2022-06-27 07:18:21 -07:00
|
|
|
use plonky2::field::extension::Extendable;
|
2022-06-27 12:24:09 -07:00
|
|
|
use plonky2::field::types::Field;
|
2022-05-06 17:22:30 +02:00
|
|
|
use plonky2::hash::hash_types::RichField;
|
|
|
|
|
|
2022-05-13 10:48:56 +02:00
|
|
|
use crate::config::StarkConfig;
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::cpu::cpu_stark;
|
2022-05-18 09:22:58 +02:00
|
|
|
use crate::cpu::cpu_stark::CpuStark;
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::cross_table_lookup::{CrossTableLookup, TableWithColumns};
|
|
|
|
|
use crate::keccak::keccak_stark;
|
2022-05-18 09:22:58 +02:00
|
|
|
use crate::keccak::keccak_stark::KeccakStark;
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::logic;
|
2022-06-17 11:57:14 -07:00
|
|
|
use crate::logic::LogicStark;
|
2022-06-23 13:59:57 -07:00
|
|
|
use crate::memory::memory_stark::MemoryStark;
|
2022-06-27 16:03:56 -07:00
|
|
|
use crate::memory::{memory_stark, NUM_CHANNELS};
|
2022-05-06 17:22:30 +02:00
|
|
|
use crate::stark::Stark;
|
|
|
|
|
|
2022-05-12 20:38:11 +02:00
|
|
|
#[derive(Clone)]
|
2022-05-06 17:35:25 +02:00
|
|
|
pub struct AllStark<F: RichField + Extendable<D>, const D: usize> {
|
2022-05-11 14:35:33 +02:00
|
|
|
pub cpu_stark: CpuStark<F, D>,
|
|
|
|
|
pub keccak_stark: KeccakStark<F, D>,
|
2022-06-17 11:57:14 -07:00
|
|
|
pub logic_stark: LogicStark<F, D>,
|
2022-06-23 13:59:57 -07:00
|
|
|
pub memory_stark: MemoryStark<F, D>,
|
2022-05-17 09:24:22 +02:00
|
|
|
pub cross_table_lookups: Vec<CrossTableLookup<F>>,
|
2022-05-06 17:22:30 +02:00
|
|
|
}
|
|
|
|
|
|
2022-05-13 10:48:56 +02:00
|
|
|
impl<F: RichField + Extendable<D>, const D: usize> AllStark<F, D> {
|
|
|
|
|
pub(crate) fn nums_permutation_zs(&self, config: &StarkConfig) -> Vec<usize> {
|
2022-05-19 09:41:15 +02:00
|
|
|
let ans = vec![
|
2022-05-13 10:48:56 +02:00
|
|
|
self.cpu_stark.num_permutation_batches(config),
|
|
|
|
|
self.keccak_stark.num_permutation_batches(config),
|
2022-06-17 11:57:14 -07:00
|
|
|
self.logic_stark.num_permutation_batches(config),
|
2022-06-17 16:38:31 -07:00
|
|
|
self.memory_stark.num_permutation_batches(config),
|
2022-05-19 09:41:15 +02:00
|
|
|
];
|
|
|
|
|
debug_assert_eq!(ans.len(), Table::num_tables());
|
|
|
|
|
ans
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub(crate) fn permutation_batch_sizes(&self) -> Vec<usize> {
|
|
|
|
|
let ans = vec![
|
|
|
|
|
self.cpu_stark.permutation_batch_size(),
|
|
|
|
|
self.keccak_stark.permutation_batch_size(),
|
2022-06-17 11:57:14 -07:00
|
|
|
self.logic_stark.permutation_batch_size(),
|
2022-06-17 16:38:31 -07:00
|
|
|
self.memory_stark.permutation_batch_size(),
|
2022-05-19 09:41:15 +02:00
|
|
|
];
|
|
|
|
|
debug_assert_eq!(ans.len(), Table::num_tables());
|
|
|
|
|
ans
|
2022-05-13 10:48:56 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-05-06 17:22:30 +02:00
|
|
|
#[derive(Copy, Clone)]
|
|
|
|
|
pub enum Table {
|
|
|
|
|
Cpu = 0,
|
|
|
|
|
Keccak = 1,
|
2022-06-17 11:57:14 -07:00
|
|
|
Logic = 2,
|
2022-06-23 13:59:57 -07:00
|
|
|
Memory = 3,
|
2022-05-06 17:22:30 +02:00
|
|
|
}
|
|
|
|
|
|
2022-05-19 09:41:15 +02:00
|
|
|
impl Table {
|
|
|
|
|
pub(crate) fn num_tables() -> usize {
|
2022-06-23 13:59:57 -07:00
|
|
|
Table::Memory as usize + 1
|
2022-05-19 09:41:15 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-27 10:40:16 -07:00
|
|
|
#[allow(unused)] // TODO: Should be used soon.
