Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: new precompile secp256r1 #1612

Merged
merged 326 commits into from
Nov 5, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
326 commits
Select commit Hold shift + click to select a range
709edb0
changes
jtguibas Aug 23, 2024
0acfceb
commit to pv
tamirhemo Aug 23, 2024
7dc973c
public values
tamirhemo Aug 23, 2024
66c1fa4
merge conflicts
tamirhemo Aug 23, 2024
85cdd3c
Merge remote-tracking branch 'origin/dev' into tamir/integration-v2
tamirhemo Aug 24, 2024
fc20161
cleanup
tamirhemo Aug 24, 2024
737d759
cleanup
tamirhemo Aug 24, 2024
221a777
fix traces
tamirhemo Aug 25, 2024
6e6fe4a
merge conflicts
tamirhemo Aug 25, 2024
7f45eb1
optimizations
jtguibas Aug 26, 2024
f971d90
feat: standardized shrink shape
jtguibas Aug 26, 2024
ed82784
feat: make challenger fixed shape
jtguibas Aug 26, 2024
56e6f4c
fix cargo check errors
jtguibas Aug 26, 2024
31e6b02
fix broken test
jtguibas Aug 26, 2024
18f4fc1
merge latest tamir changes
jtguibas Aug 26, 2024
39ea79e
hm
jtguibas Aug 26, 2024
eafbfec
fix errors
jtguibas Aug 26, 2024
dc37eaf
Merge branch 'john/make-challenger-fixed-shape' into john/integration-v3
jtguibas Aug 26, 2024
3836980
Merge branch 'john/small-program-opts' into john/integration-v3
jtguibas Aug 26, 2024
3d835cf
fix tests
tamirhemo Aug 26, 2024
98f4da5
fix clippy
tamirhemo Aug 26, 2024
c277598
unit test fix
tamirhemo Aug 26, 2024
276a291
example
tamirhemo Aug 26, 2024
029302e
cleanup
tamirhemo Aug 26, 2024
7095dbf
fix everything
jtguibas Aug 26, 2024
9210f95
fix
jtguibas Aug 26, 2024
09f2212
test
jtguibas Aug 26, 2024
8407bde
fix everything (#1406)
jtguibas Aug 26, 2024
4f16b4d
fmt
tamirhemo Aug 26, 2024
de8eebb
nightly fmt
tamirhemo Aug 26, 2024
8d78fe8
fix issues
jtguibas Aug 26, 2024
8ad6f9d
fix: merge conflict
jtguibas Aug 23, 2024
cfb6620
Merge remote-tracking branch 'origin/john/v1.3.0-rc1' into tamir/inte…
tamirhemo Aug 26, 2024
8e9dc51
Merge remote-tracking branch 'origin/dev' into tamir/integration-v2
tamirhemo Aug 26, 2024
549c67c
Merge remote-tracking branch 'origin/dev' into tamir/integration-v2
tamirhemo Aug 26, 2024
459fae4
merge conflict
tamirhemo Aug 26, 2024
3d3e15a
fix
jtguibas Aug 26, 2024
21cded1
compiling and clippy
tamirhemo Aug 26, 2024
4ff7612
optimizations
jtguibas Aug 26, 2024
b7bfa9d
Merge branch 'dev' into john/v1.3.0-rc1
jtguibas Aug 26, 2024
130a76d
merge conflicts
tamirhemo Aug 26, 2024
10efd45
fmt
tamirhemo Aug 26, 2024
d528d55
fmt stable
tamirhemo Aug 27, 2024
ee0dec7
fix fmt
jtguibas Aug 27, 2024
1ee960d
resolve merge conflicts
jtguibas Aug 27, 2024
1d3dbde
fix some bugs
jtguibas Aug 27, 2024
0801d41
hm
jtguibas Aug 27, 2024
27e978f
feat: v1.3.0-rc1
0xWOLAND Aug 27, 2024
5dede3f
feat: update gpu image
jtguibas Aug 27, 2024
d211540
improve
jtguibas Aug 27, 2024
e73a2c9
merge conflicts
tamirhemo Aug 27, 2024
e64133f
switch to ultra compressed
tamirhemo Aug 27, 2024
22e0946
ignore tests
tamirhemo Aug 27, 2024
d7b71a1
fix pr
tamirhemo Aug 27, 2024
eb7acf2
cleanup
tamirhemo Aug 27, 2024
6665e9d
exlude old recursion
tamirhemo Aug 27, 2024
f099b74
feat: merkle tree-based vector commitments (#1415)
erabinov Aug 27, 2024
5d4b6c7
check if commit worked
jtguibas Aug 27, 2024
d27436e
perf: GROTH16 improvements (#1417)
erabinov Aug 27, 2024
8079acd
hm
jtguibas Aug 27, 2024
6c757de
Merge branch 'tamir/integration-v2' into john/v1.3.0-rc1
jtguibas Aug 27, 2024
24f4ea4
improve metrics
jtguibas Aug 27, 2024
47d7c10
hm
