Add EIP7594 #455
Add EIP7594 #455
Conversation
|
Hi, Thanks for your contribution, I think it would need to be split into multiple parts, 1 with just this and the rest as 8k lines PR are quite scary even if only just test vectors. Regarding your questions:
2 solutions, either use the export marker
We should at the very least use the same tests as the reference implementations in C and Rust, c-kzg-4844 and peerdas-kzg. If internal tests help you can either write them within the file with I'll proceed with the review and we can merge this first part after. |
constantine/ethereum_eip7594_kzg.nim
Outdated
| ./platforms/[abstractions, allocs], | ||
| ./serialization/[codecs_status_codes, codecs_bls12_381, endians], | ||
| ./commitments_setups/ethereum_kzg_srs | ||
| # ./ethereum_eip4844_kzg |
There was a problem hiding this comment.
| # ./ethereum_eip4844_kzg | |
| import ./ethereum_eip4844_kzg {.all.} |
| @@ -64,7 +64,7 @@ const RANDOM_CHALLENGE_KZG_BATCH_DOMAIN = asBytes"RCKZGBATCH___V1_" | |||
|
|
|||
| # Derived | |||
| # ------------------------------------------------------------ | |||
| const BYTES_PER_BLOB = BYTES_PER_FIELD_ELEMENT*FIELD_ELEMENTS_PER_BLOB | |||
| const BYTES_PER_BLOB* = BYTES_PER_FIELD_ELEMENT*FIELD_ELEMENTS_PER_BLOB | |||
There was a problem hiding this comment.
| const BYTES_PER_BLOB* = BYTES_PER_FIELD_ELEMENT*FIELD_ELEMENTS_PER_BLOB | |
| const BYTES_PER_BLOB = BYTES_PER_FIELD_ELEMENT*FIELD_ELEMENTS_PER_BLOB |
not needed with the {.all.} import marker
| @@ -177,7 +177,7 @@ func bytes_to_kzg_proof(dst: var KZGProof, src: array[48, byte]): CttCodecEccSta | |||
| return cttCodecEcc_Success | |||
| return status | |||
|
|
|||
| func blob_to_bigint_polynomial( | |||
| func blob_to_bigint_polynomial*( | |||
There was a problem hiding this comment.
| func blob_to_bigint_polynomial*( | |
| func blob_to_bigint_polynomial( |
not needed with the {.all.} import marker
|
|
||
| # Derived | ||
| # ------------------------------------------------------------ | ||
| const BYTES_PER_CELL= FIELD_ELEMENTS_PER_CELL*BYTES_PER_FIELD_ELEMENT |
There was a problem hiding this comment.
| const BYTES_PER_CELL= FIELD_ELEMENTS_PER_CELL*BYTES_PER_FIELD_ELEMENT | |
| const BYTES_PER_CELL = FIELD_ELEMENTS_PER_CELL*BYTES_PER_FIELD_ELEMENT |
| # Derived | ||
| # ------------------------------------------------------------ | ||
| const BYTES_PER_CELL= FIELD_ELEMENTS_PER_CELL*BYTES_PER_FIELD_ELEMENT | ||
| const FIELD_ELEMENTS_PER_EXT_BLOB=2*FIELD_ELEMENTS_PER_BLOB |
There was a problem hiding this comment.
| const FIELD_ELEMENTS_PER_EXT_BLOB=2*FIELD_ELEMENTS_PER_BLOB | |
| const FIELD_ELEMENTS_PER_EXT_BLOB = 2*FIELD_ELEMENTS_PER_BLOB |
constantine/ethereum_eip7594_kzg.nim
Outdated
| # for i in 0 ..< FIELD_ELEMENTS_PER_CELL: | ||
| # var bytes = bls_field_to_bytes(cosetEvals[i]) | ||
| # for j in 0 ..< bytes.len: | ||
| # dst[i* bytes.len + j] = bytes[j] |
There was a problem hiding this comment.
| # dst[i* bytes.len + j] = bytes[j] | |
| # dst[i* bytes.len + j] = bytes[j] |
2 spaces everywhere, you can configure vs-code with 2 spaces for Nim with the following
ctrl+shift+P: Open users settings (JSON)
and add a language specific config
"[nim]": {
"editor.tabSize": 2,
},like this:
| # Compute a KZG multi-evaluation proof for a set of `k` points. | ||
|
|
||
| # This is done by committing to the following quotient polynomial: | ||
| # Q(X) = f(X) - I(X) / Z(X) |
There was a problem hiding this comment.
