feat: handle padding in set_target

Author: ed255

src/backends/plonky2/circuits/mainpod.rs

@@ -707,12 +707,11 @@ mod tests {
         );
 
         let merkle_proofs = vec![MerkleClaimAndProof::new(
-            params.max_depth_mt_gadget,
             Hash::from(root.raw()),
             key,
             None,
-            &no_key_pf,
-        )?];
+            no_key_pf,
+        )];
         let prev_statements = vec![root_st, key_st];
         operation_verify(st, op, prev_statements, merkle_proofs.clone())?;
 

src/backends/plonky2/circuits/signedpod.rs

@@ -134,13 +134,7 @@ impl SignedPodVerifyTarget {
                 let (v, proof) = pod.dict.prove(k)?;
                 self.mt_proofs[i].set_targets(
                     pw,
-                    &MerkleClaimAndProof::new(
-                        self.params.max_depth_mt_gadget,
-                        pod.dict.commitment(),
-                        k.raw(),
-                        Some(v.raw()),
-                        &proof,
-                    )?,
+                    &MerkleClaimAndProof::new(pod.dict.commitment(), k.raw(), Some(v.raw()), proof),
                 )?;
                 Ok(v)
             })
@@ -160,21 +154,15 @@ impl SignedPodVerifyTarget {
 
             self.mt_proofs[curr].set_targets(
                 pw,
-                &MerkleClaimAndProof::new(
-                    self.params.max_depth_mt_gadget,
-                    pod.dict.commitment(),
-                    k.raw(),
-                    Some(v.raw()),
-                    &proof,
-                )?,
+                &MerkleClaimAndProof::new(pod.dict.commitment(), k.raw(), Some(v.raw()), proof),
             )?;
             curr += 1;
         }
         // sanity check
         assert!(curr <= self.params.max_signed_pod_values);
 
         // add the proofs of empty leaves (if needed), till the max_signed_pod_values
-        let mut mp = MerkleClaimAndProof::empty(self.params.max_depth_mt_gadget);
+        let mut mp = MerkleClaimAndProof::empty();
         mp.root = pod.dict.commitment();
         for i in curr..self.params.max_signed_pod_values {
             self.mt_proofs[i].set_targets(pw, &mp)?;

src/backends/plonky2/mainpod/mod.rs

@@ -42,7 +42,7 @@ pub(crate) fn extract_merkle_proofs(
     params: &Params,
     operations: &[middleware::Operation],
 ) -> Result<Vec<MerkleClaimAndProof>> {
-    let mut merkle_proofs = operations
+    let mut merkle_proofs: Vec<_> = operations
         .iter()
         .flat_map(|op| match op {
             middleware::Operation::ContainsFromEntries(
@@ -51,26 +51,24 @@ pub(crate) fn extract_merkle_proofs(
                 middleware::Statement::ValueOf(_, value),
                 pf,
             ) => Some(MerkleClaimAndProof::new(
-                params.max_depth_mt_gadget,
                 Hash::from(root.raw()),
                 key.raw(),
                 Some(value.raw()),
-                pf,
+                pf.clone(),
             )),
             middleware::Operation::NotContainsFromEntries(
                 middleware::Statement::ValueOf(_, root),
                 middleware::Statement::ValueOf(_, key),
                 pf,
             ) => Some(MerkleClaimAndProof::new(
-                params.max_depth_mt_gadget,
                 Hash::from(root.raw()),
                 key.raw(),
                 None,
-                pf,
+                pf.clone(),
             )),
             _ => None,
         })
-        .collect::<Result<Vec<_>>>()?;
+        .collect();
     if merkle_proofs.len() > params.max_merkle_proofs {
         Err(anyhow!(
             "The number of required Merkle proofs ({}) exceeds the maximum number ({}).",
@@ -80,7 +78,7 @@ pub(crate) fn extract_merkle_proofs(
     } else {
         fill_pad(
             &mut merkle_proofs,
-            MerkleClaimAndProof::empty(params.max_depth_mt_gadget),
+            MerkleClaimAndProof::empty(),
             params.max_merkle_proofs,
         );
         Ok(merkle_proofs)
@@ -293,7 +291,6 @@ pub(crate) fn process_public_statements_operations(
 pub struct Prover {}
 
 impl PodProver for Prover {
-    // TODO: Be consistent on where we apply the padding, here, or in the set_targets?
     fn prove(&mut self, params: &Params, inputs: MainPodInputs) -> Result<Box<dyn Pod>> {
         let config = CircuitConfig::standard_recursion_config();
         let mut builder = CircuitBuilder::<F, D>::new(config);

src/backends/plonky2/primitives/merkletree.rs

@@ -1,10 +1,6 @@
 //! Module that implements the MerkleTree specified at
 //! https://0xparc.github.io/pod2/merkletree.html .
-use std::{
-    collections::HashMap,
-    fmt,
-    iter::{self, IntoIterator},
-};
+use std::{collections::HashMap, fmt, iter::IntoIterator};
 
 use anyhow::{anyhow, Result};
 use plonky2::field::types::Field;
@@ -271,55 +267,30 @@ pub struct MerkleClaimAndProof {
     pub root: Hash,
     pub key: RawValue,
     pub value: RawValue,
-    /// The siblings in this proof are padded to max_depth
     pub proof: MerkleProof,
 }
 
