miden-crypto 0.25.0

Miden Cryptographic primitives
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366

use assert_matches::assert_matches;
use itertools::Itertools;

use super::{EmptySubtreeRoots, MerkleError, SmtForest, Word};
use crate::{
    EMPTY_WORD, Felt, ONE, ZERO,
    merkle::{
        int_to_node,
        smt::{SMT_DEPTH, SmtProofError},
    },
};

// TESTS
// ================================================================================================

#[test]
fn test_insert_root_not_in_store() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();
    let word = Word::new([ONE; Word::NUM_ELEMENTS]);
    assert_matches!(
        forest.insert(word, word, word),
        Err(MerkleError::RootNotInStore(_)),
        "The forest is empty, so only empty root is valid"
    );

    Ok(())
}

#[test]
fn test_insert_root_empty() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();
    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);
    let value = Word::new([ONE; Word::NUM_ELEMENTS]);
    assert_eq!(
        forest.insert(empty_tree_root, key, value)?,
        Word::new([
            Felt::new_unchecked(16906950376809463586),
            Felt::new_unchecked(12041256092349224868),
            Felt::new_unchecked(1176700509486931830),
            Felt::new_unchecked(7542611981105929079),
        ]),
    );
    Ok(())
}

#[test]
fn test_insert_multiple_values() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();

    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);
    let value = Word::new([ONE; Word::NUM_ELEMENTS]);
    let new_root = forest.insert(empty_tree_root, key, value)?;
    assert_eq!(
        new_root,
        Word::new([
            Felt::new_unchecked(16906950376809463586),
            Felt::new_unchecked(12041256092349224868),
            Felt::new_unchecked(1176700509486931830),
            Felt::new_unchecked(7542611981105929079),
        ]),
    );

    let new_root = forest.insert(new_root, key, value)?;
    assert_eq!(
        new_root,
        Word::new([
            Felt::new_unchecked(16906950376809463586),
            Felt::new_unchecked(12041256092349224868),
            Felt::new_unchecked(1176700509486931830),
            Felt::new_unchecked(7542611981105929079),
        ]),
    );

    // Inserting the same key-value pair again should return the same root
    let root_duplicate = forest.insert(new_root, key, value)?;
    assert_eq!(new_root, root_duplicate);

    let key2 = Word::new([ZERO, ONE, ZERO, ONE]);
    let new_root = forest.insert(new_root, key2, value)?;
    assert_eq!(
        new_root,
        Word::new([
            Felt::new_unchecked(16815662437327551981),
            Felt::new_unchecked(5197991956083107546),
            Felt::new_unchecked(1939115207259100000),
            Felt::new_unchecked(6159513656306598644),
        ])
    );

    Ok(())
}

#[test]
fn test_batch_insert() -> Result<(), MerkleError> {
    let forest = SmtForest::new();

    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);

    let values = vec![
        (Word::new([ZERO; Word::NUM_ELEMENTS]), Word::new([ONE; Word::NUM_ELEMENTS])),
        (Word::new([ZERO, ONE, ZERO, ONE]), Word::new([ONE; Word::NUM_ELEMENTS])),
        (Word::new([ZERO, ONE, ZERO, ZERO]), Word::new([ONE; Word::NUM_ELEMENTS])),
    ];

    values.into_iter().permutations(3).for_each(|values| {
        let mut forest = forest.clone();
        let new_root = forest.batch_insert(empty_tree_root, values.clone()).unwrap();

        assert_eq!(
            new_root,
            Word::new([
                Felt::new_unchecked(5427929042044360539),
                Felt::new_unchecked(6118532261391705453),
                Felt::new_unchecked(5681692130190572868),
                Felt::new_unchecked(8495277686282924792),
            ])
        );

        for (key, value) in values {
            let proof = forest.open(new_root, key).unwrap();
            proof.verify_presence(&key, &value, &new_root).unwrap();
        }
    });

    Ok(())
}

#[test]
fn test_open_root_not_in_store() -> Result<(), MerkleError> {
    let forest = SmtForest::new();
    let word = Word::new([ONE; Word::NUM_ELEMENTS]);
    assert_matches!(
        forest.open(word, word),
        Err(MerkleError::RootNotInStore(_)),
        "The forest is empty, so only empty root is valid"
    );

    Ok(())
}

#[test]
fn test_open_root_in_store() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();

    let root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let root = forest.insert(
        root,
        Word::new([
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
        ]),
        int_to_node(1),
    )?;
    let root = forest.insert(
        root,
        Word::new([
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(1),
        ]),
        int_to_node(2),
    )?;
    let root = forest.insert(
        root,
        Word::new([
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(2),
        ]),
        int_to_node(3),
    )?;

    let proof = forest.open(
        root,
        Word::new([
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(0),
            Felt::new_unchecked(2),
        ]),
    )?;
    proof
        .verify_presence(
            &Word::new([
                Felt::new_unchecked(0),
                Felt::new_unchecked(0),
                Felt::new_unchecked(0),
                Felt::new_unchecked(2),
            ]),
            &int_to_node(3),
            &root,
        )
        .expect("proof should verify membership");

