proof-aggregation/codex-plonky2-circuits/src/recursion/uniform/node.rs

use std::marker::PhantomData;
use plonky2::hash::hash_types::RichField;
use plonky2::iop::target::BoolTarget;
use plonky2::iop::witness::{PartialWitness, WitnessWrite};
use plonky2::plonk::circuit_builder::CircuitBuilder;
use plonky2::plonk::circuit_data::{CircuitConfig, CircuitData, CommonCircuitData, VerifierCircuitTarget, VerifierOnlyCircuitData};
use plonky2::plonk::config::{AlgebraicHasher, GenericConfig};
use plonky2::plonk::proof::{ProofWithPublicInputs, ProofWithPublicInputsTarget};
use plonky2_field::extension::Extendable;
use plonky2_poseidon2::poseidon2_hash::poseidon2::Poseidon2;
use crate::{error::CircuitError,Result};
// use crate::circuits::utils::vec_to_array;

/// recursion node circuit - verifies M leaf proofs
#[derive(Clone, Debug)]
pub struct NodeCircuit<
    F: RichField + Extendable<D> + Poseidon2,
    const D: usize,
    C: GenericConfig<D, F = F>,
    H: AlgebraicHasher<F>,
    const M: usize,
> where
    <C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>
{
    common_data: CommonCircuitData<F, D>,
    leaf_verifier_data: VerifierOnlyCircuitData<C, D>,
    phantom_data: PhantomData<H>
}

#[derive(Clone, Debug)]
pub struct NodeTargets<
    const D: usize,
>{
    pub leaf_proofs: Vec<ProofWithPublicInputsTarget<D>>,
    pub node_verifier_data: VerifierCircuitTarget,
    pub condition: BoolTarget,
}

impl<
    F: RichField + Extendable<D> + Poseidon2,
    const D: usize,
    C: GenericConfig<D, F = F>,
    H: AlgebraicHasher<F>,
    const M: usize,
> NodeCircuit<F,D,C,H,M> where
    <C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>
{

    pub fn new(
        common_data: CommonCircuitData<F,D>,
        leaf_verifier_data: VerifierOnlyCircuitData<C, D>,
    ) -> Self {
        Self{
            common_data,
            leaf_verifier_data,
            phantom_data:PhantomData::default(),
        }
    }

    /// build the leaf circuit
    pub fn build(&self, builder: &mut CircuitBuilder<F, D>) -> Result<NodeTargets<D>> {

        let inner_common = self.common_data.clone();

        // assert public input is of size 8 - 2 hashout
        assert_eq!(inner_common.num_public_inputs, 8);

        // the proof virtual targets - M proofs
        let mut vir_proofs = vec![];
        let mut pub_input = vec![];
        for _i in 0..M {
            let vir_proof = builder.add_virtual_proof_with_pis(&inner_common);
            let inner_pub_input = vir_proof.public_inputs.clone();
            vir_proofs.push(vir_proof);
            pub_input.extend_from_slice(&inner_pub_input[0..4]);
        }

        // hash the public input & make it public
        let hash_inner_pub_input = builder.hash_n_to_hash_no_pad::<H>(pub_input);
        builder.register_public_inputs(&hash_inner_pub_input.elements);

        // virtual target for the verifier data
        let node_verifier_data = builder.add_virtual_verifier_data(inner_common.config.fri_config.cap_height);

        // virtual target for the verifier data
        let const_leaf_verifier_data = builder.constant_verifier_data(&self.leaf_verifier_data);

        // register only the node verifier data hash as public input.
        let mut vd_pub_input = vec![];
        vd_pub_input.extend_from_slice(&node_verifier_data.circuit_digest.elements);
        for i in 0..builder.config.fri_config.num_cap_elements() {
            vd_pub_input.extend_from_slice(&node_verifier_data.constants_sigmas_cap.0[i].elements);
        }
        let vd_hash = builder.hash_n_to_hash_no_pad::<H>(vd_pub_input);
        builder.register_public_inputs(&vd_hash.elements);

        // condition for switching between node and leaf
        let condition = builder.add_virtual_bool_target_safe();

        // true -> node, false -> leaf
        let selected_vd = builder.select_verifier_data(condition.clone(), &node_verifier_data, &const_leaf_verifier_data);

        // verify the proofs in-circuit  - M proofs
        for i in 0..M {
        builder.verify_proof::<C>(&vir_proofs[i], &selected_vd, &inner_common);
        }

        // Make sure we have every gate to match `common_data`.
        for g in &inner_common.gates {
            builder.add_gate_to_gate_set(g.clone());
        }

        // let proofs = vec_to_array::<2, ProofWithPublicInputsTarget<D>>(vir_proofs)?;

