grandinetech · belijzajac · Dec 10, 2022 · Dec 10, 2022 · Dec 10, 2022 · Jan 8, 2023
diff --git a/Arkworks/Cargo.toml b/Arkworks/Cargo.toml
@@ -51,9 +51,9 @@ harness = false
 name = "das"
 harness = false
 
-[[bench]]
-name = "fk_20"
-harness = false
+#[[bench]]
+#name = "fk_20"
+#harness = false
 
 [[bench]]
 name = "recover"

diff --git a/Arkworks/src/eip_4844.rs b/Arkworks/src/eip_4844.rs
@@ -0,0 +1,220 @@
+use std::convert::TryInto;
+use std::fs::File;
+use std::io::Read;
+use ark_bls12_381::Bls12_381;
+use ark_ec::ProjectiveCurve;
+use kzg::{G1, Poly};
+use blst::{BLST_ERROR, blst_p1, blst_p1_affine, blst_p1_compress, blst_p1_from_affine, blst_p1_uncompress, blst_p2, blst_p2_affine, blst_p2_from_affine, blst_p2_uncompress};
+use kzg::{Fr, FFTSettings as FFTSettingsT, FFTG1, KZGSettings as LKZGSettings};
+use kzg_bench::tests::fk20_proofs::reverse_bit_order;
+use crate::fft_g1::g1_linear_combination;
+use crate::kzg_proofs::{FFTSettings, generate_rng_seed, KZG, KZGSettings, UniPoly_381};
+use crate::kzg_types::{ArkG1, ArkG2, FsFr};
+use crate::utils::{blst_p1_into_pc_g1projective, PolyData};
+
+pub fn bytes_from_bls_field(fr: &FsFr) -> [u8; 32usize] {
+    fr.to_scalar()
+}
+
+pub fn bytes_to_bls_field(bytes: &[u8; 32usize]) -> FsFr {
+    FsFr::from_scalar(*bytes)
+}
+
+pub fn compute_powers(base: &FsFr, num_powers: usize) -> Vec<FsFr> {
+    let mut powers: Vec<FsFr> = vec![FsFr::default(); num_powers];
+    if num_powers == 0 {
+        return powers;
+    }
+    powers[0] = FsFr::one();
+    for i in 1..num_powers {
+        powers[i] = powers[i - 1].mul(base);
+    }
+    powers
+}
+
+pub fn bytes_to_g1(bytes: &[u8; 48usize]) -> ArkG1 {
+    let mut tmp = blst_p1_affine::default();
+    let mut g1 = blst_p1::default();
+    unsafe {
+        if blst_p1_uncompress(&mut tmp, bytes.as_ptr()) != BLST_ERROR::BLST_SUCCESS {
+            panic!("blst_p1_uncompress failed");
+        }
+        blst_p1_from_affine(&mut g1, &tmp);
+    }
+    ArkG1(g1)
+}
+
+pub fn bytes_to_g2(bytes: &[u8; 96usize]) -> ArkG2 {
+    let mut tmp = blst_p2_affine::default();
+    let mut g2 = blst_p2::default();
+    unsafe {
+        if blst_p2_uncompress(&mut tmp, bytes.as_ptr()) != BLST_ERROR::BLST_SUCCESS {
+            panic!("blst_p2_uncompress failed");
+        }
+        blst_p2_from_affine(&mut g2, &tmp);
+    }
+    ArkG2(g2)
+}
+
+pub fn bytes_from_g1(g1: &ArkG1) -> [u8; 48usize] {
+    let mut out: [u8; 48usize] = [0; 48];
+    unsafe {
+        blst_p1_compress(out.as_mut_ptr(), &g1.0);
+    }
+    out
+}
+
+pub fn vector_lincomb(vectors: &[Vec<FsFr>], scalars: &[FsFr]) -> Vec<FsFr> {
+    let mut tmp: FsFr;
+    let mut out: Vec<FsFr> = vec![FsFr::zero(); vectors[0].len()];
+    for (v, s) in vectors.iter().zip(scalars.iter()) {
+        for (i, x) in v.iter().enumerate() {
+            tmp = x.mul(s);
+            out[i] = out[i].add(&tmp);
+        }
+    }
+    out
+}
+
+pub fn g1_lincomb(points: &[ArkG1], scalars: &[FsFr]) -> ArkG1 {
+    assert_eq!(points.len(), scalars.len());
+    let mut out = ArkG1::default();
+    g1_linear_combination(&mut out, points, scalars, points.len());
+    out
+}
+
+pub fn blob_to_kzg_commitment(blob: &[FsFr], s: &KZGSettings) -> ArkG1 {
+    g1_lincomb(&s.secret_g1, blob)
+}
+
+fn fr_batch_inv(out: &mut [FsFr], a: &[FsFr], len: usize) {
+    let prod: &mut Vec<FsFr> = &mut vec![FsFr::default(); len];
+    let mut i: usize = 1;
+
+    prod[0] = a[0];
+
+    while i < len {
+        prod[i] = a[i].mul(&prod[i - 1]);
+        i += 1;
+    }
+
+    let inv: &mut FsFr = &mut prod[len - 1].eucl_inverse();
+
+    i = len - 1;
+    while i > 0 {
+        out[i] = prod[i - 1].mul(inv);
+        *inv = a[i].mul(inv);
+        i -= 1;
+    }
+    out[0] = *inv;
+}
+
+pub fn load_trusted_setup(filepath: &str) -> KZGSettings {
