use crate::Aleo;
use snarkvm_circuit_algorithms::{
Commit,
CommitUncompressed,
Hash,
HashMany,
HashToGroup,
HashToScalar,
HashUncompressed,
Keccak256,
Keccak384,
Keccak512,
Pedersen128,
Pedersen64,
Poseidon2,
Poseidon4,
Poseidon8,
Sha3_256,
Sha3_384,
Sha3_512,
BHP1024,
BHP256,
BHP512,
BHP768,
};
use snarkvm_circuit_collections::merkle_tree::MerklePath;
use snarkvm_circuit_types::{
environment::{prelude::*, Assignment, Circuit, R1CS},
Boolean,
Field,
Group,
Scalar,
};
use core::fmt;
type E = Circuit;
thread_local! {
static GENERATOR_G: Vec<Group<AleoV0>> = Vec::constant(<console::Testnet3 as console::Network>::g_powers().to_vec());
static ENCRYPTION_DOMAIN: Field<AleoV0> = Field::constant(<console::Testnet3 as console::Network>::encryption_domain());
static GRAPH_KEY_DOMAIN: Field<AleoV0> = Field::constant(<console::Testnet3 as console::Network>::graph_key_domain());
static SERIAL_NUMBER_DOMAIN: Field<AleoV0> = Field::constant(<console::Testnet3 as console::Network>::serial_number_domain());
static BHP_256: BHP256<AleoV0> = BHP256::<AleoV0>::constant(console::BHP_256.clone());
static BHP_512: BHP512<AleoV0> = BHP512::<AleoV0>::constant(console::BHP_512.clone());
static BHP_768: BHP768<AleoV0> = BHP768::<AleoV0>::constant(console::BHP_768.clone());
static BHP_1024: BHP1024<AleoV0> = BHP1024::<AleoV0>::constant(console::BHP_1024.clone());
static KECCAK_256: Keccak256<AleoV0> = Keccak256::<AleoV0>::new();
static KECCAK_384: Keccak384<AleoV0> = Keccak384::<AleoV0>::new();
static KECCAK_512: Keccak512<AleoV0> = Keccak512::<AleoV0>::new();
static PEDERSEN_64: Pedersen64<AleoV0> = Pedersen64::<AleoV0>::constant(console::PEDERSEN_64.clone());
static PEDERSEN_128: Pedersen128<AleoV0> = Pedersen128::<AleoV0>::constant(console::PEDERSEN_128.clone());
static POSEIDON_2: Poseidon2<AleoV0> = Poseidon2::<AleoV0>::constant(console::POSEIDON_2.clone());
static POSEIDON_4: Poseidon4<AleoV0> = Poseidon4::<AleoV0>::constant(console::POSEIDON_4.clone());
static POSEIDON_8: Poseidon8<AleoV0> = Poseidon8::<AleoV0>::constant(console::POSEIDON_8.clone());
static SHA3_256: Sha3_256<AleoV0> = Sha3_256::<AleoV0>::new();
static SHA3_384: Sha3_384<AleoV0> = Sha3_384::<AleoV0>::new();
static SHA3_512: Sha3_512<AleoV0> = Sha3_512::<AleoV0>::new();
}
#[derive(Copy, Clone, Debug, Eq, PartialEq, Hash)]
pub struct AleoV0;
impl Aleo for AleoV0 {
fn encryption_domain() -> Field<Self> {
ENCRYPTION_DOMAIN.with(|domain| domain.clone())
}
fn graph_key_domain() -> Field<Self> {
GRAPH_KEY_DOMAIN.with(|domain| domain.clone())
}
fn serial_number_domain() -> Field<Self> {
SERIAL_NUMBER_DOMAIN.with(|domain| domain.clone())
}
#[inline]
fn g_scalar_multiply(scalar: &Scalar<Self>) -> Group<Self> {
GENERATOR_G.with(|bases| {
bases
.iter()
.zip_eq(&scalar.to_bits_le())
.fold(Group::zero(), |output, (base, bit)| Group::ternary(bit, &(&output + base), &output))
})
}
fn commit_bhp256(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
BHP_256.with(|bhp| bhp.commit(input, randomizer))
}
