logos-blockchain-pocs/goas/atomic_asset_transfer/executor/src/lib.rs

use std::collections::BTreeMap;

use common::{AccountId, SignedBoundTx, StateWitness, Tx, ZoneMetadata};
use goas_proof_statements::{
    user_note::UserAtomicTransfer, zone_funds::SpendFundsPrivate, zone_state::ZoneStatePrivate,
};
use rand_core::CryptoRngCore;

#[derive(Debug, Clone)]
pub struct ZoneNotes {
    pub state: StateWitness,
    pub state_note: cl::OutputWitness,
    pub fund_note: cl::OutputWitness,
}

impl ZoneNotes {
    pub fn new_with_balances(
        zone_name: &str,
        balances: BTreeMap<AccountId, u64>,
        mut rng: impl CryptoRngCore,
    ) -> Self {
        let state = StateWitness {
            balances,
            included_txs: vec![],
            zone_metadata: zone_metadata(zone_name),
        };
        let state_note = zone_state_utxo(&state, &mut rng);
        let fund_note = zone_fund_utxo(state.total_balance(), state.zone_metadata, &mut rng);
        Self {
            state,
            state_note,
            fund_note,
        }
    }

    pub fn state_input_witness(&self) -> cl::InputWitness {
        cl::InputWitness::public(self.state_note)
    }

    pub fn fund_input_witness(&self) -> cl::InputWitness {
        cl::InputWitness::public(self.fund_note)
    }

    pub fn run(mut self, txs: impl IntoIterator<Item = Tx>) -> Self {
        for tx in txs {
            self.state = self.state.apply(tx);
        }

        let state_in = self.state_input_witness();
        self.state_note = cl::OutputWitness::public(
            cl::NoteWitness {
                state: self.state.commit().0,
                ..state_in.note
            },
            state_in.evolved_nonce(b"STATE_NONCE"),
        );

        let fund_in = self.fund_input_witness();
        self.fund_note = cl::OutputWitness::public(
            cl::NoteWitness {
                value: self.state.total_balance(),
                ..fund_in.note
            },
            state_in.evolved_nonce(b"FUND_NONCE"),
        );
        self
    }
}

fn zone_fund_utxo(
    value: u64,
    zone_meta: ZoneMetadata,
    mut rng: impl CryptoRngCore,
) -> cl::OutputWitness {
    cl::OutputWitness::public(
        cl::NoteWitness {
            value,
            unit: *common::ZONE_CL_FUNDS_UNIT,
            death_constraint: zone_meta.funds_vk,
            state: zone_meta.id(),
        },
        cl::NullifierNonce::random(&mut rng),
    )
}

fn zone_state_utxo(zone: &StateWitness, mut rng: impl CryptoRngCore) -> cl::OutputWitness {
    cl::OutputWitness::public(
        cl::NoteWitness {
            value: 1,
            unit: zone.zone_metadata.unit,
            death_constraint: zone.zone_metadata.zone_vk,
            state: zone.commit().0,
        },
        cl::NullifierNonce::random(&mut rng),
    )
}

pub fn user_atomic_transfer_death_constraint() -> [u8; 32] {
    ledger::death_constraint::risc0_id_to_cl_death_constraint(
        goas_risc0_proofs::USER_ATOMIC_TRANSFER_ID,
    )
}

pub fn zone_state_death_constraint() -> [u8; 32] {
    ledger::death_constraint::risc0_id_to_cl_death_constraint(goas_risc0_proofs::ZONE_STATE_ID)
}

pub fn zone_fund_death_constraint() -> [u8; 32] {
    ledger::death_constraint::risc0_id_to_cl_death_constraint(
        goas_risc0_proofs::SPEND_ZONE_FUNDS_ID,
    )
}

pub fn zone_metadata(zone_mnemonic: &str) -> ZoneMetadata {
    ZoneMetadata {
        zone_vk: zone_state_death_constraint(),
        funds_vk: zone_fund_death_constraint(),
        unit: cl::note::unit_point(zone_mnemonic),
    }
}

