@aztec/blob-lib 1.0.0-nightly.20250608 → 1.0.0-nightly.20250611

package/dest/blob.d.ts

@@ -151,6 +151,7 @@ export declare class Blob {
      */
     getEthBlobEvaluationInputs(): `0x${string}`;
     static getEthBlobEvaluationInputs(blobs: Blob[]): `0x${string}`;
+    static getPrefixedEthBlobCommitments(blobs: Blob[]): `0x${string}`;
     static getViemKzgInstance(): {
         blobToKzgCommitment: typeof cKzg.blobToKzgCommitment;
         computeBlobKzgProof: typeof cKzg.computeBlobKzgProof;

package/dest/blob.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"blob.d.ts","sourceRoot":"","sources":["../src/blob.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,EAAE,EAAE,MAAM,0BAA0B,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAqB,MAAM,6BAA6B,CAAC;AAG9E,OAAO,IAAI,MAAM,OAAO,CAAC;AACzB,OAAO,KAAK,EAAE,IAAI,IAAI,UAAU,EAAE,MAAM,OAAO,CAAC;AAIhD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAK/C,eAAO,MAAM,0BAA0B,IAAO,CAAC;AAE/C;;GAEG;AACH,qBAAa,IAAI;IAEb,oDAAoD;aACpC,IAAI,EAAE,UAAU;IAChC,6IAA6I;aAC7H,UAAU,EAAE,EAAE;IAC9B,sFAAsF;aACtE,UAAU,EAAE,EAAE;IAC9B,sHAAsH;aACtG,WAAW,EAAE,MAAM;IACnC,kFAAkF;aAClE,UAAU,EAAE,MAAM;IAClC,iIAAiI;aACjH,KAAK,EAAE,MAAM;;IAX7B,oDAAoD;IACpC,IAAI,EAAE,UAAU;IAChC,6IAA6I;IAC7H,UAAU,EAAE,EAAE;IAC9B,sFAAsF;IACtE,UAAU,EAAE,EAAE;IAC9B,sHAAsH;IACtG,WAAW,EAAE,MAAM;IACnC,kFAAkF;IAClE,UAAU,EAAE,MAAM;IAClC,iIAAiI;IACjH,KAAK,EAAE,MAAM;IAG/B;;;;;;;;;;;;OAYG;IACH,MAAM,CAAC,qBAAqB,CAAC,IAAI,EAAE,UAAU,EAAE,mBAAmB,CAAC,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAWvF;;;;;;OAMG;WACU,UAAU,CAAC,MAAM,EAAE,EAAE,EAAE,EAAE,mBAAmB,CAAC,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAuB9E;;;;;;;;;;;OAWG;WACU,QAAQ,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAepD;;;;;;OAMG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,QAAQ;IAW/B;;;;;;OAMG;IACH,QAAQ,IAAI,EAAE,EAAE;IAIhB;;;;;;;;OAQG;IACH,eAAe,IAAI,EAAE,EAAE;IAUvB;;;;;;OAMG;IACH,MAAM,CAAC,eAAe,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE;IAU3C;;;;;;;;;;;OAWG;IACH,kBAAkB,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC;IAK9B,uBAAuB,IAAI,MAAM;IAMjC,MAAM,CAAC,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAM1D;;;;;;OAMG;IACH,QAAQ,IAAI,MAAM;IAiBlB;;;;;;;OAOG;IACH,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI;IAYnD;;OAEG;IACH,OAAO;IAIP;;;;;;;;;;OAUG;IACH,0BAA0B,IAAI,KAAK,MAAM,EAAE;IAW3C,MAAM,CAAC,0BAA0B,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,KAAK,MAAM,EAAE;IAmB/D,MAAM,CAAC,kBAAkB;;;;WASZ,QAAQ,CAAC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;CAUrD"}
+{"version":3,"file":"blob.d.ts","sourceRoot":"","sources":["../src/blob.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,EAAE,EAAE,MAAM,0BAA0B,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAqB,MAAM,6BAA6B,CAAC;AAG9E,OAAO,IAAI,MAAM,OAAO,CAAC;AACzB,OAAO,KAAK,EAAE,IAAI,IAAI,UAAU,EAAE,MAAM,OAAO,CAAC;AAIhD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAK/C,eAAO,MAAM,0BAA0B,IAAO,CAAC;AAE/C;;GAEG;AACH,qBAAa,IAAI;IAEb,oDAAoD;aACpC,IAAI,EAAE,UAAU;IAChC,6IAA6I;aAC7H,UAAU,EAAE,EAAE;IAC9B,sFAAsF;aACtE,UAAU,EAAE,EAAE;IAC9B,sHAAsH;aACtG,WAAW,EAAE,MAAM;IACnC,kFAAkF;aAClE,UAAU,EAAE,MAAM;IAClC,iIAAiI;aACjH,KAAK,EAAE,MAAM;;IAX7B,oDAAoD;IACpC,IAAI,EAAE,UAAU;IAChC,6IAA6I;IAC7H,UAAU,EAAE,EAAE;IAC9B,sFAAsF;IACtE,UAAU,EAAE,EAAE;IAC9B,sHAAsH;IACtG,WAAW,EAAE,MAAM;IACnC,kFAAkF;IAClE,UAAU,EAAE,MAAM;IAClC,iIAAiI;IACjH,KAAK,EAAE,MAAM;IAG/B;;;;;;;;;;;;OAYG;IACH,MAAM,CAAC,qBAAqB,CAAC,IAAI,EAAE,UAAU,EAAE,mBAAmB,CAAC,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAWvF;;;;;;OAMG;WACU,UAAU,CAAC,MAAM,EAAE,EAAE,EAAE,EAAE,mBAAmB,CAAC,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAuB9E;;;;;;;;;;;OAWG;WACU,QAAQ,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAepD;;;;;;OAMG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,QAAQ;IAW/B;;;;;;OAMG;IACH,QAAQ,IAAI,EAAE,EAAE;IAIhB;;;;;;;;OAQG;IACH,eAAe,IAAI,EAAE,EAAE;IAUvB;;;;;;OAMG;IACH,MAAM,CAAC,eAAe,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE;IAU3C;;;;;;;;;;;OAWG;IACH,kBAAkB,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC;IAK9B,uBAAuB,IAAI,MAAM;IAMjC,MAAM,CAAC,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAM1D;;;;;;OAMG;IACH,QAAQ,IAAI,MAAM;IAiBlB;;;;;;;OAOG;IACH,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI;IAYnD;;OAEG;IACH,OAAO;IAIP;;;;;;;;;;OAUG;IACH,0BAA0B,IAAI,KAAK,MAAM,EAAE;IAW3C,MAAM,CAAC,0BAA0B,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,KAAK,MAAM,EAAE;IAmB/D,MAAM,CAAC,6BAA6B,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,KAAK,MAAM,EAAE;IAYlE,MAAM,CAAC,kBAAkB;;;;WAWZ,QAAQ,CAAC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;CAUrD"}

package/dest/blob.js

@@ -1,7 +1,7 @@
 import { poseidon2Hash, sha256 } from '@aztec/foundation/crypto';
 import { Fr } from '@aztec/foundation/fields';
 import { BufferReader, serializeToBuffer } from '@aztec/foundation/serialize';
