@aztec/standard-contracts 0.0.1-commit.993d240 → 0.0.1-commit.b9865e97

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -7,32 +7,32 @@
7
7
  "start": 579
8
8
  }
9
9
  ],
10
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/macros/internals_functions_generation/external/private.nr",
10
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/macros/internals_functions_generation/external/private.nr",
11
11
  "source": "use crate::macros::{\n functions::initialization_utils::has_public_init_checked_functions,\n internals_functions_generation::external::helpers::{create_authorize_once_check, get_abi_relevant_attributes},\n utils::{\n fn_has_allow_phase_change, fn_has_authorize_once, fn_has_noinitcheck, is_fn_initializer, is_fn_only_self,\n is_fn_view, module_has_initializer, module_has_storage,\n },\n};\nuse crate::protocol::meta::utils::derive_serialization_quotes;\nuse std::meta::type_of;\n\npub(crate) comptime fn generate_private_external(f: FunctionDefinition) -> Quoted {\n let module_has_initializer = module_has_initializer(f.module());\n let module_has_storage = module_has_storage(f.module());\n\n // Private functions undergo a lot of transformations from their Aztec.nr form into a circuit that can be fed to\n // the Private Kernel Circuit. First we change the function signature so that it also receives\n // `PrivateContextInputs`, which contain information about the execution context (e.g. the caller).\n let original_params = f.parameters();\n\n let original_params_quotes =\n original_params.map(|(param_name, param_type)| quote { $param_name: $param_type }).join(quote {, });\n\n let params = quote { inputs: aztec::context::inputs::PrivateContextInputs, $original_params_quotes };\n\n let mut body = f.body().as_block().unwrap();\n\n // The original params are hashed and passed to the `context` object, so that the kernel can verify we've received\n // the correct values.\n let (args_serialization, _, serialized_args_name) = derive_serialization_quotes(original_params, false);\n\n let storage_init = if module_has_storage {\n // Contract has Storage defined so we initialize it.\n quote {\n let storage = Storage::init(&mut context);\n }\n } else {\n // Contract does not have Storage defined, so we set storage to the unit type `()`. ContractSelfPrivate\n // requires a storage struct in its constructor. Using an Option type would lead to worse developer experience\n // and higher constraint counts so we use the unit type `()` instead.\n quote {\n let storage = ();\n }\n };\n\n let contract_self_creation = quote {\n #[allow(unused_variables)]\n let mut self = {\n $args_serialization\n let args_hash = aztec::hash::hash_args($serialized_args_name);\n let mut context = aztec::context::PrivateContext::new(inputs, args_hash);\n $storage_init\n let self_address = context.this_address();\n let call_self: CallSelf<&mut aztec::context::PrivateContext> = CallSelf { address: self_address, context: &mut context };\n let enqueue_self: EnqueueSelf<&mut aztec::context::PrivateContext> = EnqueueSelf { address: self_address, context: &mut context };\n let call_self_static: CallSelfStatic<&mut aztec::context::PrivateContext> = CallSelfStatic { address: self_address, context: &mut context };\n let enqueue_self_static: EnqueueSelfStatic<&mut aztec::context::PrivateContext> = EnqueueSelfStatic { address: self_address, context: &mut context };\n let internal: CallInternal<&mut aztec::context::PrivateContext> = CallInternal { context: &mut context };\n let call_self_utility = CallSelfUtility { address: self_address };\n let utility: aztec::contract_self::PrivateUtilityCalls<CallSelfUtility> = aztec::contract_self::PrivateUtilityCalls { call_self: call_self_utility };\n aztec::contract_self::ContractSelfPrivate::new(&mut context, storage, call_self, enqueue_self, call_self_static, enqueue_self_static, internal, utility)\n };\n };\n\n let original_function_name = f.name();\n\n // Modifications introduced by the different marker attributes.\n let internal_check = if is_fn_only_self(f) {\n let assertion_message = f\"Function {original_function_name} can only be called by the same contract\";\n quote { assert(self.msg_sender() == self.address, $assertion_message); }\n } else {\n quote {}\n };\n\n let view_check = if is_fn_view(f) {\n let assertion_message = f\"Function {original_function_name} can only be called statically\".as_quoted_str();\n quote { assert(self.context.inputs.call_context.is_static_call, $assertion_message); }\n } else {\n quote {}\n };\n\n let (assert_initializer, mark_as_initialized) = if is_fn_initializer(f) {\n let has_public_fns_with_init_check = has_public_init_checked_functions(f.module());\n (\n quote { aztec::macros::functions::initialization_utils::assert_initialization_matches_address_preimage_private(*self.context); },\n quote { aztec::macros::functions::initialization_utils::mark_as_initialized_from_private_initializer(self.context, $has_public_fns_with_init_check); },\n )\n } else {\n (quote {}, quote {})\n };\n\n // Initialization checks are not included in contracts that don't have initializers.\n let init_check = if module_has_initializer & !is_fn_initializer(f) & !fn_has_noinitcheck(f) {\n quote { aztec::macros::functions::initialization_utils::assert_is_initialized_private(self.context); }\n } else {\n quote {}\n };\n\n // Phase checks are skipped in functions that request to manually handle phases\n let initial_phase_store = if fn_has_allow_phase_change(f) {\n quote {}\n } else {\n quote { let within_revertible_phase: bool = self.context.in_revertible_phase(); }\n };\n\n let no_phase_change_check = if fn_has_allow_phase_change(f) {\n quote {}\n } else {\n quote { \n assert_eq(\n within_revertible_phase,\n self.context.in_revertible_phase(),\n f\"Phase change detected on function with phase check. If this is expected, use #[allow_phase_change]\",\n ); \n }\n };\n\n // Inject the authwit check if the function is marked with #[authorize_once].\n let authorize_once_check = if fn_has_authorize_once(f) {\n create_authorize_once_check(f, true)\n } else {\n quote {}\n };\n\n // Finally, we need to change the return type to be `PrivateCircuitPublicInputs`, which is what the Private Kernel\n // circuit expects.\n let return_value_var_name = quote { macro__returned__values };\n\n let return_value_type = f.return_type();\n let return_value = if body.len() == 0 {\n quote {}\n } else if return_value_type != type_of(()) {\n // The original return value is serialized and hashed before being passed to the context.\n let (body_without_return, last_body_expr) = body.pop_back();\n let return_value = last_body_expr.quoted();\n let return_value_assignment = quote { let $return_value_var_name: $return_value_type = $return_value; };\n\n let (return_serialization, _, serialized_return_name) =\n derive_serialization_quotes([(return_value_var_name, return_value_type)], false);\n\n body = body_without_return;\n\n quote {\n $return_value_assignment\n $return_serialization\n self.context.set_return_hash($serialized_return_name);\n }\n } else {\n let (body_without_return, last_body_expr) = body.pop_back();\n if !last_body_expr.has_semicolon()\n & last_body_expr.as_for().is_none()\n & last_body_expr.as_assert().is_none()\n & last_body_expr.as_for_range().is_none()\n & last_body_expr.as_assert_eq().is_none()\n & last_body_expr.as_let().is_none() {\n let unused_return_value_name = f\"_{return_value_var_name}\".quoted_contents();\n body = body_without_return.push_back(quote { let $unused_return_value_name = $last_body_expr; }\n .as_expr()\n .unwrap());\n }\n quote {}\n };\n\n let context_finish = quote { self.context.finish() };\n\n // Preserve all attributes that are relevant to the function's ABI.\n let abi_relevant_attributes = get_abi_relevant_attributes(f);\n\n let fn_name = f\"__aztec_nr_internals__{original_function_name}\".quoted_contents();\n\n let to_prepend = quote {\n aztec::oracle::version::assert_compatible_oracle_version();\n $contract_self_creation\n $initial_phase_store\n $assert_initializer\n $init_check\n $internal_check\n $view_check\n $authorize_once_check\n };\n\n let body_quote = body.map(|expr| expr.quoted()).join(quote { });\n\n // `mark_as_initialized` is placed after the user's function body. If it ran at the beginning, the contract\n // would appear initialized while the initializer is still running, allowing contracts called by the initializer\n // to re-enter into a half-initialized contract.\n let to_append = quote {\n $return_value\n $mark_as_initialized\n $no_phase_change_check\n $context_finish\n };\n\n quote {\n #[aztec::macros::internals_functions_generation::abi_attributes::abi_private]\n $abi_relevant_attributes\n fn $fn_name($params) -> return_data aztec::protocol::abis::private_circuit_public_inputs::PrivateCircuitPublicInputs {\n $to_prepend\n $body_quote\n $to_append\n }\n }\n}\n"
12
12
  },
13
- "126": {
13
+ "127": {
14
14
  "function_locations": [
15
15
  {
16
16
  "name": "do_sync_state",
17
- "start": 7093
17
+ "start": 7341
18
18
  },
19
19
  {
20
20
  "name": "test::do_sync_state_does_not_panic_on_empty_logs",
21
- "start": 9803
21
+ "start": 10249
22
22
  },
23
23
  {
24
24
  "name": "test::dummy_compute_note_hash",
25
- "start": 11290
25
+ "start": 11736
26
26
  },
27
27
  {
28
28
  "name": "test::dummy_compute_note_nullifier",
29
- "start": 11651
29
+ "start": 12097
30
30
  }
31
31
  ],
32
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/mod.nr",
33
- "source": "use crate::logging::{aztecnr_debug_log, aztecnr_debug_log_format, aztecnr_warn_log_format};\nuse crate::protocol::address::AztecAddress;\n\npub(crate) mod nonce_discovery;\npub(crate) mod partial_notes;\npub(crate) mod private_events;\npub mod private_notes;\npub mod process_message;\n\nuse crate::{\n messages::{\n discovery::process_message::process_message_ciphertext,\n encoding::MAX_MESSAGE_CONTENT_LEN,\n logs::note::MAX_NOTE_PACKED_LEN,\n processing::{\n MessageContext, offchain::OffchainInboxSync, OffchainMessageWithContext,\n pending_tagged_log::PendingTaggedLog, validate_and_store_enqueued_notes_and_events,\n },\n },\n oracle::message_processing,\n utils::array,\n};\n\npub struct NoteHashAndNullifier {\n /// The result of [`crate::note::note_interface::NoteHash::compute_note_hash`].\n pub note_hash: Field,\n /// The result of [`crate::note::note_interface::NoteHash::compute_nullifier_unconstrained`].\n ///\n /// This value is unconstrained, as all of message discovery is unconstrained. It is `None` if the nullifier\n /// cannot be computed (e.g. because the nullifier hiding key is not available).\n pub inner_nullifier: Option<Field>,\n}\n\n/// A contract's way of computing note hashes.\n///\n/// Each contract in the network is free to compute their note's hash as they see fit - the hash function itself is not\n/// enshrined or standardized. Some aztec-nr functions however do need to know the details of this computation (e.g.\n/// when finding new notes), which is what this type represents.\n///\n/// This function takes a note's packed content, storage slot, note type ID, address of the emitting contract and\n/// randomness, and attempts to compute its inner note hash (not siloed by address nor uniqued by nonce).\n///\n/// ## Transient Notes\n///\n/// This function is meant to always be used on **settled** notes, i.e. those that have been inserted into the trees\n/// and for which the nonce is known. It is never invoked in the context of a transient note, as those are not involved\n/// in message processing.\n///\n/// ## Automatic Implementation\n///\n/// The [`[#aztec]`](crate::macros::aztec::aztec) macro automatically creates a correct implementation of this function\n/// for each contract by inspecting all note types in use and the storage layout. This injected function is a\n/// `#[contract_library_method]` called `_compute_note_hash`, and it looks something like this:\n///\n/// ```noir\n/// |packed_note, owner, storage_slot, note_type_id, _contract_address, randomness| {\n/// if note_type_id == MyNoteType::get_id() {\n/// if packed_note.len() != MY_NOTE_TYPE_SERIALIZATION_LENGTH {\n/// Option::none()\n/// } else {\n/// let note = MyNoteType::unpack(aztec::utils::array::subarray(packed_note.storage(), 0));\n/// Option::some(note.compute_note_hash(owner, storage_slot, randomness))\n/// }\n/// } else if note_type_id == MyOtherNoteType::get_id() {\n/// ... // Similar to above but calling MyOtherNoteType::unpack\n/// } else {\n/// Option::none() // Unknown note type ID\n/// };\n/// }\n/// ```\npub type ComputeNoteHash = unconstrained fn(/* packed_note */BoundedVec<Field, MAX_NOTE_PACKED_LEN>, /*\n owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress, /*\nrandomness */ Field) -> Option<Field>;\n\n/// A contract's way of computing note nullifiers.\n///\n/// Like [`ComputeNoteHash`], each contract is free to derive nullifiers as they see fit. This function takes the\n/// unique note hash (used as the note hash for nullification for settled notes), plus the note's packed content and\n/// metadata, and attempts to compute the inner nullifier (not siloed by address).\n///\n/// ## Automatic Implementation\n///\n/// The [`[#aztec]`](crate::macros::aztec::aztec) macro automatically creates a correct implementation of this function\n/// for each contract called `_compute_note_nullifier`. It dispatches on `note_type_id` similarly to\n/// [`ComputeNoteHash`], then calls the note's\n/// [`compute_nullifier_unconstrained`](crate::note::note_interface::NoteHash::compute_nullifier_unconstrained) method.\npub type ComputeNoteNullifier = unconstrained fn(/* unique_note_hash */Field, /* packed_note */ BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n/* owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress,\n/* randomness */ Field) -> Option<Field>;\n\n/// Deprecated: use [`ComputeNoteHash`] and [`ComputeNoteNullifier`] instead.\npub type ComputeNoteHashAndNullifier<Env> = unconstrained fn[Env](/* packed_note */BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n/* owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress,\n/*randomness */ Field, /* note nonce */ Field) -> Option<NoteHashAndNullifier>;\n\n/// A handler for custom messages.\n///\n/// Contracts that emit custom messages (i.e. any with a message type that is not in [`crate::messages::msg_type`])\n/// need to use [`crate::macros::AztecConfig::custom_message_handler`] with a function of this type in order to\n/// process them. They will otherwise be **silently ignored**.\npub type CustomMessageHandler = unconstrained fn(\n/* contract_address */AztecAddress,\n/* msg_type_id */ u64,\n/* msg_metadata */ u64,\n/* msg_content */ BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n/* message_context */ MessageContext,\n/* scope */ AztecAddress);\n\n/// Custom state synchronization handler.\n///\n/// When set via [`crate::macros::AztecConfig::custom_sync_state`], the generated `sync_state` function will call\n/// this handler instead of [`do_sync_state`]. It receives all of the same parameters, so it can run custom logic\n/// (e.g. fetching and decrypting custom logs) before, after, or instead of calling [`do_sync_state`].\npub type CustomSyncHandler = unconstrained fn(\n/* contract_address */AztecAddress,\n/* compute_note_hash */ ComputeNoteHash,\n/* compute_note_nullifier */ ComputeNoteNullifier,\n/* process_custom_message */ Option<CustomMessageHandler>,\n/* offchain_inbox_sync */ Option<OffchainInboxSync>,\n/* scope */ AztecAddress);\n\n/// Synchronizes the contract's private state with the network.\n///\n/// As blocks are mined, it is possible for a contract's private state to change (e.g. with new notes being created),\n/// but because these changes are private they will be invisible to most actors. This is the function that processes\n/// new transactions in order to discover new notes, events, and other kinds of private state changes.\n///\n/// The private state will be synchronized up to the block that will be used for private transactions (i.e. the anchor\n/// block. This will typically be close to the tip of the chain.\npub unconstrained fn do_sync_state(\n contract_address: AztecAddress,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n process_custom_message: Option<CustomMessageHandler>,\n offchain_inbox_sync: Option<OffchainInboxSync>,\n scope: AztecAddress,\n) {\n aztecnr_debug_log!(\"Performing state synchronization\");\n\n // First we process all private logs, which can contain different kinds of messages e.g. private notes, partial\n // notes, private events, etc.\n let logs = message_processing::get_pending_tagged_logs(scope);\n logs.for_each(|_i, pending_tagged_log: PendingTaggedLog| {\n if pending_tagged_log.log.len() == 0 {\n aztecnr_warn_log_format!(\"Skipping empty log from tx {0}\")([pending_tagged_log.context.tx_hash]);\n } else {\n aztecnr_debug_log_format!(\"Processing log with tag {0}\")([pending_tagged_log.log.get(0)]);\n\n // We remove the tag from the pending tagged log and process the message ciphertext contained in it.\n let message_ciphertext = array::subbvec(pending_tagged_log.log, 1);\n\n process_message_ciphertext(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n process_custom_message,\n message_ciphertext,\n pending_tagged_log.context,\n scope,\n );\n }\n });\n\n if offchain_inbox_sync.is_some() {\n let msgs = offchain_inbox_sync.unwrap()(contract_address, scope);\n msgs.for_each(|_i, msg: OffchainMessageWithContext| {\n process_message_ciphertext(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n process_custom_message,\n msg.message_ciphertext,\n msg.message_context,\n scope,\n );\n });\n }\n\n // Then we process all pending partial notes, regardless of whether they were found in the current or previous\n // executions.\n partial_notes::fetch_and_process_partial_note_completion_logs(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n scope,\n );\n\n // Finally we validate all notes and events that were found as part of the previous processes, resulting in them\n // being added to PXE's database and retrievable via oracles (get_notes) and our TS API (PXE::getPrivateEvents).\n validate_and_store_enqueued_notes_and_events(scope);\n}\n\nmod test {\n use crate::ephemeral::EphemeralArray;\n use crate::messages::{\n discovery::{CustomMessageHandler, do_sync_state},\n logs::note::MAX_NOTE_PACKED_LEN,\n processing::{offchain::OffchainInboxSync, pending_tagged_log::PendingTaggedLog},\n };\n use crate::protocol::address::AztecAddress;\n use crate::test::helpers::test_environment::TestEnvironment;\n\n #[test]\n unconstrained fn do_sync_state_does_not_panic_on_empty_logs() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n\n let contract_address = AztecAddress { inner: 0xdeadbeef };\n\n env.utility_context_at(contract_address, |_| {\n // Mock the oracle call to return a known base slot, then populate an ephemeral\n // array at that slot so do_sync_state processes a non-empty log list.\n let base_slot = 42;\n let mock = std::test::OracleMock::mock(\"aztec_utl_getPendingTaggedLogs\");\n let _ = mock.returns(base_slot);\n\n let logs: EphemeralArray<PendingTaggedLog> = EphemeralArray::at(base_slot);\n logs.push(PendingTaggedLog { log: BoundedVec::new(), context: std::mem::zeroed() });\n assert_eq(logs.len(), 1);\n\n let no_handler: Option<CustomMessageHandler> = Option::none();\n let no_inbox_sync: Option<OffchainInboxSync> = Option::none();\n do_sync_state(\n contract_address,\n dummy_compute_note_hash,\n dummy_compute_note_nullifier,\n no_handler,\n no_inbox_sync,\n scope,\n );\n });\n }\n\n unconstrained fn dummy_compute_note_hash(\n _packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n _owner: AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n Option::none()\n }\n\n unconstrained fn dummy_compute_note_nullifier(\n _unique_note_hash: Field,\n _packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n _owner: AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n Option::none()\n }\n}\n"
32
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/mod.nr",
33
+ "source": "use crate::logging::{aztecnr_debug_log, aztecnr_debug_log_format, aztecnr_warn_log_format};\nuse crate::protocol::address::AztecAddress;\nuse crate::protocol::hash::sha256_to_field;\n\npub(crate) mod nonce_discovery;\npub(crate) mod partial_notes;\npub(crate) mod private_events;\npub mod private_notes;\npub mod process_message;\n\nuse crate::{\n ephemeral::EphemeralArray,\n messages::{\n discovery::process_message::process_message_ciphertext,\n encoding::MAX_MESSAGE_CONTENT_LEN,\n logs::note::MAX_NOTE_PACKED_LEN,\n processing::{\n MessageContext, offchain::OffchainInboxSync, OffchainMessageWithContext,\n pending_tagged_log::PendingTaggedLog, provided_secret::ProvidedSecret,\n validate_and_store_enqueued_notes_and_events,\n },\n },\n oracle::message_processing,\n utils::array,\n};\n\nglobal PROVIDED_SECRETS_ARRAY_BASE_SLOT: Field =\n sha256_to_field(\"AZTEC_NR::PROVIDED_SECRETS_ARRAY_BASE_SLOT\".as_bytes());\n\npub struct NoteHashAndNullifier {\n /// The result of [`crate::note::note_interface::NoteHash::compute_note_hash`].\n pub note_hash: Field,\n /// The result of [`crate::note::note_interface::NoteHash::compute_nullifier_unconstrained`].\n ///\n /// This value is unconstrained, as all of message discovery is unconstrained. It is `None` if the nullifier\n /// cannot be computed (e.g. because the nullifier hiding key is not available).\n pub inner_nullifier: Option<Field>,\n}\n\n/// A contract's way of computing note hashes.\n///\n/// Each contract in the network is free to compute their note's hash as they see fit - the hash function itself is not\n/// enshrined or standardized. Some aztec-nr functions however do need to know the details of this computation (e.g.\n/// when finding new notes), which is what this type represents.\n///\n/// This function takes a note's packed content, storage slot, note type ID, address of the emitting contract and\n/// randomness, and attempts to compute its inner note hash (not siloed by address nor uniqued by nonce).\n///\n/// ## Transient Notes\n///\n/// This function is meant to always be used on **settled** notes, i.e. those that have been inserted into the trees\n/// and for which the nonce is known. It is never invoked in the context of a transient note, as those are not involved\n/// in message processing.\n///\n/// ## Automatic Implementation\n///\n/// The [`[#aztec]`](crate::macros::aztec::aztec) macro automatically creates a correct implementation of this function\n/// for each contract by inspecting all note types in use and the storage layout. This injected function is a\n/// `#[contract_library_method]` called `_compute_note_hash`, and it looks something like this:\n///\n/// ```noir\n/// |packed_note, owner, storage_slot, note_type_id, _contract_address, randomness| {\n/// if note_type_id == MyNoteType::get_id() {\n/// if packed_note.len() != MY_NOTE_TYPE_SERIALIZATION_LENGTH {\n/// Option::none()\n/// } else {\n/// let note = MyNoteType::unpack(aztec::utils::array::subarray(packed_note.storage(), 0));\n/// Option::some(note.compute_note_hash(owner, storage_slot, randomness))\n/// }\n/// } else if note_type_id == MyOtherNoteType::get_id() {\n/// ... // Similar to above but calling MyOtherNoteType::unpack\n/// } else {\n/// Option::none() // Unknown note type ID\n/// };\n/// }\n/// ```\npub type ComputeNoteHash = unconstrained fn(/* packed_note */BoundedVec<Field, MAX_NOTE_PACKED_LEN>, /*\n owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress, /*\nrandomness */ Field) -> Option<Field>;\n\n/// A contract's way of computing note nullifiers.\n///\n/// Like [`ComputeNoteHash`], each contract is free to derive nullifiers as they see fit. This function takes the\n/// unique note hash (used as the note hash for nullification for settled notes), plus the note's packed content and\n/// metadata, and attempts to compute the inner nullifier (not siloed by address).\n///\n/// ## Automatic Implementation\n///\n/// The [`[#aztec]`](crate::macros::aztec::aztec) macro automatically creates a correct implementation of this function\n/// for each contract called `_compute_note_nullifier`. It dispatches on `note_type_id` similarly to\n/// [`ComputeNoteHash`], then calls the note's\n/// [`compute_nullifier_unconstrained`](crate::note::note_interface::NoteHash::compute_nullifier_unconstrained) method.\npub type ComputeNoteNullifier = unconstrained fn(/* unique_note_hash */Field, /* packed_note */ BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n/* owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress,\n/* randomness */ Field) -> Option<Field>;\n\n/// Deprecated: use [`ComputeNoteHash`] and [`ComputeNoteNullifier`] instead.\npub type ComputeNoteHashAndNullifier<Env> = unconstrained fn[Env](/* packed_note */BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n/* owner */ AztecAddress, /* storage_slot */ Field, /* note_type_id */ Field, /* contract_address */ AztecAddress,\n/*randomness */ Field, /* note nonce */ Field) -> Option<NoteHashAndNullifier>;\n\n/// A handler for custom messages.\n///\n/// Contracts that emit custom messages (i.e. any with a message type that is not in [`crate::messages::msg_type`])\n/// need to use [`crate::macros::AztecConfig::custom_message_handler`] with a function of this type in order to\n/// process them. They will otherwise be **silently ignored**.\npub type CustomMessageHandler = unconstrained fn(\n/* contract_address */AztecAddress,\n/* msg_type_id */ u64,\n/* msg_metadata */ u64,\n/* msg_content */ BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n/* message_context */ MessageContext,\n/* scope */ AztecAddress);\n\n/// Custom state synchronization handler.\n///\n/// When set via [`crate::macros::AztecConfig::custom_sync_state`], the generated `sync_state` function will call\n/// this handler instead of [`do_sync_state`]. It receives all of the same parameters, so it can run custom logic\n/// (e.g. fetching and decrypting custom logs) before, after, or instead of calling [`do_sync_state`].\npub type CustomSyncHandler = unconstrained fn(\n/* contract_address */AztecAddress,\n/* compute_note_hash */ ComputeNoteHash,\n/* compute_note_nullifier */ ComputeNoteNullifier,\n/* process_custom_message */ Option<CustomMessageHandler>,\n/* offchain_inbox_sync */ Option<OffchainInboxSync>,\n/* scope */ AztecAddress);\n\n/// Synchronizes the contract's private state with the network.\n///\n/// As blocks are mined, it is possible for a contract's private state to change (e.g. with new notes being created),\n/// but because these changes are private they will be invisible to most actors. This is the function that processes\n/// new transactions in order to discover new notes, events, and other kinds of private state changes.\n///\n/// The private state will be synchronized up to the block that will be used for private transactions (i.e. the anchor\n/// block. This will typically be close to the tip of the chain.\npub unconstrained fn do_sync_state(\n contract_address: AztecAddress,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n process_custom_message: Option<CustomMessageHandler>,\n offchain_inbox_sync: Option<OffchainInboxSync>,\n scope: AztecAddress,\n) {\n aztecnr_debug_log!(\"Performing state synchronization\");\n\n // First we process all private logs, which can contain different kinds of messages e.g. private notes, partial\n // notes, private events, etc.\n // TODO(F-588): populate with tagging secrets for constrained delivery\n let provided_secrets = EphemeralArray::<ProvidedSecret>::empty_at(PROVIDED_SECRETS_ARRAY_BASE_SLOT);\n let logs = message_processing::get_pending_tagged_logs(scope, provided_secrets);\n logs.for_each(|_i, pending_tagged_log: PendingTaggedLog| {\n if pending_tagged_log.log.len() == 0 {\n aztecnr_warn_log_format!(\"Skipping empty log from tx {0}\")([pending_tagged_log.context.tx_hash]);\n } else {\n aztecnr_debug_log_format!(\"Processing log with tag {0}\")([pending_tagged_log.log.get(0)]);\n\n // We remove the tag from the pending tagged log and process the message ciphertext contained in it.\n let message_ciphertext = array::subbvec(pending_tagged_log.log, 1);\n\n process_message_ciphertext(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n process_custom_message,\n message_ciphertext,\n pending_tagged_log.context,\n scope,\n );\n }\n });\n\n if offchain_inbox_sync.is_some() {\n let msgs = offchain_inbox_sync.unwrap()(contract_address, scope);\n msgs.for_each(|_i, msg: OffchainMessageWithContext| {\n process_message_ciphertext(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n process_custom_message,\n msg.message_ciphertext,\n msg.message_context,\n scope,\n );\n });\n }\n\n // Then we process all pending partial notes, regardless of whether they were found in the current or previous\n // executions.\n partial_notes::fetch_and_process_partial_note_completion_logs(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n scope,\n );\n\n // Finally we validate all notes and events that were found as part of the previous processes, resulting in them\n // being added to PXE's database and retrievable via oracles (get_notes) and our TS API (PXE::getPrivateEvents).\n validate_and_store_enqueued_notes_and_events(scope);\n}\n\nmod test {\n use crate::ephemeral::EphemeralArray;\n use crate::messages::{\n discovery::{CustomMessageHandler, do_sync_state},\n logs::note::MAX_NOTE_PACKED_LEN,\n processing::{offchain::OffchainInboxSync, pending_tagged_log::PendingTaggedLog},\n };\n use crate::protocol::address::AztecAddress;\n use crate::test::helpers::test_environment::TestEnvironment;\n\n #[test]\n unconstrained fn do_sync_state_does_not_panic_on_empty_logs() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n\n let contract_address = AztecAddress { inner: 0xdeadbeef };\n\n env.utility_context_at(contract_address, |_| {\n // Mock the oracle call to return a known base slot, then populate an ephemeral\n // array at that slot so do_sync_state processes a non-empty log list.\n let base_slot = 42;\n let mock = std::test::OracleMock::mock(\"aztec_utl_getPendingTaggedLogs\");\n let _ = mock.returns(base_slot);\n\n let logs: EphemeralArray<PendingTaggedLog> = EphemeralArray::at(base_slot);\n logs.push(PendingTaggedLog { log: BoundedVec::new(), context: std::mem::zeroed() });\n assert_eq(logs.len(), 1);\n\n let no_handler: Option<CustomMessageHandler> = Option::none();\n let no_inbox_sync: Option<OffchainInboxSync> = Option::none();\n do_sync_state(\n contract_address,\n dummy_compute_note_hash,\n dummy_compute_note_nullifier,\n no_handler,\n no_inbox_sync,\n scope,\n );\n });\n }\n\n unconstrained fn dummy_compute_note_hash(\n _packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n _owner: AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n Option::none()\n }\n\n unconstrained fn dummy_compute_note_nullifier(\n _unique_note_hash: Field,\n _packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n _owner: AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n Option::none()\n }\n}\n"
34
34
  },
35
- "127": {
35
+ "128": {
36
36
  "function_locations": [
37
37
  {
38
38
  "name": "attempt_note_nonce_discovery",
@@ -87,10 +87,10 @@
87
87
  "start": 18937
88
88
  }
89
89
  ],
90
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/nonce_discovery.nr",
90
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/nonce_discovery.nr",
91
91
  "source": "use crate::messages::{discovery::{ComputeNoteHash, ComputeNoteNullifier}, logs::note::MAX_NOTE_PACKED_LEN};\n\nuse crate::logging::{aztecnr_debug_log_format, aztecnr_warn_log_format};\nuse crate::protocol::{\n address::AztecAddress,\n constants::MAX_NOTE_HASHES_PER_TX,\n hash::{compute_note_hash_nonce, compute_siloed_note_hash, compute_unique_note_hash},\n traits::ToField,\n};\n\n/// A struct with the discovered information of a complete note, required for delivery to PXE. Note that this is *not*\n/// the complete note information, since it does not include content, storage slot, etc.\npub(crate) struct DiscoveredNoteInfo {\n pub(crate) note_nonce: Field,\n pub(crate) note_hash: Field,\n pub(crate) inner_nullifier: Field,\n}\n\n/// Searches for note nonces that will result in a note that was emitted in a transaction. While rare, it is possible\n/// for multiple notes to have the exact same packed content and storage slot but different nonces, resulting in\n/// different unique note hashes. Because of this this function returns a *vector* of discovered notes, though in most\n/// cases it will contain a single element.\n///\n/// Due to how nonces are computed, this function requires knowledge of the transaction in which the note was created,\n/// more specifically the list of all unique note hashes in it plus the value of its first nullifier.\npub(crate) unconstrained fn attempt_note_nonce_discovery(\n unique_note_hashes_in_tx: BoundedVec<Field, MAX_NOTE_HASHES_PER_TX>,\n first_nullifier_in_tx: Field,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n contract_address: AztecAddress,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n note_type_id: Field,\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n) -> BoundedVec<DiscoveredNoteInfo, MAX_NOTE_HASHES_PER_TX> {\n let discovered_notes = &mut BoundedVec::new();\n\n aztecnr_debug_log_format!(\n \"Attempting nonce discovery on {0} potential notes on contract {1} for storage slot {2}\",\n )(\n [unique_note_hashes_in_tx.len() as Field, contract_address.to_field(), storage_slot],\n );\n\n let maybe_note_hash = compute_note_hash(\n packed_note,\n owner,\n storage_slot,\n note_type_id,\n contract_address,\n randomness,\n );\n\n if maybe_note_hash.is_none() {\n aztecnr_warn_log_format!(\n \"Unable to compute note hash for note of id {0} with packed length {1}, skipping nonce discovery\",\n )(\n [note_type_id, packed_note.len() as Field],\n );\n } else {\n let note_hash = maybe_note_hash.unwrap();\n let siloed_note_hash = compute_siloed_note_hash(contract_address, note_hash);\n\n // We need to find nonces (typically just one) that result in the siloed note hash that being uniqued into one\n // of the transaction's effects.\n // The nonce is meant to be derived from the index of the note hash in the transaction effects array. However,\n // due to an issue in the kernels the nonce might actually use any of the possible note hash indices - not\n // necessarily the one that corresponds to the note hash. Hence, we need to try them all.\n for i in 0..MAX_NOTE_HASHES_PER_TX {\n let nonce_for_i = compute_note_hash_nonce(first_nullifier_in_tx, i);\n let unique_note_hash_for_i = compute_unique_note_hash(nonce_for_i, siloed_note_hash);\n\n let matching_notes = bvec_filter(\n unique_note_hashes_in_tx,\n |unique_note_hash_in_tx| unique_note_hash_in_tx == unique_note_hash_for_i,\n );\n if matching_notes.len() > 1 {\n let identical_note_hashes = matching_notes.len();\n // Note that we don't actually check that the note hashes array contains unique values, only that the\n // note we found is unique. We don't expect for this to ever happen (it'd indicate a malicious node or\n // PXE, which are both assumed to be cooperative) so testing for it just in case is unnecessary, but we\n // _do_ need to handle it if we find a duplicate.\n panic(\n f\"Received {identical_note_hashes} identical note hashes for a transaction - these should all be unique\",\n )\n } else if matching_notes.len() == 1 {\n let maybe_inner_nullifier_for_i = compute_note_nullifier(\n unique_note_hash_for_i,\n packed_note,\n owner,\n storage_slot,\n note_type_id,\n contract_address,\n randomness,\n );\n\n if maybe_inner_nullifier_for_i.is_none() {\n // TODO: down the line we want to be able to store notes for which we don't know their nullifier,\n // e.g. notes that belong to someone that is not us (and for which we therefore don't know their\n // associated app-siloed nullifer hiding secret key).\n // https://linear.app/aztec-labs/issue/F-265/store-external-notes\n aztecnr_warn_log_format!(\n \"Unable to compute nullifier of unique note {0} with note type id {1} and owner {2}, skipping PXE insertion\",\n )(\n [unique_note_hash_for_i, note_type_id, owner.to_field()],\n );\n } else {\n // Note that while we did check that the note hash is the preimage of a unique note hash, we\n // perform no validations on the nullifier - we fundamentally cannot, since only the application\n // knows how to compute nullifiers. We simply trust it to have provided the correct one: if it\n // hasn't, then PXE may fail to realize that a given note has been nullified already, and calls to\n // the application could result in invalid transactions (with duplicate nullifiers). This is not a\n // concern because an application already has more direct means of making a call to it fail the\n // transaction.\n discovered_notes.push(\n DiscoveredNoteInfo {\n note_nonce: nonce_for_i,\n note_hash,\n inner_nullifier: maybe_inner_nullifier_for_i.unwrap(),\n },\n );\n }\n // We don't exit the loop - it is possible (though rare) for the exact same note content to be present\n // multiple times in the same transaction with different nonces. This typically doesn't happen due to\n // notes containing random values in order to hide their contents.\n }\n }\n }\n\n *discovered_notes\n}\n\n// There is no BoundedVec::filter in the stdlib, so we use this until that is implemented.\nunconstrained fn bvec_filter<Env, T, let MAX_LEN: u32>(\n bvec: BoundedVec<T, MAX_LEN>,\n filter: fn[Env](T) -> bool,\n) -> BoundedVec<T, MAX_LEN> {\n let filtered = &mut BoundedVec::new();\n\n bvec.for_each(|value| {\n if filter(value) {\n filtered.push(value);\n }\n });\n\n *filtered\n}\n\nmod test {\n use crate::{\n messages::logs::note::MAX_NOTE_PACKED_LEN,\n note::{\n note_interface::{NoteHash, NoteType},\n note_metadata::SettledNoteMetadata,\n utils::compute_note_hash_for_nullification,\n },\n oracle::random::random,\n test::mocks::mock_note::MockNote,\n utils::array,\n };\n\n use crate::protocol::{\n address::AztecAddress,\n hash::{compute_note_hash_nonce, compute_siloed_note_hash, compute_unique_note_hash},\n traits::{FromField, Packable},\n };\n\n use super::attempt_note_nonce_discovery;\n\n // This implementation could be simpler, but this serves as a nice example of the expected flow in a real\n // implementation, and as a sanity check that the interface is sufficient.\n\n unconstrained fn compute_note_hash(\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n owner: AztecAddress,\n storage_slot: Field,\n note_type_id: Field,\n _contract_address: AztecAddress,\n randomness: Field,\n ) -> Option<Field> {\n if (note_type_id == MockNote::get_id()) & (packed_note.len() == <MockNote as Packable>::N) {\n let note = MockNote::unpack(array::subarray(packed_note.storage(), 0));\n Option::some(note.compute_note_hash(owner, storage_slot, randomness))\n } else {\n Option::none()\n }\n }\n\n unconstrained fn compute_note_nullifier(\n unique_note_hash: Field,\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n owner: AztecAddress,\n _storage_slot: Field,\n note_type_id: Field,\n _contract_address: AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n if (note_type_id == MockNote::get_id()) & (packed_note.len() == <MockNote as Packable>::N) {\n let note = MockNote::unpack(array::subarray(packed_note.storage(), 0));\n note.compute_nullifier_unconstrained(owner, unique_note_hash)\n } else {\n Option::none()\n }\n }\n\n global VALUE: Field = 7;\n global FIRST_NULLIFIER_IN_TX: Field = 47;\n global CONTRACT_ADDRESS: AztecAddress = AztecAddress::from_field(13);\n global OWNER: AztecAddress = AztecAddress::from_field(14);\n global STORAGE_SLOT: Field = 99;\n global RANDOMNESS: Field = 99;\n\n #[test]\n unconstrained fn no_note_hashes() {\n let unique_note_hashes_in_tx = BoundedVec::new();\n let packed_note = BoundedVec::new();\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n packed_note,\n );\n\n assert_eq(discovered_notes.len(), 0);\n }\n\n #[test]\n unconstrained fn failed_hash_computation_is_ignored() {\n let unique_note_hashes_in_tx = BoundedVec::from_array([random()]);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n |_, _, _, _, _, _| Option::none(),\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::new(),\n );\n\n assert_eq(discovered_notes.len(), 0);\n }\n\n #[test]\n unconstrained fn failed_nullifier_computation_is_ignored() {\n let note_index_in_tx = 2;\n let note_and_data = construct_note(VALUE, note_index_in_tx);\n\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n unique_note_hashes_in_tx.set(note_index_in_tx, note_and_data.unique_note_hash);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n |_, _, _, _, _, _, _| Option::none(),\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(note_and_data.note.pack()),\n );\n\n assert_eq(discovered_notes.len(), 0);\n }\n\n struct NoteAndData {\n note: MockNote,\n note_nonce: Field,\n note_hash: Field,\n unique_note_hash: Field,\n inner_nullifier: Field,\n }\n\n unconstrained fn construct_note(value: Field, note_index_in_tx: u32) -> NoteAndData {\n let note_nonce = compute_note_hash_nonce(FIRST_NULLIFIER_IN_TX, note_index_in_tx);\n\n let hinted_note = MockNote::new(value)\n .contract_address(CONTRACT_ADDRESS)\n .owner(OWNER)\n .randomness(RANDOMNESS)\n .storage_slot(STORAGE_SLOT)\n .note_metadata(SettledNoteMetadata::new(note_nonce).into())\n .build_hinted_note();\n let note = hinted_note.note;\n\n let note_hash = note.compute_note_hash(OWNER, STORAGE_SLOT, RANDOMNESS);\n let unique_note_hash = compute_unique_note_hash(\n note_nonce,\n compute_siloed_note_hash(CONTRACT_ADDRESS, note_hash),\n );\n let inner_nullifier = note\n .compute_nullifier_unconstrained(OWNER, compute_note_hash_for_nullification(hinted_note))\n .expect(f\"Could not compute nullifier for note owned by {OWNER}\");\n\n NoteAndData { note, note_nonce, note_hash, unique_note_hash, inner_nullifier }\n }\n\n #[test]\n unconstrained fn single_note() {\n let note_index_in_tx = 2;\n let note_and_data = construct_note(VALUE, note_index_in_tx);\n\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n unique_note_hashes_in_tx.set(note_index_in_tx, note_and_data.unique_note_hash);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(note_and_data.note.pack()),\n );\n\n assert_eq(discovered_notes.len(), 1);\n let discovered_note = discovered_notes.get(0);\n\n assert_eq(discovered_note.note_nonce, note_and_data.note_nonce);\n assert_eq(discovered_note.note_hash, note_and_data.note_hash);\n assert_eq(discovered_note.inner_nullifier, note_and_data.inner_nullifier);\n }\n\n #[test]\n unconstrained fn multiple_notes_same_preimage() {\n let first_note_index_in_tx = 3;\n let first_note_and_data = construct_note(VALUE, first_note_index_in_tx);\n\n let second_note_index_in_tx = 5;\n let second_note_and_data = construct_note(VALUE, second_note_index_in_tx);\n\n // Both notes have the same preimage (and therefore packed representation), so both should be found in the same\n // call.\n assert_eq(first_note_and_data.note, second_note_and_data.note);\n let packed_note = first_note_and_data.note.pack();\n\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n unique_note_hashes_in_tx.set(first_note_index_in_tx, first_note_and_data.unique_note_hash);\n unique_note_hashes_in_tx.set(second_note_index_in_tx, second_note_and_data.unique_note_hash);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(packed_note),\n );\n\n assert_eq(discovered_notes.len(), 2);\n\n assert(discovered_notes.any(|discovered_note| {\n (discovered_note.note_nonce == first_note_and_data.note_nonce)\n & (discovered_note.note_hash == first_note_and_data.note_hash)\n & (discovered_note.inner_nullifier == first_note_and_data.inner_nullifier)\n }));\n\n assert(discovered_notes.any(|discovered_note| {\n (discovered_note.note_nonce == second_note_and_data.note_nonce)\n & (discovered_note.note_hash == second_note_and_data.note_hash)\n & (discovered_note.inner_nullifier == second_note_and_data.inner_nullifier)\n }));\n }\n\n #[test]\n unconstrained fn single_note_misaligned_nonce() {\n let note_index_in_tx = 2;\n let note_and_data = construct_note(VALUE, note_index_in_tx);\n\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n\n // The note is not at the correct index\n unique_note_hashes_in_tx.set(note_index_in_tx + 1, note_and_data.unique_note_hash);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(note_and_data.note.pack()),\n );\n\n assert_eq(discovered_notes.len(), 1);\n let discovered_note = discovered_notes.get(0);\n\n assert_eq(discovered_note.note_nonce, note_and_data.note_nonce);\n assert_eq(discovered_note.note_hash, note_and_data.note_hash);\n assert_eq(discovered_note.inner_nullifier, note_and_data.inner_nullifier);\n }\n\n #[test]\n unconstrained fn single_note_nonce_with_index_past_note_hashes_in_tx() {\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n\n // The nonce is computed with an index that does not exist in the tx\n let note_index_in_tx = unique_note_hashes_in_tx.len() + 5;\n let note_and_data = construct_note(VALUE, note_index_in_tx);\n\n // The note is inserted at an arbitrary index - its true index is out of the array's bounds\n unique_note_hashes_in_tx.set(2, note_and_data.unique_note_hash);\n\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(note_and_data.note.pack()),\n );\n\n assert_eq(discovered_notes.len(), 1);\n let discovered_note = discovered_notes.get(0);\n\n assert_eq(discovered_note.note_nonce, note_and_data.note_nonce);\n assert_eq(discovered_note.note_hash, note_and_data.note_hash);\n assert_eq(discovered_note.inner_nullifier, note_and_data.inner_nullifier);\n }\n\n #[test(should_fail_with = \"identical note hashes for a transaction\")]\n unconstrained fn duplicate_unique_note_hashes() {\n let note_index_in_tx = 2;\n let note_and_data = construct_note(VALUE, note_index_in_tx);\n\n let mut unique_note_hashes_in_tx = BoundedVec::from_array([\n random(), random(), random(), random(), random(), random(), random(),\n ]);\n\n // The same unique note hash is present in two indices in the array, which is not allowed. Note that we don't\n // test all note hashes for uniqueness, only those that we actually find.\n unique_note_hashes_in_tx.set(note_index_in_tx, note_and_data.unique_note_hash);\n unique_note_hashes_in_tx.set(note_index_in_tx + 1, note_and_data.unique_note_hash);\n\n let _ = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n FIRST_NULLIFIER_IN_TX,\n compute_note_hash,\n compute_note_nullifier,\n CONTRACT_ADDRESS,\n OWNER,\n STORAGE_SLOT,\n RANDOMNESS,\n MockNote::get_id(),\n BoundedVec::from_array(note_and_data.note.pack()),\n );\n }\n}\n"
92
92
  },
93
- "128": {
93
+ "129": {
94
94
  "function_locations": [
95
95
  {
96
96
  "name": "process_partial_note_private_msg",
@@ -101,20 +101,20 @@
101
101
  "start": 3193
102
102
  }
103
103
  ],
104
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/partial_notes.nr",
104
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/partial_notes.nr",
105
105
  "source": "use crate::{\n capsules::CapsuleArray,\n ephemeral::EphemeralArray,\n messages::{\n discovery::{ComputeNoteHash, ComputeNoteNullifier, nonce_discovery::attempt_note_nonce_discovery},\n encoding::MAX_MESSAGE_CONTENT_LEN,\n logs::partial_note::{decode_partial_note_private_message, MAX_PARTIAL_NOTE_PRIVATE_PACKED_LEN},\n processing::{\n enqueue_note_for_validation,\n get_pending_partial_notes_completion_logs,\n log_retrieval_response::{LogRetrievalResponse, MAX_LOG_CONTENT_LEN},\n },\n },\n utils::array,\n};\n\nuse crate::logging::{aztecnr_debug_log_format, aztecnr_warn_log_format};\nuse crate::protocol::{address::AztecAddress, hash::sha256_to_field, traits::{Deserialize, Serialize}};\n\n/// The slot in the PXE capsules where we store a `CapsuleArray` of `DeliveredPendingPartialNote`.\npub(crate) global DELIVERED_PENDING_PARTIAL_NOTE_ARRAY_LENGTH_CAPSULES_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::DELIVERED_PENDING_PARTIAL_NOTE_ARRAY_LENGTH_CAPSULES_SLOT\".as_bytes(),\n);\n\n/// A partial note that was delivered but is still pending completion. Contains the information necessary to find the\n/// log that will complete it and lead to a note being discovered and delivered.\n#[derive(Serialize, Deserialize)]\npub(crate) struct DeliveredPendingPartialNote {\n pub(crate) owner: AztecAddress,\n pub(crate) randomness: Field,\n pub(crate) note_completion_log_tag: Field,\n pub(crate) note_type_id: Field,\n pub(crate) packed_private_note_content: BoundedVec<Field, MAX_PARTIAL_NOTE_PRIVATE_PACKED_LEN>,\n}\n\npub(crate) unconstrained fn process_partial_note_private_msg(\n contract_address: AztecAddress,\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n tx_hash: Field,\n scope: AztecAddress,\n) {\n let decoded = decode_partial_note_private_message(msg_metadata, msg_content);\n\n if decoded.is_some() {\n // We store the information of the partial note we found in a persistent capsule in PXE, so that we can later\n // search for the public log that will complete it.\n let (owner, randomness, note_completion_log_tag, note_type_id, packed_private_note_content) = decoded.unwrap();\n\n let pending = DeliveredPendingPartialNote {\n owner,\n randomness,\n note_completion_log_tag,\n note_type_id,\n packed_private_note_content,\n };\n\n CapsuleArray::at(\n contract_address,\n DELIVERED_PENDING_PARTIAL_NOTE_ARRAY_LENGTH_CAPSULES_SLOT,\n scope,\n )\n .push(pending);\n } else {\n aztecnr_warn_log_format!(\n \"Could not decode partial note private message from tx {0}, ignoring\",\n )(\n [tx_hash],\n );\n }\n}\n\n/// Searches for logs that would result in the completion of pending partial notes, ultimately resulting in the notes\n/// being delivered to PXE if completed.\npub(crate) unconstrained fn fetch_and_process_partial_note_completion_logs(\n contract_address: AztecAddress,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n scope: AztecAddress,\n) {\n let pending_partial_notes = CapsuleArray::at(\n contract_address,\n DELIVERED_PENDING_PARTIAL_NOTE_ARRAY_LENGTH_CAPSULES_SLOT,\n scope,\n );\n\n aztecnr_debug_log_format!(\"{} pending partial notes\")([pending_partial_notes.len() as Field]);\n\n // Each of the pending partial notes might get completed by a log containing its public values. For performance\n // reasons, we fetch all of these logs concurrently and then process them one by one, minimizing the amount of time\n // waiting for the node roundtrip.\n let completion_logs = get_pending_partial_notes_completion_logs(contract_address, pending_partial_notes);\n\n // Each entry in the completion logs array corresponds to the entry in the pending partial notes array at the same\n // index. Each inner array contains all matching LogRetrievalResponses.\n assert_eq(completion_logs.len(), pending_partial_notes.len());\n\n completion_logs.for_each(|i, logs_for_tag: EphemeralArray<LogRetrievalResponse>| {\n let pending_partial_note = pending_partial_notes.get(i);\n let num_logs = logs_for_tag.len();\n\n if num_logs == 0 {\n aztecnr_debug_log_format!(\"Found no completion logs for partial note with tag {}\")(\n [pending_partial_note.note_completion_log_tag],\n );\n\n // Note that we're not removing the pending partial note from the capsule array, so we will continue\n // searching for this tagged log when performing message discovery in the future until we either find it or\n // the entry is somehow removed from the array.\n } else {\n assert(num_logs == 1, f\"Expected at most 1 completion log per partial note, got {num_logs}\");\n\n aztecnr_debug_log_format!(\"Completion log found for partial note with tag {}\")([\n pending_partial_note.note_completion_log_tag,\n ]);\n let log = logs_for_tag.get(0);\n\n // The first field in the completion log payload is the storage slot, followed by the public note\n // content fields.\n let storage_slot = log.log_payload.get(0);\n let public_note_content: BoundedVec<Field, MAX_LOG_CONTENT_LEN - 1> = array::subbvec(log.log_payload, 1);\n\n // Public fields are assumed to all be placed at the end of the packed representation, so we combine\n // the private and public packed fields (i.e. the contents of the private message and public log\n // plaintext) to get the complete packed content.\n let complete_packed_note = array::append(\n pending_partial_note.packed_private_note_content,\n public_note_content,\n );\n\n let discovered_notes = attempt_note_nonce_discovery(\n log.unique_note_hashes_in_tx,\n log.first_nullifier_in_tx,\n compute_note_hash,\n compute_note_nullifier,\n contract_address,\n pending_partial_note.owner,\n storage_slot,\n pending_partial_note.randomness,\n pending_partial_note.note_type_id,\n complete_packed_note,\n );\n\n // TODO(#11627): is there anything reasonable we can do if we get a log but it doesn't result in a note\n // being found?\n if discovered_notes.len() == 0 {\n panic(\n f\"A partial note's completion log did not result in any notes being found - this should never happen\",\n );\n }\n\n aztecnr_debug_log_format!(\"Discovered {0} notes for partial note with tag {1}\")([\n discovered_notes.len() as Field,\n pending_partial_note.note_completion_log_tag,\n ]);\n\n discovered_notes.for_each(|discovered_note| {\n enqueue_note_for_validation(\n contract_address,\n pending_partial_note.owner,\n storage_slot,\n pending_partial_note.randomness,\n discovered_note.note_nonce,\n complete_packed_note,\n discovered_note.note_hash,\n discovered_note.inner_nullifier,\n log.tx_hash,\n );\n });\n\n // Because there is only a single log for a given tag, once we've processed the tagged log then we simply\n // delete the pending work entry, regardless of whether it was actually completed or not.\n pending_partial_notes.remove(i);\n }\n });\n}\n"
