missing slot

Author: TomWambsgans

crates/rec_aggregation/src/xmss_aggregate.rs

@@ -136,8 +136,8 @@ fn compile_xmss_aggregation_program() -> XmssAggregationProgram {
 fn exec_phony_xmss(bytecode: &Bytecode, log_lifetimes: &[usize]) -> ExecutionResult {
     let mut rng = StdRng::seed_from_u64(0);
     let message_hash: [F; 8] = rng.random();
-    let first_slot = 1111;
-    let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(log_lifetimes, message_hash, first_slot);
+    let slot = 1 << 33;
+    let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(log_lifetimes, message_hash, slot);
     let public_input = build_public_input(&xmss_pub_keys, message_hash);
     let private_input = build_private_input(&all_signatures, &xmss_pub_keys);
     execute_bytecode(
@@ -156,16 +156,15 @@ pub fn run_xmss_benchmark(log_lifetimes: &[usize]) {
 
     let mut rng = StdRng::seed_from_u64(0);
     let message_hash: [F; 8] = rng.random();
-    let first_slot = 785555;
-
-    let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(log_lifetimes, message_hash, first_slot);
+    let slot = 1 << 33;
+    let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(log_lifetimes, message_hash, slot);
 
     let time = Instant::now();
     let (proof_data, n_field_elements_in_proof, summary) =
         xmss_aggregate_signatures_helper(&xmss_pub_keys, &all_signatures, message_hash).unwrap();
     let proving_time = time.elapsed();
 
-    xmss_verify_aggregated_signatures(&xmss_pub_keys, message_hash, &proof_data).unwrap();
+    xmss_verify_aggregated_signatures(&xmss_pub_keys, message_hash, &proof_data, slot).unwrap();
 
     println!("{summary}");
     println!(
@@ -186,7 +185,9 @@ pub fn xmss_aggregate_signatures(
     xmss_pub_keys: &[XmssPublicKey],
     all_signatures: &[XmssSignature],
     message_hash: [F; 8],
+    slot: u64,
 ) -> Result<Vec<u8>, XmssAggregateError> {
+    let _ = slot; // TODO
     Ok(xmss_aggregate_signatures_helper(xmss_pub_keys, all_signatures, message_hash)?.0)
 }
 
@@ -233,7 +234,9 @@ pub fn xmss_verify_aggregated_signatures(
     xmss_pub_keys: &[XmssPublicKey],
     message_hash: [F; 8],
     proof_bytes: &[u8],
+    slot: u64,
 ) -> Result<(), ProofError> {
+    let _ = slot; // TODO
     let program = get_xmss_aggregation_program();
 
     let proof_field_elements = info_span!("Proof deserialization").in_scope(|| {

crates/xmss/src/phony_xmss.rs

@@ -60,15 +60,15 @@ impl PhonyXmssSecretKey {
 pub fn xmss_generate_phony_signatures(
     log_lifetimes: &[usize],
     message_hash: Digest,
-    first_slot: u64,
+    slot: u64,
 ) -> (Vec<XmssPublicKey>, Vec<XmssSignature>) {
     log_lifetimes
         .par_iter()
         .enumerate()
         .map(|(i, &log_lifetime)| {
             let mut rng = StdRng::seed_from_u64(i as u64);
-            let signature_index = rng.random_range(first_slot..first_slot + (1 << log_lifetime));
-            let xmss_secret_key = PhonyXmssSecretKey::random(&mut rng, first_slot, log_lifetime, signature_index);
+            let first_slot = slot - rng.random_range(0..(1 << log_lifetime).min(slot));
+            let xmss_secret_key = PhonyXmssSecretKey::random(&mut rng, first_slot, log_lifetime, slot);
             let signature = xmss_secret_key.sign(&message_hash, &mut rng);
             (xmss_secret_key.public_key, signature)
         })

crates/xmss/src/xmss.rs

@@ -154,7 +154,9 @@ pub fn xmss_verify(
     pub_key: &XmssPublicKey,
     message_hash: &Digest,
     signature: &XmssSignature,
+    slot: u64,
 ) -> Result<(), XmssVerifyError> {
+    let _ = slot; // TODO
     xmss_verify_with_poseidon_trace(pub_key, message_hash, signature).map(|_| ())
 }
 

src/lib.rs

@@ -47,7 +47,7 @@ mod tests {
 
         let (secret_key, pub_key) = xmss_key_gen(key_gen_seed, first_slot, log_lifetime).unwrap();
         let signature = xmss_sign(randomness_seed, &secret_key, &message_hash, slot).unwrap();
-        xmss_verify(&pub_key, &message_hash, &signature).unwrap();
+        xmss_verify(&pub_key, &message_hash, &signature, slot).unwrap();
     }
 
     #[test]
@@ -59,13 +59,13 @@ mod tests {
         // (Actually, no need to call it if `xmss_aggregation_setup_prover` was already called)
         xmss_aggregation_setup_verifier();
 
-        let log_lifetimes = (1..=XMSS_MAX_LOG_LIFETIME).collect::<Vec<usize>>();
+        let log_lifetimes = (10..=XMSS_MAX_LOG_LIFETIME).collect::<Vec<usize>>();
         let message_hash: [F; 8] = std::array::from_fn(|i| F::from_usize(i * 7));
-        let first_slot = 77777;
+        let slot = 1 << 33;
 
-        let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(&log_lifetimes, message_hash, first_slot);
+        let (xmss_pub_keys, all_signatures) = xmss_generate_phony_signatures(&log_lifetimes, message_hash, slot);
 
-        let proof = xmss_aggregate_signatures(&xmss_pub_keys, &all_signatures, message_hash).unwrap();
-        xmss_verify_aggregated_signatures(&xmss_pub_keys, message_hash, &proof).unwrap();
+        let proof = xmss_aggregate_signatures(&xmss_pub_keys, &all_signatures, message_hash, slot).unwrap();
+        xmss_verify_aggregated_signatures(&xmss_pub_keys, message_hash, &proof, slot).unwrap();
     }
 }