-// Importing directly from 'c-kzg' does not work, ignoring import/no-named-as-default-member err:
+// Importing directly from 'c-kzg' does not work:
 import cKzg from 'c-kzg';
 import { deserializeEncodedBlobToFields, extractBlobFieldsFromBuffer } from './encoding.js';
 import { BlobDeserializationError } from './errors.js';
@@ -238,6 +238,23 @@ export const VERSIONED_HASH_VERSION_KZG = 0x01;
         ]);
         return `0x${buf.toString('hex')}`;
     }
+    static getPrefixedEthBlobCommitments(blobs) {
+        let buf = Buffer.alloc(0);
+        blobs.forEach((blob)=>{
+            buf = Buffer.concat([
+                buf,
+                blob.commitment
+            ]);
+        });
+        // For multiple blobs, we prefix the number of blobs:
+        const lenBuf = Buffer.alloc(1);
+        lenBuf.writeUint8(blobs.length);
+        buf = Buffer.concat([
+            lenBuf,
+            buf
+        ]);
+        return `0x${buf.toString('hex')}`;
+    }
     static getViemKzgInstance() {
         return {
             blobToKzgCommitment: cKzg.blobToKzgCommitment,
@@ -246,6 +263,8 @@ export const VERSIONED_HASH_VERSION_KZG = 0x01;
     }
     // Returns as many blobs as we require to broadcast the given fields
     // Assumes we share the fields hash between all blobs
+    // TODO(MW): Rename to more accurate getBlobsPerBlock() - the items here share a fields hash,
+    // which can only be done for one block because the hash is calculated in block root.
     static async getBlobs(fields) {
         const numBlobs = Math.max(Math.ceil(fields.length / FIELD_ELEMENTS_PER_BLOB), 1);
         const multiBlobFieldsHash = await poseidon2Hash(fields);

package/dest/blob_batching.d.ts

@@ -0,0 +1,205 @@
+import { BLS12Fr, BLS12Point, Fr } from '@aztec/foundation/fields';
+import { BufferReader } from '@aztec/foundation/serialize';
+import { Blob } from './blob.js';
+import { BlobAccumulatorPublicInputs, FinalBlobAccumulatorPublicInputs } from './blob_batching_public_inputs.js';
+/**
+ * A class to create, manage, and prove batched EVM blobs.
+ */
+export declare class BatchedBlob {
+    /** Hash of Cs (to link to L1 blob hashes). */
+    readonly blobCommitmentsHash: Fr;
+    /** Challenge point z such that p_i(z) = y_i. */
+    readonly z: Fr;
+    /** Evaluation y, linear combination of all evaluations y_i = p_i(z) with gamma. */
+    readonly y: BLS12Fr;
+    /** Commitment C, linear combination of all commitments C_i = [p_i] with gamma. */
+    readonly commitment: BLS12Point;
+    /** KZG opening 'proof' Q (commitment to the quotient poly.), linear combination of all blob kzg 'proofs' Q_i with gamma. */
+    readonly q: BLS12Point;
+    constructor(
+    /** Hash of Cs (to link to L1 blob hashes). */
+    blobCommitmentsHash: Fr, 
+    /** Challenge point z such that p_i(z) = y_i. */
+    z: Fr, 
+    /** Evaluation y, linear combination of all evaluations y_i = p_i(z) with gamma. */
+    y: BLS12Fr, 
+    /** Commitment C, linear combination of all commitments C_i = [p_i] with gamma. */
+    commitment: BLS12Point, 
+    /** KZG opening 'proof' Q (commitment to the quotient poly.), linear combination of all blob kzg 'proofs' Q_i with gamma. */
+    q: BLS12Point);
+    /**
+     * Get the final batched opening proof from multiple blobs.
+     *
+     * TODO(MW): Using the old Blob struct means there are ignored values (e.g. blob.evaluationY, because we now evaluate at shared z).
+     * When switching to batching, create new class w/o useless values.
+     *
+     * @dev MUST input all blobs to be broadcast. Does not work in multiple calls because z and gamma are calculated
+     *      beforehand from ALL blobs.
+     *
+     * @returns A batched blob.
+     */
+    static batch(blobs: Blob[]): Promise<BatchedBlob>;
+    /**
+     * Returns an empty BatchedBlobAccumulator with precomputed challenges from all blobs in the epoch.
+     * @dev MUST input all blobs to be broadcast. Does not work in multiple calls because z and gamma are calculated
+     *      beforehand from ALL blobs.
+     */
+    static newAccumulator(blobs: Blob[]): Promise<BatchedBlobAccumulator>;
+    /**
+     * Gets the final challenges based on all blobs and their elements to perform a multi opening proof.
+     * Used in BatchedBlobAccumulator as 'finalZ' and finalGamma':
+     *  - z = H(...H(H(z_0, z_1) z_2)..z_n)
+     *    - where z_i = H(H(fields of blob_i), C_i) = Blob.challengeZ,
+     *    - used such that p_i(z) = y_i = Blob.evaluationY for all n blob polynomials p_i().
+     *  - gamma = H(H(...H(H(y_0, y_1) y_2)..y_n), z)
+     *    - used such that y = sum_i { gamma^i * y_i }, and C = sum_i { gamma^i * C_i }, for all blob evaluations y_i (see above) and commitments C_i.
+     * @returns Challenges z and gamma.