jtguibas Aug 27, 2024
8d06a16
use read dump
jtguibas Aug 27, 2024
6c56393
faster dumps
jtguibas Aug 27, 2024
6e016a1
updates
jtguibas Aug 27, 2024
2124c6f
Revert "Merge branch 'tamir/integration-v2' into john/v1.3.0-rc1"
jtguibas Aug 28, 2024
9029751
Revert "Revert "Merge branch 'tamir/integration-v2' into john/v1.3.0-…
jtguibas Aug 28, 2024
2bb0ddb
small changes
jtguibas Aug 28, 2024
aa6e03c
broken proof
jtguibas Aug 28, 2024
e90eaa4
hm
jtguibas Aug 28, 2024
93d64fd
cached pk
jtguibas Aug 28, 2024
13a6073
feat: fix stuff
jtguibas Aug 28, 2024
8684b88
hm
jtguibas Aug 28, 2024
0d29ee8
Revert "hm"
jtguibas Aug 28, 2024
ed07f45
fix formatting
jtguibas Aug 28, 2024
c6ad463
fix
jtguibas Aug 28, 2024
7216d32
feat: fmt
jtguibas Aug 28, 2024
c26c303
feat: infrastructure for proof shape merkle proofs (#1428)
erabinov Aug 29, 2024
1d98378
feat: new arithmetic (#1418)
tamirhemo Aug 29, 2024
0a6af06
chore: merge dev (#1439)
tamirhemo Aug 29, 2024
7243116
merge conflicts
tamirhemo Aug 29, 2024
d342d6d
change to 1
tamirhemo Aug 29, 2024
b4e5933
same as before
tamirhemo Aug 29, 2024
05bbd72
chore: merge dev (#1442)
tamirhemo Aug 29, 2024
23f14fd
chore: merge dev (#1443)
tamirhemo Aug 29, 2024
2b3c1a8
Revert "chore: merge dev" (#1448)
tamirhemo Aug 29, 2024
53f3a61
chore: merge dev (#1449)
tamirhemo Aug 29, 2024
d4e665d
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Aug 29, 2024
5d82c18
digest
tamirhemo Aug 29, 2024
c754efb
more constraints
tamirhemo Aug 30, 2024
ed1ed9e
function name
tamirhemo Aug 30, 2024
2ae7f15
execution shard
tamirhemo Aug 30, 2024
e830dec
leaf challenger
tamirhemo Aug 30, 2024
10aa6bb
execution shard
tamirhemo Aug 30, 2024
28d10a2
print
tamirhemo Aug 30, 2024
f75d6be
execution shard
tamirhemo Aug 30, 2024
76ae162
execution shard
tamirhemo Aug 30, 2024
cbed565
execution shard test
tamirhemo Aug 30, 2024
fbf6c1b
clean
tamirhemo Aug 30, 2024
d985749
clippy
tamirhemo Aug 30, 2024
03352af
init
tamirhemo Aug 30, 2024
e3db11e
committed value digest
tamirhemo Aug 30, 2024
3c3a922
deferred digest
tamirhemo Aug 30, 2024
5063d0b
core constraints
tamirhemo Aug 30, 2024
e933a79
core recursion constraints
tamirhemo Aug 30, 2024
53fc258
completeness assertions
tamirhemo Aug 30, 2024
4ccfacb
fix completeness assertion
tamirhemo Aug 30, 2024
8973d13
comment
tamirhemo Aug 30, 2024
511dd25
fix flags
tamirhemo Aug 30, 2024
61a3a33
unsupported opcodes and completeness
tamirhemo Aug 30, 2024
d7e5653
shard flag
tamirhemo Aug 30, 2024
b77356b
initial shard assertions
tamirhemo Aug 30, 2024
17e476d
feat: integration constraints (#1455)
tamirhemo Aug 30, 2024
622d7b0
merge conflict
tamirhemo Aug 30, 2024
849d0ad
chore: merge dev (#1458)
tamirhemo Aug 30, 2024
4a004c1
feat: enable fixed shape in recursion circuit (#1462)
tamirhemo Aug 31, 2024
54f0a60
chore: allow optional proof shape in core record and program (#1460)
erabinov Aug 31, 2024
7a9da1f
Merge remote-tracking branch 'origin/dev' into tamir/merge-dev-09-03
tamirhemo Sep 3, 2024
6e5c079
chore: merge dev (#1467)
tamirhemo Sep 3, 2024
28a490c
merge dev
tamirhemo Sep 3, 2024
9b87a44
chore: merge dev (#1471)
tamirhemo Sep 4, 2024
9d4c565
merge dev
tamirhemo Sep 4, 2024
055d84c
feat: fixed shapes in precompiles (#1476)
tamirhemo Sep 4, 2024
bd349cb
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 4, 2024
4223f42
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 5, 2024
a69da1f
avoid clone for gpu prover
tamirhemo Sep 5, 2024
7360025
pub make_merkle_proofs
