Feature/nova ivc (#36)

* Implement Nova IVC's new & prove_step methods Implement Nova IVC's new & prove_step methods (without CycleFold part yet) * transcript.absorb_point err handling, and update C.xy() usage * add transcript usage to IVC prove, add NovaTranscript trait extending Transcript trait, refactor NIFS.P to allow absorbing in transcript inbetween * Implement Nova's IVC.V method (without CycleFold part yet) * clippy lints * move challenge r computation in-circuit * reuse computed points with coordinates over CF (non-native) to save constraints in AugmentedFCircuit (constraint count went down ~6k) * rm 128 bit constant * add params to Errors * Updates from review suggestions. Additionally refactored nova/nifs fold, and rm transcript from nova/IVC. - Updates from PR suggestions - Additionally updated: - in nova/nifs.rs: reuse folded_committed_instance for verify_folded_instance, computationally is the same, but reusing the same code so avoiding duplication and having an error on one of the two versions. - in nova/ivc.rs: remove transcript from IVC (not needed, it uses the RO)
2026-02-02 17:26:44 +01:00 · 2023-11-24 11:15:14 +01:00
parent 6d919d7a5b
commit 905ba44d8d
15 changed files with 663 additions and 174 deletions
--- a/src/folding/nova/mod.rs
+++ b/src/folding/nova/mod.rs
@@ -7,14 +7,15 @@ use ark_ec::{CurveGroup, Group};
 use ark_std::fmt::Debug;
 use ark_std::{One, Zero};

-use crate::ccs::r1cs::R1CS;
 use crate::folding::circuits::nonnative::point_to_nonnative_limbs;
 use crate::pedersen::{Params as PedersenParams, Pedersen};
 use crate::utils::vec::is_zero_vec;
 use crate::Error;

 pub mod circuits;
+pub mod ivc;
 pub mod nifs;
+pub mod traits;

 #[derive(Debug, Clone, Eq, PartialEq)]
 pub struct CommittedInstance<C: CurveGroup> {
@@ -52,7 +53,7 @@ where
        let (cmE_x, cmE_y) = point_to_nonnative_limbs::<C>(self.cmE)?;
        let (cmW_x, cmW_y) = point_to_nonnative_limbs::<C>(self.cmW)?;

-        Ok(CRH::<C::ScalarField>::evaluate(
+        CRH::<C::ScalarField>::evaluate(
            poseidon_config,
            vec![
                vec![i],
@@ -67,7 +68,7 @@ where
            ]
            .concat(),
        )
-        .unwrap())
+        .map_err(|e| Error::Other(e.to_string()))
    }
 }

@@ -109,16 +110,3 @@ where
        })
    }
 }
-
-pub fn check_instance_relation<C: CurveGroup>(
-    r1cs: &R1CS<C::ScalarField>,
-    W: &Witness<C>,
-    U: &CommittedInstance<C>,
-) -> Result<(), Error> {
-    let mut rel_r1cs = r1cs.clone().relax();
-    rel_r1cs.u = U.u;
-    rel_r1cs.E = W.E.clone();
-
-    let Z: Vec<C::ScalarField> = [vec![U.u], U.x.to_vec(), W.W.to_vec()].concat();
-    rel_r1cs.check_relation(&Z)
-}