+     */
+    static precomputeBatchedBlobChallenges(blobs: Blob[]): Promise<FinalBlobBatchingChallenges>;
+    static precomputeEmptyBatchedBlobChallenges(): Promise<FinalBlobBatchingChallenges>;
+    getEthVersionedBlobHash(): Buffer;
+    static getEthVersionedBlobHash(commitment: Buffer): Buffer;
+    /**
+     * Returns a proof of opening of the blobs to verify on L1 using the point evaluation precompile:
+     *
+     * input[:32]     - versioned_hash
+     * input[32:64]   - z
+     * input[64:96]   - y
+     * input[96:144]  - commitment C
+     * input[144:192] - commitment Q (a 'proof' committing to the quotient polynomial q(X))
+     *
+     * See https://eips.ethereum.org/EIPS/eip-4844#point-evaluation-precompile
+     */
+    getEthBlobEvaluationInputs(): `0x${string}`;
+}
+/**
+ * Final values z and gamma are injected into each block root circuit. We ensure they are correct by:
+ * - Checking equality in each block merge circuit and propagating up
+ * - Checking final z_acc == z in root circuit
+ * - Checking final gamma_acc == gamma in root circuit
+ *
+ *  - z = H(...H(H(z_0, z_1) z_2)..z_n)
+ *    - where z_i = H(H(fields of blob_i), C_i),
+ *    - used such that p_i(z) = y_i = Blob.evaluationY for all n blob polynomials p_i().
+ *  - gamma = H(H(...H(H(y_0, y_1) y_2)..y_n), z)
+ *    - used such that y = sum_i { gamma^i * y_i }, and C = sum_i { gamma^i * C_i }
+ *      for all blob evaluations y_i (see above) and commitments C_i.
+ *
+ * Iteratively calculated by BlobAccumulatorPublicInputs.accumulate() in nr. See also precomputeBatchedBlobChallenges() above.
+ */
+export declare class FinalBlobBatchingChallenges {
+    readonly z: Fr;
+    readonly gamma: BLS12Fr;
+    constructor(z: Fr, gamma: BLS12Fr);
+    equals(other: FinalBlobBatchingChallenges): boolean;
+    static empty(): FinalBlobBatchingChallenges;
+    static fromBuffer(buffer: Buffer | BufferReader): FinalBlobBatchingChallenges;
+    toBuffer(): Buffer<ArrayBufferLike>;
+}
+/**
+ * See noir-projects/noir-protocol-circuits/crates/blob/src/blob_batching_public_inputs.nr -> BlobAccumulatorPublicInputs
+ */
+export declare class BatchedBlobAccumulator {
+    /** Hash of Cs (to link to L1 blob hashes). */
+    readonly blobCommitmentsHashAcc: Fr;
+    /** Challenge point z_acc. Final value used such that p_i(z) = y_i. */
+    readonly zAcc: Fr;
+    /** Evaluation y_acc. Final value is is linear combination of all evaluations y_i = p_i(z) with gamma. */
+    readonly yAcc: BLS12Fr;
+    /** Commitment c_acc. Final value is linear combination of all commitments C_i = [p_i] with gamma. */
+    readonly cAcc: BLS12Point;
+    /** KZG opening q_acc. Final value is linear combination of all blob kzg 'proofs' Q_i with gamma. */
+    readonly qAcc: BLS12Point;
+    /**
+     * Challenge point gamma_acc for multi opening. Used with y, C, and kzg 'proof' Q above.
+     * TODO(#13608): We calculate this by hashing natively in the circuit (hence Fr representation), but it's actually used
+     * as a BLS12Fr field elt. Is this safe? Is there a skew?
+     */
+    readonly gammaAcc: Fr;
+    /** Simply gamma^(i + 1) at blob i. Used for calculating the i'th element of the above linear comb.s */
+    readonly gammaPow: BLS12Fr;
+    /** Final challenge values used in evaluation. Optimistically input and checked in the final acc. */
+    readonly finalBlobChallenges: FinalBlobBatchingChallenges;
+    constructor(
+    /** Hash of Cs (to link to L1 blob hashes). */
+    blobCommitmentsHashAcc: Fr, 
+    /** Challenge point z_acc. Final value used such that p_i(z) = y_i. */
+    zAcc: Fr, 
+    /** Evaluation y_acc. Final value is is linear combination of all evaluations y_i = p_i(z) with gamma. */
+    yAcc: BLS12Fr, 
+    /** Commitment c_acc. Final value is linear combination of all commitments C_i = [p_i] with gamma. */
+    cAcc: BLS12Point, 
+    /** KZG opening q_acc. Final value is linear combination of all blob kzg 'proofs' Q_i with gamma. */
+    qAcc: BLS12Point, 
+    /**
+     * Challenge point gamma_acc for multi opening. Used with y, C, and kzg 'proof' Q above.
+     * TODO(#13608): We calculate this by hashing natively in the circuit (hence Fr representation), but it's actually used
+     * as a BLS12Fr field elt. Is this safe? Is there a skew?
+     */
+    gammaAcc: Fr, 
+    /** Simply gamma^(i + 1) at blob i. Used for calculating the i'th element of the above linear comb.s */
+    gammaPow: BLS12Fr, 
+    /** Final challenge values used in evaluation. Optimistically input and checked in the final acc. */
+    finalBlobChallenges: FinalBlobBatchingChallenges);
+    /**
+     * Init the first accumulation state of the epoch.
+     * We assume the input blob has not been evaluated at z.
+     *
+     * First state of the accumulator:
+     * - v_acc := sha256(C_0)
+     * - z_acc := z_0
+     * - y_acc := gamma^0 * y_0 = y_0
+     * - c_acc := gamma^0 * c_0 = c_0
+     * - gamma_acc := poseidon2(y_0.limbs)
+     * - gamma^(i + 1) = gamma^1 = gamma // denoted gamma_pow_acc
+     *
+     * TODO(MW): When moved to batching, we should ONLY evaluate individual blobs at z => won't need finalZ input.
+     * @returns An initial blob accumulator.
+     */
+    static initialize(blob: Blob, finalBlobChallenges: FinalBlobBatchingChallenges): Promise<BatchedBlobAccumulator>;
+    /**
+     * Create the empty accumulation state of the epoch.
+     * @returns An empty blob accumulator with challenges.
+     */
+    static newWithChallenges(finalBlobChallenges: FinalBlobBatchingChallenges): BatchedBlobAccumulator;
+    /**
+     * Given blob i, accumulate all state.
+     * We assume the input blob has not been evaluated at z.
+     * TODO(MW): Currently returning new accumulator. May be better to mutate in future?
+     * @returns An updated blob accumulator.
+     */
+    accumulate(blob: Blob): Promise<BatchedBlobAccumulator>;
+    /**
+     * Given blobs, accumulate all state.
+     * We assume the input blobs have not been evaluated at z.
+     * @returns An updated blob accumulator.