It's unclear whether it's (f(X) - I(X)) / Z(X) or f(X) - (I(X) / Z(X))
| # For all points, compute the evaluation of those points | ||
|
|
||
| for i in z: | ||
| ys[i]=evaluate_polynomialcoeff(polynomial_coeff, z[i]) |
There was a problem hiding this comment.
As this is not defined, I assume this is pseudocode from the spec so I'll stop reviewing the file here.
It's OK to delete those, only check in the coset_eval_to_cell and the 8k lines of test vectors.
| @@ -143,6 +143,32 @@ type InvDiffArrayKind* = enum | |||
| kArrayMinus | |||
| kMinusArray | |||
|
|
|||
| # How do we do modulo? Field.fromBigInt()? | |||
There was a problem hiding this comment.
Are you talking about polynomial division / remainder or coefficients?
If it's coefficient, it's handled internally when you use fields.
There was a problem hiding this comment.
@mratsim ,Yes, I wanted to ask about that:
- How do I perform
n % BLS_MODULUS? - How do I do division between 2 polynomials given in form of their polynomial coefficients? I see that there are methods for sum and product.
There was a problem hiding this comment.
- How do I perform n % BLS_MODULUS?
Field element do not need this, all operations are implicitly reduced modulo BLS_MODULUS.
- How do I do division between 2 polynomials given in form of their polynomial coefficients? I see that there are methods for sum and product.
Where is it used in the spec? EIP-4844 introduces polynomial division but for polynomial in Lagrange/evaluation form. I would expect the spec to introduce the polynomial division code if it's used.
Ultimately it's similar to integer division because integers are polynomials but with a twist, they carry.
| for i in 0 ..< f.coefs.len: | ||
| f.coefs[i] -= g.coefs[i] | ||
|
|
||
| func prod*[N,F](r: var PolynomialCoef[N, F], s: F, f: PolynomialCoef[N, F])= |
There was a problem hiding this comment.
This is incorrect for polynomials in coefficient form.
(a + bx + cx²) * (u + vx + wx²) is not au + bvx + cwx²
There was a problem hiding this comment.
@mratsim, Agnish mentioned once that these are redundant as already there are methods for PolynomialEvals. Can you confirm? Because, from what I see multiplying here is of 2 polynomial coefficients and in the PolynomialEvals one , there is scalar getting multiplied to whole evaluated form.
There was a problem hiding this comment.
EIP-4844 focused heavily on polynomial in evaluation form because they are asymptotically more efficient than polynomial in coefficient form.
- Multiplication in evaluation form is O(n) with n the number of coefficient/evaluation.
- Naive multiplication in coefficient form is O(n²).
- Efficient multiplication in coefficient form would be O(n log n) with
n log n FFT+O(n) eval multiplication+n log n inverse FFT
so I'm surprised if this is actually necessary in the spec?
|
Also, I don't know how to divide this PR in two parts as you mentioned, can you please guide on that? And at some places tuples are used in consensus specs , and in nim tuples are immutable, so how do I approach writing such functions? @mratsim |
You can use a technique called "staggered PRs".
When opening a PR just make sure to target the previous branch This allows you to make progress without waiting for me merging the code.
Tuples are not immutable. var myTuple = (1, 2)
myTuple[0] = 3
echo myTuple
var (a, b) = (1, 2)
a = 4
echo a
proc foo(tup: var (int, int)) =
tup[0] += 1
proc bar(tup: var Tuple[x, y: int]) =
tup.x += 1are examples of mutable tuples. This specific signature def compute_kzg_proof_multi_impl(
polynomial_coeff: PolynomialCoeff,
zs: Coset) -> Tuple[KZGProof, CosetEvals]:Should be transformed into: proc compute_kzg_proof_multi_impl(
cosetEvals: var XXXCosetEvalsXXX, # insert proper type here, it looks like openArray[Fr[BLS12_381]]
proof: var KzgProof,
poly: PolynomialCoeff,
zs: Coset): ErrorType =to follow the return value guideline here: https://github.com/mratsim/constantine/blob/master/ARCHITECTURE.md#return-values |
@mratsim ,This is Nilav, I am permissionlessly taking part in EPF-5 this year, mentors on this project are agnish and tersec.
This PR is meant for adding one of the public methods in EIP-7594 namely compute_cells_and_kzg_proofs
The implementation is incomplete yet, needed help in figuring out some things.
I know I am already quite behind in starting the contributions but now, will keep up with pace