|
|
|
|
|
pub(crate) fn all_cross_table_lookups<F: Field>() -> Vec<CrossTableLookup<F>> {
|
|
|
|
|
let mut cross_table_lookups = vec![ctl_keccak(), ctl_logic()];
|
2022-06-27 16:03:56 -07:00
|
|
|
cross_table_lookups.extend((0..NUM_CHANNELS).map(ctl_memory));
|
2022-06-27 10:40:16 -07:00
|
|
|
cross_table_lookups
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn ctl_keccak<F: Field>() -> CrossTableLookup<F> {
|
|
|
|
|
CrossTableLookup::new(
|
|
|
|
|
vec![TableWithColumns::new(
|
|
|
|
|
Table::Cpu,
|
|
|
|
|
cpu_stark::ctl_data_keccak(),
|
|
|
|
|
Some(cpu_stark::ctl_filter_keccak()),
|
|
|
|
|
)],
|
|
|
|
|
TableWithColumns::new(
|
|
|
|
|
Table::Keccak,
|
|
|
|
|
keccak_stark::ctl_data(),
|
|
|
|
|
Some(keccak_stark::ctl_filter()),
|
|
|
|
|
),
|
|
|
|
|
None,
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn ctl_logic<F: Field>() -> CrossTableLookup<F> {
|
|
|
|
|
CrossTableLookup::new(
|
|
|
|
|
vec![TableWithColumns::new(
|
|
|
|
|
Table::Cpu,
|
|
|
|
|
cpu_stark::ctl_data_logic(),
|
|
|
|
|
Some(cpu_stark::ctl_filter_logic()),
|
|
|
|
|
)],
|
|
|
|
|
TableWithColumns::new(Table::Logic, logic::ctl_data(), Some(logic::ctl_filter())),
|
|
|
|
|
None,
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn ctl_memory<F: Field>(channel: usize) -> CrossTableLookup<F> {
|
|
|
|
|
CrossTableLookup::new(
|
|
|
|
|
vec![TableWithColumns::new(
|
|
|
|
|
Table::Cpu,
|
|
|
|
|
cpu_stark::ctl_data_memory(channel),
|
|
|
|
|
Some(cpu_stark::ctl_filter_memory(channel)),
|
|
|
|
|
)],
|
|
|
|
|
TableWithColumns::new(
|
|
|
|
|
Table::Memory,
|
|
|
|
|
memory_stark::ctl_data(),
|
|
|
|
|
Some(memory_stark::ctl_filter(channel)),
|
|
|
|
|
),
|
|
|
|
|
None,
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
2022-05-12 20:38:11 +02:00
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests {
|
|
|
|
|
use anyhow::Result;
|
2022-06-13 18:54:12 +02:00
|
|
|
use itertools::{izip, Itertools};
|
2022-06-17 11:57:14 -07:00
|
|
|
use plonky2::field::polynomial::PolynomialValues;
|
2022-06-27 12:24:09 -07:00
|
|
|
use plonky2::field::types::Field;
|
2022-05-24 17:50:28 +02:00
|
|
|
use plonky2::iop::witness::PartialWitness;
|
|
|
|
|
use plonky2::plonk::circuit_builder::CircuitBuilder;
|
|
|
|
|
use plonky2::plonk::circuit_data::CircuitConfig;
|
2022-05-12 20:38:11 +02:00
|
|
|
use plonky2::plonk::config::{GenericConfig, PoseidonGoldilocksConfig};
|
|
|
|
|
use plonky2::util::timing::TimingTree;
|
2022-06-10 21:02:56 +02:00
|
|
|
use rand::{thread_rng, Rng};
|
2022-05-12 20:38:11 +02:00
|
|
|
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::all_stark::{all_cross_table_lookups, AllStark};
|
2022-05-12 20:38:11 +02:00
|
|
|
use crate::config::StarkConfig;
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::cpu::cpu_stark::CpuStark;