fn commit_bhp512(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
BHP_512.with(|bhp| bhp.commit(input, randomizer))
}
fn commit_bhp768(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
BHP_768.with(|bhp| bhp.commit(input, randomizer))
}
fn commit_bhp1024(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
BHP_1024.with(|bhp| bhp.commit(input, randomizer))
}
fn commit_ped64(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
PEDERSEN_64.with(|pedersen| pedersen.commit(input, randomizer))
}
fn commit_ped128(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Field<Self> {
PEDERSEN_128.with(|pedersen| pedersen.commit(input, randomizer))
}
fn commit_to_group_bhp256(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
BHP_256.with(|bhp| bhp.commit_uncompressed(input, randomizer))
}
fn commit_to_group_bhp512(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
BHP_512.with(|bhp| bhp.commit_uncompressed(input, randomizer))
}
fn commit_to_group_bhp768(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
BHP_768.with(|bhp| bhp.commit_uncompressed(input, randomizer))
}
fn commit_to_group_bhp1024(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
BHP_1024.with(|bhp| bhp.commit_uncompressed(input, randomizer))
}
fn commit_to_group_ped64(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
PEDERSEN_64.with(|pedersen| pedersen.commit_uncompressed(input, randomizer))
}
fn commit_to_group_ped128(input: &[Boolean<Self>], randomizer: &Scalar<Self>) -> Group<Self> {
PEDERSEN_128.with(|pedersen| pedersen.commit_uncompressed(input, randomizer))
}
fn hash_bhp256(input: &[Boolean<Self>]) -> Field<Self> {
BHP_256.with(|bhp| bhp.hash(input))
}
fn hash_bhp512(input: &[Boolean<Self>]) -> Field<Self> {
BHP_512.with(|bhp| bhp.hash(input))
}
fn hash_bhp768(input: &[Boolean<Self>]) -> Field<Self> {
BHP_768.with(|bhp| bhp.hash(input))
}
fn hash_bhp1024(input: &[Boolean<Self>]) -> Field<Self> {
BHP_1024.with(|bhp| bhp.hash(input))
}
fn hash_keccak256(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
KECCAK_256.with(|keccak| keccak.hash(input))
}
fn hash_keccak384(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
KECCAK_384.with(|keccak| keccak.hash(input))
}
fn hash_keccak512(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
KECCAK_512.with(|keccak| keccak.hash(input))
}
fn hash_ped64(input: &[Boolean<Self>]) -> Field<Self> {
PEDERSEN_64.with(|pedersen| pedersen.hash(input))
}
fn hash_ped128(input: &[Boolean<Self>]) -> Field<Self> {
PEDERSEN_128.with(|pedersen| pedersen.hash(input))
}
fn hash_psd2(input: &[Field<Self>]) -> Field<Self> {
POSEIDON_2.with(|poseidon| poseidon.hash(input))
}
fn hash_psd4(input: &[Field<Self>]) -> Field<Self> {
POSEIDON_4.with(|poseidon| poseidon.hash(input))
}
fn hash_psd8(input: &[Field<Self>]) -> Field<Self> {
POSEIDON_8.with(|poseidon| poseidon.hash(input))
}
fn hash_sha3_256(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
SHA3_256.with(|sha3| sha3.hash(input))
}
fn hash_sha3_384(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
SHA3_384.with(|sha3| sha3.hash(input))