+    let mut file = File::open(filepath).expect("Unable to open file");
+    let mut contents = String::new();
+    file.read_to_string(&mut contents)
+        .expect("Unable to read file");
+
+    let mut lines = contents.lines();
+    let length = lines.next().unwrap().parse::<usize>().unwrap();
+    let n2 = lines.next().unwrap().parse::<usize>().unwrap();
+
+    let mut g2_values: Vec<ArkG2> = Vec::new();
+    let mut g1_projectives: Vec<ArkG1> = Vec::new();
+
+    for _ in 0..length {
+        let line = lines.next().unwrap();
+        assert_eq!(line.len(), 96);
+        let bytes_array: [u8; 48] = (0..line.len())
+            .step_by(2)
+            .map(|i| u8::from_str_radix(&line[i..i + 2], 16).unwrap())
+            .collect::<Vec<u8>>()
+            .try_into()
+            .unwrap();
+        g1_projectives.push(bytes_to_g1(&bytes_array));
+    }
+
+    for _ in 0..n2 {
+        let line = lines.next().unwrap();
+        assert_eq!(line.len(), 192);
+        let bytes_array: [u8; 96] = (0..line.len())
+            .step_by(2)
+            .map(|i| u8::from_str_radix(&line[i..i + 2], 16).unwrap())
+            .collect::<Vec<u8>>()
+            .try_into()
+            .unwrap();
+        g2_values.push(bytes_to_g2(&bytes_array));
+    }
+
+    let mut max_scale: usize = 0;
+    while (1 << max_scale) < length {
+        max_scale += 1;
+    }
+    let fs = FFTSettings::new(max_scale).unwrap();
+    let mut g1_values = fs.fft_g1(g1_projectives.as_slice(), true).unwrap();
+    reverse_bit_order(&mut g1_values);
+
+    let length = g1_values.len();
+    let mut rng = generate_rng_seed(&g1_values);
+    let mut setup = KZG::<Bls12_381, UniPoly_381>::setup(length as usize, false, &mut rng).unwrap();
+
+    let mut ark_secret_g1 = Vec::new();
+    for s in g1_values.iter() {
+        let ark_g1 = blst_p1_into_pc_g1projective(&s.0).unwrap();
+        ark_secret_g1.push(ark_g1.into_affine());
+    }
+    setup.params.powers_of_g = ark_secret_g1;
+
+    KZGSettings {
+        fs,
+        secret_g1: g1_values,
+        secret_g2: g2_values,
+        length: length as u64,
+        params: setup.params,
+        ..KZGSettings::default()
+    }
+}
+
+pub fn evaluate_polynomial_in_evaluation_form(p: &PolyData, x: &FsFr, s: &KZGSettings) -> FsFr {
+    let mut tmp: FsFr;
+    let mut inverses_in: Vec<FsFr> = vec![FsFr::default(); p.len()];
+    let mut inverses: Vec<FsFr> = vec![FsFr::default(); p.len()];
+    let mut i: usize = 0;
+    let mut roots_of_unity: Vec<FsFr> = s.fs.expanded_roots_of_unity.clone();
+
+    reverse_bit_order(&mut roots_of_unity);
+
+    while i < p.len() {
+        if x.equals(&roots_of_unity[i]) {
+            return p.get_coeff_at(i);
+        }
+
+        inverses_in[i] = x.sub(&roots_of_unity[i]);
+        i += 1;
+    }
+    fr_batch_inv(&mut inverses, &inverses_in, p.len());
+
+    i = 0;
+    let mut out = FsFr::zero();
+    while i < p.len() {
+        tmp = inverses[i].mul(&roots_of_unity[i]);
+        tmp = tmp.mul(&p.coeffs[i]);
+        out = out.add(&tmp);
+        i += 1;
+    }
+
+    tmp = FsFr::from_u64(p.len().try_into().unwrap());
+    out = out.div(&tmp).unwrap();
+    tmp = x.pow(p.len());
+    tmp = tmp.sub(&FsFr::one());
+    out = out.mul(&tmp);
+    out
+}
+
+pub fn compute_kzg_proof(p: &PolyData, x: &FsFr, s: &KZGSettings) -> ArkG1 {
+    s.compute_proof_single(p, x).unwrap()
+}
+
+pub fn verify_kzg_proof(commitment: &ArkG1, x: &FsFr, y: &FsFr, proof: &ArkG1, ks: &KZGSettings) -> bool {
+    ks.check_proof_single(&commitment, &proof, &x, &y).unwrap()
+}
diff --git a/Arkworks/src/fft_g1.rs b/Arkworks/src/fft_g1.rs
@@ -2,7 +2,7 @@ use crate::kzg_proofs::FFTSettings;
 use crate::kzg_types::{ArkG1, FsFr as BlstFr};
 use blst::{blst_fp, blst_p1};
 use kzg::G1Mul;
-use kzg::{FFTSettings as Fs, Fr, FFTG1, G1};
+use kzg::{Fr, FFTG1, G1};
 