tamirhemo Sep 5, 2024
718cf95
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 6, 2024
e2887c0
chore: bump SP1_CIRCUIT_VERSION: &str = "v1.3.0-rc2"
mattstam Sep 6, 2024
ec57ab1
feat: better reduce api (#1486)
tamirhemo Sep 6, 2024
f2f6b43
fix build script
tamirhemo Sep 6, 2024
8cc206e
remove failing constraint, rc3
ctian1 Sep 8, 2024
390cabe
fix example
tamirhemo Sep 8, 2024
4f095ea
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 9, 2024
4413e12
mapreduce and cache sizes
tamirhemo Sep 10, 2024
7eea54b
merge conflicts
tamirhemo Sep 11, 2024
85c7892
template for dummy fri
tamirhemo Sep 11, 2024
79f4117
clippy
tamirhemo Sep 11, 2024
23cc3a4
feat: dummy fri proofs (#1497)
erabinov Sep 12, 2024
faaa8a7
merge conflicts
tamirhemo Sep 12, 2024
a4905a1
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 12, 2024
39b612c
optional verification
tamirhemo Sep 13, 2024
ec38acd
nicer api
tamirhemo Sep 13, 2024
c34cf44
feat: fixed proof shapes (#1478)
tamirhemo Sep 14, 2024
f595b71
lowercase
tamirhemo Sep 14, 2024
3b81500
merge conflicts
tamirhemo Sep 16, 2024
db332bd
cleanup log
tamirhemo Sep 16, 2024
1e3ef0e
perf: local bus (#1293)
kevjue Sep 17, 2024
2ab384b
feat: fixed heights for new chips (#1523)
tamirhemo Sep 18, 2024
1aa1d7a
fix: low memory shards (#1524)
tamirhemo Sep 18, 2024
a141cc5
refactor: removed use of sudo + docker from cuda crate
yourbuddyconner Sep 18, 2024
dc23eed
compiler nits
yourbuddyconner Sep 18, 2024
4c52965
cherry pick some changes for zkvm-perf
kevjue Sep 19, 2024
762a748
feat: dummy shard proof (#1527)
tamirhemo Sep 19, 2024
493d9b5
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 19, 2024
27e0d5a
changed gpu server docker name
kevjue Sep 20, 2024
041dc9a
fix to docker name
kevjue Sep 20, 2024
7d94141
feat: vk maps (#1528)
tamirhemo Sep 22, 2024
cbd2f1a
fix: local cumulative sum check in recursion (#1531)
kevjue Sep 23, 2024
3825e38
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 24, 2024
66a6e7e
merge conflict
tamirhemo Sep 24, 2024
18d045f
feat: public value validity assertions (#1532)
tamirhemo Sep 26, 2024
998e1b6
merge conflict
tamirhemo Sep 26, 2024
56210b0
fix error
tamirhemo Sep 26, 2024
2cc68f0
feat: merge upstream changes (#1550)
tamirhemo Sep 27, 2024
41c44a4
feat: fixed vks in root (#1551)
tamirhemo Sep 27, 2024
36d04d6
feat: root and deferred (#1552)
tamirhemo Sep 27, 2024
5fffc38
fix allowed heights
tamirhemo Sep 27, 2024
4cc0c9b
make merkle proofs
tamirhemo Sep 27, 2024
6cb19b3
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Sep 27, 2024
6317ffb
enumerate shapes
tamirhemo Sep 27, 2024
77f8c5f
feat: felts to var optimization (#1553)
tamirhemo Sep 27, 2024
b1da315
fix: gnark ffi fixes (#1554)
tamirhemo Sep 27, 2024
7e45758
fix: conversions and bits (#1555)
tamirhemo Sep 27, 2024
795f177
reduce const degree
tamirhemo Sep 27, 2024
8163516
fix: proof flow for v3 (#1556)
tamirhemo Sep 28, 2024
96567e1
feat: remove exp reverse bits in wrap (#1558)
tamirhemo Sep 28, 2024
d8ee070
merge dev
tamirhemo Sep 30, 2024
0307d29
merge dev again
tamirhemo Sep 30, 2024
cf9f265
chore: merge dev (#1570)
tamirhemo Sep 30, 2024
4621d03
chore: cleanup (#1569)
tamirhemo Sep 30, 2024
a183772
fix: shapes fixing (#1574)
tamirhemo Sep 30, 2024
7fc5975
fix: multi field rate and serialization (#1575)
tamirhemo Sep 30, 2024
682942d
fix: execution shard initialization (#1576)
tamirhemo Sep 30, 2024
1391a37
fix: exit code (#1577)
tamirhemo Sep 30, 2024
6aa598e