pub fn prove_zone_stf(
    state: StateWitness,
    inputs: Vec<(SignedBoundTx, cl::PartialTxInputWitness)>,
    zone_in: cl::PartialTxInputWitness,
    zone_out: cl::PartialTxOutputWitness,
    funds_out: cl::PartialTxOutputWitness,
) -> ledger::DeathProof {
    let private_inputs = ZoneStatePrivate {
        state,
        inputs,
        zone_in,
        zone_out,
        funds_out,
    };

    let env = risc0_zkvm::ExecutorEnv::builder()
        .write(&private_inputs)
        .unwrap()
        .build()
        .unwrap();

    let prover = risc0_zkvm::default_prover();

    use std::time::Instant;
    let start_t = Instant::now();
    let opts = risc0_zkvm::ProverOpts::succinct();
    let prove_info = prover
        .prove_with_opts(env, goas_risc0_proofs::ZONE_STATE_ELF, &opts)
        .unwrap();
    println!(
        "STARK 'zone_stf' prover time: {:.2?}, total_cycles: {}",
        start_t.elapsed(),
        prove_info.stats.total_cycles
    );
    let receipt = prove_info.receipt;
    ledger::DeathProof::from_risc0(goas_risc0_proofs::ZONE_STATE_ID, receipt)
}

pub fn prove_zone_fund_constraint(
    in_zone_funds: cl::PartialTxInputWitness,
    zone_note: cl::PartialTxOutputWitness,
    out_zone_state: &StateWitness,
) -> ledger::DeathProof {
    let private_inputs = SpendFundsPrivate {
        in_zone_funds,
        zone_note,
        state_witness: out_zone_state.clone(),
    };

    let env = risc0_zkvm::ExecutorEnv::builder()
        .write(&private_inputs)
        .unwrap()
        .build()
        .unwrap();

    let prover = risc0_zkvm::default_prover();

    use std::time::Instant;
    let start_t = Instant::now();
    let opts = risc0_zkvm::ProverOpts::succinct();
    let prove_info = prover
        .prove_with_opts(env, goas_risc0_proofs::SPEND_ZONE_FUNDS_ELF, &opts)
        .unwrap();
    println!(
        "STARK 'zone_fund' prover time: {:.2?}, total_cycles: {}",
        start_t.elapsed(),
        prove_info.stats.total_cycles
    );
    let receipt = prove_info.receipt;
    ledger::DeathProof::from_risc0(goas_risc0_proofs::SPEND_ZONE_FUNDS_ID, receipt)
}

pub fn prove_user_atomic_transfer(atomic_transfer: UserAtomicTransfer) -> ledger::DeathProof {
    let env = risc0_zkvm::ExecutorEnv::builder()
        .write(&atomic_transfer)
        .unwrap()
        .build()
        .unwrap();

    let prover = risc0_zkvm::default_prover();

    use std::time::Instant;
    let start_t = Instant::now();
    let opts = risc0_zkvm::ProverOpts::succinct();
    let prove_info = prover
        .prove_with_opts(env, goas_risc0_proofs::USER_ATOMIC_TRANSFER_ELF, &opts)
        .unwrap();
    println!(
        "STARK 'user atomic transfer' prover time: {:.2?}, total_cycles: {}",
        start_t.elapsed(),
        prove_info.stats.total_cycles
    );
    let receipt = prove_info.receipt;
    ledger::DeathProof::from_risc0(goas_risc0_proofs::USER_ATOMIC_TRANSFER_ID, receipt)
}

#[cfg(test)]
mod tests {
    use cl::{note::unit_point, NoteWitness, NullifierNonce, OutputWitness, PartialTxWitness};
    use common::{BoundTx, Deposit, Withdraw};
    use goas_proof_statements::user_note::UserIntent;
    use ledger_proof_statements::death_constraint::DeathConstraintPublic;

    use super::*;