106
106
  },
107
- "129": {
107
+ "130": {
108
108
  "function_locations": [
109
109
  {
110
110
  "name": "process_private_event_msg",
111
111
  "start": 547
112
112
  }
113
113
  ],
114
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/private_events.nr",
114
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/private_events.nr",
115
115
  "source": "use crate::{\n event::event_interface::compute_private_serialized_event_commitment,\n logging::aztecnr_warn_log_format,\n messages::{\n encoding::MAX_MESSAGE_CONTENT_LEN, logs::event::decode_private_event_message,\n processing::enqueue_event_for_validation,\n },\n};\nuse crate::protocol::{address::AztecAddress, traits::ToField};\n\npub(crate) unconstrained fn process_private_event_msg(\n contract_address: AztecAddress,\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n tx_hash: Field,\n) {\n let decoded = decode_private_event_message(msg_metadata, msg_content);\n\n if decoded.is_some() {\n let (event_type_id, randomness, serialized_event) = decoded.unwrap();\n\n let event_commitment =\n compute_private_serialized_event_commitment(serialized_event, randomness, event_type_id.to_field());\n\n enqueue_event_for_validation(\n contract_address,\n event_type_id,\n randomness,\n serialized_event,\n event_commitment,\n tx_hash,\n );\n } else {\n aztecnr_warn_log_format!(\n \"Could not decode private event message from tx {0}, ignoring\",\n )(\n [tx_hash],\n );\n }\n}\n"
116
116
  },
117
- "130": {
117
+ "131": {
118
118
  "function_locations": [
119
119
  {
120
120
  "name": "process_private_note_msg",
@@ -125,10 +125,10 @@
125
125
  "start": 3612
126
126
  }
127
127
  ],
128
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/private_notes.nr",
128
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/private_notes.nr",
129
129
  "source": "use crate::{\n logging::{aztecnr_debug_log_format, aztecnr_warn_log_format},\n messages::{\n discovery::{ComputeNoteHash, ComputeNoteNullifier, nonce_discovery::attempt_note_nonce_discovery},\n encoding::MAX_MESSAGE_CONTENT_LEN,\n logs::note::{decode_private_note_message, MAX_NOTE_PACKED_LEN},\n processing::enqueue_note_for_validation,\n },\n protocol::{address::AztecAddress, constants::MAX_NOTE_HASHES_PER_TX, traits::ToField},\n};\n\n/// Processes a private note message, attempting to discover and enqueue any notes it contains.\n///\n/// For each note recovered from the message whose computed note hash matches a unique note hash in the transaction,\n/// a [`NoteValidationRequest`](crate::messages::processing::NoteValidationRequest) is pushed onto the ephemeral array\n/// at `NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT` via\n/// [`enqueue_note_for_validation`](crate::messages::processing::enqueue_note_for_validation). PXE later drains this\n/// array during `validate_and_store_enqueued_notes_and_events`, after which the notes are retrievable via `get_notes`.\n///\n/// Messages that fail to decode, or whose computed note hash matches nothing in the transaction, are discarded\n/// (with a debug or warning log respectively) and produce no validation requests. Decode failures are not treated\n/// as errors since messages may originate from malicious senders and we don't want them to be able to brick message\n/// processing.\n///\n/// ## Use Cases\n///\n/// This function is invoked automatically by aztec-nr when handling messages with the built-in private note type id,\n/// so contracts do not normally need to call it directly. It is exposed for use by custom message handlers (see\n/// [`CustomMessageHandler`](crate::messages::discovery::CustomMessageHandler)) that might want to use the standard\n/// note message processing pipeline while extending it with custom logic.\npub unconstrained fn process_private_note_msg(\n contract_address: AztecAddress,\n tx_hash: Field,\n unique_note_hashes_in_tx: BoundedVec<Field, MAX_NOTE_HASHES_PER_TX>,\n first_nullifier_in_tx: Field,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n) {\n let decoded = decode_private_note_message(msg_metadata, msg_content);\n\n if decoded.is_some() {\n let (note_type_id, owner, storage_slot, randomness, packed_note) = decoded.unwrap();\n\n attempt_note_discovery(\n contract_address,\n tx_hash,\n unique_note_hashes_in_tx,\n first_nullifier_in_tx,\n compute_note_hash,\n compute_note_nullifier,\n owner,\n storage_slot,\n randomness,\n note_type_id,\n packed_note,\n );\n } else {\n aztecnr_warn_log_format!(\n \"Could not decode private note message from tx {0}, ignoring\",\n )(\n [tx_hash],\n );\n }\n}\n\n/// Attempts discovery of a note given information about its contents and the transaction in which it is suspected the\n/// note was created.\nunconstrained fn attempt_note_discovery(\n contract_address: AztecAddress,\n tx_hash: Field,\n unique_note_hashes_in_tx: BoundedVec<Field, MAX_NOTE_HASHES_PER_TX>,\n first_nullifier_in_tx: Field,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n note_type_id: Field,\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n) {\n let discovered_notes = attempt_note_nonce_discovery(\n unique_note_hashes_in_tx,\n first_nullifier_in_tx,\n compute_note_hash,\n compute_note_nullifier,\n contract_address,\n owner,\n storage_slot,\n randomness,\n note_type_id,\n packed_note,\n );\n\n if discovered_notes.len() == 0 {\n // A private note message that results in no discovered notes means none of the computed note hashes matched\n // any unique note hash in the transaction. This could indicate a malformed or malicious message (e.g. a sender\n // providing bogus note content).\n aztecnr_warn_log_format!(\n \"Discarding private note message from tx {0} for contract {1}: no matching note hash found in the tx\",\n )(\n [tx_hash, contract_address.to_field()],\n );\n } else {\n aztecnr_debug_log_format!(\n \"Discovered {0} notes from a private message for contract {1}\",\n )(\n [discovered_notes.len() as Field, contract_address.to_field()],\n );\n }\n\n discovered_notes.for_each(|discovered_note| {\n enqueue_note_for_validation(\n contract_address,\n owner,\n storage_slot,\n randomness,\n discovered_note.note_nonce,\n packed_note,\n discovered_note.note_hash,\n discovered_note.inner_nullifier,\n tx_hash,\n );\n });\n}\n"
130
130
  },
131
- "131": {
131
+ "132": {
132
132
  "function_locations": [
133
133
  {
134
134
  "name": "process_message_ciphertext",
@@ -139,10 +139,10 @@
139
139
  "start": 2868
140
140
  }
141
141
  ],
142
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/discovery/process_message.nr",
142
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/discovery/process_message.nr",
143
143
  "source": "use crate::messages::{\n discovery::{\n ComputeNoteHash, ComputeNoteNullifier, CustomMessageHandler, partial_notes::process_partial_note_private_msg,\n private_events::process_private_event_msg, private_notes::process_private_note_msg,\n },\n encoding::{decode_message, MESSAGE_CIPHERTEXT_LEN, MESSAGE_PLAINTEXT_LEN},\n encryption::{aes128::AES128, message_encryption::MessageEncryption},\n msg_type::{\n MIN_CUSTOM_MSG_TYPE_ID, PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID, PRIVATE_EVENT_MSG_TYPE_ID, PRIVATE_NOTE_MSG_TYPE_ID,\n },\n processing::MessageContext,\n};\n\nuse crate::logging::{aztecnr_debug_log, aztecnr_warn_log_format};\nuse crate::protocol::address::AztecAddress;\n\n/// Processes a message that can contain notes, partial notes, or events.\n///\n/// Notes result in nonce discovery being performed prior to delivery, which requires knowledge of the transaction hash\n/// in which the notes would've been created (typically the same transaction in which the log was emitted), along with\n/// the list of unique note hashes in said transaction and the `compute_note_hash` and `compute_note_nullifier`\n/// functions. Once discovered, the notes are enqueued for validation.\n///\n/// Partial notes result in a pending partial note entry being stored in a PXE capsule, which will later be retrieved\n/// to search for the note's completion public log.\n///\n/// Events are processed by computing an event commitment from the serialized event data and its randomness field, then\n/// enqueueing the event data and commitment for validation.\npub unconstrained fn process_message_ciphertext(\n contract_address: AztecAddress,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n process_custom_message: Option<CustomMessageHandler>,\n message_ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n message_context: MessageContext,\n recipient: AztecAddress,\n) {\n let message_plaintext_option = AES128::decrypt(message_ciphertext, recipient, contract_address);\n\n if message_plaintext_option.is_some() {\n process_message_plaintext(\n contract_address,\n compute_note_hash,\n compute_note_nullifier,\n process_custom_message,\n message_plaintext_option.unwrap(),\n message_context,\n recipient,\n );\n } else {\n aztecnr_warn_log_format!(\"Could not decrypt message ciphertext from tx {0}, ignoring\")([message_context.tx_hash]);\n }\n}\n\npub(crate) unconstrained fn process_message_plaintext(\n contract_address: AztecAddress,\n compute_note_hash: ComputeNoteHash,\n compute_note_nullifier: ComputeNoteNullifier,\n process_custom_message: Option<CustomMessageHandler>,\n message_plaintext: BoundedVec<Field, MESSAGE_PLAINTEXT_LEN>,\n message_context: MessageContext,\n recipient: AztecAddress,\n) {\n // The first thing to do after decrypting the message is to determine what type of message we're processing. We\n // have 3 message types: private notes, partial notes and events.\n\n // We decode the message to obtain the message type id, metadata and content.\n let decoded = decode_message(message_plaintext);\n\n if decoded.is_some() {\n let (msg_type_id, msg_metadata, msg_content) = decoded.unwrap();\n\n if msg_type_id == PRIVATE_NOTE_MSG_TYPE_ID {\n aztecnr_debug_log!(\"Processing private note msg\");\n\n process_private_note_msg(\n contract_address,\n message_context.tx_hash,\n message_context.unique_note_hashes_in_tx,\n message_context.first_nullifier_in_tx,\n compute_note_hash,\n compute_note_nullifier,\n msg_metadata,\n msg_content,\n );\n } else if msg_type_id == PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID {\n aztecnr_debug_log!(\"Processing partial note private msg\");\n\n process_partial_note_private_msg(\n contract_address,\n msg_metadata,\n msg_content,\n message_context.tx_hash,\n recipient,\n );\n } else if msg_type_id == PRIVATE_EVENT_MSG_TYPE_ID {\n aztecnr_debug_log!(\"Processing private event msg\");\n\n process_private_event_msg(\n contract_address,\n msg_metadata,\n msg_content,\n message_context.tx_hash,\n );\n } else if msg_type_id < MIN_CUSTOM_MSG_TYPE_ID {\n // The message type ID falls in the range reserved for aztec.nr built-in types but wasn't matched above.\n // This most likely means the message is malformed or a custom message was incorrectly assigned a reserved\n // ID. Custom message types must use IDs allocated via `custom_msg_type_id`.\n aztecnr_warn_log_format!(\n \"Message type ID {0} is in the reserved range but is not recognized, ignoring. See https://docs.aztec.network/errors/3\",\n )(\n [msg_type_id as Field],\n );\n } else if process_custom_message.is_some() {\n process_custom_message.unwrap()(\n contract_address,\n msg_type_id,\n msg_metadata,\n msg_content,\n message_context,\n recipient,\n );\n } else {\n // A custom message was received but no handler is configured. This likely means the contract emits custom\n // messages but forgot to register a handler via `AztecConfig::custom_message_handler`.\n aztecnr_warn_log_format!(\n \"Received custom message with type id {0} but no handler is configured, ignoring. See https://docs.aztec.network/errors/2\",\n )(\n [msg_type_id as Field],\n );\n }\n } else {\n aztecnr_warn_log_format!(\"Could not decode message plaintext from tx {0}, ignoring\")([message_context.tx_hash]);\n }\n}\n"
144
144
  },
145
- "132": {
145
+ "133": {
146
146
  "function_locations": [
147
147
  {
148
148
  "name": "encode_message",
@@ -201,10 +201,10 @@
201
201
  "start": 13280
202
202
  }
203
203
  ],
204
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/encoding.nr",
204
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/encoding.nr",
205
205
  "source": "// TODO(#12750): don't make these values assume we're using AES.\nuse crate::protocol::constants::PRIVATE_LOG_CIPHERTEXT_LEN;\nuse crate::utils::array;\n\n// We reassign to the constant here to communicate the distinction between a log and a message. In Aztec.nr, unlike in\n// protocol circuits, we have a concept of a message that can be emitted either as a private log or as an offchain\n// message. Message is a piece of data that is to be eventually delivered to a contract via the `process_message(...)`\n// utility function function that is injected by the #[aztec] macro. Note: PRIVATE_LOG_CIPHERTEXT_LEN is an amount of\n// fields, so MESSAGE_CIPHERTEXT_LEN is the size of the message in fields.\npub global MESSAGE_CIPHERTEXT_LEN: u32 = PRIVATE_LOG_CIPHERTEXT_LEN;\n\n// TODO(#12750): The global variables below should not be here as they are AES128 specific.\n// The header plaintext is 2 bytes (ciphertext length), padded to the 16-byte AES block size by PKCS#7.\npub(crate) global HEADER_CIPHERTEXT_SIZE_IN_BYTES: u32 = 16;\n// AES PKCS#7 always adds at least one byte of padding. Since each plaintext field is 32 bytes (a multiple of the\n// 16-byte AES block size), a full 16-byte padding block is always appended.\npub(crate) global AES128_PKCS7_EXPANSION_IN_BYTES: u32 = 16;\n\npub global EPH_PK_X_SIZE_IN_FIELDS: u32 = 1;\n\n// (15 - 1) * 31 - 16 - 16 = 402. Note: We multiply by 31 because ciphertext bytes are stored in fields using\n// encode_bytes_as_fields, which packs 31 bytes per field (since a Field is ~254 bits and can safely store 31 whole\n// bytes).\npub(crate) global MESSAGE_PLAINTEXT_SIZE_IN_BYTES: u32 = (MESSAGE_CIPHERTEXT_LEN - EPH_PK_X_SIZE_IN_FIELDS) * 31\n - HEADER_CIPHERTEXT_SIZE_IN_BYTES\n - AES128_PKCS7_EXPANSION_IN_BYTES;\n// The plaintext bytes represent Field values that were originally serialized using encode_fields_as_bytes, which\n// converts each Field to 32 bytes. To convert the plaintext bytes back to fields, we divide by 32. 402 / 32 = 12\npub global MESSAGE_PLAINTEXT_LEN: u32 = MESSAGE_PLAINTEXT_SIZE_IN_BYTES / 32;\n\npub global MESSAGE_EXPANDED_METADATA_LEN: u32 = 1;\n\n// The standard message layout is composed of:\n// - an initial field called the 'expanded metadata'\n// - an arbitrary number of fields following that called the 'message content'\n//\n// ```\n// message: [ msg_expanded_metadata, ...msg_content ]\n// ```\n//\n// The expanded metadata itself is interpreted as a u128, of which:\n// - the upper 64 bits are the message type id\n// - the lower 64 bits are called the 'message metadata'\n//\n// ```\n// msg_expanded_metadata: [ msg_type_id | msg_metadata ]\n// <--- 64 bits --->|<--- 64 bits --->\n// ```\n//\n// The meaning of the message metadata and message content depend on the value of the message type id. Note that there\n// is nothing special about the message metadata, it _can_ be considered part of the content. It just has a different\n// name to make it distinct from the message content given that it is not a full field.\n\n/// The maximum length of a message's content, i.e. not including the expanded message metadata.\npub global MAX_MESSAGE_CONTENT_LEN: u32 = MESSAGE_PLAINTEXT_LEN - MESSAGE_EXPANDED_METADATA_LEN;\n\n/// Encodes a message following aztec-nr's standard message encoding. This message can later be decoded with\n/// `decode_message` to retrieve the original values.\n///\n/// - The `msg_type` is an identifier that groups types of messages that are all processed the same way, e.g. private\n/// notes or events. Possible values are defined in `aztec::messages::msg_type`.\n/// - The `msg_metadata` and `msg_content` are the values stored in the message, whose meaning depends on the\n/// `msg_type`. The only special thing about `msg_metadata` that separates it from `msg_content` is that it is a u64\n/// instead of a full Field (due to details of how messages are encoded), allowing applications that can fit values\n/// into this smaller variable to achieve higher data efficiency.\npub fn encode_message<let N: u32>(\n msg_type: u64,\n msg_metadata: u64,\n msg_content: [Field; N],\n) -> [Field; (N + MESSAGE_EXPANDED_METADATA_LEN)] {\n std::static_assert(\n msg_content.len() <= MAX_MESSAGE_CONTENT_LEN,\n \"Invalid message content: it must have a length of at most MAX_MESSAGE_CONTENT_LEN\",\n );\n\n // If MESSAGE_EXPANDED_METADATA_LEN is changed, causing the assertion below to fail, then the destructuring of the\n // message encoding below must be updated as well.\n std::static_assert(\n MESSAGE_EXPANDED_METADATA_LEN == 1,\n \"unexpected value for MESSAGE_EXPANDED_METADATA_LEN\",\n );\n let mut message: [Field; (N + MESSAGE_EXPANDED_METADATA_LEN)] = std::mem::zeroed();\n\n message[0] = to_expanded_metadata(msg_type, msg_metadata);\n for i in 0..msg_content.len() {\n message[MESSAGE_EXPANDED_METADATA_LEN + i] = msg_content[i];\n }\n\n message\n}\n\n/// Decodes a standard aztec-nr message, i.e. one created via `encode_message`, returning the original encoded values.\n///\n/// Returns `None` if the message is empty or has invalid (>128 bit) expanded metadata.\n///\n/// Note that `encode_message` returns a fixed size array while this function takes a `BoundedVec`: this is because\n/// prior to decoding the message type is unknown, and consequentially not known at compile time. If working with\n/// fixed-size messages, consider using `BoundedVec::from_array` to convert them.\npub unconstrained fn decode_message(\n message: BoundedVec<Field, MESSAGE_PLAINTEXT_LEN>,\n) -> Option<(u64, u64, BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>)> {\n Option::some(message)\n .and_then(|message| {\n // If MESSAGE_EXPANDED_METADATA_LEN is changed, causing the assertion below to fail, then the destructuring\n // of the\n // message encoding below must be updated as well.\n std::static_assert(\n MESSAGE_EXPANDED_METADATA_LEN == 1,\n \"unexpected value for MESSAGE_EXPANDED_METADATA_LEN\",\n );\n if message.len() < MESSAGE_EXPANDED_METADATA_LEN {\n Option::none()\n } else {\n Option::some(message.get(0))\n }\n })\n .and_then(|msg_expanded_metadata| from_expanded_metadata(msg_expanded_metadata))\n .map(|(msg_type_id, msg_metadata)| {\n let msg_content = array::subbvec(message, MESSAGE_EXPANDED_METADATA_LEN);\n (msg_type_id, msg_metadata, msg_content)\n })\n}\n\nglobal U64_SHIFT_MULTIPLIER: Field = 2.pow_32(64);\n\nfn to_expanded_metadata(msg_type: u64, msg_metadata: u64) -> Field {\n // We use multiplication instead of bit shifting operations to shift the type bits as bit shift operations are\n // expensive in circuits.\n let type_field: Field = (msg_type as Field) * U64_SHIFT_MULTIPLIER;\n let msg_metadata_field = msg_metadata as Field;\n\n type_field + msg_metadata_field\n}\n\nglobal TWO_POW_128: Field = 2.pow_32(128);\n\n/// Unpacks expanded metadata into (msg_type, msg_metadata). Returns `None` if `input >= 2^128`.\nfn from_expanded_metadata(input: Field) -> Option<(u64, u64)> {\n if input.lt(TWO_POW_128) {\n let msg_metadata = (input as u64);\n let msg_type = ((input - (msg_metadata as Field)) / U64_SHIFT_MULTIPLIER) as u64;\n // Use division instead of bit shift since bit shifts are expensive in circuits\n Option::some((msg_type, msg_metadata))\n } else {\n Option::none()\n }\n}\n\nmod tests {\n use crate::utils::array::subarray::subarray;\n use super::{\n decode_message, encode_message, from_expanded_metadata, MAX_MESSAGE_CONTENT_LEN, to_expanded_metadata,\n TWO_POW_128,\n };\n\n global U64_MAX: u64 = (2.pow_32(64) - 1) as u64;\n global U128_MAX: Field = (2.pow_32(128) - 1);\n\n #[test]\n unconstrained fn encode_decode_empty_message(msg_type: u64, msg_metadata: u64) {\n let encoded = encode_message(msg_type, msg_metadata, []);\n let (decoded_msg_type, decoded_msg_metadata, decoded_msg_content) =\n decode_message(BoundedVec::from_array(encoded)).unwrap();\n\n assert_eq(decoded_msg_type, msg_type);\n assert_eq(decoded_msg_metadata, msg_metadata);\n assert_eq(decoded_msg_content.len(), 0);\n }\n\n #[test]\n unconstrained fn encode_decode_short_message(\n msg_type: u64,\n msg_metadata: u64,\n msg_content: [Field; MAX_MESSAGE_CONTENT_LEN / 2],\n ) {\n let encoded = encode_message(msg_type, msg_metadata, msg_content);\n let (decoded_msg_type, decoded_msg_metadata, decoded_msg_content) =\n decode_message(BoundedVec::from_array(encoded)).unwrap();\n\n assert_eq(decoded_msg_type, msg_type);\n assert_eq(decoded_msg_metadata, msg_metadata);\n assert_eq(decoded_msg_content.len(), msg_content.len());\n assert_eq(subarray(decoded_msg_content.storage(), 0), msg_content);\n }\n\n #[test]\n unconstrained fn encode_decode_full_message(\n msg_type: u64,\n msg_metadata: u64,\n msg_content: [Field; MAX_MESSAGE_CONTENT_LEN],\n ) {\n let encoded = encode_message(msg_type, msg_metadata, msg_content);\n let (decoded_msg_type, decoded_msg_metadata, decoded_msg_content) =\n decode_message(BoundedVec::from_array(encoded)).unwrap();\n\n assert_eq(decoded_msg_type, msg_type);\n assert_eq(decoded_msg_metadata, msg_metadata);\n assert_eq(decoded_msg_content.len(), msg_content.len());\n assert_eq(subarray(decoded_msg_content.storage(), 0), msg_content);\n }\n\n #[test]\n unconstrained fn to_expanded_metadata_packing() {\n // Test case 1: All bits set\n let packed = to_expanded_metadata(U64_MAX, U64_MAX);\n let (msg_type, msg_metadata) = from_expanded_metadata(packed).unwrap();\n assert_eq(msg_type, U64_MAX);\n assert_eq(msg_metadata, U64_MAX);\n\n // Test case 2: Only log type bits set\n let packed = to_expanded_metadata(U64_MAX, 0);\n let (msg_type, msg_metadata) = from_expanded_metadata(packed).unwrap();\n assert_eq(msg_type, U64_MAX);\n assert_eq(msg_metadata, 0);\n\n // Test case 3: Only msg_metadata bits set\n let packed = to_expanded_metadata(0, U64_MAX);\n let (msg_type, msg_metadata) = from_expanded_metadata(packed).unwrap();\n assert_eq(msg_type, 0);\n assert_eq(msg_metadata, U64_MAX);\n\n // Test case 4: No bits set\n let packed = to_expanded_metadata(0, 0);\n let (msg_type, msg_metadata) = from_expanded_metadata(packed).unwrap();\n assert_eq(msg_type, 0);\n assert_eq(msg_metadata, 0);\n }\n\n #[test]\n unconstrained fn from_expanded_metadata_packing() {\n // Test case 1: All bits set\n let input = U128_MAX as Field;\n let (msg_type, msg_metadata) = from_expanded_metadata(input).unwrap();\n assert_eq(msg_type, U64_MAX);\n assert_eq(msg_metadata, U64_MAX);\n\n // Test case 2: Only log type bits set\n let input = (U128_MAX - U64_MAX as Field);\n let (msg_type, msg_metadata) = from_expanded_metadata(input).unwrap();\n assert_eq(msg_type, U64_MAX);\n assert_eq(msg_metadata, 0);\n\n // Test case 3: Only msg_metadata bits set\n let input = U64_MAX as Field;\n let (msg_type, msg_metadata) = from_expanded_metadata(input).unwrap();\n assert_eq(msg_type, 0);\n assert_eq(msg_metadata, U64_MAX);\n\n // Test case 4: No bits set\n let input = 0;\n let (msg_type, msg_metadata) = from_expanded_metadata(input).unwrap();\n assert_eq(msg_type, 0);\n assert_eq(msg_metadata, 0);\n }\n\n #[test]\n unconstrained fn to_from_expanded_metadata(original_msg_type: u64, original_msg_metadata: u64) {\n let packed = to_expanded_metadata(original_msg_type, original_msg_metadata);\n let (unpacked_msg_type, unpacked_msg_metadata) = from_expanded_metadata(packed).unwrap();\n\n assert_eq(original_msg_type, unpacked_msg_type);\n assert_eq(original_msg_metadata, unpacked_msg_metadata);\n }\n\n #[test]\n unconstrained fn encode_decode_max_size_message() {\n let msg_type_id: u64 = 42;\n let msg_metadata: u64 = 99;\n let mut msg_content = [0; MAX_MESSAGE_CONTENT_LEN];\n for i in 0..MAX_MESSAGE_CONTENT_LEN {\n msg_content[i] = i as Field;\n }\n\n let encoded = encode_message(msg_type_id, msg_metadata, msg_content);\n let (decoded_type_id, decoded_metadata, decoded_content) =\n decode_message(BoundedVec::from_array(encoded)).unwrap();\n\n assert_eq(decoded_type_id, msg_type_id);\n assert_eq(decoded_metadata, msg_metadata);\n assert_eq(decoded_content, BoundedVec::from_array(msg_content));\n }\n\n #[test(should_fail_with = \"Invalid message content: it must have a length of at most MAX_MESSAGE_CONTENT_LEN\")]\n fn encode_oversized_message_fails() {\n let msg_content = [0; MAX_MESSAGE_CONTENT_LEN + 1];\n let _ = encode_message(0, 0, msg_content);\n }\n\n #[test]\n unconstrained fn decode_empty_message_returns_none() {\n assert(decode_message(BoundedVec::new()).is_none());\n }\n\n #[test]\n unconstrained fn decode_message_with_oversized_metadata_returns_none() {\n let message = BoundedVec::from_array([TWO_POW_128]);\n assert(decode_message(message).is_none());\n }\n}\n"
206
206
  },
207
- "133": {
207
+ "134": {
208
208
  "function_locations": [
209
209
  {
210
210
  "name": "extract_many_close_to_uniformly_random_256_bits_using_poseidon2",
@@ -248,49 +248,49 @@
248
248
  },
249
249
  {
250
250
  "name": "test::encrypt_decrypt_random",
251
- "start": 27182
251
+ "start": 27098
252
252
  },
253
253
  {
254
254
  "name": "test::encrypt_to_invalid_address",
255
- "start": 28028
255
+ "start": 27944
256
256
  },
257
257
  {
258
258
  "name": "test::pkcs7_padding_always_adds_at_least_one_byte",
259
- "start": 28478
259
+ "start": 28394
260
260
  },
261
261
  {
262
262
  "name": "test::encrypt_decrypt_max_size_plaintext",
263
- "start": 29042
263
+ "start": 28958
264
264
  },
265
265
  {
266
266
  "name": "test::encrypt_oversized_plaintext",
267
- "start": 29941
267
+ "start": 29857
268
268
  },
269
269
  {
270
270
  "name": "test::random_address_point_produces_valid_points",
271
- "start": 30299
271
+ "start": 30215
272
272
  },
273
273
  {
274
274
  "name": "test::decrypt_invalid_ephemeral_public_key",
275
- "start": 30750
275
+ "start": 30666
276
276
  },
277
277
  {
278
278
  "name": "test::decrypt_returns_none_on_empty_ciphertext",
279
- "start": 31595
279
+ "start": 31511
280
280
  },
281
281
  {
282
282
  "name": "test::decrypt_returns_none_on_empty_header",
283
- "start": 32149
283
+ "start": 32065
284
284
  },
285
285
  {
286
286
  "name": "test::decrypt_returns_none_on_oversized_ciphertext_length",
287
- "start": 33075
287
+ "start": 32991
288
288
  }
289
289
  ],
290
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/encryption/aes128.nr",
291
- "source": "use crate::protocol::{address::AztecAddress, public_keys::AddressPoint, traits::ToField};\n\nuse crate::{\n keys::{\n ecdh_shared_secret::{\n compute_app_siloed_shared_secret, derive_ecdh_shared_secret, derive_shared_secret_field_mask,\n derive_shared_secret_subkey,\n },\n ephemeral::generate_positive_ephemeral_key_pair,\n },\n logging::aztecnr_warn_log_format,\n messages::{\n encoding::{\n EPH_PK_X_SIZE_IN_FIELDS, HEADER_CIPHERTEXT_SIZE_IN_BYTES, MESSAGE_CIPHERTEXT_LEN, MESSAGE_PLAINTEXT_LEN,\n MESSAGE_PLAINTEXT_SIZE_IN_BYTES,\n },\n encryption::message_encryption::MessageEncryption,\n logs::arithmetic_generics_utils::{\n get_arr_of_size__message_bytes__from_PT, get_arr_of_size__message_bytes_padding__from_PT,\n },\n },\n oracle::{aes128_decrypt::try_aes128_decrypt, random::random, shared_secret::get_shared_secret},\n utils::{\n array,\n conversion::{\n bytes_as_fields::{decode_bytes_from_fields, encode_bytes_as_fields},\n fields_as_bytes::{encode_fields_as_bytes, try_decode_fields_from_bytes},\n },\n point::point_from_x_coord_and_sign,\n },\n};\n\nuse std::aes128::aes128_encrypt;\n\n/// Computes N close-to-uniformly-random 256 bits from a given app-siloed shared secret.\n///\n/// NEVER re-use the same iv and sym_key. DO NOT call this function more than once with the same s_app.\n///\n/// This function is only known to be safe if s_app is derived from combining a random ephemeral key with an\n/// address point and a contract address. See big comment within the body of the function.\nfn extract_many_close_to_uniformly_random_256_bits_using_poseidon2<let N: u32>(s_app: Field) -> [[u8; 32]; N] {\n /*\n * Unsafe because of https://eprint.iacr.org/2010/264.pdf Page 13, Lemma 2 (and the two paragraphs below it).\n *\n * If you call this function, you need to be careful and aware of how the arg `s_app` has been derived.\n *\n * The paper says that the way you derive aes keys and IVs should be fine with poseidon2 (modelled as a RO),\n * as long as you _don't_ use Poseidon2 as a PRG to generate the two exponents x & y which multiply to the\n * shared secret S:\n *\n * S = [x*y]*G.\n *\n * (Otherwise, you would have to \"key\" poseidon2, i.e. generate a uniformly string K which can be public and\n * compute Hash(x) as poseidon(K,x)).\n * In that lemma, k would be 2*254=508, and m would be the number of points on the grumpkin curve (which is\n * close to r according to the Hasse bound).\n *\n * Our shared secret S is [esk * address_sk] * G, and the question is: Can we compute hash(S) using poseidon2\n * instead of sha256?\n *\n * Well, esk is random and not generated with poseidon2, so that's good.\n * What about address_sk?\n * Well, address_sk = poseidon2(stuff) + ivsk, so there was some discussion about whether address_sk is\n * independent of poseidon2. Given that ivsk is random and independent of poseidon2, the address_sk is also\n * independent of poseidon2.\n *\n * Tl;dr: we believe it's safe to hash S = [esk * address_sk] * G using poseidon2, in order to derive a\n * symmetric key.\n *\n * If you're calling this function for a differently-derived `s_app`, be careful.\n */\n \n\n /* The output of this function needs to be 32 random bytes.\n * A single field won't give us 32 bytes of entropy. So we compute two \"random\" fields, by poseidon-hashing\n * with two different indices. We then extract the last 16 (big endian) bytes of each \"random\" field.\n * Note: we use to_be_bytes because it's slightly more efficient. But we have to be careful not to take bytes\n * from the \"big end\", because the \"big\" byte is not uniformly random over the byte: it only has < 6 bits of\n * randomness, because it's the big end of a 254-bit field element.\n */\n\n let mut all_bytes: [[u8; 32]; N] = std::mem::zeroed();\n std::static_assert(N < 256, \"N too large\");\n for k in 0..N {\n let rand1: Field = derive_shared_secret_subkey(s_app, 2 * k);\n let rand2: Field = derive_shared_secret_subkey(s_app, 2 * k + 1);\n\n let rand1_bytes: [u8; 32] = rand1.to_be_bytes();\n let rand2_bytes: [u8; 32] = rand2.to_be_bytes();\n\n let mut bytes: [u8; 32] = [0; 32];\n for i in 0..16 {\n // We take bytes from the \"little end\" of the be-bytes arrays:\n let j = 32 - i - 1;\n bytes[i] = rand1_bytes[j];\n bytes[16 + i] = rand2_bytes[j];\n }\n\n all_bytes[k] = bytes;\n }\n\n all_bytes\n}\n\nfn derive_aes_symmetric_key_and_iv_from_uniformly_random_256_bits<let N: u32>(\n many_random_256_bits: [[u8; 32]; N],\n) -> [([u8; 16], [u8; 16]); N] {\n // Many (sym_key, iv) pairs:\n let mut many_pairs: [([u8; 16], [u8; 16]); N] = std::mem::zeroed();\n for k in 0..N {\n let random_256_bits = many_random_256_bits[k];\n let mut sym_key = [0; 16];\n let mut iv = [0; 16];\n for i in 0..16 {\n sym_key[i] = random_256_bits[i];\n iv[i] = random_256_bits[i + 16];\n }\n many_pairs[k] = (sym_key, iv);\n }\n\n many_pairs\n}\n\npub fn derive_aes_symmetric_key_and_iv_from_shared_secret<let N: u32>(s_app: Field) -> [([u8; 16], [u8; 16]); N] {\n let many_random_256_bits: [[u8; 32]; N] = extract_many_close_to_uniformly_random_256_bits_using_poseidon2(s_app);\n\n derive_aes_symmetric_key_and_iv_from_uniformly_random_256_bits(many_random_256_bits)\n}\n\npub struct AES128 {}\n\nimpl MessageEncryption for AES128 {\n\n /// AES128-CBC encryption for Aztec protocol messages.\n ///\n /// ## Overview\n ///\n /// The plaintext is an array of up to `MESSAGE_PLAINTEXT_LEN` (12) fields. The output is always exactly\n /// `MESSAGE_CIPHERTEXT_LEN` (15) fields, regardless of plaintext size. All output fields except the\n /// ephemeral public key are uniformly random `Field` values to any observer without knowledge of the\n /// shared secret, making all encrypted messages indistinguishable by size or content.\n ///\n /// ## PKCS#7 Padding\n ///\n /// AES operates on 16-byte blocks, so the plaintext must be padded to a multiple of 16. PKCS#7 padding always\n /// adds at least 1 byte (so the receiver can always detect and strip it), which means:\n /// - 1 B plaintext -> 15 B padding -> 16 B total\n /// - 15 B plaintext -> 1 B padding -> 16 B total\n /// - 16 B plaintext -> 16 B padding -> 32 B total (full extra block)\n ///\n /// In general: if the plaintext is already a multiple of 16, a full 16-byte padding block is appended.\n ///\n /// ## Encryption Steps\n ///\n /// **1. Body encryption.** The plaintext fields are serialized to bytes (32 bytes per field) and AES-128-CBC\n /// encrypted. Since 32 is a multiple of 16, PKCS#7 always adds a full 16-byte padding block (see above):\n ///\n /// ```text\n /// +---------------------------------------------+\n /// | body ct |\n /// | PlaintextLen*32 + 16 B |\n /// +-------------------------------+--------------+\n /// | encrypted plaintext fields | PKCS#7 (16B) |\n /// | (serialized at 32 B each) | |\n /// +-------------------------------+--------------+\n /// ```\n ///\n /// **2. Header encryption.** The byte length of `body_ct` is stored as a 2-byte big-endian integer. This 2-byte\n /// header plaintext is then AES-encrypted; PKCS#7 pads the remaining 14 bytes to fill one 16-byte AES block,\n /// producing a 16-byte header ciphertext:\n ///\n /// ```text\n /// +---------------------------+\n /// | header ct |\n /// | 16 B |\n /// +--------+------------------+\n /// | body ct| PKCS#7 (14B) |\n /// | length | |\n /// | (2 B) | |\n /// +--------+------------------+\n /// ```\n ///\n /// ## Wire Format\n ///\n /// Messages are transmitted as fields, not bytes. A field is ~254 bits and can safely store 31 whole bytes, so\n /// we need to pack our byte data into 31-byte chunks. This packing drives the wire format.\n ///\n /// **Step 1 -- Assemble bytes.** The ciphertexts are laid out in a byte array, padded with zero bytes to a\n /// multiple of 31 so it divides evenly into fields:\n ///\n /// ```text\n /// +------------+-------------------------+---------+\n /// | header ct | body ct | byte pad|\n /// | 16 B | PlaintextLen*32 + 16 B | (zeros) |\n /// +------------+-------------------------+---------+\n /// |<-------- padded to a multiple of 31 B -------->|\n /// ```\n ///\n /// **Step 2 -- Pack and mask.** The byte array is split into 31-byte chunks, each stored in one field. A\n /// Poseidon2-derived mask (see `derive_shared_secret_field_mask`) is added to each so that the resulting\n /// fields appear as uniformly random `Field` values to any observer without knowledge of the shared secret,\n /// hiding the fact that the underlying ciphertext consists of 128-bit AES blocks.\n ///\n /// **Step 3 -- Assemble ciphertext.** The ephemeral public key x-coordinate is prepended and random field padding\n /// is appended to fill to 15 fields:\n ///\n /// ```text\n /// +----------+-------------------------+-------------------+\n /// | eph_pk.x | masked message fields | random field pad |\n /// | | (packed 31 B per field) | (fills to 15) |\n /// +----------+-------------------------+-------------------+\n /// |<---------- MESSAGE_CIPHERTEXT_LEN = 15 fields -------->|\n /// ```\n ///\n /// ## Key Derivation\n ///\n /// The raw ECDH shared secret point is first app-siloed into a scalar `s_app` by hashing with the contract\n /// address (see\n /// [`compute_app_siloed_shared_secret`](crate::keys::ecdh_shared_secret::compute_app_siloed_shared_secret)).\n /// Two (key, IV) pairs are then derived from `s_app` via indexed Poseidon2 hashing: one pair for the body\n /// ciphertext and one for the header ciphertext.\n fn encrypt<let PlaintextLen: u32>(\n plaintext: [Field; PlaintextLen],\n recipient: AztecAddress,\n contract_address: AztecAddress,\n ) -> [Field; MESSAGE_CIPHERTEXT_LEN] {\n std::static_assert(\n PlaintextLen <= MESSAGE_PLAINTEXT_LEN,\n \"Plaintext length exceeds MESSAGE_PLAINTEXT_LEN\",\n );\n\n // AES 128 operates on bytes, not fields, so we need to convert the fields to bytes. (This process is then\n // reversed when processing the message in `process_message_ciphertext`)\n let plaintext_bytes = encode_fields_as_bytes(plaintext);\n\n // Derive ECDH shared secret with recipient using a fresh ephemeral keypair.\n let (eph_sk, eph_pk) = generate_positive_ephemeral_key_pair();\n\n let raw_shared_secret = derive_ecdh_shared_secret(\n eph_sk,\n recipient\n .to_address_point()\n .unwrap_or_else(|| {\n aztecnr_warn_log_format!(\n \"Attempted to encrypt message for an invalid recipient ({0})\",\n )(\n [recipient.to_field()],\n );\n\n // Safety: if the recipient is an invalid address, then it is not possible to encrypt a message for\n // them because we cannot establish a shared secret. This is never expected to occur during normal\n // operation. However, it is technically possible for us to receive an invalid address, and we must\n // therefore handle it. We could simply fail, but that'd introduce a potential security issue in\n // which an attacker forces a contract to encrypt a message for an invalid address, resulting in an\n // impossible transaction - this is sometimes called a 'king of the hill' attack. We choose instead\n // to not fail and encrypt the plaintext regardless using the shared secret that results from a\n // random valid address. The sender is free to choose this address and hence shared secret, but\n // this has no security implications as they already know not only the full plaintext but also the\n // ephemeral private key anyway.\n unsafe {\n random_address_point()\n }\n })\n .inner,\n );\n\n let s_app = compute_app_siloed_shared_secret(raw_shared_secret, contract_address);\n\n // It is safe to derive AES keys from `s_app` using Poseidon2 because `s_app` was derived from an ECDH shared\n // secret using an AztecAddress (the recipient). See the block comment in\n // `extract_many_close_to_uniformly_random_256_bits_using_poseidon2` for more info.\n let pairs = derive_aes_symmetric_key_and_iv_from_shared_secret::<2>(s_app);\n let (body_sym_key, body_iv) = pairs[0];\n let (header_sym_key, header_iv) = pairs[1];\n\n let ciphertext_bytes = aes128_encrypt(plaintext_bytes, body_iv, body_sym_key);\n\n // Each plaintext field is 32 bytes (a multiple of the 16-byte AES block\n // size), so PKCS#7 always appends a full 16-byte padding block:\n // |ciphertext| = PlaintextLen*32 + 16 = 16 * (1 + PlaintextLen*32 / 16)\n std::static_assert(\n ciphertext_bytes.len() == 16 * (1 + (PlaintextLen * 32) / 16),\n \"unexpected ciphertext length\",\n );\n\n // Encrypt a 2-byte header containing the body ciphertext length.\n let header_plaintext = encode_header(ciphertext_bytes.len());\n\n // Note: the aes128_encrypt builtin fn automatically appends bytes to the input, according to pkcs#7; hence why\n // the output `header_ciphertext_bytes` is 16 bytes larger than the input in this case.\n let header_ciphertext_bytes = aes128_encrypt(header_plaintext, header_iv, header_sym_key);\n // Verify expected header ciphertext size at compile time.\n std::static_assert(\n header_ciphertext_bytes.len() == HEADER_CIPHERTEXT_SIZE_IN_BYTES,\n \"unexpected ciphertext header length\",\n );\n\n // Assemble the message byte array:\n // [header_ct (16B)] [body_ct] [padding to mult of 31]\n let message_bytes_padding_to_mult_31 = get_arr_of_size__message_bytes_padding__from_PT::<PlaintextLen * 32>();\n\n let mut message_bytes = get_arr_of_size__message_bytes__from_PT::<PlaintextLen * 32>();\n\n std::static_assert(\n message_bytes.len() % 31 == 0,\n \"Unexpected error: message_bytes.len() should be divisible by 31, by construction.\",\n );\n\n let mut offset = 0;\n for i in 0..header_ciphertext_bytes.len() {\n message_bytes[offset + i] = header_ciphertext_bytes[i];\n }\n offset += header_ciphertext_bytes.len();\n\n for i in 0..ciphertext_bytes.len() {\n message_bytes[offset + i] = ciphertext_bytes[i];\n }\n offset += ciphertext_bytes.len();\n\n for i in 0..message_bytes_padding_to_mult_31.len() {\n message_bytes[offset + i] = message_bytes_padding_to_mult_31[i];\n }\n offset += message_bytes_padding_to_mult_31.len();\n\n // Ideally we would be able to have a static assert where we check that the offset would be such that we've\n // written to the entire log_bytes array, but we cannot since Noir does not treat the offset as a comptime\n // value (despite the values that it goes through being known at each stage). We instead check that the\n // computation used to obtain the offset computes the expected value (which we _can_ do in a static check), and\n // then add a cheap runtime check to also validate that the offset matches this.\n std::static_assert(\n header_ciphertext_bytes.len() + ciphertext_bytes.len() + message_bytes_padding_to_mult_31.len()\n == message_bytes.len(),\n \"unexpected message length\",\n );\n assert(offset == message_bytes.len(), \"unexpected encrypted message length\");\n\n // Pack message bytes into fields (31 bytes per field) and prepend eph_pk.x.\n let message_bytes_as_fields = encode_bytes_as_fields(message_bytes);\n\n let mut ciphertext: [Field; MESSAGE_CIPHERTEXT_LEN] = [0; MESSAGE_CIPHERTEXT_LEN];\n\n ciphertext[0] = eph_pk.x;\n\n // Mask each content field with a Poseidon2-derived value, so that they appear as uniformly random `Field`\n // values\n let mut offset = 1;\n for i in 0..message_bytes_as_fields.len() {\n let mask = derive_shared_secret_field_mask(s_app, i as u32);\n ciphertext[offset + i] = message_bytes_as_fields[i] + mask;\n }\n offset += message_bytes_as_fields.len();\n\n // Pad with random fields so that padding is indistinguishable from masked data fields.\n for i in offset..MESSAGE_CIPHERTEXT_LEN {\n // Safety: we assume that the sender wants for the message to be private - a malicious one could simply\n // reveal its contents publicly. It is therefore fine to trust the sender to provide random padding.\n ciphertext[i] = unsafe { random() };\n }\n\n ciphertext\n }\n\n unconstrained fn decrypt(\n ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n recipient: AztecAddress,\n contract_address: AztecAddress,\n ) -> Option<BoundedVec<Field, MESSAGE_PLAINTEXT_LEN>> {\n // Extract the ephemeral public key x-coordinate and masked fields, returning None for empty ciphertext.\n if ciphertext.len() > 0 {\n let masked_fields: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN - EPH_PK_X_SIZE_IN_FIELDS> =\n array::subbvec(ciphertext, EPH_PK_X_SIZE_IN_FIELDS);\n Option::some((ciphertext.get(0), masked_fields))\n } else {\n Option::none()\n }\n .and_then(|(eph_pk_x, masked_fields)| {\n // With the x-coordinate of the ephemeral public key we can reconstruct the point as we know that the\n // y-coordinate must be positive. This may fail however, as not all x-coordinates are on the curve. In\n // that case, we simply return `Option::none`.\n point_from_x_coord_and_sign(eph_pk_x, true).and_then(|eph_pk| {\n let s_app = get_shared_secret(recipient, eph_pk, contract_address);\n\n let unmasked_fields = masked_fields.mapi(|i, field| {\n let unmasked = unmask_field(s_app, i, field);\n // If we failed to unmask the field, we are dealing with the random padding. We'll ignore it\n // later, so we can simply set it to 0\n unmasked.unwrap_or(0)\n });\n let ciphertext_without_eph_pk_x = decode_bytes_from_fields(unmasked_fields);\n\n // Derive symmetric keys:\n let pairs = derive_aes_symmetric_key_and_iv_from_shared_secret::<2>(s_app);\n let (body_sym_key, body_iv) = pairs[0];\n let (header_sym_key, header_iv) = pairs[1];\n\n // Extract the header ciphertext\n let header_start = 0;\n let header_ciphertext: [u8; HEADER_CIPHERTEXT_SIZE_IN_BYTES] =\n array::subarray(ciphertext_without_eph_pk_x.storage(), header_start);\n // We need to convert the array to a BoundedVec because the oracle expects a BoundedVec as it's\n // designed to work with messages with unknown length at compile time. This would not be necessary\n // here as the header ciphertext length is fixed. But we do it anyway to not have to have duplicate\n // oracles.\n let header_ciphertext_bvec =\n BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::from_array(header_ciphertext);\n\n try_aes128_decrypt(header_ciphertext_bvec, header_iv, header_sym_key)\n // Extract ciphertext length from header (2 bytes, big-endian)\n .and_then(|header_plaintext| extract_ciphertext_length(header_plaintext))\n .filter(|ciphertext_length| ciphertext_length <= MESSAGE_PLAINTEXT_SIZE_IN_BYTES)\n .map(|ciphertext_length| {\n // Extract and decrypt main ciphertext\n let ciphertext_start = header_start + HEADER_CIPHERTEXT_SIZE_IN_BYTES;\n let ciphertext_with_padding: [u8; MESSAGE_PLAINTEXT_SIZE_IN_BYTES] =\n array::subarray(ciphertext_without_eph_pk_x.storage(), ciphertext_start);\n BoundedVec::from_parts(ciphertext_with_padding, ciphertext_length)\n })\n // Decrypt main ciphertext and return it\n .and_then(|ciphertext| try_aes128_decrypt(ciphertext, body_iv, body_sym_key))\n // Convert bytes back to fields (32 bytes per field). Returns None if the actual bytes are\n // not valid.\n .and_then(|plaintext_bytes| try_decode_fields_from_bytes(plaintext_bytes))\n })\n })\n }\n}\n\n/// Encodes the body ciphertext length into a 2-byte big-endian header.\nfn encode_header(ciphertext_length: u32) -> [u8; 2] {\n [(ciphertext_length >> 8) as u8, ciphertext_length as u8]\n}\n\n/// Extracts the body ciphertext length from a decrypted header as a 2-byte big-endian integer.\n///\n/// Returns `Option::none()` if the header has fewer than 2 bytes.\nunconstrained fn extract_ciphertext_length<let N: u32>(header: BoundedVec<u8, N>) -> Option<u32> {\n if header.len() >= 2 {\n Option::some(((header.get(0) as u32) << 8) | (header.get(1) as u32))\n } else {\n Option::none()\n }\n}\n\n/// 2^248: upper bound for values that fit in 31 bytes\nglobal TWO_POW_248: Field = 2.pow_32(248);\n\n/// Removes the Poseidon2-derived mask from a ciphertext field. Returns the unmasked value if it fits in 31 bytes\n/// (a content field), or `None` if it doesn't (random padding). Unconstrained to prevent accidental use in\n/// constrained context.\nunconstrained fn unmask_field(s_app: Field, index: u32, masked: Field) -> Option<Field> {\n let unmasked = masked - derive_shared_secret_field_mask(s_app, index);\n if unmasked.lt(TWO_POW_248) {\n Option::some(unmasked)\n } else {\n Option::none()\n }\n}\n\n/// Produces a random valid address point, i.e. one that is on the curve. This is equivalent to calling\n/// [`AztecAddress::to_address_point`] on a random valid address.\nunconstrained fn random_address_point() -> AddressPoint {\n let mut result = std::mem::zeroed();\n\n loop {\n // We simply produce random x coordinates until we find one that is on the curve. About half of the x\n // coordinates fulfill this condition, so this should only take a few iterations at most.\n let x_coord = random();\n let point = point_from_x_coord_and_sign(x_coord, true);\n if point.is_some() {\n result = AddressPoint { inner: point.unwrap() };\n break;\n }\n }\n\n result\n}\n\nmod test {\n use crate::{\n ephemeral::EphemeralArray,\n keys::ecdh_shared_secret::{compute_app_siloed_shared_secret, derive_ecdh_shared_secret},\n messages::{\n encoding::{HEADER_CIPHERTEXT_SIZE_IN_BYTES, MESSAGE_PLAINTEXT_LEN, MESSAGE_PLAINTEXT_SIZE_IN_BYTES},\n encryption::message_encryption::MessageEncryption,\n },\n test::helpers::test_environment::TestEnvironment,\n };\n use crate::protocol::{address::AztecAddress, traits::FromField};\n use super::{AES128, encode_header, random_address_point};\n use std::{embedded_curve_ops::EmbeddedCurveScalar, test::OracleMock};\n\n #[test]\n unconstrained fn encrypt_decrypt_deterministic() {\n let env = TestEnvironment::new();\n\n // Message decryption requires oracles that are only available during private execution\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n\n let recipient = AztecAddress::from_field(\n 0x25afb798ea6d0b8c1618e50fdeafa463059415013d3b7c75d46abf5e242be70c,\n );\n\n // Mock random values for deterministic test\n let eph_sk = 0x1358d15019d4639393d62b97e1588c095957ce74a1c32d6ec7d62fe6705d9538;\n let _ = OracleMock::mock(\"aztec_utl_getRandomField\").returns(eph_sk).times(1);\n\n let randomness = 0x0101010101010101010101010101010101010101010101010101010101010101;\n let _ = OracleMock::mock(\"aztec_utl_getRandomField\").returns(randomness).times(1000000);\n\n let _ = OracleMock::mock(\"aztec_prv_getNextAppTagAsSender\").returns(42);\n\n // Encrypt the message\n let encrypted_message = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n // Compute the same app-siloed shared secret that the oracle would return\n let raw_shared_secret = derive_ecdh_shared_secret(\n EmbeddedCurveScalar::from_field(eph_sk),\n recipient.to_address_point().unwrap().inner,\n );\n let s_app = compute_app_siloed_shared_secret(raw_shared_secret, contract_address);\n\n // The shared-secrets oracle is batched: it returns a slot pointing at an EphemeralArray\n // populated with the per-key results. Set up that array with the single expected `s_app`\n // and mock the oracle to return its slot.\n let response_slot: Field = 99;\n let response_array: EphemeralArray<Field> = EphemeralArray::at(response_slot);\n response_array.push(s_app);\n let _ = OracleMock::mock(\"aztec_utl_getSharedSecrets\").returns(response_slot);\n\n // Decrypt the message\n let decrypted = AES128::decrypt(encrypted_message, recipient, contract_address).unwrap();\n\n // The decryption function spits out a BoundedVec because it's designed to work with messages with unknown\n // length at compile time. For this reason we need to convert the original input to a BoundedVec.\n let plaintext_bvec = BoundedVec::<Field, MESSAGE_PLAINTEXT_LEN>::from_array(plaintext);\n\n // Verify decryption matches original plaintext\n assert_eq(decrypted, plaintext_bvec, \"Decrypted bytes should match original plaintext\");\n\n // The following is a workaround of \"struct is never constructed\" Noir compilation error (we only ever use\n // static methods of the struct).\n let _ = AES128 {};\n });\n }\n\n #[test]\n unconstrained fn encrypt_decrypt_random() {\n // Same as `encrypt_decrypt_deterministic`, except we don't mock any of the oracles and rely on\n // `TestEnvironment` instead.\n let mut env = TestEnvironment::new();\n\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n assert_eq(\n AES128::decrypt(\n BoundedVec::from_array(ciphertext),\n recipient,\n contract_address,\n )\n .unwrap(),\n BoundedVec::from_array(plaintext),\n );\n });\n }\n\n #[test]\n unconstrained fn encrypt_to_invalid_address() {\n // x = 3 is a non-residue for this curve, resulting in an invalid address\n let invalid_address = AztecAddress { inner: 3 };\n let contract_address = AztecAddress { inner: 42 };\n\n let _ = AES128::encrypt([1, 2, 3, 4], invalid_address, contract_address);\n }\n\n // Documents the PKCS#7 padding behavior that `encrypt` relies on (see its static_assert).\n #[test]\n fn pkcs7_padding_always_adds_at_least_one_byte() {\n let key = [0 as u8; 16];\n let iv = [0 as u8; 16];\n\n // 1 byte input + 15 bytes padding = 16 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 1], iv, key).len(), 16);\n\n // 15 bytes input + 1 byte padding = 16 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 15], iv, key).len(), 16);\n\n // 16 bytes input (block-aligned) + full 16-byte padding block = 32 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 16], iv, key).len(), 32);\n }\n\n #[test]\n unconstrained fn encrypt_decrypt_max_size_plaintext() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let mut plaintext = [0; MESSAGE_PLAINTEXT_LEN];\n for i in 0..MESSAGE_PLAINTEXT_LEN {\n plaintext[i] = i as Field;\n }\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n assert_eq(\n AES128::decrypt(\n BoundedVec::from_array(ciphertext),\n recipient,\n contract_address,\n )\n .unwrap(),\n BoundedVec::from_array(plaintext),\n );\n });\n }\n\n #[test(should_fail_with = \"Plaintext length exceeds MESSAGE_PLAINTEXT_LEN\")]\n unconstrained fn encrypt_oversized_plaintext() {\n let address = AztecAddress { inner: 3 };\n let contract_address = AztecAddress { inner: 42 };\n let plaintext: [Field; MESSAGE_PLAINTEXT_LEN + 1] = [0; MESSAGE_PLAINTEXT_LEN + 1];\n let _ = AES128::encrypt(plaintext, address, contract_address);\n }\n\n #[test]\n unconstrained fn random_address_point_produces_valid_points() {\n // About half of random addresses are invalid, so testing just a couple gives us high confidence that\n // `random_address_point` is indeed producing valid addresses.\n for _ in 0..10 {\n let random_address = AztecAddress { inner: random_address_point().inner.x };\n assert(random_address.to_address_point().is_some());\n }\n }\n\n #[test]\n unconstrained fn decrypt_invalid_ephemeral_public_key() {\n let mut env = TestEnvironment::new();\n\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3, 4];\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n // The first field of the ciphertext is the x-coordinate of the ephemeral public key. We set it to a known\n // non-residue (3), causing `decrypt` to fail to produce a decryption shared secret.\n let mut bad_ciphertext = BoundedVec::from_array(ciphertext);\n bad_ciphertext.set(0, 3);\n\n assert(AES128::decrypt(bad_ciphertext, recipient, contract_address).is_none());\n });\n }\n\n #[test]\n unconstrained fn decrypt_returns_none_on_empty_ciphertext() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n assert(AES128::decrypt(BoundedVec::new(), recipient, contract_address).is_none());\n });\n }\n\n // Mocks the header AES decrypt oracle to return an empty result. The TS oracle never throws on invalid\n // input: it decrypts to garbage bytes or returns empty\n #[test]\n unconstrained fn decrypt_returns_none_on_empty_header() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n let empty_header = BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::new();\n let _ = OracleMock::mock(\"aztec_utl_decryptAes128\").returns(Option::some(empty_header)).times(1);\n\n assert(AES128::decrypt(ciphertext, recipient, contract_address).is_none());\n });\n }\n\n // Mocks the header oracle to return a 2-byte header that decodes to a ciphertext_length one past the maximum\n // allowed value, verifying the edge case is handled correctly.\n #[test]\n unconstrained fn decrypt_returns_none_on_oversized_ciphertext_length() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n let bad_header = BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::from_array(encode_header(\n MESSAGE_PLAINTEXT_SIZE_IN_BYTES + 1,\n ));\n let _ = OracleMock::mock(\"aztec_utl_decryptAes128\").returns(Option::some(bad_header)).times(1);\n\n assert(AES128::decrypt(ciphertext, recipient, contract_address).is_none());\n });\n }\n\n}\n"