|
2022-06-28 02:28:25 +02:00
|
|
|
use crate::cpu::registers::{KECCAK_INPUT_LIMBS, KECCAK_OUTPUT_LIMBS};
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::keccak::keccak_stark::{KeccakStark, NUM_INPUTS, NUM_ROUNDS};
|
2022-06-21 10:28:44 -07:00
|
|
|
use crate::logic::{self, LogicStark};
|
2022-06-27 10:40:16 -07:00
|
|
|
use crate::memory::memory_stark::{generate_random_memory_ops, MemoryStark};
|
2022-06-27 16:03:56 -07:00
|
|
|
use crate::memory::NUM_CHANNELS;
|
2022-05-24 17:50:28 +02:00
|
|
|
use crate::proof::AllProof;
|
2022-05-12 20:38:11 +02:00
|
|
|
use crate::prover::prove;
|
2022-05-24 17:50:28 +02:00
|
|
|
use crate::recursive_verifier::{
|
|
|
|
|
add_virtual_all_proof, set_all_proof_target, verify_proof_circuit,
|
|
|
|
|
};
|
2022-06-03 19:24:47 -07:00
|
|
|
use crate::stark::Stark;
|
2022-06-25 13:34:04 -07:00
|
|
|
use crate::util::{limb_from_bits_le, trace_rows_to_poly_values};
|
2022-05-12 20:38:11 +02:00
|
|
|
use crate::verifier::verify_proof;
|
2022-06-17 16:51:32 -07:00
|
|
|
use crate::{cpu, keccak, memory};
|
2022-05-12 20:38:11 +02:00
|
|
|
|
2022-05-24 17:50:28 +02:00
|
|
|
const D: usize = 2;
|
|
|
|
|
type C = PoseidonGoldilocksConfig;
|
|
|
|
|
type F = <C as GenericConfig<D>>::F;
|
2022-05-12 20:38:11 +02:00
|
|
|
|
2022-06-17 11:57:14 -07:00
|
|
|
fn make_keccak_trace<R: Rng>(
|
|
|
|
|
num_keccak_perms: usize,
|
|
|
|
|
keccak_stark: &KeccakStark<F, D>,
|
|
|
|
|
rng: &mut R,
|
|
|
|
|
) -> Vec<PolynomialValues<F>> {
|
2022-06-13 18:54:12 +02:00
|
|
|
let keccak_inputs = (0..num_keccak_perms)
|
2022-06-10 19:30:51 +02:00
|
|
|
.map(|_| [0u64; NUM_INPUTS].map(|_| rng.gen()))
|
2022-06-06 10:31:42 -07:00
|
|
|
.collect_vec();
|
2022-06-17 11:57:14 -07:00
|
|
|
keccak_stark.generate_trace(keccak_inputs)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn make_logic_trace<R: Rng>(
|
|
|
|
|
num_rows: usize,
|
|
|
|
|
logic_stark: &LogicStark<F, D>,
|
|
|
|
|
rng: &mut R,
|
|
|
|
|
) -> Vec<PolynomialValues<F>> {
|
|
|
|
|
let mut trace_rows = vec![];
|
|
|
|
|
for _ in 0..num_rows {
|
2022-06-28 02:28:25 +02:00
|
|
|
let mut row = [F::ZERO; logic::registers::NUM_COLUMNS];
|
2022-06-17 11:57:14 -07:00
|
|
|
|
|
|
|
|
assert_eq!(logic::PACKED_LIMB_BITS, 16);
|
2022-06-28 02:28:25 +02:00
|
|
|
for col in logic::registers::INPUT0 {
|
2022-06-25 13:34:04 -07:00
|
|
|
row[col] = F::from_bool(rng.gen());
|
2022-06-17 11:57:14 -07:00
|
|
|
}
|
2022-06-28 02:28:25 +02:00
|
|
|
for col in logic::registers::INPUT1 {
|
2022-06-25 13:34:04 -07:00
|
|
|
row[col] = F::from_bool(rng.gen());
|
2022-06-17 11:57:14 -07:00
|
|
|
}
|
|
|
|
|
let op: usize = rng.gen_range(0..3);
|
|
|
|
|
let op_col = [
|
2022-06-28 02:28:25 +02:00
|
|
|
logic::registers::IS_AND,
|
|
|
|
|
logic::registers::IS_OR,
