1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
use ark_ff::fields::Field;
use ark_serialize::CanonicalSerialize;
use ark_std::{vec, vec::Vec};
use merlin::Transcript as Merlin;
pub fn new_merlin_transcript(label: &'static [u8]) -> impl Transcript {
Merlin::new(label)
}
pub trait Transcript {
fn append<S: CanonicalSerialize>(&mut self, label: &'static [u8], point: &S);
fn challenge_scalar<F: Field>(&mut self, label: &'static [u8]) -> F;
}
impl Transcript for Merlin {
fn append<S: CanonicalSerialize>(&mut self, label: &'static [u8], element: &S) {
let mut buff: Vec<u8> = vec![0; element.compressed_size()];
element
.serialize_compressed(&mut buff)
.expect("serialization failed");
self.append_message(label, &buff);
}
fn challenge_scalar<F: Field>(&mut self, label: &'static [u8]) -> F {
let mut buf = [0; 64];
self.challenge_bytes(label, &mut buf);
let mut counter = 0;
loop {
let c = F::from_random_bytes(&buf);
if let Some(chal) = c {
if let Some(c_inv) = chal.inverse() {
return c_inv;
}
}
buf[0] = counter;
counter += 1;
self.challenge_bytes(label, &mut buf);
}
}
}
#[cfg(test)]
mod test {
use super::*;
use ark_bls12_381::{Fr, G1Projective};
use ark_ec::Group;
#[test]
fn transcript() {
let mut transcript = new_merlin_transcript(b"test");
transcript.append(b"point", &G1Projective::generator());
let f1 = transcript.challenge_scalar::<Fr>(b"scalar");
let mut transcript2 = new_merlin_transcript(b"test");
transcript2.append(b"point", &G1Projective::generator());
let f2 = transcript2.challenge_scalar::<Fr>(b"scalar");
assert_eq!(f1, f2);
}
}