+     */
+    accumulateBlobs(blobs: Blob[]): Promise<BatchedBlobAccumulator>;
+    /**
+     * Finalize accumulation state of the epoch.
+     * We assume ALL blobs in the epoch have been accumulated.
+     *
+     * Final accumulated values:
+     * - v := v_acc (hash of all commitments (C_i s) to be checked on L1)
+     * - z := z_acc (final challenge, at which all blobs are evaluated)
+     * - y := y_acc (final opening to be checked on L1)
+     * - c := c_acc (final commitment to be checked on L1)
+     * - gamma := poseidon2(gamma_acc, z) (challenge for linear combination of y and C, above)
+     *
+     * @returns A batched blob.
+     */
+    finalize(): Promise<BatchedBlob>;
+    /**
+     * Converts to a struct for the public inputs of our rollup circuits.
+     * @returns A BlobAccumulatorPublicInputs instance.
+     */
+    toBlobAccumulatorPublicInputs(): BlobAccumulatorPublicInputs;
+    /**
+     * Converts to a struct for the public inputs of our root rollup circuit.
+     * Warning: MUST be final accumulator state.
+     * @returns A FinalBlobAccumulatorPublicInputs instance.
+     */
+    toFinalBlobAccumulatorPublicInputs(): FinalBlobAccumulatorPublicInputs;
+    isEmptyState(): boolean;
+}
+//# sourceMappingURL=blob_batching.d.ts.map

package/dest/blob_batching.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"blob_batching.d.ts","sourceRoot":"","sources":["../src/blob_batching.ts"],"names":[],"mappings":"AAEA,OAAO,EAAc,OAAO,EAAE,UAAU,EAAE,EAAE,EAAE,MAAM,0BAA0B,CAAC;AAC/E,OAAO,EAAE,YAAY,EAAqB,MAAM,6BAA6B,CAAC;AAK9E,OAAO,EAAE,IAAI,EAA8B,MAAM,WAAW,CAAC;AAC7D,OAAO,EAAE,2BAA2B,EAAE,gCAAgC,EAAE,MAAM,kCAAkC,CAAC;AAIjH;;GAEG;AACH,qBAAa,WAAW;IAEpB,8CAA8C;aAC9B,mBAAmB,EAAE,EAAE;IACvC,gDAAgD;aAChC,CAAC,EAAE,EAAE;IACrB,mFAAmF;aACnE,CAAC,EAAE,OAAO;IAC1B,kFAAkF;aAClE,UAAU,EAAE,UAAU;IACtC,4HAA4H;aAC5G,CAAC,EAAE,UAAU;;IAT7B,8CAA8C;IAC9B,mBAAmB,EAAE,EAAE;IACvC,gDAAgD;IAChC,CAAC,EAAE,EAAE;IACrB,mFAAmF;IACnE,CAAC,EAAE,OAAO;IAC1B,kFAAkF;IAClE,UAAU,EAAE,UAAU;IACtC,4HAA4H;IAC5G,CAAC,EAAE,UAAU;IAG/B;;;;;;;;;;OAUG;WACU,KAAK,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,WAAW,CAAC;IAcvD;;;;OAIG;WACU,cAAc,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAK3E;;;;;;;;;OASG;WACU,+BAA+B,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,2BAA2B,CAAC;WAqBpF,oCAAoC,IAAI,OAAO,CAAC,2BAA2B,CAAC;IAezF,uBAAuB,IAAI,MAAM;IAMjC,MAAM,CAAC,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAM1D;;;;;;;;;;OAUG;IACH,0BAA0B,IAAI,KAAK,MAAM,EAAE;CAU5C;AAED;;;;;;;;;;;;;;GAcG;AACH,qBAAa,2BAA2B;aAEpB,CAAC,EAAE,EAAE;aACL,KAAK,EAAE,OAAO;gBADd,CAAC,EAAE,EAAE,EACL,KAAK,EAAE,OAAO;IAGhC,MAAM,CAAC,KAAK,EAAE,2BAA2B;IAIzC,MAAM,CAAC,KAAK,IAAI,2BAA2B;IAI3C,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,2BAA2B;IAK7E,QAAQ;CAGT;AAED;;GAEG;AACH,qBAAa,sBAAsB;IAE/B,8CAA8C;aAC9B,sBAAsB,EAAE,EAAE;IAC1C,sEAAsE;aACtD,IAAI,EAAE,EAAE;IACxB,yGAAyG;aACzF,IAAI,EAAE,OAAO;IAC7B,qGAAqG;aACrF,IAAI,EAAE,UAAU;IAChC,oGAAoG;aACpF,IAAI,EAAE,UAAU;IAChC;;;;OAIG;aACa,QAAQ,EAAE,EAAE;IAC5B,uGAAuG;aACvF,QAAQ,EAAE,OAAO;IACjC,oGAAoG;aACpF,mBAAmB,EAAE,2BAA2B;;IAnBhE,8CAA8C;IAC9B,sBAAsB,EAAE,EAAE;IAC1C,sEAAsE;IACtD,IAAI,EAAE,EAAE;IACxB,yGAAyG;IACzF,IAAI,EAAE,OAAO;IAC7B,qGAAqG;IACrF,IAAI,EAAE,UAAU;IAChC,oGAAoG;IACpF,IAAI,EAAE,UAAU;IAChC;;;;OAIG;IACa,QAAQ,EAAE,EAAE;IAC5B,uGAAuG;IACvF,QAAQ,EAAE,OAAO;IACjC,oGAAoG;IACpF,mBAAmB,EAAE,2BAA2B;IAGlE;;;;;;;;;;;;;;OAcG;WACU,UAAU,CACrB,IAAI,EAAE,IAAI,EACV,mBAAmB,EAAE,2BAA2B,GAC/C,OAAO,CAAC,sBAAsB,CAAC;IAgBlC;;;OAGG;IACH,MAAM,CAAC,iBAAiB,CAAC,mBAAmB,EAAE,2BAA2B,GAAG,sBAAsB;IAalG;;;;;OAKG;IACG,UAAU,CAAC,IAAI,EAAE,IAAI;IAqB3B;;;;OAIG;IACG,eAAe,CAAC,KAAK,EAAE,IAAI,EAAE;IASnC;;;;;;;;;;;;OAYG;IACG,QAAQ,IAAI,OAAO,CAAC,WAAW,CAAC;IAqBtC;;;OAGG;IACH,6BAA6B;IAW7B;;;;OAIG;IACH,kCAAkC;IAIlC,YAAY;CAWb"}

package/dest/blob_batching.js

@@ -0,0 +1,316 @@
+import { AZTEC_MAX_EPOCH_DURATION, BLOBS_PER_BLOCK } from '@aztec/constants';
+import { poseidon2Hash, sha256, sha256ToField } from '@aztec/foundation/crypto';
+import { BLS12Fr, BLS12Point, Fr } from '@aztec/foundation/fields';
+import { BufferReader, serializeToBuffer } from '@aztec/foundation/serialize';
+// Importing directly from 'c-kzg' does not work:
+import cKzg from 'c-kzg';
+import { Blob, VERSIONED_HASH_VERSION_KZG } from './blob.js';
+import { BlobAccumulatorPublicInputs, FinalBlobAccumulatorPublicInputs } from './blob_batching_public_inputs.js';
+const { computeKzgProof, verifyKzgProof } = cKzg;
+/**
+ * A class to create, manage, and prove batched EVM blobs.