    #[test]
    pub fn test_prove_zone_stf() {
        let mut rng = rand::thread_rng();

        let zone_start = ZoneNotes::new_with_balances("ZONE", BTreeMap::from_iter([]), &mut rng);

        let bind = OutputWitness::public(
            NoteWitness::basic(32, *common::ZONE_CL_FUNDS_UNIT),
            cl::NullifierNonce([0u8; 32]),
        );

        let mut alice = common::new_account(&mut rng);
        let alice_vk = alice.verifying_key().to_bytes();

        let signed_deposit = SignedBoundTx::sign(
            BoundTx {
                tx: Tx::Deposit(Deposit {
                    to: alice_vk,
                    amount: 32,
                }),
                bind: bind.commit_note(),
            },
            &mut alice,
        );
        let signed_withdraw = SignedBoundTx::sign(
            BoundTx {
                tx: Tx::Withdraw(Withdraw {
                    from: alice_vk,
                    amount: 10,
                }),
                bind: bind.commit_note(),
            },
            &mut alice,
        );

        let zone_end = zone_start
            .clone()
            .run([signed_deposit.bound_tx.tx, signed_withdraw.bound_tx.tx]);

        let ptx = PartialTxWitness {
            inputs: vec![
                cl::InputWitness::public(bind),
                zone_start.state_input_witness(),
                zone_start.fund_input_witness(),
            ],
            outputs: vec![zone_end.state_note, zone_end.fund_note],
        };

        let txs = vec![
            (signed_deposit, ptx.input_witness(0)),
            (signed_withdraw, ptx.input_witness(0)),
        ];

        let proof = prove_zone_stf(
            zone_start.state.clone(),
            txs,
            ptx.input_witness(1),
            ptx.output_witness(0),
            ptx.output_witness(1),
        );

        assert!(proof.verify(DeathConstraintPublic {
            nf: zone_start.state_input_witness().nullifier(),
            ptx_root: ptx.commit().root(),
        }))
    }

    #[test]
    fn test_prove_zone_fund_constraint() {
        let zone =
            ZoneNotes::new_with_balances("ZONE", BTreeMap::from_iter([]), &mut rand::thread_rng());

        let ptx = PartialTxWitness {
            inputs: vec![zone.fund_input_witness()],
            outputs: vec![zone.state_note],
        };

        let proof =
            prove_zone_fund_constraint(ptx.input_witness(0), ptx.output_witness(0), &zone.state);

        assert!(proof.verify(DeathConstraintPublic {
            nf: zone.fund_input_witness().nullifier(),
            ptx_root: ptx.commit().root(),
        }))
    }

    #[test]
    fn test_prove_user_atomic_transfer() {
        let mut rng = rand::thread_rng();

        let alice = common::new_account(&mut rng);
        let alice_vk = alice.verifying_key().to_bytes();

        let mut zone_a =
            ZoneNotes::new_with_balances("ZONE_A", BTreeMap::from_iter([(alice_vk, 40)]), &mut rng);
        let mut zone_b = ZoneNotes::new_with_balances("ZONE_B", BTreeMap::new(), &mut rng);

        let user_intent = UserIntent {
            zone_a_meta: zone_a.state.zone_metadata,
            zone_b_meta: zone_b.state.zone_metadata,
            withdraw: Withdraw {
                from: alice_vk,
                amount: 32,
            },
            deposit: Deposit {
                to: alice_vk,
                amount: 32,
            },
        };
        let user_note = cl::InputWitness::public(cl::OutputWitness::public(
            NoteWitness::new(1, unit_point("INTENT"), [0u8; 32], user_intent.commit()),
            NullifierNonce::random(&mut rng),
        ));

        zone_a = zone_a.run([Tx::Withdraw(user_intent.withdraw)]);
        zone_b = zone_b.run([Tx::Deposit(user_intent.deposit)]);

        let ptx = PartialTxWitness {
            inputs: vec![user_note],
            outputs: vec![zone_a.state_note, zone_b.state_note],
        };

        let user_atomic_transfer = UserAtomicTransfer {
            user_note: ptx.input_witness(0),
            user_intent,
            zone_a: ptx.output_witness(0),
            zone_b: ptx.output_witness(1),
            zone_a_roots: zone_a.state.state_roots(),
            zone_b_roots: zone_b.state.state_roots(),
            withdraw_tx: zone_a.state.included_tx_witness(0),
            deposit_tx: zone_b.state.included_tx_witness(0),
        };

        let proof = prove_user_atomic_transfer(user_atomic_transfer);

        assert!(proof.verify(DeathConstraintPublic {
            nf: user_note.nullifier(),
            ptx_root: ptx.commit().root(),
        }))
    }
}
goas: reuse ZoneNotes struct in the deposit/withdrawal scenarios 2024-08-11 23:08:40 +04:00			`use std::collections::BTreeMap;`