        // return targets
        let t = NodeTargets {
            leaf_proofs: vir_proofs,
            node_verifier_data,
            condition,
        };
        Ok(t)

    }

    /// assign the leaf targets with given input
    pub fn assign_targets(
        &self, pw: &mut PartialWitness<F>,
        targets: &NodeTargets<D>,
        node_proofs: &[ProofWithPublicInputs<F, C, D>],
        verifier_only_data: &VerifierOnlyCircuitData<C, D>,
        condition: bool,
    ) -> Result<()> {
        // assert size of proofs vec
        assert_eq!(node_proofs.len(), M);

        // assign the proofs
        for i in 0..M {
            pw.set_proof_with_pis_target(&targets.leaf_proofs[i], &node_proofs[i])
                .map_err(|e| {
                    CircuitError::ProofTargetAssignmentError("inner-proof".to_string(), e.to_string())
                })?;
        }

        // assign the verifier data
        pw.set_verifier_data_target(&targets.node_verifier_data, &verifier_only_data)
            .map_err(|e| {
                CircuitError::VerifierDataTargetAssignmentError(e.to_string())
            })?;

        // assign the condition
        pw.set_bool_target(targets.condition, condition)
            .map_err(|e| CircuitError::BoolTargetAssignmentError("condition".to_string(), e.to_string()))?;

        Ok(())
    }

    /// returns the leaf circuit data
    pub fn get_circuit_data (&self) -> Result<CircuitData<F, C, D>>
        where
            <C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>
    {
        let config = CircuitConfig::standard_recursion_config();
        let mut builder = CircuitBuilder::<F, D>::new(config.clone());

        self.build(&mut builder)?;

        let circ_data = builder.build::<C>();

        Ok(circ_data)
    }

}
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`use std::marker::PhantomData;`
			`use plonky2::hash::hash_types::RichField;`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`use plonky2::iop::target::BoolTarget;`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`use plonky2::iop::witness::{PartialWitness, WitnessWrite};`
			`use plonky2::plonk::circuit_builder::CircuitBuilder;`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`use plonky2::plonk::circuit_data::{CircuitConfig, CircuitData, CommonCircuitData, VerifierCircuitTarget, VerifierOnlyCircuitData};`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`use plonky2::plonk::config::{AlgebraicHasher, GenericConfig};`
			`use plonky2::plonk::proof::{ProofWithPublicInputs, ProofWithPublicInputsTarget};`
			`use plonky2_field::extension::Extendable;`
			`use plonky2_poseidon2::poseidon2_hash::poseidon2::Poseidon2;`
			`use crate::{error::CircuitError,Result};`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`// use crate::circuits::utils::vec_to_array;`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00
impl compression and public input verification circuits. 2025-03-10 14:53:59 +01:00			`/// recursion node circuit - verifies M leaf proofs`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`#[derive(Clone, Debug)]`
			`pub struct NodeCircuit<`
			`F: RichField + Extendable<D> + Poseidon2,`
			`const D: usize,`
			`C: GenericConfig<D, F = F>,`
			`H: AlgebraicHasher<F>,`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`const M: usize,`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`> where`
			`<C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>`
			`{`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`common_data: CommonCircuitData<F, D>,`
			`leaf_verifier_data: VerifierOnlyCircuitData<C, D>,`
			`phantom_data: PhantomData<H>`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`}`

			`#[derive(Clone, Debug)]`
			`pub struct NodeTargets<`
			`const D: usize,`
			`>{`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`pub leaf_proofs: Vec<ProofWithPublicInputsTarget<D>>,`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`pub node_verifier_data: VerifierCircuitTarget,`
			`pub condition: BoolTarget,`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`}`

			`impl<`
			`F: RichField + Extendable<D> + Poseidon2,`
			`const D: usize,`
			`C: GenericConfig<D, F = F>,`
			`H: AlgebraicHasher<F>,`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`const M: usize,`
			`> NodeCircuit<F,D,C,H,M> where`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`<C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>`
			`{`

change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`pub fn new(`
			`common_data: CommonCircuitData<F,D>,`
			`leaf_verifier_data: VerifierOnlyCircuitData<C, D>,`
			`) -> Self {`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`Self{`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`common_data,`
			`leaf_verifier_data,`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`phantom_data:PhantomData::default(),`
			`}`
			`}`

impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`/// build the leaf circuit`
			`pub fn build(&self, builder: &mut CircuitBuilder<F, D>) -> Result<NodeTargets<D>> {`

change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`let inner_common = self.common_data.clone();`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`// assert public input is of size 8 - 2 hashout`
			`assert_eq!(inner_common.num_public_inputs, 8);`

add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`// the proof virtual targets - M proofs`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`let mut vir_proofs = vec![];`
			`let mut pub_input = vec![];`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`for _i in 0..M {`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`let vir_proof = builder.add_virtual_proof_with_pis(&inner_common);`
			`let inner_pub_input = vir_proof.public_inputs.clone();`
			`vir_proofs.push(vir_proof);`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`pub_input.extend_from_slice(&inner_pub_input[0..4]);`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`}`

