spongefish 0.6.0

An implementation of the Fiat--Shamir transformation from Duplex Sponges.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

//! Plonky3's KoalaBear field codec implementation
use p3_field::PrimeField32;
use p3_koala_bear::KoalaBear;

use crate::{
    codecs::{Decoding, Encoding},
    io::NargDeserialize,
    VerificationError, VerificationResult,
};

const KOALABEAR_ZERO: KoalaBear = unsafe { core::mem::transmute(0u32) };

// Make KoalaBear a valid Unit type
impl crate::Unit for KoalaBear {
    const ZERO: Self = KOALABEAR_ZERO;
}

// Implement Decoding for KoalaBear
//
// Following the same reasoning as BabyBear:
// We use [u8; 8] (64 bits) and reduce modulo ORDER_U32
// to get sufficient indistinguishability.
//
// For KoalaBear with modulus 2^31 - 2^24 + 1 = 2,130,706,433:
// - Sampling 32 bits would give us ~31.2 bits of indistinguishability (weak)
// - Sampling 64 bits gives us ~64.3 bits of indistinguishability (sufficient)
impl Decoding<[u8]> for KoalaBear {
    type Repr = [u8; 8];

    fn decode(buf: Self::Repr) -> Self {
        let n = u64::from_le_bytes(buf);
        Self::new((n % u64::from(Self::ORDER_U32)) as u32)
    }
}

// Implement Deserialize for KoalaBear
impl NargDeserialize for KoalaBear {
    fn deserialize_from_narg(buf: &mut &[u8]) -> VerificationResult<Self> {
        if buf.len() < 4 {
            return Err(VerificationError);
        }
        let mut repr = [0u8; 4];
        repr.copy_from_slice(&buf[..4]);
        let value = u32::from_be_bytes(repr);

        // Check that the value is in the valid range
        if value >= Self::ORDER_U32 {
            return Err(VerificationError);
        }

        *buf = &buf[4..];
        Ok(Self::new(value))
    }
}

// Implement Encoding for KoalaBear
impl Encoding<[u8]> for KoalaBear {
    fn encode(&self) -> impl AsRef<[u8]> {
        self.as_canonical_u32().to_be_bytes()
    }
}

#[cfg(test)]
mod tests {
    use alloc::vec::Vec;

    use super::*;
    use crate::io::NargSerialize;

    #[test]
    fn test_koalabear_serialize_deserialize() {
        // Create a field element
        let element = KoalaBear::new(12345);

        let mut buf = Vec::new();
        element.serialize_into_narg(&mut buf);

        let deserialized = KoalaBear::deserialize_from_narg(&mut &buf[..]).unwrap();
        assert_eq!(element, deserialized);
    }

    #[test]
    fn test_koalabear_encoding() {
        let element = KoalaBear::new(67890);

        let encoded = element.encode();
        let encoded_bytes = encoded.as_ref();

        let deserialized = KoalaBear::deserialize_from_narg(&mut &encoded_bytes[..]).unwrap();
        assert_eq!(element, deserialized);
    }

    #[test]
    fn test_koalabear_out_of_range() {
        // Try to deserialize a value larger than the modulus
        let buf = KoalaBear::ORDER_U32.to_be_bytes();
        let result = KoalaBear::deserialize_from_narg(&mut &buf[..]);
        assert!(result.is_err());
    }
}