goas: in zone tx signing/verifying 2024-08-17 20:45:56 +04:00			`use common::{AccountId, SignedBoundTx, StateWitness, Tx, ZoneMetadata};`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00			`use goas_proof_statements::{`
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`user_note::UserAtomicTransfer, zone_funds::SpendFundsPrivate, zone_state::ZoneStatePrivate,`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00			`};`
goas: reuse ZoneNotes struct in the deposit/withdrawal scenarios 2024-08-11 23:08:40 +04:00			`use rand_core::CryptoRngCore;`

			`#[derive(Debug, Clone)]`
			`pub struct ZoneNotes {`
			`pub state: StateWitness,`
			`pub state_note: cl::OutputWitness,`
			`pub fund_note: cl::OutputWitness,`
			`}`

			`impl ZoneNotes {`
			`pub fn new_with_balances(`
			`zone_name: &str,`
goas: in zone tx signing/verifying 2024-08-17 20:45:56 +04:00			`balances: BTreeMap<AccountId, u64>,`
goas: reuse ZoneNotes struct in the deposit/withdrawal scenarios 2024-08-11 23:08:40 +04:00			`mut rng: impl CryptoRngCore,`
			`) -> Self {`
			`let state = StateWitness {`
			`balances,`
			`included_txs: vec![],`
			`zone_metadata: zone_metadata(zone_name),`
			`};`
			`let state_note = zone_state_utxo(&state, &mut rng);`
			`let fund_note = zone_fund_utxo(state.total_balance(), state.zone_metadata, &mut rng);`
			`Self {`
			`state,`
			`state_note,`
			`fund_note,`
			`}`
			`}`

			`pub fn state_input_witness(&self) -> cl::InputWitness {`
			`cl::InputWitness::public(self.state_note)`
			`}`

			`pub fn fund_input_witness(&self) -> cl::InputWitness {`
			`cl::InputWitness::public(self.fund_note)`
			`}`

			`pub fn run(mut self, txs: impl IntoIterator<Item = Tx>) -> Self {`
			`for tx in txs {`
			`self.state = self.state.apply(tx);`
			`}`

			`let state_in = self.state_input_witness();`
			`self.state_note = cl::OutputWitness::public(`
			`cl::NoteWitness {`
			`state: self.state.commit().0,`
			`..state_in.note`
			`},`
goas: more robust nonce evolution strategy 2024-08-17 16:58:13 +04:00			`state_in.evolved_nonce(b"STATE_NONCE"),`
goas: reuse ZoneNotes struct in the deposit/withdrawal scenarios 2024-08-11 23:08:40 +04:00			`);`

			`let fund_in = self.fund_input_witness();`
			`self.fund_note = cl::OutputWitness::public(`
			`cl::NoteWitness {`
			`value: self.state.total_balance(),`
			`..fund_in.note`
			`},`
goas: more robust nonce evolution strategy 2024-08-17 16:58:13 +04:00			`state_in.evolved_nonce(b"FUND_NONCE"),`
goas: reuse ZoneNotes struct in the deposit/withdrawal scenarios 2024-08-11 23:08:40 +04:00			`);`
			`self`
			`}`
			`}`

			`fn zone_fund_utxo(`
			`value: u64,`
			`zone_meta: ZoneMetadata,`
			`mut rng: impl CryptoRngCore,`
			`) -> cl::OutputWitness {`
			`cl::OutputWitness::public(`
			`cl::NoteWitness {`
			`value,`
			`unit: *common::ZONE_CL_FUNDS_UNIT,`
			`death_constraint: zone_meta.funds_vk,`
			`state: zone_meta.id(),`
			`},`
			`cl::NullifierNonce::random(&mut rng),`
			`)`
			`}`