+ */ export class BatchedBlob {
+    blobCommitmentsHash;
+    z;
+    y;
+    commitment;
+    q;
+    constructor(/** Hash of Cs (to link to L1 blob hashes). */ blobCommitmentsHash, /** Challenge point z such that p_i(z) = y_i. */ z, /** Evaluation y, linear combination of all evaluations y_i = p_i(z) with gamma. */ y, /** Commitment C, linear combination of all commitments C_i = [p_i] with gamma. */ commitment, /** KZG opening 'proof' Q (commitment to the quotient poly.), linear combination of all blob kzg 'proofs' Q_i with gamma. */ q){
+        this.blobCommitmentsHash = blobCommitmentsHash;
+        this.z = z;
+        this.y = y;
+        this.commitment = commitment;
+        this.q = q;
+    }
+    /**
+   * Get the final batched opening proof from multiple blobs.
+   *
+   * TODO(MW): Using the old Blob struct means there are ignored values (e.g. blob.evaluationY, because we now evaluate at shared z).
+   * When switching to batching, create new class w/o useless values.
+   *
+   * @dev MUST input all blobs to be broadcast. Does not work in multiple calls because z and gamma are calculated
+   *      beforehand from ALL blobs.
+   *
+   * @returns A batched blob.
+   */ static async batch(blobs) {
+        const numBlobs = blobs.length;
+        if (numBlobs > BLOBS_PER_BLOCK * AZTEC_MAX_EPOCH_DURATION) {
+            throw new Error(`Too many blobs (${numBlobs}) sent to batch(). The maximum is ${BLOBS_PER_BLOCK * AZTEC_MAX_EPOCH_DURATION}.`);
+        }
+        // Precalculate the values (z and gamma) and initialize the accumulator:
+        let acc = await this.newAccumulator(blobs);
+        // Now we can create a multi opening proof of all input blobs:
+        acc = await acc.accumulateBlobs(blobs);
+        return await acc.finalize();
+    }
+    /**
+   * Returns an empty BatchedBlobAccumulator with precomputed challenges from all blobs in the epoch.
+   * @dev MUST input all blobs to be broadcast. Does not work in multiple calls because z and gamma are calculated
+   *      beforehand from ALL blobs.
+   */ static async newAccumulator(blobs) {
+        const finalBlobChallenges = await this.precomputeBatchedBlobChallenges(blobs);
+        return BatchedBlobAccumulator.newWithChallenges(finalBlobChallenges);
+    }
+    /**
+   * Gets the final challenges based on all blobs and their elements to perform a multi opening proof.
+   * Used in BatchedBlobAccumulator as 'finalZ' and finalGamma':
+   *  - z = H(...H(H(z_0, z_1) z_2)..z_n)
+   *    - where z_i = H(H(fields of blob_i), C_i) = Blob.challengeZ,
+   *    - used such that p_i(z) = y_i = Blob.evaluationY for all n blob polynomials p_i().
+   *  - gamma = H(H(...H(H(y_0, y_1) y_2)..y_n), z)
+   *    - used such that y = sum_i { gamma^i * y_i }, and C = sum_i { gamma^i * C_i }, for all blob evaluations y_i (see above) and commitments C_i.
+   * @returns Challenges z and gamma.
+   */ static async precomputeBatchedBlobChallenges(blobs) {
+        // We need to precompute the final challenge values to evaluate the blobs.
+        let z = blobs[0].challengeZ;
+        // We start at i = 1, because z is initialised as the first blob's challenge.
+        for(let i = 1; i < blobs.length; i++){
+            z = await poseidon2Hash([
+                z,
+                blobs[i].challengeZ
+            ]);
+        }
+        // Now we have a shared challenge for all blobs, evaluate them...
+        const proofObjects = blobs.map((b)=>computeKzgProof(b.data, z.toBuffer()));
+        const evaluations = proofObjects.map(([_, evaluation])=>BLS12Fr.fromBuffer(Buffer.from(evaluation)));
+        // ...and find the challenge for the linear combination of blobs.
+        let gamma = await hashNoirBigNumLimbs(evaluations[0]);
+        // We start at i = 1, because gamma is initialised as the first blob's evaluation.
+        for(let i = 1; i < blobs.length; i++){
+            gamma = await poseidon2Hash([
+                gamma,
+                await hashNoirBigNumLimbs(evaluations[i])
+            ]);
+        }
+        gamma = await poseidon2Hash([
+            gamma,
+            z
+        ]);
+        return new FinalBlobBatchingChallenges(z, BLS12Fr.fromBN254Fr(gamma));
+    }
+    static async precomputeEmptyBatchedBlobChallenges() {
+        const blobs = [
+            await Blob.fromFields([])
+        ];
+        // We need to precompute the final challenge values to evaluate the blobs.
+        const z = blobs[0].challengeZ;
+        // Now we have a shared challenge for all blobs, evaluate them...
+        const proofObjects = blobs.map((b)=>computeKzgProof(b.data, z.toBuffer()));
+        const evaluations = proofObjects.map(([_, evaluation])=>BLS12Fr.fromBuffer(Buffer.from(evaluation)));
+        // ...and find the challenge for the linear combination of blobs.