290
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/encryption/aes128.nr",
291
+ "source": "use crate::protocol::{address::AztecAddress, public_keys::AddressPoint, traits::ToField};\n\nuse crate::{\n keys::{\n ecdh_shared_secret::{\n compute_app_siloed_shared_secret, derive_ecdh_shared_secret, derive_shared_secret_field_mask,\n derive_shared_secret_subkey,\n },\n ephemeral::generate_positive_ephemeral_key_pair,\n },\n logging::aztecnr_warn_log_format,\n messages::{\n encoding::{\n EPH_PK_X_SIZE_IN_FIELDS, HEADER_CIPHERTEXT_SIZE_IN_BYTES, MESSAGE_CIPHERTEXT_LEN, MESSAGE_PLAINTEXT_LEN,\n MESSAGE_PLAINTEXT_SIZE_IN_BYTES,\n },\n encryption::message_encryption::MessageEncryption,\n logs::arithmetic_generics_utils::{\n get_arr_of_size__message_bytes__from_PT, get_arr_of_size__message_bytes_padding__from_PT,\n },\n },\n oracle::{aes128_decrypt::try_aes128_decrypt, random::random, shared_secret::get_shared_secret},\n utils::{\n array,\n conversion::{\n bytes_as_fields::{decode_bytes_from_fields, encode_bytes_as_fields},\n fields_as_bytes::{encode_fields_as_bytes, try_decode_fields_from_bytes},\n },\n point::point_from_x_coord_and_sign,\n },\n};\n\nuse std::aes128::aes128_encrypt;\n\n/// Computes N close-to-uniformly-random 256 bits from a given app-siloed shared secret.\n///\n/// NEVER re-use the same iv and sym_key. DO NOT call this function more than once with the same s_app.\n///\n/// This function is only known to be safe if s_app is derived from combining a random ephemeral key with an\n/// address point and a contract address. See big comment within the body of the function.\nfn extract_many_close_to_uniformly_random_256_bits_using_poseidon2<let N: u32>(s_app: Field) -> [[u8; 32]; N] {\n /*\n * Unsafe because of https://eprint.iacr.org/2010/264.pdf Page 13, Lemma 2 (and the two paragraphs below it).\n *\n * If you call this function, you need to be careful and aware of how the arg `s_app` has been derived.\n *\n * The paper says that the way you derive aes keys and IVs should be fine with poseidon2 (modelled as a RO),\n * as long as you _don't_ use Poseidon2 as a PRG to generate the two exponents x & y which multiply to the\n * shared secret S:\n *\n * S = [x*y]*G.\n *\n * (Otherwise, you would have to \"key\" poseidon2, i.e. generate a uniformly string K which can be public and\n * compute Hash(x) as poseidon(K,x)).\n * In that lemma, k would be 2*254=508, and m would be the number of points on the grumpkin curve (which is\n * close to r according to the Hasse bound).\n *\n * Our shared secret S is [esk * address_sk] * G, and the question is: Can we compute hash(S) using poseidon2\n * instead of sha256?\n *\n * Well, esk is random and not generated with poseidon2, so that's good.\n * What about address_sk?\n * Well, address_sk = poseidon2(stuff) + ivsk, so there was some discussion about whether address_sk is\n * independent of poseidon2. Given that ivsk is random and independent of poseidon2, the address_sk is also\n * independent of poseidon2.\n *\n * Tl;dr: we believe it's safe to hash S = [esk * address_sk] * G using poseidon2, in order to derive a\n * symmetric key.\n *\n * If you're calling this function for a differently-derived `s_app`, be careful.\n */\n \n\n /* The output of this function needs to be 32 random bytes.\n * A single field won't give us 32 bytes of entropy. So we compute two \"random\" fields, by poseidon-hashing\n * with two different indices. We then extract the last 16 (big endian) bytes of each \"random\" field.\n * Note: we use to_be_bytes because it's slightly more efficient. But we have to be careful not to take bytes\n * from the \"big end\", because the \"big\" byte is not uniformly random over the byte: it only has < 6 bits of\n * randomness, because it's the big end of a 254-bit field element.\n */\n\n let mut all_bytes: [[u8; 32]; N] = std::mem::zeroed();\n std::static_assert(N < 256, \"N too large\");\n for k in 0..N {\n let rand1: Field = derive_shared_secret_subkey(s_app, 2 * k);\n let rand2: Field = derive_shared_secret_subkey(s_app, 2 * k + 1);\n\n let rand1_bytes: [u8; 32] = rand1.to_be_bytes();\n let rand2_bytes: [u8; 32] = rand2.to_be_bytes();\n\n let mut bytes: [u8; 32] = [0; 32];\n for i in 0..16 {\n // We take bytes from the \"little end\" of the be-bytes arrays:\n let j = 32 - i - 1;\n bytes[i] = rand1_bytes[j];\n bytes[16 + i] = rand2_bytes[j];\n }\n\n all_bytes[k] = bytes;\n }\n\n all_bytes\n}\n\nfn derive_aes_symmetric_key_and_iv_from_uniformly_random_256_bits<let N: u32>(\n many_random_256_bits: [[u8; 32]; N],\n) -> [([u8; 16], [u8; 16]); N] {\n // Many (sym_key, iv) pairs:\n let mut many_pairs: [([u8; 16], [u8; 16]); N] = std::mem::zeroed();\n for k in 0..N {\n let random_256_bits = many_random_256_bits[k];\n let mut sym_key = [0; 16];\n let mut iv = [0; 16];\n for i in 0..16 {\n sym_key[i] = random_256_bits[i];\n iv[i] = random_256_bits[i + 16];\n }\n many_pairs[k] = (sym_key, iv);\n }\n\n many_pairs\n}\n\npub fn derive_aes_symmetric_key_and_iv_from_shared_secret<let N: u32>(s_app: Field) -> [([u8; 16], [u8; 16]); N] {\n let many_random_256_bits: [[u8; 32]; N] = extract_many_close_to_uniformly_random_256_bits_using_poseidon2(s_app);\n\n derive_aes_symmetric_key_and_iv_from_uniformly_random_256_bits(many_random_256_bits)\n}\n\npub struct AES128 {}\n\nimpl MessageEncryption for AES128 {\n\n /// AES128-CBC encryption for Aztec protocol messages.\n ///\n /// ## Overview\n ///\n /// The plaintext is an array of up to `MESSAGE_PLAINTEXT_LEN` (12) fields. The output is always exactly\n /// `MESSAGE_CIPHERTEXT_LEN` (15) fields, regardless of plaintext size. All output fields except the\n /// ephemeral public key are uniformly random `Field` values to any observer without knowledge of the\n /// shared secret, making all encrypted messages indistinguishable by size or content.\n ///\n /// ## PKCS#7 Padding\n ///\n /// AES operates on 16-byte blocks, so the plaintext must be padded to a multiple of 16. PKCS#7 padding always\n /// adds at least 1 byte (so the receiver can always detect and strip it), which means:\n /// - 1 B plaintext -> 15 B padding -> 16 B total\n /// - 15 B plaintext -> 1 B padding -> 16 B total\n /// - 16 B plaintext -> 16 B padding -> 32 B total (full extra block)\n ///\n /// In general: if the plaintext is already a multiple of 16, a full 16-byte padding block is appended.\n ///\n /// ## Encryption Steps\n ///\n /// **1. Body encryption.** The plaintext fields are serialized to bytes (32 bytes per field) and AES-128-CBC\n /// encrypted. Since 32 is a multiple of 16, PKCS#7 always adds a full 16-byte padding block (see above):\n ///\n /// ```text\n /// +---------------------------------------------+\n /// | body ct |\n /// | PlaintextLen*32 + 16 B |\n /// +-------------------------------+--------------+\n /// | encrypted plaintext fields | PKCS#7 (16B) |\n /// | (serialized at 32 B each) | |\n /// +-------------------------------+--------------+\n /// ```\n ///\n /// **2. Header encryption.** The byte length of `body_ct` is stored as a 2-byte big-endian integer. This 2-byte\n /// header plaintext is then AES-encrypted; PKCS#7 pads the remaining 14 bytes to fill one 16-byte AES block,\n /// producing a 16-byte header ciphertext:\n ///\n /// ```text\n /// +---------------------------+\n /// | header ct |\n /// | 16 B |\n /// +--------+------------------+\n /// | body ct| PKCS#7 (14B) |\n /// | length | |\n /// | (2 B) | |\n /// +--------+------------------+\n /// ```\n ///\n /// ## Wire Format\n ///\n /// Messages are transmitted as fields, not bytes. A field is ~254 bits and can safely store 31 whole bytes, so\n /// we need to pack our byte data into 31-byte chunks. This packing drives the wire format.\n ///\n /// **Step 1 -- Assemble bytes.** The ciphertexts are laid out in a byte array, padded with zero bytes to a\n /// multiple of 31 so it divides evenly into fields:\n ///\n /// ```text\n /// +------------+-------------------------+---------+\n /// | header ct | body ct | byte pad|\n /// | 16 B | PlaintextLen*32 + 16 B | (zeros) |\n /// +------------+-------------------------+---------+\n /// |<-------- padded to a multiple of 31 B -------->|\n /// ```\n ///\n /// **Step 2 -- Pack and mask.** The byte array is split into 31-byte chunks, each stored in one field. A\n /// Poseidon2-derived mask (see `derive_shared_secret_field_mask`) is added to each so that the resulting\n /// fields appear as uniformly random `Field` values to any observer without knowledge of the shared secret,\n /// hiding the fact that the underlying ciphertext consists of 128-bit AES blocks.\n ///\n /// **Step 3 -- Assemble ciphertext.** The ephemeral public key x-coordinate is prepended and random field padding\n /// is appended to fill to 15 fields:\n ///\n /// ```text\n /// +----------+-------------------------+-------------------+\n /// | eph_pk.x | masked message fields | random field pad |\n /// | | (packed 31 B per field) | (fills to 15) |\n /// +----------+-------------------------+-------------------+\n /// |<---------- MESSAGE_CIPHERTEXT_LEN = 15 fields -------->|\n /// ```\n ///\n /// ## Key Derivation\n ///\n /// The raw ECDH shared secret point is first app-siloed into a scalar `s_app` by hashing with the contract\n /// address (see\n /// [`compute_app_siloed_shared_secret`](crate::keys::ecdh_shared_secret::compute_app_siloed_shared_secret)).\n /// Two (key, IV) pairs are then derived from `s_app` via indexed Poseidon2 hashing: one pair for the body\n /// ciphertext and one for the header ciphertext.\n fn encrypt<let PlaintextLen: u32>(\n plaintext: [Field; PlaintextLen],\n recipient: AztecAddress,\n contract_address: AztecAddress,\n ) -> [Field; MESSAGE_CIPHERTEXT_LEN] {\n std::static_assert(\n PlaintextLen <= MESSAGE_PLAINTEXT_LEN,\n \"Plaintext length exceeds MESSAGE_PLAINTEXT_LEN\",\n );\n\n // AES 128 operates on bytes, not fields, so we need to convert the fields to bytes. (This process is then\n // reversed when processing the message in `process_message_ciphertext`)\n let plaintext_bytes = encode_fields_as_bytes(plaintext);\n\n // Derive ECDH shared secret with recipient using a fresh ephemeral keypair.\n let (eph_sk, eph_pk) = generate_positive_ephemeral_key_pair();\n\n let raw_shared_secret = derive_ecdh_shared_secret(\n eph_sk,\n recipient\n .to_address_point()\n .unwrap_or_else(|| {\n aztecnr_warn_log_format!(\n \"Attempted to encrypt message for an invalid recipient ({0})\",\n )(\n [recipient.to_field()],\n );\n\n // Safety: if the recipient is an invalid address, then it is not possible to encrypt a message for\n // them because we cannot establish a shared secret. This is never expected to occur during normal\n // operation. However, it is technically possible for us to receive an invalid address, and we must\n // therefore handle it. We could simply fail, but that'd introduce a potential security issue in\n // which an attacker forces a contract to encrypt a message for an invalid address, resulting in an\n // impossible transaction - this is sometimes called a 'king of the hill' attack. We choose instead\n // to not fail and encrypt the plaintext regardless using the shared secret that results from a\n // random valid address. The sender is free to choose this address and hence shared secret, but\n // this has no security implications as they already know not only the full plaintext but also the\n // ephemeral private key anyway.\n unsafe {\n random_address_point()\n }\n })\n .inner,\n );\n\n let s_app = compute_app_siloed_shared_secret(raw_shared_secret, contract_address);\n\n // It is safe to derive AES keys from `s_app` using Poseidon2 because `s_app` was derived from an ECDH shared\n // secret using an AztecAddress (the recipient). See the block comment in\n // `extract_many_close_to_uniformly_random_256_bits_using_poseidon2` for more info.\n let pairs = derive_aes_symmetric_key_and_iv_from_shared_secret::<2>(s_app);\n let (body_sym_key, body_iv) = pairs[0];\n let (header_sym_key, header_iv) = pairs[1];\n\n let ciphertext_bytes = aes128_encrypt(plaintext_bytes, body_iv, body_sym_key);\n\n // Each plaintext field is 32 bytes (a multiple of the 16-byte AES block\n // size), so PKCS#7 always appends a full 16-byte padding block:\n // |ciphertext| = PlaintextLen*32 + 16 = 16 * (1 + PlaintextLen*32 / 16)\n std::static_assert(\n ciphertext_bytes.len() == 16 * (1 + (PlaintextLen * 32) / 16),\n \"unexpected ciphertext length\",\n );\n\n // Encrypt a 2-byte header containing the body ciphertext length.\n let header_plaintext = encode_header(ciphertext_bytes.len());\n\n // Note: the aes128_encrypt builtin fn automatically appends bytes to the input, according to pkcs#7; hence why\n // the output `header_ciphertext_bytes` is 16 bytes larger than the input in this case.\n let header_ciphertext_bytes = aes128_encrypt(header_plaintext, header_iv, header_sym_key);\n // Verify expected header ciphertext size at compile time.\n std::static_assert(\n header_ciphertext_bytes.len() == HEADER_CIPHERTEXT_SIZE_IN_BYTES,\n \"unexpected ciphertext header length\",\n );\n\n // Assemble the message byte array:\n // [header_ct (16B)] [body_ct] [padding to mult of 31]\n let message_bytes_padding_to_mult_31 = get_arr_of_size__message_bytes_padding__from_PT::<PlaintextLen * 32>();\n\n let mut message_bytes = get_arr_of_size__message_bytes__from_PT::<PlaintextLen * 32>();\n\n std::static_assert(\n message_bytes.len() % 31 == 0,\n \"Unexpected error: message_bytes.len() should be divisible by 31, by construction.\",\n );\n\n let mut offset = 0;\n for i in 0..header_ciphertext_bytes.len() {\n message_bytes[offset + i] = header_ciphertext_bytes[i];\n }\n offset += header_ciphertext_bytes.len();\n\n for i in 0..ciphertext_bytes.len() {\n message_bytes[offset + i] = ciphertext_bytes[i];\n }\n offset += ciphertext_bytes.len();\n\n for i in 0..message_bytes_padding_to_mult_31.len() {\n message_bytes[offset + i] = message_bytes_padding_to_mult_31[i];\n }\n offset += message_bytes_padding_to_mult_31.len();\n\n // Ideally we would be able to have a static assert where we check that the offset would be such that we've\n // written to the entire log_bytes array, but we cannot since Noir does not treat the offset as a comptime\n // value (despite the values that it goes through being known at each stage). We instead check that the\n // computation used to obtain the offset computes the expected value (which we _can_ do in a static check), and\n // then add a cheap runtime check to also validate that the offset matches this.\n std::static_assert(\n header_ciphertext_bytes.len() + ciphertext_bytes.len() + message_bytes_padding_to_mult_31.len()\n == message_bytes.len(),\n \"unexpected message length\",\n );\n assert(offset == message_bytes.len(), \"unexpected encrypted message length\");\n\n // Pack message bytes into fields (31 bytes per field) and prepend eph_pk.x.\n let message_bytes_as_fields = encode_bytes_as_fields(message_bytes);\n\n let mut ciphertext: [Field; MESSAGE_CIPHERTEXT_LEN] = [0; MESSAGE_CIPHERTEXT_LEN];\n\n ciphertext[0] = eph_pk.x;\n\n // Mask each content field with a Poseidon2-derived value, so that they appear as uniformly random `Field`\n // values\n let mut offset = 1;\n for i in 0..message_bytes_as_fields.len() {\n let mask = derive_shared_secret_field_mask(s_app, i as u32);\n ciphertext[offset + i] = message_bytes_as_fields[i] + mask;\n }\n offset += message_bytes_as_fields.len();\n\n // Pad with random fields so that padding is indistinguishable from masked data fields.\n for i in offset..MESSAGE_CIPHERTEXT_LEN {\n // Safety: we assume that the sender wants for the message to be private - a malicious one could simply\n // reveal its contents publicly. It is therefore fine to trust the sender to provide random padding.\n ciphertext[i] = unsafe { random() };\n }\n\n ciphertext\n }\n\n unconstrained fn decrypt(\n ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n recipient: AztecAddress,\n contract_address: AztecAddress,\n ) -> Option<BoundedVec<Field, MESSAGE_PLAINTEXT_LEN>> {\n // Extract the ephemeral public key x-coordinate and masked fields, returning None for empty ciphertext.\n if ciphertext.len() > 0 {\n let masked_fields: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN - EPH_PK_X_SIZE_IN_FIELDS> =\n array::subbvec(ciphertext, EPH_PK_X_SIZE_IN_FIELDS);\n Option::some((ciphertext.get(0), masked_fields))\n } else {\n Option::none()\n }\n .and_then(|(eph_pk_x, masked_fields)| {\n // With the x-coordinate of the ephemeral public key we can reconstruct the point as we know that the\n // y-coordinate must be positive. This may fail however, as not all x-coordinates are on the curve. In\n // that case, we simply return `Option::none`.\n point_from_x_coord_and_sign(eph_pk_x, true).and_then(|eph_pk| {\n let s_app = get_shared_secret(recipient, eph_pk, contract_address);\n\n let unmasked_fields = masked_fields.mapi(|i, field| {\n let unmasked = unmask_field(s_app, i, field);\n // If we failed to unmask the field, we are dealing with the random padding. We'll ignore it\n // later, so we can simply set it to 0\n unmasked.unwrap_or(0)\n });\n let ciphertext_without_eph_pk_x = decode_bytes_from_fields(unmasked_fields);\n\n // Derive symmetric keys:\n let pairs = derive_aes_symmetric_key_and_iv_from_shared_secret::<2>(s_app);\n let (body_sym_key, body_iv) = pairs[0];\n let (header_sym_key, header_iv) = pairs[1];\n\n // Extract the header ciphertext\n let header_start = 0;\n let header_ciphertext: [u8; HEADER_CIPHERTEXT_SIZE_IN_BYTES] =\n array::subarray(ciphertext_without_eph_pk_x.storage(), header_start);\n // We need to convert the array to a BoundedVec because the oracle expects a BoundedVec as it's\n // designed to work with messages with unknown length at compile time. This would not be necessary\n // here as the header ciphertext length is fixed. But we do it anyway to not have to have duplicate\n // oracles.\n let header_ciphertext_bvec =\n BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::from_array(header_ciphertext);\n\n try_aes128_decrypt(header_ciphertext_bvec, header_iv, header_sym_key)\n // Extract ciphertext length from header (2 bytes, big-endian)\n .and_then(|header_plaintext| extract_ciphertext_length(header_plaintext))\n .filter(|ciphertext_length| ciphertext_length <= MESSAGE_PLAINTEXT_SIZE_IN_BYTES)\n .map(|ciphertext_length| {\n // Extract and decrypt main ciphertext\n let ciphertext_start = header_start + HEADER_CIPHERTEXT_SIZE_IN_BYTES;\n let ciphertext_with_padding: [u8; MESSAGE_PLAINTEXT_SIZE_IN_BYTES] =\n array::subarray(ciphertext_without_eph_pk_x.storage(), ciphertext_start);\n BoundedVec::from_parts(ciphertext_with_padding, ciphertext_length)\n })\n // Decrypt main ciphertext and return it\n .and_then(|ciphertext| try_aes128_decrypt(ciphertext, body_iv, body_sym_key))\n // Convert bytes back to fields (32 bytes per field). Returns None if the actual bytes are\n // not valid.\n .and_then(|plaintext_bytes| try_decode_fields_from_bytes(plaintext_bytes))\n })\n })\n }\n}\n\n/// Encodes the body ciphertext length into a 2-byte big-endian header.\nfn encode_header(ciphertext_length: u32) -> [u8; 2] {\n [(ciphertext_length >> 8) as u8, ciphertext_length as u8]\n}\n\n/// Extracts the body ciphertext length from a decrypted header as a 2-byte big-endian integer.\n///\n/// Returns `Option::none()` if the header has fewer than 2 bytes.\nunconstrained fn extract_ciphertext_length<let N: u32>(header: BoundedVec<u8, N>) -> Option<u32> {\n if header.len() >= 2 {\n Option::some(((header.get(0) as u32) << 8) | (header.get(1) as u32))\n } else {\n Option::none()\n }\n}\n\n/// 2^248: upper bound for values that fit in 31 bytes\nglobal TWO_POW_248: Field = 2.pow_32(248);\n\n/// Removes the Poseidon2-derived mask from a ciphertext field. Returns the unmasked value if it fits in 31 bytes\n/// (a content field), or `None` if it doesn't (random padding). Unconstrained to prevent accidental use in\n/// constrained context.\nunconstrained fn unmask_field(s_app: Field, index: u32, masked: Field) -> Option<Field> {\n let unmasked = masked - derive_shared_secret_field_mask(s_app, index);\n if unmasked.lt(TWO_POW_248) {\n Option::some(unmasked)\n } else {\n Option::none()\n }\n}\n\n/// Produces a random valid address point, i.e. one that is on the curve. This is equivalent to calling\n/// [`AztecAddress::to_address_point`] on a random valid address.\nunconstrained fn random_address_point() -> AddressPoint {\n let mut result = std::mem::zeroed();\n\n loop {\n // We simply produce random x coordinates until we find one that is on the curve. About half of the x\n // coordinates fulfill this condition, so this should only take a few iterations at most.\n let x_coord = random();\n let point = point_from_x_coord_and_sign(x_coord, true);\n if point.is_some() {\n result = AddressPoint { inner: point.unwrap() };\n break;\n }\n }\n\n result\n}\n\nmod test {\n use crate::{\n ephemeral::EphemeralArray,\n keys::ecdh_shared_secret::{compute_app_siloed_shared_secret, derive_ecdh_shared_secret},\n messages::{\n encoding::{HEADER_CIPHERTEXT_SIZE_IN_BYTES, MESSAGE_PLAINTEXT_LEN, MESSAGE_PLAINTEXT_SIZE_IN_BYTES},\n encryption::message_encryption::MessageEncryption,\n },\n test::helpers::test_environment::TestEnvironment,\n };\n use crate::protocol::{address::AztecAddress, traits::FromField};\n use super::{AES128, encode_header, random_address_point};\n use std::{embedded_curve_ops::EmbeddedCurveScalar, test::OracleMock};\n\n #[test]\n unconstrained fn encrypt_decrypt_deterministic() {\n let env = TestEnvironment::new();\n\n // Message decryption requires oracles that are only available during private execution\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n\n let recipient = AztecAddress::from_field(\n 0x25afb798ea6d0b8c1618e50fdeafa463059415013d3b7c75d46abf5e242be70c,\n );\n\n // Mock random values for deterministic test\n let eph_sk = 0x1358d15019d4639393d62b97e1588c095957ce74a1c32d6ec7d62fe6705d9538;\n let _ = OracleMock::mock(\"aztec_misc_getRandomField\").returns(eph_sk).times(1);\n\n let randomness = 0x0101010101010101010101010101010101010101010101010101010101010101;\n let _ = OracleMock::mock(\"aztec_misc_getRandomField\").returns(randomness).times(1000000);\n\n // Encrypt the message\n let encrypted_message = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n // Compute the same app-siloed shared secret that the oracle would return\n let raw_shared_secret = derive_ecdh_shared_secret(\n EmbeddedCurveScalar::from_field(eph_sk),\n recipient.to_address_point().unwrap().inner,\n );\n let s_app = compute_app_siloed_shared_secret(raw_shared_secret, contract_address);\n\n // The shared-secrets oracle is batched: it returns a slot pointing at an EphemeralArray\n // populated with the per-key results. Set up that array with the single expected `s_app`\n // and mock the oracle to return its slot.\n let response_slot: Field = 99;\n let response_array: EphemeralArray<Field> = EphemeralArray::at(response_slot);\n response_array.push(s_app);\n let _ = OracleMock::mock(\"aztec_utl_getSharedSecrets\").returns(response_slot);\n\n // Decrypt the message\n let decrypted = AES128::decrypt(encrypted_message, recipient, contract_address).unwrap();\n\n // The decryption function spits out a BoundedVec because it's designed to work with messages with unknown\n // length at compile time. For this reason we need to convert the original input to a BoundedVec.\n let plaintext_bvec = BoundedVec::<Field, MESSAGE_PLAINTEXT_LEN>::from_array(plaintext);\n\n // Verify decryption matches original plaintext\n assert_eq(decrypted, plaintext_bvec, \"Decrypted bytes should match original plaintext\");\n\n // The following is a workaround of \"struct is never constructed\" Noir compilation error (we only ever use\n // static methods of the struct).\n let _ = AES128 {};\n });\n }\n\n #[test]\n unconstrained fn encrypt_decrypt_random() {\n // Same as `encrypt_decrypt_deterministic`, except we don't mock any of the oracles and rely on\n // `TestEnvironment` instead.\n let mut env = TestEnvironment::new();\n\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n assert_eq(\n AES128::decrypt(\n BoundedVec::from_array(ciphertext),\n recipient,\n contract_address,\n )\n .unwrap(),\n BoundedVec::from_array(plaintext),\n );\n });\n }\n\n #[test]\n unconstrained fn encrypt_to_invalid_address() {\n // x = 3 is a non-residue for this curve, resulting in an invalid address\n let invalid_address = AztecAddress { inner: 3 };\n let contract_address = AztecAddress { inner: 42 };\n\n let _ = AES128::encrypt([1, 2, 3, 4], invalid_address, contract_address);\n }\n\n // Documents the PKCS#7 padding behavior that `encrypt` relies on (see its static_assert).\n #[test]\n fn pkcs7_padding_always_adds_at_least_one_byte() {\n let key = [0 as u8; 16];\n let iv = [0 as u8; 16];\n\n // 1 byte input + 15 bytes padding = 16 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 1], iv, key).len(), 16);\n\n // 15 bytes input + 1 byte padding = 16 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 15], iv, key).len(), 16);\n\n // 16 bytes input (block-aligned) + full 16-byte padding block = 32 bytes\n assert_eq(std::aes128::aes128_encrypt([0; 16], iv, key).len(), 32);\n }\n\n #[test]\n unconstrained fn encrypt_decrypt_max_size_plaintext() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let mut plaintext = [0; MESSAGE_PLAINTEXT_LEN];\n for i in 0..MESSAGE_PLAINTEXT_LEN {\n plaintext[i] = i as Field;\n }\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n assert_eq(\n AES128::decrypt(\n BoundedVec::from_array(ciphertext),\n recipient,\n contract_address,\n )\n .unwrap(),\n BoundedVec::from_array(plaintext),\n );\n });\n }\n\n #[test(should_fail_with = \"Plaintext length exceeds MESSAGE_PLAINTEXT_LEN\")]\n unconstrained fn encrypt_oversized_plaintext() {\n let address = AztecAddress { inner: 3 };\n let contract_address = AztecAddress { inner: 42 };\n let plaintext: [Field; MESSAGE_PLAINTEXT_LEN + 1] = [0; MESSAGE_PLAINTEXT_LEN + 1];\n let _ = AES128::encrypt(plaintext, address, contract_address);\n }\n\n #[test]\n unconstrained fn random_address_point_produces_valid_points() {\n // About half of random addresses are invalid, so testing just a couple gives us high confidence that\n // `random_address_point` is indeed producing valid addresses.\n for _ in 0..10 {\n let random_address = AztecAddress { inner: random_address_point().inner.x };\n assert(random_address.to_address_point().is_some());\n }\n }\n\n #[test]\n unconstrained fn decrypt_invalid_ephemeral_public_key() {\n let mut env = TestEnvironment::new();\n\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3, 4];\n let ciphertext = AES128::encrypt(plaintext, recipient, contract_address);\n\n // The first field of the ciphertext is the x-coordinate of the ephemeral public key. We set it to a known\n // non-residue (3), causing `decrypt` to fail to produce a decryption shared secret.\n let mut bad_ciphertext = BoundedVec::from_array(ciphertext);\n bad_ciphertext.set(0, 3);\n\n assert(AES128::decrypt(bad_ciphertext, recipient, contract_address).is_none());\n });\n }\n\n #[test]\n unconstrained fn decrypt_returns_none_on_empty_ciphertext() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n assert(AES128::decrypt(BoundedVec::new(), recipient, contract_address).is_none());\n });\n }\n\n // Mocks the header AES decrypt oracle to return an empty result. The TS oracle never throws on invalid\n // input: it decrypts to garbage bytes or returns empty\n #[test]\n unconstrained fn decrypt_returns_none_on_empty_header() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n let empty_header = BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::new();\n let _ = OracleMock::mock(\"aztec_utl_decryptAes128\").returns(Option::some(empty_header)).times(1);\n\n assert(AES128::decrypt(ciphertext, recipient, contract_address).is_none());\n });\n }\n\n // Mocks the header oracle to return a 2-byte header that decodes to a ciphertext_length one past the maximum\n // allowed value, verifying the edge case is handled correctly.\n #[test]\n unconstrained fn decrypt_returns_none_on_oversized_ciphertext_length() {\n let mut env = TestEnvironment::new();\n let recipient = env.create_light_account();\n\n env.private_context(|context| {\n let contract_address = context.this_address();\n let plaintext = [1, 2, 3];\n let ciphertext = BoundedVec::from_array(AES128::encrypt(plaintext, recipient, contract_address));\n\n let bad_header = BoundedVec::<u8, HEADER_CIPHERTEXT_SIZE_IN_BYTES>::from_array(encode_header(\n MESSAGE_PLAINTEXT_SIZE_IN_BYTES + 1,\n ));\n let _ = OracleMock::mock(\"aztec_utl_decryptAes128\").returns(Option::some(bad_header)).times(1);\n\n assert(AES128::decrypt(ciphertext, recipient, contract_address).is_none());\n });\n }\n\n}\n"
292
292
  },
293
- "138": {
293
+ "139": {
294
294
  "function_locations": [
295
295
  {
296
296
  "name": "encode_private_event_message",
@@ -313,10 +313,10 @@
313
313
  "start": 6064
314
314
  }
315
315
  ],
316
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/logs/event.nr",
316
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/logs/event.nr",
317
317
  "source": "use crate::{\n event::{event_interface::EventInterface, EventSelector},\n messages::{\n encoding::{encode_message, MAX_MESSAGE_CONTENT_LEN, MESSAGE_EXPANDED_METADATA_LEN},\n msg_type::PRIVATE_EVENT_MSG_TYPE_ID,\n },\n utils::array,\n};\nuse crate::protocol::traits::{FromField, Serialize, ToField};\n\n/// The number of fields in a private event message content that are not the event's serialized representation (1 field\n/// for randomness).\npub(crate) global PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN: u32 = 1;\npub(crate) global PRIVATE_EVENT_MSG_PLAINTEXT_RANDOMNESS_INDEX: u32 = 0;\n\n/// The maximum length of the packed representation of an event's contents. This is limited by private log size,\n/// encryption overhead and extra fields in the message (e.g. message type id, randomness, etc.).\npub global MAX_EVENT_SERIALIZED_LEN: u32 = MAX_MESSAGE_CONTENT_LEN - PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN;\n\n/// Creates the plaintext for a private event message (i.e. one of type [`PRIVATE_EVENT_MSG_TYPE_ID`]).\n///\n/// This plaintext is meant to be decoded via [`decode_private_event_message`].\npub fn encode_private_event_message<Event>(\n event: Event,\n randomness: Field,\n) -> [Field; PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <Event as Serialize>::N + MESSAGE_EXPANDED_METADATA_LEN]\nwhere\n Event: EventInterface + Serialize,\n{\n std::static_assert(\n <Event as Serialize>::N <= MAX_EVENT_SERIALIZED_LEN,\n \"event's serialized length exceeds the maximum allowed for private events\",\n );\n\n // We use `Serialize` because we want for events to be processable by off-chain actors, e.g. block explorers,\n // wallets and apps, without having to rely on contract invocation. If we used `Packable` we'd need to call utility\n // functions in order to unpack events, which would introduce a level of complexity we don't currently think is\n // worth the savings in DA (for public events) and proving time (when encrypting private event messages).\n let serialized_event = event.serialize();\n\n // If PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN is changed, causing the assertion below to fail, then the\n // encoding below must be updated as well.\n std::static_assert(\n PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 1,\n \"unexpected value for PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN\",\n );\n\n let mut msg_plaintext = [0; PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <Event as Serialize>::N];\n msg_plaintext[PRIVATE_EVENT_MSG_PLAINTEXT_RANDOMNESS_INDEX] = randomness;\n\n for i in 0..serialized_event.len() {\n msg_plaintext[PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + i] = serialized_event[i];\n }\n\n // The event type id is stored in the message metadata\n encode_message(\n PRIVATE_EVENT_MSG_TYPE_ID,\n Event::get_event_type_id().to_field() as u64,\n msg_plaintext,\n )\n}\n\n/// Decodes the plaintext from a private event message (i.e. one of type [`PRIVATE_EVENT_MSG_TYPE_ID`]).\n///\n/// Returns `None` if `msg_content` has too few fields. This plaintext is meant to have originated\n/// from [`encode_private_event_message`].\n///\n/// Note that while [`encode_private_event_message`] returns a fixed-size array, this function takes a [`BoundedVec`]\n/// instead. This is because when decoding we're typically processing runtime-sized plaintexts, more specifically,\n/// those that originate from [`crate::messages::encryption::message_encryption::MessageEncryption::decrypt`].\npub(crate) unconstrained fn decode_private_event_message(\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n) -> Option<(EventSelector, Field, BoundedVec<Field, MAX_EVENT_SERIALIZED_LEN>)> {\n if msg_content.len() <= PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN {\n Option::none()\n } else {\n let event_type_id = EventSelector::from_field(msg_metadata as Field);\n\n // If PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN is changed, causing the assertion below to fail, then the\n // destructuring of the private event message encoding below must be updated as well.\n std::static_assert(\n PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 1,\n \"unexpected value for PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN\",\n );\n\n let randomness = msg_content.get(PRIVATE_EVENT_MSG_PLAINTEXT_RANDOMNESS_INDEX);\n let serialized_event = array::subbvec(msg_content, PRIVATE_EVENT_MSG_PLAINTEXT_RESERVED_FIELDS_LEN);\n\n Option::some((event_type_id, randomness, serialized_event))\n }\n}\n\nmod test {\n use crate::{\n event::event_interface::EventInterface,\n messages::{\n encoding::decode_message,\n logs::event::{decode_private_event_message, encode_private_event_message},\n msg_type::PRIVATE_EVENT_MSG_TYPE_ID,\n },\n };\n use crate::protocol::traits::Serialize;\n use crate::test::mocks::mock_event::MockEvent;\n\n global VALUE: Field = 7;\n global RANDOMNESS: Field = 10;\n\n #[test]\n unconstrained fn encode_decode() {\n let event = MockEvent::new(VALUE).build_event();\n\n let message_plaintext = encode_private_event_message(event, RANDOMNESS);\n\n let (msg_type_id, msg_metadata, msg_content) =\n decode_message(BoundedVec::from_array(message_plaintext)).unwrap();\n\n assert_eq(msg_type_id, PRIVATE_EVENT_MSG_TYPE_ID);\n\n let (event_type_id, randomness, serialized_event) =\n decode_private_event_message(msg_metadata, msg_content).unwrap();\n\n assert_eq(event_type_id, MockEvent::get_event_type_id());\n assert_eq(randomness, RANDOMNESS);\n assert_eq(serialized_event, BoundedVec::from_array(event.serialize()));\n }\n\n #[test]\n unconstrained fn decode_empty_content_returns_none() {\n let empty = BoundedVec::new();\n assert(decode_private_event_message(0, empty).is_none());\n }\n\n #[test]\n unconstrained fn decode_with_only_reserved_fields_returns_none() {\n let content = BoundedVec::from_array([0]);\n assert(decode_private_event_message(0, content).is_none());\n }\n}\n"
318
318
  },
319
- "140": {
319
+ "141": {
320
320
  "function_locations": [
321
321
  {
322
322
  "name": "encode_private_note_message_with_msg_type_id",
@@ -359,10 +359,10 @@
359
359
  "start": 8407
360
360
  }
361
361
  ],
362
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/logs/note.nr",
362
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/logs/note.nr",
363
363
  "source": "use crate::{\n messages::{\n encoding::{encode_message, MAX_MESSAGE_CONTENT_LEN, MESSAGE_EXPANDED_METADATA_LEN},\n msg_type::PRIVATE_NOTE_MSG_TYPE_ID,\n },\n note::note_interface::NoteType,\n utils::array,\n};\nuse crate::protocol::{address::AztecAddress, traits::{FromField, Packable, ToField}};\n\n/// The number of fields in a private note message content that are not the note's packed representation.\npub(crate) global PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN: u32 = 3;\n\npub(crate) global PRIVATE_NOTE_MSG_PLAINTEXT_OWNER_INDEX: u32 = 0;\npub(crate) global PRIVATE_NOTE_MSG_PLAINTEXT_STORAGE_SLOT_INDEX: u32 = 1;\npub(crate) global PRIVATE_NOTE_MSG_PLAINTEXT_RANDOMNESS_INDEX: u32 = 2;\n\n/// The maximum length of the packed representation of a note's contents. This is limited by private log size,\n/// encryption overhead and extra fields in the message (e.g. message type id, storage slot, randomness, etc.).\npub global MAX_NOTE_PACKED_LEN: u32 = MAX_MESSAGE_CONTENT_LEN - PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN;\n\n/// Creates the plaintext for a private note message with the given `msg_type_id`.\n///\n/// Shared encoder used by [`encode_private_note_message`] and by custom message handlers that use the same format as\n/// standard private note message but perform additional validation logic.\npub fn encode_private_note_message_with_msg_type_id<Note>(\n msg_type_id: u64,\n note: Note,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n) -> [Field; PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <Note as Packable>::N + MESSAGE_EXPANDED_METADATA_LEN]\nwhere\n Note: NoteType + Packable,\n{\n let packed_note = note.pack();\n\n // If PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN is changed, causing the assertion below to fail, then the\n // encoding below must be updated as well.\n std::static_assert(\n PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 3,\n \"unexpected value for PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN\",\n );\n\n let mut msg_content = [0; PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <Note as Packable>::N];\n msg_content[PRIVATE_NOTE_MSG_PLAINTEXT_OWNER_INDEX] = owner.to_field();\n msg_content[PRIVATE_NOTE_MSG_PLAINTEXT_STORAGE_SLOT_INDEX] = storage_slot;\n msg_content[PRIVATE_NOTE_MSG_PLAINTEXT_RANDOMNESS_INDEX] = randomness;\n for i in 0..packed_note.len() {\n msg_content[PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + i] = packed_note[i];\n }\n\n // Notes use the note type id for metadata\n encode_message(msg_type_id, Note::get_id() as u64, msg_content)\n}\n\n/// Creates the plaintext for a private note message (i.e. one of type [`PRIVATE_NOTE_MSG_TYPE_ID`]).\n///\n/// This plaintext is meant to be decoded via [`decode_private_note_message`].\npub fn encode_private_note_message<Note>(\n note: Note,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n) -> [Field; PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <Note as Packable>::N + MESSAGE_EXPANDED_METADATA_LEN]\nwhere\n Note: NoteType + Packable,\n{\n encode_private_note_message_with_msg_type_id(\n PRIVATE_NOTE_MSG_TYPE_ID,\n note,\n owner,\n storage_slot,\n randomness,\n )\n}\n\n/// Decodes the plaintext from a private note message (i.e. one of type [`PRIVATE_NOTE_MSG_TYPE_ID`]).\n///\n/// Returns `None` if `msg_content` has too few fields. This plaintext is meant to have originated\n/// from [`encode_private_note_message`].\n///\n/// Note that while [`encode_private_note_message`] returns a fixed-size array, this function takes a [`BoundedVec`]\n/// instead. This is because when decoding we're typically processing runtime-sized plaintexts, more specifically,\n/// those that originate from [`crate::messages::encryption::message_encryption::MessageEncryption::decrypt`].\npub(crate) unconstrained fn decode_private_note_message(\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n) -> Option<(Field, AztecAddress, Field, Field, BoundedVec<Field, MAX_NOTE_PACKED_LEN>)> {\n if msg_content.len() <= PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN {\n Option::none()\n } else {\n let note_type_id = msg_metadata as Field; // TODO: make note type id not be a full field\n\n // If PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN is changed, causing the assertion below to fail, then the\n // decoding below must be updated as well.\n std::static_assert(\n PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 3,\n \"unexpected value for PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN\",\n );\n\n let owner = AztecAddress::from_field(msg_content.get(PRIVATE_NOTE_MSG_PLAINTEXT_OWNER_INDEX));\n let storage_slot = msg_content.get(PRIVATE_NOTE_MSG_PLAINTEXT_STORAGE_SLOT_INDEX);\n let randomness = msg_content.get(PRIVATE_NOTE_MSG_PLAINTEXT_RANDOMNESS_INDEX);\n let packed_note = array::subbvec(msg_content, PRIVATE_NOTE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN);\n\n Option::some((note_type_id, owner, storage_slot, randomness, packed_note))\n }\n}\n\nmod test {\n use crate::{\n messages::{\n encoding::decode_message,\n logs::note::{decode_private_note_message, encode_private_note_message, MAX_NOTE_PACKED_LEN},\n msg_type::PRIVATE_NOTE_MSG_TYPE_ID,\n },\n note::note_interface::NoteType,\n };\n use crate::protocol::{address::AztecAddress, traits::{FromField, Packable}};\n use crate::test::mocks::mock_note::MockNote;\n\n global VALUE: Field = 7;\n global OWNER: AztecAddress = AztecAddress::from_field(8);\n global STORAGE_SLOT: Field = 9;\n global RANDOMNESS: Field = 10;\n\n #[test]\n unconstrained fn encode_decode() {\n let note = MockNote::new(VALUE).build_note();\n\n let message_plaintext = encode_private_note_message(note, OWNER, STORAGE_SLOT, RANDOMNESS);\n\n let (msg_type_id, msg_metadata, msg_content) =\n decode_message(BoundedVec::from_array(message_plaintext)).unwrap();\n\n assert_eq(msg_type_id, PRIVATE_NOTE_MSG_TYPE_ID);\n\n let (note_type_id, owner, storage_slot, randomness, packed_note) =\n decode_private_note_message(msg_metadata, msg_content).unwrap();\n\n assert_eq(note_type_id, MockNote::get_id());\n assert_eq(owner, OWNER);\n assert_eq(storage_slot, STORAGE_SLOT);\n assert_eq(randomness, RANDOMNESS);\n assert_eq(packed_note, BoundedVec::from_array(note.pack()));\n }\n\n #[derive(Packable)]\n struct MaxSizeNote {\n data: [Field; MAX_NOTE_PACKED_LEN],\n }\n\n impl NoteType for MaxSizeNote {\n fn get_id() -> Field {\n 0\n }\n }\n\n #[test]\n unconstrained fn encode_decode_max_size_note() {\n let mut data = [0; MAX_NOTE_PACKED_LEN];\n for i in 0..MAX_NOTE_PACKED_LEN {\n data[i] = i as Field;\n }\n let note = MaxSizeNote { data };\n\n let encoded = encode_private_note_message(note, OWNER, STORAGE_SLOT, RANDOMNESS);\n let (msg_type_id, msg_metadata, msg_content) = decode_message(BoundedVec::from_array(encoded)).unwrap();\n\n assert_eq(msg_type_id, PRIVATE_NOTE_MSG_TYPE_ID);\n\n let (note_type_id, owner, storage_slot, randomness, packed_note) =\n decode_private_note_message(msg_metadata, msg_content).unwrap();\n\n assert_eq(note_type_id, MaxSizeNote::get_id());\n assert_eq(owner, OWNER);\n assert_eq(storage_slot, STORAGE_SLOT);\n assert_eq(randomness, RANDOMNESS);\n assert_eq(packed_note, BoundedVec::from_array(data));\n }\n\n #[derive(Packable)]\n struct OversizedNote {\n data: [Field; MAX_NOTE_PACKED_LEN + 1],\n }\n\n impl NoteType for OversizedNote {\n fn get_id() -> Field {\n 0\n }\n }\n\n #[test(should_fail_with = \"Invalid message content: it must have a length of at most MAX_MESSAGE_CONTENT_LEN\")]\n fn encode_oversized_note_fails() {\n let note = OversizedNote { data: [0; MAX_NOTE_PACKED_LEN + 1] };\n let _ = encode_private_note_message(note, OWNER, STORAGE_SLOT, RANDOMNESS);\n }\n\n #[test]\n unconstrained fn decode_empty_content_returns_none() {\n let empty = BoundedVec::new();\n assert(decode_private_note_message(0, empty).is_none());\n }\n\n #[test]\n unconstrained fn decode_with_only_reserved_fields_returns_none() {\n let content = BoundedVec::from_array([0, 0, 0]);\n assert(decode_private_note_message(0, content).is_none());\n }\n}\n"
364
364
  },
365
- "141": {
365
+ "142": {
366
366
  "function_locations": [
367
367
  {
368
368
  "name": "encode_partial_note_private_message",
@@ -385,7 +385,7 @@
385
385
  "start": 7197
386
386
  }
387
387
  ],
388