fix: vk root in deferred (#1578)
tamirhemo Oct 1, 2024
b74b022
exit code
tamirhemo Oct 1, 2024
bc187d5
core exit code
tamirhemo Oct 1, 2024
9f391bd
rm from compress
tamirhemo Oct 1, 2024
cc2eb40
fix: more shard options (#1586)
tamirhemo Oct 1, 2024
85fca5e
fix: syscall chip in shards (#1582)
tamirhemo Oct 2, 2024
ac996cb
chore: merge dev (#1591)
tamirhemo Oct 2, 2024
351e7d9
Revert "chore: merge dev (#1591)"
tamirhemo Oct 2, 2024
ebd04e8
Revert "chore: merge dev" (#1592)
tamirhemo Oct 2, 2024
9204e1f
Merge remote-tracking branch 'origin/dev' into tamir/v1.3.0-rc2
tamirhemo Oct 2, 2024
4d7a6a1
feat: BabyBear Optimization in GNARK (#1587)
rkm0959 Oct 2, 2024
c41fb8b
merge dev
tamirhemo Oct 2, 2024
3fbdffa
chore: cleanup (#1593)
tamirhemo Oct 2, 2024
142c005
chore: clippy without `debug_assertions` (#1598)
tamirhemo Oct 3, 2024
a8db6b1
fix: `multi_scalar_multiplication` (#1542)
ratankaliani Oct 3, 2024
778f93d
feat: precompile shapes (#1600)
tamirhemo Oct 3, 2024
4f15504
feat: runtime opts (#1579)
ctian1 Oct 3, 2024
2961def
new precompile secp256r1
umadayal Oct 7, 2024
49e0485
tests and constraints
umadayal Oct 8, 2024
873bcbe
add test working
umadayal Oct 8, 2024
f6c96a8
double passesgit add . (changes to field op)
umadayal Oct 9, 2024
56a6b60
weierstrass double passes (without field op modifications)
umadayal Oct 9, 2024
595e5a2
passes decompress test
umadayal Oct 9, 2024
8c5f3b4
cleanup
umadayal Oct 9, 2024
e7158d7
fixed mistake
umadayal Oct 9, 2024
a0b21e2
formatting
umadayal Oct 9, 2024
e1c5520
patch test
umadayal Oct 11, 2024
f86b2f4
updated patch
umadayal Oct 11, 2024
fc98467
changed r1 recover to return compressed key
umadayal Oct 11, 2024
1dec7e9
patch test working
umadayal Oct 11, 2024
4794451
fixed inner product in decompress
umadayal Oct 15, 2024
399234c
fixed errors in test_weierstrass_add so that can use in secp256r1-add…
umadayal Oct 15, 2024
498e8de
changed double opcode
umadayal Oct 16, 2024
2050a69
opcode
umadayal Oct 16, 2024
770f764
changed decompress opcode
umadayal Oct 16, 2024
758ab81
opcode syscall decompress
umadayal Oct 16, 2024
a27b370
Merge branch 'dev' into secp256r1
umadayal Oct 16, 2024
868ed54
cleanup
umadayal Oct 16, 2024
0cc5280
cleanup
umadayal Oct 16, 2024
3bfdb3c
warning cleanup
umadayal Oct 16, 2024
5b68d20
cleanup warnings test
umadayal Oct 16, 2024
c8b3f88
new vk map
umadayal Oct 16, 2024
c9bcb40
spelling
umadayal Oct 16, 2024
bb277fd
added patch-test for verify_ecdsa rust-secp256k1
umadayal Oct 16, 2024
c37a439
cargo update
umadayal Oct 16, 2024
6c3e796
cleanup
umadayal Oct 17, 2024
623d50d
remove comment
umadayal Oct 17, 2024
ad607f5
removed comments
umadayal Oct 17, 2024
a4cc72f
cleaned
umadayal Oct 17, 2024
93b8163
added if statement
umadayal Oct 17, 2024
9af1686
added if blocks in add, double
umadayal Oct 17, 2024
a8eb9cd
changed hook
umadayal Oct 21, 2024
871c53c
false inputs
umadayal Oct 21, 2024
4a917bb
cleanup
umadayal Oct 21, 2024
1e67cc7
cleanup
umadayal Oct 21, 2024
65cf0f6
updated docs
umadayal Oct 22, 2024
2d2e12e
update docs
umadayal Oct 30, 2024
8f43d26
cleanup
umadayal Nov 4, 2024
bb9ce1e
merge conflicts dev
umadayal Nov 4, 2024
74a74a2
merge conflicts dev
umadayal Nov 4, 2024
61adc55
secp256r1
umadayal Nov 4, 2024
9b9954e
tag to branch
umadayal Nov 4, 2024
f7073cd
pulled new changes to cargo.lock
umadayal Nov 5, 2024
4e6667d
docs
umadayal Nov 5, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7,181 changes: 0 additions & 7,181 deletions Cargo.lock

