nim-poseidon2/poseidon2.nim

import
  constantine/math/arithmetic,
  constantine/math/config/curves

import poseidon2/types
import poseidon2/roundconst
import poseidon2/io

#-------------------------------------------------------------------------------

const zero : F = getZero()

const externalRoundConst : array[24, F] = arrayFromHex( externalRoundConstStr )
const internalRoundConst : array[56, F] = arrayFromHex( internalRoundConstStr )

#-------------------------------------------------------------------------------

# inplace sbox, x => x^5
func sbox(x: var F) : void =
  var y = x
  square(y)
  square(y)
  x *= y

func linearLayer(x, y, z : var F) =
  var s = x ; s += y ; s += z
  x += s
  y += s
  z += s

func internalRound(j: int; x, y, z: var F) =
  x += internalRoundConst[j]
  sbox(x)
  var s = x ; s += y ;  s += z
  double(z)
  x += s
  y += s
  z += s

func externalRound(j: int; x, y, z : var F) =
  x += externalRoundConst[3*j+0]
  y += externalRoundConst[3*j+1]
  z += externalRoundConst[3*j+2]
  sbox(x) ; sbox(y) ; sbox(z)
  var s = x ; s += y ; s += z
  x += s
  y += s
  z += s

func permInplace*(x, y, z : var F) =
  linearLayer(x, y, z);
  for j in 0..3:
    externalRound(j, x, y, z)
  for j in 0..55:
    internalRound(j, x, y, z)
  for j in 4..7:
    externalRound(j, x, y, z)

func perm*(xyz: S) : S =
  var (x,y,z) = xyz
  permInplace(x, y, z)
  return (x,y,z)

#-------------------------------------------------------------------------------

func compress*(a, b : F) : F =
  var x = a
  var y = b
  var z : F ; setZero(z)
  permInplace(x, y, z)
  return x

func merkleRoot*(xs: openArray[F]) : F =
  let a = low(xs)
  let b = high(xs)
  let m = b-a+1

  if m==1:
    return xs[a]

  else:
    let halfn  : int  = m div 2
    let n      : int  = 2*halfn
    let isOdd : bool = (n != m)

    var ys : seq[F] = newSeq[F](halfn)

    if not isOdd:
      for i in 0..<halfn:
        ys[i] = compress( xs[a+2*i], xs[a+2*i+1] )

    else:
      for i in 0..<halfn-1:
        ys[i] = compress( xs[a+2*i], xs[a+2*i+1] )
      # and the last one:
      ys[halfn-1] = compress( xs[a+n-2], zero )

    return merkleRoot(ys)

func merkleRoot*(bytes: openArray[byte]): F =
  merkleRoot(seq[F].unmarshal(bytes))
Add nimble dependency on constantine 2023-10-24 13:54:39 +02:00			`import`
			`constantine/math/arithmetic,`
			`constantine/math/config/curves`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
Fix imports 2023-10-24 13:57:47 +02:00			`import poseidon2/types`
			`import poseidon2/roundconst`
move unmarshal into its own module called 'io' Includes separate tests for unmarshalling that were previously tested as part of the merkleRoot calculation. Includes tests for unmarshalling little endian and big endian byte arrays. 2023-10-31 13:40:07 +01:00			`import poseidon2/io`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
			`#-------------------------------------------------------------------------------`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`const zero : F = getZero()`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
Perform string to array conversion at compiletime 2023-10-24 14:21:37 +02:00			`const externalRoundConst : array[24, F] = arrayFromHex( externalRoundConstStr )`
			`const internalRoundConst : array[56, F] = arrayFromHex( internalRoundConstStr )`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
			`#-------------------------------------------------------------------------------`

			`# inplace sbox, x => x^5`
Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func sbox(x: var F) : void =`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`var y = x`
			`square(y)`
			`square(y)`
			`x *= y`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func linearLayer(x, y, z : var F) =`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`var s = x ; s += y ; s += z`
			`x += s`
			`y += s`
			`z += s`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func internalRound(j: int; x, y, z: var F) =`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`x += internalRoundConst[j]`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`sbox(x)`
			`var s = x ; s += y ; s += z`
			`double(z)`
Remove trailing whitespace 2023-10-24 13:55:04 +02:00			`x += s`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`y += s`
			`z += s`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func externalRound(j: int; x, y, z : var F) =`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`x += externalRoundConst[3*j+0]`
			`y += externalRoundConst[3*j+1]`
			`z += externalRoundConst[3*j+2]`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`sbox(x) ; sbox(y) ; sbox(z)`
			`var s = x ; s += y ; s += z`
			`x += s`
			`y += s`
			`z += s`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func permInplace*(x, y, z : var F) =`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`linearLayer(x, y, z);`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`for j in 0..3:`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`externalRound(j, x, y, z)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`for j in 0..55:`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`internalRound(j, x, y, z)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`for j in 4..7:`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`externalRound(j, x, y, z)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func perm*(xyz: S) : S =`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`var (x,y,z) = xyz`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`permInplace(x, y, z)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`return (x,y,z)`

			`#-------------------------------------------------------------------------------`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func compress*(a, b : F) : F =`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`var x = a`
			`var y = b`
			`var z : F ; setZero(z)`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`permInplace(x, y, z)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`return x`

Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func merkleRoot*(xs: openArray[F]) : F =`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`let a = low(xs)`
			`let b = high(xs)`
			`let m = b-a+1`

			`if m==1:`
			`return xs[a]`

			`else:`
			`let halfn : int = m div 2`
			`let n : int = 2*halfn`
Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`let isOdd : bool = (n != m)`
Remove trailing whitespace 2023-10-24 13:55:04 +02:00
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`var ys : seq[F] = newSeq[F](halfn)`

Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`if not isOdd:`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00			`for i in 0..<halfn:`
			`ys[i] = compress( xs[a+2i], xs[a+2i+1] )`

			`else:`
			`for i in 0..<halfn-1:`
			`ys[i] = compress( xs[a+2i], xs[a+2i+1] )`
			`# and the last one:`
			`ys[halfn-1] = compress( xs[a+n-2], zero )`

Convert under_scores to camelCase 2023-10-24 14:16:54 +02:00			`return merkleRoot(ys)`
quick Nim implementation of Poseidon2 via constantine (BN254, t=3) 2023-07-28 22:10:14 +02:00
Ensure that we don't have any side-effects Required for integration into libp2p, and a good idea in general :) 2023-11-01 10:34:55 +01:00			`func merkleRoot*(bytes: openArray[byte]): F =`
Only support unmarshalling of little-endian bytes Big-endian bytes had weird padding; 0's to the right, then a single 0 to the left. 2023-11-02 09:00:03 +01:00			`merkleRoot(seq[F].unmarshal(bytes))`