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/logs/partial_note.nr",
388
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/logs/partial_note.nr",
389
389
  "source": "use crate::{\n messages::{\n encoding::{encode_message, MAX_MESSAGE_CONTENT_LEN, MESSAGE_EXPANDED_METADATA_LEN},\n msg_type::PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID,\n },\n note::note_interface::NoteType,\n utils::array,\n};\nuse crate::protocol::{address::AztecAddress, traits::{FromField, Packable, ToField}};\n\n/// The number of fields in a private note message content that are not the note's packed representation.\npub(crate) global PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN: u32 = 3;\npub(crate) global PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_OWNER_INDEX: u32 = 0;\npub(crate) global PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RANDOMNESS_INDEX: u32 = 1;\npub(crate) global PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NOTE_COMPLETION_LOG_TAG_INDEX: u32 = 2;\n\n/// Partial notes have a maximum packed length of their private fields bound by extra content in their private message\n/// (e.g. the storage slot, note completion log tag, etc.).\npub global MAX_PARTIAL_NOTE_PRIVATE_PACKED_LEN: u32 =\n MAX_MESSAGE_CONTENT_LEN - PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN;\n\n/// Creates the plaintext for a partial note private message (i.e. one of type [`PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID`]).\n///\n/// This plaintext is meant to be decoded via [`decode_partial_note_private_message`].\npub fn encode_partial_note_private_message<PartialNotePrivateContent>(\n partial_note_private_content: PartialNotePrivateContent,\n owner: AztecAddress,\n randomness: Field,\n note_completion_log_tag: Field,\n ) -> [Field; PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <PartialNotePrivateContent as Packable>::N + MESSAGE_EXPANDED_METADATA_LEN]\nwhere\n PartialNotePrivateContent: NoteType + Packable,\n{\n let packed_private_content = partial_note_private_content.pack();\n\n // If PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NON_NOTE_FIELDS_LEN is changed, causing the assertion below to fail, then\n // the encoding below must be updated as well.\n std::static_assert(\n PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 3,\n \"unexpected value for PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NON_NOTE_FIELDS_LEN\",\n );\n\n let mut msg_content =\n [0; PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + <PartialNotePrivateContent as Packable>::N];\n msg_content[PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_OWNER_INDEX] = owner.to_field();\n msg_content[PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RANDOMNESS_INDEX] = randomness;\n msg_content[PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NOTE_COMPLETION_LOG_TAG_INDEX] = note_completion_log_tag;\n\n for i in 0..packed_private_content.len() {\n msg_content[PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN + i] = packed_private_content[i];\n }\n\n encode_message(\n PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID,\n // Notes use the note type id for metadata\n PartialNotePrivateContent::get_id() as u64,\n msg_content,\n )\n}\n\n/// Decodes the plaintext from a partial note private message (i.e. one of type\n/// [`PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID`]).\n///\n/// Returns `None` if `msg_content` has too few fields. This plaintext is meant to have originated\n/// from [`encode_partial_note_private_message`].\n///\n/// Note that while [`encode_partial_note_private_message`] returns a fixed-size array, this function takes a\n/// [`BoundedVec`] instead. This is because when decoding we're typically processing runtime-sized plaintexts, more\n/// specifically, those that originate from\n/// [`crate::messages::encryption::message_encryption::MessageEncryption::decrypt`].\npub(crate) unconstrained fn decode_partial_note_private_message(\n msg_metadata: u64,\n msg_content: BoundedVec<Field, MAX_MESSAGE_CONTENT_LEN>,\n) -> Option<(AztecAddress, Field, Field, Field, BoundedVec<Field, MAX_PARTIAL_NOTE_PRIVATE_PACKED_LEN>)> {\n if msg_content.len() < PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN {\n Option::none()\n } else {\n let note_type_id: Field = msg_metadata as Field; // TODO: make note type id not be a full field\n\n // If PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NON_NOTE_FIELDS_LEN is changed, causing the assertion below to fail,\n // then the destructuring of the partial note private message encoding below must be updated as well.\n std::static_assert(\n PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN == 3,\n \"unexpected value for PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NON_NOTE_FIELDS_LEN\",\n );\n\n // We currently have three fields that are not the partial note's packed representation, which are the owner,\n // the randomness, and the note completion log tag.\n let owner = AztecAddress::from_field(\n msg_content.get(PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_OWNER_INDEX),\n );\n let randomness = msg_content.get(PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RANDOMNESS_INDEX);\n let note_completion_log_tag = msg_content.get(PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_NOTE_COMPLETION_LOG_TAG_INDEX);\n\n let packed_private_note_content: BoundedVec<Field, MAX_PARTIAL_NOTE_PRIVATE_PACKED_LEN> = array::subbvec(\n msg_content,\n PARTIAL_NOTE_PRIVATE_MSG_PLAINTEXT_RESERVED_FIELDS_LEN,\n );\n\n Option::some(\n (owner, randomness, note_completion_log_tag, note_type_id, packed_private_note_content),\n )\n }\n}\n\nmod test {\n use crate::{\n messages::{\n encoding::decode_message,\n logs::partial_note::{decode_partial_note_private_message, encode_partial_note_private_message},\n msg_type::PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID,\n },\n note::note_interface::NoteType,\n };\n use crate::protocol::{address::AztecAddress, traits::{FromField, Packable}};\n use crate::test::mocks::mock_note::MockNote;\n\n global VALUE: Field = 7;\n global OWNER: AztecAddress = AztecAddress::from_field(8);\n global RANDOMNESS: Field = 10;\n global NOTE_COMPLETION_LOG_TAG: Field = 11;\n\n #[test]\n unconstrained fn encode_decode() {\n // Note that here we use MockNote as the private fields of a partial note\n let note = MockNote::new(VALUE).build_note();\n\n let message_plaintext = encode_partial_note_private_message(note, OWNER, RANDOMNESS, NOTE_COMPLETION_LOG_TAG);\n\n let (msg_type_id, msg_metadata, msg_content) =\n decode_message(BoundedVec::from_array(message_plaintext)).unwrap();\n\n assert_eq(msg_type_id, PARTIAL_NOTE_PRIVATE_MSG_TYPE_ID);\n\n let (owner, randomness, note_completion_log_tag, note_type_id, packed_note) =\n decode_partial_note_private_message(msg_metadata, msg_content).unwrap();\n\n assert_eq(note_type_id, MockNote::get_id());\n assert_eq(owner, OWNER);\n assert_eq(randomness, RANDOMNESS);\n assert_eq(note_completion_log_tag, NOTE_COMPLETION_LOG_TAG);\n assert_eq(packed_note, BoundedVec::from_array(note.pack()));\n }\n\n #[test]\n unconstrained fn decode_empty_content_returns_none() {\n let empty = BoundedVec::new();\n assert(decode_partial_note_private_message(0, empty).is_none());\n }\n\n #[test]\n unconstrained fn decode_succeeds_with_only_reserved_fields() {\n let content = BoundedVec::from_array([0, 0, 0]);\n let (_, _, _, _, packed_note) = decode_partial_note_private_message(0, content).unwrap();\n assert_eq(packed_note.len(), 0);\n }\n}\n"
390
390
  },
391
391
  "15": {
@@ -458,29 +458,29 @@
458
458
  "path": "std/field/bn254.nr",
459
459
  "source": "use crate::field::field_less_than;\nuse crate::runtime::is_unconstrained;\n\n// The low and high decomposition of the field modulus\npub(crate) global PLO: Field = 53438638232309528389504892708671455233;\npub(crate) global PHI: Field = 64323764613183177041862057485226039389;\n\npub(crate) global TWO_POW_128: Field = 0x100000000000000000000000000000000;\n\n// Decomposes a single field into two 16 byte fields.\nfn compute_decomposition(x: Field) -> (Field, Field) {\n // Here's we're taking advantage of truncating 128 bit limbs from the input field\n // and then subtracting them from the input such the field division is equivalent to integer division.\n let low = (x as u128) as Field;\n let high = (x - low) / TWO_POW_128;\n\n (low, high)\n}\n\npub(crate) unconstrained fn decompose_hint(x: Field) -> (Field, Field) {\n compute_decomposition(x)\n}\n\nunconstrained fn lte_hint(x: Field, y: Field) -> bool {\n if x == y {\n true\n } else {\n field_less_than(x, y)\n }\n}\n\n// Assert that (alo > blo && ahi >= bhi) || (alo <= blo && ahi > bhi)\nfn assert_gt_limbs(a: (Field, Field), b: (Field, Field)) {\n let (alo, ahi) = a;\n let (blo, bhi) = b;\n // Safety: borrow is enforced to be boolean due to its type.\n // if borrow is 0, it asserts that (alo > blo && ahi >= bhi)\n // if borrow is 1, it asserts that (alo <= blo && ahi > bhi)\n unsafe {\n let borrow = lte_hint(alo, blo);\n\n let rlo = alo - blo - 1 + (borrow as Field) * TWO_POW_128;\n let rhi = ahi - bhi - (borrow as Field);\n\n rlo.assert_max_bit_size::<128>();\n rhi.assert_max_bit_size::<128>();\n }\n}\n\n/// Decompose a single field into two 16 byte fields.\npub fn decompose(x: Field) -> (Field, Field) {\n if is_unconstrained() {\n compute_decomposition(x)\n } else {\n // Safety: decomposition is properly checked below\n unsafe {\n // Take hints of the decomposition\n let (xlo, xhi) = decompose_hint(x);\n\n // Range check the limbs\n xlo.assert_max_bit_size::<128>();\n xhi.assert_max_bit_size::<128>();\n\n // Check that the decomposition is correct\n assert_eq(x, xlo + TWO_POW_128 * xhi);\n\n // Assert that the decomposition of P is greater than the decomposition of x\n assert_gt_limbs((PLO, PHI), (xlo, xhi));\n (xlo, xhi)\n }\n }\n}\n\npub fn assert_gt(a: Field, b: Field) {\n if is_unconstrained() {\n assert(\n // Safety: already unconstrained\n unsafe { field_less_than(b, a) },\n );\n } else {\n // Decompose a and b\n let a_limbs = decompose(a);\n let b_limbs = decompose(b);\n\n // Assert that a_limbs is greater than b_limbs\n assert_gt_limbs(a_limbs, b_limbs)\n }\n}\n\npub fn assert_lt(a: Field, b: Field) {\n assert_gt(b, a);\n}\n\npub fn gt(a: Field, b: Field) -> bool {\n if is_unconstrained() {\n // Safety: unsafe in unconstrained\n unsafe {\n field_less_than(b, a)\n }\n } else if a == b {\n false\n } else {\n // Safety: Take a hint of the comparison and verify it\n unsafe {\n if field_less_than(a, b) {\n assert_gt(b, a);\n false\n } else {\n assert_gt(a, b);\n true\n }\n }\n }\n}\n\npub fn lt(a: Field, b: Field) -> bool {\n gt(b, a)\n}\n\nmod tests {\n // TODO: Allow imports from \"super\"\n use crate::field::bn254::{assert_gt, decompose, gt, lt, lte_hint, PHI, PLO, TWO_POW_128};\n\n #[test]\n fn check_decompose() {\n assert_eq(decompose(TWO_POW_128), (0, 1));\n assert_eq(decompose(TWO_POW_128 + 0x1234567890), (0x1234567890, 1));\n assert_eq(decompose(0x1234567890), (0x1234567890, 0));\n }\n\n #[test]\n unconstrained fn check_lte_hint() {\n assert(lte_hint(0, 1));\n assert(lte_hint(0, 0x100));\n assert(lte_hint(0x100, TWO_POW_128 - 1));\n assert(!lte_hint(0 - 1, 0));\n\n assert(lte_hint(0, 0));\n assert(lte_hint(0x100, 0x100));\n assert(lte_hint(0 - 1, 0 - 1));\n }\n\n #[test]\n fn check_gt() {\n assert(gt(1, 0));\n assert(gt(0x100, 0));\n assert(gt((0 - 1), (0 - 2)));\n assert(gt(TWO_POW_128, 0));\n assert(!gt(0, 0));\n assert(!gt(0, 0x100));\n assert(gt(0 - 1, 0 - 2));\n assert(!gt(0 - 2, 0 - 1));\n assert_gt(0 - 1, 0);\n }\n\n #[test]\n fn check_plo_phi() {\n assert_eq(PLO + PHI * TWO_POW_128, 0);\n let p_bytes = crate::field::modulus_le_bytes();\n let mut p_low: Field = 0;\n let mut p_high: Field = 0;\n\n let mut offset = 1;\n for i in 0..16 {\n p_low += (p_bytes[i] as Field) * offset;\n p_high += (p_bytes[i + 16] as Field) * offset;\n offset *= 256;\n }\n assert_eq(p_low, PLO);\n assert_eq(p_high, PHI);\n }\n\n #[test]\n fn check_decompose_edge_cases() {\n assert_eq(decompose(0), (0, 0));\n assert_eq(decompose(TWO_POW_128 - 1), (TWO_POW_128 - 1, 0));\n assert_eq(decompose(TWO_POW_128 + 1), (1, 1));\n assert_eq(decompose(TWO_POW_128 * 2), (0, 2));\n assert_eq(decompose(TWO_POW_128 * 2 + 0x1234567890), (0x1234567890, 2));\n }\n\n #[test]\n fn check_decompose_large_values() {\n let large_field = 0xffffffffffffffff;\n let (lo, hi) = decompose(large_field);\n assert_eq(large_field, lo + TWO_POW_128 * hi);\n\n let large_value = large_field - TWO_POW_128;\n let (lo2, hi2) = decompose(large_value);\n assert_eq(large_value, lo2 + TWO_POW_128 * hi2);\n }\n\n #[test]\n fn check_lt_comprehensive() {\n assert(lt(0, 1));\n assert(!lt(1, 0));\n assert(!lt(0, 0));\n assert(!lt(42, 42));\n\n assert(lt(TWO_POW_128 - 1, TWO_POW_128));\n assert(!lt(TWO_POW_128, TWO_POW_128 - 1));\n }\n}\n"
460
460
  },
461
- "151": {
461
+ "152": {
462
462
  "function_locations": [
463
463
  {
464
464
  "name": "enqueue_note_for_validation",
465
- "start": 3726
465
+ "start": 3744
466
466
  },
467
467
  {
468
468
  "name": "enqueue_event_for_validation",
469
- "start": 5089
469
+ "start": 5107
470
470
  },
471
471
  {
472
472
  "name": "validate_and_store_enqueued_notes_and_events",
473
- "start": 5757
473
+ "start": 5775
474
474
  },
475
475
  {
476
476
  "name": "get_pending_partial_notes_completion_logs",
477
- "start": 7055
477
+ "start": 7073
478
478
  }
479
479
  ],
480
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/processing/mod.nr",
481
- "source": "pub(crate) mod event_validation_request;\npub mod offchain;\n\nmod message_context;\npub use message_context::MessageContext;\n\nmod note_validation_request;\npub use note_validation_request::NoteValidationRequest;\n\npub(crate) mod log_retrieval_request;\npub(crate) mod log_retrieval_response;\npub(crate) mod pending_tagged_log;\n\nuse crate::{\n capsules::CapsuleArray,\n ephemeral::EphemeralArray,\n event::EventSelector,\n messages::{\n discovery::partial_notes::DeliveredPendingPartialNote,\n encoding::MESSAGE_CIPHERTEXT_LEN,\n logs::{event::MAX_EVENT_SERIALIZED_LEN, note::MAX_NOTE_PACKED_LEN},\n processing::{log_retrieval_request::LogRetrievalRequest, log_retrieval_response::LogRetrievalResponse},\n },\n oracle::message_processing,\n};\nuse crate::protocol::{\n address::AztecAddress,\n constants::DOM_SEP__NOTE_COMPLETION_LOG_TAG,\n hash::{compute_log_tag, sha256_to_field},\n traits::{Deserialize, Serialize},\n};\nuse event_validation_request::EventValidationRequest;\n\nglobal NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\nglobal EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\nglobal LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\n/// An offchain-delivered message with resolved context, ready for processing during sync.\n#[derive(Serialize, Deserialize)]\npub struct OffchainMessageWithContext {\n pub message_ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n pub message_context: MessageContext,\n}\n\n/// Enqueues a note for validation and storage by PXE.\n///\n/// Once validated, the note becomes retrievable via the `get_notes` oracle. The note will be scoped to\n/// `contract_address`, meaning other contracts will not be able to access it unless authorized.\n///\n/// In order for the note validation and insertion to occur, `validate_and_store_enqueued_notes_and_events` must be\n/// later called. For optimal performance, accumulate as many note validation requests as possible and then validate\n/// them all at the end (which results in PXE minimizing the number of network round-trips).\n///\n/// The `packed_note` is what `getNotes` will later return. PXE indexes notes by `storage_slot`, so this value is\n/// typically used to filter notes that correspond to different state variables. `note_hash` and `nullifier` are the\n/// inner hashes, i.e. the raw hashes returned by `NoteHash::compute_note_hash` and `NoteHash::compute_nullifier`. PXE\n/// will verify that the siloed unique note hash was inserted into the tree at `tx_hash`, and will store the nullifier\n/// to later check for nullification.\n///\n/// `owner` is the address used in note hash and nullifier computation, often requiring knowledge of their nullifier\n/// secret key.\n///\n/// `scope` is the account to which the note message was delivered (i.e. the address the message was encrypted to).\n/// This determines which PXE account can see the note - other accounts will not be able to access it (e.g. other\n/// accounts will not be able to see one another's token balance notes, even in the same PXE) unless authorized. In\n/// most cases `recipient` equals `owner`, but they can differ in scenarios like delegated discovery.\npub unconstrained fn enqueue_note_for_validation(\n contract_address: AztecAddress,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n note_nonce: Field,\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n note_hash: Field,\n nullifier: Field,\n tx_hash: Field,\n) {\n EphemeralArray::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).push(NoteValidationRequest::new(\n contract_address,\n owner,\n storage_slot,\n randomness,\n note_nonce,\n packed_note,\n note_hash,\n nullifier,\n tx_hash,\n ))\n}\n\n/// Enqueues an event for validation and storage by PXE.\n///\n/// This is the primary way for custom message handlers (registered via\n/// [`crate::macros::AztecConfig::custom_message_handler`]) to deliver reassembled events back to PXE after processing\n/// application-specific message formats.\n///\n/// In order for the event validation and insertion to occur, `validate_and_store_enqueued_notes_and_events` must be\n/// later called. For optimal performance, accumulate as many event validation requests as possible and then validate\n/// them all at the end (which results in PXE minimizing the number of network round-trips).\n///\n/// Note that `validate_and_store_enqueued_notes_and_events` is called by Aztec.nr after processing messages, so custom\n/// message processors do not need to be concerned with this.\npub unconstrained fn enqueue_event_for_validation(\n contract_address: AztecAddress,\n event_type_id: EventSelector,\n randomness: Field,\n serialized_event: BoundedVec<Field, MAX_EVENT_SERIALIZED_LEN>,\n event_commitment: Field,\n tx_hash: Field,\n) {\n EphemeralArray::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).push(EventValidationRequest::new(\n contract_address,\n event_type_id,\n randomness,\n serialized_event,\n event_commitment,\n tx_hash,\n ))\n}\n\n/// Validates and stores all enqueued notes and events.\n///\n/// Processes all requests enqueued via [`enqueue_note_for_validation`] and [`enqueue_event_for_validation`], inserting\n/// them into the note database and event store respectively, making them queryable via `get_notes` oracle and our TS\n/// API (PXE::getPrivateEvents).\npub unconstrained fn validate_and_store_enqueued_notes_and_events(scope: AztecAddress) {\n message_processing::validate_and_store_enqueued_notes_and_events(\n EphemeralArray::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT),\n EphemeralArray::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT),\n scope,\n );\n\n // Defensive clearing: purge the queues after processing to prevent double-processing if this function is called\n // more than once in the same call frame. It is currently defensive because we only call this once per sync run.\n let _ = EphemeralArray::<NoteValidationRequest>::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).clear();\n let _ = EphemeralArray::<EventValidationRequest>::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).clear();\n}\n\n/// Efficiently queries the node for logs that result in the completion of all `DeliveredPendingPartialNote`s stored in\n/// a `CapsuleArray` by performing all node communication concurrently. Returns a nested `EphemeralArray`, one inner\n/// array per pending partial note, each containing all matching `LogRetrievalResponse`s (which may be empty if no\n/// logs were found).\npub(crate) unconstrained fn get_pending_partial_notes_completion_logs(\n contract_address: AztecAddress,\n pending_partial_notes: CapsuleArray<DeliveredPendingPartialNote>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {\n let log_retrieval_requests = EphemeralArray::at(LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT);\n\n // We create a LogRetrievalRequest for each PendingPartialNote in the EphemeralArray. Because we need the indices\n // in the request array to match the indices in the partial note array, we can't use EphemeralArray::for_each, as\n // that function has arbitrary iteration order. Instead, we manually iterate the array from the beginning and push\n // into the requests array, which we expect to be empty.\n let mut i = 0;\n let pending_partial_notes_count = pending_partial_notes.len();\n while i < pending_partial_notes_count {\n let pending_partial_note = pending_partial_notes.get(i);\n // Partial note completion logs are emitted with a domain-separated tag. To find matching logs, we apply the\n // same domain separation to the stored raw tag.\n let log_tag = compute_log_tag(\n pending_partial_note.note_completion_log_tag,\n DOM_SEP__NOTE_COMPLETION_LOG_TAG,\n );\n log_retrieval_requests.push(LogRetrievalRequest::new(contract_address, log_tag));\n i += 1;\n }\n\n let responses = message_processing::get_logs_by_tag(log_retrieval_requests);\n\n // Defensive clearing: prevent stale requests if this function is called more than once in the same call frame.\n let _ = log_retrieval_requests.clear();\n\n responses\n}\n"
480
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/processing/mod.nr",
481
+ "source": "pub(crate) mod event_validation_request;\npub mod offchain;\n\nmod message_context;\npub use message_context::MessageContext;\n\nmod note_validation_request;\npub use note_validation_request::NoteValidationRequest;\n\npub mod log_retrieval_request;\npub mod log_retrieval_response;\npub(crate) mod pending_tagged_log;\npub(crate) mod provided_secret;\n\nuse crate::{\n capsules::CapsuleArray,\n ephemeral::EphemeralArray,\n event::EventSelector,\n messages::{\n discovery::partial_notes::DeliveredPendingPartialNote,\n encoding::MESSAGE_CIPHERTEXT_LEN,\n logs::{event::MAX_EVENT_SERIALIZED_LEN, note::MAX_NOTE_PACKED_LEN},\n processing::{log_retrieval_request::LogRetrievalRequest, log_retrieval_response::LogRetrievalResponse},\n },\n oracle::message_processing,\n};\nuse crate::protocol::{\n address::AztecAddress,\n constants::DOM_SEP__NOTE_COMPLETION_LOG_TAG,\n hash::{compute_log_tag, sha256_to_field},\n traits::{Deserialize, Serialize},\n};\nuse event_validation_request::EventValidationRequest;\n\nglobal NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\nglobal EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\nglobal LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT: Field = sha256_to_field(\n \"AZTEC_NR::LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT\".as_bytes(),\n);\n\n/// An offchain-delivered message with resolved context, ready for processing during sync.\n#[derive(Serialize, Deserialize)]\npub struct OffchainMessageWithContext {\n pub message_ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n pub message_context: MessageContext,\n}\n\n/// Enqueues a note for validation and storage by PXE.\n///\n/// Once validated, the note becomes retrievable via the `get_notes` oracle. The note will be scoped to\n/// `contract_address`, meaning other contracts will not be able to access it unless authorized.\n///\n/// In order for the note validation and insertion to occur, `validate_and_store_enqueued_notes_and_events` must be\n/// later called. For optimal performance, accumulate as many note validation requests as possible and then validate\n/// them all at the end (which results in PXE minimizing the number of network round-trips).\n///\n/// The `packed_note` is what `getNotes` will later return. PXE indexes notes by `storage_slot`, so this value is\n/// typically used to filter notes that correspond to different state variables. `note_hash` and `nullifier` are the\n/// inner hashes, i.e. the raw hashes returned by `NoteHash::compute_note_hash` and `NoteHash::compute_nullifier`. PXE\n/// will verify that the siloed unique note hash was inserted into the tree at `tx_hash`, and will store the nullifier\n/// to later check for nullification.\n///\n/// `owner` is the address used in note hash and nullifier computation, often requiring knowledge of their nullifier\n/// secret key.\n///\n/// `scope` is the account to which the note message was delivered (i.e. the address the message was encrypted to).\n/// This determines which PXE account can see the note - other accounts will not be able to access it (e.g. other\n/// accounts will not be able to see one another's token balance notes, even in the same PXE) unless authorized. In\n/// most cases `recipient` equals `owner`, but they can differ in scenarios like delegated discovery.\npub unconstrained fn enqueue_note_for_validation(\n contract_address: AztecAddress,\n owner: AztecAddress,\n storage_slot: Field,\n randomness: Field,\n note_nonce: Field,\n packed_note: BoundedVec<Field, MAX_NOTE_PACKED_LEN>,\n note_hash: Field,\n nullifier: Field,\n tx_hash: Field,\n) {\n EphemeralArray::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).push(NoteValidationRequest::new(\n contract_address,\n owner,\n storage_slot,\n randomness,\n note_nonce,\n packed_note,\n note_hash,\n nullifier,\n tx_hash,\n ))\n}\n\n/// Enqueues an event for validation and storage by PXE.\n///\n/// This is the primary way for custom message handlers (registered via\n/// [`crate::macros::AztecConfig::custom_message_handler`]) to deliver reassembled events back to PXE after processing\n/// application-specific message formats.\n///\n/// In order for the event validation and insertion to occur, `validate_and_store_enqueued_notes_and_events` must be\n/// later called. For optimal performance, accumulate as many event validation requests as possible and then validate\n/// them all at the end (which results in PXE minimizing the number of network round-trips).\n///\n/// Note that `validate_and_store_enqueued_notes_and_events` is called by Aztec.nr after processing messages, so custom\n/// message processors do not need to be concerned with this.\npub unconstrained fn enqueue_event_for_validation(\n contract_address: AztecAddress,\n event_type_id: EventSelector,\n randomness: Field,\n serialized_event: BoundedVec<Field, MAX_EVENT_SERIALIZED_LEN>,\n event_commitment: Field,\n tx_hash: Field,\n) {\n EphemeralArray::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).push(EventValidationRequest::new(\n contract_address,\n event_type_id,\n randomness,\n serialized_event,\n event_commitment,\n tx_hash,\n ))\n}\n\n/// Validates and stores all enqueued notes and events.\n///\n/// Processes all requests enqueued via [`enqueue_note_for_validation`] and [`enqueue_event_for_validation`], inserting\n/// them into the note database and event store respectively, making them queryable via `get_notes` oracle and our TS\n/// API (PXE::getPrivateEvents).\npub unconstrained fn validate_and_store_enqueued_notes_and_events(scope: AztecAddress) {\n message_processing::validate_and_store_enqueued_notes_and_events(\n EphemeralArray::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT),\n EphemeralArray::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT),\n scope,\n );\n\n // Defensive clearing: purge the queues after processing to prevent double-processing if this function is called\n // more than once in the same call frame. It is currently defensive because we only call this once per sync run.\n let _ = EphemeralArray::<NoteValidationRequest>::at(NOTE_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).clear();\n let _ = EphemeralArray::<EventValidationRequest>::at(EVENT_VALIDATION_REQUESTS_ARRAY_BASE_SLOT).clear();\n}\n\n/// Efficiently queries the node for logs that result in the completion of all `DeliveredPendingPartialNote`s stored in\n/// a `CapsuleArray` by performing all node communication concurrently. Returns a nested `EphemeralArray`, one inner\n/// array per pending partial note, each containing all matching `LogRetrievalResponse`s (which may be empty if no\n/// logs were found).\npub(crate) unconstrained fn get_pending_partial_notes_completion_logs(\n contract_address: AztecAddress,\n pending_partial_notes: CapsuleArray<DeliveredPendingPartialNote>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {\n let log_retrieval_requests = EphemeralArray::at(LOG_RETRIEVAL_REQUESTS_ARRAY_BASE_SLOT);\n\n // We create a LogRetrievalRequest for each PendingPartialNote in the EphemeralArray. Because we need the indices\n // in the request array to match the indices in the partial note array, we can't use EphemeralArray::for_each, as\n // that function has arbitrary iteration order. Instead, we manually iterate the array from the beginning and push\n // into the requests array, which we expect to be empty.\n let mut i = 0;\n let pending_partial_notes_count = pending_partial_notes.len();\n while i < pending_partial_notes_count {\n let pending_partial_note = pending_partial_notes.get(i);\n // Partial note completion logs are emitted with a domain-separated tag. To find matching logs, we apply the\n // same domain separation to the stored raw tag.\n let log_tag = compute_log_tag(\n pending_partial_note.note_completion_log_tag,\n DOM_SEP__NOTE_COMPLETION_LOG_TAG,\n );\n log_retrieval_requests.push(LogRetrievalRequest::new(contract_address, log_tag));\n i += 1;\n }\n\n let responses = message_processing::get_logs_by_tag(log_retrieval_requests);\n\n // Defensive clearing: prevent stale requests if this function is called more than once in the same call frame.\n let _ = log_retrieval_requests.clear();\n\n responses\n}\n"
482
482
  },
483
- "153": {
483
+ "154": {
484
484
  "function_locations": [
485
485
  {
486
486
  "name": "receive",
@@ -492,47 +492,47 @@
492
492
  },
493
493
  {
494
494
  "name": "test::setup",
495
- "start": 11128
495
+ "start": 11124
496
496
  },
497
497
  {
498
498
  "name": "test::make_msg",
499
- "start": 11458
499
+ "start": 11454
500
500
  },
501
501
  {
502
502
  "name": "test::advance_by",
503
- "start": 11741
503
+ "start": 11737
504
504
  },
505
505
  {
506
506
  "name": "test::empty_inbox_returns_empty_result",
507
- "start": 11932
507
+ "start": 11928
508
508
  },
509
509
  {
510
510
  "name": "test::tx_bound_msg_expires_after_max_msg_ttl",
511
- "start": 12395
511
+ "start": 12391
512
512
  },
513
513
  {
514
514
  "name": "test::tx_bound_msg_not_expired_before_max_msg_ttl",
515
- "start": 13360
515
+ "start": 13356
516
516
  },
517
517
  {
518
518
  "name": "test::tx_less_msg_expires_after_max_msg_ttl",
519
- "start": 14318
519
+ "start": 14314
520
520
  },
521
521
  {
522
522
  "name": "test::unresolved_tx_stays_in_inbox",
523
- "start": 15260
523
+ "start": 15256
524
524
  },
525
525
  {
526
526
  "name": "test::multiple_messages_mixed_expiration",
527
- "start": 16154
527
+ "start": 16150
528
528
  },
529
529
  {
530
530
  "name": "test::resolved_msg_is_ready_to_process",
531
- "start": 17893
531
+ "start": 17889
532
532
  }
533
533
  ],
534
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/messages/processing/offchain.nr",
535
- "source": "use crate::{\n capsules::CapsuleArray,\n context::UtilityContext,\n ephemeral::EphemeralArray,\n messages::{encoding::MESSAGE_CIPHERTEXT_LEN, processing::OffchainMessageWithContext},\n oracle::contract_sync::set_contract_sync_cache_invalid,\n protocol::{\n address::AztecAddress,\n constants::MAX_TX_LIFETIME,\n hash::sha256_to_field,\n traits::{Deserialize, Serialize},\n },\n};\n\n/// Base capsule slot for the persistent inbox of [`PendingOffchainMsg`] entries.\n///\n/// This is the slot where we accumulate messages received through [`receive`].\nglobal OFFCHAIN_INBOX_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_INBOX_SLOT\".as_bytes());\n\n/// Ephemeral array slot used by [`sync_inbox`] to pass tx hash resolution requests to PXE.\nglobal OFFCHAIN_CONTEXT_REQUESTS_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_CONTEXT_REQUESTS_SLOT\".as_bytes());\n\n/// Ephemeral array slot used by [`sync_inbox`] to collect messages ready for processing.\nglobal OFFCHAIN_READY_MESSAGES_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_READY_MESSAGES_SLOT\".as_bytes());\n\n/// Maximum number of offchain messages accepted by `offchain_receive` in a single call.\npub global MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL: u32 = 16;\n\n/// Tolerance added to the `MAX_TX_LIFETIME` cap for message expiration.\nglobal TX_EXPIRATION_TOLERANCE: u64 = 7200; // 2 hours\n\n/// Maximum time-to-live for a tx-bound offchain message.\n///\n/// After `anchor_block_timestamp + MAX_MSG_TTL`, the message is evicted from the inbox.\nglobal MAX_MSG_TTL: u64 = MAX_TX_LIFETIME + TX_EXPIRATION_TOLERANCE;\n\n/// A function that manages offchain-delivered messages for processing during sync.\n///\n/// Offchain messages are messages that are not broadcasted via onchain logs. They are instead delivered to the\n/// recipient by calling the `offchain_receive` utility function (injected by the `#[aztec]` macro). Message transport\n/// is the app's responsibility. Typical examples of transport methods are: messaging apps, email, QR codes, etc.\n///\n/// Once offchain messages are delivered to the recipient's private environment via `offchain_receive`, messages are\n/// locally stored in a persistent inbox.\n///\n/// This function determines when each message in said inbox is ready for processing, when it can be safely disposed\n/// of, etc.\n///\n/// The only current implementation of an `OffchainInboxSync` is [`sync_inbox`], which manages an inbox with expiration\n/// based eviction and automatic transaction context resolution.\npub type OffchainInboxSync = unconstrained fn(\n/* contract_address */AztecAddress, /* scope */ AztecAddress) -> EphemeralArray<OffchainMessageWithContext>;\n\n/// A message delivered via the `offchain_receive` utility function.\n#[derive(Serialize, Deserialize)]\npub struct OffchainMessage {\n /// The encrypted message payload.\n pub ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n /// The intended recipient of the message.\n pub recipient: AztecAddress,\n /// The hash of the transaction that produced this message. `Option::none` indicates a tx-less message.\n pub tx_hash: Option<Field>,\n /// Anchor block timestamp at message emission.\n pub anchor_block_timestamp: u64,\n}\n\n/// An offchain message awaiting processing (or re-processing) in the inbox.\n///\n/// Messages remain in the inbox until they expire, even if they have already been processed. This is necessary to\n/// handle reorgs: a processed message may need to be re-processed if the transaction that provided its context is\n/// reverted. On each sync, resolved messages are promoted to [`OffchainMessageWithContext`] for processing.\n#[derive(Serialize, Deserialize)]\nstruct PendingOffchainMsg {\n /// The encrypted message payload.\n ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n /// The intended recipient of the message.\n recipient: AztecAddress,\n /// The hash of the transaction that produced this message. A value of 0 indicates a tx-less message.\n tx_hash: Field,\n /// Anchor block timestamp at message emission. Used to compute the effective expiration: messages are evicted\n /// after `anchor_block_timestamp + MAX_MSG_TTL`.\n anchor_block_timestamp: u64,\n}\n\n/// Delivers offchain messages to the given contract's offchain inbox for subsequent processing.\n///\n/// Offchain messages are transaction effects that are not broadcasted via onchain logs. Instead, the sender shares the\n/// message to the recipient through an external channel (e.g. a URL accessible by the recipient). The recipient then\n/// calls this function to hand the messages to the contract so they can be processed through the same mechanisms as\n/// onchain messages.\n///\n/// Each message is routed to the inbox scoped to its `recipient` field, so messages for different accounts are\n/// automatically isolated.\n///\n/// Messages are processed when their originating transaction is found onchain (providing the context needed to\n/// validate resulting notes and events).\n///\n/// Messages are kept in the inbox until they expire. The effective expiration is\n/// `anchor_block_timestamp + MAX_MSG_TTL`.\n///\n/// Processing order is not guaranteed.\npub unconstrained fn receive(\n contract_address: AztecAddress,\n messages: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL>,\n) {\n // May contain duplicates if multiple messages target the same recipient. This is harmless since\n // cache invalidation on the TS side is idempotent (deleting an already-deleted key is a no-op).\n let mut scopes: BoundedVec<AztecAddress, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n let mut i = 0;\n let messages_len = messages.len();\n while i < messages_len {\n let msg = messages.get(i);\n let tx_hash = if msg.tx_hash.is_some() {\n msg.tx_hash.unwrap()\n } else {\n 0\n };\n let inbox: CapsuleArray<PendingOffchainMsg> =\n CapsuleArray::at(contract_address, OFFCHAIN_INBOX_SLOT, msg.recipient);\n inbox.push(\n PendingOffchainMsg {\n ciphertext: msg.ciphertext,\n recipient: msg.recipient,\n tx_hash,\n anchor_block_timestamp: msg.anchor_block_timestamp,\n },\n );\n scopes.push(msg.recipient);\n i += 1;\n }\n\n set_contract_sync_cache_invalid(contract_address, scopes);\n}\n\n/// Returns offchain-delivered messages to process during sync.\n///\n/// Messages remain in the inbox and are reprocessed on each sync until their originating transaction is no longer at\n/// risk of being dropped by a reorg.\npub unconstrained fn sync_inbox(\n contract_address: AztecAddress,\n scope: AztecAddress,\n) -> EphemeralArray<OffchainMessageWithContext> {\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(contract_address, OFFCHAIN_INBOX_SLOT, scope);\n let context_resolution_requests: EphemeralArray<Field> = EphemeralArray::at(OFFCHAIN_CONTEXT_REQUESTS_SLOT).clear();\n let ready_to_process: EphemeralArray<OffchainMessageWithContext> =\n EphemeralArray::at(OFFCHAIN_READY_MESSAGES_SLOT).clear();\n\n // Build a request list aligned with the inbox indices.\n let mut i = 0;\n let inbox_len = inbox.len();\n while i < inbox_len {\n let msg = inbox.get(i);\n context_resolution_requests.push(msg.tx_hash);\n i += 1;\n }\n\n // Ask PXE to resolve contexts for all requested tx hashes. The oracle returns responses in a new\n // ephemeral array.\n let resolved_contexts =\n crate::oracle::message_processing::get_message_contexts_by_tx_hash(context_resolution_requests);\n\n assert_eq(resolved_contexts.len(), inbox_len);\n\n let now = UtilityContext::new().timestamp();\n\n let mut j = inbox_len;\n while j > 0 {\n // This loop decides what to do with each message in the offchain message inbox. We need to handle 3\n // different scenarios for each message.\n //\n // 1. The TX that emitted this message is still not known to PXE: in this case we can't yet process this\n // message, as any notes or events discovered will fail to be validated. So we leave the message in the inbox,\n // awaiting for future syncs to detect that the TX became available.\n //\n // 2. The message is not associated to a TX to begin with. The current version of offchain message processing\n // does not support this case, but in the future it will. Right now, a message without an associated TX will\n // sit in the inbox until it expires.\n //\n // 3. The TX that emitted this message has been found by PXE. That gives us all the information needed to\n // process the message. We add the message to the `ready_to_process` EphemeralArray so that the `sync_state`\n // loop\n // processes it.\n //\n // In all cases, if the message has expired (i.e. `now > anchor_block_timestamp + MAX_MSG_TTL`), we remove it\n // from the inbox.\n //\n // Note: the loop runs backwards because it might call `inbox.remove(j)` to purge expired messages and we also\n // need to align it with `resolved_contexts.get(j)`. Going from last to first simplifies the algorithm as\n // not yet visited element indexes remain stable.\n j -= 1;\n let maybe_ctx = resolved_contexts.get(j);\n let msg = inbox.get(j);\n\n // Compute the message's effective expiration timestamp to determine if we can purge it from the inbox.\n let effective_expiration = msg.anchor_block_timestamp + MAX_MSG_TTL;\n\n // Message expired. We remove it from the inbox.\n if now > effective_expiration {\n inbox.remove(j);\n }\n\n // Scenario 1: associated TX not yet available. We keep the message in the inbox, as it might become\n // processable as new blocks get mined.\n // Scenario 2: no TX associated to message. The message will sit in the inbox until it expires.\n if maybe_ctx.is_none() {\n continue;\n }\n\n // Scenario 3: Message is ready to process, add to result array. Note we still keep it in the inbox unless we\n // consider it has expired: this is because we need to account for reorgs. If reorg occurs after we processed\n // a message, the effects of processing the message get rewind. However, the associated TX can be included in\n // a subsequent block. Should that happen, the message must be re-processed to ensure consistency.\n let message_context = maybe_ctx.unwrap();\n ready_to_process.push(OffchainMessageWithContext { message_ciphertext: msg.ciphertext, message_context });\n }\n\n ready_to_process\n}\n\nmod test {\n use crate::{\n capsules::CapsuleArray, oracle::random::random, protocol::address::AztecAddress,\n test::helpers::test_environment::TestEnvironment,\n };\n use super::{\n MAX_MSG_TTL, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL, OFFCHAIN_INBOX_SLOT, OffchainMessage, PendingOffchainMsg,\n receive, sync_inbox,\n };\n\n unconstrained fn setup() -> (TestEnvironment, AztecAddress) {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n (env, scope)\n }\n\n /// Creates an `OffchainMessage` with dummy ciphertext and the given scope as recipient.\n fn make_msg(recipient: AztecAddress, tx_hash: Option<Field>, anchor_block_timestamp: u64) -> OffchainMessage {\n OffchainMessage { ciphertext: BoundedVec::new(), recipient, tx_hash, anchor_block_timestamp }\n }\n\n /// Advances the TXE block timestamp by `offset` seconds and returns the resulting timestamp.\n unconstrained fn advance_by(env: TestEnvironment, offset: u64) -> u64 {\n env.advance_next_block_timestamp_by(offset);\n env.mine_block();\n env.last_block_timestamp()\n }\n\n #[test]\n unconstrained fn empty_inbox_returns_empty_result() {\n let (env, scope) = setup();\n env.utility_context(|context| {\n let result = sync_inbox(context.this_address(), scope);\n let inbox: CapsuleArray<PendingOffchainMsg> =\n CapsuleArray::at(context.this_address(), OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0);\n assert_eq(inbox.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn tx_bound_msg_expires_after_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, MAX_MSG_TTL + 1);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 0); // expired, removed\n });\n }\n\n #[test]\n unconstrained fn tx_bound_msg_not_expired_before_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance, but not past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 1); // not expired, stays\n });\n }\n\n #[test]\n unconstrained fn tx_less_msg_expires_after_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::none(), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, MAX_MSG_TTL + 1);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 0); // expired, removed\n });\n }\n\n #[test]\n unconstrained fn unresolved_tx_stays_in_inbox() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // not resolved, not ready\n assert_eq(inbox.len(), 1); // not expired, stays\n });\n }\n\n #[test]\n unconstrained fn multiple_messages_mixed_expiration() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n let survivor_tx_hash = random();\n\n env.utility_context(|context| {\n let address = context.this_address();\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n // Message 0: tx-bound, anchor_ts in the past so it expires at\n // anchor_ts + MAX_MSG_TTL. We set anchor to 0 so it expires quickly.\n msgs.push(make_msg(scope, Option::some(random()), 0));\n // Message 1: tx-bound, anchor_ts is recent so it survives.\n msgs.push(make_msg(scope, Option::some(survivor_tx_hash), anchor_ts));\n // Message 2: tx-less, anchor_ts=0 so it also expires.\n msgs.push(make_msg(scope, Option::none(), 0));\n receive(address, msgs);\n });\n\n // Advance past MAX_MSG_TTL for anchor_ts=0, but not for anchor_ts=anchor_ts.\n let _now = advance_by(env, MAX_MSG_TTL);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // all contexts are None\n // Message 0 expired (anchor=0), message 1 survived (anchor=anchor_ts),\n // Message 2 expired (anchor=0).\n assert_eq(inbox.len(), 1);\n assert_eq(inbox.get(0).tx_hash, survivor_tx_hash);\n });\n }\n\n // -- Resolved context (ready to process) ------------------------------\n\n #[test]\n unconstrained fn resolved_msg_is_ready_to_process() {\n let (env, scope) = setup();\n // TestEnvironment::new() deploys protocol contracts, creating blocks with tx effects.\n // In TXE, tx hashes equal Fr(blockNumber), so Fr(1) is the tx effect from block 1.\n // We use this as a \"known resolvable\" tx hash.\n let known_tx_hash: Field = 1;\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(known_tx_hash), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n // The message should be ready to process since its tx context was resolved.\n assert_eq(result.len(), 1);\n\n let ctx = result.get(0).message_context;\n assert_eq(ctx.tx_hash, known_tx_hash);\n assert(ctx.first_nullifier_in_tx != 0, \"resolved context must have a first nullifier\");\n\n // Message stays in inbox (not expired) for potential reorg reprocessing.\n assert_eq(inbox.len(), 1);\n });\n }\n}\n"
534
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/messages/processing/offchain.nr",
535