This file was deleted.

6 changes: 5 additions & 1 deletion crates/core/executor/src/events/precompiles/ec.rs
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,10 @@ use serde::{Deserialize, Serialize};

use sp1_curves::{
params::{NumLimbs, NumWords},
weierstrass::{bls12_381::bls12381_decompress, secp256k1::secp256k1_decompress},
weierstrass::{
bls12_381::bls12381_decompress, secp256k1::secp256k1_decompress,
secp256r1::secp256r1_decompress,
},
AffinePoint, CurveType, EllipticCurve,
};
use sp1_primitives::consts::{bytes_to_words_le_vec, words_to_bytes_le_vec};
Expand Down Expand Up @@ -204,6 +207,7 @@ pub fn create_ec_decompress_event<E: EllipticCurve>(

let decompress_fn = match E::CURVE_TYPE {
CurveType::Secp256k1 => secp256k1_decompress::<E>,
CurveType::Secp256r1 => secp256r1_decompress::<E>,
CurveType::Bls12381 => bls12381_decompress::<E>,
_ => panic!("Unsupported curve"),
};
Expand Down
9 changes: 9 additions & 0 deletions crates/core/executor/src/events/precompiles/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -40,6 +40,12 @@ pub enum PrecompileEvent {
Secp256k1Double(EllipticCurveDoubleEvent),
/// Secp256k1 curve decompress precompile event.
Secp256k1Decompress(EllipticCurveDecompressEvent),
/// Secp256r1 curve add precompile event.
Secp256r1Add(EllipticCurveAddEvent),
/// Secp256r1 curve double precompile event.
Secp256r1Double(EllipticCurveDoubleEvent),
/// Secp256r1 curve decompress precompile event.
Secp256r1Decompress(EllipticCurveDecompressEvent),
/// K256 curve decompress precompile event.
K256Decompress(EllipticCurveDecompressEvent),
/// Bn254 curve add precompile event.
Expand Down Expand Up @@ -93,17 +99,20 @@ impl PrecompileLocalMemory for Vec<(SyscallEvent, PrecompileEvent)> {
iterators.push(e.local_mem_access.iter());
}
PrecompileEvent::Secp256k1Add(e)
| PrecompileEvent::Secp256r1Add(e)
| PrecompileEvent::EdAdd(e)
| PrecompileEvent::Bn254Add(e)
| PrecompileEvent::Bls12381Add(e) => {
iterators.push(e.local_mem_access.iter());
}
PrecompileEvent::Secp256k1Double(e)
| PrecompileEvent::Secp256r1Double(e)
| PrecompileEvent::Bn254Double(e)
| PrecompileEvent::Bls12381Double(e) => {
iterators.push(e.local_mem_access.iter());
}
PrecompileEvent::Secp256k1Decompress(e)
| PrecompileEvent::Secp256r1Decompress(e)
| PrecompileEvent::K256Decompress(e)
| PrecompileEvent::Bls12381Decompress(e) => {
iterators.push(e.local_mem_access.iter());
Expand Down
18 changes: 16 additions & 2 deletions crates/core/executor/src/executor.rs
Original file line number Diff line number Diff line change
Expand Up @@ -1669,8 +1669,8 @@ mod tests {
use sp1_stark::SP1CoreOpts;

use crate::programs::tests::{
fibonacci_program, panic_program, simple_memory_program, simple_program,
ssz_withdrawals_program,
fibonacci_program, panic_program, secp256r1_add_program, secp256r1_double_program,
simple_memory_program, simple_program, ssz_withdrawals_program,
};

use crate::Register;
Expand Down Expand Up @@ -1699,6 +1699,20 @@ mod tests {
runtime.run().unwrap();
}

#[test]
fn test_secp256r1_add_program_run() {
let program = secp256r1_add_program();
let mut runtime = Executor::new(program, SP1CoreOpts::default());
runtime.run().unwrap();
}

#[test]
fn test_secp256r1_double_program_run() {
let program = secp256r1_double_program();
let mut runtime = Executor::new(program, SP1CoreOpts::default());
runtime.run().unwrap();
}

