use ark_ec::pairing::Pairing;
use ark_ec::twisted_edwards::{Affine, TECurveConfig};
use ark_ec::AffineRepr;
use ark_ff::PrimeField;
use ark_serialize::{CanonicalDeserialize, CanonicalSerialize};
use ark_std::marker::PhantomData;
use ark_std::{vec, vec::Vec};
use w3f_pcs::pcs::kzg::commitment::KzgCommitment;
use w3f_pcs::pcs::kzg::params::RawKzgVerifierKey;
use w3f_pcs::pcs::kzg::KZG;
use w3f_pcs::pcs::{Commitment, PcsParams, PCS};
pub(crate) use prover::PiopProver;
pub(crate) use verifier::PiopVerifier;
use w3f_plonk_common::gadgets::ec::AffineColumn;
use w3f_plonk_common::{ColumnsCommited, ColumnsEvaluated, FieldColumn};
use crate::ring::Ring;
use crate::PiopParams;
pub mod params;
mod prover;
mod verifier;
#[derive(Clone, CanonicalSerialize, CanonicalDeserialize)]
pub struct RingCommitments<F: PrimeField, C: Commitment<F>> {
pub(crate) bits: C,
pub(crate) inn_prod_acc: C,
pub(crate) cond_add_acc: [C; 2],
pub(crate) phantom: PhantomData<F>,
}
impl<F: PrimeField, C: Commitment<F>> ColumnsCommited<F, C> for RingCommitments<F, C> {
fn to_vec(self) -> Vec<C> {
vec![
self.bits,
self.inn_prod_acc,
self.cond_add_acc[0].clone(),
self.cond_add_acc[1].clone(),
]
}
}
#[derive(Clone, CanonicalSerialize, CanonicalDeserialize)]
pub struct RingEvaluations<F: PrimeField> {
pub(crate) points: [F; 2],
pub(crate) ring_selector: F,
pub(crate) bits: F,
pub(crate) inn_prod_acc: F,
pub(crate) cond_add_acc: [F; 2],
}
impl<F: PrimeField> ColumnsEvaluated<F> for RingEvaluations<F> {
fn to_vec(self) -> Vec<F> {
vec![
self.points[0],
self.points[1],
self.ring_selector,
self.bits,
self.inn_prod_acc,
self.cond_add_acc[0],
self.cond_add_acc[1],
]
}
}
#[derive(Clone, CanonicalSerialize, CanonicalDeserialize)]
pub struct FixedColumns<F: PrimeField, G: AffineRepr<BaseField = F>> {
points: AffineColumn<F, G>,
ring_selector: FieldColumn<F>,
}
#[derive(Clone, CanonicalSerialize, CanonicalDeserialize, PartialEq, Eq, Debug)]
pub struct FixedColumnsCommitted<F: PrimeField, C: Commitment<F>> {
pub points: [C; 2],
pub ring_selector: C,
pub phantom: PhantomData<F>,
}
impl<F: PrimeField, C: Commitment<F>> FixedColumnsCommitted<F, C> {
fn as_vec(&self) -> Vec<C> {
vec![
self.points[0].clone(),
self.points[1].clone(),
self.ring_selector.clone(),
]
}
}
impl<E: Pairing> FixedColumnsCommitted<E::ScalarField, KzgCommitment<E>> {
pub fn from_ring<G: TECurveConfig<BaseField = E::ScalarField>>(
ring: &Ring<E::ScalarField, E, G>,
) -> Self {
let cx = KzgCommitment(ring.cx);
let cy = KzgCommitment(ring.cy);
Self {
points: [cx, cy],
ring_selector: KzgCommitment(ring.selector),
phantom: Default::default(),
}
}
}
impl<F: PrimeField, G: AffineRepr<BaseField = F>> FixedColumns<F, G> {
fn commit<CS: PCS<F>>(&self, ck: &CS::CK) -> FixedColumnsCommitted<F, CS::C> {
let points = [
CS::commit(ck, self.points.xs.as_poly()).unwrap(),
CS::commit(ck, self.points.ys.as_poly()).unwrap(),
];
let ring_selector = CS::commit(ck, self.ring_selector.as_poly()).unwrap();
FixedColumnsCommitted {
points,
ring_selector,
phantom: Default::default(),
}
}
}
#[derive(CanonicalSerialize, CanonicalDeserialize)]
pub struct ProverKey<F: PrimeField, CS: PCS<F>, G: AffineRepr<BaseField = F>> {
pub(crate) pcs_ck: CS::CK,
pub(crate) fixed_columns: FixedColumns<F, G>,
pub(crate) verifier_key: VerifierKey<F, CS>, }
impl<F: PrimeField, CS: PCS<F>, G: AffineRepr<BaseField = F>> Clone for ProverKey<F, CS, G> {
fn clone(&self) -> Self {
Self {
pcs_ck: self.pcs_ck.clone(),
fixed_columns: self.fixed_columns.clone(),
verifier_key: self.verifier_key.clone(),
}
}
}
#[derive(Debug, Eq, PartialEq, CanonicalSerialize, CanonicalDeserialize)]
pub struct VerifierKey<F: PrimeField, CS: PCS<F>> {
pub(crate) pcs_raw_vk: <CS::Params as PcsParams>::RVK,
pub(crate) fixed_columns_committed: FixedColumnsCommitted<F, CS::C>,
}
impl<F: PrimeField, CS: PCS<F>> Clone for VerifierKey<F, CS> {
fn clone(&self) -> Self {
Self {
pcs_raw_vk: self.pcs_raw_vk.clone(),
fixed_columns_committed: self.fixed_columns_committed.clone(),
}
}
}
impl<E: Pairing> VerifierKey<E::ScalarField, KZG<E>> {
pub fn from_ring_and_kzg_vk<G: TECurveConfig<BaseField = E::ScalarField>>(
ring: &Ring<E::ScalarField, E, G>,
kzg_vk: RawKzgVerifierKey<E>,
) -> Self {
Self::from_commitment_and_kzg_vk(FixedColumnsCommitted::from_ring(ring), kzg_vk)
}
pub fn from_commitment_and_kzg_vk(
commitment: FixedColumnsCommitted<E::ScalarField, KzgCommitment<E>>,
kzg_vk: RawKzgVerifierKey<E>,
) -> Self {
Self {
pcs_raw_vk: kzg_vk,
fixed_columns_committed: commitment,
}
}
pub fn commitment(&self) -> FixedColumnsCommitted<E::ScalarField, KzgCommitment<E>> {
self.fixed_columns_committed.clone()
}
}
pub fn index<F: PrimeField, CS: PCS<F>, Curve: TECurveConfig<BaseField = F>>(
pcs_params: &CS::Params,
piop_params: &PiopParams<F, Curve>,
keys: &[Affine<Curve>],
) -> (ProverKey<F, CS, Affine<Curve>>, VerifierKey<F, CS>) {
let pcs_ck = pcs_params.ck();
let pcs_raw_vk = pcs_params.raw_vk();
let fixed_columns = piop_params.fixed_columns(&keys);
let fixed_columns_committed = fixed_columns.commit::<CS>(&pcs_ck);
let verifier_key = VerifierKey {
pcs_raw_vk: pcs_raw_vk.clone(),
fixed_columns_committed: fixed_columns_committed.clone(),
};
let prover_key = ProverKey {
pcs_ck,
fixed_columns,
verifier_key,
};
let verifier_key = VerifierKey {
pcs_raw_vk,
fixed_columns_committed,
};
(prover_key, verifier_key)
}