+ "source": "use crate::{\n capsules::CapsuleArray,\n context::UtilityContext,\n ephemeral::EphemeralArray,\n messages::{encoding::MESSAGE_CIPHERTEXT_LEN, processing::OffchainMessageWithContext},\n oracle::contract_sync::set_contract_sync_cache_invalid,\n protocol::{\n address::AztecAddress,\n constants::MAX_TX_LIFETIME,\n hash::sha256_to_field,\n traits::{Deserialize, Serialize},\n },\n};\n\n/// Base capsule slot for the persistent inbox of [`PendingOffchainMsg`] entries.\n///\n/// This is the slot where we accumulate messages received through [`receive`].\nglobal OFFCHAIN_INBOX_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_INBOX_SLOT\".as_bytes());\n\n/// Ephemeral array slot used by [`sync_inbox`] to pass tx hash resolution requests to PXE.\nglobal OFFCHAIN_CONTEXT_REQUESTS_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_CONTEXT_REQUESTS_SLOT\".as_bytes());\n\n/// Ephemeral array slot used by [`sync_inbox`] to collect messages ready for processing.\nglobal OFFCHAIN_READY_MESSAGES_SLOT: Field = sha256_to_field(\"AZTEC_NR::OFFCHAIN_READY_MESSAGES_SLOT\".as_bytes());\n\n/// Maximum number of offchain messages accepted by `offchain_receive` in a single call.\npub global MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL: u32 = 16;\n\n/// Tolerance added to the `MAX_TX_LIFETIME` cap for message expiration.\nglobal TX_EXPIRATION_TOLERANCE: u64 = 7200; // 2 hours\n\n/// Maximum time-to-live for a tx-bound offchain message.\n///\n/// After `anchor_block_timestamp + MAX_MSG_TTL`, the message is evicted from the inbox.\nglobal MAX_MSG_TTL: u64 = MAX_TX_LIFETIME + TX_EXPIRATION_TOLERANCE;\n\n/// A function that manages offchain-delivered messages for processing during sync.\n///\n/// Offchain messages are messages that are not broadcasted via onchain logs. They are instead delivered to the\n/// recipient by calling the `offchain_receive` utility function (injected by the `#[aztec]` macro). Message transport\n/// is the app's responsibility. Typical examples of transport methods are: messaging apps, email, QR codes, etc.\n///\n/// Once offchain messages are delivered to the recipient's private environment via `offchain_receive`, messages are\n/// locally stored in a persistent inbox.\n///\n/// This function determines when each message in said inbox is ready for processing, when it can be safely disposed\n/// of, etc.\n///\n/// The only current implementation of an `OffchainInboxSync` is [`sync_inbox`], which manages an inbox with expiration\n/// based eviction and automatic transaction context resolution.\npub type OffchainInboxSync = unconstrained fn(\n/* contract_address */AztecAddress, /* scope */ AztecAddress) -> EphemeralArray<OffchainMessageWithContext>;\n\n/// A message delivered via the `offchain_receive` utility function.\n#[derive(Serialize, Deserialize)]\npub struct OffchainMessage {\n /// The encrypted message payload.\n pub ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n /// The intended recipient of the message.\n pub recipient: AztecAddress,\n /// The hash of the transaction that produced this message. `Option::none` indicates a tx-less message.\n pub tx_hash: Option<Field>,\n /// Anchor block timestamp at message emission.\n pub anchor_block_timestamp: u64,\n}\n\n/// An offchain message awaiting processing (or re-processing) in the inbox.\n///\n/// Messages remain in the inbox until they expire, even if they have already been processed. This is necessary to\n/// handle reorgs: a processed message may need to be re-processed if the transaction that provided its context is\n/// reverted. On each sync, resolved messages are promoted to [`OffchainMessageWithContext`] for processing.\n#[derive(Serialize, Deserialize)]\nstruct PendingOffchainMsg {\n /// The encrypted message payload.\n ciphertext: BoundedVec<Field, MESSAGE_CIPHERTEXT_LEN>,\n /// The intended recipient of the message.\n recipient: AztecAddress,\n /// The hash of the transaction that produced this message. A value of 0 indicates a tx-less message.\n tx_hash: Field,\n /// Anchor block timestamp at message emission. Used to compute the effective expiration: messages are evicted\n /// after `anchor_block_timestamp + MAX_MSG_TTL`.\n anchor_block_timestamp: u64,\n}\n\n/// Delivers offchain messages to the given contract's offchain inbox for subsequent processing.\n///\n/// Offchain messages are transaction effects that are not broadcasted via onchain logs. Instead, the sender shares the\n/// message to the recipient through an external channel (e.g. a URL accessible by the recipient). The recipient then\n/// calls this function to hand the messages to the contract so they can be processed through the same mechanisms as\n/// onchain messages.\n///\n/// Each message is routed to the inbox scoped to its `recipient` field, so messages for different accounts are\n/// automatically isolated.\n///\n/// Messages are processed when their originating transaction is found onchain (providing the context needed to\n/// validate resulting notes and events).\n///\n/// Messages are kept in the inbox until they expire. The effective expiration is\n/// `anchor_block_timestamp + MAX_MSG_TTL`.\n///\n/// Processing order is not guaranteed.\npub unconstrained fn receive(\n contract_address: AztecAddress,\n messages: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL>,\n) {\n // May contain duplicates if multiple messages target the same recipient. This is harmless since\n // cache invalidation on the TS side is idempotent (deleting an already-deleted key is a no-op).\n let mut scopes: BoundedVec<AztecAddress, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n let mut i = 0;\n let messages_len = messages.len();\n while i < messages_len {\n let msg = messages.get(i);\n let tx_hash = if msg.tx_hash.is_some() {\n msg.tx_hash.unwrap()\n } else {\n 0\n };\n let inbox: CapsuleArray<PendingOffchainMsg> =\n CapsuleArray::at(contract_address, OFFCHAIN_INBOX_SLOT, msg.recipient);\n inbox.push(\n PendingOffchainMsg {\n ciphertext: msg.ciphertext,\n recipient: msg.recipient,\n tx_hash,\n anchor_block_timestamp: msg.anchor_block_timestamp,\n },\n );\n scopes.push(msg.recipient);\n i += 1;\n }\n\n set_contract_sync_cache_invalid(contract_address, scopes);\n}\n\n/// Returns offchain-delivered messages to process during sync.\n///\n/// Messages remain in the inbox and are reprocessed on each sync until their originating transaction is no longer at\n/// risk of being dropped by a reorg.\npub unconstrained fn sync_inbox(\n contract_address: AztecAddress,\n scope: AztecAddress,\n) -> EphemeralArray<OffchainMessageWithContext> {\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(contract_address, OFFCHAIN_INBOX_SLOT, scope);\n let context_resolution_requests: EphemeralArray<Field> = EphemeralArray::empty_at(OFFCHAIN_CONTEXT_REQUESTS_SLOT);\n let ready_to_process: EphemeralArray<OffchainMessageWithContext> =\n EphemeralArray::empty_at(OFFCHAIN_READY_MESSAGES_SLOT);\n\n // Build a request list aligned with the inbox indices.\n let mut i = 0;\n let inbox_len = inbox.len();\n while i < inbox_len {\n let msg = inbox.get(i);\n context_resolution_requests.push(msg.tx_hash);\n i += 1;\n }\n\n // Ask PXE to resolve contexts for all requested tx hashes. The oracle returns responses in a new\n // ephemeral array.\n let resolved_contexts =\n crate::oracle::message_processing::get_message_contexts_by_tx_hash(context_resolution_requests);\n\n assert_eq(resolved_contexts.len(), inbox_len);\n\n let now = UtilityContext::new().timestamp();\n\n let mut j = inbox_len;\n while j > 0 {\n // This loop decides what to do with each message in the offchain message inbox. We need to handle 3\n // different scenarios for each message.\n //\n // 1. The TX that emitted this message is still not known to PXE: in this case we can't yet process this\n // message, as any notes or events discovered will fail to be validated. So we leave the message in the inbox,\n // awaiting for future syncs to detect that the TX became available.\n //\n // 2. The message is not associated to a TX to begin with. The current version of offchain message processing\n // does not support this case, but in the future it will. Right now, a message without an associated TX will\n // sit in the inbox until it expires.\n //\n // 3. The TX that emitted this message has been found by PXE. That gives us all the information needed to\n // process the message. We add the message to the `ready_to_process` EphemeralArray so that the `sync_state`\n // loop\n // processes it.\n //\n // In all cases, if the message has expired (i.e. `now > anchor_block_timestamp + MAX_MSG_TTL`), we remove it\n // from the inbox.\n //\n // Note: the loop runs backwards because it might call `inbox.remove(j)` to purge expired messages and we also\n // need to align it with `resolved_contexts.get(j)`. Going from last to first simplifies the algorithm as\n // not yet visited element indexes remain stable.\n j -= 1;\n let maybe_ctx = resolved_contexts.get(j);\n let msg = inbox.get(j);\n\n // Compute the message's effective expiration timestamp to determine if we can purge it from the inbox.\n let effective_expiration = msg.anchor_block_timestamp + MAX_MSG_TTL;\n\n // Message expired. We remove it from the inbox.\n if now > effective_expiration {\n inbox.remove(j);\n }\n\n // Scenario 1: associated TX not yet available. We keep the message in the inbox, as it might become\n // processable as new blocks get mined.\n // Scenario 2: no TX associated to message. The message will sit in the inbox until it expires.\n if maybe_ctx.is_none() {\n continue;\n }\n\n // Scenario 3: Message is ready to process, add to result array. Note we still keep it in the inbox unless we\n // consider it has expired: this is because we need to account for reorgs. If reorg occurs after we processed\n // a message, the effects of processing the message get rewind. However, the associated TX can be included in\n // a subsequent block. Should that happen, the message must be re-processed to ensure consistency.\n let message_context = maybe_ctx.unwrap();\n ready_to_process.push(OffchainMessageWithContext { message_ciphertext: msg.ciphertext, message_context });\n }\n\n ready_to_process\n}\n\nmod test {\n use crate::{\n capsules::CapsuleArray, oracle::random::random, protocol::address::AztecAddress,\n test::helpers::test_environment::TestEnvironment,\n };\n use super::{\n MAX_MSG_TTL, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL, OFFCHAIN_INBOX_SLOT, OffchainMessage, PendingOffchainMsg,\n receive, sync_inbox,\n };\n\n unconstrained fn setup() -> (TestEnvironment, AztecAddress) {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n (env, scope)\n }\n\n /// Creates an `OffchainMessage` with dummy ciphertext and the given scope as recipient.\n fn make_msg(recipient: AztecAddress, tx_hash: Option<Field>, anchor_block_timestamp: u64) -> OffchainMessage {\n OffchainMessage { ciphertext: BoundedVec::new(), recipient, tx_hash, anchor_block_timestamp }\n }\n\n /// Advances the TXE block timestamp by `offset` seconds and returns the resulting timestamp.\n unconstrained fn advance_by(env: TestEnvironment, offset: u64) -> u64 {\n env.advance_next_block_timestamp_by(offset);\n env.mine_block();\n env.last_block_timestamp()\n }\n\n #[test]\n unconstrained fn empty_inbox_returns_empty_result() {\n let (env, scope) = setup();\n env.utility_context(|context| {\n let result = sync_inbox(context.this_address(), scope);\n let inbox: CapsuleArray<PendingOffchainMsg> =\n CapsuleArray::at(context.this_address(), OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0);\n assert_eq(inbox.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn tx_bound_msg_expires_after_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, MAX_MSG_TTL + 1);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 0); // expired, removed\n });\n }\n\n #[test]\n unconstrained fn tx_bound_msg_not_expired_before_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance, but not past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 1); // not expired, stays\n });\n }\n\n #[test]\n unconstrained fn tx_less_msg_expires_after_max_msg_ttl() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::none(), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n // Advance past anchor_ts + MAX_MSG_TTL.\n let _now = advance_by(env, MAX_MSG_TTL + 1);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // context is None, not ready\n assert_eq(inbox.len(), 0); // expired, removed\n });\n }\n\n #[test]\n unconstrained fn unresolved_tx_stays_in_inbox() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(random()), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // not resolved, not ready\n assert_eq(inbox.len(), 1); // not expired, stays\n });\n }\n\n #[test]\n unconstrained fn multiple_messages_mixed_expiration() {\n let (env, scope) = setup();\n let anchor_ts = advance_by(env, 10);\n\n let survivor_tx_hash = random();\n\n env.utility_context(|context| {\n let address = context.this_address();\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n // Message 0: tx-bound, anchor_ts in the past so it expires at\n // anchor_ts + MAX_MSG_TTL. We set anchor to 0 so it expires quickly.\n msgs.push(make_msg(scope, Option::some(random()), 0));\n // Message 1: tx-bound, anchor_ts is recent so it survives.\n msgs.push(make_msg(scope, Option::some(survivor_tx_hash), anchor_ts));\n // Message 2: tx-less, anchor_ts=0 so it also expires.\n msgs.push(make_msg(scope, Option::none(), 0));\n receive(address, msgs);\n });\n\n // Advance past MAX_MSG_TTL for anchor_ts=0, but not for anchor_ts=anchor_ts.\n let _now = advance_by(env, MAX_MSG_TTL);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n assert_eq(result.len(), 0); // all contexts are None\n // Message 0 expired (anchor=0), message 1 survived (anchor=anchor_ts),\n // Message 2 expired (anchor=0).\n assert_eq(inbox.len(), 1);\n assert_eq(inbox.get(0).tx_hash, survivor_tx_hash);\n });\n }\n\n // -- Resolved context (ready to process) ------------------------------\n\n #[test]\n unconstrained fn resolved_msg_is_ready_to_process() {\n let (env, scope) = setup();\n // TestEnvironment::new() deploys protocol contracts, creating blocks with tx effects.\n // In TXE, tx hashes equal Fr(blockNumber), so Fr(1) is the tx effect from block 1.\n // We use this as a \"known resolvable\" tx hash.\n let known_tx_hash: Field = 1;\n let anchor_ts = advance_by(env, 10);\n\n env.utility_context(|context| {\n let mut msgs: BoundedVec<OffchainMessage, MAX_OFFCHAIN_MESSAGES_PER_RECEIVE_CALL> = BoundedVec::new();\n msgs.push(make_msg(scope, Option::some(known_tx_hash), anchor_ts));\n receive(context.this_address(), msgs);\n });\n\n let _now = advance_by(env, 100);\n\n env.utility_context(|context| {\n let address = context.this_address();\n let result = sync_inbox(address, scope);\n let inbox: CapsuleArray<PendingOffchainMsg> = CapsuleArray::at(address, OFFCHAIN_INBOX_SLOT, scope);\n\n // The message should be ready to process since its tx context was resolved.\n assert_eq(result.len(), 1);\n\n let ctx = result.get(0).message_context;\n assert_eq(ctx.tx_hash, known_tx_hash);\n assert(ctx.first_nullifier_in_tx != 0, \"resolved context must have a first nullifier\");\n\n // Message stays in inbox (not expired) for potential reorg reprocessing.\n assert_eq(inbox.len(), 1);\n });\n }\n}\n"
536
536
  },
537
537
  "16": {
538
538
  "function_locations": [
@@ -910,7 +910,7 @@
910
910
  "path": "std/hash/mod.nr",
911
911
  "source": "// Exposed only for usage in `std::meta`\npub(crate) mod poseidon2;\n\nuse crate::default::Default;\nuse crate::embedded_curve_ops::{\n EmbeddedCurvePoint, EmbeddedCurveScalar, multi_scalar_mul, multi_scalar_mul_array_return,\n};\nuse crate::meta::derive_via;\nuse crate::static_assert;\n\n/// The size of the state accepted by the backend in `poseidon2_permutation`.\nglobal POSEIDON2_CONFIG_STATE_SIZE: u32 = poseidon2_config_state_size();\n\n#[foreign(sha256_compression)]\n// docs:start:sha256_compression\npub fn sha256_compression(input: [u32; 16], state: [u32; 8]) -> [u32; 8] {}\n// docs:end:sha256_compression\n\n#[foreign(keccakf1600)]\n// docs:start:keccakf1600\npub fn keccakf1600(input: [u64; 25]) -> [u64; 25] {}\n// docs:end:keccakf1600\n\npub mod keccak {\n #[deprecated(\"This function has been moved to std::hash::keccakf1600\")]\n pub fn keccakf1600(input: [u64; 25]) -> [u64; 25] {\n super::keccakf1600(input)\n }\n}\n\n#[foreign(blake2s)]\n// docs:start:blake2s\npub fn blake2s<let N: u32>(input: [u8; N]) -> [u8; 32]\n// docs:end:blake2s\n{}\n\n// docs:start:blake3\npub fn blake3<let N: u32>(input: [u8; N]) -> [u8; 32]\n// docs:end:blake3\n{\n if crate::runtime::is_unconstrained() {\n // Temporary measure while Barretenberg is main proving system.\n // Please open an issue if you're working on another proving system and running into problems due to this.\n crate::static_assert(\n N <= 1024,\n \"Barretenberg cannot prove blake3 hashes with inputs larger than 1024 bytes\",\n );\n }\n __blake3(input)\n}\n\n#[foreign(blake3)]\nfn __blake3<let N: u32>(input: [u8; N]) -> [u8; 32] {}\n\n// docs:start:pedersen_commitment\npub fn pedersen_commitment<let N: u32>(input: [Field; N]) -> EmbeddedCurvePoint {\n // docs:end:pedersen_commitment\n pedersen_commitment_with_separator(input, 0)\n}\n\n#[inline_always]\npub fn pedersen_commitment_with_separator<let N: u32>(\n input: [Field; N],\n separator: u32,\n) -> EmbeddedCurvePoint {\n let mut points = [EmbeddedCurveScalar { lo: 0, hi: 0 }; N];\n for i in 0..N {\n points[i] = EmbeddedCurveScalar::from_field(input[i]);\n }\n let generators = derive_generators(\"DEFAULT_DOMAIN_SEPARATOR\".as_bytes(), separator);\n multi_scalar_mul(generators, points)\n}\n\n// docs:start:pedersen_hash\npub fn pedersen_hash<let N: u32>(input: [Field; N]) -> Field\n// docs:end:pedersen_hash\n{\n pedersen_hash_with_separator(input, 0)\n}\n\n#[no_predicates]\npub fn pedersen_hash_with_separator<let N: u32>(input: [Field; N], separator: u32) -> Field {\n let mut scalars: [EmbeddedCurveScalar; N + 1] = [EmbeddedCurveScalar { lo: 0, hi: 0 }; N + 1];\n let mut generators: [EmbeddedCurvePoint; N + 1] =\n [EmbeddedCurvePoint::point_at_infinity(); N + 1];\n crate::assert_constant(separator);\n let domain_generators: [EmbeddedCurvePoint; N] =\n derive_generators(\"DEFAULT_DOMAIN_SEPARATOR\".as_bytes(), separator);\n\n for i in 0..N {\n scalars[i] = EmbeddedCurveScalar::from_field(input[i]);\n generators[i] = domain_generators[i];\n }\n scalars[N] = EmbeddedCurveScalar { lo: N as Field, hi: 0 as Field };\n\n let length_generator: [EmbeddedCurvePoint; 1] =\n derive_generators(\"pedersen_hash_length\".as_bytes(), 0);\n generators[N] = length_generator[0];\n multi_scalar_mul_array_return(generators, scalars, true)[0].x\n}\n\n#[field(bn254)]\n#[inline_always]\npub fn derive_generators<let N: u32, let M: u32>(\n domain_separator_bytes: [u8; M],\n starting_index: u32,\n) -> [EmbeddedCurvePoint; N] {\n crate::assert_constant(domain_separator_bytes);\n crate::assert_constant(starting_index);\n __derive_generators(domain_separator_bytes, starting_index)\n}\n\n#[builtin(derive_pedersen_generators)]\n#[field(bn254)]\nfn __derive_generators<let N: u32, let M: u32>(\n domain_separator_bytes: [u8; M],\n starting_index: u32,\n) -> [EmbeddedCurvePoint; N] {}\n\npub fn poseidon2_permutation<let N: u32>(input: [Field; N]) -> [Field; N] {\n static_assert(\n N == POSEIDON2_CONFIG_STATE_SIZE,\n f\"the input length must equal the state size in the Poseidon2 config; expected {POSEIDON2_CONFIG_STATE_SIZE}, got {N}\",\n );\n poseidon2_permutation_internal(input)\n}\n\n#[foreign(poseidon2_permutation)]\nfn poseidon2_permutation_internal<let N: u32>(input: [Field; N]) -> [Field; N] {}\n\n#[foreign(poseidon2_config_state_size)]\ncomptime fn poseidon2_config_state_size() -> u32 {}\n\n// Generic hashing support.\n// Partially ported and impacted by rust.\n\n// Hash trait shall be implemented per type.\n#[derive_via(derive_hash)]\npub trait Hash {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher;\n}\n\n// docs:start:derive_hash\ncomptime fn derive_hash(s: TypeDefinition) -> Quoted {\n let name = quote { $crate::hash::Hash };\n let signature = quote { fn hash<H>(_self: Self, _state: &mut H) where H: $crate::hash::Hasher };\n let for_each_field = |name| quote { _self.$name.hash(_state); };\n crate::meta::make_trait_impl(\n s,\n name,\n signature,\n for_each_field,\n quote {},\n |fields| fields,\n )\n}\n// docs:end:derive_hash\n\n// Hasher trait shall be implemented by algorithms to provide hash-agnostic means.\n// TODO: consider making the types generic here ([u8], [Field], etc.)\npub trait Hasher {\n fn finish(self) -> Field;\n\n /// Returns the hash value without consuming the hasher.\n /// Override this for more efficient implementations that avoid copying.\n /// TODO: deprecate finish() and replace it\n fn finish_ref(&self) -> Field {\n (*self).finish()\n }\n\n fn write(&mut self, input: Field);\n}\n\n// BuildHasher is a factory trait, responsible for production of specific Hasher.\npub trait BuildHasher {\n type H: Hasher;\n\n fn build_hasher(self) -> H;\n}\n\npub struct BuildHasherDefault<H>;\n\nimpl<H> BuildHasher for BuildHasherDefault<H>\nwhere\n H: Hasher + Default,\n{\n type H = H;\n\n fn build_hasher(_self: Self) -> H {\n H::default()\n }\n}\n\nimpl<H> Default for BuildHasherDefault<H>\nwhere\n H: Hasher + Default,\n{\n fn default() -> Self {\n BuildHasherDefault {}\n }\n}\n\nimpl Hash for Field {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self);\n }\n}\n\nimpl Hash for u8 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for u16 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for u32 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for u64 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for u128 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for i8 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as u8 as Field);\n }\n}\n\nimpl Hash for i16 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as u16 as Field);\n }\n}\n\nimpl Hash for i32 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as u32 as Field);\n }\n}\n\nimpl Hash for i64 {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as u64 as Field);\n }\n}\n\nimpl Hash for bool {\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n H::write(state, self as Field);\n }\n}\n\nimpl Hash for () {\n fn hash<H>(_self: Self, _state: &mut H)\n where\n H: Hasher,\n {}\n}\n\nimpl<T, let N: u32> Hash for [T; N]\nwhere\n T: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n for elem in self {\n elem.hash(state);\n }\n }\n}\n\nimpl<T> Hash for [T]\nwhere\n T: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self.len().hash(state);\n for elem in self {\n elem.hash(state);\n }\n }\n}\n\nimpl<A, B> Hash for (A, B)\nwhere\n A: Hash,\n B: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self.0.hash(state);\n self.1.hash(state);\n }\n}\n\nimpl<A, B, C> Hash for (A, B, C)\nwhere\n A: Hash,\n B: Hash,\n C: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self.0.hash(state);\n self.1.hash(state);\n self.2.hash(state);\n }\n}\n\nimpl<A, B, C, D> Hash for (A, B, C, D)\nwhere\n A: Hash,\n B: Hash,\n C: Hash,\n D: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self.0.hash(state);\n self.1.hash(state);\n self.2.hash(state);\n self.3.hash(state);\n }\n}\n\nimpl<A, B, C, D, E> Hash for (A, B, C, D, E)\nwhere\n A: Hash,\n B: Hash,\n C: Hash,\n D: Hash,\n E: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self.0.hash(state);\n self.1.hash(state);\n self.2.hash(state);\n self.3.hash(state);\n self.4.hash(state);\n }\n}\n\n// Some test vectors for Pedersen hash and Pedersen Commitment.\n// They have been generated using the same functions so the tests are for now useless\n// but they will be useful when we switch to Noir implementation.\n#[test]\nfn assert_pedersen() {\n assert_eq(\n pedersen_hash_with_separator([1], 1),\n 0x1b3f4b1a83092a13d8d1a59f7acb62aba15e7002f4440f2275edb99ebbc2305f,\n );\n assert_eq(\n pedersen_commitment_with_separator([1], 1),\n EmbeddedCurvePoint {\n x: 0x054aa86a73cb8a34525e5bbed6e43ba1198e860f5f3950268f71df4591bde402,\n y: 0x209dcfbf2cfb57f9f6046f44d71ac6faf87254afc7407c04eb621a6287cac126,\n },\n );\n\n assert_eq(\n pedersen_hash_with_separator([1, 2], 2),\n 0x26691c129448e9ace0c66d11f0a16d9014a9e8498ee78f4d69f0083168188255,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2], 2),\n EmbeddedCurvePoint {\n x: 0x2e2b3b191e49541fe468ec6877721d445dcaffe41728df0a0eafeb15e87b0753,\n y: 0x2ff4482400ad3a6228be17a2af33e2bcdf41be04795f9782bd96efe7e24f8778,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3], 3),\n 0x0bc694b7a1f8d10d2d8987d07433f26bd616a2d351bc79a3c540d85b6206dbe4,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3], 3),\n EmbeddedCurvePoint {\n x: 0x1fee4e8cf8d2f527caa2684236b07c4b1bad7342c01b0f75e9a877a71827dc85,\n y: 0x2f9fedb9a090697ab69bf04c8bc15f7385b3e4b68c849c1536e5ae15ff138fd1,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4], 4),\n 0xdae10fb32a8408521803905981a2b300d6a35e40e798743e9322b223a5eddc,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4], 4),\n EmbeddedCurvePoint {\n x: 0x07ae3e202811e1fca39c2d81eabe6f79183978e6f12be0d3b8eda095b79bdbc9,\n y: 0x0afc6f892593db6fbba60f2da558517e279e0ae04f95758587760ba193145014,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5], 5),\n 0xfc375b062c4f4f0150f7100dfb8d9b72a6d28582dd9512390b0497cdad9c22,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5], 5),\n EmbeddedCurvePoint {\n x: 0x1754b12bd475a6984a1094b5109eeca9838f4f81ac89c5f0a41dbce53189bb29,\n y: 0x2da030e3cfcdc7ddad80eaf2599df6692cae0717d4e9f7bfbee8d073d5d278f7,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5, 6], 6),\n 0x1696ed13dc2730062a98ac9d8f9de0661bb98829c7582f699d0273b18c86a572,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5, 6], 6),\n EmbeddedCurvePoint {\n x: 0x190f6c0e97ad83e1e28da22a98aae156da083c5a4100e929b77e750d3106a697,\n y: 0x1f4b60f34ef91221a0b49756fa0705da93311a61af73d37a0c458877706616fb,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5, 6, 7], 7),\n 0x128c0ff144fc66b6cb60eeac8a38e23da52992fc427b92397a7dffd71c45ede3,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5, 6, 7], 7),\n EmbeddedCurvePoint {\n x: 0x015441e9d29491b06563fac16fc76abf7a9534c715421d0de85d20dbe2965939,\n y: 0x1d2575b0276f4e9087e6e07c2cb75aa1baafad127af4be5918ef8a2ef2fea8fc,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5, 6, 7, 8], 8),\n 0x2f960e117482044dfc99d12fece2ef6862fba9242be4846c7c9a3e854325a55c,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5, 6, 7, 8], 8),\n EmbeddedCurvePoint {\n x: 0x1657737676968887fceb6dd516382ea13b3a2c557f509811cd86d5d1199bc443,\n y: 0x1f39f0cb569040105fa1e2f156521e8b8e08261e635a2b210bdc94e8d6d65f77,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5, 6, 7, 8, 9], 9),\n 0x0c96db0790602dcb166cc4699e2d306c479a76926b81c2cb2aaa92d249ec7be7,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5, 6, 7, 8, 9], 9),\n EmbeddedCurvePoint {\n x: 0x0a3ceae42d14914a432aa60ec7fded4af7dad7dd4acdbf2908452675ec67e06d,\n y: 0xfc19761eaaf621ad4aec9a8b2e84a4eceffdba78f60f8b9391b0bd9345a2f2,\n },\n );\n assert_eq(\n pedersen_hash_with_separator([1, 2, 3, 4, 5, 6, 7, 8, 9, 10], 10),\n 0x2cd37505871bc460a62ea1e63c7fe51149df5d0801302cf1cbc48beb8dff7e94,\n );\n assert_eq(\n pedersen_commitment_with_separator([1, 2, 3, 4, 5, 6, 7, 8, 9, 10], 10),\n EmbeddedCurvePoint {\n x: 0x2fb3f8b3d41ddde007c8c3c62550f9a9380ee546fcc639ffbb3fd30c8d8de30c,\n y: 0x300783be23c446b11a4c0fabf6c91af148937cea15fcf5fb054abf7f752ee245,\n },\n );\n}\n"
912
912
  },
913
- "171": {
913
+ "173": {
914
914
  "function_locations": [
915
915
  {
916
916
  "name": "aes128_decrypt_oracle",
@@ -929,10 +929,10 @@
929
929
  "start": 3150
930
930
  }
931
931
  ],
932
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/aes128_decrypt.nr",
932
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/aes128_decrypt.nr",
933
933
  "source": "#[oracle(aztec_utl_decryptAes128)]\nunconstrained fn aes128_decrypt_oracle<let N: u32>(\n ciphertext: BoundedVec<u8, N>,\n iv: [u8; 16],\n sym_key: [u8; 16],\n) -> Option<BoundedVec<u8, N>> {}\n\n/// Attempts to decrypt a ciphertext using AES128.\n///\n/// Returns `Option::some(plaintext)` on success, or `Option::none()` if decryption fails (e.g. due to malformed\n/// ciphertext or invalid PKCS#7 padding). Note that decryption with the wrong key will almost always return `None`\n/// because the decrypted garbage data will have invalid PKCS#7 padding.\n///\n/// Note that we accept ciphertext as a BoundedVec, not as an array. This is because this function is typically used\n/// when processing logs and at that point we don't have comptime information about the length of the ciphertext as\n/// the log is not specific to any individual note.\n// TODO(F-498): review naming consistency\npub unconstrained fn try_aes128_decrypt<let N: u32>(\n ciphertext: BoundedVec<u8, N>,\n iv: [u8; 16],\n sym_key: [u8; 16],\n) -> Option<BoundedVec<u8, N>> {\n aes128_decrypt_oracle(ciphertext, iv, sym_key)\n}\n\nmod test {\n use crate::{\n keys::ecdh_shared_secret::compute_app_siloed_shared_secret,\n messages::encryption::aes128::derive_aes_symmetric_key_and_iv_from_shared_secret,\n utils::{array::subarray::subarray, point::point_from_x_coord},\n };\n use crate::protocol::address::AztecAddress;\n use crate::test::helpers::test_environment::TestEnvironment;\n use super::try_aes128_decrypt;\n use std::aes128::aes128_encrypt;\n\n global CONTRACT_ADDRESS: AztecAddress = AztecAddress { inner: 42 };\n global TEST_PLAINTEXT_LENGTH: u32 = 10;\n global TEST_CIPHERTEXT_LENGTH: u32 = 16;\n global TEST_PADDING_LENGTH: u32 = TEST_CIPHERTEXT_LENGTH - TEST_PLAINTEXT_LENGTH;\n\n #[test]\n unconstrained fn aes_encrypt_then_decrypt() {\n let env = TestEnvironment::new();\n\n env.utility_context(|_| {\n let shared_secret_point = point_from_x_coord(1).unwrap();\n let s_app = compute_app_siloed_shared_secret(shared_secret_point, CONTRACT_ADDRESS);\n\n let (sym_key, iv) = derive_aes_symmetric_key_and_iv_from_shared_secret::<1>(s_app)[0];\n\n let plaintext: [u8; TEST_PLAINTEXT_LENGTH] = [0, 1, 2, 3, 4, 5, 6, 7, 8, 9];\n\n let ciphertext: [u8; TEST_CIPHERTEXT_LENGTH] = aes128_encrypt(plaintext, iv, sym_key);\n\n let ciphertext_bvec = BoundedVec::<u8, TEST_CIPHERTEXT_LENGTH>::from_array(ciphertext);\n\n let received_plaintext = try_aes128_decrypt(ciphertext_bvec, iv, sym_key).unwrap();\n assert_eq(received_plaintext.len(), TEST_PLAINTEXT_LENGTH);\n assert_eq(received_plaintext.max_len(), TEST_CIPHERTEXT_LENGTH);\n assert_eq(subarray::<_, _, TEST_PLAINTEXT_LENGTH>(received_plaintext.storage(), 0), plaintext);\n assert_eq(\n subarray::<_, _, TEST_PADDING_LENGTH>(received_plaintext.storage(), TEST_PLAINTEXT_LENGTH),\n [0 as u8; TEST_PADDING_LENGTH],\n );\n })\n }\n\n #[test]\n unconstrained fn aes_encrypt_then_decrypt_with_bad_sym_key_is_caught() {\n let env = TestEnvironment::new();\n\n env.utility_context(|_| {\n // Decrypting with the wrong key results in garbage data with invalid PKCS#7 padding,\n // so the oracle returns None.\n let shared_secret_point = point_from_x_coord(1).unwrap();\n let s_app = compute_app_siloed_shared_secret(shared_secret_point, CONTRACT_ADDRESS);\n\n let (sym_key, iv) = derive_aes_symmetric_key_and_iv_from_shared_secret::<1>(s_app)[0];\n\n let plaintext: [u8; TEST_PLAINTEXT_LENGTH] = [0, 1, 2, 3, 4, 5, 6, 7, 8, 9];\n let ciphertext: [u8; TEST_CIPHERTEXT_LENGTH] = aes128_encrypt(plaintext, iv, sym_key);\n\n let mut bad_sym_key = sym_key;\n bad_sym_key[0] = 0;\n\n let ciphertext_bvec = BoundedVec::<u8, TEST_CIPHERTEXT_LENGTH>::from_array(ciphertext);\n // Decryption with wrong key returns None because the garbage output has invalid PKCS#7 padding.\n let result = try_aes128_decrypt(ciphertext_bvec, iv, bad_sym_key);\n assert(result.is_none(), \"decryption with bad key should return None\");\n });\n }\n}\n"
934
934
  },
935
- "175": {
935
+ "177": {
936
936
  "function_locations": [
937
937
  {
938
938
  "name": "call_private_function_oracle",
@@ -943,10 +943,10 @@
943
943
  "start": 619
944
944
  }
945
945
  ],
946
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/call_private_function.nr",
946
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/call_private_function.nr",
947
947
  "source": "use crate::protocol::{abis::function_selector::FunctionSelector, address::AztecAddress, utils::reader::Reader};\n\n#[oracle(aztec_prv_callPrivateFunction)]\nunconstrained fn call_private_function_oracle(\n _contract_address: AztecAddress,\n _function_selector: FunctionSelector,\n _args_hash: Field,\n _start_side_effect_counter: u32,\n _is_static_call: bool,\n) -> [Field; 2] {}\n\npub unconstrained fn call_private_function_internal(\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args_hash: Field,\n start_side_effect_counter: u32,\n is_static_call: bool,\n) -> (u32, Field) {\n let fields = call_private_function_oracle(\n contract_address,\n function_selector,\n args_hash,\n start_side_effect_counter,\n is_static_call,\n );\n\n let mut reader = Reader::new(fields);\n let end_side_effect_counter = reader.read_u32();\n let returns_hash = reader.read();\n\n (end_side_effect_counter, returns_hash)\n}\n"
948
948
  },
949
- "177": {
949
+ "179": {
950
950
  "function_locations": [
951
951
  {
952
952
  "name": "store",
@@ -1037,10 +1037,10 @@
1037
1037
  "start": 11311
1038
1038
  }
1039
1039
  ],
1040
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/capsules.nr",
1040
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/capsules.nr",
1041
1041
  "source": "use crate::protocol::{address::AztecAddress, traits::{Deserialize, Serialize}};\n\n/// Stores arbitrary information in a per-contract non-volatile database, which can later be retrieved with `load`. If\n/// data was already stored at this slot, it is overwritten.\n// TODO(F-498): review naming consistency\npub unconstrained fn store<T>(contract_address: AztecAddress, slot: Field, value: T, scope: AztecAddress)\nwhere\n T: Serialize,\n{\n let serialized = value.serialize();\n set_capsule_oracle(contract_address, slot, serialized, scope);\n}\n\n/// Returns data previously stored via `storeCapsule` in the per-contract non-volatile database. Returns\n/// Option::none() if nothing was stored at the given slot.\n// TODO(F-498): review naming consistency\npub unconstrained fn load<T>(contract_address: AztecAddress, slot: Field, scope: AztecAddress) -> Option<T>\nwhere\n T: Deserialize,\n{\n let serialized_option = get_capsule_oracle(contract_address, slot, <T as Deserialize>::N, scope);\n serialized_option.map(|arr| Deserialize::deserialize(arr))\n}\n\n/// Deletes data in the per-contract non-volatile database. Does nothing if no data was present.\npub unconstrained fn delete(contract_address: AztecAddress, slot: Field, scope: AztecAddress) {\n delete_oracle(contract_address, slot, scope);\n}\n\n/// Copies a number of contiguous entries in the per-contract non-volatile database. This allows for efficient data\n/// structures by avoiding repeated calls to `loadCapsule` and `storeCapsule`. Supports overlapping source and\n/// destination regions (which will result in the overlapped source values being overwritten). All copied slots must\n/// exist in the database (i.e. have been stored and not deleted)\npub unconstrained fn copy(\n contract_address: AztecAddress,\n src_slot: Field,\n dst_slot: Field,\n num_entries: u32,\n scope: AztecAddress,\n) {\n copy_oracle(contract_address, src_slot, dst_slot, num_entries, scope);\n}\n\n#[oracle(aztec_utl_setCapsule)]\nunconstrained fn set_capsule_oracle<let N: u32>(\n contract_address: AztecAddress,\n slot: Field,\n values: [Field; N],\n scope: AztecAddress,\n) {}\n\n/// We need to pass in `array_len` (the value of N) as a parameter to tell the oracle how many fields the response must\n/// have.\n///\n/// Note that the oracle returns an Option<[Field; N]> because we cannot return an Option<T> directly. That would\n/// require for the oracle resolver to know the shape of T (e.g. if T were a struct of 3 u32 values then the expected\n/// response shape would be 3 single items, whereas it were a struct containing `u32, [Field;10], u32` then the\n/// expected shape would be single, array, single.). Instead, we return the serialization and deserialize in Noir.\n#[oracle(aztec_utl_getCapsule)]\nunconstrained fn get_capsule_oracle<let N: u32>(\n contract_address: AztecAddress,\n slot: Field,\n array_len: u32,\n scope: AztecAddress,\n) -> Option<[Field; N]> {}\n\n#[oracle(aztec_utl_deleteCapsule)]\nunconstrained fn delete_oracle(contract_address: AztecAddress, slot: Field, scope: AztecAddress) {}\n\n#[oracle(aztec_utl_copyCapsule)]\nunconstrained fn copy_oracle(\n contract_address: AztecAddress,\n src_slot: Field,\n dst_slot: Field,\n num_entries: u32,\n scope: AztecAddress,\n) {}\n\nmod test {\n // These tests are sort of redundant since we already test the oracle implementation directly in TypeScript, but\n // they are cheap regardless and help ensure both that the TXE implementation works accordingly and that the Noir\n // oracles are hooked up correctly.\n\n use crate::{\n oracle::capsules::{copy, delete, load, store},\n test::{helpers::test_environment::TestEnvironment, mocks::MockStruct},\n };\n use crate::protocol::{address::AztecAddress, traits::{FromField, ToField}};\n\n global SLOT: Field = 1;\n\n unconstrained fn setup() -> (TestEnvironment, AztecAddress) {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n (env, scope)\n }\n\n #[test]\n unconstrained fn stores_and_loads() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let value = MockStruct::new(5, 6);\n store(contract_address, SLOT, value, scope);\n\n assert_eq(load(contract_address, SLOT, scope).unwrap(), value);\n });\n }\n\n #[test]\n unconstrained fn store_overwrites() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let value = MockStruct::new(5, 6);\n store(contract_address, SLOT, value, scope);\n\n let new_value = MockStruct::new(7, 8);\n store(contract_address, SLOT, new_value, scope);\n\n assert_eq(load(contract_address, SLOT, scope).unwrap(), new_value);\n });\n }\n\n #[test]\n unconstrained fn loads_empty_slot() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let loaded_value: Option<MockStruct> = load(contract_address, SLOT, scope);\n assert_eq(loaded_value, Option::none());\n });\n }\n\n #[test]\n unconstrained fn deletes_stored_value() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let value = MockStruct::new(5, 6);\n store(contract_address, SLOT, value, scope);\n delete(contract_address, SLOT, scope);\n\n let loaded_value: Option<MockStruct> = load(contract_address, SLOT, scope);\n assert_eq(loaded_value, Option::none());\n });\n }\n\n #[test]\n unconstrained fn deletes_empty_slot() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n delete(contract_address, SLOT, scope);\n let loaded_value: Option<MockStruct> = load(contract_address, SLOT, scope);\n assert_eq(loaded_value, Option::none());\n });\n }\n\n #[test]\n unconstrained fn copies_non_overlapping_values() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let src = 5;\n\n let values = [MockStruct::new(5, 6), MockStruct::new(7, 8), MockStruct::new(9, 10)];\n store(contract_address, src, values[0], scope);\n store(contract_address, src + 1, values[1], scope);\n store(contract_address, src + 2, values[2], scope);\n\n let dst = 10;\n copy(contract_address, src, dst, 3, scope);\n\n assert_eq(load(contract_address, dst, scope).unwrap(), values[0]);\n assert_eq(load(contract_address, dst + 1, scope).unwrap(), values[1]);\n assert_eq(load(contract_address, dst + 2, scope).unwrap(), values[2]);\n });\n }\n\n #[test]\n unconstrained fn copies_overlapping_values_with_src_ahead() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let src = 1;\n\n let values = [MockStruct::new(5, 6), MockStruct::new(7, 8), MockStruct::new(9, 10)];\n store(contract_address, src, values[0], scope);\n store(contract_address, src + 1, values[1], scope);\n store(contract_address, src + 2, values[2], scope);\n\n let dst = 2;\n copy(contract_address, src, dst, 3, scope);\n\n assert_eq(load(contract_address, dst, scope).unwrap(), values[0]);\n assert_eq(load(contract_address, dst + 1, scope).unwrap(), values[1]);\n assert_eq(load(contract_address, dst + 2, scope).unwrap(), values[2]);\n\n // src[1] and src[2] should have been overwritten since they are also dst[0] and dst[1]\n assert_eq(load(contract_address, src, scope).unwrap(), values[0]); // src[0] (unchanged)\n assert_eq(load(contract_address, src + 1, scope).unwrap(), values[0]); // dst[0]\n assert_eq(load(contract_address, src + 2, scope).unwrap(), values[1]); // dst[1]\n });\n }\n\n #[test]\n unconstrained fn copies_overlapping_values_with_dst_ahead() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let src = 2;\n\n let values = [MockStruct::new(5, 6), MockStruct::new(7, 8), MockStruct::new(9, 10)];\n store(contract_address, src, values[0], scope);\n store(contract_address, src + 1, values[1], scope);\n store(contract_address, src + 2, values[2], scope);\n\n let dst = 1;\n copy(contract_address, src, dst, 3, scope);\n\n assert_eq(load(contract_address, dst, scope).unwrap(), values[0]);\n assert_eq(load(contract_address, dst + 1, scope).unwrap(), values[1]);\n assert_eq(load(contract_address, dst + 2, scope).unwrap(), values[2]);\n\n // src[0] and src[1] should have been overwritten since they are also dst[1] and dst[2]\n assert_eq(load(contract_address, src, scope).unwrap(), values[1]); // dst[1]\n assert_eq(load(contract_address, src + 1, scope).unwrap(), values[2]); // dst[2]\n assert_eq(load(contract_address, src + 2, scope).unwrap(), values[2]); // src[2] (unchanged)\n });\n }\n\n #[test(should_fail_with = \"copy empty slot\")]\n unconstrained fn cannot_copy_empty_values() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n copy(contract_address, SLOT, SLOT, 1, scope);\n });\n }\n\n #[test(should_fail_with = \"not allowed to access\")]\n unconstrained fn cannot_store_other_contract() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let other_contract_address = AztecAddress::from_field(contract_address.to_field() + 1);\n\n let value = MockStruct::new(5, 6);\n store(other_contract_address, SLOT, value, scope);\n });\n }\n\n #[test(should_fail_with = \"not allowed to access\")]\n unconstrained fn cannot_load_other_contract() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let other_contract_address = AztecAddress::from_field(contract_address.to_field() + 1);\n\n let _: Option<MockStruct> = load(other_contract_address, SLOT, scope);\n });\n }\n\n #[test(should_fail_with = \"not allowed to access\")]\n unconstrained fn cannot_delete_other_contract() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let other_contract_address = AztecAddress::from_field(contract_address.to_field() + 1);\n\n delete(other_contract_address, SLOT, scope);\n });\n }\n\n #[test(should_fail_with = \"not allowed to access\")]\n unconstrained fn cannot_copy_other_contract() {\n let (env, scope) = setup();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let other_contract_address = AztecAddress::from_field(contract_address.to_field() + 1);\n\n copy(other_contract_address, SLOT, SLOT, 0, scope);\n });\n }\n}\n"
1042
1042
  },
1043
- "178": {
1043
+ "180": {
1044
1044
  "function_locations": [
1045
1045
  {
1046
1046
  "name": "set_contract_sync_cache_invalid_oracle",
@@ -1051,10 +1051,10 @@
1051
1051
  "start": 700
1052
1052
  }
1053
1053
  ],
1054
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/contract_sync.nr",
1054
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/contract_sync.nr",
1055
1055
  "source": "use crate::protocol::address::AztecAddress;\n\n#[oracle(aztec_utl_setContractSyncCacheInvalid)]\nunconstrained fn set_contract_sync_cache_invalid_oracle<let N: u32>(\n contract_address: AztecAddress,\n scopes: BoundedVec<AztecAddress, N>,\n) {}\n\n/// Forces the PXE to re-sync the given contract for a set of scopes on the next query.\n///\n/// Call this after writing data (e.g. offchain messages) that the contract's `sync_state` function needs to discover.\n/// Without invalidation, the sync cache would skip re-running `sync_state` until the next block.\npub unconstrained fn set_contract_sync_cache_invalid<let N: u32>(\n contract_address: AztecAddress,\n scopes: BoundedVec<AztecAddress, N>,\n) {\n set_contract_sync_cache_invalid_oracle(contract_address, scopes);\n}\n"
1056
1056
  },
1057
- "180": {
1057
+ "182": {
1058
1058
  "function_locations": [
1059
1059
  {
1060
1060
  "name": "get_utility_context_oracle",
@@ -1065,56 +1065,56 @@
1065
1065
  "start": 344
1066
1066
  }
1067
1067
  ],
1068
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/execution.nr",
1068
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/execution.nr",
1069
1069
  "source": "use crate::context::UtilityContext;\n\n#[oracle(aztec_utl_getUtilityContext)]\nunconstrained fn get_utility_context_oracle() -> UtilityContext {}\n\n/// Returns a utility context built from the global variables of anchor block and the contract address of the function\n/// being executed.\npub unconstrained fn get_utility_context() -> UtilityContext {\n get_utility_context_oracle()\n}\n"
1070
1070
  },
1071
- "190": {
1071
+ "192": {
1072
1072
  "function_locations": [
1073
1073
  {
1074
1074
  "name": "get_pending_tagged_logs",
1075
- "start": 689
1075
+ "start": 1064
1076
1076
  },
1077
1077
  {
1078
1078
  "name": "get_pending_tagged_logs_oracle",
1079
- "start": 883
1079
+ "start": 1337
1080
1080
  },
1081
1081
  {
1082
1082
  "name": "validate_and_store_enqueued_notes_and_events",
1083
- "start": 1190
1083
+ "start": 1644
1084
1084
  },
1085
1085
  {
1086
1086
  "name": "validate_and_store_enqueued_notes_and_events_oracle",
1087
- "start": 1609
1087
+ "start": 2063
1088
1088
  },
1089
1089
  {
1090
1090
  "name": "get_logs_by_tag",
1091
- "start": 2056
1091
+ "start": 2503
1092
1092
  },
1093
1093
  {
1094
1094
  "name": "get_logs_by_tag_oracle",
1095
- "start": 2282
1095
+ "start": 2729
1096
1096
  },
1097
1097
  {
1098
1098
  "name": "get_message_contexts_by_tx_hash",
1099
- "start": 2542
1099
+ "start": 2989
1100
1100
  },
1101
1101
  {
1102
1102
  "name": "get_message_contexts_by_tx_hash_oracle",
1103
- "start": 2786
1103
+ "start": 3233
1104
1104
  },
1105
1105
  {
1106
1106
  "name": "get_tx_effect",
1107
- "start": 2923
1107
+ "start": 3370
1108
1108
  },
1109
1109
  {
1110
1110
  "name": "get_tx_effect_oracle",
1111
- "start": 3069
1111
+ "start": 3516
1112
1112
  }
1113
1113
  ],
1114
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/message_processing.nr",
1115
- "source": "use crate::ephemeral::EphemeralArray;\nuse crate::messages::processing::{\n event_validation_request::EventValidationRequest, log_retrieval_request::LogRetrievalRequest,\n log_retrieval_response::LogRetrievalResponse, MessageContext, NoteValidationRequest,\n pending_tagged_log::PendingTaggedLog,\n};\nuse crate::protocol::address::AztecAddress;\nuse crate::protocol::blob_data::TxEffect;\n\n/// Finds new private logs that may have been sent to all registered accounts in PXE in the current contract and\n/// returns them in an ephemeral array with an oracle-allocated base slot.\npub(crate) unconstrained fn get_pending_tagged_logs(scope: AztecAddress) -> EphemeralArray<PendingTaggedLog> {\n get_pending_tagged_logs_oracle(scope)\n}\n\n#[oracle(aztec_utl_getPendingTaggedLogs)]\nunconstrained fn get_pending_tagged_logs_oracle(scope: AztecAddress) -> EphemeralArray<PendingTaggedLog> {}\n\n/// Validates note/event requests stored in ephemeral arrays.\npub(crate) unconstrained fn validate_and_store_enqueued_notes_and_events(\n note_validation_requests: EphemeralArray<NoteValidationRequest>,\n event_validation_requests: EphemeralArray<EventValidationRequest>,\n scope: AztecAddress,\n) {\n validate_and_store_enqueued_notes_and_events_oracle(note_validation_requests, event_validation_requests, scope);\n}\n\n#[oracle(aztec_utl_validateAndStoreEnqueuedNotesAndEvents)]\nunconstrained fn validate_and_store_enqueued_notes_and_events_oracle(\n note_validation_requests: EphemeralArray<NoteValidationRequest>,\n event_validation_requests: EphemeralArray<EventValidationRequest>,\n scope: AztecAddress,\n) {}\n\n/// Fetches all logs matching each request's tag and returns a nested ephemeral array.\n///\n/// Each element in the outer array is an inner `EphemeralArray<LogRetrievalResponse>` containing all matching logs for\n/// the request at the same index (which may be empty if no logs were found).\npub(crate) unconstrained fn get_logs_by_tag(\n requests: EphemeralArray<LogRetrievalRequest>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {\n get_logs_by_tag_oracle(requests)\n}\n\n#[oracle(aztec_utl_getLogsByTag)]\nunconstrained fn get_logs_by_tag_oracle(\n requests: EphemeralArray<LogRetrievalRequest>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {}\n\n/// Resolves message contexts for tx hashes in an ephemeral request array and returns a response ephemeral array.\npub(crate) unconstrained fn get_message_contexts_by_tx_hash(\n requests: EphemeralArray<Field>,\n) -> EphemeralArray<Option<MessageContext>> {\n get_message_contexts_by_tx_hash_oracle(requests)\n}\n\n#[oracle(aztec_utl_getMessageContextsByTxHash)]\nunconstrained fn get_message_contexts_by_tx_hash_oracle(\n requests: EphemeralArray<Field>,\n) -> EphemeralArray<Option<MessageContext>> {}\n\n/// Fetches all effects of a settled transaction by its hash.\npub unconstrained fn get_tx_effect(tx_hash: Field) -> Option<TxEffect> {\n get_tx_effect_oracle(tx_hash)\n}\n\n#[oracle(aztec_utl_getTxEffect)]\nunconstrained fn get_tx_effect_oracle(tx_hash: Field) -> Option<TxEffect> {}\n"
1114
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/message_processing.nr",
1115
+ "source": "use crate::ephemeral::EphemeralArray;\nuse crate::messages::processing::{\n event_validation_request::EventValidationRequest, log_retrieval_request::LogRetrievalRequest,\n log_retrieval_response::LogRetrievalResponse, MessageContext, NoteValidationRequest,\n pending_tagged_log::PendingTaggedLog, provided_secret::ProvidedSecret,\n};\nuse crate::protocol::address::AztecAddress;\nuse crate::protocol::blob_data::TxEffect;\n\n/// Finds new private logs that may have been sent to all registered accounts in PXE in the current contract and\n/// returns them in an ephemeral array with an oracle-allocated base slot.\n///\n/// # Arguments\n///\n/// * `scope` - The account scope to search under.\n/// * `provided_secrets` - Tagging secrets the app supplies explicitly, searched alongside the secrets PXE manages\n/// internally. Used for secrets PXE cannot derive itself (e.g. handshake-derived ones).\npub(crate) unconstrained fn get_pending_tagged_logs(\n scope: AztecAddress,\n provided_secrets: EphemeralArray<ProvidedSecret>,\n) -> EphemeralArray<PendingTaggedLog> {\n get_pending_tagged_logs_oracle(scope, provided_secrets)\n}\n\n#[oracle(aztec_utl_getPendingTaggedLogs)]\nunconstrained fn get_pending_tagged_logs_oracle(\n scope: AztecAddress,\n provided_secrets: EphemeralArray<ProvidedSecret>,\n) -> EphemeralArray<PendingTaggedLog> {}\n\n/// Validates note/event requests stored in ephemeral arrays.\npub(crate) unconstrained fn validate_and_store_enqueued_notes_and_events(\n note_validation_requests: EphemeralArray<NoteValidationRequest>,\n event_validation_requests: EphemeralArray<EventValidationRequest>,\n scope: AztecAddress,\n) {\n validate_and_store_enqueued_notes_and_events_oracle(note_validation_requests, event_validation_requests, scope);\n}\n\n#[oracle(aztec_utl_validateAndStoreEnqueuedNotesAndEvents)]\nunconstrained fn validate_and_store_enqueued_notes_and_events_oracle(\n note_validation_requests: EphemeralArray<NoteValidationRequest>,\n event_validation_requests: EphemeralArray<EventValidationRequest>,\n scope: AztecAddress,\n) {}\n\n/// Fetches all logs matching each request's tag and returns a nested ephemeral array.\n///\n/// Each element in the outer array is an inner `EphemeralArray<LogRetrievalResponse>` containing all matching logs for\n/// the request at the same index (which may be empty if no logs were found).\npub unconstrained fn get_logs_by_tag(\n requests: EphemeralArray<LogRetrievalRequest>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {\n get_logs_by_tag_oracle(requests)\n}\n\n#[oracle(aztec_utl_getLogsByTag)]\nunconstrained fn get_logs_by_tag_oracle(\n requests: EphemeralArray<LogRetrievalRequest>,\n) -> EphemeralArray<EphemeralArray<LogRetrievalResponse>> {}\n\n/// Resolves message contexts for tx hashes in an ephemeral request array and returns a response ephemeral array.\npub(crate) unconstrained fn get_message_contexts_by_tx_hash(\n requests: EphemeralArray<Field>,\n) -> EphemeralArray<Option<MessageContext>> {\n get_message_contexts_by_tx_hash_oracle(requests)\n}\n\n#[oracle(aztec_utl_getMessageContextsByTxHash)]\nunconstrained fn get_message_contexts_by_tx_hash_oracle(\n requests: EphemeralArray<Field>,\n) -> EphemeralArray<Option<MessageContext>> {}\n\n/// Fetches all effects of a settled transaction by its hash.\npub unconstrained fn get_tx_effect(tx_hash: Field) -> Option<TxEffect> {\n get_tx_effect_oracle(tx_hash)\n}\n\n#[oracle(aztec_utl_getTxEffect)]\nunconstrained fn get_tx_effect_oracle(tx_hash: Field) -> Option<TxEffect> {}\n"
1116
1116
  },
1117
- "195": {
1117
+ "197": {
1118
1118
  "function_locations": [
1119
1119
  {
1120
1120
  "name": "assert_valid_public_call_data",
@@ -1129,10 +1129,10 @@
1129
1129
  "start": 835
1130
1130
  }
1131
1131
  ],
1132
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/public_call.nr",
1132
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/public_call.nr",
1133
1133
  "source": "/// Validates public calldata by checking that the preimage exists and the cumulative size is within limits.\n///\n/// The check is unconstrained and the only purpose of it is to fail early in case of calldata overflow or a bug in\n/// calldata hashing.\npub(crate) fn assert_valid_public_call_data(calldata_hash: Field) {\n // Safety: This oracle call returns nothing: we only call it for its side effects (validating the calldata).\n // It is therefore always safe to call.\n unsafe {\n assert_valid_public_call_data_oracle_wrapper(calldata_hash)\n }\n}\n\nunconstrained fn assert_valid_public_call_data_oracle_wrapper(calldata_hash: Field) {\n assert_valid_public_call_data_oracle(calldata_hash)\n}\n\n#[oracle(aztec_prv_assertValidPublicCalldata)]\nunconstrained fn assert_valid_public_call_data_oracle(_calldata_hash: Field) {}\n"
1134
1134
  },
1135
- "197": {
1135
+ "199": {
1136
1136
  "function_locations": [
1137
1137
  {
1138
1138
  "name": "get_shared_secrets_oracle",
@@ -1148,51 +1148,51 @@
1148
1148
  },
1149
1149
  {
1150
1150
  "name": "test::preserves_ephemeral_key_ordering",
1151
- "start": 2945
1151
+ "start": 2943
1152
1152
  },
1153
1153
  {
1154
1154
  "name": "test::returns_secrets_in_order",
1155
- "start": 3816
1155
+ "start": 3814
1156
1156
  },
1157
1157
  {
1158
1158
  "name": "test::cannot_return_mismatched_length",
1159
- "start": 4524
1159
+ "start": 4522
1160
1160
  },
1161
1161
  {
1162
1162
  "name": "test::mock_get_shared_secrets",
1163
- "start": 5040
1163
+ "start": 5038
1164
1164
  }
1165
1165
  ],
1166
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/shared_secret.nr",
1167