			`// hash the public input & make it public`
			`let hash_inner_pub_input = builder.hash_n_to_hash_no_pad::<H>(pub_input);`
			`builder.register_public_inputs(&hash_inner_pub_input.elements);`

			`// virtual target for the verifier data`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`let node_verifier_data = builder.add_virtual_verifier_data(inner_common.config.fri_config.cap_height);`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`// virtual target for the verifier data`
			`let const_leaf_verifier_data = builder.constant_verifier_data(&self.leaf_verifier_data);`

			`// register only the node verifier data hash as public input.`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`let mut vd_pub_input = vec![];`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`vd_pub_input.extend_from_slice(&node_verifier_data.circuit_digest.elements);`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`for i in 0..builder.config.fri_config.num_cap_elements() {`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`vd_pub_input.extend_from_slice(&node_verifier_data.constants_sigmas_cap.0[i].elements);`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`}`
			`let vd_hash = builder.hash_n_to_hash_no_pad::<H>(vd_pub_input);`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`builder.register_public_inputs(&vd_hash.elements);`

			`// condition for switching between node and leaf`
			`let condition = builder.add_virtual_bool_target_safe();`

			`// true -> node, false -> leaf`
			`let selected_vd = builder.select_verifier_data(condition.clone(), &node_verifier_data, &const_leaf_verifier_data);`
add hashing for verifierData 2025-01-31 12:18:14 +01:00
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`// verify the proofs in-circuit - M proofs`
			`for i in 0..M {`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`builder.verify_proof::<C>(&vir_proofs[i], &selected_vd, &inner_common);`
			`}`

			// Make sure we have every gate to match `common_data`.
			`for g in &inner_common.gates {`
			`builder.add_gate_to_gate_set(g.clone());`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`}`

add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`// let proofs = vec_to_array::<2, ProofWithPublicInputsTarget<D>>(vir_proofs)?;`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00
			`// return targets`
			`let t = NodeTargets {`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`leaf_proofs: vir_proofs,`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`node_verifier_data,`
			`condition,`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`};`
			`Ok(t)`

			`}`

			`/// assign the leaf targets with given input`
			`pub fn assign_targets(`
			`&self, pw: &mut PartialWitness<F>,`
			`targets: &NodeTargets<D>,`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`node_proofs: &[ProofWithPublicInputs<F, C, D>],`
			`verifier_only_data: &VerifierOnlyCircuitData<C, D>,`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`condition: bool,`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`) -> Result<()> {`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`// assert size of proofs vec`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`assert_eq!(node_proofs.len(), M);`
add hashing for verifierData 2025-01-31 12:18:14 +01:00
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`// assign the proofs`
add support N-to-1 leaf and node aggregation 2025-02-07 10:27:04 +01:00			`for i in 0..M {`
add hashing for verifierData 2025-01-31 12:18:14 +01:00			`pw.set_proof_with_pis_target(&targets.leaf_proofs[i], &node_proofs[i])`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`.map_err(\|e\| {`
			`CircuitError::ProofTargetAssignmentError("inner-proof".to_string(), e.to_string())`
			`})?;`
			`}`

			`// assign the verifier data`
change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`pw.set_verifier_data_target(&targets.node_verifier_data, &verifier_only_data)`
impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`.map_err(\|e\| {`
			`CircuitError::VerifierDataTargetAssignmentError(e.to_string())`
			`})?;`

change hashing of VerifierData to constants. 2025-03-20 10:45:03 +01:00			`// assign the condition`
			`pw.set_bool_target(targets.condition, condition)`
			`.map_err(\|e\| CircuitError::BoolTargetAssignmentError("condition".to_string(), e.to_string()))?;`

impl uniform recursion circuits 2025-01-30 13:46:37 +01:00			`Ok(())`
			`}`

			`/// returns the leaf circuit data`
			`pub fn get_circuit_data (&self) -> Result<CircuitData<F, C, D>>`
			`where`
			`<C as GenericConfig<D>>::Hasher: AlgebraicHasher<F>`
			`{`
			`let config = CircuitConfig::standard_recursion_config();`
			`let mut builder = CircuitBuilder::<F, D>::new(config.clone());`

			`self.build(&mut builder)?;`

			`let circ_data = builder.build::<C>();`

			`Ok(circ_data)`
			`}`

			`}`