			`fn zone_state_utxo(zone: &StateWitness, mut rng: impl CryptoRngCore) -> cl::OutputWitness {`
			`cl::OutputWitness::public(`
			`cl::NoteWitness {`
			`value: 1,`
			`unit: zone.zone_metadata.unit,`
			`death_constraint: zone.zone_metadata.zone_vk,`
			`state: zone.commit().0,`
			`},`
			`cl::NullifierNonce::random(&mut rng),`
			`)`
			`}`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00
			`pub fn user_atomic_transfer_death_constraint() -> [u8; 32] {`
			`ledger::death_constraint::risc0_id_to_cl_death_constraint(`
			`goas_risc0_proofs::USER_ATOMIC_TRANSFER_ID,`
			`)`
			`}`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00
goas: factor out common zone config to executor lib 2024-08-09 20:00:31 +04:00			`pub fn zone_state_death_constraint() -> [u8; 32] {`
			`ledger::death_constraint::risc0_id_to_cl_death_constraint(goas_risc0_proofs::ZONE_STATE_ID)`
			`}`

			`pub fn zone_fund_death_constraint() -> [u8; 32] {`
			`ledger::death_constraint::risc0_id_to_cl_death_constraint(`
			`goas_risc0_proofs::SPEND_ZONE_FUNDS_ID,`
			`)`
			`}`

			`pub fn zone_metadata(zone_mnemonic: &str) -> ZoneMetadata {`
			`ZoneMetadata {`
			`zone_vk: zone_state_death_constraint(),`
			`funds_vk: zone_fund_death_constraint(),`
			`unit: cl::note::unit_point(zone_mnemonic),`
			`}`
			`}`

Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`pub fn prove_zone_stf(`
			`state: StateWitness,`
goas: in zone tx signing/verifying 2024-08-17 20:45:56 +04:00			`inputs: Vec<(SignedBoundTx, cl::PartialTxInputWitness)>,`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`zone_in: cl::PartialTxInputWitness,`
			`zone_out: cl::PartialTxOutputWitness,`
Refactor zone auth (#19) * Refactor zone auth * remove redundant check 2024-08-08 17:50:28 +02:00			`funds_out: cl::PartialTxOutputWitness,`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`) -> ledger::DeathProof {`
			`let private_inputs = ZoneStatePrivate {`
			`state,`
			`inputs,`
			`zone_in,`
			`zone_out,`
Refactor zone auth (#19) * Refactor zone auth * remove redundant check 2024-08-08 17:50:28 +02:00			`funds_out,`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`};`

			`let env = risc0_zkvm::ExecutorEnv::builder()`
			`.write(&private_inputs)`
			`.unwrap()`
			`.build()`
			`.unwrap();`

			`let prover = risc0_zkvm::default_prover();`

			`use std::time::Instant;`
			`let start_t = Instant::now();`
			`let opts = risc0_zkvm::ProverOpts::succinct();`
			`let prove_info = prover`
			`.prove_with_opts(env, goas_risc0_proofs::ZONE_STATE_ELF, &opts)`
			`.unwrap();`
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`println!(`
			`"STARK 'zone_stf' prover time: {:.2?}, total_cycles: {}",`
			`start_t.elapsed(),`
			`prove_info.stats.total_cycles`
			`);`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`let receipt = prove_info.receipt;`
			`ledger::DeathProof::from_risc0(goas_risc0_proofs::ZONE_STATE_ID, receipt)`
			`}`

goas: add isolated test for zone fund constraint 2024-08-19 20:46:48 +04:00			`pub fn prove_zone_fund_constraint(`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`in_zone_funds: cl::PartialTxInputWitness,`
			`zone_note: cl::PartialTxOutputWitness,`
			`out_zone_state: &StateWitness,`
			`) -> ledger::DeathProof {`
			`let private_inputs = SpendFundsPrivate {`
			`in_zone_funds,`
			`zone_note,`
Refactor zone auth (#19) * Refactor zone auth * remove redundant check 2024-08-08 17:50:28 +02:00			`state_witness: out_zone_state.clone(),`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`};`

			`let env = risc0_zkvm::ExecutorEnv::builder()`
			`.write(&private_inputs)`
			`.unwrap()`
			`.build()`
			`.unwrap();`

