sp1-recursion-core 5.2.4

SP1 is a performant, 100% open-source, contributor-friendly zkVM.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

#pragma once

#include "poseidon2_constants.hpp"
#include "prelude.hpp"

namespace sp1_recursion_core_sys::poseidon2 {
using namespace constants;

constexpr size_t INPUT_ROUND_IDX = 0;
constexpr size_t INTERNAL_ROUND_IDX = NUM_EXTERNAL_ROUNDS / 2 + 1;

constexpr size_t NUM_ROUNDS = OUTPUT_ROUND_IDX + 1;

constexpr size_t PERMUTATION_NO_SBOX =
    (WIDTH * NUM_EXTERNAL_ROUNDS) + WIDTH + (NUM_INTERNAL_ROUNDS - 1) + WIDTH;
constexpr size_t PERMUTATION_SBOX =
    PERMUTATION_NO_SBOX + (WIDTH * NUM_EXTERNAL_ROUNDS) + NUM_INTERNAL_ROUNDS;

constexpr size_t POSEIDON2_WIDTH = 16;

template <class F>
__SP1_HOSTDEV__ __SP1_INLINE__ void mdsLightPermutation4x4(F state[4]) {
  F t01 = state[0] + state[1];
  F t23 = state[2] + state[3];
  F t0123 = t01 + t23;
  F t01123 = t0123 + state[1];
  F t01233 = t0123 + state[3];
  state[3] = t01233 + operator<<(state[0], 1);
  state[1] = t01123 + operator<<(state[2], 1);
  state[0] = t01123 + t01;
  state[2] = t01233 + t23;
}

template <class F>
__SP1_HOSTDEV__ __SP1_INLINE__ void external_linear_layer(
    F state_var[POSEIDON2_WIDTH]) {
  for (size_t i = 0; i < POSEIDON2_WIDTH; i += 4) {
    mdsLightPermutation4x4(state_var + i);
  }

  F sums[4] = {F::zero(), F::zero(), F::zero(), F::zero()};
  for (size_t k = 0; k < 4; k++) {
    for (size_t j = 0; j < POSEIDON2_WIDTH; j += 4) {
      sums[k] = sums[k] + state_var[j + k];
    }
  }

  for (size_t j = 0; j < POSEIDON2_WIDTH; j++) {
    state_var[j] = state_var[j] + sums[j % 4];
  }
}

template <class F>
__SP1_HOSTDEV__ __SP1_INLINE__ void internal_linear_layer(
    F state[POSEIDON2_WIDTH]) {
  F matmul_constants[POSEIDON2_WIDTH];
  for (size_t i = 0; i < POSEIDON2_WIDTH; i++) {
    matmul_constants[i] = F(F::to_monty(F::from_monty(
        constants::POSEIDON2_INTERNAL_MATRIX_DIAG_16_BABYBEAR_MONTY[i].val)));
  }

  F sum = F::zero();
  for (size_t i = 0; i < POSEIDON2_WIDTH; i++) {
    sum = sum + state[i];
  }

  for (size_t i = 0; i < POSEIDON2_WIDTH; i++) {
    state[i] = state[i] * matmul_constants[i];
    state[i] = state[i] + sum;
  }

  F monty_inverse = F(F::to_monty(F::from_monty(1)));
  for (size_t i = 0; i < POSEIDON2_WIDTH; i++) {
    state[i] = state[i] * monty_inverse;
  }
}
}  // namespace sp1_recursion_core_sys::poseidon2