|
|
|
|
|
logic::registers::IS_XOR,
|
2022-06-17 11:57:14 -07:00
|
|
|
][op];
|
|
|
|
|
row[op_col] = F::ONE;
|
|
|
|
|
logic_stark.generate(&mut row);
|
|
|
|
|
trace_rows.push(row);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _ in num_rows..num_rows.next_power_of_two() {
|
2022-06-28 02:28:25 +02:00
|
|
|
trace_rows.push([F::ZERO; logic::registers::NUM_COLUMNS])
|
2022-06-17 11:57:14 -07:00
|
|
|
}
|
|
|
|
|
trace_rows_to_poly_values(trace_rows)
|
|
|
|
|
}
|
2022-06-17 17:06:32 -07:00
|
|
|
|
2022-06-17 17:06:19 -07:00
|
|
|
fn make_memory_trace<R: Rng>(
|
|
|
|
|
num_memory_ops: usize,
|
|
|
|
|
memory_stark: &MemoryStark<F, D>,
|
|
|
|
|
rng: &mut R,
|
|
|
|
|
) -> Vec<PolynomialValues<F>> {
|
|
|
|
|
let memory_ops = generate_random_memory_ops(num_memory_ops, rng);
|
|
|
|
|
memory_stark.generate_trace(memory_ops)
|
|
|
|
|
}
|
2022-06-17 11:57:14 -07:00
|
|
|
|
|
|
|
|
fn make_cpu_trace(
|
|
|
|
|
num_keccak_perms: usize,
|
|
|
|
|
num_logic_rows: usize,
|
2022-06-17 17:06:19 -07:00
|
|
|
num_memory_ops: usize,
|
2022-06-17 11:57:14 -07:00
|
|
|
cpu_stark: &CpuStark<F, D>,
|
|
|
|
|
keccak_trace: &[PolynomialValues<F>],
|
|
|
|
|
logic_trace: &[PolynomialValues<F>],
|
2022-06-17 17:06:19 -07:00
|
|
|
memory_trace: &mut [PolynomialValues<F>],
|
2022-06-17 11:57:14 -07:00
|
|
|
) -> Vec<PolynomialValues<F>> {
|
2022-06-13 18:54:12 +02:00
|
|
|
let keccak_input_limbs: Vec<[F; 2 * NUM_INPUTS]> = (0..num_keccak_perms)
|
2022-06-10 21:02:56 +02:00
|
|
|
.map(|i| {
|
|
|
|
|
(0..2 * NUM_INPUTS)
|
|
|
|
|
.map(|j| {
|
2022-06-14 01:21:17 +02:00
|
|
|
keccak::registers::reg_input_limb(j)
|
2022-06-17 11:57:14 -07:00
|
|
|
.eval_table(keccak_trace, (i + 1) * NUM_ROUNDS - 1)
|
2022-06-10 21:02:56 +02:00
|
|
|
})
|
|
|
|
|
.collect::<Vec<_>>()
|
|
|
|
|
.try_into()
|
|
|
|
|
.unwrap()
|
|
|
|
|
})
|
|
|
|
|
.collect();
|
2022-06-13 18:54:12 +02:00
|
|
|
let keccak_output_limbs: Vec<[F; 2 * NUM_INPUTS]> = (0..num_keccak_perms)
|
2022-06-10 21:02:56 +02:00
|
|
|
.map(|i| {
|
|
|
|
|
(0..2 * NUM_INPUTS)
|
|
|
|
|
.map(|j| {
|
|
|
|
|
keccak_trace[keccak::registers::reg_output_limb(j)].values
|
|
|
|
|
[(i + 1) * NUM_ROUNDS - 1]
|
|
|
|
|
})
|
|
|
|
|
.collect::<Vec<_>>()
|
|
|
|
|
.try_into()
|
|
|
|
|
.unwrap()
|
|
|
|
|
})
|
|
|
|
|
.collect();
|
2022-06-06 10:31:42 -07:00
|
|
|
|
2022-06-06 12:50:56 -07:00
|
|
|
let mut cpu_trace_rows = vec![];
|
2022-06-13 18:54:12 +02:00
|
|
|
for i in 0..num_keccak_perms {
|
2022-06-17 11:57:14 -07:00
|
|
|
let mut row = [F::ZERO; CpuStark::<F, D>::COLUMNS];
|
2022-06-28 02:28:25 +02:00
|
|
|
row[cpu::registers::IS_KECCAK] = F::ONE;
|
2022-06-13 18:54:12 +02:00
|
|
|
for (j, input, output) in
|
|
|
|
|
izip!(0..2 * NUM_INPUTS, KECCAK_INPUT_LIMBS, KECCAK_OUTPUT_LIMBS)
|
|
|