#[test]
fn test_ssz_withdrawals_program_run() {
let program = ssz_withdrawals_program();
Expand Down
36 changes: 31 additions & 5 deletions crates/core/executor/src/hook.rs
Original file line number Diff line number Diff line change
Expand Up @@ -4,14 +4,17 @@ use std::sync::{Arc, RwLock, RwLockWriteGuard};

use hashbrown::HashMap;
use sp1_curves::k256::{Invert, RecoveryId, Signature, VerifyingKey};
use sp1_curves::p256::Signature as p256Signature;

use crate::Executor;

/// A runtime hook, wrapped in a smart pointer.
pub type BoxedHook<'a> = Arc<RwLock<dyn Hook + Send + Sync + 'a>>;

/// The file descriptor through which to access `hook_ecrecover`.
pub const FD_ECRECOVER_HOOK: u32 = 5;
/// The file descriptor through which to access `hook_k1_ecrecover`.
pub const K1_ECRECOVER_HOOK: u32 = 5;
/// The file descriptor through which to access `hook_r1_ecrecover`.
pub const R1_ECRECOVER_HOOK: u32 = 6;

/// A runtime hook. May be called during execution by writing to a specified file descriptor,
/// accepting and returning arbitrary data.
Expand Down Expand Up @@ -75,7 +78,8 @@ impl<'a> Default for HookRegistry<'a> {
let table = HashMap::from([
// Note: To ensure any `fd` value is synced with `zkvm/precompiles/src/io.rs`,
// add an assertion to the test `hook_fds_match` below.
(FD_ECRECOVER_HOOK, hookify(hook_ecrecover)),
(K1_ECRECOVER_HOOK, hookify(hook_k1_ecrecover)),
(R1_ECRECOVER_HOOK, hookify(hook_r1_ecrecover)),
]);

Self { table }
Expand Down Expand Up @@ -117,7 +121,7 @@ pub struct HookEnv<'a, 'b: 'a> {
/// WARNING: This function is used to recover the public key outside of the zkVM context. These
/// values must be constrained by the zkVM for correctness.
#[must_use]
pub fn hook_ecrecover(_: HookEnv, buf: &[u8]) -> Vec<Vec<u8>> {
pub fn hook_k1_ecrecover(_: HookEnv, buf: &[u8]) -> Vec<Vec<u8>> {
assert_eq!(buf.len(), 65 + 32, "ecrecover input should have length 65 + 32");
let (sig, msg_hash) = buf.split_at(65);
let sig: &[u8; 65] = sig.try_into().unwrap();
Expand All @@ -141,14 +145,36 @@ pub fn hook_ecrecover(_: HookEnv, buf: &[u8]) -> Vec<Vec<u8>> {
vec![bytes.to_vec(), s_inverse.to_bytes().to_vec()]
}

/// Recovers s inverse from the signature using the secp256r1 crate.
///
/// # Arguments
///
/// * `env` - The environment in which the hook is invoked.
/// * `buf` - The buffer containing the signature.
/// - The signature is 64 bytes.
///
/// The result is a single 32 byte vector containing s inverse.
#[must_use]
pub fn hook_r1_ecrecover(_: HookEnv, buf: &[u8]) -> Vec<Vec<u8>> {
assert_eq!(buf.len(), 64, "ecrecover input should have length 64");
let sig: &[u8; 64] = buf.try_into().unwrap();
let sig = p256Signature::from_slice(sig).unwrap();

let (_, s) = sig.split_scalars();
let s_inverse = s.invert();

vec![s_inverse.to_bytes().to_vec()]
}

#[cfg(test)]
pub mod tests {
use super::*;

#[test]
pub fn hook_fds_match() {
use sp1_zkvm::lib::io;
assert_eq!(FD_ECRECOVER_HOOK, io::FD_ECRECOVER_HOOK);
assert_eq!(K1_ECRECOVER_HOOK, io::K1_ECRECOVER_HOOK);
assert_eq!(R1_ECRECOVER_HOOK, io::R1_ECRECOVER_HOOK);
}

#[test]
Expand Down
26 changes: 26 additions & 0 deletions crates/core/executor/src/programs.rs
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,12 @@ pub mod tests {
pub const SECP256K1_DOUBLE_ELF: &[u8] =
include_bytes!("../../../../tests/secp256k1-double/elf/riscv32im-succinct-zkvm-elf");

pub const SECP256R1_ADD_ELF: &[u8] =
include_bytes!("../../../../tests/secp256r1-add/elf/riscv32im-succinct-zkvm-elf");

pub const SECP256R1_DOUBLE_ELF: &[u8] =
include_bytes!("../../../../tests/secp256r1-double/elf/riscv32im-succinct-zkvm-elf");

pub const SHA_COMPRESS_ELF: &[u8] =
include_bytes!("../../../../tests/sha-compress/elf/riscv32im-succinct-zkvm-elf");