+        let gamma = await hashNoirBigNumLimbs(evaluations[0]);
+        gamma = await poseidon2Hash([
+            gamma,
+            z
+        ]);
+        return new FinalBlobBatchingChallenges(z, BLS12Fr.fromBN254Fr(gamma));
+    }
+    // Returns ethereum's versioned blob hash, following kzg_to_versioned_hash: https://eips.ethereum.org/EIPS/eip-4844#helpers
+    getEthVersionedBlobHash() {
+        const hash = sha256(this.commitment.compress());
+        hash[0] = VERSIONED_HASH_VERSION_KZG;
+        return hash;
+    }
+    static getEthVersionedBlobHash(commitment) {
+        const hash = sha256(commitment);
+        hash[0] = VERSIONED_HASH_VERSION_KZG;
+        return hash;
+    }
+    /**
+   * Returns a proof of opening of the blobs to verify on L1 using the point evaluation precompile:
+   *
+   * input[:32]     - versioned_hash
+   * input[32:64]   - z
+   * input[64:96]   - y
+   * input[96:144]  - commitment C
+   * input[144:192] - commitment Q (a 'proof' committing to the quotient polynomial q(X))
+   *
+   * See https://eips.ethereum.org/EIPS/eip-4844#point-evaluation-precompile
+   */ getEthBlobEvaluationInputs() {
+        const buf = Buffer.concat([
+            this.getEthVersionedBlobHash(),
+            this.z.toBuffer(),
+            this.y.toBuffer(),
+            this.commitment.compress(),
+            this.q.compress()
+        ]);
+        return `0x${buf.toString('hex')}`;
+    }
+}
+/**
+ * Final values z and gamma are injected into each block root circuit. We ensure they are correct by:
+ * - Checking equality in each block merge circuit and propagating up
+ * - Checking final z_acc == z in root circuit
+ * - Checking final gamma_acc == gamma in root circuit
+ *
+ *  - z = H(...H(H(z_0, z_1) z_2)..z_n)
+ *    - where z_i = H(H(fields of blob_i), C_i),
+ *    - used such that p_i(z) = y_i = Blob.evaluationY for all n blob polynomials p_i().
+ *  - gamma = H(H(...H(H(y_0, y_1) y_2)..y_n), z)
+ *    - used such that y = sum_i { gamma^i * y_i }, and C = sum_i { gamma^i * C_i }
+ *      for all blob evaluations y_i (see above) and commitments C_i.
+ *
+ * Iteratively calculated by BlobAccumulatorPublicInputs.accumulate() in nr. See also precomputeBatchedBlobChallenges() above.
+ */ export class FinalBlobBatchingChallenges {
+    z;
+    gamma;
+    constructor(z, gamma){
+        this.z = z;
+        this.gamma = gamma;
+    }
+    equals(other) {
+        return this.z.equals(other.z) && this.gamma.equals(other.gamma);
+    }
+    static empty() {
+        return new FinalBlobBatchingChallenges(Fr.ZERO, BLS12Fr.ZERO);
+    }
+    static fromBuffer(buffer) {
+        const reader = BufferReader.asReader(buffer);
+        return new FinalBlobBatchingChallenges(Fr.fromBuffer(reader), reader.readObject(BLS12Fr));
+    }
+    toBuffer() {
+        return serializeToBuffer(this.z, this.gamma);
+    }
+}
+/**
+ * See noir-projects/noir-protocol-circuits/crates/blob/src/blob_batching_public_inputs.nr -> BlobAccumulatorPublicInputs
+ */ export class BatchedBlobAccumulator {
+    blobCommitmentsHashAcc;
+    zAcc;
+    yAcc;
+    cAcc;
+    qAcc;
+    gammaAcc;
+    gammaPow;
+    finalBlobChallenges;
+    constructor(/** Hash of Cs (to link to L1 blob hashes). */ blobCommitmentsHashAcc, /** Challenge point z_acc. Final value used such that p_i(z) = y_i. */ zAcc, /** Evaluation y_acc. Final value is is linear combination of all evaluations y_i = p_i(z) with gamma. */ yAcc, /** Commitment c_acc. Final value is linear combination of all commitments C_i = [p_i] with gamma. */ cAcc, /** KZG opening q_acc. Final value is linear combination of all blob kzg 'proofs' Q_i with gamma. */ qAcc, /**
+     * Challenge point gamma_acc for multi opening. Used with y, C, and kzg 'proof' Q above.
+     * TODO(#13608): We calculate this by hashing natively in the circuit (hence Fr representation), but it's actually used
+     * as a BLS12Fr field elt. Is this safe? Is there a skew?
+     */ gammaAcc, /** Simply gamma^(i + 1) at blob i. Used for calculating the i'th element of the above linear comb.s */ gammaPow, /** Final challenge values used in evaluation. Optimistically input and checked in the final acc. */ finalBlobChallenges){
+        this.blobCommitmentsHashAcc = blobCommitmentsHashAcc;
+        this.zAcc = zAcc;
+        this.yAcc = yAcc;
+        this.cAcc = cAcc;
+        this.qAcc = qAcc;
+        this.gammaAcc = gammaAcc;
+        this.gammaPow = gammaPow;
+        this.finalBlobChallenges = finalBlobChallenges;
+    }
+    /**
+   * Init the first accumulation state of the epoch.
+   * We assume the input blob has not been evaluated at z.
+   *
+   * First state of the accumulator:
+   * - v_acc := sha256(C_0)
+   * - z_acc := z_0
+   * - y_acc := gamma^0 * y_0 = y_0
+   * - c_acc := gamma^0 * c_0 = c_0
+   * - gamma_acc := poseidon2(y_0.limbs)
+   * - gamma^(i + 1) = gamma^1 = gamma // denoted gamma_pow_acc
+   *
+   * TODO(MW): When moved to batching, we should ONLY evaluate individual blobs at z => won't need finalZ input.
+   * @returns An initial blob accumulator.
+   */ static async initialize(blob, finalBlobChallenges) {
+        const [q, evaluation] = computeKzgProof(blob.data, finalBlobChallenges.z.toBuffer());
+        const firstY = BLS12Fr.fromBuffer(Buffer.from(evaluation));
+        // Here, i = 0, so:
+        return new BatchedBlobAccumulator(sha256ToField([
+            blob.commitment
+        ]), blob.challengeZ, firstY, BLS12Point.decompress(blob.commitment), BLS12Point.decompress(Buffer.from(q)), await hashNoirBigNumLimbs(firstY), finalBlobChallenges.gamma, finalBlobChallenges);
+    }
+    /**
+   * Create the empty accumulation state of the epoch.
+   * @returns An empty blob accumulator with challenges.
+   */ static newWithChallenges(finalBlobChallenges) {
+        return new BatchedBlobAccumulator(Fr.ZERO, Fr.ZERO, BLS12Fr.ZERO, BLS12Point.ZERO, BLS12Point.ZERO, Fr.ZERO, BLS12Fr.ZERO, finalBlobChallenges);
+    }
+    /**
+   * Given blob i, accumulate all state.
