openvm_native_compiler/ir/
poseidon.rs1use openvm_native_compiler_derive::iter_zip;
2use openvm_stark_backend::p3_field::PrimeCharacteristicRing;
3
4use super::{Array, ArrayLike, Builder, Config, DslIr, Ext, Felt, MemIndex, Ptr, Usize, Var};
5
6pub const DIGEST_SIZE: usize = 8;
7pub const HASH_RATE: usize = 8;
8pub const PERMUTATION_WIDTH: usize = 16;
9
10impl<C: Config> Builder<C> {
11 pub fn poseidon2_permute(&mut self, array: &Array<C, Felt<C::F>>) -> Array<C, Felt<C::F>> {
15 let output = match array {
16 Array::Fixed(values) => {
17 assert_eq!(values.borrow().len(), PERMUTATION_WIDTH);
18 self.dyn_array::<Felt<C::F>>(Usize::from(PERMUTATION_WIDTH))
19 }
20 Array::Dyn(_, len) => self.dyn_array::<Felt<C::F>>(len.clone()),
21 };
22 self.operations.push(DslIr::Poseidon2PermuteBabyBear(
23 output.clone(),
24 array.clone(),
25 ));
26 output
27 }
28
29 pub fn poseidon2_permute_mut(&mut self, array: &Array<C, Felt<C::F>>) {
33 if let Array::Fixed(_) = array {
34 panic!("Poseidon2 permutation is not allowed on fixed arrays");
35 }
36 self.operations.push(DslIr::Poseidon2PermuteBabyBear(
37 array.clone(),
38 array.clone(),
39 ));
40 }
41
42 pub fn poseidon2_compress(
46 &mut self,
47 left: &Array<C, Felt<C::F>>,
48 right: &Array<C, Felt<C::F>>,
49 ) -> Array<C, Felt<C::F>> {
50 let perm_width = PERMUTATION_WIDTH;
51 let input = self.dyn_array(perm_width);
52 for i in 0..DIGEST_SIZE {
53 let a = self.get(left, i);
54 let b = self.get(right, i);
55 self.set(&input, i, a);
56 self.set(&input, i + DIGEST_SIZE, b);
57 }
58 self.poseidon2_permute_mut(&input);
59 input
60 }
61
62 pub fn poseidon2_compress_x(
66 &mut self,
67 result: &Array<C, Felt<C::F>>,
68 left: &Array<C, Felt<C::F>>,
69 right: &Array<C, Felt<C::F>>,
70 ) {
71 self.operations.push(DslIr::Poseidon2CompressBabyBear(
72 result.clone(),
73 left.clone(),
74 right.clone(),
75 ));
76 }
77
78 pub fn poseidon2_hash_x(
79 &mut self,
80 array: &Array<C, Array<C, Felt<C::F>>>,
81 ) -> Array<C, Felt<C::F>> {
82 self.cycle_tracker_start("poseidon2-hash");
83 let perm_width = PERMUTATION_WIDTH;
84 let state: Array<C, Felt<C::F>> = self.dyn_array(perm_width);
85 self.range(0, perm_width).for_each(|idx_vec, builder| {
86 builder.set(&state, idx_vec[0], C::F::ZERO);
87 });
88
89 let address = self.eval(state.ptr().address);
90 let start: Var<_> = self.eval(address);
91 let end: Var<_> = self.eval(address + C::N::from_usize(HASH_RATE));
92 iter_zip!(self, array).for_each(|idx_vec, builder| {
93 let subarray = builder.iter_ptr_get(array, idx_vec[0]);
94 iter_zip!(builder, subarray).for_each(|ptr_vec, builder| {
95 let element = builder.iter_ptr_get(&subarray, ptr_vec[0]);
96 builder.cycle_tracker_start("poseidon2-hash-setup");
97 builder.store(
98 Ptr { address },
99 MemIndex {
100 index: 0.into(),
101 offset: 0,
102 size: 1,
103 },
104 element,
105 );
106 builder.assign(&address, address + C::N::ONE);
107 builder.cycle_tracker_end("poseidon2-hash-setup");
108 builder.if_eq(address, end).then(|builder| {
109 builder.poseidon2_permute_mut(&state);
110 builder.assign(&address, start);
111 });
112 });
113 });
114
115 self.if_ne(address, start).then(|builder| {
116 builder.poseidon2_permute_mut(&state);
117 });
118
119 state.truncate(self, Usize::from(DIGEST_SIZE));
120 self.cycle_tracker_end("poseidon2-hash");
121 state
122 }
123
124 pub fn poseidon2_hash_ext(
127 &mut self,
128 array: &Array<C, Array<C, Ext<C::F, C::EF>>>,
129 ) -> Array<C, Felt<C::F>> {
130 self.cycle_tracker_start("poseidon2-hash-ext");
131 let hash_rate = HASH_RATE;
132 let perm_width = PERMUTATION_WIDTH;
133 let state: Array<C, Felt<C::F>> = self.dyn_array(perm_width);
134 self.range(hash_rate, perm_width)
135 .for_each(|i_vec, builder| {
136 builder.set(&state, i_vec[0], C::F::ZERO);
137 });
138
139 let idx: Var<_> = self.eval(C::N::ZERO);
140 self.range(0, array.len()).for_each(|i_vec, builder| {
141 let subarray = builder.get(array, i_vec[0]);
142 builder.range(0, subarray.len()).for_each(|j_vec, builder| {
143 let element = builder.get(&subarray, j_vec[0]);
144 let felts = builder.ext2felt(element);
145 for i in 0..4 {
146 let felt = builder.get(&felts, i);
147 builder.set_value(&state, idx, felt);
148 builder.assign(&idx, idx + C::N::ONE);
149 builder
150 .if_eq(idx, C::N::from_usize(HASH_RATE))
151 .then(|builder| {
152 builder.poseidon2_permute_mut(&state);
153 builder.assign(&idx, C::N::ZERO);
154 });
155 }
156 });
157 });
158
159 self.if_ne(idx, C::N::ZERO).then(|builder| {
160 builder.poseidon2_permute_mut(&state);
161 });
162
163 state.truncate(self, Usize::from(DIGEST_SIZE));
164 self.cycle_tracker_end("poseidon2-hash-ext");
165 state
166 }
167}