Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: instance columns for poseidon bench #108

Merged
merged 1 commit into from
Dec 10, 2022
Merged

chore: instance columns for poseidon bench #108

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
116 changes: 33 additions & 83 deletions halo2_gadgets/benches/poseidon.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,9 +3,20 @@ use halo2_proofs::{
circuit::{Layouter, SimpleFloorPlanner, Value},
plonk::{
create_proof, keygen_pk, keygen_vk, verify_proof, Advice, Circuit, Column,
ConstraintSystem, Error,
ConstraintSystem, Error, Instance,
},
poly::{
commitment::ParamsProver,
ipa::{
commitment::{IPACommitmentScheme, ParamsIPA},
multiopen::ProverIPA,
strategy::SingleStrategy,
},
VerificationStrategy,
},
transcript::{
Blake2bRead, Blake2bWrite, Challenge255, TranscriptReadBuffer, TranscriptWriterBuffer,
},
transcript::{Blake2bRead, Blake2bWrite, Challenge255},
};
use halo2curves::pasta::{pallas, vesta, EqAffine, Fp};

Expand All @@ -19,34 +30,19 @@ use std::marker::PhantomData;
use criterion::{criterion_group, criterion_main, Criterion};
use rand::rngs::OsRng;

use halo2_proofs::{
poly::{
commitment::ParamsProver,
ipa::{
commitment::{IPACommitmentScheme, ParamsIPA},
multiopen::ProverIPA,
strategy::SingleStrategy,
},
VerificationStrategy,
},
transcript::{TranscriptReadBuffer, TranscriptWriterBuffer},
};

#[derive(Clone, Copy)]
struct HashCircuit<S, const WIDTH: usize, const RATE: usize, const L: usize>
where
S: Spec<Fp, WIDTH, RATE> + Clone + Copy,
{
message: Value<[Fp; L]>,
// For the purpose of this test, witness the result.
// TODO: Move this into an instance column.
output: Value<Fp>,
_spec: PhantomData<S>,
}

#[derive(Debug, Clone)]
struct MyConfig<const WIDTH: usize, const RATE: usize, const L: usize> {
input: [Column<Advice>; L],
expected: Column<Instance>,
poseidon_config: Pow5Config<Fp, WIDTH, RATE>,
}

Expand All @@ -61,13 +57,14 @@ where
fn without_witnesses(&self) -> Self {
Self {
message: Value::unknown(),
output: Value::unknown(),
_spec: PhantomData,
}
}

fn configure(meta: &mut ConstraintSystem<Fp>) -> Self::Config {
let state = (0..WIDTH).map(|_| meta.advice_column()).collect::<Vec<_>>();
let expected = meta.instance_column();
meta.enable_equality(expected);
let partial_sbox = meta.advice_column();

let rc_a = (0..WIDTH).map(|_| meta.fixed_column()).collect::<Vec<_>>();
Expand All @@ -77,6 +74,7 @@ where

Self::Config {
input: state[..RATE].try_into().unwrap(),
expected,
poseidon_config: Pow5Chip::configure::<S>(
meta,
state.try_into().unwrap(),
Expand Down Expand Up @@ -118,21 +116,14 @@ where
)?;
let output = hasher.hash(layouter.namespace(|| "hash"), message)?;

layouter.assign_region(
|| "constrain output",
|mut region| {
let expected_var =
region.assign_advice(|| "load output", config.input[0], 0, || self.output)?;
region.constrain_equal(output.cell(), expected_var.cell())
},
)
layouter.constrain_instance(output.cell(), config.expected, 0)
}
}

#[derive(Debug, Clone, Copy)]
struct MySpec<const WIDTH: usize, const RATE: usize>;

impl Spec<Fp, 3, 2> for MySpec<3, 2> {
impl<const WIDTH: usize, const RATE: usize> Spec<Fp, WIDTH, RATE> for MySpec<WIDTH, RATE> {
fn full_rounds() -> usize {
8
}
Expand All @@ -150,43 +141,7 @@ impl Spec<Fp, 3, 2> for MySpec<3, 2> {
}
}

impl Spec<Fp, 9, 8> for MySpec<9, 8> {
fn full_rounds() -> usize {
8
}

fn partial_rounds() -> usize {
56
}

fn sbox(val: Fp) -> Fp {
val.pow_vartime(&[5])
}

fn secure_mds() -> usize {
0
}
}

impl Spec<Fp, 12, 11> for MySpec<12, 11> {
fn full_rounds() -> usize {
8
}

fn partial_rounds() -> usize {
56
}

fn sbox(val: Fp) -> Fp {
val.pow_vartime(&[5])
}

fn secure_mds() -> usize {
0
}
}

const K: u32 = 6;
const K: u32 = 7;

fn bench_poseidon<S, const WIDTH: usize, const RATE: usize, const L: usize>(
name: &str,
Expand All @@ -199,7 +154,6 @@ fn bench_poseidon<S, const WIDTH: usize, const RATE: usize, const L: usize>(

let empty_circuit = HashCircuit::<S, WIDTH, RATE, L> {
message: Value::unknown(),
output: Value::unknown(),
_spec: PhantomData,
};

Expand All @@ -211,7 +165,7 @@ fn bench_poseidon<S, const WIDTH: usize, const RATE: usize, const L: usize>(
let verifier_name = name.to_string() + "-verifier";

let mut rng = OsRng;
let message = (0..L)
let message: [Fp; L] = (0..L)
.map(|_| pallas::Base::random(rng))
.collect::<Vec<_>>()
.try_into()
Expand All @@ -220,44 +174,40 @@ fn bench_poseidon<S, const WIDTH: usize, const RATE: usize, const L: usize>(

let circuit = HashCircuit::<S, WIDTH, RATE, L> {
message: Value::known(message),
output: Value::known(output),
_spec: PhantomData,
};

// Create a proof
let mut transcript = Blake2bWrite::<_, EqAffine, Challenge255<_>>::init(vec![]);

c.bench_function(&prover_name, |b| {
b.iter(|| {
// Create a proof
let mut transcript = Blake2bWrite::<_, EqAffine, Challenge255<_>>::init(vec![]);
create_proof::<IPACommitmentScheme<_>, ProverIPA<_>, _, _, _, _>(
&params,
&pk,
&[circuit],
&[&[]],
&[&[&[output]]],
&mut rng,
&mut transcript,
)
.expect("proof generation should not fail")
})
});

// Create a proof
let mut transcript = Blake2bWrite::<_, EqAffine, Challenge255<_>>::init(vec![]);
create_proof::<IPACommitmentScheme<_>, ProverIPA<_>, _, _, _, _>(
&params,
&pk,
&[circuit],
&[&[]],
&mut rng,
&mut transcript,
)
.expect("proof generation should not fail");
let proof = transcript.finalize();

c.bench_function(&verifier_name, |b| {
b.iter(|| {
let strategy = SingleStrategy::new(&params);
let mut transcript = Blake2bRead::<_, _, Challenge255<_>>::init(&proof[..]);
assert!(verify_proof(&params, pk.get_vk(), strategy, &[&[]], &mut transcript).is_ok());
assert!(verify_proof(
&params,
pk.get_vk(),
strategy,
&[&[&[output]]],
&mut transcript
)
.is_ok());
});
});
}
Expand Down