|
|
{
|
2022-06-17 11:57:14 -07:00
|
|
|
row[input] = keccak_input_limbs[i][j];
|
|
|
|
|
row[output] = keccak_output_limbs[i][j];
|
|
|
|
|
}
|
|
|
|
|
cpu_stark.generate(&mut row);
|
|
|
|
|
cpu_trace_rows.push(row);
|
|
|
|
|
}
|
|
|
|
|
for i in 0..num_logic_rows {
|
|
|
|
|
let mut row = [F::ZERO; CpuStark::<F, D>::COLUMNS];
|
2022-06-28 02:28:25 +02:00
|
|
|
row[cpu::registers::IS_CPU_CYCLE] = F::ONE;
|
|
|
|
|
row[cpu::registers::OPCODE] = [
|
|
|
|
|
(logic::registers::IS_AND, 0x16),
|
|
|
|
|
(logic::registers::IS_OR, 0x17),
|
|
|
|
|
(logic::registers::IS_XOR, 0x18),
|
2022-06-17 11:57:14 -07:00
|
|
|
]
|
|
|
|
|
.into_iter()
|
|
|
|
|
.map(|(col, opcode)| logic_trace[col].values[i] * F::from_canonical_u64(opcode))
|
|
|
|
|
.sum();
|
|
|
|
|
for (cols_cpu, cols_logic) in [
|
2022-06-28 02:28:25 +02:00
|
|
|
(cpu::registers::LOGIC_INPUT0, logic::registers::INPUT0),
|
|
|
|
|
(cpu::registers::LOGIC_INPUT1, logic::registers::INPUT1),
|
2022-06-17 11:57:14 -07:00
|
|
|
] {
|
2022-06-25 13:34:04 -07:00
|
|
|
for (col_cpu, limb_cols_logic) in
|
2022-06-28 02:28:25 +02:00
|
|
|
cols_cpu.zip(logic::registers::limb_bit_cols_for_input(cols_logic))
|
2022-06-25 13:34:04 -07:00
|
|
|
{
|
|
|
|
|
row[col_cpu] =
|
|
|
|
|
limb_from_bits_le(limb_cols_logic.map(|col| logic_trace[col].values[i]));
|
2022-06-17 11:57:14 -07:00
|
|
|
}
|
2022-06-10 21:02:56 +02:00
|
|
|
}
|
2022-06-28 02:28:25 +02:00
|
|
|
for (col_cpu, col_logic) in cpu::registers::LOGIC_OUTPUT.zip(logic::registers::RESULT) {
|
2022-06-25 13:34:04 -07:00
|
|
|
row[col_cpu] = logic_trace[col_logic].values[i];
|
|
|
|
|
}
|
2022-06-17 11:57:14 -07:00
|
|
|
cpu_stark.generate(&mut row);
|
|
|
|
|
cpu_trace_rows.push(row);
|
2022-06-10 21:02:56 +02:00
|
|
|
}
|
2022-06-21 16:11:00 -07:00
|
|
|
let mut current_cpu_index = 0;
|
|
|
|
|
let mut last_timestamp = memory_trace[memory::registers::TIMESTAMP].values[0];
|
2022-06-23 13:59:57 -07:00
|
|
|
for i in 0..num_memory_ops {
|
2022-06-21 15:49:01 -07:00
|
|
|
let mem_timestamp = memory_trace[memory::registers::TIMESTAMP].values[i];
|
2022-06-21 14:35:19 -07:00
|
|
|
let clock = mem_timestamp;
|
2022-06-27 16:03:56 -07:00
|
|
|
let op = (0..NUM_CHANNELS)
|
|
|
|
|
.filter(|&o| memory_trace[memory::registers::is_channel(o)].values[i] == F::ONE)
|
2022-06-21 14:35:19 -07:00
|
|
|
.collect_vec()[0];
|
2022-06-23 11:52:27 -07:00
|
|
|
|
2022-06-22 12:24:52 -07:00
|
|
|
if mem_timestamp != last_timestamp {
|
|
|
|
|
current_cpu_index += 1;
|
|
|
|
|
last_timestamp = mem_timestamp;
|
|
|
|
|
}
|
2022-06-23 13:59:57 -07:00
|
|
|
|
2022-06-28 02:28:25 +02:00
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_channel_used(op)] = F::ONE;
|
|
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::CLOCK] = clock;
|
|