+   * We assume the input blob has not been evaluated at z.
+   * TODO(MW): Currently returning new accumulator. May be better to mutate in future?
+   * @returns An updated blob accumulator.
+   */ async accumulate(blob) {
+        if (this.isEmptyState()) {
+            return BatchedBlobAccumulator.initialize(blob, this.finalBlobChallenges);
+        } else {
+            const [q, evaluation] = computeKzgProof(blob.data, this.finalBlobChallenges.z.toBuffer());
+            const thisY = BLS12Fr.fromBuffer(Buffer.from(evaluation));
+            // Moving from i - 1 to i, so:
+            return new BatchedBlobAccumulator(sha256ToField([
+                this.blobCommitmentsHashAcc,
+                blob.commitment
+            ]), await poseidon2Hash([
+                this.zAcc,
+                blob.challengeZ
+            ]), this.yAcc.add(thisY.mul(this.gammaPow)), this.cAcc.add(BLS12Point.decompress(blob.commitment).mul(this.gammaPow)), this.qAcc.add(BLS12Point.decompress(Buffer.from(q)).mul(this.gammaPow)), await poseidon2Hash([
+                this.gammaAcc,
+                await hashNoirBigNumLimbs(thisY)
+            ]), this.gammaPow.mul(this.finalBlobChallenges.gamma), this.finalBlobChallenges);
+        }
+    }
+    /**
+   * Given blobs, accumulate all state.
+   * We assume the input blobs have not been evaluated at z.
+   * @returns An updated blob accumulator.
+   */ async accumulateBlobs(blobs) {
+        // eslint-disable-next-line @typescript-eslint/no-this-alias
+        let acc = this; // TODO(MW): this.clone()
+        for(let i = 0; i < blobs.length; i++){
+            acc = await acc.accumulate(blobs[i]);
+        }
+        return acc;
+    }
+    /**
+   * Finalize accumulation state of the epoch.
+   * We assume ALL blobs in the epoch have been accumulated.
+   *
+   * Final accumulated values:
+   * - v := v_acc (hash of all commitments (C_i s) to be checked on L1)
+   * - z := z_acc (final challenge, at which all blobs are evaluated)
+   * - y := y_acc (final opening to be checked on L1)
+   * - c := c_acc (final commitment to be checked on L1)
+   * - gamma := poseidon2(gamma_acc, z) (challenge for linear combination of y and C, above)
+   *
+   * @returns A batched blob.
+   */ async finalize() {
+        // All values in acc are final, apart from gamma := poseidon2(gammaAcc, z):
+        const calculatedGamma = await poseidon2Hash([
+            this.gammaAcc,
+            this.zAcc
+        ]);
+        // Check final values:
+        if (!this.zAcc.equals(this.finalBlobChallenges.z)) {
+            throw new Error(`Blob batching mismatch: accumulated z ${this.zAcc} does not equal injected z ${this.finalBlobChallenges.z}`);
+        }
+        if (!calculatedGamma.equals(this.finalBlobChallenges.gamma.toBN254Fr())) {
+            throw new Error(`Blob batching mismatch: accumulated gamma ${calculatedGamma} does not equal injected gamma ${this.finalBlobChallenges.gamma.toBN254Fr()}`);
+        }
+        if (!verifyKzgProof(this.cAcc.compress(), this.zAcc.toBuffer(), this.yAcc.toBuffer(), this.qAcc.compress())) {
+            throw new Error(`KZG proof did not verify.`);
+        }
+        return new BatchedBlob(this.blobCommitmentsHashAcc, this.zAcc, this.yAcc, this.cAcc, this.qAcc);
+    }
+    /**
+   * Converts to a struct for the public inputs of our rollup circuits.
+   * @returns A BlobAccumulatorPublicInputs instance.
+   */ toBlobAccumulatorPublicInputs() {
+        return new BlobAccumulatorPublicInputs(this.blobCommitmentsHashAcc, this.zAcc, this.yAcc, this.cAcc, this.gammaAcc, this.gammaPow);
+    }
+    /**
+   * Converts to a struct for the public inputs of our root rollup circuit.
+   * Warning: MUST be final accumulator state.
+   * @returns A FinalBlobAccumulatorPublicInputs instance.
+   */ toFinalBlobAccumulatorPublicInputs() {
+        return new FinalBlobAccumulatorPublicInputs(this.blobCommitmentsHashAcc, this.zAcc, this.yAcc, this.cAcc);
+    }
+    isEmptyState() {
+        return this.blobCommitmentsHashAcc.isZero() && this.zAcc.isZero() && this.yAcc.isZero() && this.cAcc.isZero() && this.qAcc.isZero() && this.gammaAcc.isZero() && this.gammaPow.isZero();
+    }
+}
+// To mimic the hash accumulation in the rollup circuits, here we hash
+// each u128 limb of the noir bignum struct representing the BLS field.
+async function hashNoirBigNumLimbs(field) {
+    const num = field.toNoirBigNum();
+    return await poseidon2Hash(num.limbs.map(Fr.fromHexString));
+}

package/dest/blob_batching_public_inputs.d.ts

@@ -0,0 +1,66 @@
+import { BLS12Fr, BLS12Point, Fr } from '@aztec/foundation/fields';
+import { BufferReader, FieldReader } from '@aztec/foundation/serialize';
+import { inspect } from 'util';
+import { Blob } from './blob.js';
+import { BatchedBlob, BatchedBlobAccumulator, FinalBlobBatchingChallenges } from './blob_batching.js';
+/**
+ * See nr BlobAccumulatorPublicInputs and ts BatchedBlobAccumulator for documentation.
+ */
+export declare class BlobAccumulatorPublicInputs {
+    blobCommitmentsHashAcc: Fr;
+    zAcc: Fr;
+    yAcc: BLS12Fr;
+    cAcc: BLS12Point;
+    gammaAcc: Fr;
+    gammaPowAcc: BLS12Fr;
+    constructor(blobCommitmentsHashAcc: Fr, zAcc: Fr, yAcc: BLS12Fr, cAcc: BLS12Point, gammaAcc: Fr, gammaPowAcc: BLS12Fr);
+    static empty(): BlobAccumulatorPublicInputs;
+    equals(other: BlobAccumulatorPublicInputs): boolean;
+    static fromBuffer(buffer: Buffer | BufferReader): BlobAccumulatorPublicInputs;
+    toBuffer(): Buffer<ArrayBufferLike>;
+    /**
+     * Given blobs, accumulate all public inputs state.