- "source": "use crate::ephemeral::EphemeralArray;\nuse crate::protocol::{address::AztecAddress, hash::sha256_to_field, point::EmbeddedCurvePoint};\n\nglobal GET_SHARED_SECRETS_REQUEST_SLOT: Field = sha256_to_field(\"AZTEC_NR::GET_SHARED_SECRETS_REQUEST_SLOT\".as_bytes());\n\n#[oracle(aztec_utl_getSharedSecrets)]\nunconstrained fn get_shared_secrets_oracle(\n address: AztecAddress,\n eph_pks: EphemeralArray<EmbeddedCurvePoint>,\n contract_address: AztecAddress,\n) -> EphemeralArray<Field> {}\n\n/// Convenience wrapper around [`get_shared_secrets`] for a single ephemeral public key.\npub unconstrained fn get_shared_secret(\n address: AztecAddress,\n eph_pk: EmbeddedCurvePoint,\n contract_address: AztecAddress,\n) -> Field {\n get_shared_secrets::<1>(address, BoundedVec::from_array([eph_pk]), contract_address).get(0)\n}\n\n/// Returns app-siloed shared secrets between `address` and someone who knows the secret keys behind the given\n/// ephemeral public keys.\n///\n/// Each returned Field `s_app` is computed as:\n///\n/// ```text\n/// S = address_secret * ephPk (raw ECDH point)\n/// s_app = h(DOM_SEP, S.x, S.y, contract) (app-siloed scalar)\n/// ```\n///\n/// where `contract` is the address of the calling contract. The oracle host validates this matches its execution\n/// context.\n///\n/// Without app-siloing, a malicious contract could call this oracle with public information (address, ephPk) and\n/// obtain the same raw secret as the legitimate contract, enabling cross-contract decryption. By including the\n/// contract address in the hash, each contract receives a different `s_app`, preventing this attack.\n///\n/// Callers derive indexed subkeys from `s_app` via\n/// [`derive_shared_secret_subkey`](crate::keys::ecdh_shared_secret::derive_shared_secret_subkey).\npub unconstrained fn get_shared_secrets<let N: u32>(\n address: AztecAddress,\n eph_pks: BoundedVec<EmbeddedCurvePoint, N>,\n contract_address: AztecAddress,\n) -> BoundedVec<Field, N> {\n let request_array: EphemeralArray<EmbeddedCurvePoint> = EphemeralArray::at(GET_SHARED_SECRETS_REQUEST_SLOT).clear();\n eph_pks.for_each(|pk| request_array.push(pk));\n\n let response_array = get_shared_secrets_oracle(address, request_array, contract_address);\n assert(response_array.len() == eph_pks.len(), \"get_shared_secrets: response length does not match request length\");\n\n let mut results: BoundedVec<Field, N> = BoundedVec::new();\n for i in 0..eph_pks.len() {\n results.push(response_array.get(i));\n }\n results\n}\n\nmod test {\n use crate::ephemeral::EphemeralArray;\n use crate::oracle::shared_secret::{get_shared_secrets, GET_SHARED_SECRETS_REQUEST_SLOT};\n use crate::protocol::{address::AztecAddress, traits::FromField};\n use crate::test::helpers::test_environment::TestEnvironment;\n use crate::utils::point::point_from_x_coord;\n use std::test::OracleMock;\n\n #[test]\n unconstrained fn preserves_ephemeral_key_ordering() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([100, 200, 300]);\n\n let pk_a = point_from_x_coord(1).unwrap();\n let pk_b = point_from_x_coord(2).unwrap();\n let pk_c = point_from_x_coord(8).unwrap();\n\n let _: BoundedVec<Field, 3> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk_a, pk_b, pk_c]),\n AztecAddress::from_field(2),\n );\n\n let request_array: EphemeralArray<_> = EphemeralArray::at(GET_SHARED_SECRETS_REQUEST_SLOT);\n assert_eq(request_array.get(0), pk_a);\n assert_eq(request_array.get(1), pk_b);\n assert_eq(request_array.get(2), pk_c);\n });\n }\n\n #[test]\n unconstrained fn returns_secrets_in_order() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([111, 222, 333]);\n\n let pk = point_from_x_coord(1).unwrap();\n let results: BoundedVec<Field, 3> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk, pk, pk]),\n AztecAddress::from_field(2),\n );\n\n assert_eq(results.get(0), 111);\n assert_eq(results.get(1), 222);\n assert_eq(results.get(2), 333);\n });\n }\n\n #[test(should_fail_with = \"response length does not match request length\")]\n unconstrained fn cannot_return_mismatched_length() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([111, 222]);\n\n let pk = point_from_x_coord(1).unwrap();\n let _: BoundedVec<Field, 1> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk]),\n AztecAddress::from_field(2),\n );\n });\n }\n\n unconstrained fn mock_get_shared_secrets<let N: u32>(response_values: [Field; N]) -> Field {\n let response_slot: Field = 99;\n let response_array: EphemeralArray<Field> = EphemeralArray::at(response_slot);\n for value in response_values {\n response_array.push(value);\n }\n let _ = OracleMock::mock(\"aztec_utl_getSharedSecrets\").returns(response_slot);\n response_slot\n }\n}\n"
1166
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/shared_secret.nr",
1167
+ "source": "use crate::ephemeral::EphemeralArray;\nuse crate::protocol::{address::AztecAddress, hash::sha256_to_field, point::EmbeddedCurvePoint};\n\nglobal GET_SHARED_SECRETS_REQUEST_SLOT: Field = sha256_to_field(\"AZTEC_NR::GET_SHARED_SECRETS_REQUEST_SLOT\".as_bytes());\n\n#[oracle(aztec_utl_getSharedSecrets)]\nunconstrained fn get_shared_secrets_oracle(\n address: AztecAddress,\n eph_pks: EphemeralArray<EmbeddedCurvePoint>,\n contract_address: AztecAddress,\n) -> EphemeralArray<Field> {}\n\n/// Convenience wrapper around [`get_shared_secrets`] for a single ephemeral public key.\npub unconstrained fn get_shared_secret(\n address: AztecAddress,\n eph_pk: EmbeddedCurvePoint,\n contract_address: AztecAddress,\n) -> Field {\n get_shared_secrets::<1>(address, BoundedVec::from_array([eph_pk]), contract_address).get(0)\n}\n\n/// Returns app-siloed shared secrets between `address` and someone who knows the secret keys behind the given\n/// ephemeral public keys.\n///\n/// Each returned Field `s_app` is computed as:\n///\n/// ```text\n/// S = address_secret * ephPk (raw ECDH point)\n/// s_app = h(DOM_SEP, S.x, S.y, contract) (app-siloed scalar)\n/// ```\n///\n/// where `contract` is the address of the calling contract. The oracle host validates this matches its execution\n/// context.\n///\n/// Without app-siloing, a malicious contract could call this oracle with public information (address, ephPk) and\n/// obtain the same raw secret as the legitimate contract, enabling cross-contract decryption. By including the\n/// contract address in the hash, each contract receives a different `s_app`, preventing this attack.\n///\n/// Callers derive indexed subkeys from `s_app` via\n/// [`derive_shared_secret_subkey`](crate::keys::ecdh_shared_secret::derive_shared_secret_subkey).\npub unconstrained fn get_shared_secrets<let N: u32>(\n address: AztecAddress,\n eph_pks: BoundedVec<EmbeddedCurvePoint, N>,\n contract_address: AztecAddress,\n) -> BoundedVec<Field, N> {\n let request_array: EphemeralArray<EmbeddedCurvePoint> = EphemeralArray::empty_at(GET_SHARED_SECRETS_REQUEST_SLOT);\n eph_pks.for_each(|pk| request_array.push(pk));\n\n let response_array = get_shared_secrets_oracle(address, request_array, contract_address);\n assert(response_array.len() == eph_pks.len(), \"get_shared_secrets: response length does not match request length\");\n\n let mut results: BoundedVec<Field, N> = BoundedVec::new();\n for i in 0..eph_pks.len() {\n results.push(response_array.get(i));\n }\n results\n}\n\nmod test {\n use crate::ephemeral::EphemeralArray;\n use crate::oracle::shared_secret::{get_shared_secrets, GET_SHARED_SECRETS_REQUEST_SLOT};\n use crate::protocol::{address::AztecAddress, traits::FromField};\n use crate::test::helpers::test_environment::TestEnvironment;\n use crate::utils::point::point_from_x_coord;\n use std::test::OracleMock;\n\n #[test]\n unconstrained fn preserves_ephemeral_key_ordering() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([100, 200, 300]);\n\n let pk_a = point_from_x_coord(1).unwrap();\n let pk_b = point_from_x_coord(2).unwrap();\n let pk_c = point_from_x_coord(8).unwrap();\n\n let _: BoundedVec<Field, 3> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk_a, pk_b, pk_c]),\n AztecAddress::from_field(2),\n );\n\n let request_array: EphemeralArray<_> = EphemeralArray::at(GET_SHARED_SECRETS_REQUEST_SLOT);\n assert_eq(request_array.get(0), pk_a);\n assert_eq(request_array.get(1), pk_b);\n assert_eq(request_array.get(2), pk_c);\n });\n }\n\n #[test]\n unconstrained fn returns_secrets_in_order() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([111, 222, 333]);\n\n let pk = point_from_x_coord(1).unwrap();\n let results: BoundedVec<Field, 3> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk, pk, pk]),\n AztecAddress::from_field(2),\n );\n\n assert_eq(results.get(0), 111);\n assert_eq(results.get(1), 222);\n assert_eq(results.get(2), 333);\n });\n }\n\n #[test(should_fail_with = \"response length does not match request length\")]\n unconstrained fn cannot_return_mismatched_length() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let _ = mock_get_shared_secrets([111, 222]);\n\n let pk = point_from_x_coord(1).unwrap();\n let _: BoundedVec<Field, 1> = get_shared_secrets(\n AztecAddress::from_field(1),\n BoundedVec::from_array([pk]),\n AztecAddress::from_field(2),\n );\n });\n }\n\n unconstrained fn mock_get_shared_secrets<let N: u32>(response_values: [Field; N]) -> Field {\n let response_slot: Field = 99;\n let response_array: EphemeralArray<Field> = EphemeralArray::at(response_slot);\n for value in response_values {\n response_array.push(value);\n }\n let _ = OracleMock::mock(\"aztec_utl_getSharedSecrets\").returns(response_slot);\n response_slot\n }\n}\n"
1168
1168
  },
1169
- "200": {
1169
+ "202": {
1170
1170
  "function_locations": [
1171
1171
  {
1172
1172
  "name": "assert_compatible_oracle_version",
1173
- "start": 1191
1173
+ "start": 1192
1174
1174
  },
1175
1175
  {
1176
1176
  "name": "assert_compatible_oracle_version_wrapper",
1177
- "start": 1500
1177
+ "start": 1501
1178
1178
  },
1179
1179
  {
1180
1180
  "name": "assert_compatible_oracle_version_oracle",
1181
- "start": 1730
1181
+ "start": 1732
1182
1182
  },
1183
1183
  {
1184
1184
  "name": "test::compatible_oracle_version",
1185
- "start": 1909
1185
+ "start": 1911
1186
1186
  },
1187
1187
  {
1188
1188
  "name": "test::incompatible_oracle_version_major",
1189
- "start": 2134
1189
+ "start": 2136
1190
1190
  }
1191
1191
  ],
1192
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/oracle/version.nr",
1193
- "source": "/// The oracle version constants are used to check that the oracle interface is in sync between PXE and Aztec.nr.\n/// We version the oracle interface as `major.minor` where:\n/// - `major` = backward-breaking changes (must match exactly between PXE and Aztec.nr)\n/// - `minor` = oracle additions (non-breaking; PXE minor >= contract minor)\n///\n/// The TypeScript counterparts are in `oracle_version.ts`.\n///\n/// @dev Whenever a contract function or Noir test is run, the `aztec_utl_assertCompatibleOracleVersion` oracle is\n/// called. If the major version is incompatible, an error is thrown immediately. The minor version is recorded by\n/// the PXE and used to provide helpful error messages if a contract calls an oracle that doesn't exist. We don't throw\n/// immediately if AZTEC_NR_MINOR > PXE_MINOR because if a contract is updated to use a newer Aztec.nr dependency\n/// without actually using any of the new oracles then there is no reason to throw.\npub global ORACLE_VERSION_MAJOR: Field = 27;\npub global ORACLE_VERSION_MINOR: Field = 0;\n\n/// Asserts that the version of the oracle is compatible with the version expected by the contract.\npub fn assert_compatible_oracle_version() {\n // Safety: This oracle call returns nothing: we only call it to check Aztec.nr and Oracle interface versions are\n // compatible. It is therefore always safe to call.\n unsafe {\n assert_compatible_oracle_version_wrapper();\n }\n}\n\nunconstrained fn assert_compatible_oracle_version_wrapper() {\n assert_compatible_oracle_version_oracle(ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR);\n}\n\n#[oracle(aztec_utl_assertCompatibleOracleVersion)]\nunconstrained fn assert_compatible_oracle_version_oracle(major: Field, minor: Field) {}\n\nmod test {\n use super::{assert_compatible_oracle_version_oracle, ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR};\n\n #[test]\n unconstrained fn compatible_oracle_version() {\n assert_compatible_oracle_version_oracle(ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR);\n }\n\n #[test(should_fail_with = \"Incompatible aztec cli version:\")]\n unconstrained fn incompatible_oracle_version_major() {\n let arbitrary_incorrect_major = 318183437;\n assert_compatible_oracle_version_oracle(arbitrary_incorrect_major, ORACLE_VERSION_MINOR);\n }\n}\n"
1192
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/oracle/version.nr",
1193
+ "source": "/// The oracle version constants are used to check that the oracle interface is in sync between PXE and Aztec.nr.\n/// We version the oracle interface as `major.minor` where:\n/// - `major` = backward-breaking changes (must match exactly between PXE and Aztec.nr)\n/// - `minor` = oracle additions (non-breaking; PXE minor >= contract minor)\n///\n/// The TypeScript counterparts are in `oracle_version.ts`.\n///\n/// @dev Whenever a contract function or Noir test is run, the `aztec_misc_assertCompatibleOracleVersion` oracle is\n/// called. If the major version is incompatible, an error is thrown immediately. The minor version is recorded by\n/// the PXE and used to provide helpful error messages if a contract calls an oracle that doesn't exist. We don't throw\n/// immediately if AZTEC_NR_MINOR > PXE_MINOR because if a contract is updated to use a newer Aztec.nr dependency\n/// without actually using any of the new oracles then there is no reason to throw.\npub global ORACLE_VERSION_MAJOR: Field = 29;\npub global ORACLE_VERSION_MINOR: Field = 0;\n\n/// Asserts that the version of the oracle is compatible with the version expected by the contract.\npub fn assert_compatible_oracle_version() {\n // Safety: This oracle call returns nothing: we only call it to check Aztec.nr and Oracle interface versions are\n // compatible. It is therefore always safe to call.\n unsafe {\n assert_compatible_oracle_version_wrapper();\n }\n}\n\nunconstrained fn assert_compatible_oracle_version_wrapper() {\n assert_compatible_oracle_version_oracle(ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR);\n}\n\n#[oracle(aztec_misc_assertCompatibleOracleVersion)]\nunconstrained fn assert_compatible_oracle_version_oracle(major: Field, minor: Field) {}\n\nmod test {\n use super::{assert_compatible_oracle_version_oracle, ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR};\n\n #[test]\n unconstrained fn compatible_oracle_version() {\n assert_compatible_oracle_version_oracle(ORACLE_VERSION_MAJOR, ORACLE_VERSION_MINOR);\n }\n\n #[test(should_fail_with = \"Incompatible aztec cli version:\")]\n unconstrained fn incompatible_oracle_version_major() {\n let arbitrary_incorrect_major = 318183437;\n assert_compatible_oracle_version_oracle(arbitrary_incorrect_major, ORACLE_VERSION_MINOR);\n }\n}\n"
1194
1194
  },
1195
- "249": {
1195
+ "251": {
1196
1196
  "function_locations": [
1197
1197
  {
1198
1198
  "name": "append",
@@ -1211,10 +1211,10 @@
1211
1211
  "start": 1387
1212
1212
  }
1213
1213
  ],
1214
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/array/append.nr",
1214
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/array/append.nr",
1215
1215
  "source": "/// Appends the elements of the second `BoundedVec` to the end of the first one. The resulting `BoundedVec` can have\n/// any arbitrary maximum length, but it must be large enough to fit all of the elements of both the first and second\n/// vectors.\npub fn append<T, let ALen: u32, let BLen: u32, let DstLen: u32>(\n a: BoundedVec<T, ALen>,\n b: BoundedVec<T, BLen>,\n) -> BoundedVec<T, DstLen> {\n let mut dst = BoundedVec::new();\n\n dst.extend_from_bounded_vec(a);\n dst.extend_from_bounded_vec(b);\n\n dst\n}\n\nmod test {\n use super::append;\n\n #[test]\n unconstrained fn append_empty_vecs() {\n let a: BoundedVec<_, 3> = BoundedVec::new();\n let b: BoundedVec<_, 14> = BoundedVec::new();\n\n let result: BoundedVec<Field, 5> = append(a, b);\n\n assert_eq(result.len(), 0);\n assert_eq(result.storage(), std::mem::zeroed());\n }\n\n #[test]\n unconstrained fn append_non_empty_vecs() {\n let a: BoundedVec<_, 3> = BoundedVec::from_array([1, 2, 3]);\n let b: BoundedVec<_, 14> = BoundedVec::from_array([4, 5, 6]);\n\n let result: BoundedVec<Field, 8> = append(a, b);\n\n assert_eq(result.len(), 6);\n assert_eq(result.storage(), [1, 2, 3, 4, 5, 6, std::mem::zeroed(), std::mem::zeroed()]);\n }\n\n #[test(should_fail_with = \"out of bounds\")]\n unconstrained fn append_non_empty_vecs_insufficient_max_len() {\n let a: BoundedVec<_, 3> = BoundedVec::from_array([1, 2, 3]);\n let b: BoundedVec<_, 14> = BoundedVec::from_array([4, 5, 6]);\n\n let _: BoundedVec<Field, 5> = append(a, b);\n }\n}\n"
1216
1216
  },
1217
- "252": {
1217
+ "254": {
1218
1218
  "function_locations": [
1219
1219
  {
1220
1220
  "name": "subarray",
@@ -1241,10 +1241,10 @@
1241
1241
  "start": 1941
1242
1242
  }
1243
1243
  ],
1244
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/array/subarray.nr",
1244
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/array/subarray.nr",
1245
1245
  "source": "/// Returns `DstLen` elements from a source array, starting at `offset`. `DstLen` must not be larger than the number of\n/// elements past `offset`.\n///\n/// Examples:\n/// ```\n/// let foo: [Field; 2] = subarray([1, 2, 3, 4, 5], 2);\n/// assert_eq(foo, [3, 4]);\n///\n/// let bar: [Field; 5] = subarray([1, 2, 3, 4, 5], 2); // fails - we can't return 5 elements since only 3 remain\n/// ```\npub fn subarray<T, let SrcLen: u32, let DstLen: u32>(src: [T; SrcLen], offset: u32) -> [T; DstLen] {\n assert(offset + DstLen <= SrcLen, \"DstLen too large for offset\");\n\n let mut dst: [T; DstLen] = std::mem::zeroed();\n for i in 0..DstLen {\n dst[i] = src[i + offset];\n }\n\n dst\n}\n\nmod test {\n use super::subarray;\n\n #[test]\n unconstrained fn subarray_into_empty() {\n // In all of these cases we're setting DstLen to be 0, so we always get back an empty array.\n assert_eq(subarray::<Field, _, _>([], 0), []);\n assert_eq(subarray([1, 2, 3, 4, 5], 0), []);\n assert_eq(subarray([1, 2, 3, 4, 5], 2), []);\n }\n\n #[test]\n unconstrained fn subarray_complete() {\n assert_eq(subarray::<Field, _, _>([], 0), []);\n assert_eq(subarray([1, 2, 3, 4, 5], 0), [1, 2, 3, 4, 5]);\n }\n\n #[test]\n unconstrained fn subarray_different_end_sizes() {\n // We implicitly select how many values to read in the size of the return array\n assert_eq(subarray([1, 2, 3, 4, 5], 1), [2, 3, 4, 5]);\n assert_eq(subarray([1, 2, 3, 4, 5], 1), [2, 3, 4]);\n assert_eq(subarray([1, 2, 3, 4, 5], 1), [2, 3]);\n assert_eq(subarray([1, 2, 3, 4, 5], 1), [2]);\n }\n\n #[test(should_fail_with = \"DstLen too large for offset\")]\n unconstrained fn subarray_offset_too_large() {\n // With an offset of 1 we can only request up to 4 elements\n let _: [_; 5] = subarray([1, 2, 3, 4, 5], 1);\n }\n\n #[test(should_fail)]\n unconstrained fn subarray_bad_return_value() {\n assert_eq(subarray([1, 2, 3, 4, 5], 1), [3, 3, 4, 5]);\n }\n}\n"
1246
1246
  },
1247
- "253": {
1247
+ "255": {
1248
1248
  "function_locations": [
1249
1249
  {
1250
1250
  "name": "subbvec",
@@ -1283,10 +1283,10 @@
1283
1283
  "start": 3579
1284
1284
  }
1285
1285
  ],
1286
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/array/subbvec.nr",
1286
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/array/subbvec.nr",
1287
1287
  "source": "use crate::utils::array;\n\n/// Returns `DstMaxLen` elements from a source BoundedVec, starting at `offset`. `offset` must not be larger than the\n/// original length, and `DstLen` must not be larger than the total number of elements past `offset` (including the\n/// zeroed elements past `len()`).\n///\n/// Only elements at the beginning of the vector can be removed: it is not possible to also remove elements at the end\n/// of the vector by passing a value for `DstLen` that is smaller than `len() - offset`.\n///\n/// Examples:\n/// ```\n/// let foo = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n/// assert_eq(subbvec(foo, 2), BoundedVec::<_, 8>::from_array([3, 4, 5]));\n///\n/// let bar: BoundedVec<_, 1> = subbvec(foo, 2); // fails - we can't return just 1 element since 3 remain\n/// let baz: BoundedVec<_, 10> = subbvec(foo, 3); // fails - we can't return 10 elements since only 7 remain\n/// ```\npub fn subbvec<T, let SrcMaxLen: u32, let DstMaxLen: u32>(\n bvec: BoundedVec<T, SrcMaxLen>,\n offset: u32,\n) -> BoundedVec<T, DstMaxLen> {\n // from_parts_unchecked does not verify that the elements past len are zeroed, but that is not an issue in our case\n // because we're constructing the new storage array as a subarray of the original one (which should have zeroed\n // storage past len), guaranteeing correctness. This is because `subarray` does not allow extending arrays past\n // their original length.\n BoundedVec::from_parts_unchecked(array::subarray(bvec.storage(), offset), bvec.len() - offset)\n}\n\nmod test {\n use super::subbvec;\n\n #[test]\n unconstrained fn subbvec_empty() {\n let bvec = BoundedVec::<Field, 0>::from_array([]);\n assert_eq(subbvec(bvec, 0), bvec);\n }\n\n #[test]\n unconstrained fn subbvec_complete() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n assert_eq(subbvec(bvec, 0), bvec);\n\n let smaller_capacity = BoundedVec::<_, 5>::from_array([1, 2, 3, 4, 5]);\n assert_eq(subbvec(bvec, 0), smaller_capacity);\n }\n\n #[test]\n unconstrained fn subbvec_partial() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n\n assert_eq(subbvec(bvec, 2), BoundedVec::<_, 8>::from_array([3, 4, 5]));\n assert_eq(subbvec(bvec, 2), BoundedVec::<_, 3>::from_array([3, 4, 5]));\n }\n\n #[test]\n unconstrained fn subbvec_into_empty() {\n let bvec: BoundedVec<_, 10> = BoundedVec::from_array([1, 2, 3, 4, 5]);\n assert_eq(subbvec(bvec, 5), BoundedVec::<_, 5>::from_array([]));\n }\n\n #[test(should_fail)]\n unconstrained fn subbvec_offset_past_len() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n let _: BoundedVec<_, 1> = subbvec(bvec, 6);\n }\n\n #[test(should_fail)]\n unconstrained fn subbvec_insufficient_dst_len() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n\n // We're not providing enough space to hold all of the items inside the original BoundedVec. subbvec can cause\n // for the capacity to reduce, but not the length (other than by len - offset).\n let _: BoundedVec<_, 1> = subbvec(bvec, 2);\n }\n\n #[test(should_fail_with = \"DstLen too large for offset\")]\n unconstrained fn subbvec_dst_len_causes_enlarge() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n\n // subbvec does not support capacity increases\n let _: BoundedVec<_, 11> = subbvec(bvec, 0);\n }\n\n #[test(should_fail_with = \"DstLen too large for offset\")]\n unconstrained fn subbvec_dst_len_too_large_for_offset() {\n let bvec = BoundedVec::<_, 10>::from_array([1, 2, 3, 4, 5]);\n\n // This effectively requests a capacity increase, since there'd be just one element plus the 5 empty slots,\n // which is less than 7.\n let _: BoundedVec<_, 7> = subbvec(bvec, 4);\n }\n}\n"
1288
1288
  },
1289
- "256": {
1289
+ "258": {
1290
1290
  "function_locations": [
1291
1291
  {
1292
1292
  "name": "encode_bytes_as_fields",
@@ -1309,10 +1309,10 @@
1309
1309
  "start": 2454
1310
1310
  }
1311
1311
  ],
1312
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/conversion/bytes_as_fields.nr",
1312
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/conversion/bytes_as_fields.nr",
1313
1313
  "source": "use std::static_assert;\n\n/// Encodes an array of bytes as fields.\n///\n/// Use\n/// [`decode_bytes_from_fields`](crate::utils::conversion::bytes_as_fields::decode_bytes_from_fields) to recover\n/// the original bytes.\n///\n/// The `bytes` array length must be a multiple of 31. If padding is added, it will need to be manually removed\n/// after decoding.\n///\n/// ## Encoding\n///\n/// Each 31-byte chunk is interpreted as a big-endian integer and stored in a `Field`. For input `[1, 10, 3, ..., 0]`\n/// (31 bytes), the resulting `Field` is `1 * 256^30 + 10 * 256^29 + 3 * 256^28 + ... + 0`.\npub fn encode_bytes_as_fields<let N: u32>(bytes: [u8; N]) -> [Field; N / 31] {\n static_assert(N % 31 == 0, \"N must be a multiple of 31\");\n\n let mut fields = [0; N / 31];\n for i in 0..N / 31 {\n let mut field = 0;\n for j in 0..31 {\n field = field * 256 + bytes[i * 31 + j] as Field;\n }\n fields[i] = field;\n }\n\n fields\n}\n\n/// Decodes fields back into bytes.\n///\n/// Inverse of\n/// [`encode_bytes_as_fields`](crate::utils::conversion::bytes_as_fields::encode_bytes_as_fields).\n/// Each input `Field` must fit in 248 bits; `Field::to_be_bytes::<31>()` fails the proof otherwise.\npub fn decode_bytes_from_fields<let N: u32>(fields: BoundedVec<Field, N>) -> BoundedVec<u8, N * 31> {\n let mut bytes = BoundedVec::new();\n for i in 0..fields.len() {\n let chunk: [u8; 31] = fields.get(i).to_be_bytes();\n for j in 0..31 {\n bytes.push(chunk[j]);\n }\n }\n bytes\n}\n\nmod tests {\n use crate::utils::array::subarray;\n use super::{decode_bytes_from_fields, encode_bytes_as_fields};\n\n #[test]\n unconstrained fn round_trips_bytes(input: [u8; 93]) {\n let fields = encode_bytes_as_fields(input);\n\n // In production the fields fly through the system and arrive as a BoundedVec on the other end.\n let fields_bvec = BoundedVec::<_, 6>::from_array(fields);\n let bytes_back = decode_bytes_from_fields(fields_bvec);\n\n assert_eq(bytes_back.len(), input.len());\n assert_eq(subarray(bytes_back.storage(), 0), input);\n }\n\n #[test(should_fail_with = \"N must be a multiple of 31\")]\n unconstrained fn encode_rejects_length_not_multiple_of_31() {\n let _fields = encode_bytes_as_fields([0; 32]);\n }\n\n #[test(should_fail_with = \"Field failed to decompose into specified 31 limbs\")]\n unconstrained fn decode_rejects_oversized_field() {\n // `Field::to_be_bytes::<31>()` fails the proof when a field has any bit above position 247 set.\n let oversized: Field = (1 as Field) * 2.pow_32(249);\n let input = BoundedVec::<_, 1>::from_array([oversized]);\n let _bytes = decode_bytes_from_fields(input);\n }\n}\n"
1314
1314
  },
1315
- "257": {
1315
+ "259": {
1316
1316
  "function_locations": [
1317
1317
  {
1318
1318
  "name": "encode_fields_as_bytes",
@@ -1359,10 +1359,10 @@
1359
1359
  "start": 6544
1360
1360
  }
1361
1361
  ],
1362
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/conversion/fields_as_bytes.nr",
1362
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/conversion/fields_as_bytes.nr",
1363
1363
  "source": "/// Encodes an array of fields as bytes.\n///\n/// Losslessly preserves any field value; use\n/// [`try_decode_fields_from_bytes`](crate::utils::conversion::fields_as_bytes::try_decode_fields_from_bytes) to\n/// recover the original fields.\n///\n/// ## Encoding\n///\n/// Each field is written as 32 big-endian bytes and the chunks are concatenated. The field array `[5, 42]` becomes:\n///\n/// ```text\n/// [0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,5, // First field (32 bytes)\n/// 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,42] // Second field (32 bytes)\n/// ```\n///\n/// ## Privacy\n///\n/// The BN254 modulus is `< 2^254`, so every 32-byte chunk has its top bit at zero and the next bit biased. The output\n/// is therefore distinguishable from uniform random bytes; take this into account when feeding it into anything that\n/// assumes uniform randomness (e.g. ciphertexts meant to look random).\npub fn encode_fields_as_bytes<let N: u32>(fields: [Field; N]) -> [u8; 32 * N] {\n let mut bytes = [0; 32 * N];\n for i in 0..N {\n let chunk: [u8; 32] = fields[i].to_be_bytes();\n for j in 0..32 {\n bytes[i * 32 + j] = chunk[j];\n }\n }\n bytes\n}\n\n/// Decodes bytes back into fields.\n///\n/// Panics if the input length is not a multiple of 32 or if any chunk exceeds the BN254 field modulus. See\n/// [`try_decode_fields_from_bytes`](crate::utils::conversion::fields_as_bytes::try_decode_fields_from_bytes)\n/// for a non-panicking variant.\npub fn decode_fields_from_bytes<let N: u32>(bytes: BoundedVec<u8, N>) -> BoundedVec<Field, N / 32> {\n assert(bytes.len() % 32 == 0, \"Input length must be a multiple of 32\");\n try_decode_fields_from_bytes(bytes).expect(f\"Value does not fit in field\")\n}\n\n/// Decodes bytes back into fields, returning None on failure.\n///\n/// Inverse of\n/// [`encode_fields_as_bytes`](crate::utils::conversion::fields_as_bytes::encode_fields_as_bytes).\n/// Returns `Option::none()` if the input length is not a multiple of 32, or if any 32-byte chunk is `>=` the BN254\n/// field modulus.\npub fn try_decode_fields_from_bytes<let N: u32>(bytes: BoundedVec<u8, N>) -> Option<BoundedVec<Field, N / 32>> {\n if bytes.len() % 32 == 0 {\n let num_chunks = bytes.len() / 32;\n let mut fields: BoundedVec<Field, N / 32> = BoundedVec::new();\n for i in 0..num_chunks {\n let maybe_field = try_decode_field_from_bytes(bytes, i * 32);\n if maybe_field.is_some() {\n fields.push(maybe_field.unwrap());\n }\n }\n if fields.len() == num_chunks {\n Option::some(fields)\n } else {\n Option::none()\n }\n } else {\n Option::none()\n }\n}\n\nfn try_decode_field_from_bytes<let N: u32>(bytes: BoundedVec<u8, N>, offset: u32) -> Option<Field> {\n // Field arithmetic silently wraps values >= the modulus, so we compare each chunk against the modulus\n // byte-by-byte (big-endian) while building `field`. cmp: 0 = equal so far, 1 = less than modulus, 2 = exceeds.\n let p = std::field::modulus_be_bytes();\n let mut field = 0;\n let mut cmp: u8 = 0;\n for j in 0..32 {\n let byte = bytes.get(offset + j);\n field = field * 256 + byte as Field;\n if cmp == 0 {\n if byte < p[j] {\n cmp = 1;\n } else if byte > p[j] {\n cmp = 2;\n }\n }\n }\n\n if cmp == 1 {\n Option::some(field)\n } else {\n Option::none()\n }\n}\n\nmod tests {\n use crate::utils::array::subarray;\n use super::{decode_fields_from_bytes, encode_fields_as_bytes, try_decode_fields_from_bytes};\n\n #[test]\n unconstrained fn round_trips_fields(input: [Field; 3]) {\n let bytes = encode_fields_as_bytes(input);\n\n // In production the bytes fly through the system and arrive as a BoundedVec on the other end. 113 is an\n // arbitrary max length larger than the input length of 96.\n let bytes_bvec = BoundedVec::<_, 113>::from_array(bytes);\n let fields_back = try_decode_fields_from_bytes(bytes_bvec).unwrap();\n\n assert_eq(fields_back.len(), input.len());\n assert_eq(subarray(fields_back.storage(), 0), input);\n }\n\n #[test]\n unconstrained fn try_decode_returns_none_on_length_not_multiple_of_32() {\n let input = BoundedVec::<_, 64>::from_parts([0 as u8; 64], 33);\n assert(try_decode_fields_from_bytes(input).is_none());\n }\n\n #[test]\n unconstrained fn try_decode_accepts_max_field() {\n // -1 in field arithmetic wraps to `modulus - 1`, the largest valid field value.\n let max_field_as_bytes: [u8; 32] = (-1).to_be_bytes();\n let input = BoundedVec::<_, 32>::from_array(max_field_as_bytes);\n\n let fields = try_decode_fields_from_bytes(input).unwrap();\n\n assert_eq(fields.get(0), -1);\n }\n\n // Verifies the overflow check: take the max allowed value, bump a random byte, feed it in.\n #[test]\n unconstrained fn try_decode_returns_none_on_chunk_above_modulus(random_value: u8) {\n let index_of_byte_to_bump = random_value % 32;\n let max_field_value_as_bytes: [u8; 32] = (-1).to_be_bytes();\n let byte_to_bump = max_field_value_as_bytes[index_of_byte_to_bump as u32];\n\n // Skip if the selected byte is already 255. Acceptable under fuzz testing.\n if byte_to_bump != 255 {\n let mut input = BoundedVec::<_, 32>::from_array(max_field_value_as_bytes);\n input.set(index_of_byte_to_bump as u32, byte_to_bump + 1);\n\n assert(try_decode_fields_from_bytes(input).is_none());\n }\n }\n\n #[test]\n unconstrained fn try_decode_returns_none_on_chunk_equal_to_modulus() {\n // The field modulus itself is not a valid field value (it wraps to 0).\n let p: [u8; 32] = std::field::modulus_be_bytes().as_array();\n let input = BoundedVec::<u8, 32>::from_array(p);\n assert(try_decode_fields_from_bytes(input).is_none());\n }\n\n #[test(should_fail_with = \"Input length must be a multiple of 32\")]\n unconstrained fn decode_asserts_length_multiple_of_32() {\n let input = BoundedVec::<_, 143>::from_array([\n 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29,\n 30, 31, 32, 33,\n ]);\n let _fields = decode_fields_from_bytes(input);\n }\n\n #[test(should_fail_with = \"Value does not fit in field\")]\n unconstrained fn decode_panics_on_chunk_above_modulus(random_value: u8) {\n let index_of_byte_to_bump = random_value % 32;\n let max_field_value_as_bytes: [u8; 32] = (-1).to_be_bytes();\n let byte_to_bump = max_field_value_as_bytes[index_of_byte_to_bump as u32];\n\n if byte_to_bump != 255 {\n let mut input = BoundedVec::<_, 32>::from_array(max_field_value_as_bytes);\n input.set(index_of_byte_to_bump as u32, byte_to_bump + 1);\n let _fields = decode_fields_from_bytes(input);\n }\n }\n}\n"
1364
1364
  },
1365
- "260": {
1365
+ "262": {
1366
1366
  "function_locations": [
1367
1367
  {
1368
1368
  "name": "get_sign_of_point",
@@ -1409,10 +1409,10 @@
1409
1409
  "start": 6628
1410
1410
  }
1411
1411
  ],
1412
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/utils/point.nr",
1412
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/utils/point.nr",
1413
1413
  "source": "use crate::protocol::{point::EmbeddedCurvePoint, utils::field::sqrt};\n\n// I am storing the modulus minus 1 divided by 2 here because full modulus would throw \"String literal too large\" error\n// Full modulus is 21888242871839275222246405745257275088548364400416034343698204186575808495617\nglobal BN254_FR_MODULUS_DIV_2: Field = 10944121435919637611123202872628637544274182200208017171849102093287904247808;\n\n/// Returns: true if p.y <= MOD_DIV_2, else false.\npub fn get_sign_of_point(p: EmbeddedCurvePoint) -> bool {\n // We store only a \"sign\" of the y coordinate because the rest can be derived from the x coordinate. To get the\n // sign we check if the y coordinate is less or equal than the field's modulus minus 1 divided by 2. Ideally we'd\n // do `y <= MOD_DIV_2`, but there's no `lte` function, so instead we do `!(y > MOD_DIV_2)`, which is equivalent,\n // and then rewrite that as `!(MOD_DIV_2 < y)`, since we also have no `gt` function.\n !BN254_FR_MODULUS_DIV_2.lt(p.y)\n}\n\n/// Returns an `EmbeddedCurvePoint` in the Grumpkin curve given its x coordinate.\n///\n/// Because not all values in the field are valid x coordinates of points in the curve (i.e. there is no corresponding\n/// y value in the field that satisfies the curve equation), it may not be possible to reconstruct a `Point`.\n/// `Option::none()` is returned in such cases.\npub fn point_from_x_coord(x: Field) -> Option<EmbeddedCurvePoint> {\n // y ^ 2 = x ^ 3 - 17\n let rhs = x * x * x - 17;\n sqrt(rhs).map(|y| EmbeddedCurvePoint { x, y })\n}\n\n/// Returns an `EmbeddedCurvePoint` in the Grumpkin curve given its x coordinate and sign for the y coordinate.\n///\n/// Because not all values in the field are valid x coordinates of points in the curve (i.e. there is no corresponding\n/// y value in the field that satisfies the curve equation), it may not be possible to reconstruct a `Point`.\n/// `Option::none()` is returned in such cases.\n///\n/// @param x - The x coordinate of the point @param sign - The \"sign\" of the y coordinate - determines whether y <=\n/// (Fr.MODULUS - 1) / 2\npub fn point_from_x_coord_and_sign(x: Field, sign: bool) -> Option<EmbeddedCurvePoint> {\n // y ^ 2 = x ^ 3 - 17\n let rhs = x * x * x - 17;\n\n sqrt(rhs).map(|y| {\n // If there is a square root, we need to ensure it has the correct \"sign\"\n let y_is_positive = !BN254_FR_MODULUS_DIV_2.lt(y);\n let final_y = if y_is_positive == sign { y } else { -y };\n EmbeddedCurvePoint { x, y: final_y }\n })\n}\n\nmod test {\n use crate::protocol::point::EmbeddedCurvePoint;\n use crate::utils::point::{\n BN254_FR_MODULUS_DIV_2, get_sign_of_point, point_from_x_coord, point_from_x_coord_and_sign,\n };\n\n #[test]\n unconstrained fn test_point_from_x_coord_and_sign() {\n // Test positive y coordinate\n let x = 0x1af41f5de96446dc3776a1eb2d98bb956b7acd9979a67854bec6fa7c2973bd73;\n let sign = true;\n let p = point_from_x_coord_and_sign(x, sign).unwrap();\n\n assert_eq(p.x, x);\n assert_eq(p.y, 0x07fc22c7f2c7057571f137fe46ea9c95114282bc95d37d71ec4bfb88de457d4a);\n assert_eq(p.is_infinite(), false);\n\n // Test negative y coordinate\n let x2 = 0x247371652e55dd74c9af8dbe9fb44931ba29a9229994384bd7077796c14ee2b5;\n let sign2 = false;\n let p2 = point_from_x_coord_and_sign(x2, sign2).unwrap();\n\n assert_eq(p2.x, x2);\n assert_eq(p2.y, 0x26441aec112e1ae4cee374f42556932001507ad46e255ffb27369c7e3766e5c0);\n assert_eq(p2.is_infinite(), false);\n }\n\n #[test]\n unconstrained fn test_point_from_x_coord_valid() {\n // x = 8 is a known quadratic residue - should give a valid point\n let result = point_from_x_coord(Field::from(8));\n assert(result.is_some());\n\n let point = result.unwrap();\n assert_eq(point.x, Field::from(8));\n // Check curve equation y^2 = x^3 - 17\n assert_eq(point.y * point.y, point.x * point.x * point.x - 17);\n }\n\n #[test]\n unconstrained fn test_point_from_x_coord_invalid() {\n // x = 3 is a non-residue for this curve - should give None\n let x = Field::from(3);\n let maybe_point = point_from_x_coord(x);\n assert(maybe_point.is_none());\n }\n\n #[test]\n unconstrained fn test_both_roots_satisfy_curve() {\n // Derive a point from x = 8 (known to be valid from test_point_from_x_coord_valid)\n let x: Field = 8;\n let point = point_from_x_coord(x).unwrap();\n\n // Check y satisfies curve equation\n assert_eq(point.y * point.y, x * x * x - 17);\n\n // Check -y also satisfies curve equation\n let neg_y = 0 - point.y;\n assert_eq(neg_y * neg_y, x * x * x - 17);\n\n // Verify they are different (unless y = 0)\n assert(point.y != neg_y);\n }\n\n #[test]\n unconstrained fn test_point_from_x_coord_and_sign_invalid() {\n // x = 3 has no valid point on the curve (from test_point_from_x_coord_invalid)\n let x = Field::from(3);\n let result_positive = point_from_x_coord_and_sign(x, true);\n let result_negative = point_from_x_coord_and_sign(x, false);\n\n assert(result_positive.is_none());\n assert(result_negative.is_none());\n }\n\n #[test]\n unconstrained fn test_get_sign_of_point() {\n // Derive a point from x = 8, then test both possible y values\n let point = point_from_x_coord(8).unwrap();\n let neg_point = EmbeddedCurvePoint { x: point.x, y: 0 - point.y };\n\n // One should be \"positive\" (y <= MOD_DIV_2) and one \"negative\"\n let sign1 = get_sign_of_point(point);\n let sign2 = get_sign_of_point(neg_point);\n assert(sign1 != sign2);\n\n // y = 0 should return true (0 <= MOD_DIV_2)\n let zero_y_point = EmbeddedCurvePoint { x: 0, y: 0 };\n assert(get_sign_of_point(zero_y_point) == true);\n\n // y = MOD_DIV_2 should return true (exactly at boundary)\n let boundary_point = EmbeddedCurvePoint { x: 0, y: BN254_FR_MODULUS_DIV_2 };\n assert(get_sign_of_point(boundary_point) == true);\n\n // y = MOD_DIV_2 + 1 should return false (just over boundary)\n let over_boundary_point = EmbeddedCurvePoint { x: 0, y: BN254_FR_MODULUS_DIV_2 + 1 };\n assert(get_sign_of_point(over_boundary_point) == false);\n }\n\n #[test]\n unconstrained fn test_point_from_x_coord_zero() {\n // x = 0: y^2 = 0^3 - 17 = -17, which is not a quadratic residue in BN254 scalar field\n let result = point_from_x_coord(0);\n assert(result.is_none());\n }\n\n #[test]\n unconstrained fn test_bn254_fr_modulus_div_2() {\n // Verify that BN254_FR_MODULUS_DIV_2 == (p - 1) / 2 This means: 2 * BN254_FR_MODULUS_DIV_2 + 1 == p == 0 (in\n // the field)\n assert_eq(2 * BN254_FR_MODULUS_DIV_2 + 1, 0);\n }\n\n}\n"
1414
1414
  },
1415
- "270": {
1415
+ "272": {
1416
1416
  "function_locations": [
1417
1417
  {
1418
1418
  "name": "Poseidon2::hash",
@@ -1454,7 +1454,7 @@
1454
1454
  "path": "/home/aztec-dev/nargo/github.com/noir-lang/poseidon/v0.3.0/src/poseidon2.nr",
1455
1455
  "source": "use std::default::Default;\nuse std::hash::Hasher;\n\nglobal RATE: u32 = 3;\n\npub struct Poseidon2 {\n cache: [Field; 3],\n state: [Field; 4],\n cache_size: u32,\n squeeze_mode: bool, // 0 => absorb, 1 => squeeze\n}\n\nimpl Poseidon2 {\n #[no_predicates]\n pub fn hash<let N: u32>(input: [Field; N], message_size: u32) -> Field {\n Poseidon2::hash_internal(input, message_size)\n }\n\n pub(crate) fn new(iv: Field) -> Poseidon2 {\n let mut result =\n Poseidon2 { cache: [0; 3], state: [0; 4], cache_size: 0, squeeze_mode: false };\n result.state[RATE] = iv;\n result\n }\n\n fn perform_duplex(&mut self) {\n // add the cache into sponge state\n self.state[0] += self.cache[0];\n self.state[1] += self.cache[1];\n self.state[2] += self.cache[2];\n self.state = crate::poseidon2_permutation(self.state);\n }\n\n fn absorb(&mut self, input: Field) {\n assert(!self.squeeze_mode);\n if self.cache_size == RATE {\n // If we're absorbing, and the cache is full, apply the sponge permutation to compress the cache\n self.perform_duplex();\n self.cache[0] = input;\n self.cache_size = 1;\n } else {\n // If we're absorbing, and the cache is not full, add the input into the cache\n self.cache[self.cache_size] = input;\n self.cache_size += 1;\n }\n }\n\n fn squeeze(&mut self) -> Field {\n assert(!self.squeeze_mode);\n // If we're in absorb mode, apply sponge permutation to compress the cache.\n self.perform_duplex();\n self.squeeze_mode = true;\n\n // Pop one item off the top of the permutation and return it.\n self.state[0]\n }\n\n fn hash_internal<let N: u32>(input: [Field; N], in_len: u32) -> Field {\n let two_pow_64 = 18446744073709551616;\n let iv: Field = (in_len as Field) * two_pow_64;\n let mut state = [0; 4];\n state[RATE] = iv;\n\n if std::runtime::is_unconstrained() {\n for i in 0..(in_len / RATE) {\n state[0] += input[i * RATE];\n state[1] += input[i * RATE + 1];\n state[2] += input[i * RATE + 2];\n state = crate::poseidon2_permutation(state);\n }\n\n // handle remaining elements after last full RATE-sized chunk\n let num_extra_fields = in_len % RATE;\n if num_extra_fields != 0 {\n let remainder_start = in_len - num_extra_fields;\n state[0] += input[remainder_start];\n if num_extra_fields > 1 {\n state[1] += input[remainder_start + 1];\n }\n }\n } else {\n let mut states: [[Field; 4]; N / RATE + 1] = [[0; 4]; N / RATE + 1];\n states[0] = state;\n\n // process all full RATE-sized chunks, storing state after each permutation\n for chunk_idx in 0..(N / RATE) {\n for i in 0..RATE {\n state[i] += input[chunk_idx * RATE + i];\n }\n state = crate::poseidon2_permutation(state);\n states[chunk_idx + 1] = state;\n }\n\n // get state at the last full block before in_len\n let first_partially_filled_chunk = in_len / RATE;\n state = states[first_partially_filled_chunk];\n\n // handle remaining elements after last full RATE-sized chunk\n let remainder_start = (in_len / RATE) * RATE;\n for j in 0..RATE {\n let idx = remainder_start + j;\n if idx < in_len {\n state[j] += input[idx];\n }\n }\n }\n\n // always run final permutation unless we just completed a full chunk\n // still need to permute once if in_len is 0\n if (in_len == 0) | (in_len % RATE != 0) {\n state = crate::poseidon2_permutation(state);\n };\n\n state[0]\n }\n}\n\npub struct Poseidon2Hasher {\n _state: [Field],\n}\n\nimpl Hasher for Poseidon2Hasher {\n fn finish(self) -> Field {\n let iv: Field = (self._state.len() as Field) * 18446744073709551616; // iv = (self._state.len() << 64)\n let mut sponge = Poseidon2::new(iv);\n for i in 0..self._state.len() {\n sponge.absorb(self._state[i]);\n }\n sponge.squeeze()\n }\n\n fn write(&mut self, input: Field) {\n self._state = self._state.push_back(input);\n }\n}\n\nimpl Default for Poseidon2Hasher {\n fn default() -> Self {\n Poseidon2Hasher { _state: @[] }\n }\n}\n"
1456
1456
  },
1457
- "328": {
1457
+ "330": {
1458
1458
  "function_locations": [
1459
1459
  {
1460
1460
  "name": "<impl Empty for AztecAddress>::empty",
@@ -1541,10 +1541,10 @@
1541
1541
  "start": 12922
1542
1542
  }
1543
1543
  ],
1544
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/address/aztec_address.nr",
1544
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/address/aztec_address.nr",
1545
1545
  "source": "use crate::{\n address::{\n partial_address::PartialAddress, salted_initialization_hash::SaltedInitializationHash,\n },\n constants::{AZTEC_ADDRESS_LENGTH, DOM_SEP__CONTRACT_ADDRESS_V2, MAX_FIELD_VALUE},\n contract_class_id::ContractClassId,\n hash::poseidon2_hash_with_separator,\n public_keys::{hash_public_key, IvpkM, PublicKeys, ToPoint},\n traits::{Deserialize, Empty, FromField, Packable, Serialize, ToField},\n utils::field::sqrt,\n};\n\nuse crate::point::EmbeddedCurvePoint;\n\nuse crate::public_keys::AddressPoint;\nuse std::{\n embedded_curve_ops::{EmbeddedCurveScalar, fixed_base_scalar_mul as derive_public_key},\n ops::Add,\n};\nuse std::meta::derive;\n\n// Aztec address\n#[derive(Deserialize, Eq, Packable, Serialize)]\npub struct AztecAddress {\n pub inner: Field,\n}\n\nimpl Empty for AztecAddress {\n fn empty() -> Self {\n Self { inner: 0 }\n }\n}\n\nimpl ToField for AztecAddress {\n fn to_field(self) -> Field {\n self.inner\n }\n}\n\nimpl FromField for AztecAddress {\n fn from_field(value: Field) -> AztecAddress {\n AztecAddress { inner: value }\n }\n}\n\nimpl AztecAddress {\n pub fn zero() -> Self {\n Self { inner: 0 }\n }\n\n /// Returns `true` if the address is valid.\n ///\n /// An invalid address is one that can be proven to not be correctly derived, meaning it contains no contract code,\n /// public keys, etc., and can therefore not receive messages nor execute calls.\n pub fn is_valid(self) -> bool {\n self.get_y().is_some()\n }\n\n /// Returns an address's [`AddressPoint`].\n ///\n /// This can be used to create shared secrets with the owner of the address. If the address is invalid (see\n /// [`AztecAddress::is_valid`]) then this returns `Option::none()`, and no shared secrets can be created.\n pub fn to_address_point(self) -> Option<AddressPoint> {\n self.get_y().map(|y| {\n // If we get a negative y coordinate (y > (r - 1) / 2), we swap it to the\n // positive one (where y <= (r - 1) / 2) by negating it.\n let final_y = if Self::is_positive(y) { y } else { -y };\n\n AddressPoint { inner: EmbeddedCurvePoint { x: self.inner, y: final_y } }\n })\n }\n\n /// Determines whether a y-coordinate is in the lower (positive) or upper (negative) \"half\" of the field.\n /// I.e.\n /// y <= (r - 1)/2 => positive.\n /// y > (r - 1)/2 => negative.\n /// An AddressPoint always uses the \"positive\" y.\n fn is_positive(y: Field) -> bool {\n // Note: The field modulus r is MAX_FIELD_VALUE + 1.\n let MID = MAX_FIELD_VALUE / 2; // (r - 1) / 2\n let MID_PLUS_1 = MID + 1; // (r - 1)/2 + 1\n // Note: y <= m implies y < m + 1.\n y.lt(MID_PLUS_1)\n }\n\n /// Returns one of the two possible y-coordinates.\n ///\n /// Not all `AztecAddresses` are valid, in which case there is no corresponding y-coordinate. This returns\n /// `Option::none()` for invalid addresses.\n ///\n /// An `AztecAddress` is defined by an x-coordinate, for which two y-coordinates exist as solutions to the curve\n /// equation. This function returns either of them. Note that an [`AddressPoint`] must **always** have a positive\n /// y-coordinate - if trying to obtain the underlying point use [`AztecAddress::to_address_point`] instead.\n fn get_y(self) -> Option<Field> {\n // We compute the address point by taking our address as x, and then solving for y in the\n // equation which defines the grumpkin curve:\n // y^2 = x^3 - 17; x = address\n let x = self.inner;\n let y_squared = x * x * x - 17;\n\n sqrt(y_squared)\n }\n\n pub fn compute(public_keys: PublicKeys, partial_address: PartialAddress) -> AztecAddress {\n //\n // address = address_point.x\n // |\n // address_point = pre_address * G + Ivpk_m (always choose \"positive\" y-coord)\n // | ^\n // | |.....................\n // pre_address .\n // / \\ .\n // / \\ .\n // partial_address public_keys_hash .\n // / \\ / / | | | \\ .\n // / \\ / / | | | \\ .\n // npk_m_hash Ivpk_m ovpk_m_hash tpk_m_hash mspk_m_hash fbpk_m_hash\n // contract_class_id \\ |.........................\n // / | \\ \\\n // artifact_hash | public_bytecode_commitment salted_initialization_hash\n // | / / \\ \\\n // private_function_tree_root salt initialization_hash deployer_address immutables_hash\n // / \\ / \\\n // ... ... constructor_fn_selector constructor_args_hash\n // / \\\n // / \\ / \\\n // leaf leaf leaf leaf\n // ^\n // |\n // |---h(function_selector, vk_hash)\n // ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n // Each of these represents a private function of the contract.\n\n let public_keys_hash = public_keys.hash();\n\n let pre_address = poseidon2_hash_with_separator(\n [public_keys_hash.to_field(), partial_address.to_field()],\n DOM_SEP__CONTRACT_ADDRESS_V2,\n );\n\n // Note: `.add()` will fail within the blackbox fn if either of the points are not on the curve. (See tests below).\n let address_point = derive_public_key(EmbeddedCurveScalar::from_field(pre_address)).add(\n public_keys.ivpk_m.to_point(),\n );\n\n // Note that our address is only the x-coordinate of the full address_point. This is okay because when people want to encrypt something and send it to us\n // they can recover our full point using the x-coordinate (our address itself). To do this, they recompute the y-coordinate according to the equation y^2 = x^3 - 17.\n // When they do this, they may get a positive y-coordinate (a value that is less than or equal to MAX_FIELD_VALUE / 2) or\n // a negative y-coordinate (a value that is more than MAX_FIELD_VALUE), and we cannot dictate which one they get and hence the recovered point may sometimes be different than the one\n // our secret can decrypt. Regardless though, they should and will always encrypt using point with the positive y-coordinate by convention.\n // This ensures that everyone encrypts to the same point given an arbitrary x-coordinate (address). This is allowed because even though our original point may not have a positive y-coordinate,\n // with our original secret, we will be able to derive the secret to the point with the flipped (and now positive) y-coordinate that everyone encrypts to.\n AztecAddress::from_field(address_point.x)\n }\n\n pub fn compute_from_class_id(\n contract_class_id: ContractClassId,\n salted_initialization_hash: SaltedInitializationHash,\n public_keys: PublicKeys,\n ) -> Self {\n let partial_address = PartialAddress::compute_from_salted_initialization_hash(\n contract_class_id,\n salted_initialization_hash,\n );\n\n AztecAddress::compute(public_keys, partial_address)\n }\n\n pub fn is_zero(self) -> bool {\n self.inner == 0\n }\n\n pub fn assert_is_zero(self) {\n assert(self.to_field() == 0);\n }\n}\n\n#[test]\nfn check_max_field_value() {\n // Check that it is indeed r-1.\n assert_eq(MAX_FIELD_VALUE + 1, 0);\n}\n\n#[test]\nfn check_is_positive() {\n assert(AztecAddress::is_positive(0));\n assert(AztecAddress::is_positive(1));\n assert(!AztecAddress::is_positive(-1));\n assert(AztecAddress::is_positive(MAX_FIELD_VALUE / 2));\n assert(!AztecAddress::is_positive((MAX_FIELD_VALUE / 2) + 1));\n}\n\n// Gives us confidence that we don't need to manually check that the input public keys need to be on the curve for `add`,\n// because the blackbox function does this check for us.\n#[test(should_fail_with = \"is not on curve\")]\nfn check_embedded_curve_point_add() {\n // Choose a point not on the curve in the 2nd position.\n let p1 = EmbeddedCurvePoint::generator();\n let key = IvpkM { inner: EmbeddedCurvePoint { x: 1, y: 1 } };\n let _ = p1 + key.to_point();\n}\n\n#[test]\nfn compute_address_from_partial_and_pub_keys() {\n let npk_m_point = EmbeddedCurvePoint {\n x: 0x22f7fcddfa3ce3e8f0cc8e82d7b94cdd740afa3e77f8e4a63ea78a239432dcab,\n y: 0x0471657de2b6216ade6c506d28fbc22ba8b8ed95c871ad9f3e3984e90d9723a7,\n };\n let ovpk_m_point = EmbeddedCurvePoint {\n x: 0x09115c96e962322ffed6522f57194627136b8d03ac7469109707f5e44190c484,\n y: 0x0c49773308a13d740a7f0d4f0e6163b02c5a408b6f965856b6a491002d073d5b,\n };\n let tpk_m_point = EmbeddedCurvePoint {\n x: 0x00d3d81beb009873eb7116327cf47c612d5758ef083d4fda78e9b63980b2a762,\n y: 0x2f567d22d2b02fe1f4ad42db9d58a36afd1983e7e2909d1cab61cafedad6193a,\n };\n let mspk_m_point = EmbeddedCurvePoint {\n x: 0x1bd6cb13e0bc8c6e0c1a8b2c5d7f9e0a4b6c8d0e2f4a6c8e0a2c4e6f8a0b2c4d,\n y: 0x0a032ec7b21c2bdb35f8a13e594764e39ee786c4b275eef3f0435bf6ab2b9822,\n };\n let fbpk_m_point = EmbeddedCurvePoint {\n x: 0x2c8e0a2c4e6f8b0d2f4a6c8e0a2c4e6f8b0d2f4a6c8e0a2c4e6f8b0d2f4a6c90,\n y: 0x2ef338da3a77e65f90b6d48ac686fc9ff3a95de0c39e0426fc443377425e6634,\n };\n\n let public_keys = PublicKeys {\n npk_m_hash: hash_public_key(npk_m_point),\n ivpk_m: IvpkM {\n inner: EmbeddedCurvePoint {\n x: 0x111223493147f6785514b1c195bb37a2589f22a6596d30bb2bb145fdc9ca8f1e,\n y: 0x273bbffd678edce8fe30e0deafc4f66d58357c06fd4a820285294b9746c3be95,\n },\n },\n ovpk_m_hash: hash_public_key(ovpk_m_point),\n tpk_m_hash: hash_public_key(tpk_m_point),\n mspk_m_hash: hash_public_key(mspk_m_point),\n fbpk_m_hash: hash_public_key(fbpk_m_point),\n };\n\n let partial_address = PartialAddress::from_field(\n 0x0a7c585381b10f4666044266a02405bf6e01fa564c8517d4ad5823493abd31de,\n );\n\n let address = AztecAddress::compute(public_keys, partial_address).to_field();\n\n let expected_computed_address_from_partial_and_pubkeys =\n 0x303ffc8bd456d132463b1fc3a633aeb718a7883c268f3956c05e6fe09b5a5424;\n assert_eq(address, expected_computed_address_from_partial_and_pubkeys);\n}\n\n#[test]\nfn compute_preaddress_from_partial_and_pub_keys() {\n let pre_address = poseidon2_hash_with_separator([1, 2], DOM_SEP__CONTRACT_ADDRESS_V2);\n let expected_computed_preaddress_from_partial_and_pubkey =\n 0x0fa1c698858df1a99170cd39d5f4bfad6d0d60f1f8afa3dc92281ee60b36f3bb;\n assert(pre_address == expected_computed_preaddress_from_partial_and_pubkey);\n}\n\n#[test]\nfn from_field_to_field() {\n let address = AztecAddress { inner: 37 };\n assert_eq(FromField::from_field(address.to_field()), address);\n}\n\n#[test]\nfn serde() {\n let address = AztecAddress { inner: 37 };\n // We use the AZTEC_ADDRESS_LENGTH constant to ensure that there is a match between the derived trait\n // implementation and the constant.\n let serialized: [Field; AZTEC_ADDRESS_LENGTH] = address.serialize();\n let deserialized = AztecAddress::deserialize(serialized);\n assert_eq(address, deserialized);\n}\n\n#[test]\nfn to_address_point_valid() {\n // x = 8 where x^3 - 17 = 512 - 17 = 495, which is a residue in this field\n let address = AztecAddress { inner: 8 };\n\n assert(address.get_y().is_some()); // We don't bother checking the result of get_y as it is only used internally\n assert(address.is_valid());\n\n let maybe_point = address.to_address_point();\n assert(maybe_point.is_some());\n\n let point = maybe_point.unwrap().inner;\n // check that x is preserved\n assert_eq(point.x, Field::from(8));\n\n // check that the curve equation holds: y^2 == x^3 - 17\n assert_eq(point.y * point.y, point.x * point.x * point.x - 17);\n}\n\n#[test]\nunconstrained fn to_address_point_invalid() {\n // x = 3 where x^3 - 17 = 27 - 17 = 10, which is a non-residue in this field\n let address = AztecAddress { inner: 3 };\n\n assert(address.get_y().is_none());\n assert(!address.is_valid());\n\n assert(address.to_address_point().is_none());\n}\n"
