hush
/
hush
8
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
Original HUSH source code based on ZEC 1.0.8 . For historical purposes only! https://hush.is
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11087 Commits
32 Branches
8 Tags
52 MiB
 
 
 
 
 
 
Tree: 0612c6cf98
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '0612c6cf98'
${ noResults }
hush/src/snark/src/gadgetlib1/gadgets/merkle_tree/merkle_tree_check_update_ga...

90 lines
3.9 KiB
Raw Blame History

/** @file
*****************************************************************************
Declaration of interfaces for the Merkle tree check read gadget.
The gadget checks the following: given two roots R1 and R2, address A, two
values V1 and V2, and authentication path P, check that
- P is a valid authentication path for the value V1 as the A-th leaf in a Merkle tree with root R1, and
- P is a valid authentication path for the value V2 as the A-th leaf in a Merkle tree with root R2.
*****************************************************************************
* @author This file is part of libsnark, developed by SCIPR Lab
* and contributors (see AUTHORS).
* @copyright MIT license (see LICENSE file)
*****************************************************************************/
#ifndef MERKLE_TREE_CHECK_UPDATE_GADGET_HPP_
#define MERKLE_TREE_CHECK_UPDATE_GADGET_HPP_
#include "common/data_structures/merkle_tree.hpp"
#include "gadgetlib1/gadget.hpp"
#include "gadgetlib1/gadgets/hashes/hash_io.hpp"
#include "gadgetlib1/gadgets/hashes/digest_selector_gadget.hpp"
#include "gadgetlib1/gadgets/merkle_tree/merkle_authentication_path_variable.hpp"
namespace libsnark {
template<typename FieldT, typename HashT>
class merkle_tree_check_update_gadget : public gadget<FieldT> {
private:
std::vector<HashT> prev_hashers;
std::vector<block_variable<FieldT> > prev_hasher_inputs;
std::vector<digest_selector_gadget<FieldT> > prev_propagators;
std::vector<digest_variable<FieldT> > prev_internal_output;
std::vector<HashT> next_hashers;
std::vector<block_variable<FieldT> > next_hasher_inputs;
std::vector<digest_selector_gadget<FieldT> > next_propagators;
std::vector<digest_variable<FieldT> > next_internal_output;
std::shared_ptr<digest_variable<FieldT> > computed_next_root;
std::shared_ptr<bit_vector_copy_gadget<FieldT> > check_next_root;
public:
const size_t digest_size;
const size_t tree_depth;
pb_variable_array<FieldT> address_bits;
digest_variable<FieldT> prev_leaf_digest;
digest_variable<FieldT> prev_root_digest;
merkle_authentication_path_variable<FieldT, HashT> prev_path;
digest_variable<FieldT> next_leaf_digest;
digest_variable<FieldT> next_root_digest;
merkle_authentication_path_variable<FieldT, HashT> next_path;
pb_linear_combination<FieldT> update_successful;
/* Note that while it is necessary to generate R1CS constraints
for prev_path, it is not necessary to do so for next_path. See
comment in the implementation of generate_r1cs_constraints() */
merkle_tree_check_update_gadget(protoboard<FieldT> &pb,
const size_t tree_depth,
const pb_variable_array<FieldT> &address_bits,
const digest_variable<FieldT> &prev_leaf_digest,
const digest_variable<FieldT> &prev_root_digest,
const merkle_authentication_path_variable<FieldT, HashT> &prev_path,
const digest_variable<FieldT> &next_leaf_digest,
const digest_variable<FieldT> &next_root_digest,
const merkle_authentication_path_variable<FieldT, HashT> &next_path,
const pb_linear_combination<FieldT> &update_successful,
const std::string &annotation_prefix);
void generate_r1cs_constraints();
void generate_r1cs_witness();
static size_t root_size_in_bits();
/* for debugging purposes */
static size_t expected_constraints(const size_t tree_depth);
};
template<typename FieldT, typename HashT>
void test_merkle_tree_check_update_gadget();
} // libsnark
#include "gadgetlib1/gadgets/merkle_tree/merkle_tree_check_update_gadget.tcc"
#endif // MERKLE_TREE_CHECK_UPDATE_GADGET_HPP_