+     * We assume the input blobs have not been evaluated at z.
+     * NOTE: Does NOT accumulate non circuit values including Q. This exists to simulate/check exactly what the circuit is doing
+     * and is unsafe for other use. For that reason, a toBatchedBlobAccumulator does not exist. See evaluateBlobs() oracle for usage.
+     * @returns An updated blob accumulator.
+     */
+    accumulateBlobs(blobs: Blob[], finalBlobChallenges: FinalBlobBatchingChallenges): Promise<BlobAccumulatorPublicInputs>;
+    toFields(): Fr[];
+    static fromFields(fields: Fr[] | FieldReader): BlobAccumulatorPublicInputs;
+}
+/**
+ * See nr FinalBlobAccumulatorPublicInputs and ts BatchedBlobAccumulator for documentation.
+ */
+export declare class FinalBlobAccumulatorPublicInputs {
+    blobCommitmentsHash: Fr;
+    z: Fr;
+    y: BLS12Fr;
+    c: BLS12Point;
+    constructor(blobCommitmentsHash: Fr, z: Fr, y: BLS12Fr, c: BLS12Point);
+    static empty(): FinalBlobAccumulatorPublicInputs;
+    static fromBuffer(buffer: Buffer | BufferReader): FinalBlobAccumulatorPublicInputs;
+    toBuffer(): Buffer<ArrayBufferLike>;
+    static fromBatchedBlob(blob: BatchedBlob): FinalBlobAccumulatorPublicInputs;
+    toFields(): Fr[];
+    toString(): string;
+    equals(other: FinalBlobAccumulatorPublicInputs): boolean;
+    static random(): FinalBlobAccumulatorPublicInputs;
+    [inspect.custom](): string;
+}
+/**
+ * startBlobAccumulator: Accumulated opening proofs for all blobs before this block range.
+ * endBlobAccumulator: Accumulated opening proofs for all blobs after adding this block range.
+ * finalBlobChallenges:  Final values z and gamma, shared across the epoch.
+ */
+export declare class BlockBlobPublicInputs {
+    startBlobAccumulator: BlobAccumulatorPublicInputs;
+    endBlobAccumulator: BlobAccumulatorPublicInputs;
+    finalBlobChallenges: FinalBlobBatchingChallenges;
+    constructor(startBlobAccumulator: BlobAccumulatorPublicInputs, endBlobAccumulator: BlobAccumulatorPublicInputs, finalBlobChallenges: FinalBlobBatchingChallenges);
+    static empty(): BlockBlobPublicInputs;
+    static fromBuffer(buffer: Buffer | BufferReader): BlockBlobPublicInputs;
+    toBuffer(): Buffer<ArrayBufferLike>;
+    static fromBlobs(startBlobAccumulator: BatchedBlobAccumulator, blobs: Blob[]): Promise<BlockBlobPublicInputs>;
+}
+//# sourceMappingURL=blob_batching_public_inputs.d.ts.map

package/dest/blob_batching_public_inputs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"blob_batching_public_inputs.d.ts","sourceRoot":"","sources":["../src/blob_batching_public_inputs.ts"],"names":[],"mappings":"AACA,OAAO,EAAW,OAAO,EAAE,UAAU,EAAE,EAAE,EAAE,MAAM,0BAA0B,CAAC;AAC5E,OAAO,EAAE,YAAY,EAAE,WAAW,EAAqB,MAAM,6BAA6B,CAAC;AAE3F,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAE/B,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,WAAW,EAAE,sBAAsB,EAAE,2BAA2B,EAAE,MAAM,oBAAoB,CAAC;AAEtG;;GAEG;AACH,qBAAa,2BAA2B;IAE7B,sBAAsB,EAAE,EAAE;IAC1B,IAAI,EAAE,EAAE;IACR,IAAI,EAAE,OAAO;IACb,IAAI,EAAE,UAAU;IAChB,QAAQ,EAAE,EAAE;IACZ,WAAW,EAAE,OAAO;gBALpB,sBAAsB,EAAE,EAAE,EAC1B,IAAI,EAAE,EAAE,EACR,IAAI,EAAE,OAAO,EACb,IAAI,EAAE,UAAU,EAChB,QAAQ,EAAE,EAAE,EACZ,WAAW,EAAE,OAAO;IAG7B,MAAM,CAAC,KAAK,IAAI,2BAA2B;IAI3C,MAAM,CAAC,KAAK,EAAE,2BAA2B;IAWzC,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,2BAA2B;IAY7E,QAAQ;IAWR;;;;;;OAMG;IACG,eAAe,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,mBAAmB,EAAE,2BAA2B;IAsBrF,QAAQ;IAaR,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE,EAAE,GAAG,WAAW,GAAG,2BAA2B;CAe3E;AAED;;GAEG;AACH,qBAAa,gCAAgC;IAElC,mBAAmB,EAAE,EAAE;IACvB,CAAC,EAAE,EAAE;IACL,CAAC,EAAE,OAAO;IACV,CAAC,EAAE,UAAU;gBAHb,mBAAmB,EAAE,EAAE,EACvB,CAAC,EAAE,EAAE,EACL,CAAC,EAAE,OAAO,EACV,CAAC,EAAE,UAAU;IAGtB,MAAM,CAAC,KAAK,IAAI,gCAAgC;IAIhD,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,gCAAgC;IAUlF,QAAQ;IAIR,MAAM,CAAC,eAAe,CAAC,IAAI,EAAE,WAAW;IAIxC,QAAQ;IAWR,QAAQ;IAQR,MAAM,CAAC,KAAK,EAAE,gCAAgC;IAU9C,MAAM,CAAC,MAAM;IAIb,CAAC,OAAO,CAAC,MAAM,CAAC;CAQjB;AAED;;;;GAIG;AACH,qBAAa,qBAAqB;IAEvB,oBAAoB,EAAE,2BAA2B;IACjD,kBAAkB,EAAE,2BAA2B;IAC/C,mBAAmB,EAAE,2BAA2B;gBAFhD,oBAAoB,EAAE,2BAA2B,EACjD,kBAAkB,EAAE,2BAA2B,EAC/C,mBAAmB,EAAE,2BAA2B;IAGzD,MAAM,CAAC,KAAK,IAAI,qBAAqB;IAQrC,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,qBAAqB;IASvE,QAAQ;WAQK,SAAS,CAAC,oBAAoB,EAAE,sBAAsB,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,qBAAqB,CAAC;CAQpH"}