mirror of
https://github.com/logos-co/nomos-pocs.git
synced 2025-01-10 17:36:01 +00:00
63 lines
1.7 KiB
Plaintext
63 lines
1.7 KiB
Plaintext
|
/*
|
||
|
Copyright 2018 0KIMS association.
|
||
|
|
||
|
This file is part of circom (Zero Knowledge Circuit Compiler).
|
||
|
|
||
|
circom is a free software: you can redistribute it and/or modify it
|
||
|
under the terms of the GNU General Public License as published by
|
||
|
the Free Software Foundation, either version 3 of the License, or
|
||
|
(at your option) any later version.
|
||
|
|
||
|
circom is distributed in the hope that it will be useful, but WITHOUT
|
||
|
ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
||
|
or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public
|
||
|
License for more details.
|
||
|
|
||
|
You should have received a copy of the GNU General Public License
|
||
|
along with circom. If not, see <https://www.gnu.org/licenses/>.
|
||
|
*/
|
||
|
pragma circom 2.1.9;
|
||
|
|
||
|
template JubjubAdd() {
|
||
|
signal input x1;
|
||
|
signal input y1;
|
||
|
signal input x2;
|
||
|
signal input y2;
|
||
|
signal output xout;
|
||
|
signal output yout;
|
||
|
|
||
|
signal beta;
|
||
|
signal gamma;
|
||
|
signal delta;
|
||
|
signal tau;
|
||
|
|
||
|
var a = 0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000000;
|
||
|
var d = 0x2a9318e74bfa2b48f5fd9207e6bd7fd4292d7f6d37579d2601065fd6d6343eb1;
|
||
|
|
||
|
beta <== x1*y2;
|
||
|
gamma <== y1*x2;
|
||
|
delta <== (-a*x1+y1)*(x2 + y2);
|
||
|
tau <== beta * gamma;
|
||
|
|
||
|
xout <-- (beta + gamma) / (1+ d*tau);
|
||
|
(1+ d*tau) * xout === (beta + gamma);
|
||
|
|
||
|
yout <-- (delta + a*beta - gamma) / (1-d*tau);
|
||
|
(1-d*tau)*yout === (delta + a*beta - gamma);
|
||
|
}
|
||
|
|
||
|
template JubjubDbl() {
|
||
|
signal input x;
|
||
|
signal input y;
|
||
|
signal output xout;
|
||
|
signal output yout;
|
||
|
|
||
|
component adder = JubjubAdd();
|
||
|
adder.x1 <== x;
|
||
|
adder.y1 <== y;
|
||
|
adder.x2 <== x;
|
||
|
adder.y2 <== y;
|
||
|
|
||
|
adder.xout ==> xout;
|
||
|
adder.yout ==> yout;
|
||
|
}
|