    Ok(())
}

#[test]
fn test_empty_word_removes_key() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();
    let empty_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::from([1_u32; Word::NUM_ELEMENTS]);
    let value = Word::from([2_u32; Word::NUM_ELEMENTS]);

    let root_with_value = forest.insert(empty_root, key, value)?;
    let root_after_remove = forest.insert(root_with_value, key, EMPTY_WORD)?;

    assert_eq!(root_after_remove, empty_root);
    assert!(!forest.leaves.contains_key(&key));

    let proof = forest.open(root_after_remove, key)?;
    proof.verify_unset(&key, &root_after_remove).unwrap();

    Ok(())
}

#[test]
fn test_multiple_versions_of_same_key() -> Result<(), MerkleError> {
    // Verify that when we insert multiple values for the same key,
    // we can still open valid proofs for all historical roots.
    let mut forest = SmtForest::new();

    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);

    // Insert the same key with different values, creating multiple roots
    let value1 = Word::new([ONE; Word::NUM_ELEMENTS]);
    let root1 = forest.insert(empty_tree_root, key, value1)?;

    let value2 = Word::new([Felt::new_unchecked(2); Word::NUM_ELEMENTS]);
    let root2 = forest.insert(root1, key, value2)?;

    let value3 = Word::new([Felt::new_unchecked(3); Word::NUM_ELEMENTS]);
    let root3 = forest.insert(root2, key, value3)?;

    // All three roots should be different
    assert_ne!(root1, root2);
    assert_ne!(root2, root3);
    assert_ne!(root1, root3);

    // Open proofs for each historical root and verify them
    let proof1 = forest.open(root1, key)?;
    proof1
        .verify_presence(&key, &value1, &root1)
        .expect("Proof for root1 should verify with value1");

    let proof2 = forest.open(root2, key)?;
    proof2
        .verify_presence(&key, &value2, &root2)
        .expect("Proof for root2 should verify with value2");

    let proof3 = forest.open(root3, key)?;
    proof3
        .verify_presence(&key, &value3, &root3)
        .expect("Proof for root3 should verify with value3");

    // Wrong values cannot be verified - should return ValueMismatch
    assert_matches!(
        proof1.verify_presence(&key, &value2, &root1),
        Err(SmtProofError::ValueMismatch { .. }),
        "Proof for root1 should not verify with value2"
    );

    assert_matches!(
        proof3.verify_presence(&key, &value1, &root3),
        Err(SmtProofError::ValueMismatch { .. }),
        "Proof for root3 should not verify with value1"
    );

    Ok(())
}

#[test]
fn test_pop_roots() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();

    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);
    let value = Word::new([ONE; Word::NUM_ELEMENTS]);
    let root = forest.insert(empty_tree_root, key, value)?;

    assert_eq!(forest.roots.len(), 1);
    assert_eq!(forest.leaves.len(), 1);

    forest.pop_smts(vec![root]);

    assert_eq!(forest.roots.len(), 0);
    assert_eq!(forest.leaves.len(), 0);

    Ok(())
}

#[test]
fn test_pop_and_reinsert_same_tree() -> Result<(), MerkleError> {
    let mut forest = SmtForest::new();

    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);
    let value = Word::new([ONE; Word::NUM_ELEMENTS]);

    // Insert a key, then pop the tree
    let root1 = forest.insert(empty_tree_root, key, value)?;
    forest.pop_smts(vec![root1]);

    // Re-insert the same key-value pair (produces the same tree hashes)
    let root2 = forest.insert(empty_tree_root, key, value)?;
    assert_eq!(root1, root2, "same key-value must produce the same root");

    // Verify the proof is valid
    let proof = forest.open(root2, key)?;
    proof.verify_presence(&key, &value, &root2).unwrap();

    // Pop again — without the fix this would panic due to rc underflow
    forest.pop_smts(vec![root2]);

    assert_eq!(forest.roots.len(), 0);
    assert_eq!(forest.leaves.len(), 0);

    Ok(())
}

#[test]
fn test_removing_empty_smt_from_forest() {
    let mut forest = SmtForest::new();
    let empty_tree_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let non_empty_root = Word::new([ONE; Word::NUM_ELEMENTS]);

    // Popping zero SMTs from forest should be a no-op (no panic or error)
    forest.pop_smts(vec![]);

    // Popping a non-existent root should be a no-op (no panic or error)
    forest.pop_smts(vec![non_empty_root]);

    // Popping the empty root should be a no-op (no panic or error)
    forest.pop_smts(vec![empty_tree_root]);
}

#[test]
fn test_empty_root_never_removed() -> Result<(), MerkleError> {
    // Verify that the empty tree root is never registered in self.roots and that
    // popping it does not corrupt the store.
    let mut forest = SmtForest::new();
    let empty_root = *EmptySubtreeRoots::entry(SMT_DEPTH, 0);
    let key = Word::new([ZERO; Word::NUM_ELEMENTS]);
    let value = Word::new([ONE; Word::NUM_ELEMENTS]);

    // batch_insert with no entries returns the empty root — it must not be registered
    let root = forest.batch_insert(empty_root, vec![])?;
    assert_eq!(root, empty_root);

    // Popping the empty root would corrupt the store if it were in self.roots.
    forest.pop_smts(vec![empty_root]);

    // The forest should still be fully functional
    let new_root = forest.insert(empty_root, key, value)?;
    let proof = forest.open(new_root, key)?;
    assert!(proof.verify_presence(&key, &value, &new_root).is_ok());

    Ok(())
}