Expand Down Expand Up @@ -140,6 +146,26 @@ pub mod tests {
Program::from(FIBONACCI_ELF).unwrap()
}

/// Get the secp256r1 add program.
///
/// # Panics
///
/// This function will panic if the program fails to load.
#[must_use]
pub fn secp256r1_add_program() -> Program {
Program::from(SECP256R1_ADD_ELF).unwrap()
}

/// Get the secp256r1 double program.
///
/// # Panics
///
/// This function will panic if the program fails to load.
#[must_use]
pub fn secp256r1_double_program() -> Program {
Program::from(SECP256R1_DOUBLE_ELF).unwrap()
}

/// Get the SSZ withdrawals program.
///
/// # Panics
Expand Down
12 changes: 12 additions & 0 deletions crates/core/executor/src/syscalls/code.rs
Original file line number Diff line number Diff line change
Expand Up @@ -128,6 +128,15 @@ pub enum SyscallCode {

/// Executes the `BN254_FP2_MUL` precompile.
BN254_FP2_MUL = 0x00_01_01_2B,

/// Executes the `SECP256R1_ADD` precompile.
SECP256R1_ADD = 0x00_01_01_2C,

/// Executes the `SECP256R1_DOUBLE` precompile.
SECP256R1_DOUBLE = 0x00_00_01_2D,

/// Executes the `SECP256R1_DECOMPRESS` precompile.
SECP256R1_DECOMPRESS = 0x00_00_01_2E,
}

impl SyscallCode {
Expand Down Expand Up @@ -170,6 +179,9 @@ impl SyscallCode {
0x00_01_01_2A => SyscallCode::BN254_FP2_SUB,
0x00_01_01_2B => SyscallCode::BN254_FP2_MUL,
0x00_00_01_1C => SyscallCode::BLS12381_DECOMPRESS,
kevjue marked this conversation as resolved.
Show resolved Hide resolved
0x00_01_01_2C => SyscallCode::SECP256R1_ADD,
0x00_00_01_2D => SyscallCode::SECP256R1_DOUBLE,
0x00_00_01_2E => SyscallCode::SECP256R1_DECOMPRESS,
_ => panic!("invalid syscall number: {value}"),
}
}
Expand Down
16 changes: 16 additions & 0 deletions crates/core/executor/src/syscalls/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@ use sp1_curves::{
bls12_381::{Bls12381, Bls12381BaseField},
bn254::{Bn254, Bn254BaseField},
secp256k1::Secp256k1,
secp256r1::Secp256r1,
},
};
use unconstrained::{EnterUnconstrainedSyscall, ExitUnconstrainedSyscall};
Expand Down Expand Up @@ -109,6 +110,21 @@ pub fn default_syscall_map() -> HashMap<SyscallCode, Arc<dyn Syscall>> {
Arc::new(WeierstrassDecompressSyscall::<Secp256k1>::new()),
);

syscall_map.insert(
SyscallCode::SECP256R1_ADD,
Arc::new(WeierstrassAddAssignSyscall::<Secp256r1>::new()),
);

syscall_map.insert(
SyscallCode::SECP256R1_DOUBLE,
Arc::new(WeierstrassDoubleAssignSyscall::<Secp256r1>::new()),
);

syscall_map.insert(
SyscallCode::SECP256R1_DECOMPRESS,
Arc::new(WeierstrassDecompressSyscall::<Secp256r1>::new()),
);

syscall_map
.insert(SyscallCode::BN254_ADD, Arc::new(WeierstrassAddAssignSyscall::<Bn254>::new()));

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -47,6 +47,11 @@ impl<E: EllipticCurve> Syscall for WeierstrassAddAssignSyscall<E> {
syscall_event,
PrecompileEvent::Bls12381Add(event),
),
CurveType::Secp256r1 => rt.record_mut().add_precompile_event(
syscall_code,
syscall_event,
PrecompileEvent::Secp256r1Add(event),
),
_ => panic!("Unsupported curve"),
}
None
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,12 @@ impl<E: EllipticCurve> Syscall for WeierstrassDecompressSyscall<E> {
syscall_event,
PrecompileEvent::Secp256k1Decompress(event),
),
CurveType::Bls12381 => rt.add_precompile_event(
CurveType::Secp256r1 => rt.record_mut().add_precompile_event(
syscall_code,
syscall_event,
PrecompileEvent::Secp256r1Decompress(event),
),
CurveType::Bls12381 => rt.record_mut().add_precompile_event(
syscall_code,
syscall_event,
PrecompileEvent::Bls12381Decompress(event),
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,11 @@ impl<E: EllipticCurve> Syscall for WeierstrassDoubleAssignSyscall<E> {
PrecompileEvent::Secp256k1Double(event),
);
}
CurveType::Secp256r1 => rt.record_mut().add_precompile_event(
syscall_code,
syscall_event,
PrecompileEvent::Secp256r1Double(event),
),
CurveType::Bn254 => {
rt.add_precompile_event(
syscall_code,
Expand Down
2 changes: 2 additions & 0 deletions crates/core/machine/Cargo.toml
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,8 @@ typenum = "1.17.0"
elliptic-curve = "0.13.8"
hex = "0.4.3"
k256 = { version = "0.13.3", features = ["expose-field"] }
p256 = { version = "0.13.2", features = ["expose-field"] }

