plonky2/src/merkle_tree.rs

use rayon::prelude::*;

use crate::field::field::Field;
use crate::hash::{compress, hash_or_noop};
use crate::merkle_proofs::MerkleProof;
use crate::proof::Hash;
use crate::util::{log2_strict, reverse_bits, reverse_index_bits_in_place};

#[derive(Clone, Debug)]
pub struct MerkleTree<F: Field> {
    /// The data in the leaves of the Merkle tree.
    pub leaves: Vec<Vec<F>>,

    /// The layers of hashes in the tree. The first layer is the one at the bottom.
    pub layers: Vec<Vec<Hash<F>>>,

    /// The Merkle root.
    pub root: Hash<F>,

    /// If true, the indices are in bit-reversed form, so that the leaf at index `i`
    /// contains the leaf originally at index `reverse_bits(i)`.
    pub reverse_bits: bool,
}

impl<F: Field> MerkleTree<F> {
    pub fn new(mut leaves: Vec<Vec<F>>, reverse_bits: bool) -> Self {
        if reverse_bits {
            reverse_index_bits_in_place(&mut leaves);
        }
        let mut layers = vec![leaves
            .par_iter()
            .map(|l| hash_or_noop(l.clone()))
            .collect::<Vec<_>>()];
        while let Some(l) = layers.last() {
            if l.len() == 1 {
                break;
            }
            let next_layer = l
                .par_chunks(2)
                .map(|chunk| compress(chunk[0], chunk[1]))
                .collect::<Vec<_>>();
            layers.push(next_layer);
        }
        let root = layers.pop().unwrap()[0];
        Self {
            leaves,
            layers,
            root,
            reverse_bits,
        }
    }

    pub fn get(&self, i: usize) -> &[F] {
        let n = log2_strict(self.leaves.len());
        &self.leaves[if self.reverse_bits {
            reverse_bits(i, n)
        } else {
            i
        }]
    }

    /// Create a Merkle proof from a leaf index.
    pub fn prove(&self, leaf_index: usize) -> MerkleProof<F> {
        let index = if self.reverse_bits {
            reverse_bits(leaf_index, log2_strict(self.leaves.len()))
        } else {
            leaf_index
        };
        MerkleProof {
            siblings: self
                .layers
                .iter()
                .scan(index, |acc, layer| {
                    let index = *acc ^ 1;
                    *acc >>= 1;
                    Some(layer[index])
                })
                .collect(),
        }
    }
}

#[cfg(test)]
mod tests {
    use anyhow::Result;

    use super::*;
    use crate::field::crandall_field::CrandallField;
    use crate::merkle_proofs::verify_merkle_proof;

    fn random_data<F: Field>(n: usize, k: usize) -> Vec<Vec<F>> {
        (0..n).map(|_| F::rand_vec(k)).collect()
    }

    fn verify_all_leaves<F: Field>(
        leaves: Vec<Vec<F>>,
        n: usize,
        reverse_bits: bool,
    ) -> Result<()> {
        let tree = MerkleTree::new(leaves.clone(), reverse_bits);
        for i in 0..n {
            let proof = tree.prove(i);
            verify_merkle_proof(leaves[i].clone(), i, tree.root, &proof, reverse_bits)?;
        }
        Ok(())
    }

    #[test]
    fn test_merkle_trees() -> Result<()> {
        type F = CrandallField;

        let log_n = 8;
        let n = 1 << log_n;
        let leaves = random_data::<F>(n, 7);

        verify_all_leaves(leaves.clone(), n, false)?;
        verify_all_leaves(leaves.clone(), n, true)?;

        Ok(())
    }
}
Have the prover use the new MerkleTree API Before it was storing leaf data and Merkle roots, but nothing in between, since it wasn't yet interacting with intermediate layers (but it will once we hook up the FRI code). 2021-04-23 14:18:03 -07:00			`use rayon::prelude::*;`

Progress on FRI 2021-04-21 22:31:45 +02:00			`use crate::field::field::Field;`
Added PoW 2021-04-22 15:50:08 +02:00			`use crate::hash::{compress, hash_or_noop};`
Progress on FRI 2021-04-21 22:31:45 +02:00			`use crate::merkle_proofs::MerkleProof;`
			`use crate::proof::Hash;`
			`use crate::util::{log2_strict, reverse_bits, reverse_index_bits_in_place};`

			`#[derive(Clone, Debug)]`
			`pub struct MerkleTree<F: Field> {`
			`/// The data in the leaves of the Merkle tree.`
			`pub leaves: Vec<Vec<F>>,`

			`/// The layers of hashes in the tree. The first layer is the one at the bottom.`
			`pub layers: Vec<Vec<Hash<F>>>,`

			`/// The Merkle root.`
			`pub root: Hash<F>,`

			/// If true, the indices are in bit-reversed form, so that the leaf at index `i`
			/// contains the leaf originally at index `reverse_bits(i)`.
			`pub reverse_bits: bool,`
			`}`

