Barretenberg
The ZK-SNARK library at the core of Aztec
Loading...
Searching...
No Matches
ecc_msm_relation.hpp
Go to the documentation of this file.
1// === AUDIT STATUS ===
2// internal: { status: Complete, auditors: [Raju], commit: 2a49eb6 }
3// external_1: { status: not started, auditors: [], commit: }
4// external_2: { status: not started, auditors: [], commit: }
5// =====================
6
7#pragma once
8#include "barretenberg/relations/relation_types.hpp"
9
10namespace bb {
11
43template <typename FF_> class ECCVMMSMRelationImpl {
44 public:
45 using FF = FF_;
46
47 // Named subrelation indices — matches SUBRELATION_PARTIAL_LENGTHS ordering.
48 // Grouped by logical function within the Strauss MSM algorithm.
49 enum SubrelationIndex : size_t {
50 // Addition round: accumulator update and slope constraints
51 ADD_ACC_X = 0,
52 ADD_ACC_Y = 1,
53 ADD_SLOPE_1 = 2,
54 ADD_SLOPE_2 = 3,
55 ADD_SLOPE_3 = 4,
56 ADD_SLOPE_4 = 5,
57 // Doubling round: accumulator update and slope constraint
58 DOUBLE_ACC_X = 6,
59 DOUBLE_ACC_Y = 7,
60 DOUBLE_SLOPE_1 = 8,
61 DOUBLE_SLOPE_2 = 9,
62 DOUBLE_SLOPE_3 = 10,
63 DOUBLE_SLOPE_4 = 11,
64 // Skew round: accumulator update and slope constraint
65 SKEW_ACC_X = 12,
66 SKEW_ACC_Y = 13,
67 SKEW_SLOPE_1 = 14,
68 SKEW_SLOPE_2 = 15,
69 SKEW_SLOPE_3 = 16,
70 SKEW_SLOPE_4 = 17,
71 // Collision checks: x-coordinate non-equality for point additions
72 COLLISION_CHECK_1 = 18,
73 COLLISION_CHECK_2 = 19,
74 COLLISION_CHECK_3 = 20,
75 COLLISION_CHECK_4 = 21,
76 // Inactive slice zeroing: force slice_i = 0 when add_i = 0
77 INACTIVE_SLICE_1 = 22,
78 INACTIVE_SLICE_2 = 23,
79 INACTIVE_SLICE_3 = 24,
80 INACTIVE_SLICE_4 = 25,
81 // Phase selector mutual exclusivity: at most one of q_add, q_double, q_skew active
82 PHASE_SELECTOR_MUTUAL_EXCLUSIVITY = 26,
83 // Round transition forces round_delta == 1
84 ROUND_TRANSITION_FORCES_DELTA_ONE = 27,
85 // Round transition with skew implies round == 31
86 ROUND_TRANSITION_SKEW_IMPLIES_ROUND_31 = 28,
87 // Round transition requires exactly one of double or skew on next row
88 ROUND_TRANSITION_EXACTLY_ONE_DOUBLE_OR_SKEW = 29,
89 // Round transition needs double or skew (cannot have neither)
90 ROUND_TRANSITION_NEEDS_DOUBLE_OR_SKEW = 30,
91 // Double implies next row is an add row
92 DOUBLE_IMPLIES_NEXT_IS_ADD = 31,
93 // Count shift must be zero when round changes
94 COUNT_SHIFT_ZERO_ON_ROUND_CHANGE = 32,
95 // Count increments within the same round by number of active adds
96 COUNT_INCREMENT_WITHIN_ROUND = 33,
97 // Count must be zero at round boundary or MSM transition
98 COUNT_ZERO_AT_ROUND_BOUNDARY_OR_TRANSITION = 34,
99 // MSM transition implies round = 0
100 MSM_TRANSITION_ROUND_ZERO = 35,
101 // MSM transition: pc = pc_shift + msm_size
102 MSM_TRANSITION_PC = 36,
103 // Addition continuity: add2 requires add1
104 ADD_CONTINUITY_2 = 37,
105 // Addition continuity: add3 requires add2
106 ADD_CONTINUITY_3 = 38,
107 // Addition continuity: add4 requires add3
108 ADD_CONTINUITY_4 = 39,
109 // Cross-row continuity: if add spans two rows, add4 must be 1
110 ADD_CROSS_ROW_CONTINUITY = 40,
111 // add1 = q_add + q_skew
112 ADD1_DECOMPOSITION = 41,
113 // q_skew persists until MSM transition: q_skew && !msm_transition_shift => q_skew_shift
114 SKEW_PERSISTS_UNTIL_MSM_TRANSITION = 42,
115 // q_skew implies round == 32
116 SKEW_IMPLIES_ROUND_32 = 43,
117 // Doubling requires a round change (round_delta must be 1 if q_double_shift)
118 DOUBLE_REQUIRES_ROUND_CHANGE = 44,
119 // Idle row: accumulator preserved when no phase selector is active
120 IDLE_ROW_PRESERVES_ACC_X = 45,
121 IDLE_ROW_PRESERVES_ACC_Y = 46,
122 NUM_SUBRELATIONS,
123 };
124
125 static constexpr std::array<size_t, 47> SUBRELATION_PARTIAL_LENGTHS{ 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8,
126 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8,
127 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8, 8 };
128 static_assert(NUM_SUBRELATIONS == SUBRELATION_PARTIAL_LENGTHS.size());
129
130 template <typename ContainerOverSubrelations, typename AllEntities, typename Parameters>
131 static void accumulate(ContainerOverSubrelations& accumulator,
132 const AllEntities& in,
133 const Parameters& /* unused */,
134 const FF& scaling_factor);
135};
136
137template <typename FF> using ECCVMMSMRelation = Relation<ECCVMMSMRelationImpl<FF>>;
138
139} // namespace bb
bb::ECCVMMSMRelationImpl
MSM relations that evaluate the Strauss multiscalar multiplication algorithm.
Definition ecc_msm_relation.hpp:43
bb::ECCVMMSMRelationImpl::accumulate
static void accumulate(ContainerOverSubrelations &accumulator, const AllEntities &in, const Parameters &, const FF &scaling_factor)
MSM relations that evaluate the Strauss multiscalar multiplication algorithm.
Definition ecc_msm_relation_impl.hpp:48
bb::ECCVMMSMRelationImpl::SUBRELATION_PARTIAL_LENGTHS
static constexpr std::array< size_t, 47 > SUBRELATION_PARTIAL_LENGTHS
Definition ecc_msm_relation.hpp:125
bb::Relation
A wrapper for Relations to expose methods used by the Sumcheck prover or verifier to add the contribu...
Definition relation_types.hpp:96
bb
Entry point for Barretenberg command-line interface.
Definition api.hpp:5
relation_types.hpp