num_cpus = "1.16.0"
size = "0.4.1"
tempfile = "3.10.1"
Expand Down
15 changes: 9 additions & 6 deletions crates/core/machine/src/operations/field/field_den.rs
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
use std::fmt::Debug;

use num::BigUint;
use p3_air::AirBuilder;
use p3_field::PrimeField32;
use sp1_core_executor::events::ByteRecord;
use sp1_curves::params::{FieldParameters, Limbs};
Expand Down Expand Up @@ -106,10 +107,10 @@ where
) where
V: Into<AB::Expr>,
{
let p_a = Polynomial::from(*a);
let p_b = (*b).into();
let p_result = self.result.into();
let p_carry = self.carry.into();
let p_a: Polynomial<<AB as AirBuilder>::Expr> = (*a).into();
let p_b: Polynomial<<AB as AirBuilder>::Expr> = (*b).into();
let p_result: Polynomial<<AB as AirBuilder>::Expr> = self.result.into();
let p_carry: Polynomial<<AB as AirBuilder>::Expr> = self.carry.into();

// Compute the vanishing polynomial:
// lhs(x) = sign * (b(x) * result(x) + result(x)) + (1 - sign) * (b(x) * result(x) +
Expand All @@ -120,9 +121,11 @@ where
let p_equation_rhs = if sign { p_a } else { p_result };

let p_lhs_minus_rhs = &p_equation_lhs - &p_equation_rhs;
let p_limbs = Polynomial::from_iter(P::modulus_field_iter::<AB::F>().map(AB::Expr::from));
let p_limbs: Polynomial<<AB as AirBuilder>::Expr> =
Polynomial::from_iter(P::modulus_field_iter::<AB::F>().map(AB::Expr::from));

let p_vanishing = p_lhs_minus_rhs - &p_carry * &p_limbs;
let p_vanishing: Polynomial<<AB as AirBuilder>::Expr> =
p_lhs_minus_rhs - &p_carry * &p_limbs;

let p_witness_low = self.witness_low.0.iter().into();
let p_witness_high = self.witness_high.0.iter().into();
Expand Down
13 changes: 7 additions & 6 deletions crates/core/machine/src/operations/field/field_inner_product.rs
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
use std::fmt::Debug;

use num::{BigUint, Zero};
use p3_air::AirBuilder;
use p3_field::{AbstractField, PrimeField32};
use sp1_core_executor::events::ByteRecord;
use sp1_curves::params::{FieldParameters, Limbs};
Expand Down Expand Up @@ -93,16 +94,16 @@ where
pub fn eval<AB: SP1AirBuilder<Var = V>>(
&self,
builder: &mut AB,
a: &[Limbs<AB::Var, P::Limbs>],
b: &[Limbs<AB::Var, P::Limbs>],
a: &[impl Into<Polynomial<AB::Expr>> + Clone],
b: &[impl Into<Polynomial<AB::Expr>> + Clone],
is_real: impl Into<AB::Expr> + Clone,
) where
V: Into<AB::Expr>,
{
let p_a_vec: Vec<Polynomial<AB::Expr>> = a.iter().map(|x| (*x).into()).collect();
let p_b_vec: Vec<Polynomial<AB::Expr>> = b.iter().map(|x| (*x).into()).collect();
let p_result = self.result.into();
let p_carry = self.carry.into();
let p_a_vec: Vec<Polynomial<AB::Expr>> = a.iter().cloned().map(|x| x.into()).collect();
let p_b_vec: Vec<Polynomial<AB::Expr>> = b.iter().cloned().map(|x| x.into()).collect();
let p_result: Polynomial<<AB as AirBuilder>::Expr> = self.result.into();
let p_carry: Polynomial<<AB as AirBuilder>::Expr> = self.carry.into();

let p_zero = Polynomial::<AB::Expr>::new(vec![AB::Expr::zero()]);

Expand Down
Loading
Loading