in `examples` since this is achieved with the `FS::preprocess` & `Decider::preprocess` methods - (update the examples code to the simplified interface using FS::preprocess & Decider::preprocess)
4 months ago
Circom external inputs (#91) * circom: add external_inputs * adapt new external_inputs interface to the FoldingScheme trait and Nova impl * adapt examples to new FCircuit external_inputs interface * add state_len & external_inputs_len params to CircomFCircuit * add examples/circom_full_flow.rs * merge the params initializer functions, clippy * circom: move r1cs reading to FCircuit::new instead of each step * CI/examples: add circom so it can run the circom_full_flow example
6 months ago
  1. #![allow(non_snake_case)]
  2. #![allow(non_camel_case_types)]
  3. #![allow(clippy::upper_case_acronyms)]
  4. ///
  5. /// This example performs the full flow:
  6. /// - define the circuit to be folded
  7. /// - fold the circuit with Nova+CycleFold's IVC
  8. /// - generate a DeciderEthCircuit final proof
  9. /// - generate the Solidity contract that verifies the proof
  10. /// - verify the proof in the EVM
  11. ///
  12. use ark_bn254::{constraints::GVar, Bn254, Fr, G1Projective as G1};
  14. use ark_groth16::Groth16;
  15. use ark_grumpkin::{constraints::GVar as GVar2, Projective as G2};
  17. use std::path::PathBuf;
  18. use std::time::Instant;
  20. use folding_schemes::{
  21. commitment::{kzg::KZG, pedersen::Pedersen},
  22. folding::nova::{
  23. decider_eth::{prepare_calldata, Decider as DeciderEth},
  24. Nova, PreprocessorParam,
  25. },
  26. frontend::{circom::CircomFCircuit, FCircuit},
  27. transcript::poseidon::poseidon_canonical_config,
  28. Decider, FoldingScheme,
  29. };
  30. use solidity_verifiers::{
  31. evm::{compile_solidity, Evm},
  32. utils::get_function_selector_for_nova_cyclefold_verifier,
  33. verifiers::nova_cyclefold::get_decider_template_for_cyclefold_decider,
  34. NovaCycleFoldVerifierKey,
  35. };
  37. fn main() {
  38. // set the initial state
  39. let z_0 = vec![Fr::from(3_u32)];
  41. // set the external inputs to be used at each step of the IVC, it has length of 10 since this
  42. // is the number of steps that we will do
  43. let external_inputs = vec![
  44. vec![Fr::from(6u32), Fr::from(7u32)],
  45. vec![Fr::from(8u32), Fr::from(9u32)],
  46. vec![Fr::from(10u32), Fr::from(11u32)],
  47. vec![Fr::from(12u32), Fr::from(13u32)],
  48. vec![Fr::from(14u32), Fr::from(15u32)],
  49. vec![Fr::from(6u32), Fr::from(7u32)],
  50. vec![Fr::from(8u32), Fr::from(9u32)],
  51. vec![Fr::from(10u32), Fr::from(11u32)],
  52. vec![Fr::from(12u32), Fr::from(13u32)],
  53. vec![Fr::from(14u32), Fr::from(15u32)],
  54. ];
  56. // initialize the Circom circuit
  57. let r1cs_path = PathBuf::from(
  58. "./folding-schemes/src/frontend/circom/test_folder/with_external_inputs.r1cs",
  59. );
  60. let wasm_path = PathBuf::from(
  61. "./folding-schemes/src/frontend/circom/test_folder/with_external_inputs_js/with_external_inputs.wasm",
  62. );
  64. let f_circuit_params = (r1cs_path.into(), wasm_path.into(), 1, 2);
  65. let f_circuit = CircomFCircuit::<Fr>::new(f_circuit_params).unwrap();
  67. pub type N =
  68. Nova<G1, GVar, G2, GVar2, CircomFCircuit<Fr>, KZG<'static, Bn254>, Pedersen<G2>, false>;
  69. pub type D = DeciderEth<
  70. G1,
  71. GVar,
  72. G2,