1546
1546
  },
1547
- "359": {
1547
+ "361": {
1548
1548
  "function_locations": [
1549
1549
  {
1550
1550
  "name": "sha256_to_field",
@@ -1663,10 +1663,10 @@
1663
1663
  "start": 16359
1664
1664
  }
1665
1665
  ],
1666
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/hash.nr",
1666
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/hash.nr",
1667
1667
  "source": "mod poseidon2_chunks;\n\nuse crate::{\n abis::{\n contract_class_function_leaf_preimage::ContractClassFunctionLeafPreimage,\n function_selector::FunctionSelector, nullifier::Nullifier, private_log::PrivateLog,\n transaction::tx_request::TxRequest,\n },\n address::{AztecAddress, EthAddress},\n constants::{\n CONTRACT_CLASS_LOG_SIZE_IN_FIELDS, DOM_SEP__NOTE_HASH_NONCE,\n DOM_SEP__PRIVATE_LOG_FIRST_FIELD, DOM_SEP__SILOED_NOTE_HASH, DOM_SEP__SILOED_NULLIFIER,\n DOM_SEP__UNIQUE_NOTE_HASH, FUNCTION_TREE_HEIGHT, NULL_MSG_SENDER_CONTRACT_ADDRESS,\n TWO_POW_64,\n },\n merkle_tree::root_from_sibling_path,\n messaging::l2_to_l1_message::L2ToL1Message,\n poseidon2::Poseidon2Sponge,\n side_effect::{Counted, Scoped},\n traits::{FromField, Hash, ToField},\n utils::field::{field_from_bytes, field_from_bytes_32_trunc},\n};\n\npub use poseidon2_chunks::poseidon2_absorb_in_chunks_existing_sponge;\nuse poseidon2_chunks::poseidon2_absorb_in_chunks;\nuse std::embedded_curve_ops::EmbeddedCurveScalar;\n\n// TODO: refactor these into their own files: sha256, poseidon2, some protocol-specific hash computations, some merkle computations.\n\npub fn sha256_to_field<let N: u32>(bytes_to_hash: [u8; N]) -> Field {\n let sha256_hashed = sha256::digest(bytes_to_hash);\n let hash_in_a_field = field_from_bytes_32_trunc(sha256_hashed);\n\n hash_in_a_field\n}\n\npub fn private_functions_root_from_siblings(\n selector: FunctionSelector,\n vk_hash: Field,\n function_leaf_index: Field,\n function_leaf_sibling_path: [Field; FUNCTION_TREE_HEIGHT],\n) -> Field {\n let function_leaf_preimage = ContractClassFunctionLeafPreimage { selector, vk_hash };\n let function_leaf = function_leaf_preimage.hash();\n root_from_sibling_path(\n function_leaf,\n function_leaf_index,\n function_leaf_sibling_path,\n )\n}\n\n/// Siloing in the context of Aztec refers to the process of hashing a note hash with a contract address (this way\n/// the note hash is scoped to a specific contract). This is used to prevent intermingling of notes between contracts.\npub fn compute_siloed_note_hash(contract_address: AztecAddress, note_hash: Field) -> Field {\n poseidon2_hash_with_separator(\n [contract_address.to_field(), note_hash],\n DOM_SEP__SILOED_NOTE_HASH,\n )\n}\n\n/// Computes unique, siloed note hashes from siloed note hashes.\n///\n/// The protocol injects uniqueness into every note_hash, so that every single note_hash in the\n/// tree is unique. This prevents faerie gold attacks, where a malicious sender could create\n/// two identical note_hashes for a recipient (meaning only one would be nullifiable in future).\n///\n/// Most privacy protocols will inject the note's leaf_index (its position in the Note Hashes Tree)\n/// into the note, but this requires the creator of a note to wait until their tx is included in\n/// a block to know the note's final note hash (the unique, siloed note hash), because inserting\n/// leaves into trees is the job of a block producer.\n///\n/// We took a different approach so that the creator of a note will know each note's unique, siloed\n/// note hash before broadcasting their tx to the network.\n/// (There was also a historical requirement relating to \"chained transactions\" -- a feature that\n/// Aztec Connect had to enable notes to be spent from distinct txs earlier in the same block,\n/// and hence before an archive block root had been established for that block -- but that feature\n/// was abandoned for the Aztec Network for having too many bad tradeoffs).\n///\n/// (\n/// Edit: it is no longer true that all final note_hashes will be known by the creator of a tx\n/// before they send it to the network. If a tx makes public function calls, then _revertible_\n/// note_hashes that are created in private will not be made unique in private by the Reset circuit,\n/// but will instead be made unique by the AVM, because the `note_index_in_tx` will not be known\n/// until the AVM has executed the public functions of the tx. (See an explanation in\n/// reset_output_composer.nr for why).\n/// For some such txs, the `note_index_in_tx` might still be predictable through simulation, but\n/// for txs whose public functions create a varying number of non-revertible notes (determined at\n/// runtime), the `note_index_in_tx` will not be deterministically derivable before submitting the\n/// tx to the network.\n/// )\n///\n/// We use the `first_nullifier` of a tx as a seed of uniqueness. We have a guarantee that there will\n/// always be at least one nullifier per tx, because the init circuit will create one if one isn't\n/// created naturally by any functions of the tx. (Search \"protocol_nullifier\").\n/// We combine the `first_nullifier` with the note's index (its position within this tx's new\n/// note_hashes array) (`note_index_in_tx`) to get a truly unique value to inject into a note, which\n/// we call a `note_nonce`.\npub fn compute_unique_note_hash(note_nonce: Field, siloed_note_hash: Field) -> Field {\n let inputs = [note_nonce, siloed_note_hash];\n poseidon2_hash_with_separator(inputs, DOM_SEP__UNIQUE_NOTE_HASH)\n}\n\npub fn compute_note_hash_nonce(first_nullifier_in_tx: Field, note_index_in_tx: u32) -> Field {\n // Hashing the first nullifier with note index in tx is guaranteed to be unique (because all nullifiers are also\n // unique).\n poseidon2_hash_with_separator(\n [first_nullifier_in_tx, note_index_in_tx as Field],\n DOM_SEP__NOTE_HASH_NONCE,\n )\n}\n\npub fn compute_note_nonce_and_unique_note_hash(\n siloed_note_hash: Field,\n first_nullifier: Field,\n note_index_in_tx: u32,\n) -> Field {\n let note_nonce = compute_note_hash_nonce(first_nullifier, note_index_in_tx);\n compute_unique_note_hash(note_nonce, siloed_note_hash)\n}\n\npub fn compute_siloed_nullifier(contract_address: AztecAddress, nullifier: Field) -> Field {\n poseidon2_hash_with_separator(\n [contract_address.to_field(), nullifier],\n DOM_SEP__SILOED_NULLIFIER,\n )\n}\n\npub fn create_protocol_nullifier(tx_request: TxRequest) -> Scoped<Counted<Nullifier>> {\n // The protocol nullifier is ascribed a special side-effect counter of 1. No other side-effect\n // can have counter 1 (see `validate_as_first_call` for that assertion).\n Nullifier { value: tx_request.hash(), note_hash: 0 }.count(1).scope(\n NULL_MSG_SENDER_CONTRACT_ADDRESS,\n )\n}\n\npub fn compute_log_tag(raw_tag: Field, dom_sep: u32) -> Field {\n poseidon2_hash_with_separator([raw_tag], dom_sep)\n}\n\npub fn compute_siloed_private_log_first_field(\n contract_address: AztecAddress,\n field: Field,\n) -> Field {\n poseidon2_hash_with_separator(\n [contract_address.to_field(), field],\n DOM_SEP__PRIVATE_LOG_FIRST_FIELD,\n )\n}\n\npub fn compute_siloed_private_log(contract_address: AztecAddress, log: PrivateLog) -> PrivateLog {\n let mut fields = log.fields;\n fields[0] = compute_siloed_private_log_first_field(contract_address, fields[0]);\n PrivateLog::new(fields, log.length)\n}\n\npub fn compute_contract_class_log_hash(log: [Field; CONTRACT_CLASS_LOG_SIZE_IN_FIELDS]) -> Field {\n poseidon2_hash(log)\n}\n\npub fn compute_app_siloed_secret_key(\n master_secret_key: EmbeddedCurveScalar,\n app_address: AztecAddress,\n key_type_domain_separator: Field,\n) -> Field {\n poseidon2_hash_with_separator(\n [master_secret_key.hi, master_secret_key.lo, app_address.to_field()],\n key_type_domain_separator,\n )\n}\n\npub fn compute_l2_to_l1_message_hash(\n message: Scoped<L2ToL1Message>,\n rollup_version_id: Field,\n chain_id: Field,\n) -> Field {\n let contract_address_bytes: [u8; 32] = message.contract_address.to_field().to_be_bytes();\n let recipient_bytes: [u8; 20] = message.inner.recipient.to_be_bytes();\n let content_bytes: [u8; 32] = message.inner.content.to_be_bytes();\n let rollup_version_id_bytes: [u8; 32] = rollup_version_id.to_be_bytes();\n let chain_id_bytes: [u8; 32] = chain_id.to_be_bytes();\n\n let mut bytes: [u8; 148] = std::mem::zeroed();\n for i in 0..32 {\n bytes[i] = contract_address_bytes[i];\n bytes[i + 32] = rollup_version_id_bytes[i];\n // 64 - 84 are for recipient.\n bytes[i + 84] = chain_id_bytes[i];\n bytes[i + 116] = content_bytes[i];\n }\n\n for i in 0..20 {\n bytes[64 + i] = recipient_bytes[i];\n }\n\n sha256_to_field(bytes)\n}\n\n// TODO: consider a variant that enables domain separation with a u32 (we seem to have standardised u32s for domain separators)\n/// Computes sha256 hash of 2 input fields.\n///\n/// @returns A truncated field (i.e., the first byte is always 0).\npub fn accumulate_sha256(v0: Field, v1: Field) -> Field {\n // Concatenate two fields into 32 x 2 = 64 bytes\n let v0_as_bytes: [u8; 32] = v0.to_be_bytes();\n let v1_as_bytes: [u8; 32] = v1.to_be_bytes();\n let hash_input_flattened = v0_as_bytes.concat(v1_as_bytes);\n\n sha256_to_field(hash_input_flattened)\n}\n\npub fn poseidon2_hash<let N: u32>(inputs: [Field; N]) -> Field {\n poseidon::poseidon2::Poseidon2::hash(inputs, N)\n}\n\n#[no_predicates]\npub fn poseidon2_hash_with_separator<let N: u32, T>(inputs: [Field; N], separator: T) -> Field\nwhere\n T: ToField,\n{\n let inputs_with_separator = [separator.to_field()].concat(inputs);\n poseidon2_hash(inputs_with_separator)\n}\n\n/// Computes a Poseidon2 hash over a dynamic-length subarray of the given input.\n/// Only the first `in_len` fields of `input` are absorbed; any remaining fields are ignored.\n/// The caller is responsible for ensuring that the input is padded with zeros if required.\n#[no_predicates]\npub fn poseidon2_hash_subarray<let N: u32>(input: [Field; N], in_len: u32) -> Field {\n let mut sponge = poseidon2_absorb_in_chunks(input, in_len);\n sponge.squeeze()\n}\n\n// This function is unconstrained because it is intended to be used in unconstrained context only as\n// in constrained contexts it would be too inefficient.\npub unconstrained fn poseidon2_hash_with_separator_bounded_vec<let N: u32, T>(\n inputs: BoundedVec<Field, N>,\n separator: T,\n) -> Field\nwhere\n T: ToField,\n{\n let in_len = inputs.len() + 1;\n let iv: Field = (in_len as Field) * TWO_POW_64;\n let mut sponge = Poseidon2Sponge::new(iv);\n sponge.absorb(separator.to_field());\n\n for i in 0..inputs.len() {\n sponge.absorb(inputs.get(i));\n }\n\n sponge.squeeze()\n}\n\n#[no_predicates]\npub fn poseidon2_hash_bytes<let N: u32>(inputs: [u8; N]) -> Field {\n let mut fields = [0; (N + 30) / 31];\n let mut field_index = 0;\n let mut current_field = [0; 31];\n for i in 0..inputs.len() {\n let index = i % 31;\n current_field[index] = inputs[i];\n if index == 30 {\n fields[field_index] = field_from_bytes(current_field, false);\n current_field = [0; 31];\n field_index += 1;\n }\n }\n if field_index != fields.len() {\n fields[field_index] = field_from_bytes(current_field, false);\n }\n poseidon2_hash(fields)\n}\n\n#[test]\nfn subarray_hash_matches_fixed() {\n let values_to_hash = [3; 17];\n let padded = values_to_hash.concat([0; 11]);\n let subarray_hash = poseidon2_hash_subarray(padded, values_to_hash.len());\n\n // Hash the entire values_to_hash.\n let fixed_len_hash = poseidon::poseidon2::Poseidon2::hash(values_to_hash, values_to_hash.len());\n\n assert_eq(subarray_hash, fixed_len_hash);\n}\n\n#[test]\nfn subarray_hash_matches_variable() {\n let values_to_hash = [3; 17];\n let padded = values_to_hash.concat([0; 11]);\n let subarray_hash = poseidon2_hash_subarray(padded, values_to_hash.len());\n\n // Hash up to values_to_hash.len() fields of the padded array.\n let variable_len_hash = poseidon::poseidon2::Poseidon2::hash(padded, values_to_hash.len());\n\n assert_eq(subarray_hash, variable_len_hash);\n}\n\n#[test]\nfn smoke_sha256_to_field() {\n let full_buffer = [\n 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24,\n 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47,\n 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70,\n 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93,\n 94, 95, 96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109, 110, 111, 112,\n 113, 114, 115, 116, 117, 118, 119, 120, 121, 122, 123, 124, 125, 126, 127, 128, 129, 130,\n 131, 132, 133, 134, 135, 136, 137, 138, 139, 140, 141, 142, 143, 144, 145, 146, 147, 148,\n 149, 150, 151, 152, 153, 154, 155, 156, 157, 158, 159,\n ];\n let result = sha256_to_field(full_buffer);\n\n assert(result == 0x448ebbc9e1a31220a2f3830c18eef61b9bd070e5084b7fa2a359fe729184c7);\n\n // to show correctness of the current ver (truncate one byte) vs old ver (mod full bytes):\n let result_bytes = sha256::digest(full_buffer);\n let truncated_field = crate::utils::field::field_from_bytes_32_trunc(result_bytes);\n assert(truncated_field == result);\n let mod_res = result + (result_bytes[31] as Field);\n assert(mod_res == 0x448ebbc9e1a31220a2f3830c18eef61b9bd070e5084b7fa2a359fe729184e0);\n}\n\n#[test]\nfn unique_siloed_note_hash_matches_typescript() {\n let inner_note_hash = 1;\n let contract_address = AztecAddress::from_field(2);\n let first_nullifier = 3;\n let note_index_in_tx = 4;\n\n let siloed_note_hash = compute_siloed_note_hash(contract_address, inner_note_hash);\n let siloed_note_hash_from_ts =\n 0x1986a4bea3eddb1fff917d629a13e10f63f514f401bdd61838c6b475db949169;\n assert_eq(siloed_note_hash, siloed_note_hash_from_ts);\n\n let nonce: Field = compute_note_hash_nonce(first_nullifier, note_index_in_tx);\n let note_hash_nonce_from_ts =\n 0x28e7799791bf066a57bb51fdd0fbcaf3f0926414314c7db515ea343f44f5d58b;\n assert_eq(nonce, note_hash_nonce_from_ts);\n\n let unique_siloed_note_hash_from_nonce = compute_unique_note_hash(nonce, siloed_note_hash);\n let unique_siloed_note_hash = compute_note_nonce_and_unique_note_hash(\n siloed_note_hash,\n first_nullifier,\n note_index_in_tx,\n );\n assert_eq(unique_siloed_note_hash_from_nonce, unique_siloed_note_hash);\n\n let unique_siloed_note_hash_from_ts =\n 0x29949aef207b715303b24639737c17fbfeb375c1d965ecfa85c7e4f0febb7d16;\n assert_eq(unique_siloed_note_hash, unique_siloed_note_hash_from_ts);\n}\n\n#[test]\nfn siloed_nullifier_matches_typescript() {\n let contract_address = AztecAddress::from_field(123);\n let nullifier = 456;\n\n let res = compute_siloed_nullifier(contract_address, nullifier);\n\n let siloed_nullifier_from_ts =\n 0x169b50336c1f29afdb8a03d955a81e485f5ac7d5f0b8065673d1e407e5877813;\n\n assert_eq(res, siloed_nullifier_from_ts);\n}\n\n#[test]\nfn siloed_private_log_first_field_matches_typescript() {\n let contract_address = AztecAddress::from_field(123);\n let field = 456;\n let res = compute_siloed_private_log_first_field(contract_address, field);\n\n let siloed_private_log_first_field_from_ts =\n 0x29480984f7b9257fded523d50addbcfc8d1d33adcf2db73ef3390a8fd5cdffaa;\n\n assert_eq(res, siloed_private_log_first_field_from_ts);\n}\n\n#[test]\nfn empty_l2_to_l1_message_hash_matches_typescript() {\n // All zeroes\n let res = compute_l2_to_l1_message_hash(\n L2ToL1Message { recipient: EthAddress::zero(), content: 0 }.scope(AztecAddress::from_field(\n 0,\n )),\n 0,\n 0,\n );\n\n let empty_l2_to_l1_msg_hash_from_ts =\n 0x003b18c58c739716e76429634a61375c45b3b5cd470c22ab6d3e14cee23dd992;\n\n assert_eq(res, empty_l2_to_l1_msg_hash_from_ts);\n}\n\n#[test]\nfn l2_to_l1_message_hash_matches_typescript() {\n let message = L2ToL1Message { recipient: EthAddress::from_field(1), content: 2 }.scope(\n AztecAddress::from_field(3),\n );\n let version = 4;\n let chainId = 5;\n\n let hash = compute_l2_to_l1_message_hash(message, version, chainId);\n\n // The following value was generated by `yarn-project/stdlib/src/hash/hash.test.ts`\n let l2_to_l1_message_hash_from_ts =\n 0x0081edf209e087ad31b3fd24263698723d57190bd1d6e9fe056fc0c0a68ee661;\n\n assert_eq(hash, l2_to_l1_message_hash_from_ts);\n}\n\n#[test]\nunconstrained fn poseidon2_hash_with_separator_bounded_vec_matches_non_bounded_vec_version() {\n let inputs = BoundedVec::<Field, 4>::from_array([1, 2, 3]);\n let separator = 42;\n\n // Hash using bounded vec version\n let bounded_result = poseidon2_hash_with_separator_bounded_vec(inputs, separator);\n\n // Hash using regular version\n let regular_result = poseidon2_hash_with_separator([1, 2, 3], separator);\n\n // Results should match\n assert_eq(bounded_result, regular_result);\n}\n"
1668
1668
  },
1669
- "361": {
1669
+ "363": {
1670
1670
  "function_locations": [
1671
1671
  {
1672
1672
  "name": "fatal_log",
@@ -1734,13 +1734,13 @@
1734
1734
  },
1735
1735
  {
1736
1736
  "name": "log_oracle",
1737
- "start": 2801
1737
+ "start": 2802
1738
1738
  }
1739
1739
  ],
1740
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/logging.nr",
1741
- "source": "// Log levels matching the JS logger:\n\n// global SILENT_LOG_LEVEL: u8 = 0;\nglobal FATAL_LOG_LEVEL: u8 = 1;\nglobal ERROR_LOG_LEVEL: u8 = 2;\nglobal WARN_LOG_LEVEL: u8 = 3;\nglobal INFO_LOG_LEVEL: u8 = 4;\nglobal VERBOSE_LOG_LEVEL: u8 = 5;\nglobal DEBUG_LOG_LEVEL: u8 = 6;\nglobal TRACE_LOG_LEVEL: u8 = 7;\n\n// --- Per-level log functions (no format args) ---\n\npub fn fatal_log<let N: u32>(msg: str<N>) {\n fatal_log_format(msg, []);\n}\n\npub fn error_log<let N: u32>(msg: str<N>) {\n error_log_format(msg, []);\n}\n\npub fn warn_log<let N: u32>(msg: str<N>) {\n warn_log_format(msg, []);\n}\n\npub fn info_log<let N: u32>(msg: str<N>) {\n info_log_format(msg, []);\n}\n\npub fn verbose_log<let N: u32>(msg: str<N>) {\n verbose_log_format(msg, []);\n}\n\npub fn debug_log<let N: u32>(msg: str<N>) {\n debug_log_format(msg, []);\n}\n\npub fn trace_log<let N: u32>(msg: str<N>) {\n trace_log_format(msg, []);\n}\n\n// --- Per-level log functions (with format args) ---\n\npub fn fatal_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(FATAL_LOG_LEVEL, msg, args);\n}\n\npub fn error_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(ERROR_LOG_LEVEL, msg, args);\n}\n\npub fn warn_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(WARN_LOG_LEVEL, msg, args);\n}\n\npub fn info_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(INFO_LOG_LEVEL, msg, args);\n}\n\npub fn verbose_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(VERBOSE_LOG_LEVEL, msg, args);\n}\n\npub fn debug_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(DEBUG_LOG_LEVEL, msg, args);\n}\n\npub fn trace_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(TRACE_LOG_LEVEL, msg, args);\n}\n\nfn log_format<let M: u32, let N: u32>(log_level: u8, msg: str<M>, args: [Field; N]) {\n // Safety: This oracle call returns nothing: we only call it for its side effects. It is therefore always safe\n // to call.\n unsafe { log_oracle_wrapper(log_level, msg, args) };\n}\n\nunconstrained fn log_oracle_wrapper<let M: u32, let N: u32>(\n log_level: u8,\n msg: str<M>,\n args: [Field; N],\n) {\n log_oracle(log_level, msg, N, args);\n}\n\n// While the length parameter might seem unnecessary given that we have N, we keep it around because at the AVM\n// bytecode level we want to support non-comptime-known lengths for such opcodes, even if Noir code will not generally\n// take that route. The AVM transpiler maps this oracle to the DEBUGLOG opcode, which reads the fields size from memory.\n#[oracle(aztec_utl_log)]\nunconstrained fn log_oracle<let M: u32, let N: u32>(\n log_level: u8,\n msg: str<M>,\n length: u32,\n args: [Field; N],\n) {}\n"
1740
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/logging.nr",
1741
+ "source": "// Log levels matching the JS logger:\n\n// global SILENT_LOG_LEVEL: u8 = 0;\nglobal FATAL_LOG_LEVEL: u8 = 1;\nglobal ERROR_LOG_LEVEL: u8 = 2;\nglobal WARN_LOG_LEVEL: u8 = 3;\nglobal INFO_LOG_LEVEL: u8 = 4;\nglobal VERBOSE_LOG_LEVEL: u8 = 5;\nglobal DEBUG_LOG_LEVEL: u8 = 6;\nglobal TRACE_LOG_LEVEL: u8 = 7;\n\n// --- Per-level log functions (no format args) ---\n\npub fn fatal_log<let N: u32>(msg: str<N>) {\n fatal_log_format(msg, []);\n}\n\npub fn error_log<let N: u32>(msg: str<N>) {\n error_log_format(msg, []);\n}\n\npub fn warn_log<let N: u32>(msg: str<N>) {\n warn_log_format(msg, []);\n}\n\npub fn info_log<let N: u32>(msg: str<N>) {\n info_log_format(msg, []);\n}\n\npub fn verbose_log<let N: u32>(msg: str<N>) {\n verbose_log_format(msg, []);\n}\n\npub fn debug_log<let N: u32>(msg: str<N>) {\n debug_log_format(msg, []);\n}\n\npub fn trace_log<let N: u32>(msg: str<N>) {\n trace_log_format(msg, []);\n}\n\n// --- Per-level log functions (with format args) ---\n\npub fn fatal_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(FATAL_LOG_LEVEL, msg, args);\n}\n\npub fn error_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(ERROR_LOG_LEVEL, msg, args);\n}\n\npub fn warn_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(WARN_LOG_LEVEL, msg, args);\n}\n\npub fn info_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(INFO_LOG_LEVEL, msg, args);\n}\n\npub fn verbose_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(VERBOSE_LOG_LEVEL, msg, args);\n}\n\npub fn debug_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(DEBUG_LOG_LEVEL, msg, args);\n}\n\npub fn trace_log_format<let M: u32, let N: u32>(msg: str<M>, args: [Field; N]) {\n log_format(TRACE_LOG_LEVEL, msg, args);\n}\n\nfn log_format<let M: u32, let N: u32>(log_level: u8, msg: str<M>, args: [Field; N]) {\n // Safety: This oracle call returns nothing: we only call it for its side effects. It is therefore always safe\n // to call.\n unsafe { log_oracle_wrapper(log_level, msg, args) };\n}\n\nunconstrained fn log_oracle_wrapper<let M: u32, let N: u32>(\n log_level: u8,\n msg: str<M>,\n args: [Field; N],\n) {\n log_oracle(log_level, msg, N, args);\n}\n\n// While the length parameter might seem unnecessary given that we have N, we keep it around because at the AVM\n// bytecode level we want to support non-comptime-known lengths for such opcodes, even if Noir code will not generally\n// take that route. The AVM transpiler maps this oracle to the DEBUGLOG opcode, which reads the fields size from memory.\n#[oracle(aztec_misc_log)]\nunconstrained fn log_oracle<let M: u32, let N: u32>(\n log_level: u8,\n msg: str<M>,\n length: u32,\n args: [Field; N],\n) {}\n"
1742
1742
  },
1743
- "380": {
1743
+ "382": {
1744
1744
  "function_locations": [
1745
1745
  {
1746
1746
  "name": "Poseidon2Sponge::hash",
@@ -1767,47 +1767,9 @@
1767
1767
  "start": 2544
1768
1768
  }
1769
1769
  ],
1770
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/poseidon2.nr",
1770
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/poseidon2.nr",
1771
1771
  "source": "use crate::constants::TWO_POW_64;\nuse crate::traits::{Deserialize, Serialize};\nuse std::meta::derive;\n// NB: This is a clone of noir/noir-repo/noir_stdlib/src/hash/poseidon2.nr\n// It exists as we sometimes need to perform custom absorption, but the stdlib version\n// has a private absorb() method (it's also designed to just be a hasher)\n// Can be removed when standalone noir poseidon lib exists: See noir#6679\n// TODO: Poseidon is stand-alone now\n\nglobal RATE: u32 = 3;\n\n#[derive(Deserialize, Eq, Serialize)]\npub struct Poseidon2Sponge {\n pub cache: [Field; 3],\n pub state: [Field; 4],\n pub cache_size: u32,\n pub squeeze_mode: bool, // 0 => absorb, 1 => squeeze\n}\n\nimpl Poseidon2Sponge {\n #[no_predicates]\n pub fn hash<let N: u32>(input: [Field; N], message_size: u32) -> Field {\n Poseidon2Sponge::hash_internal(input, message_size, message_size != N)\n }\n\n pub(crate) fn new(iv: Field) -> Poseidon2Sponge {\n let mut result =\n Poseidon2Sponge { cache: [0; 3], state: [0; 4], cache_size: 0, squeeze_mode: false };\n result.state[RATE] = iv;\n result\n }\n\n fn perform_duplex(&mut self) {\n // add the cache into sponge state\n for i in 0..RATE {\n // We effectively zero-pad the cache by only adding to the state\n // cache that is less than the specified `cache_size`\n if i < self.cache_size {\n self.state[i] += self.cache[i];\n }\n }\n self.state = std::hash::poseidon2_permutation(self.state);\n }\n\n pub fn absorb(&mut self, input: Field) {\n assert(!self.squeeze_mode);\n if self.cache_size == RATE {\n // If we're absorbing, and the cache is full, apply the sponge permutation to compress the cache\n self.perform_duplex();\n self.cache[0] = input;\n self.cache_size = 1;\n } else {\n // If we're absorbing, and the cache is not full, add the input into the cache\n self.cache[self.cache_size] = input;\n self.cache_size += 1;\n }\n }\n\n pub fn squeeze(&mut self) -> Field {\n assert(!self.squeeze_mode);\n // If we're in absorb mode, apply sponge permutation to compress the cache.\n self.perform_duplex();\n self.squeeze_mode = true;\n\n // Pop one item off the top of the permutation and return it.\n self.state[0]\n }\n\n fn hash_internal<let N: u32>(\n input: [Field; N],\n in_len: u32,\n is_variable_length: bool,\n ) -> Field {\n let iv: Field = (in_len as Field) * TWO_POW_64;\n let mut sponge = Poseidon2Sponge::new(iv);\n for i in 0..input.len() {\n if i < in_len {\n sponge.absorb(input[i]);\n }\n }\n\n sponge.squeeze()\n }\n}\n"
1772
1772
  },
1773
- "399": {
1774
- "function_locations": [
1775
- {
1776
- "name": "<impl ToField for Field>::to_field",
1777
- "start": 176
1778
- },
1779
- {
1780
- "name": "<impl ToField for bool>::to_field",
1781
- "start": 276
1782
- },
1783
- {
1784
- "name": "<impl ToField for u8>::to_field",
1785
- "start": 382
1786
- },
1787
- {
1788
- "name": "<impl ToField for u16>::to_field",
1789
- "start": 468
1790
- },
1791
- {
1792
- "name": "<impl ToField for u32>::to_field",
1793
- "start": 575
1794
- },
1795
- {
1796
- "name": "<impl ToField for u64>::to_field",
1797
- "start": 682
1798
- },
1799
- {
1800
- "name": "<impl ToField for u128>::to_field",
1801
- "start": 790
1802
- },
1803
- {
1804
- "name": "<impl ToField for str<N>>::to_field",
1805
- "start": 912
1806
- }
1807
- ],
1808
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/traits/to_field.nr",
1809
- "source": "use crate::utils::field::field_from_bytes;\n\npub trait ToField {\n fn to_field(self) -> Field;\n}\n\nimpl ToField for Field {\n #[inline_always]\n fn to_field(self) -> Field {\n self\n }\n}\n\nimpl ToField for bool {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u8 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u16 {\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u32 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u64 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u128 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl<let N: u32> ToField for str<N> {\n #[inline_always]\n fn to_field(self) -> Field {\n assert(N < 32, \"String doesn't fit in a field, consider using Serialize instead\");\n field_from_bytes(self.as_bytes(), true)\n }\n}\n"
1810
- },
1811
1773
  "40": {
1812
1774
  "function_locations": [
1813
1775
  {
@@ -1906,7 +1868,45 @@
1906
1868
  "path": "std/option.nr",
1907
1869
  "source": "use crate::cmp::{Eq, Ord, Ordering};\nuse crate::default::Default;\nuse crate::hash::{Hash, Hasher};\n\n/// Represents a value of type T or its absence.\n/// Use `Option::some(value)` to construct a value or `Option::none()` to record the absence of one.\npub struct Option<T> {\n _is_some: bool,\n _value: T,\n}\n\nimpl<T> Option<T> {\n /// Constructs a None value\n pub fn none() -> Self {\n Self { _is_some: false, _value: crate::mem::zeroed() }\n }\n\n /// Constructs a Some wrapper around the given value\n pub fn some(_value: T) -> Self {\n Self { _is_some: true, _value }\n }\n\n /// True if this Option is None\n pub fn is_none(&self) -> bool {\n !self._is_some\n }\n\n /// True if this Option is Some\n pub fn is_some(&self) -> bool {\n self._is_some\n }\n\n /// Asserts `self.is_some()` and returns the wrapped value.\n pub fn unwrap(self) -> T {\n assert(self._is_some);\n self._value\n }\n\n /// Returns the inner value without asserting `self.is_some()`\n /// Note that if `self` is `None`, there is no guarantee what value will be returned,\n /// only that it will be of type `T`.\n pub fn unwrap_unchecked(self) -> T {\n self._value\n }\n\n /// Returns the wrapped value if `self.is_some()`. Otherwise, returns the given default value.\n pub fn unwrap_or(self, default: T) -> T {\n if self._is_some {\n self._value\n } else {\n default\n }\n }\n\n /// Returns the wrapped value if `self.is_some()`. Otherwise, calls the given function to return\n /// a default value.\n pub fn unwrap_or_else<Env>(self, default: fn[Env]() -> T) -> T {\n if self._is_some {\n self._value\n } else {\n default()\n }\n }\n\n /// Asserts `self.is_some()` with a provided custom message and returns the contained `Some` value\n pub fn expect<let N: u32, MessageTypes>(self, message: fmtstr<N, MessageTypes>) -> T {\n assert(self.is_some(), message);\n self._value\n }\n\n /// If self is `Some(x)`, this returns `Some(f(x))`. Otherwise, this returns `None`.\n pub fn map<U, Env>(self, f: fn[Env](T) -> U) -> Option<U> {\n if self._is_some {\n Option::some(f(self._value))\n } else {\n Option::none()\n }\n }\n\n /// If self is `Some(x)`, this returns `f(x)`. Otherwise, this returns the given default value.\n pub fn map_or<U, Env>(self, default: U, f: fn[Env](T) -> U) -> U {\n if self._is_some {\n f(self._value)\n } else {\n default\n }\n }\n\n /// If self is `Some(x)`, this returns `f(x)`. Otherwise, this returns `default()`.\n pub fn map_or_else<U, Env1, Env2>(self, default: fn[Env1]() -> U, f: fn[Env2](T) -> U) -> U {\n if self._is_some {\n f(self._value)\n } else {\n default()\n }\n }\n\n /// Returns None if self is None. Otherwise, this returns `other`.\n pub fn and(self, other: Self) -> Self {\n if self.is_none() {\n Option::none()\n } else {\n other\n }\n }\n\n /// If self is None, this returns None. Otherwise, this calls the given function\n /// with the Some value contained within self, and returns the result of that call.\n ///\n /// In some languages this function is called `flat_map` or `bind`.\n pub fn and_then<U, Env>(self, f: fn[Env](T) -> Option<U>) -> Option<U> {\n if self._is_some {\n f(self._value)\n } else {\n Option::none()\n }\n }\n\n /// If self is Some, return self. Otherwise, return `other`.\n pub fn or(self, other: Self) -> Self {\n if self._is_some {\n self\n } else {\n other\n }\n }\n\n /// If self is Some, return self. Otherwise, return `default()`.\n pub fn or_else<Env>(self, default: fn[Env]() -> Self) -> Self {\n if self._is_some {\n self\n } else {\n default()\n }\n }\n\n // If only one of the two Options is Some, return that option.\n // Otherwise, if both options are Some or both are None, None is returned.\n pub fn xor(self, other: Self) -> Self {\n if self._is_some {\n if other._is_some {\n Option::none()\n } else {\n self\n }\n } else if other._is_some {\n other\n } else {\n Option::none()\n }\n }\n\n /// Returns `Some(x)` if self is `Some(x)` and `predicate(x)` is true.\n /// Otherwise, this returns `None`\n pub fn filter<Env>(self, predicate: fn[Env](T) -> bool) -> Self {\n if self._is_some {\n if predicate(self._value) {\n self\n } else {\n Option::none()\n }\n } else {\n Option::none()\n }\n }\n\n /// Flattens an Option<Option<T>> into a Option<T>.\n /// This returns None if the outer Option is None. Otherwise, this returns the inner Option.\n pub fn flatten(option: Option<Option<T>>) -> Option<T> {\n if option._is_some {\n option._value\n } else {\n Option::none()\n }\n }\n}\n\nimpl<T> Default for Option<T> {\n fn default() -> Self {\n Option::none()\n }\n}\n\nimpl<T> Eq for Option<T>\nwhere\n T: Eq,\n{\n fn eq(self, other: Self) -> bool {\n if self._is_some == other._is_some {\n if self._is_some {\n self._value == other._value\n } else {\n true\n }\n } else {\n false\n }\n }\n}\n\nimpl<T> Hash for Option<T>\nwhere\n T: Hash,\n{\n fn hash<H>(self, state: &mut H)\n where\n H: Hasher,\n {\n self._is_some.hash(state);\n if self._is_some {\n self._value.hash(state);\n }\n }\n}\n\n// For this impl we're declaring Option::none < Option::some\nimpl<T> Ord for Option<T>\nwhere\n T: Ord,\n{\n fn cmp(self, other: Self) -> Ordering {\n if self._is_some {\n if other._is_some {\n self._value.cmp(other._value)\n } else {\n Ordering::greater()\n }\n } else if other._is_some {\n Ordering::less()\n } else {\n Ordering::equal()\n }\n }\n}\n"
1908
1870
  },
1909
- "407": {
1871
+ "401": {
1872
+ "function_locations": [
1873
+ {
1874
+ "name": "<impl ToField for Field>::to_field",
1875
+ "start": 176
1876
+ },
1877
+ {
1878
+ "name": "<impl ToField for bool>::to_field",
1879
+ "start": 276
1880
+ },
1881
+ {
1882
+ "name": "<impl ToField for u8>::to_field",
1883
+ "start": 382
1884
+ },
1885
+ {
1886
+ "name": "<impl ToField for u16>::to_field",
1887
+ "start": 468
1888
+ },
1889
+ {
1890
+ "name": "<impl ToField for u32>::to_field",
1891
+ "start": 575
1892
+ },
1893
+ {
1894
+ "name": "<impl ToField for u64>::to_field",
1895
+ "start": 682
1896
+ },
1897
+ {
1898
+ "name": "<impl ToField for u128>::to_field",
1899
+ "start": 790
1900
+ },
1901
+ {
1902
+ "name": "<impl ToField for str<N>>::to_field",
1903
+ "start": 912
1904
+ }
1905
+ ],
1906
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/traits/to_field.nr",
1907
+ "source": "use crate::utils::field::field_from_bytes;\n\npub trait ToField {\n fn to_field(self) -> Field;\n}\n\nimpl ToField for Field {\n #[inline_always]\n fn to_field(self) -> Field {\n self\n }\n}\n\nimpl ToField for bool {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u8 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u16 {\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u32 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u64 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl ToField for u128 {\n #[inline_always]\n fn to_field(self) -> Field {\n self as Field\n }\n}\nimpl<let N: u32> ToField for str<N> {\n #[inline_always]\n fn to_field(self) -> Field {\n assert(N < 32, \"String doesn't fit in a field, consider using Serialize instead\");\n field_from_bytes(self.as_bytes(), true)\n }\n}\n"
1908
+ },
1909
+ "409": {
1910
1910
  "function_locations": [
1911
1911
  {
1912
1912
  "name": "field_from_bytes",
@@ -2017,7 +2017,7 @@
2017
2017
  "start": 11828
2018
2018
  }
2019
2019
  ],
2020
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/types/src/utils/field.nr",
2020
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/types/src/utils/field.nr",
2021
2021
  "source": "pub fn field_from_bytes<let N: u32>(bytes: [u8; N], big_endian: bool) -> Field {\n assert(bytes.len() < 32, \"field_from_bytes: N must be less than 32\");\n let mut as_field = 0;\n let mut offset = 1;\n for i in 0..N {\n let mut index = i;\n if big_endian {\n index = N - i - 1;\n }\n as_field += (bytes[index] as Field) * offset;\n offset *= 256;\n }\n\n as_field\n}\n\n// Convert a 32 byte array to a field element by truncating the final byte\npub fn field_from_bytes_32_trunc(bytes32: [u8; 32]) -> Field {\n // Convert it to a field element\n let mut v = 1;\n let mut high = 0 as Field;\n let mut low = 0 as Field;\n\n for i in 0..15 {\n // covers bytes 16..30 (31 is truncated and ignored)\n low = low + (bytes32[15 + 15 - i] as Field) * v;\n v = v * 256;\n // covers bytes 0..14\n high = high + (bytes32[14 - i] as Field) * v;\n }\n // covers byte 15\n low = low + (bytes32[15] as Field) * v;\n\n low + high * v\n}\n\npub fn min(f1: Field, f2: Field) -> Field {\n if f1.lt(f2) {\n f1\n } else {\n f2\n }\n}\n\n// TODO: write doc-comments and tests for these magic constants.\n\nglobal KNOWN_NON_RESIDUE: Field = 5; // This is a non-residue in Noir's native Field.\nglobal C1: u32 = 28;\nglobal C3: Field = 40770029410420498293352137776570907027550720424234931066070132305055;\nglobal C5: Field = 19103219067921713944291392827692070036145651957329286315305642004821462161904;\n\n// @dev: only use this for _huge_ exponents y, when writing a constrained function.\n// If you're only exponentiating by a small value, first consider writing-out the multiplications by hand.\n// Only after you've measured the gates of that approach, consider using the native Field::pow_32 function.\n// Only if your exponent is larger than 32 bits, resort to using this function.\npub fn pow(x: Field, y: Field) -> Field {\n let mut r = 1 as Field;\n let b: [bool; 254] = y.to_le_bits();\n\n for i in 0..254 {\n r *= r;\n r *= (b[254 - 1 - i] as Field) * x + (1 - b[254 - 1 - i] as Field);\n }\n\n r\n}\n\n/// Returns Option::some(sqrt) if there is a square root, and Option::none() if there isn't.\npub fn sqrt(x: Field) -> Option<Field> {\n // Safety: if the hint returns the square root of x, then we simply square it\n // check the result equals x. If x is not square, we return a value that\n // enables us to prove that fact (see the `else` clause below).\n let (is_sq, maybe_sqrt) = unsafe { __sqrt(x) };\n\n if is_sq {\n let sqrt = maybe_sqrt;\n validate_sqrt_hint(x, sqrt);\n Option::some(sqrt)\n } else {\n let not_sqrt_hint = maybe_sqrt;\n validate_not_sqrt_hint(x, not_sqrt_hint);\n Option::none()\n }\n}\n\n// Boolean indicating whether Field element is a square, i.e. whether there exists a y in Field s.t. x = y*y.\nunconstrained fn is_square(x: Field) -> bool {\n let v = pow(x, -1 / 2);\n v * (v - 1) == 0\n}\n\n// Tonelli-Shanks algorithm for computing the square root of a Field element.\n// Requires C1 = max{c: 2^c divides (p-1)}, where p is the order of Field\n// as well as C3 = (C2 - 1)/2, where C2 = (p-1)/(2^c1),\n// and C5 = ZETA^C2, where ZETA is a non-square element of Field.\n// These are pre-computed above as globals.\nunconstrained fn tonelli_shanks_sqrt(x: Field) -> Field {\n let mut z = pow(x, C3);\n let mut t = z * z * x;\n z *= x;\n let mut b = t;\n let mut c = C5;\n\n for i in 0..(C1 - 1) {\n for _j in 1..(C1 - i - 1) {\n b *= b;\n }\n\n z *= if b == 1 { 1 } else { c };\n\n c *= c;\n\n t *= if b == 1 { 1 } else { c };\n\n b = t;\n }\n\n z\n}\n\n// NB: this doesn't return an option, because in the case of there _not_ being a square root, we still want to return a field element that allows us to then assert in the _constrained_ sqrt function that there is no sqrt.\nunconstrained fn __sqrt(x: Field) -> (bool, Field) {\n let is_sq = is_square(x);\n if is_sq {\n let sqrt = tonelli_shanks_sqrt(x);\n (true, sqrt)\n } else {\n // Demonstrate that x is not a square (a.k.a. a \"quadratic non-residue\").\n // Facts:\n // The Legendre symbol (\"LS\") of x, is x^((p-1)/2) (mod p).\n // - If x is a square, LS(x) = 1\n // - If x is not a square, LS(x) = -1\n // - If x = 0, LS(x) = 0.\n //\n // Hence:\n // sq * sq = sq // 1 * 1 = 1\n // non-sq * non-sq = sq // -1 * -1 = 1\n // sq * non-sq = non-sq // -1 * 1 = -1\n //\n // See: https://en.wikipedia.org/wiki/Legendre_symbol\n let demo_x_not_square = x * KNOWN_NON_RESIDUE;\n let not_sqrt = tonelli_shanks_sqrt(demo_x_not_square);\n (false, not_sqrt)\n }\n}\n\nfn validate_sqrt_hint(x: Field, hint: Field) {\n assert(hint * hint == x, f\"The claimed_sqrt {hint} is not the sqrt of x {x}\");\n}\n\nfn validate_not_sqrt_hint(x: Field, hint: Field) {\n // We need this assertion, because x = 0 would pass the other assertions in this\n // function, and we don't want people to be able to prove that 0 is not square!\n assert(x != 0, \"0 has a square root; you cannot claim it is not square\");\n // Demonstrate that x is not a square (a.k.a. a \"quadratic non-residue\").\n //\n // Facts:\n // The Legendre symbol (\"LS\") of x, is x^((p-1)/2) (mod p).\n // - If x is a square, LS(x) = 1\n // - If x is not a square, LS(x) = -1\n // - If x = 0, LS(x) = 0.\n //\n // Hence:\n // 1. sq * sq = sq // 1 * 1 = 1\n // 2. non-sq * non-sq = sq // -1 * -1 = 1\n // 3. sq * non-sq = non-sq // -1 * 1 = -1\n //\n // See: https://en.wikipedia.org/wiki/Legendre_symbol\n //\n // We want to demonstrate that this below multiplication falls under bullet-point (2):\n let demo_x_not_square = x * KNOWN_NON_RESIDUE;\n // I.e. we want to demonstrate that `demo_x_not_square` has Legendre symbol 1\n // (i.e. that it is a square), so we prove that it is square below.\n // Why do we want to prove that it has LS 1?\n // Well, since it was computed with a known-non-residue, its squareness implies we're\n // in case 2 (something multiplied by a known-non-residue yielding a result which\n // has a LS of 1), which implies that x must be a non-square. The unconstrained\n // function gave us the sqrt of demo_x_not_square, so all we need to do is\n // assert its squareness:\n assert(\n hint * hint == demo_x_not_square,\n f\"The hint {hint} does not demonstrate that {x} is not a square\",\n );\n}\n\n#[test]\nunconstrained fn bytes_field_test() {\n // Tests correctness of field_from_bytes_32_trunc against existing methods\n // Bytes representing 0x543e0a6642ffeb8039296861765a53407bba62bd1c97ca43374de950bbe0a7\n let inputs = [\n 84, 62, 10, 102, 66, 255, 235, 128, 57, 41, 104, 97, 118, 90, 83, 64, 123, 186, 98, 189, 28,\n 151, 202, 67, 55, 77, 233, 80, 187, 224, 167,\n ];\n let field = field_from_bytes(inputs, true);\n let return_bytes: [u8; 31] = field.to_be_bytes();\n assert_eq(inputs, return_bytes);\n // 32 bytes - we remove the final byte, and check it matches the field\n let inputs2 = [\n 84, 62, 10, 102, 66, 255, 235, 128, 57, 41, 104, 97, 118, 90, 83, 64, 123, 186, 98, 189, 28,\n 151, 202, 67, 55, 77, 233, 80, 187, 224, 167, 158,\n ];\n let field2 = field_from_bytes_32_trunc(inputs2);\n let return_bytes2: [u8; 31] = field2.to_be_bytes();\n\n assert_eq(return_bytes2, return_bytes);\n assert_eq(field2, field);\n}\n\n#[test]\nunconstrained fn max_field_test() {\n // Tests the hardcoded value in constants.nr vs underlying modulus\n // NB: We can't use 0-1 in constants.nr as it will be transpiled incorrectly to ts and sol constants files\n let max_value = crate::constants::MAX_FIELD_VALUE;\n assert_eq(max_value, 0 - 1);\n // modulus == 0 is tested elsewhere, so below is more of a sanity check\n let max_bytes: [u8; 32] = max_value.to_be_bytes();\n let mod_bytes = std::field::modulus_be_bytes();\n for i in 0..31 {\n assert_eq(max_bytes[i], mod_bytes[i]);\n }\n assert_eq(max_bytes[31], mod_bytes[31] - 1);\n}\n\n#[test]\nunconstrained fn sqrt_valid_test() {\n let x = 16; // examples: 16, 9, 25, 81\n let result = sqrt(x);\n assert(result.is_some());\n assert_eq(result.unwrap() * result.unwrap(), x);\n}\n\n#[test]\nunconstrained fn sqrt_invalid_test() {\n let x = KNOWN_NON_RESIDUE; // has no square root in the field\n let result = sqrt(x);\n assert(result.is_none());\n}\n\n#[test]\nunconstrained fn sqrt_zero_test() {\n let result = sqrt(0);\n assert(result.is_some());\n assert_eq(result.unwrap(), 0);\n}\n\n#[test]\nunconstrained fn sqrt_one_test() {\n let result = sqrt(1);\n assert(result.is_some());\n assert_eq(result.unwrap() * result.unwrap(), 1);\n}\n\n#[test]\nunconstrained fn field_from_bytes_empty_test() {\n let empty: [u8; 0] = [];\n let result = field_from_bytes(empty, true);\n assert_eq(result, 0);\n\n let result_le = field_from_bytes(empty, false);\n assert_eq(result_le, 0);\n}\n\n#[test]\nunconstrained fn field_from_bytes_little_endian_test() {\n // Test little-endian conversion: [0x01, 0x02] should be 0x0201 = 513\n let bytes = [0x01, 0x02];\n let result_le = field_from_bytes(bytes, false);\n assert_eq(result_le, 0x0201);\n\n // Compare with big-endian: [0x01, 0x02] should be 0x0102 = 258\n let result_be = field_from_bytes(bytes, true);\n assert_eq(result_be, 0x0102);\n}\n\n#[test]\nunconstrained fn pow_test() {\n assert_eq(pow(2, 0), 1);\n assert_eq(pow(2, 1), 2);\n assert_eq(pow(2, 10), 1024);\n assert_eq(pow(3, 5), 243);\n assert_eq(pow(0, 5), 0);\n assert_eq(pow(1, 100), 1);\n}\n\n#[test]\nunconstrained fn min_test() {\n assert_eq(min(5, 10), 5);\n assert_eq(min(10, 5), 5);\n assert_eq(min(7, 7), 7);\n assert_eq(min(0, 1), 0);\n}\n\n#[test]\nunconstrained fn sqrt_has_two_roots_test() {\n // Every square has two roots: r and -r (i.e., p - r)\n // sqrt(16) can return 4 or -4\n let x = 16;\n let result = sqrt(x).unwrap();\n assert(result * result == x);\n // The other root is -result\n let other_root = 0 - result;\n assert(other_root * other_root == x);\n // Verify they are different (unless x = 0)\n assert(result != other_root);\n\n // Same for 9: roots are 3 and -3\n let y = 9;\n let result_y = sqrt(y).unwrap();\n assert(result_y * result_y == y);\n let other_root_y = 0 - result_y;\n assert(other_root_y * other_root_y == y);\n assert(result_y != other_root_y);\n}\n\n#[test]\nunconstrained fn sqrt_negative_one_test() {\n let x = 0 - 1;\n let result = sqrt(x);\n assert(result.unwrap() == 0x30644e72e131a029048b6e193fd841045cea24f6fd736bec231204708f703636);\n}\n\n#[test]\nunconstrained fn validate_sqrt_hint_valid_test() {\n // 4 is a valid sqrt of 16\n validate_sqrt_hint(16, 4);\n // -4 is also a valid sqrt of 16\n validate_sqrt_hint(16, 0 - 4);\n // 0 is a valid sqrt of 0\n validate_sqrt_hint(0, 0);\n // 1 is a valid sqrt of 1\n validate_sqrt_hint(1, 1);\n // -1 is also a valid sqrt of 1\n validate_sqrt_hint(1, 0 - 1);\n}\n\n#[test(should_fail_with = \"is not the sqrt of x\")]\nunconstrained fn validate_sqrt_hint_invalid_test() {\n // 5 is not a valid sqrt of 16\n validate_sqrt_hint(16, 5);\n}\n\n#[test]\nunconstrained fn validate_not_sqrt_hint_valid_test() {\n // 5 (KNOWN_NON_RESIDUE) is not a square.\n let x = KNOWN_NON_RESIDUE;\n let hint = tonelli_shanks_sqrt(x * KNOWN_NON_RESIDUE);\n validate_not_sqrt_hint(x, hint);\n}\n\n#[test(should_fail_with = \"0 has a square root\")]\nunconstrained fn validate_not_sqrt_hint_zero_test() {\n // 0 has a square root, so we cannot claim it is not square\n validate_not_sqrt_hint(0, 0);\n}\n\n#[test(should_fail_with = \"does not demonstrate that\")]\nunconstrained fn validate_not_sqrt_hint_wrong_hint_test() {\n // Provide a wrong hint for a non-square\n let x = KNOWN_NON_RESIDUE;\n validate_not_sqrt_hint(x, 123);\n}\n"
2022
2022
  },
2023
2023
  "41": {
@@ -2030,7 +2030,7 @@
2030
2030
  "path": "std/panic.nr",
2031
2031
