1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59

// Copyright (C) 2019-2021 Aleo Systems Inc.
// This file is part of the snarkVM library.

// The snarkVM library is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.

// The snarkVM library is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.

// You should have received a copy of the GNU General Public License
// along with the snarkVM library. If not, see <https://www.gnu.org/licenses/>.

use snarkvm_curves::Group;

use super::{PedersenCRHParameters, PedersenSize};

pub const BOWE_HOPWOOD_CHUNK_SIZE: usize = 3;
pub const BOWE_HOPWOOD_LOOKUP_SIZE: usize = 2usize.pow(BOWE_HOPWOOD_CHUNK_SIZE as u32);

#[derive(Debug, Clone, PartialEq, Eq, PartialOrd, Ord)]
pub struct BoweHopwoodPedersenCRHParameters<G: Group> {
    pub base_lookup: Vec<Vec<[G; BOWE_HOPWOOD_LOOKUP_SIZE]>>,
}

impl<G: Group> BoweHopwoodPedersenCRHParameters<G> {
    pub fn setup<S: PedersenSize>(input: &PedersenCRHParameters<G, S>) -> Self {
        Self {
            base_lookup: input
                .bases
                .iter()
                .map(|x| {
                    x.iter()
                        .map(|g| {
                            let mut out = [G::zero(); BOWE_HOPWOOD_LOOKUP_SIZE];
                            for i in 0..BOWE_HOPWOOD_LOOKUP_SIZE {
                                let mut encoded = *g;
                                if (i & 0x01) != 0 {
                                    encoded += g;
                                }
                                if (i & 0x02) != 0 {
                                    encoded += &g.double();
                                }
                                if (i & 0x04) != 0 {
                                    encoded = encoded.neg();
                                }
                                out[i] = encoded;
                            }
                            out
                        })
                        .collect()
                })
                .collect(),
        }
    }
}