  73. GVar2,
  74. CircomFCircuit<Fr>,
  75. KZG<'static, Bn254>,
  76. Pedersen<G2>,
  77. Groth16<Bn254>,
  78. N,
  79. >;
  81. let poseidon_config = poseidon_canonical_config::<Fr>();
  82. let mut rng = rand::rngs::OsRng;
  84. // prepare the Nova prover & verifier params
  85. let nova_preprocess_params = PreprocessorParam::new(poseidon_config, f_circuit.clone());
  86. let nova_params = N::preprocess(&mut rng, &nova_preprocess_params).unwrap();
  88. // initialize the folding scheme engine, in our case we use Nova
  89. let mut nova = N::init(&nova_params, f_circuit.clone(), z_0).unwrap();
  91. // prepare the Decider prover & verifier params
  92. let (decider_pp, decider_vp) =
  93. D::preprocess(&mut rng, nova_params.clone(), nova.clone()).unwrap();
  95. // run n steps of the folding iteration
  96. for (i, external_inputs_at_step) in external_inputs.iter().enumerate() {
  97. let start = Instant::now();
  98. nova.prove_step(rng, external_inputs_at_step.clone(), None)
  99. .unwrap();
  100. println!("Nova::prove_step {}: {:?}", i, start.elapsed());
  101. }
  103. // verify the last IVC proof
  104. let ivc_proof = nova.ivc_proof();
  105. N::verify(
  106. nova_params.1, // Nova's verifier params
  107. ivc_proof,
  108. )
  109. .unwrap();
  111. let start = Instant::now();
  112. let proof = D::prove(rng, decider_pp, nova.clone()).unwrap();
  113. println!("generated Decider proof: {:?}", start.elapsed());
  115. let verified = D::verify(
  116. decider_vp.clone(),
  117. nova.i,
  118. nova.z_0.clone(),
  119. nova.z_i.clone(),
  120. &nova.U_i,
  121. &nova.u_i,
  122. &proof,
  123. )
  124. .unwrap();
  125. assert!(verified);
  126. println!("Decider proof verification: {}", verified);
  128. // Now, let's generate the Solidity code that verifies this Decider final proof
  129. let function_selector =
  130. get_function_selector_for_nova_cyclefold_verifier(nova.z_0.len() * 2 + 1);
  132. let calldata: Vec<u8> = prepare_calldata(
  133. function_selector,
  134. nova.i,
  135. nova.z_0,
  136. nova.z_i,
  137. &nova.U_i,
  138. &nova.u_i,
  139. proof,
  140. )
  141. .unwrap();
  143. // prepare the setup params for the solidity verifier
  144. let nova_cyclefold_vk = NovaCycleFoldVerifierKey::from((decider_vp, f_circuit.state_len()));
  146. // generate the solidity code
  147. let decider_solidity_code = get_decider_template_for_cyclefold_decider(nova_cyclefold_vk);
  149. // verify the proof against the solidity code in the EVM
  150. let nova_cyclefold_verifier_bytecode = compile_solidity(&decider_solidity_code, "NovaDecider");
  151. let mut evm = Evm::default();
  152. let verifier_address = evm.create(nova_cyclefold_verifier_bytecode);
  153. let (_, output) = evm.call(verifier_address, calldata.clone());
  154. assert_eq!(*output.last().unwrap(), 1);
  156. // save smart contract and the calldata
  157. println!("storing nova-verifier.sol and the calldata into files");
  158. use std::fs;
  159. fs::write(
  160. "./examples/nova-verifier.sol",
  161. decider_solidity_code.clone(),
  162. )
  163. .unwrap();
  164. fs::write("./examples/solidity-calldata.calldata", calldata.clone()).unwrap();
  165. let s = solidity_verifiers::utils::get_formatted_calldata(calldata.clone());
  166. fs::write("./examples/solidity-calldata.inputs", s.join(",\n")).expect("");
  167. }