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_is_read(op)] =
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_trace[memory::registers::IS_READ].values[i];
|
2022-06-28 02:28:25 +02:00
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_addr_context(op)] =
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_trace[memory::registers::ADDR_CONTEXT].values[i];
|
2022-06-28 02:28:25 +02:00
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_addr_segment(op)] =
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_trace[memory::registers::ADDR_SEGMENT].values[i];
|
2022-06-28 02:28:25 +02:00
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_addr_virtual(op)] =
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_trace[memory::registers::ADDR_VIRTUAL].values[i];
|
|
|
|
|
for j in 0..8 {
|
2022-06-28 02:28:25 +02:00
|
|
|
cpu_trace_rows[current_cpu_index][cpu::registers::mem_value(op, j)] =
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_trace[memory::registers::value_limb(j)].values[i];
|
|
|
|
|
}
|
|
|
|
|
}
|
2022-06-17 11:57:14 -07:00
|
|
|
trace_rows_to_poly_values(cpu_trace_rows)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn get_proof(config: &StarkConfig) -> Result<(AllStark<F, D>, AllProof<F, C, D>)> {
|
|
|
|
|
let cpu_stark = CpuStark::<F, D> {
|
|
|
|
|
f: Default::default(),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let keccak_stark = KeccakStark::<F, D> {
|
|
|
|
|
f: Default::default(),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let logic_stark = LogicStark::<F, D> {
|
|
|
|
|
f: Default::default(),
|
|
|
|
|
};
|
|
|
|
|
let num_logic_rows = 62;
|
|
|
|
|
|
2022-06-23 13:59:57 -07:00
|
|
|
let memory_stark = MemoryStark::<F, D> {
|
|
|
|
|
f: Default::default(),
|
|
|
|
|
};
|
|
|
|
|
let num_memory_ops = 1 << 5;
|
|
|
|
|
|
2022-06-17 11:57:14 -07:00
|
|
|
let mut rng = thread_rng();
|
|
|
|
|
let num_keccak_perms = 2;
|
|
|
|
|
|
|
|
|
|
let keccak_trace = make_keccak_trace(num_keccak_perms, &keccak_stark, &mut rng);
|
|
|
|
|
let logic_trace = make_logic_trace(num_logic_rows, &logic_stark, &mut rng);
|
2022-06-17 17:06:19 -07:00
|
|
|
let mut memory_trace = make_memory_trace(num_memory_ops, &memory_stark, &mut rng);
|
2022-06-17 11:57:14 -07:00
|
|
|
let cpu_trace = make_cpu_trace(
|
|
|
|
|
num_keccak_perms,
|
|
|
|
|
num_logic_rows,
|
2022-06-23 13:59:57 -07:00
|
|
|
num_memory_ops,
|
2022-06-17 11:57:14 -07:00
|
|
|
&cpu_stark,
|
|
|
|
|
&keccak_trace,
|
|
|
|
|
&logic_trace,
|
2022-06-17 17:06:19 -07:00
|
|
|
&mut memory_trace,
|
2022-06-17 11:57:14 -07:00
|
|
|
);
|
2022-06-06 10:31:42 -07:00
|
|
|
|
2022-05-12 20:38:11 +02:00
|
|
|
let all_stark = AllStark {
|
|
|
|
|
cpu_stark,
|
|
|
|
|
keccak_stark,
|
2022-06-17 11:57:14 -07:00
|
|
|
logic_stark,
|