			`impl<F: Field> MerkleTree<F> {`
			`pub fn new(mut leaves: Vec<Vec<F>>, reverse_bits: bool) -> Self {`
			`if reverse_bits {`
			`reverse_index_bits_in_place(&mut leaves);`
			`}`
			`let mut layers = vec![leaves`
Have the prover use the new MerkleTree API Before it was storing leaf data and Merkle roots, but nothing in between, since it wasn't yet interacting with intermediate layers (but it will once we hook up the FRI code). 2021-04-23 14:18:03 -07:00			`.par_iter()`
Progress on FRI 2021-04-21 22:31:45 +02:00			`.map(\|l\| hash_or_noop(l.clone()))`
			`.collect::<Vec<_>>()];`
			`while let Some(l) = layers.last() {`
			`if l.len() == 1 {`
			`break;`
			`}`
Added PoW 2021-04-22 15:50:08 +02:00			`let next_layer = l`
Have the prover use the new MerkleTree API Before it was storing leaf data and Merkle roots, but nothing in between, since it wasn't yet interacting with intermediate layers (but it will once we hook up the FRI code). 2021-04-23 14:18:03 -07:00			`.par_chunks(2)`
Added PoW 2021-04-22 15:50:08 +02:00			`.map(\|chunk\| compress(chunk[0], chunk[1]))`
			`.collect::<Vec<_>>();`
			`layers.push(next_layer);`
Progress on FRI 2021-04-21 22:31:45 +02:00			`}`
			`let root = layers.pop().unwrap()[0];`
			`Self {`
			`leaves,`
			`layers,`
			`root,`
			`reverse_bits,`
			`}`
			`}`

			`pub fn get(&self, i: usize) -> &[F] {`
			`let n = log2_strict(self.leaves.len());`
			`&self.leaves[if self.reverse_bits {`
			`reverse_bits(i, n)`
			`} else {`
			`i`
			`}]`
			`}`

			`/// Create a Merkle proof from a leaf index.`
			`pub fn prove(&self, leaf_index: usize) -> MerkleProof<F> {`
			`let index = if self.reverse_bits {`
			`reverse_bits(leaf_index, log2_strict(self.leaves.len()))`
			`} else {`
			`leaf_index`
			`};`
			`MerkleProof {`
			`siblings: self`
			`.layers`
			`.iter()`
			`.scan(index, \|acc, layer\| {`
			`let index = *acc ^ 1;`
			`*acc >>= 1;`
			`Some(layer[index])`
			`})`
			`.collect(),`
			`}`
			`}`
			`}`

			`#[cfg(test)]`
			`mod tests {`
Have the prover use the new MerkleTree API Before it was storing leaf data and Merkle roots, but nothing in between, since it wasn't yet interacting with intermediate layers (but it will once we hook up the FRI code). 2021-04-23 14:18:03 -07:00			`use anyhow::Result;`

Have rustfmt group imports (#60) * Have rustfmt group imports See `rustfmt.toml`; the rest is automated changes. * fmt 2021-06-10 14:10:35 -07:00			`use super::*;`
Progress on FRI 2021-04-21 22:31:45 +02:00			`use crate::field::crandall_field::CrandallField;`
Clippy 2021-04-28 18:41:59 +02:00			`use crate::merkle_proofs::verify_merkle_proof;`
Have the prover use the new MerkleTree API Before it was storing leaf data and Merkle roots, but nothing in between, since it wasn't yet interacting with intermediate layers (but it will once we hook up the FRI code). 2021-04-23 14:18:03 -07:00
Merkle subtree proofs - WIP 2021-04-22 22:33:29 +02:00			`fn random_data<F: Field>(n: usize, k: usize) -> Vec<Vec<F>> {`
Minor fixes 2021-05-06 15:14:43 +02:00			`(0..n).map(\|_\| F::rand_vec(k)).collect()`
Merkle subtree proofs - WIP 2021-04-22 22:33:29 +02:00			`}`

Clean tests 2021-04-23 15:25:18 +02:00			`fn verify_all_leaves<F: Field>(`
			`leaves: Vec<Vec<F>>,`
			`n: usize,`
			`reverse_bits: bool,`
			`) -> Result<()> {`
			`let tree = MerkleTree::new(leaves.clone(), reverse_bits);`
Progress on FRI 2021-04-21 22:31:45 +02:00			`for i in 0..n {`
			`let proof = tree.prove(i);`
Clean tests 2021-04-23 15:25:18 +02:00			`verify_merkle_proof(leaves[i].clone(), i, tree.root, &proof, reverse_bits)?;`
Progress on FRI 2021-04-21 22:31:45 +02:00			`}`
Clean tests 2021-04-23 15:25:18 +02:00			`Ok(())`
			`}`
Merkle subtree proofs - WIP 2021-04-22 22:33:29 +02:00
Clean tests 2021-04-23 15:25:18 +02:00			`#[test]`
			`fn test_merkle_trees() -> Result<()> {`
			`type F = CrandallField;`
Fixes from PR comments 2021-04-22 09:27:59 +02:00
Clean tests 2021-04-23 15:25:18 +02:00			`let log_n = 8;`
			`let n = 1 << log_n;`
			`let leaves = random_data::<F>(n, 7);`
Working Merkle subtree proofs 2021-04-23 11:05:31 +02:00
Clean tests 2021-04-23 15:25:18 +02:00			`verify_all_leaves(leaves.clone(), n, false)?;`
			`verify_all_leaves(leaves.clone(), n, true)?;`
Merkle subtree proofs - WIP 2021-04-22 22:33:29 +02:00
Fixes from PR comments 2021-04-22 09:27:59 +02:00			`Ok(())`
Progress on FRI 2021-04-21 22:31:45 +02:00			`}`
			`}`