188 lines
4.6 KiB
C
188 lines
4.6 KiB
C
/*
|
|
* Copyright 2021 Benjamin Edgington
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
/**
|
|
* @file c_kzg_4844.h
|
|
*
|
|
* Minimal interface required for EIP-4844.
|
|
*/
|
|
#ifndef C_KZG_4844_H
|
|
#define C_KZG_4844_H
|
|
|
|
#include <stdbool.h>
|
|
#include <stdint.h>
|
|
#include <stdio.h>
|
|
|
|
#include "blst.h"
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
// Macros
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
|
|
/** The number of bytes in a KZG commitment. */
|
|
#define BYTES_PER_COMMITMENT 48
|
|
|
|
/** The number of bytes in a KZG proof. */
|
|
#define BYTES_PER_PROOF 48
|
|
|
|
/** The number of bytes in a BLS scalar field element. */
|
|
#define BYTES_PER_FIELD_ELEMENT 32
|
|
|
|
/** The number of field elements in a blob. */
|
|
#define FIELD_ELEMENTS_PER_BLOB 4096
|
|
|
|
/** The number of bytes in a blob. */
|
|
#define BYTES_PER_BLOB (FIELD_ELEMENTS_PER_BLOB * BYTES_PER_FIELD_ELEMENT)
|
|
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
// Types
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
|
|
typedef blst_p1 g1_t; /**< Internal G1 group element type. */
|
|
typedef blst_p2 g2_t; /**< Internal G2 group element type. */
|
|
typedef blst_fr fr_t; /**< Internal Fr field element type. */
|
|
|
|
/**
|
|
* An array of 32 bytes. Represents an untrusted
|
|
* (potentially invalid) field element.
|
|
*/
|
|
typedef struct {
|
|
uint8_t bytes[32];
|
|
} Bytes32;
|
|
|
|
/**
|
|
* An array of 48 bytes. Represents an untrusted
|
|
* (potentially invalid) commitment/proof.
|
|
*/
|
|
typedef struct {
|
|
uint8_t bytes[48];
|
|
} Bytes48;
|
|
|
|
/**
|
|
* A basic blob data.
|
|
*/
|
|
typedef struct {
|
|
uint8_t bytes[BYTES_PER_BLOB];
|
|
} Blob;
|
|
|
|
/**
|
|
* A trusted (valid) KZG commitment.
|
|
*/
|
|
typedef Bytes48 KZGCommitment;
|
|
|
|
/**
|
|
* A trusted (valid) KZG proof.
|
|
*/
|
|
typedef Bytes48 KZGProof;
|
|
|
|
/**
|
|
* The common return type for all routines in which something can go wrong.
|
|
*/
|
|
typedef enum {
|
|
C_KZG_OK = 0, /**< Success! */
|
|
C_KZG_BADARGS, /**< The supplied data is invalid in some way. */
|
|
C_KZG_ERROR, /**< Internal error - this should never occur. */
|
|
C_KZG_MALLOC, /**< Could not allocate memory. */
|
|
} C_KZG_RET;
|
|
|
|
/**
|
|
* Stores the setup and parameters needed for computing KZG proofs.
|
|
*/
|
|
typedef struct {
|
|
/** The length of `roots_of_unity`, a power of 2. */
|
|
uint64_t max_width;
|
|
/** Powers of the primitive root of unity determined by
|
|
* `SCALE2_ROOT_OF_UNITY` in bit-reversal permutation order,
|
|
* length `max_width`. */
|
|
fr_t *roots_of_unity;
|
|
/** G1 group elements from the trusted setup,
|
|
* in Lagrange form bit-reversal permutation. */
|
|
g1_t *g1_values;
|
|
/** G2 group elements from the trusted setup. */
|
|
g2_t *g2_values;
|
|
} KZGSettings;
|
|
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
// Interface functions
|
|
///////////////////////////////////////////////////////////////////////////////
|
|
|
|
C_KZG_RET load_trusted_setup(
|
|
KZGSettings *out,
|
|
const uint8_t *g1_bytes, /* n1 * 48 bytes */
|
|
size_t n1,
|
|
const uint8_t *g2_bytes, /* n2 * 96 bytes */
|
|
size_t n2
|
|
);
|
|
|
|
C_KZG_RET load_trusted_setup_file(KZGSettings *out, FILE *in);
|
|
|
|
void free_trusted_setup(KZGSettings *s);
|
|
|
|
C_KZG_RET blob_to_kzg_commitment(
|
|
KZGCommitment *out, const Blob *blob, const KZGSettings *s
|
|
);
|
|
|
|
C_KZG_RET compute_kzg_proof(
|
|
KZGProof *proof_out,
|
|
Bytes32 *y_out,
|
|
const Blob *blob,
|
|
const Bytes32 *z_bytes,
|
|
const KZGSettings *s
|
|
);
|
|
|
|
C_KZG_RET compute_blob_kzg_proof(
|
|
KZGProof *out,
|
|
const Blob *blob,
|
|
const Bytes48 *commitment_bytes,
|
|
const KZGSettings *s
|
|
);
|
|
|
|
C_KZG_RET verify_kzg_proof(
|
|
bool *ok,
|
|
const Bytes48 *commitment_bytes,
|
|
const Bytes32 *z_bytes,
|
|
const Bytes32 *y_bytes,
|
|
const Bytes48 *proof_bytes,
|
|
const KZGSettings *s
|
|
);
|
|
|
|
C_KZG_RET verify_blob_kzg_proof(
|
|
bool *ok,
|
|
const Blob *blob,
|
|
const Bytes48 *commitment_bytes,
|
|
const Bytes48 *proof_bytes,
|
|
const KZGSettings *s
|
|
);
|
|
|
|
C_KZG_RET verify_blob_kzg_proof_batch(
|
|
bool *ok,
|
|
const Blob *blobs,
|
|
const Bytes48 *commitments_bytes,
|
|
const Bytes48 *proofs_bytes,
|
|
size_t n,
|
|
const KZGSettings *s
|
|
);
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif /* C_KZG_4844_H */
|