			`let prover = risc0_zkvm::default_prover();`

			`use std::time::Instant;`
			`let start_t = Instant::now();`
			`let opts = risc0_zkvm::ProverOpts::succinct();`
			`let prove_info = prover`
			`.prove_with_opts(env, goas_risc0_proofs::SPEND_ZONE_FUNDS_ELF, &opts)`
			`.unwrap();`
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`println!(`
			`"STARK 'zone_fund' prover time: {:.2?}, total_cycles: {}",`
			`start_t.elapsed(),`
			`prove_info.stats.total_cycles`
			`);`
Integrate zone withdrawal with CL (#17) * aat: integrate withdraw with CL * aat: withdrawal passes! * aat: cleanup withdrawals a bit * aat: move Ptx{Input\|Output\|Private to cl::partial_tx * aat: zone_state zone transition validation coded w.r.t. metadata * aat: rename meta to in_meta in zone transition validation 2024-08-07 23:37:21 +04:00			`let receipt = prove_info.receipt;`
			`ledger::DeathProof::from_risc0(goas_risc0_proofs::SPEND_ZONE_FUNDS_ID, receipt)`
			`}`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`pub fn prove_user_atomic_transfer(atomic_transfer: UserAtomicTransfer) -> ledger::DeathProof {`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00			`let env = risc0_zkvm::ExecutorEnv::builder()`
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`.write(&atomic_transfer)`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00			`.unwrap()`
			`.build()`
			`.unwrap();`

			`let prover = risc0_zkvm::default_prover();`

			`use std::time::Instant;`
			`let start_t = Instant::now();`
			`let opts = risc0_zkvm::ProverOpts::succinct();`
			`let prove_info = prover`
			`.prove_with_opts(env, goas_risc0_proofs::USER_ATOMIC_TRANSFER_ELF, &opts)`
			`.unwrap();`
			`println!(`
goas: clippy + print proof cycles 2024-08-11 23:17:37 +04:00			`"STARK 'user atomic transfer' prover time: {:.2?}, total_cycles: {}",`
			`start_t.elapsed(),`
			`prove_info.stats.total_cycles`
goas: atomic transfer scenario 2024-08-10 21:09:36 +04:00			`);`
			`let receipt = prove_info.receipt;`
			`ledger::DeathProof::from_risc0(goas_risc0_proofs::USER_ATOMIC_TRANSFER_ID, receipt)`
			`}`
goas: isolated test for zone stf proof 2024-08-19 19:29:43 +04:00
			`#[cfg(test)]`
			`mod tests {`
goas: isolated test for user atomic transfer proof 2024-08-19 21:11:50 +04:00			`use cl::{note::unit_point, NoteWitness, NullifierNonce, OutputWitness, PartialTxWitness};`
goas: isolated test for zone stf proof 2024-08-19 19:29:43 +04:00			`use common::{BoundTx, Deposit, Withdraw};`
goas: isolated test for user atomic transfer proof 2024-08-19 21:11:50 +04:00			`use goas_proof_statements::user_note::UserIntent;`
goas: isolated test for zone stf proof 2024-08-19 19:29:43 +04:00			`use ledger_proof_statements::death_constraint::DeathConstraintPublic;`

			`use super::*;`

			`#[test]`
			`pub fn test_prove_zone_stf() {`
			`let mut rng = rand::thread_rng();`

			`let zone_start = ZoneNotes::new_with_balances("ZONE", BTreeMap::from_iter([]), &mut rng);`

			`let bind = OutputWitness::public(`
			`NoteWitness::basic(32, *common::ZONE_CL_FUNDS_UNIT),`
			`cl::NullifierNonce([0u8; 32]),`
			`);`

			`let mut alice = common::new_account(&mut rng);`
			`let alice_vk = alice.verifying_key().to_bytes();`

			`let signed_deposit = SignedBoundTx::sign(`
			`BoundTx {`
			`tx: Tx::Deposit(Deposit {`
			`to: alice_vk,`
			`amount: 32,`
			`}),`
			`bind: bind.commit_note(),`
			`},`
			`&mut alice,`
			`);`
			`let signed_withdraw = SignedBoundTx::sign(`
			`BoundTx {`
			`tx: Tx::Withdraw(Withdraw {`
			`from: alice_vk,`
			`amount: 10,`
			`}),`
			`bind: bind.commit_note(),`
			`},`
			`&mut alice,`
			`);`

			`let zone_end = zone_start`
			`.clone()`
			`.run([signed_deposit.bound_tx.tx, signed_withdraw.bound_tx.tx]);`

