dapol 0.4.0

DAPOL+ Proof of Liabilities protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148

use log::error;
use serde::{Deserialize, Serialize};

/// The default max liability.
///
/// We would like to accommodate as high a value as possible while still being
/// able to add $N$ of these together without overflow (where $N$ is the number
/// of entities). A reasonable expectation is that $N < 1_000_000_000$ which
/// gives us $L_{\text{max}} = 2^{64} / 1_000_000_000$. But things are simpler
/// and computationally easier if we stick to powers of $2$, so we rather use:
/// $L_{\text{max}} = 2^{64} / 2^{30} = 2^{34}$.
///
/// $L_{\text{max}}$ is used as the upper bound in the range proof. We use
/// Bulletproofs for range proofs The Bulletproofs library only allows upper
/// bounds that are powers of 2 and have bit lengths in this list: $[8, 16, 32,
/// 64]$. So instead of $2^{30}$ we use $2^{32}$.
pub const DEFAULT_MAX_LIABILITY: u64 = 2u64.pow(DEFAULT_RANGE_PROOF_UPPER_BOUND_BIT_LENGTH as u32);

/// Default upper bound for the range proof in the inclusion proof.
///
/// This value is determined by the max liability since we want to produce
/// proofs of liabilities being within the range $[0, L_{\text{max}}]$.
pub const DEFAULT_RANGE_PROOF_UPPER_BOUND_BIT_LENGTH: u8 = 32u8;

/// These are the only allowed powers of 2 for the range proof upper bound
/// when using Bulletproofs.
pub const ALLOWED_RANGE_PROOF_UPPER_BIT_SIZES: [u8; 4] = [8, 16, 32, 64];

/// Abstraction for the max liabilty value.
#[doc = include_str!("./shared_docs/max_liability.md")]
///
/// Example:
/// ```
/// use dapol::MaxLiability;
/// use std::str::FromStr;
///
/// let max_liability = MaxLiability::default();
/// let max_liability = MaxLiability::from(1000u64);
/// let max_liability = MaxLiability::from_str("1000").unwrap();
/// ```
#[derive(Copy, Clone, Debug, Deserialize, Serialize, PartialEq, PartialOrd)]
pub struct MaxLiability(u64);

impl MaxLiability {
    pub fn as_u64(&self) -> u64 {
        self.0
    }

    /// Take the logarithm of the underlying value and return the smallest
    /// allowed bit length that is greater than this value.
    pub fn as_range_proof_upper_bound_bit_length(&self) -> u8 {
        let pow_2 = (self.0 as f64).log2() as u8;
        *ALLOWED_RANGE_PROOF_UPPER_BIT_SIZES
            .iter()
            .find(|i| **i > pow_2)
            .unwrap_or_else(|| {
                panic!(
                    "[BUG] It should not be possible for the base 2 logarithm of {} to be above 64",
                    self.0
                )
            })
    }
}

// -------------------------------------------------------------------------------------------------
// From for u64

impl From<u64> for MaxLiability {
    fn from(max_liability: u64) -> Self {
        Self(max_liability)
    }
}

// -------------------------------------------------------------------------------------------------
// Default.

impl Default for MaxLiability {
    fn default() -> Self {
        Self(DEFAULT_MAX_LIABILITY)
    }
}

// -------------------------------------------------------------------------------------------------
// From for str.

use std::str::FromStr;

impl FromStr for MaxLiability {
    type Err = MaxLiabilityError;

    fn from_str(s: &str) -> Result<Self, Self::Err> {
        Ok(MaxLiability(u64::from_str(s)?))
    }
}

// -------------------------------------------------------------------------------------------------
// Into for OsStr.

use clap::builder::{OsStr, Str};

impl From<MaxLiability> for OsStr {
    fn from(max_liability: MaxLiability) -> OsStr {
        OsStr::from(Str::from(max_liability.as_u64().to_string()))
    }
}

// -------------------------------------------------------------------------------------------------
// Errors.

#[derive(thiserror::Error, Debug)]
pub enum MaxLiabilityError {
    #[error("Malformed string input for u64 type")]
    MalformedString(#[from] std::num::ParseIntError),
}

// -------------------------------------------------------------------------------------------------
// Unit tests.

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn default_max_liability_is_in_allowed_list() {
        let pow_2 = (DEFAULT_MAX_LIABILITY as f64).log2() as u8;
        assert!(ALLOWED_RANGE_PROOF_UPPER_BIT_SIZES
            .iter()
            .find(|i| **i == pow_2)
            .is_some());
    }

    #[test]
    fn upper_bound_bit_length_works_for_100() {
        let input_max_liability = 100u64;
        let max_liability = MaxLiability(input_max_liability);

        let logarithm_of_input_truncated = (input_max_liability as f64).log2() as u8;
        assert_eq!(logarithm_of_input_truncated, 6u8);
        let nearest_pow_2_greater_than = 8u8;

        assert_eq!(
            max_liability.as_range_proof_upper_bound_bit_length(),
            nearest_pow_2_greater_than
        );
    }

    // TODO test more cases for the upper_bound_bit_length function
}