}
fn hash_sha3_512(input: &[Boolean<Self>]) -> Vec<Boolean<Self>> {
SHA3_512.with(|sha3| sha3.hash(input))
}
fn hash_many_psd2(input: &[Field<Self>], num_outputs: u16) -> Vec<Field<Self>> {
POSEIDON_2.with(|poseidon| poseidon.hash_many(input, num_outputs))
}
fn hash_many_psd4(input: &[Field<Self>], num_outputs: u16) -> Vec<Field<Self>> {
POSEIDON_4.with(|poseidon| poseidon.hash_many(input, num_outputs))
}
fn hash_many_psd8(input: &[Field<Self>], num_outputs: u16) -> Vec<Field<Self>> {
POSEIDON_8.with(|poseidon| poseidon.hash_many(input, num_outputs))
}
fn hash_to_group_bhp256(input: &[Boolean<Self>]) -> Group<Self> {
BHP_256.with(|bhp| bhp.hash_uncompressed(input))
}
fn hash_to_group_bhp512(input: &[Boolean<Self>]) -> Group<Self> {
BHP_512.with(|bhp| bhp.hash_uncompressed(input))
}
fn hash_to_group_bhp768(input: &[Boolean<Self>]) -> Group<Self> {
BHP_768.with(|bhp| bhp.hash_uncompressed(input))
}
fn hash_to_group_bhp1024(input: &[Boolean<Self>]) -> Group<Self> {
BHP_1024.with(|bhp| bhp.hash_uncompressed(input))
}
fn hash_to_group_ped64(input: &[Boolean<Self>]) -> Group<Self> {
PEDERSEN_64.with(|pedersen| pedersen.hash_uncompressed(input))
}
fn hash_to_group_ped128(input: &[Boolean<Self>]) -> Group<Self> {
PEDERSEN_128.with(|pedersen| pedersen.hash_uncompressed(input))
}
fn hash_to_group_psd2(input: &[Field<Self>]) -> Group<Self> {
POSEIDON_2.with(|poseidon| poseidon.hash_to_group(input))
}
fn hash_to_group_psd4(input: &[Field<Self>]) -> Group<Self> {
POSEIDON_4.with(|poseidon| poseidon.hash_to_group(input))
}
fn hash_to_group_psd8(input: &[Field<Self>]) -> Group<Self> {
POSEIDON_8.with(|poseidon| poseidon.hash_to_group(input))
}
fn hash_to_scalar_psd2(input: &[Field<Self>]) -> Scalar<Self> {
POSEIDON_2.with(|poseidon| poseidon.hash_to_scalar(input))
}
fn hash_to_scalar_psd4(input: &[Field<Self>]) -> Scalar<Self> {
POSEIDON_4.with(|poseidon| poseidon.hash_to_scalar(input))
}
fn hash_to_scalar_psd8(input: &[Field<Self>]) -> Scalar<Self> {
POSEIDON_8.with(|poseidon| poseidon.hash_to_scalar(input))
}
fn verify_merkle_path_bhp<const DEPTH: u8>(
path: &MerklePath<Self, DEPTH>,
root: &Field<Self>,
leaf: &Vec<Boolean<Self>>,
) -> Boolean<Self> {
BHP_1024.with(|bhp1024| BHP_512.with(|bhp512| path.verify(bhp1024, bhp512, root, leaf)))
}
fn verify_merkle_path_psd<const DEPTH: u8>(
path: &MerklePath<Self, DEPTH>,
root: &Field<Self>,
leaf: &Vec<Field<Self>>,
) -> Boolean<Self> {
POSEIDON_4.with(|psd4| POSEIDON_2.with(|psd2| path.verify(psd4, psd2, root, leaf)))
}
}
impl Environment for AleoV0 {
type Affine = <E as Environment>::Affine;
type BaseField = <E as Environment>::BaseField;
type Network = <E as Environment>::Network;
type ScalarField = <E as Environment>::ScalarField;
fn zero() -> LinearCombination<Self::BaseField> {
E::zero()
}
fn one() -> LinearCombination<Self::BaseField> {
E::one()
}
fn new_variable(mode: Mode, value: Self::BaseField) -> Variable<Self::BaseField> {
E::new_variable(mode, value)
}
fn new_witness<Fn: FnOnce() -> Output::Primitive, Output: Inject>(mode: Mode, logic: Fn) -> Output {