2022-06-23 13:59:57 -07:00
|
|
|
memory_stark,
|
2022-06-27 10:40:16 -07:00
|
|
|
cross_table_lookups: all_cross_table_lookups(),
|
2022-05-12 20:38:11 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let proof = prove::<F, C, D>(
|
|
|
|
|
&all_stark,
|
2022-05-26 20:44:59 +02:00
|
|
|
config,
|
2022-06-23 13:59:57 -07:00
|
|
|
vec![cpu_trace, keccak_trace, logic_trace, memory_trace],
|
2022-06-17 17:06:19 -07:00
|
|
|
vec![vec![]; 4],
|
2022-05-12 20:38:11 +02:00
|
|
|
&mut TimingTree::default(),
|
|
|
|
|
)?;
|
|
|
|
|
|
2022-05-24 17:50:28 +02:00
|
|
|
Ok((all_stark, proof))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
|
fn test_all_stark() -> Result<()> {
|
|
|
|
|
let config = StarkConfig::standard_fast_config();
|
|
|
|
|
let (all_stark, proof) = get_proof(&config)?;
|
2022-05-12 20:38:11 +02:00
|
|
|
verify_proof(all_stark, proof, &config)
|
2022-05-06 17:22:30 +02:00
|
|
|
}
|
2022-05-24 17:50:28 +02:00
|
|
|
|
|
|
|
|
#[test]
|
2022-05-26 16:27:15 +02:00
|
|
|
fn test_all_stark_recursive_verifier() -> Result<()> {
|
2022-05-24 17:50:28 +02:00
|
|
|
init_logger();
|
|
|
|
|
|
|
|
|
|
let config = StarkConfig::standard_fast_config();
|
|
|
|
|
let (all_stark, proof) = get_proof(&config)?;
|
|
|
|
|
verify_proof(all_stark.clone(), proof.clone(), &config)?;
|
|
|
|
|
|
|
|
|
|
recursive_proof(all_stark, proof, &config, true)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn recursive_proof(
|
|
|
|
|
inner_all_stark: AllStark<F, D>,
|
|
|
|
|
inner_proof: AllProof<F, C, D>,
|
|
|
|
|
inner_config: &StarkConfig,
|
|
|
|
|
print_gate_counts: bool,
|
|
|
|
|
) -> Result<()> {
|
|
|
|
|
let circuit_config = CircuitConfig::standard_recursion_config();
|
|
|
|
|
let mut builder = CircuitBuilder::<F, D>::new(circuit_config);
|
|
|
|
|
let mut pw = PartialWitness::new();
|
2022-05-26 16:27:15 +02:00
|
|
|
let degree_bits = inner_proof.degree_bits(inner_config);
|
|
|
|
|
let nums_ctl_zs = inner_proof.nums_ctl_zs();
|
|
|
|
|
let pt = add_virtual_all_proof(
|
|
|
|
|
&mut builder,
|
|
|
|
|
&inner_all_stark,
|
|
|
|
|
inner_config,
|
|
|
|
|
°ree_bits,
|
|
|
|
|
&nums_ctl_zs,
|
|
|
|
|
);
|
2022-05-24 17:50:28 +02:00
|
|
|
set_all_proof_target(&mut pw, &pt, &inner_proof, builder.zero());
|
|
|
|
|
|
|
|
|
|
verify_proof_circuit::<F, C, D>(&mut builder, inner_all_stark, pt, inner_config);
|
|
|
|
|
|
|
|
|
|
if print_gate_counts {
|
|
|
|
|
builder.print_gate_counts(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let data = builder.build::<C>();
|
|
|
|
|
let proof = data.prove(pw)?;
|
|
|
|
|
data.verify(proof)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn init_logger() {
|
|
|
|
|
let _ = env_logger::builder().format_timestamp(None).try_init();
|
|
|
|
|
}
|
2022-05-06 17:22:30 +02:00
|
|
|
}
|