			`let ptx = PartialTxWitness {`
			`inputs: vec![`
			`cl::InputWitness::public(bind),`
			`zone_start.state_input_witness(),`
			`zone_start.fund_input_witness(),`
			`],`
			`outputs: vec![zone_end.state_note, zone_end.fund_note],`
			`};`

			`let txs = vec![`
			`(signed_deposit, ptx.input_witness(0)),`
			`(signed_withdraw, ptx.input_witness(0)),`
			`];`

			`let proof = prove_zone_stf(`
			`zone_start.state.clone(),`
			`txs,`
			`ptx.input_witness(1),`
			`ptx.output_witness(0),`
			`ptx.output_witness(1),`
			`);`

			`assert!(proof.verify(DeathConstraintPublic {`
			`nf: zone_start.state_input_witness().nullifier(),`
			`ptx_root: ptx.commit().root(),`
			`}))`
			`}`
goas: add isolated test for zone fund constraint 2024-08-19 20:46:48 +04:00
			`#[test]`
			`fn test_prove_zone_fund_constraint() {`
			`let zone =`
			`ZoneNotes::new_with_balances("ZONE", BTreeMap::from_iter([]), &mut rand::thread_rng());`

			`let ptx = PartialTxWitness {`
			`inputs: vec![zone.fund_input_witness()],`
			`outputs: vec![zone.state_note],`
			`};`

			`let proof =`
			`prove_zone_fund_constraint(ptx.input_witness(0), ptx.output_witness(0), &zone.state);`

			`assert!(proof.verify(DeathConstraintPublic {`
			`nf: zone.fund_input_witness().nullifier(),`
			`ptx_root: ptx.commit().root(),`
			`}))`
			`}`
goas: isolated test for user atomic transfer proof 2024-08-19 21:11:50 +04:00
			`#[test]`
			`fn test_prove_user_atomic_transfer() {`
			`let mut rng = rand::thread_rng();`

			`let alice = common::new_account(&mut rng);`
			`let alice_vk = alice.verifying_key().to_bytes();`

			`let mut zone_a =`
			`ZoneNotes::new_with_balances("ZONE_A", BTreeMap::from_iter([(alice_vk, 40)]), &mut rng);`
			`let mut zone_b = ZoneNotes::new_with_balances("ZONE_B", BTreeMap::new(), &mut rng);`

			`let user_intent = UserIntent {`
			`zone_a_meta: zone_a.state.zone_metadata,`
			`zone_b_meta: zone_b.state.zone_metadata,`
			`withdraw: Withdraw {`
			`from: alice_vk,`
			`amount: 32,`
			`},`
			`deposit: Deposit {`
			`to: alice_vk,`
			`amount: 32,`
			`},`
			`};`
			`let user_note = cl::InputWitness::public(cl::OutputWitness::public(`
			`NoteWitness::new(1, unit_point("INTENT"), [0u8; 32], user_intent.commit()),`
			`NullifierNonce::random(&mut rng),`
			`));`

			`zone_a = zone_a.run([Tx::Withdraw(user_intent.withdraw)]);`
			`zone_b = zone_b.run([Tx::Deposit(user_intent.deposit)]);`

			`let ptx = PartialTxWitness {`
			`inputs: vec![user_note],`
			`outputs: vec![zone_a.state_note, zone_b.state_note],`
			`};`

			`let user_atomic_transfer = UserAtomicTransfer {`
			`user_note: ptx.input_witness(0),`
			`user_intent,`
			`zone_a: ptx.output_witness(0),`
			`zone_b: ptx.output_witness(1),`
			`zone_a_roots: zone_a.state.state_roots(),`
			`zone_b_roots: zone_b.state.state_roots(),`
			`withdraw_tx: zone_a.state.included_tx_witness(0),`
			`deposit_tx: zone_b.state.included_tx_witness(0),`
			`};`

			`let proof = prove_user_atomic_transfer(user_atomic_transfer);`

			`assert!(proof.verify(DeathConstraintPublic {`
			`nf: user_note.nullifier(),`
			`ptx_root: ptx.commit().root(),`
			`}))`
			`}`
goas: isolated test for zone stf proof 2024-08-19 19:29:43 +04:00			`}`