 impl MerkleClaimAndProof {
-    pub fn empty(max_depth: usize) -> Self {
+    pub fn empty() -> Self {
         Self {
             enabled: false,
             root: EMPTY_HASH,
             key: EMPTY_VALUE,
             value: EMPTY_VALUE,
             proof: MerkleProof {
                 existence: true,
-                siblings: iter::repeat(EMPTY_HASH).take(max_depth).collect(),
+                siblings: vec![],
                 other_leaf: None,
             },
         }
     }
-    pub fn new(
-        max_depth: usize,
-        root: Hash,
-        key: RawValue,
-        value: Option<RawValue>,
-        proof: &MerkleProof,
-    ) -> Result<Self> {
-        if proof.siblings.len() > max_depth {
-            Err(anyhow!(
-                "Number of siblings ({}) exceeds maximum depth ({})",
-                proof.siblings.len(),
-                max_depth
-            ))
-        } else {
-            Ok(Self {
-                enabled: true,
-                root,
-                key,
-                value: value.unwrap_or(EMPTY_VALUE),
-                proof: MerkleProof {
-                    existence: proof.existence,
-                    siblings: proof
-                        .siblings
-                        .iter()
-                        .cloned()
-                        .chain(iter::repeat(EMPTY_HASH))
-                        .take(max_depth)
-                        .collect(),
-                    other_leaf: proof.other_leaf,
-                },
-            })
+    pub fn new(root: Hash, key: RawValue, value: Option<RawValue>, proof: MerkleProof) -> Self {
+        Self {
+            enabled: true,
+            root,
+            key,
+            value: value.unwrap_or(EMPTY_VALUE),
+            proof,
         }
     }
 }

src/backends/plonky2/primitives/merkletree_circuit.rs

@@ -165,6 +165,19 @@ impl MerkleClaimAndProofTarget {
         pw.set_target_arr(&self.value.elements, &mp.value.0)?;
         pw.set_bool_target(self.existence, mp.proof.existence)?;
 
+        // pad siblings with zeros to length max_depth
+        assert!(mp.proof.siblings.len() <= self.max_depth);
+        for (i, sibling) in mp
+            .proof
+            .siblings
+            .iter()
+            .chain(iter::repeat(&EMPTY_HASH))
+            .take(self.max_depth)
+            .enumerate()
+        {
+            pw.set_hash_target(self.siblings[i], HashOut::from_vec(sibling.0.to_vec()))?;
+        }
+
         assert_eq!(mp.proof.siblings.len(), self.max_depth);
         for (i, sibling) in mp.proof.siblings.iter().enumerate() {
             pw.set_hash_target(self.siblings[i], HashOut::from_vec(sibling.0.to_vec()))?;
@@ -259,9 +272,15 @@ impl MerkleProofExistenceTarget {
         pw.set_target_arr(&self.value.elements, &mp.value.0)?;
 
         // pad siblings with zeros to length max_depth
-        assert_eq!(mp.proof.siblings.len(), self.max_depth);
-
-        for (i, sibling) in mp.proof.siblings.iter().enumerate() {
+        assert!(mp.proof.siblings.len() <= self.max_depth);
+        for (i, sibling) in mp
+            .proof
+            .siblings
+            .iter()
+            .chain(iter::repeat(&EMPTY_HASH))
+            .take(self.max_depth)
+            .enumerate()
+        {
             pw.set_hash_target(self.siblings[i], HashOut::from_vec(sibling.0.to_vec()))?;
         }
 
@@ -515,7 +534,7 @@ pub mod tests {
         let targets = MerkleProofGadget { max_depth }.eval(&mut builder)?;
         targets.set_targets(
             &mut pw,
-            &MerkleClaimAndProof::new(max_depth, tree.root(), key, Some(value), &proof)?,
+            &MerkleClaimAndProof::new(tree.root(), key, Some(value), proof),
         )?;
 
         // generate & verify proof
@@ -560,7 +579,7 @@ pub mod tests {
         let targets = MerkleProofExistenceGadget { max_depth }.eval(&mut builder)?;
         targets.set_targets(
             &mut pw,
-            &MerkleClaimAndProof::new(max_depth, tree.root(), key, Some(value), &proof)?,
+            &MerkleClaimAndProof::new(tree.root(), key, Some(value), proof),
         )?;
 
         // generate & verify proof
@@ -634,7 +653,7 @@ pub mod tests {
         let targets = MerkleProofGadget { max_depth }.eval(&mut builder)?;
         targets.set_targets(
             &mut pw,
-            &MerkleClaimAndProof::new(max_depth, tree.root(), key, Some(value), &proof)?,
+            &MerkleClaimAndProof::new(tree.root(), key, Some(value), proof),
         )?;
 
         // generate & verify proof
@@ -677,7 +696,7 @@ pub mod tests {
 
         let targets = MerkleProofGadget { max_depth }.eval(&mut builder)?;
         // verification enabled & proof of existence
-        let mut mp = MerkleClaimAndProof::new(max_depth, tree2.root(), key, Some(value), &proof)?;
+        let mut mp = MerkleClaimAndProof::new(tree2.root(), key, Some(value), proof);
         targets.set_targets(&mut pw, &mp)?;
 
         // generate proof, expecting it to fail (since we're using the wrong