E::new_witness(mode, logic)
}
fn scope<S: Into<String>, Fn, Output>(name: S, logic: Fn) -> Output
where
Fn: FnOnce() -> Output,
{
E::scope(name, logic)
}
fn enforce<Fn, A, B, C>(constraint: Fn)
where
Fn: FnOnce() -> (A, B, C),
A: Into<LinearCombination<Self::BaseField>>,
B: Into<LinearCombination<Self::BaseField>>,
C: Into<LinearCombination<Self::BaseField>>,
{
E::enforce(constraint)
}
fn is_satisfied() -> bool {
E::is_satisfied()
}
fn is_satisfied_in_scope() -> bool {
E::is_satisfied_in_scope()
}
fn num_constants() -> u64 {
E::num_constants()
}
fn num_public() -> u64 {
E::num_public()
}
fn num_private() -> u64 {
E::num_private()
}
fn num_constraints() -> u64 {
E::num_constraints()
}
fn num_nonzeros() -> (u64, u64, u64) {
E::num_nonzeros()
}
fn num_constants_in_scope() -> u64 {
E::num_constants_in_scope()
}
fn num_public_in_scope() -> u64 {
E::num_public_in_scope()
}
fn num_private_in_scope() -> u64 {
E::num_private_in_scope()
}
fn num_constraints_in_scope() -> u64 {
E::num_constraints_in_scope()
}
fn num_nonzeros_in_scope() -> (u64, u64, u64) {
E::num_nonzeros_in_scope()
}
fn halt<S: Into<String>, T>(message: S) -> T {
E::halt(message)
}
fn inject_r1cs(r1cs: R1CS<Self::BaseField>) {
E::inject_r1cs(r1cs)
}
fn eject_r1cs_and_reset() -> R1CS<Self::BaseField> {
E::eject_r1cs_and_reset()
}
fn eject_assignment_and_reset() -> Assignment<<Self::Network as console::Environment>::Field> {
E::eject_assignment_and_reset()
}
fn reset() {
E::reset()
}
}
impl Display for AleoV0 {
fn fmt(&self, f: &mut Formatter) -> fmt::Result {
fmt::Display::fmt(&Circuit, f)
}
}
#[cfg(test)]
mod tests {
use super::*;
use snarkvm_circuit_types::Field;
type CurrentAleo = AleoV0;
fn create_example_circuit<E: Environment>() -> Field<E> {
let one = snarkvm_console_types::Field::<<E as Environment>::Network>::one();
let two = one + one;
const EXPONENT: u64 = 64;
let mut candidate = Field::<E>::new(Mode::Public, one);
let mut accumulator = Field::new(Mode::Private, two);
for _ in 0..EXPONENT {
candidate += &accumulator;
accumulator *= Field::new(Mode::Private, two);
}
assert_eq!((accumulator - Field::one()).eject_value(), candidate.eject_value());
assert_eq!(2, E::num_public());
assert_eq!(2 * EXPONENT + 1, E::num_private());
assert_eq!(EXPONENT, E::num_constraints());
assert!(E::is_satisfied());
candidate
}
#[test]
fn test_print_circuit() {
let circuit = CurrentAleo {};
let _candidate = create_example_circuit::<CurrentAleo>();
let output = format!("{circuit}");
println!("{output}");
}
#[test]
fn test_circuit_scope() {
CurrentAleo::scope("test_circuit_scope", || {
assert_eq!(0, CurrentAleo::num_constants());
assert_eq!(1, CurrentAleo::num_public());
assert_eq!(0, CurrentAleo::num_private());
assert_eq!(0, CurrentAleo::num_constraints());
assert_eq!(0, CurrentAleo::num_constants_in_scope());
assert_eq!(0, CurrentAleo::num_public_in_scope());
assert_eq!(0, CurrentAleo::num_private_in_scope());
assert_eq!(0, CurrentAleo::num_constraints_in_scope());
})
}
}