2024-12-11 12:43:27 +01:00
2024-12-11 21:07:30 +01:00
{- # LANGUAGE StrictData, DeriveGeneric, DeriveAnyClass # -}
2024-12-11 12:43:27 +01:00
module Types where
--------------------------------------------------------------------------------
import Data.Word
2024-12-11 21:07:30 +01:00
import Data.Aeson
import GHC.Generics
2024-12-11 12:43:27 +01:00
import Goldilocks
2024-12-11 21:07:30 +01:00
import Digest
2024-12-11 12:43:27 +01:00
--------------------------------------------------------------------------------
2024-12-11 21:07:30 +01:00
newtype KeccakHash
= MkKeccakHash [ Word8 ]
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
2024-12-11 21:07:30 +01:00
newtype LookupTable
= MkLookupTable [ ( Word64 , Word64 ) ]
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
--------------------------------------------------------------------------------
data CommonCircuitData = MkCommonCircuitData
{ circuit_config :: CircuitConfig -- ^ Global circuit configuration
, circuit_fri_params :: FriParams -- ^ FRI parameters
, circuit_gates :: [ Gate ] -- ^ The types of gates used in this circuit, along with their prefixes.
, circuit_selectors_info :: SelectorsInfo -- ^ Information on the circuit's selector polynomials.
, circuit_quotient_degree_factor :: Int -- ^ The degree of the PLONK quotient polynomial.
, circuit_num_gate_constraints :: Int -- ^ The largest number of constraints imposed by any gate.
, circuit_num_constants :: Int -- ^ The number of constant wires.
, circuit_num_public_inputs :: Int -- ^ Number of public inputs
, circuit_k_is :: [ F ] -- ^ The @{k_i}@ values (coset shifts) used in @S_I D_i@ in Plonk's permutation argument.
, circuit_num_partial_products :: Int -- ^ The number of partial products needed to compute the `Z` polynomials.
, circuit_num_lookup_polys :: Int -- ^ The number of lookup polynomials.
, circuit_num_lookup_selectors :: Int -- ^ The number of lookup selectors.
, circuit_luts :: [ LookupTable ] -- ^ The stored lookup tables.
}
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
data CircuitConfig = MkCircuitConfig
{ cfg_num_wires :: Int -- ^ Number of wires available at each row. This corresponds to the "width" of the circuit, and consists in the sum of routed wires and advice wires.
, cfg_num_routed_wires :: Int -- ^ The number of routed wires, i.e. wires that will be involved in Plonk's permutation argument.
, cfg_num_constants :: Int -- ^ The number of constants that can be used per gate.
, cfg_use_base_arithmetic_gate :: Bool -- ^ Whether to use a dedicated gate for base field arithmetic, rather than using a single gate for both base field and extension field arithmetic.
, cfg_security_bits :: Int -- ^ Security level target
, cfg_num_challenges :: Int -- ^ The number of challenge points to generate, for IOPs that have soundness errors of (roughly) `degree / |F|`.
, cfg_zero_knowledge :: Bool -- ^ Option to activate the zero-knowledge property.
, cfg_randomize_unused_wires :: Bool -- ^ Option to disable randomization (useful for debugging).
, cfg_max_quotient_degree_factor :: Int -- ^ A cap on the quotient polynomial's degree factor.
, cfg_fri_config :: FriConfig
}
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
-- | The interval @[a,b)@ (inclusive on the left, exclusive on the right)
data Range
= MkRange Int Int
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
data SelectorsInfo = MkSelectorsInfo
{ selector_indices :: [ Int ]
, groups :: [ Range ]
, selector_vector :: Maybe [ Int ]
}
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
data Gate
= ArithmeticGate { num_ops :: Int }
| ArithmeticExtensionGate { num_ops :: Int }
| BasSumGate { num_limbs :: Int }
| CosetInterpolationGate { subgroup_bits :: Int , degree :: Int , barycentric_weights :: [ F ] }
| ConstantGate { num_consts :: Int }
| ExponentiationGate { num_power_bits :: Int }
| LookupGate { num_slots :: Int , lut_hash :: KeccakHash }
| LookupTableGate { num_slots :: Int , lut_hash :: KeccakHash , last_lut_row :: Int }
| MulExtensionGate { num_ops :: Int }
| NoopGate
| PublicInputGate
| PoseidonGate { hash_width :: Int }
| PoseidonMdsGate { hash_width :: Int }
| RandomAccessGate { bits :: Int , num_copies :: Int , num_extra_constants :: Int }
| ReducingGate { num_coeffs :: Int }
| ReducingExtensionGate { num_coeffs :: Int }
deriving ( Eq , Show , Generic )
--------------------------------------------------------------------------------
2024-12-11 12:43:27 +01:00
data FriConfig = MkFrConfig
{ fri_rate_bits :: Int -- ^ @rate = 2^{-rate_bits}@
, fri_cap_height :: Int -- ^ Height of Merkle tree caps.
, fri_proof_of_work_bits :: Int -- ^ Number of bits used for grinding.
, fri_reduction_strategy :: FriReductionStrategy -- ^ The reduction strategy to be applied at each layer during the commit phase.
, fri_num_query_rounds :: Int -- ^ Number of query rounds to perform.
}
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
data FriReductionStrategy
= Fixed { arity_bits_seq :: [ Int ] }
| ConstantArityBits { arity_bits :: Int , final_poly_bits :: Int }
| MinSize { opt_max_arity_bits :: Maybe Int }
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
data FriParams = MkFriParams
{ fri_config :: FriConfig -- ^ User-specified FRI configuration.
, fri_hiding :: Bool -- ^ Whether to use a hiding variant of Merkle trees (where random salts are added to leaves).
, fri_degree_bits :: Int -- ^ The degree of the purported codeword, measured in bits.
, fri_reduction_arity_bits :: [ Int ] -- ^ The arity of each FRI reduction step, expressed as the log2 of the actual arity.
}
2024-12-11 21:07:30 +01:00
deriving ( Eq , Show , Generic )
2024-12-11 12:43:27 +01:00
2024-12-11 21:07:30 +01:00
--------------------------------------------------------------------------------
newtype PublicInputs
= MkPublicInputs [ F ]
deriving ( Eq , Show , Generic )
data VerifierCircuitData = MkVerifierCircuitData
{ verifier_only :: VerifierOnlyCircuitData
, verifier_common :: CommonCircuitData
}
deriving ( Eq , Show , Generic )
newtype MerkleCap
= MkMerkleCap [ Digest ]
deriving ( Eq , Show , Generic )
data VerifierOnlyCircuitData = MkVerifierOnlyCircuitData
{ constants_sigmas_cap :: MerkleCap -- ^ commitment to list of constant polynomial and sigma polynomials
, circuit_digest :: Digest -- ^ a digest of the "circuit" (i.e. the instance, minus public inputs), which can be used to seed Fiat-Shamir
}
deriving ( Eq , Show , Generic , ToJSON , FromJSON )
2024-12-11 12:43:27 +01:00
--------------------------------------------------------------------------------
2024-12-11 21:07:30 +01:00
instance ToJSON MerkleCap where toJSON ( MkMerkleCap caps ) = toJSON caps
instance FromJSON MerkleCap where parseJSON o = MkMerkleCap <$> parseJSON o
