proof_of_sql::sql::proof

Struct VerifiableQueryResult

source 
pub struct VerifiableQueryResult<CP: CommitmentEvaluationProof> {
    pub provable_result: Option<ProvableQueryResult>,
    pub proof: Option<QueryProof<CP>>,
}
Expand description

The result of an sql query along with a proof that the query is valid. The result and proof can be verified using commitments to database columns.

Note: the query result is stored in an intermediate form rather than the final form the end-user sees. The final form is obtained after verification. Using an intermediate form allows us to handle overflow and certain cases where the final result might use floating point numbers (e.g. SELECT STDDEV(A) FROM T WHERE B = 0).

Below we demonstrate typical usage of VerifiableQueryResult with pseudo-code.

Here we assume that a verifier only has access to the commitments of database columns. To process a query, the verifier forwards the query to an untrusted prover. The prover has full access to the database and constructs a VerifiableQueryResult that it sends back to the verifier. The verifier checks that the result is valid using its commitments, and constructs the finalized form of the query result.

prover_process_query(database_accessor) {
      query <- receive_query_from_verifier()

      verifiable_result <- VerifiableQueryResult::new(query, database_accessor)
            // When we construct VerifiableQueryResult from a query expression, we compute
            // both the result of the query in intermediate form and the proof of the result
            // at the same time.

      send_to_verifier(verifiable_result)
}

verifier_process_query(query, commitment_accessor) {
   verifiable_result <- send_query_to_prover(query)

   verify_result <- verifiable_result.verify(query, commitment_accessor)
   if verify_result.is_error() {
        // The prover did something wrong. Perhaps the prover tried to tamper with the query
        // result or maybe its version of the database was out-of-sync with the verifier's
        // version.
        do_verification_error()
   }

   query_result <- verify_result.query_result()
   if query_result.is_error() {
        // The prover processed the query correctly, but the query resulted in an error.
        // For example, perhaps the query added two 64-bit integer columns together that
        // resulted in an overflow.
        do_query_error()
   }

   do_query_success(query_result)
        // The prover correctly processed a query and the query succeeded. Now, we can
        // proceed to use the result.
}

Note: Because the class is deserialized from untrusted data, it cannot maintain any invariant on its data members; hence, they are all public so as to allow for easy manipulation for testing.

Fields§

§provable_result: Option<ProvableQueryResult>

The result of the query in intermediate form.

§proof: Option<QueryProof<CP>>

The proof that the query result is valid.

Implementations§

source§

impl<CP: CommitmentEvaluationProof> VerifiableQueryResult<CP>

source

pub fn new( expr: &(impl ProofPlan<CP::Commitment> + Serialize), accessor: &impl DataAccessor<CP::Scalar>, setup: &CP::ProverPublicSetup<'_>, ) -> Self

Form a VerifiableQueryResult from a query expression.

This function both computes the result of a query and constructs a proof of the results validity.

source

pub fn verify( &self, expr: &(impl ProofPlan<CP::Commitment> + Serialize), accessor: &impl CommitmentAccessor<CP::Commitment>, setup: &CP::VerifierPublicSetup<'_>, ) -> QueryResult<CP::Scalar>

Verify a VerifiableQueryResult. Upon success, this function returns the finalized form of the query result.

Note: a verified result can still respresent an error (e.g. overflow), but it is a verified error.

Note: This does NOT transform the result!

Trait Implementations§

source§

impl<CP: Clone + CommitmentEvaluationProof> Clone for VerifiableQueryResult<CP>

source§

fn clone(&self) -> VerifiableQueryResult<CP>

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
source§

impl<CP: Default + CommitmentEvaluationProof> Default for VerifiableQueryResult<CP>

source§

fn default() -> VerifiableQueryResult<CP>

Returns the “default value” for a type. Read more
source§

impl<'de, CP> Deserialize<'de> for VerifiableQueryResult<CP>
where CP: Deserialize<'de> + CommitmentEvaluationProof,

source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
source§

impl<CP> Serialize for VerifiableQueryResult<CP>
where CP: Serialize + CommitmentEvaluationProof,

source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> CloneToUninit for T
where T: Clone,

source§

unsafe fn clone_to_uninit(&self, dst: *mut T)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dst. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T> Instrument for T

source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> IntoEither for T

source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
source§

impl<T> Pointable for T

source§

const ALIGN: usize = _

The alignment of pointer.
source§

type Init = T

The type for initializers.
source§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
source§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
source§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
source§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
source§

impl<T> Same for T

source§

type Output = T

Should always be Self
source§

impl<T> ToOwned for T
where T: Clone,

source§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

source§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

source§

fn vzip(self) -> V

source§

impl<T> WithSubscriber for T

source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

impl<T> Allocation for T
where T: RefUnwindSafe + Send + Sync,

source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,