 pub const G1_NEGATIVE_GENERATOR: blst_p1 = blst_p1 {
     x: blst_fp {
@@ -114,36 +114,25 @@ impl FFTG1<ArkG1> for FFTSettings {
             return Err(String::from("data length is not power of 2"));
         }
 
-        let n = data.len();
-
         let stride: usize = self.max_width / data.len();
-        let mut out = vec![ArkG1::default(); data.len()];
-        if inverse {
-            let mut inv_len: BlstFr = Fr::from_u64(data.len() as u64);
-            inv_len = inv_len.inverse();
+        let mut ret = vec![ArkG1::default(); data.len()];
 
-            fft_g1_fast(
-                &mut out,
-                data,
-                1,
-                self.get_reversed_roots_of_unity(),
-                stride,
-                1,
-            );
-            for i in out.iter_mut().take(n) {
-                *i = i.mul(&inv_len);
-            }
+        let roots = if inverse {
+            &self.reverse_roots_of_unity
         } else {
-            fft_g1_fast(
-                &mut out,
-                data,
-                1,
-                self.get_expanded_roots_of_unity(),
-                stride,
-                1,
-            );
+            &self.expanded_roots_of_unity
+        };
+
+        fft_g1_fast(&mut ret, data, 1, roots, stride, 1);
+
+        if inverse {
+            let inv_fr_len = BlstFr::from_u64(data.len() as u64).inverse();
+            ret[..data.len()]
+                .iter_mut()
+                .for_each(|f| *f = f.mul(&inv_fr_len));
         }
-        Ok(out)
+
+        Ok(ret)
     }
 }
 
@@ -212,7 +201,7 @@ pub fn fft_g1_fast(
         for i in 0..half {
             let y_times_root = ret[i + half].mul(&roots[i * roots_stride]);
             ret[i + half] = ret[i].sub(&y_times_root);
-            ret[i].add_or_dbl(&y_times_root);
+            ret[i] = ret[i].add_or_dbl(&y_times_root);
         }
     } else {
         ret[0] = data[0];