  "source": "/// Halt the program at runtime with the given error message.\n///\n/// The provided error message must be either a `str` or a `fmtstr`.\npub fn panic<T, U>(message: T) -> U\nwhere\n T: StringLike,\n{\n assert(false, message);\n crate::mem::zeroed()\n}\n\ntrait StringLike {}\n\nimpl<let N: u32> StringLike for str<N> {}\nimpl<let N: u32, T> StringLike for fmtstr<N, T> {}\n"
2032
2032
  },
2033
- "413": {
2033
+ "415": {
2034
2034
  "function_locations": [
2035
2035
  {
2036
2036
  "name": "Reader<N>::new",
@@ -2077,10 +2077,10 @@
2077
2077
  "start": 1426
2078
2078
  }
2079
2079
  ],
2080
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/serde/src/reader.nr",
2080
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/serde/src/reader.nr",
2081
2081
  "source": "pub struct Reader<let N: u32> {\n data: [Field; N],\n offset: u32,\n}\n\nimpl<let N: u32> Reader<N> {\n pub fn new(data: [Field; N]) -> Self {\n Self { data, offset: 0 }\n }\n\n pub fn read(&mut self) -> Field {\n let result = self.data[self.offset];\n self.offset += 1;\n result\n }\n\n pub fn read_u32(&mut self) -> u32 {\n self.read() as u32\n }\n\n pub fn read_u64(&mut self) -> u64 {\n self.read() as u64\n }\n\n pub fn read_bool(&mut self) -> bool {\n self.read() != 0\n }\n\n pub fn read_array<let K: u32>(&mut self) -> [Field; K] {\n let mut result = [0; K];\n for i in 0..K {\n result[i] = self.data[self.offset + i];\n }\n self.offset += K;\n result\n }\n\n pub fn read_struct<T, let K: u32>(&mut self, deserialise: fn([Field; K]) -> T) -> T {\n let result = deserialise(self.read_array());\n result\n }\n\n pub fn read_struct_array<T, let K: u32, let C: u32>(\n &mut self,\n deserialise: fn([Field; K]) -> T,\n mut result: [T; C],\n ) -> [T; C] {\n for i in 0..C {\n result[i] = self.read_struct(deserialise);\n }\n result\n }\n\n pub fn peek_offset(&mut self, offset: u32) -> Field {\n self.data[self.offset + offset]\n }\n\n pub fn advance_offset(&mut self, offset: u32) {\n self.offset += offset;\n }\n\n pub fn finish(self) {\n assert_eq(self.offset, self.data.len(), \"Reader did not read all data\");\n }\n}\n"
2082
2082
  },
2083
- "414": {
2083
+ "416": {
2084
2084
  "function_locations": [
2085
2085
  {
2086
2086
  "name": "derive_serialize",
@@ -2103,10 +2103,10 @@
2103
2103
  "start": 12469
2104
2104
  }
2105
2105
  ],
2106
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/serde/src/serialization.nr",
2106
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/serde/src/serialization.nr",
2107
2107
  "source": "use crate::{reader::Reader, writer::Writer};\n\n/// Trait for serializing Noir types into arrays of Fields.\n///\n/// An implementation of the Serialize trait has to follow Noir's intrinsic serialization (each member of a struct\n/// converted directly into one or more Fields without any packing or compression). This trait (and Deserialize) are\n/// typically used to communicate between Noir and TypeScript (via oracles and function arguments).\n///\n/// # On Following Noir's Intrinsic Serialization\n/// When calling a Noir function from TypeScript (TS), first the function arguments are serialized into an array\n/// of fields. This array is then included in the initial witness. Noir's intrinsic serialization is then used\n/// to deserialize the arguments from the witness. When the same Noir function is called from Noir this Serialize trait\n/// is used instead of the serialization in TS. For this reason we need to have a match between TS serialization,\n/// Noir's intrinsic serialization and the implementation of this trait. If there is a mismatch, the function calls\n/// fail with an arguments hash mismatch error message.\n///\n/// # Associated Constants\n/// * `N` - The length of the output Field array, known at compile time\n///\n/// # Example\n/// ```\n/// impl<let N: u32> Serialize for str<N> {\n/// let N: u32 = N;\n///\n/// fn serialize(self) -> [Field; Self::N] {\n/// let mut writer: Writer<Self::N> = Writer::new();\n/// self.stream_serialize(&mut writer);\n/// writer.finish()\n/// }\n///\n/// fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n/// let bytes = self.as_bytes();\n/// for i in 0..bytes.len() {\n/// writer.write(bytes[i] as Field);\n/// }\n/// }\n/// }\n/// ```\n#[derive_via(derive_serialize)]\npub trait Serialize {\n let N: u32;\n\n fn serialize(self) -> [Field; Self::N];\n\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>);\n}\n\n/// Generates a `Serialize` trait implementation for a struct type.\n///\n/// # Parameters\n/// - `s`: The struct type definition to generate the implementation for\n///\n/// # Returns\n/// A quoted code block containing the trait implementation\n///\n/// # Example\n/// For a struct defined as:\n/// ```\n/// struct Log<N> {\n/// fields: [Field; N],\n/// length: u32\n/// }\n/// ```\n///\n/// This function generates code equivalent to:\n/// ```\n/// impl<let N: u32> Serialize for Log<N> {\n/// let N: u32 = <[Field; N] as Serialize>::N + <u32 as Serialize>::N;\n///\n/// fn serialize(self) -> [Field; Self::N] {\n/// let mut writer: Writer<Self::N> = Writer::new();\n/// self.stream_serialize(&mut writer);\n/// writer.finish()\n/// }\n///\n/// #[inline_always]\n/// fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n/// Serialize::stream_serialize(self.fields, writer);\n/// Serialize::stream_serialize(self.length, writer);\n/// }\n/// }\n/// ```\npub comptime fn derive_serialize(s: TypeDefinition) -> Quoted {\n let typ = s.as_type();\n let nested_struct = typ.as_data_type().unwrap();\n\n // We care only about the name and type so we drop the last item of the tuple\n let params = nested_struct.0.fields(nested_struct.1).map(|(name, typ, _)| (name, typ));\n\n // Generates the generic parameter declarations (to be placed after the `impl` keyword) and the `where` clause\n // for the `Serialize` trait.\n let generics_declarations = get_generics_declarations(s);\n let where_serialize_clause = get_where_trait_clause(s, quote {Serialize});\n\n let params_len_quote = get_params_len_quote(params);\n\n let function_body = params\n .map(|(name, _typ): (Quoted, Type)| {\n quote {\n $crate::serialization::Serialize::stream_serialize(self.$name, writer);\n }\n })\n .join(quote {});\n\n quote {\n impl$generics_declarations $crate::serialization::Serialize for $typ\n $where_serialize_clause\n {\n let N: u32 = $params_len_quote;\n\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: $crate::writer::Writer<Self::N> = $crate::writer::Writer::new();\n $crate::serialization::Serialize::stream_serialize(self, &mut writer);\n writer.finish()\n }\n\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut $crate::writer::Writer<K>) {\n $function_body\n }\n }\n }\n}\n\n/// Trait for deserializing Noir types from arrays of Fields.\n///\n/// An implementation of the Deserialize trait has to follow Noir's intrinsic serialization (each member of a struct\n/// converted directly into one or more Fields without any packing or compression). This trait is typically used when\n/// deserializing return values from function calls in Noir. Since the same function could be called from TypeScript\n/// (TS), in which case the TS deserialization would get used, we need to have a match between the 2.\n///\n/// # Associated Constants\n/// * `N` - The length of the input Field array, known at compile time\n///\n/// # Example\n/// ```\n/// impl<let M: u32> Deserialize for str<M> {\n/// let N: u32 = M;\n///\n/// fn deserialize(fields: [Field; Self::N]) -> Self {\n/// let mut reader = Reader::new(fields);\n/// let result = Self::stream_deserialize(&mut reader);\n/// reader.finish();\n/// result\n/// }\n///\n/// fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n/// let mut bytes = [0 as u8; M];\n/// for i in 0..M {\n/// bytes[i] = reader.read() as u8;\n/// }\n/// str::<M>::from(bytes)\n/// }\n/// }\n/// ```\n#[derive_via(derive_deserialize)]\npub trait Deserialize {\n let N: u32;\n\n fn deserialize(fields: [Field; Self::N]) -> Self;\n\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self;\n}\n\n/// Generates a `Deserialize` trait implementation for a given struct `s`.\n///\n/// # Arguments\n/// * `s` - The struct type definition to generate the implementation for\n///\n/// # Returns\n/// A `Quoted` block containing the generated trait implementation\n///\n/// # Requirements\n/// Each struct member type must implement the `Deserialize` trait (it gets used in the generated code).\n///\n/// # Example\n/// For a struct like:\n/// ```\n/// struct MyStruct {\n/// x: AztecAddress,\n/// y: Field,\n/// }\n/// ```\n///\n/// This generates:\n/// ```\n/// impl Deserialize for MyStruct {\n/// let N: u32 = <AztecAddress as Deserialize>::N + <Field as Deserialize>::N;\n///\n/// fn deserialize(fields: [Field; Self::N]) -> Self {\n/// let mut reader = Reader::new(fields);\n/// let result = Self::stream_deserialize(&mut reader);\n/// reader.finish();\n/// result\n/// }\n///\n/// #[inline_always]\n/// fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n/// let x = <AztecAddress as Deserialize>::stream_deserialize(reader);\n/// let y = <Field as Deserialize>::stream_deserialize(reader);\n/// Self { x, y }\n/// }\n/// }\n/// ```\npub comptime fn derive_deserialize(s: TypeDefinition) -> Quoted {\n let typ = s.as_type();\n let nested_struct = typ.as_data_type().unwrap();\n let params = nested_struct.0.fields(nested_struct.1);\n\n // Generates the generic parameter declarations (to be placed after the `impl` keyword) and the `where` clause\n // for the `Deserialize` trait.\n let generics_declarations = get_generics_declarations(s);\n let where_deserialize_clause = get_where_trait_clause(s, quote {Deserialize});\n\n // The following will give us:\n // <type_of_struct_member_1 as Deserialize>::N + <type_of_struct_member_2 as Deserialize>::N + ...\n // (or 0 if the struct has no members)\n let right_hand_side_of_definition_of_n = if params.len() > 0 {\n params\n .map(|(_, param_type, _): (Quoted, Type, Quoted)| {\n quote {\n <$param_type as $crate::serialization::Deserialize>::N\n }\n })\n .join(quote {+})\n } else {\n quote {0}\n };\n\n // For structs containing a single member, we can enhance performance by directly deserializing the input array,\n // bypassing the need for loop-based array construction. While this optimization yields significant benefits in\n // Brillig where the loops are expected to not be optimized, it is not relevant in ACIR where the loops are\n // expected to be optimized away.\n let function_body = if params.len() > 1 {\n // This generates deserialization code for each struct member and concatenates them together.\n let deserialization_of_struct_members = params\n .map(|(param_name, param_type, _): (Quoted, Type, Quoted)| {\n quote {\n let $param_name = <$param_type as Deserialize>::stream_deserialize(reader);\n }\n })\n .join(quote {});\n\n // We join the struct member names with a comma to be used in the `Self { ... }` syntax\n // This will give us e.g. `a, b, c` for a struct with three fields named `a`, `b`, and `c`.\n let struct_members = params\n .map(|(param_name, _, _): (Quoted, Type, Quoted)| quote { $param_name })\n .join(quote {,});\n\n quote {\n $deserialization_of_struct_members\n\n Self { $struct_members }\n }\n } else if params.len() == 1 {\n let param_name = params[0].0;\n quote {\n Self { $param_name: $crate::serialization::Deserialize::stream_deserialize(reader) }\n }\n } else {\n quote {\n Self {}\n }\n };\n\n quote {\n impl$generics_declarations $crate::serialization::Deserialize for $typ\n $where_deserialize_clause\n {\n let N: u32 = $right_hand_side_of_definition_of_n;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = $crate::reader::Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut $crate::reader::Reader<K>) -> Self {\n $function_body\n }\n }\n }\n}\n\n/// Generates a quoted expression that computes the total serialized length of function parameters.\n///\n/// # Parameters\n/// * `params` - An array of tuples where each tuple contains a quoted parameter name and its Type. The type needs\n/// to implement the Serialize trait.\n///\n/// # Returns\n/// A quoted expression that evaluates to:\n/// * `0` if there are no parameters\n/// * `(<type1 as Serialize>::N + <type2 as Serialize>::N + ...)` for one or more parameters\ncomptime fn get_params_len_quote(params: [(Quoted, Type)]) -> Quoted {\n if params.len() == 0 {\n quote { 0 }\n } else {\n let params_quote_without_parentheses = params\n .map(|(_, param_type): (Quoted, Type)| {\n quote {\n <$param_type as $crate::serialization::Serialize>::N\n }\n })\n .join(quote {+});\n quote { ($params_quote_without_parentheses) }\n }\n}\n\ncomptime fn get_generics_declarations(s: TypeDefinition) -> Quoted {\n let generics = s.generics();\n\n if generics.len() > 0 {\n let generics_declarations_items = generics\n .map(|(name, maybe_integer_typ)| {\n // The second item in the generics tuple is an Option of an integer type that is Some only if\n // the generic is numeric.\n if maybe_integer_typ.is_some() {\n // The generic is numeric, so we return a quote defined as e.g. \"let N: u32\"\n let integer_type = maybe_integer_typ.unwrap();\n quote {let $name: $integer_type}\n } else {\n // The generic is not numeric, so we return a quote containing the name of the generic (e.g. \"T\")\n quote {$name}\n }\n })\n .join(quote {,});\n quote {<$generics_declarations_items>}\n } else {\n // The struct doesn't have any generics defined, so we just return an empty quote.\n quote {}\n }\n}\n\ncomptime fn get_where_trait_clause(s: TypeDefinition, trait_name: Quoted) -> Quoted {\n let generics = s.generics();\n\n // The second item in the generics tuple is an Option of an integer type that is Some only if the generic is\n // numeric.\n let non_numeric_generics =\n generics.filter(|(_, maybe_integer_typ)| maybe_integer_typ.is_none());\n\n if non_numeric_generics.len() > 0 {\n let non_numeric_generics_declarations =\n non_numeric_generics.map(|(name, _)| quote {$name: $trait_name}).join(quote {,});\n quote {where $non_numeric_generics_declarations}\n } else {\n // There are no non-numeric generics, so we return an empty quote.\n quote {}\n }\n}\n"
2108
2108
  },
2109
- "416": {
2109
+ "418": {
2110
2110
  "function_locations": [
2111
2111
  {
2112
2112
  "name": "<impl Serialize for bool>::serialize",
@@ -2417,10 +2417,10 @@
2417
2417
  "start": 21226
2418
2418
  }
2419
2419
  ],
2420
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/serde/src/type_impls.nr",
2420
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/serde/src/type_impls.nr",
2421
2421
  "source": "use crate::{reader::Reader, serialization::{Deserialize, Serialize}, writer::Writer};\nuse std::embedded_curve_ops::EmbeddedCurvePoint;\nuse std::embedded_curve_ops::EmbeddedCurveScalar;\n\nglobal BOOL_SERIALIZED_LEN: u32 = 1;\nglobal U8_SERIALIZED_LEN: u32 = 1;\nglobal U16_SERIALIZED_LEN: u32 = 1;\nglobal U32_SERIALIZED_LEN: u32 = 1;\nglobal U64_SERIALIZED_LEN: u32 = 1;\nglobal U128_SERIALIZED_LEN: u32 = 1;\nglobal FIELD_SERIALIZED_LEN: u32 = 1;\nglobal I8_SERIALIZED_LEN: u32 = 1;\nglobal I16_SERIALIZED_LEN: u32 = 1;\nglobal I32_SERIALIZED_LEN: u32 = 1;\nglobal I64_SERIALIZED_LEN: u32 = 1;\n\nimpl Serialize for bool {\n let N: u32 = BOOL_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for bool {\n let N: u32 = BOOL_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> bool {\n reader.read() != 0\n }\n}\n\nimpl Serialize for u8 {\n let N: u32 = U8_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for u8 {\n let N: u32 = U8_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u8\n }\n}\n\nimpl Serialize for u16 {\n let N: u32 = U16_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for u16 {\n let N: u32 = U16_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u16\n }\n}\n\nimpl Serialize for u32 {\n let N: u32 = U32_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for u32 {\n let N: u32 = U32_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u32\n }\n}\n\nimpl Serialize for u64 {\n let N: u32 = U64_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for u64 {\n let N: u32 = U64_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u64\n }\n}\n\nimpl Serialize for u128 {\n let N: u32 = U128_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as Field);\n }\n}\n\nimpl Deserialize for u128 {\n let N: u32 = U128_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u128\n }\n}\n\nimpl Serialize for Field {\n let N: u32 = FIELD_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self);\n }\n}\n\nimpl Deserialize for Field {\n let N: u32 = FIELD_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read()\n }\n}\n\nimpl Serialize for i8 {\n let N: u32 = I8_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as u8 as Field);\n }\n}\n\nimpl Deserialize for i8 {\n let N: u32 = I8_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u8 as i8\n }\n}\n\nimpl Serialize for i16 {\n let N: u32 = I16_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as u16 as Field);\n }\n}\n\nimpl Deserialize for i16 {\n let N: u32 = I16_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u16 as i16\n }\n}\n\nimpl Serialize for i32 {\n let N: u32 = I32_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as u32 as Field);\n }\n}\n\nimpl Deserialize for i32 {\n let N: u32 = I32_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u32 as i32\n }\n}\n\nimpl Serialize for i64 {\n let N: u32 = I64_SERIALIZED_LEN;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self as u64 as Field);\n }\n}\n\nimpl Deserialize for i64 {\n let N: u32 = I64_SERIALIZED_LEN;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n reader.read() as u64 as i64\n }\n}\n\nimpl<T, let M: u32> Serialize for [T; M]\nwhere\n T: Serialize,\n{\n let N: u32 = <T as Serialize>::N * M;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n for i in 0..M {\n self[i].stream_serialize(writer);\n }\n }\n}\n\nimpl<T, let M: u32> Deserialize for [T; M]\nwhere\n T: Deserialize,\n{\n let N: u32 = <T as Deserialize>::N * M;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n let mut result: [T; M] = std::mem::zeroed();\n for i in 0..M {\n result[i] = T::stream_deserialize(reader);\n }\n result\n }\n}\n\nimpl<T> Serialize for Option<T>\nwhere\n T: Serialize,\n{\n let N: u32 = <T as Serialize>::N + 1;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write_bool(self.is_some());\n if self.is_some() {\n self.unwrap_unchecked().stream_serialize(writer);\n } else {\n writer.advance_offset(<T as Serialize>::N);\n }\n }\n}\n\nimpl<T> Deserialize for Option<T>\nwhere\n T: Deserialize,\n{\n let N: u32 = <T as Deserialize>::N + 1;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n if reader.read_bool() {\n Option::some(<T as Deserialize>::stream_deserialize(reader))\n } else {\n reader.advance_offset(<T as Deserialize>::N);\n Option::none()\n }\n }\n}\n\nglobal SCALAR_SIZE: u32 = 2;\n\nimpl Serialize for EmbeddedCurveScalar {\n\n let N: u32 = SCALAR_SIZE;\n\n fn serialize(self) -> [Field; SCALAR_SIZE] {\n [self.lo, self.hi]\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self.lo);\n writer.write(self.hi);\n }\n}\n\nimpl Deserialize for EmbeddedCurveScalar {\n let N: u32 = SCALAR_SIZE;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n Self { lo: fields[0], hi: fields[1] }\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n Self { lo: reader.read(), hi: reader.read() }\n }\n}\n\nglobal POINT_SIZE: u32 = 2;\n\nimpl Serialize for EmbeddedCurvePoint {\n let N: u32 = POINT_SIZE;\n\n fn serialize(self) -> [Field; Self::N] {\n [self.x, self.y]\n }\n\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self.x);\n writer.write(self.y);\n }\n}\n\nimpl Deserialize for EmbeddedCurvePoint {\n let N: u32 = POINT_SIZE;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n Self { x: fields[0], y: fields[1] }\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n Self { x: reader.read(), y: reader.read() }\n }\n}\n\nimpl<let M: u32> Deserialize for str<M> {\n let N: u32 = M;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n let u8_arr = <[u8; Self::N] as Deserialize>::stream_deserialize(reader);\n str::<Self::N>::from(u8_arr)\n }\n}\n\nimpl<let M: u32> Serialize for str<M> {\n let N: u32 = M;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n self.as_bytes().stream_serialize(writer);\n }\n}\n\n// Note: Not deriving this because it's not supported to call derive_serialize on a \"remote\" struct (and it will never\n// be supported).\nimpl<T, let M: u32> Deserialize for BoundedVec<T, M>\nwhere\n T: Deserialize,\n{\n let N: u32 = <T as Deserialize>::N * M + 1;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n let mut new_bounded_vec: BoundedVec<T, M> = BoundedVec::new();\n let payload_len = Self::N - 1;\n\n // Length is stored in the last field as we need to match intrinsic Noir serialization and the `len` struct\n // field is after `storage` struct field (see `bounded_vec.nr` in noir-stdlib)\n let len = reader.peek_offset(payload_len) as u32;\n\n for i in 0..M {\n if i < len {\n new_bounded_vec.push(<T as Deserialize>::stream_deserialize(reader));\n }\n }\n\n // +1 for the length of the BoundedVec\n reader.advance_offset((M - len) * <T as Deserialize>::N + 1);\n\n new_bounded_vec\n }\n}\n\n// This may cause issues if used as program input, because noir disallows empty arrays for program input.\n// I think this is okay because I don't foresee a unit type being used as input. But leaving this comment as a hint\n// if someone does run into this in the future.\nimpl Deserialize for () {\n let N: u32 = 0;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(_reader: &mut Reader<K>) -> Self {\n ()\n }\n}\n\n// Note: Not deriving this because it's not supported to call derive_serialize on a \"remote\" struct (and it will never\n// be supported).\nimpl<T, let M: u32> Serialize for BoundedVec<T, M>\nwhere\n T: Serialize,\n{\n let N: u32 = <T as Serialize>::N * M + 1; // +1 for the length of the BoundedVec\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: Writer<Self::N> = Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n self.storage().stream_serialize(writer);\n // Length is stored in the last field as we need to match intrinsic Noir serialization and the `len` struct\n // field is after `storage` struct field (see `bounded_vec.nr` in noir-stdlib)\n writer.write_u32(self.len() as u32);\n }\n}\n\n// Create a slice of the given length with each element made from `f(i)` where `i` is the current index\ncomptime fn make_slice<Env, T>(length: u32, f: fn[Env](u32) -> T) -> [T] {\n let mut slice = @[];\n for i in 0..length {\n slice = slice.push_back(f(i));\n }\n slice\n}\n\n// Implements Serialize and Deserialize for an arbitrary tuple type\ncomptime fn impl_serialize_for_tuple(_m: Module, length: u32) -> Quoted {\n // `T0`, `T1`, `T2`\n let type_names = make_slice(length, |i| f\"T{i}\".quoted_contents());\n\n // `result0`, `result1`, `result2`\n let result_names = make_slice(length, |i| f\"result{i}\".quoted_contents());\n\n // `T0, T1, T2`\n let field_generics = type_names.join(quote [,]);\n\n // `<T0 as Serialize>::N + <T1 as Serialize>::N + <T2 as Serialize>::N`\n let full_size_serialize = type_names\n .map(|type_name| quote {\n <$type_name as Serialize>::N\n })\n .join(quote [+]);\n\n // `<T0 as Deserialize>::N + <T1 as Deserialize>::N + <T2 as Deserialize>::N`\n let full_size_deserialize = type_names\n .map(|type_name| quote {\n <$type_name as Deserialize>::N\n })\n .join(quote [+]);\n\n // `T0: Serialize, T1: Serialize, T2: Serialize,`\n let serialize_constraints = type_names\n .map(|field_name| quote {\n $field_name: Serialize,\n })\n .join(quote []);\n\n // `T0: Deserialize, T1: Deserialize, T2: Deserialize,`\n let deserialize_constraints = type_names\n .map(|field_name| quote {\n $field_name: Deserialize,\n })\n .join(quote []);\n\n // Statements to serialize each field\n let serialized_fields = type_names\n .mapi(|i, _type_name| quote {\n $crate::serialization::Serialize::stream_serialize(self.$i, writer);\n })\n .join(quote []);\n\n // Statements to deserialize each field\n let deserialized_fields = type_names\n .mapi(|i, type_name| {\n let result_name = result_names[i];\n quote {\n let $result_name = <$type_name as $crate::serialization::Deserialize>::stream_deserialize(reader);\n }\n })\n .join(quote []);\n let deserialize_results = result_names.join(quote [,]);\n\n quote {\n impl<$field_generics> Serialize for ($field_generics) where $serialize_constraints {\n let N: u32 = $full_size_serialize;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: $crate::writer::Writer<Self::N> = $crate::writer::Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut $crate::writer::Writer<K>) {\n\n $serialized_fields\n }\n }\n\n impl<$field_generics> Deserialize for ($field_generics) where $deserialize_constraints {\n let N: u32 = $full_size_deserialize;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = $crate::reader::Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n \n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut $crate::reader::Reader<K>) -> Self {\n $deserialized_fields\n ($deserialize_results)\n }\n }\n }\n}\n\n// Keeping these manual impls. They are more efficient since they do not\n// require copying sub-arrays from any serialized arrays.\nimpl<T1> Serialize for (T1,)\nwhere\n T1: Serialize,\n{\n let N: u32 = <T1 as Serialize>::N;\n\n fn serialize(self) -> [Field; Self::N] {\n let mut writer: crate::writer::Writer<Self::N> = crate::writer::Writer::new();\n self.stream_serialize(&mut writer);\n writer.finish()\n }\n\n #[inline_always]\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n self.0.stream_serialize(writer);\n }\n}\n\nimpl<T1> Deserialize for (T1,)\nwhere\n T1: Deserialize,\n{\n let N: u32 = <T1 as Deserialize>::N;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n let mut reader = crate::reader::Reader::new(fields);\n let result = Self::stream_deserialize(&mut reader);\n reader.finish();\n result\n }\n\n #[inline_always]\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n (<T1 as Deserialize>::stream_deserialize(reader),)\n }\n}\n\n#[impl_serialize_for_tuple(2)]\n#[impl_serialize_for_tuple(3)]\n#[impl_serialize_for_tuple(4)]\n#[impl_serialize_for_tuple(5)]\n#[impl_serialize_for_tuple(6)]\nmod impls {\n use crate::serialization::{Deserialize, Serialize};\n}\n\n#[test]\nunconstrained fn bounded_vec_serialization() {\n // Test empty BoundedVec\n let empty_vec: BoundedVec<Field, 3> = BoundedVec::from_array([]);\n let serialized = empty_vec.serialize();\n let deserialized = BoundedVec::<Field, 3>::deserialize(serialized);\n assert_eq(empty_vec, deserialized);\n assert_eq(deserialized.len(), 0);\n\n // Test partially filled BoundedVec\n let partial_vec: BoundedVec<[u32; 2], 3> = BoundedVec::from_array([[1, 2]]);\n let serialized = partial_vec.serialize();\n let deserialized = BoundedVec::<[u32; 2], 3>::deserialize(serialized);\n assert_eq(partial_vec, deserialized);\n assert_eq(deserialized.len(), 1);\n assert_eq(deserialized.get(0), [1, 2]);\n\n // Test full BoundedVec\n let full_vec: BoundedVec<[u32; 2], 3> = BoundedVec::from_array([[1, 2], [3, 4], [5, 6]]);\n let serialized = full_vec.serialize();\n let deserialized = BoundedVec::<[u32; 2], 3>::deserialize(serialized);\n assert_eq(full_vec, deserialized);\n assert_eq(deserialized.len(), 3);\n assert_eq(deserialized.get(0), [1, 2]);\n assert_eq(deserialized.get(1), [3, 4]);\n assert_eq(deserialized.get(2), [5, 6]);\n}\n"
2422
2422
  },
2423
- "417": {
2423
+ "419": {
2424
2424
  "function_locations": [
2425
2425
  {
2426
2426
  "name": "Writer<N>::new",
@@ -2463,7 +2463,7 @@
2463
2463
  "start": 1263
2464
2464
  }
2465
2465
  ],
2466
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-protocol-circuits/crates/serde/src/writer.nr",
2466
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-protocol-circuits/crates/serde/src/writer.nr",
2467
2467
  "source": "pub struct Writer<let N: u32> {\n data: [Field; N],\n offset: u32,\n}\n\nimpl<let N: u32> Writer<N> {\n pub fn new() -> Self {\n Self { data: [0; N], offset: 0 }\n }\n\n pub fn write(&mut self, value: Field) {\n self.data[self.offset] = value;\n self.offset += 1;\n }\n\n pub fn write_u32(&mut self, value: u32) {\n self.write(value as Field);\n }\n\n pub fn write_u64(&mut self, value: u64) {\n self.write(value as Field);\n }\n\n pub fn write_bool(&mut self, value: bool) {\n self.write(value as Field);\n }\n\n pub fn write_array<let K: u32>(&mut self, value: [Field; K]) {\n for i in 0..K {\n self.data[i + self.offset] = value[i];\n }\n self.offset += K;\n }\n\n pub fn write_struct<T, let K: u32>(&mut self, value: T, serialize: fn(T) -> [Field; K]) {\n self.write_array(serialize(value));\n }\n\n pub fn write_struct_array<T, let K: u32, let C: u32>(\n &mut self,\n value: [T; C],\n serialize: fn(T) -> [Field; K],\n ) {\n for i in 0..C {\n self.write_struct(value[i], serialize);\n }\n }\n\n pub fn advance_offset(&mut self, offset: u32) {\n self.offset += offset;\n }\n\n pub fn finish(self) -> [Field; N] {\n assert_eq(self.offset, self.data.len(), \"Writer did not write all data\");\n self.data\n }\n}\n"
2468
2468
  },
2469
2469
  "49": {
@@ -2473,7 +2473,7 @@
2473
2473
  "start": 828
2474
2474
  }
2475
2475
  ],
2476
- "path": "/home/aztec-dev/aztec-packages/noir-projects/noir-contracts/contracts/standard/multi_call_entrypoint_contract/src/main.nr",
2476
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/noir-contracts/contracts/standard/multi_call_entrypoint_contract/src/main.nr",
2477
2477
  "source": "// An entrypoint contract that allows all calls to go through.\n//\n// Used for testing and for situations such as account contract self-deployments (when the account's own entrypoint\n// cannot be used because it is not yet deployed).\n//\n// Pair this with SignerlessWallet to perform multiple actions before any account contracts are deployed (and without\n// authentication).\n//\n// Note that this contract should not be grouped with protocol contracts as it is not part of the protocol. We keep\n// it here for now as it allows us to use hardcoded address.\nuse aztec::macros::aztec;\n\n#[aztec]\npub contract MultiCallEntrypoint {\n use aztec::{authwit::entrypoint::app::AppPayload, macros::functions::{allow_phase_change, external}};\n\n #[external(\"private\")]\n #[allow_phase_change]\n fn entrypoint(app_payload: AppPayload) {\n app_payload.execute_calls(self.context);\n }\n}\n"
2478
2478
  },
2479
2479
  "54": {
@@ -2487,7 +2487,7 @@
2487
2487
  "start": 1175
2488
2488
  }
2489
2489
  ],
2490
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/authwit/entrypoint/app.nr",
2490
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/authwit/entrypoint/app.nr",
2491
2491
  "source": "use crate::{authwit::entrypoint::FunctionCall, context::PrivateContext};\nuse crate::protocol::{\n constants::DOM_SEP__SIGNATURE_PAYLOAD,\n hash::poseidon2_hash_with_separator,\n traits::{Deserialize, Hash, Serialize},\n};\nuse std::meta::derive;\n\nglobal ACCOUNT_MAX_CALLS: u32 = 5;\n\n// @dev: If you change the following struct you have to update:\n// - default_entrypoint.ts\n// - account_entrypoint.ts (specifically `getEntrypointAbi()`)\n// - default_multi_call_entrypoint.ts (specifically `getEntrypointAbi()`)\n#[derive(Deserialize, Serialize)]\npub struct AppPayload {\n function_calls: [FunctionCall; ACCOUNT_MAX_CALLS],\n // A nonce that enables transaction cancellation. When the cancellable flag is enabled, this nonce is used to\n // compute a nullifier that is then emitted. This guarantees that we can cancel the transaction by using the same\n // nonce.\n pub tx_nonce: Field,\n}\n\nimpl Hash for AppPayload {\n fn hash(self) -> Field {\n poseidon2_hash_with_separator(self.serialize(), DOM_SEP__SIGNATURE_PAYLOAD)\n }\n}\n\nimpl AppPayload {\n // Executes all private and public calls\n pub fn execute_calls(self, context: &mut PrivateContext) {\n for call in self.function_calls {\n if !call.target_address.is_zero() {\n if call.is_public {\n context.call_public_function_with_calldata_hash(\n call.target_address,\n call.args_hash,\n call.is_static,\n call.hide_msg_sender,\n );\n } else {\n assert(\n !call.hide_msg_sender,\n \"Incompatible flag. `hide_msg_sender = true` is only available for public calls.\",\n );\n let _result = context.call_private_function_with_args_hash(\n call.target_address,\n call.function_selector,\n call.args_hash,\n call.is_static,\n );\n }\n }\n }\n }\n}\n"
2492
2492
  },
2493
2493
  "58": {
@@ -2569,7 +2569,7 @@
2569
2569
  "start": 13383
2570
2570
  }
2571
2571
  ],
2572
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/capsules/mod.nr",
2572
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/capsules/mod.nr",
2573
2573
  "source": "use crate::oracle::capsules;\nuse crate::protocol::{address::AztecAddress, traits::{Deserialize, Serialize}};\n\n/// A dynamically sized array backed by PXE's non-volatile database (called capsules). Values are persisted until\n/// deleted, so they can be e.g. stored during simulation of a transaction and later retrieved during witness\n/// generation. All values are scoped per contract address, so external contracts cannot access them.\npub struct CapsuleArray<T> {\n contract_address: AztecAddress,\n /// The base slot is where the array length is stored in capsules. Array elements are stored in consecutive slots\n /// after the base slot. For example, with base slot 5: the length is at slot 5, the first element (index 0) is at\n /// slot 6, the second element (index 1) is at slot 7, and so on.\n base_slot: Field,\n /// Scope for capsule isolation. Capsule operations are scoped to the given address, allowing multiple independent\n /// namespaces within the same contract.\n scope: AztecAddress,\n}\n\nimpl<T> CapsuleArray<T> {\n /// Returns a CapsuleArray scoped to a specific address.\n ///\n /// Array elements are stored in contiguous slots\n /// following the base slot, so there should be sufficient space between array base slots to accommodate elements.\n /// A reasonable strategy is to make the base slot a hash of a unique value.\n pub unconstrained fn at(contract_address: AztecAddress, base_slot: Field, scope: AztecAddress) -> Self {\n Self { contract_address, base_slot, scope }\n }\n\n /// Returns the number of elements stored in the array.\n pub unconstrained fn len(self) -> u32 {\n // An uninitialized array defaults to a length of 0.\n capsules::load(self.contract_address, self.base_slot, self.scope).unwrap_or(0) as u32\n }\n\n /// Stores a value at the end of the array.\n pub unconstrained fn push(self, value: T)\n where\n T: Serialize,\n {\n let current_length = self.len();\n\n // The slot corresponding to the index `current_length` is the first slot immediately after the end of the\n // array, which is where we want to place the new value.\n capsules::store(\n self.contract_address,\n self.slot_at(current_length),\n value,\n self.scope,\n );\n\n // Then we simply update the length.\n let new_length = current_length + 1;\n capsules::store(\n self.contract_address,\n self.base_slot,\n new_length,\n self.scope,\n );\n }\n\n /// Retrieves the value stored in the array at `index`. Throws if the index is out of bounds.\n pub unconstrained fn get(self, index: u32) -> T\n where\n T: Deserialize,\n {\n assert(index < self.len(), \"Attempted to read past the length of a CapsuleArray\");\n\n capsules::load(self.contract_address, self.slot_at(index), self.scope).unwrap()\n }\n\n /// Deletes the value stored in the array at `index`. Throws if the index is out of bounds.\n pub unconstrained fn remove(self, index: u32) {\n let current_length = self.len();\n assert(index < current_length, \"Attempted to delete past the length of a CapsuleArray\");\n\n // In order to be able to remove elements at arbitrary indices, we need to shift the entire contents of the\n // array past the removed element one slot backward so that we don't end up with a gap and preserve the\n // contiguous slots. We can skip this when deleting the last element however.\n if index != current_length - 1 {\n // The source and destination regions overlap, but `copy` supports this.\n capsules::copy(\n self.contract_address,\n self.slot_at(index + 1),\n self.slot_at(index),\n current_length - index - 1,\n self.scope,\n );\n }\n\n // We can now delete the last element (which has either been copied to the slot immediately before it, or was\n // the element we meant to delete in the first place) and update the length.\n capsules::delete(\n self.contract_address,\n self.slot_at(current_length - 1),\n self.scope,\n );\n capsules::store(\n self.contract_address,\n self.base_slot,\n current_length - 1,\n self.scope,\n );\n }\n\n /// Calls a function on each element of the array.\n ///\n /// The function `f` is called once with each array value and its corresponding index. The order in which values\n /// are processed is arbitrary.\n ///\n /// ## Array Mutation\n ///\n /// It is safe to delete the current element (and only the current element) from inside the callback via `remove`:\n /// ```noir\n /// array.for_each(|index, value| {\n /// if some_condition(value) {\n /// array.remove(index); // safe only for this index\n /// }\n /// }\n /// ```\n ///\n /// If all elements in the array need to iterated over and then removed, then using `for_each` results in optimal\n /// efficiency.\n ///\n /// It is **not** safe to push new elements into the array from inside the callback.\n pub unconstrained fn for_each<Env>(self, f: unconstrained fn[Env](u32, T) -> ())\n where\n T: Deserialize,\n {\n // Iterating over all elements is simple, but we want to do it in such a way that a) deleting the current\n // element is safe to do, and b) deleting *all* elements is optimally efficient. This is because CapsuleArrays\n // are typically used to hold pending tasks, so iterating them while clearing completed tasks (sometimes\n // unconditionally, resulting in a full clear) is a very common access pattern.\n //\n // The way we achieve this is by iterating backwards: each element can always be deleted since it won't change\n // any preceding (lower) indices, and if every element is deleted then every element will (in turn) be the last\n // element. This results in an optimal full clear since `remove` will be able to skip the `capsules::copy` call\n // to shift any elements past the deleted one (because there will be none).\n let mut i = self.len();\n while i > 0 {\n i -= 1;\n f(i, self.get(i));\n }\n }\n\n unconstrained fn slot_at(self, index: u32) -> Field {\n // Elements are stored immediately after the base slot, so we add 1 to it to compute the slot for the first\n // element.\n self.base_slot + 1 + index as Field\n }\n}\n\nmod test {\n use crate::test::helpers::test_environment::TestEnvironment;\n use super::CapsuleArray;\n\n global SLOT: Field = 1230;\n\n #[test]\n unconstrained fn empty_array() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array: CapsuleArray<Field> = CapsuleArray::at(contract_address, SLOT, scope);\n assert_eq(array.len(), 0);\n });\n }\n\n #[test(should_fail_with = \"Attempted to read past the length of a CapsuleArray\")]\n unconstrained fn empty_array_read() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n let _: Field = array.get(0);\n });\n }\n\n #[test]\n unconstrained fn array_push() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n array.push(5);\n\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 5);\n });\n }\n\n #[test(should_fail_with = \"Attempted to read past the length of a CapsuleArray\")]\n unconstrained fn read_past_len() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n array.push(5);\n\n let _ = array.get(1);\n });\n }\n\n #[test]\n unconstrained fn array_remove_last() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(5);\n array.remove(0);\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn array_remove_some() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n assert_eq(array.len(), 3);\n assert_eq(array.get(0), 7);\n assert_eq(array.get(1), 8);\n assert_eq(array.get(2), 9);\n\n array.remove(1);\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 7);\n assert_eq(array.get(1), 9);\n });\n }\n\n #[test]\n unconstrained fn array_remove_all() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n array.remove(1);\n array.remove(1);\n array.remove(0);\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn for_each_called_with_all_elements() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n // We store all values that we were called with and check that all (value, index) tuples are present. Note\n // that we do not care about the order in which each tuple was passed to the closure.\n let called_with = &mut BoundedVec::<(u32, Field), 3>::new();\n array.for_each(|index, value| { called_with.push((index, value)); });\n\n assert_eq(called_with.len(), 3);\n assert(called_with.any(|(index, value)| (index == 0) & (value == 4)));\n assert(called_with.any(|(index, value)| (index == 1) & (value == 5)));\n assert(called_with.any(|(index, value)| (index == 2) & (value == 6)));\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_some() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| {\n if index == 1 {\n array.remove(index);\n }\n });\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 4);\n assert_eq(array.get(1), 6);\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_all() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| { array.remove(index); });\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_all_no_copy() {\n let mut env = TestEnvironment::new();\n let scope = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n let array = CapsuleArray::at(contract_address, SLOT, scope);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n // We test that the aztec_utl_copyCapsule was never called, which is the expensive operation we want to\n // avoid.\n let mock = std::test::OracleMock::mock(\"aztec_utl_copyCapsule\");\n\n array.for_each(|index, _| { array.remove(index); });\n\n assert_eq(mock.times_called(), 0);\n });\n }\n\n #[test]\n unconstrained fn different_scopes_are_isolated() {\n let mut env = TestEnvironment::new();\n let scope_a = env.create_light_account();\n let scope_b = env.create_light_account();\n env.private_context(|context| {\n let contract_address = context.this_address();\n\n let array_a = CapsuleArray::at(contract_address, SLOT, scope_a);\n let array_b = CapsuleArray::at(contract_address, SLOT, scope_b);\n\n array_a.push(10);\n array_a.push(20);\n array_b.push(99);\n\n assert_eq(array_a.len(), 2);\n assert_eq(array_a.get(0), 10);\n assert_eq(array_a.get(1), 20);\n\n assert_eq(array_b.len(), 1);\n assert_eq(array_b.get(0), 99);\n });\n }\n}\n"
2574
2574
  },
2575
2575
  "6": {
@@ -3129,7 +3129,7 @@
3129
3129
  "start": 80911
3130
3130
  }
3131
3131
  ],
3132
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/context/private_context.nr",
3132
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/context/private_context.nr",
3133
3133
  "source": "use crate::{\n context::{inputs::PrivateContextInputs, NoteExistenceRequest, NullifierExistenceRequest, ReturnsHash},\n hash::{hash_args, hash_calldata_array},\n keys::constants::{NULLIFIER_INDEX, NUM_KEY_TYPES, OUTGOING_INDEX, public_key_domain_separators},\n messaging::process_l1_to_l2_message,\n oracle::{\n block_header::get_block_header_at,\n call_private_function::call_private_function_internal,\n execution_cache,\n key_validation_request::get_key_validation_request,\n logs::notify_created_contract_class_log,\n notes::notify_nullified_note,\n nullifiers::notify_created_nullifier,\n public_call::assert_valid_public_call_data,\n tx_phase::{is_execution_in_revertible_phase, notify_revertible_phase_start},\n },\n};\nuse crate::logging::aztecnr_trace_log_format;\nuse crate::protocol::{\n abis::{\n block_header::BlockHeader,\n call_context::CallContext,\n function_selector::FunctionSelector,\n gas_settings::GasSettings,\n log_hash::LogHash,\n note_hash::NoteHash,\n nullifier::Nullifier,\n private_call_request::PrivateCallRequest,\n private_circuit_public_inputs::PrivateCircuitPublicInputs,\n private_log::{PrivateLog, PrivateLogData},\n public_call_request::PublicCallRequest,\n validation_requests::{KeyValidationRequest, KeyValidationRequestAndSeparator},\n },\n address::{AztecAddress, EthAddress},\n constants::{\n CONTRACT_CLASS_LOG_SIZE_IN_FIELDS, MAX_CONTRACT_CLASS_LOGS_PER_CALL, MAX_ENQUEUED_CALLS_PER_CALL,\n MAX_KEY_VALIDATION_REQUESTS_PER_CALL, MAX_L2_TO_L1_MSGS_PER_CALL, MAX_NOTE_HASH_READ_REQUESTS_PER_CALL,\n MAX_NOTE_HASHES_PER_CALL, MAX_NULLIFIER_READ_REQUESTS_PER_CALL, MAX_NULLIFIERS_PER_CALL,\n MAX_PRIVATE_CALL_STACK_LENGTH_PER_CALL, MAX_PRIVATE_LOGS_PER_CALL, MAX_TX_LIFETIME,\n NULL_MSG_SENDER_CONTRACT_ADDRESS, PRIVATE_LOG_CIPHERTEXT_LEN,\n },\n hash::compute_contract_class_log_hash,\n messaging::l2_to_l1_message::L2ToL1Message,\n side_effect::{Counted, scoped::Scoped},\n traits::{Empty, ToField},\n utils::arrays::{ClaimedLengthArray, trimmed_array_length_hint},\n};\n\n/// # PrivateContext\n///\n/// The **main interface** between an #[external(\"private\")] function and the Aztec blockchain.\n///\n/// An instance of the PrivateContext is initialized automatically at the outset of every private function, within the\n/// #[external(\"private\")] macro, so you'll never need to consciously instantiate this yourself.\n///\n/// The instance is always named `context`, and it is always be available within the body of every\n/// #[external(\"private\")] function in your smart contract.\n///\n/// > For those used to \"vanilla\" Noir, it might be jarring to have access to > `context` without seeing a declaration\n/// `let context = PrivateContext::new(...)` > within the body of your function. This is just a consequence of using >\n/// macros to tidy-up verbose boilerplate. You can use `nargo expand` to > expand all macros, if you dare.\n///\n/// Typical usage for a smart contract developer will be to call getter methods of the PrivateContext.\n///\n/// _Pushing_ data and requests to the context is mostly handled within aztec-nr's own functions, so typically a smart\n/// contract developer won't need to call any setter methods directly.\n///\n/// > Advanced users might occasionally wish to push data to the context > directly for lower-level control. If you\n/// find yourself doing this, please > open an issue on GitHub to describe your use case: it might be that > new\n/// functionality should be added to aztec-nr.\n///\n/// ## Responsibilities\n/// - Exposes contextual data to a private function:\n/// - Data relating to how this private function was called.\n/// - msg_sender\n/// - this_address - (the contract address of the private function being executed)\n/// - See `CallContext` for more data.\n/// - Data relating to the transaction in which this private function is being executed.\n/// - chain_id\n/// - version\n/// - gas_settings\n/// - Provides state access:\n/// - Access to the \"Anchor block\" header. Recall, a private function cannot read from the \"current\" block header, but\n/// must read from some historical block header, because as soon as private function execution begins (asynchronously,\n/// on a user's device), the public state of the chain (the \"current state\") will have progressed forward. We call this\n/// reference the \"Anchor block\". See `BlockHeader`.\n/// - Enables consumption of L1->L2 messages.\n/// - Enables calls to functions of other smart contracts:\n/// - Private function calls\n/// - Enqueueing of public function call requests (Since public functions are executed at a later time, by a block\n/// proposer, we say they are \"enqueued\").\n/// - Writes data to the blockchain:\n/// - New notes\n/// - New nullifiers\n/// - Private logs (for sending encrypted note contents or encrypted events)\n/// - New L2->L1 messages.\n/// - Provides args to the private function (handled by the #[external(\"private\")] macro).\n/// - Returns the return values of this private function (handled by the\n/// #[external(\"private\")] macro).\n/// - Makes Key Validation Requests.\n/// - Private functions are not allowed to see master secret keys, because we do not trust them. They are instead given\n/// \"app-siloed\" secret keys with a claim that they relate to a master public key. They can then request validation of\n/// this claim, by making a \"key validation request\" to the protocol's kernel circuits (which _are_ allowed to see\n/// certain master secret keys).\n///\n/// ## Advanced Responsibilities\n///\n/// - Ultimately, the PrivateContext is responsible for constructing the PrivateCircuitPublicInputs of the private\n/// function being executed. All private functions on Aztec must have public inputs which adhere to the rigid layout of\n/// the PrivateCircuitPublicInputs, in order to be compatible with the protocol's kernel circuits. A well-known\n/// misnomer:\n/// - \"public inputs\" contain both inputs and outputs of this function.\n/// - By \"outputs\" we mean a lot more side-effects than just the \"return values\" of the function.\n/// - Most of the so-called \"public inputs\" are kept _private_, and never leak to the outside world, because they are\n/// 'swallowed' by the protocol's kernel circuits before the tx is sent to the network. Only the following are exposed\n/// to the outside world:\n/// - New note_hashes\n/// - New nullifiers\n/// - New private logs\n/// - New L2->L1 messages\n/// - New enqueued public function call requests All the above-listed arrays of side-effects can be padded by the\n/// user's wallet (through instructions to the kernel circuits, via the PXE) to obscure their true lengths.\n///\n/// ## Syntax Justification\n///\n/// Both user-defined functions _and_ most functions in aztec-nr need access to the PrivateContext instance to\n/// read/write data. This is why you'll see the arguably-ugly pervasiveness of the \"context\" throughout your smart\n/// contract and the aztec-nr library. For example, `&mut context` is prevalent. In some languages, you can access and\n/// mutate a global variable (such as a PrivateContext instance) from a function without polluting the function's\n/// parameters. With Noir, a function must explicitly pass control of a mutable variable to another function, by\n/// reference. Since many functions in aztec-nr need to be able to push new data to the PrivateContext, they need to be\n/// handed a mutable reference _to_ the context as a parameter. For example, `Context` is prevalent as a generic\n/// parameter, to give better type safety at compile time. Many `aztec-nr` functions don't make sense if they're called\n/// in a particular runtime (private, public or utility), and so are intentionally only implemented over certain\n/// [Private|Public|Utility]Context structs. This gives smart contract developers a much faster feedback loop if\n/// they're making a mistake, as an error will be thrown by the LSP or when they compile their contract.\n///\n#[derive(Eq)]\npub struct PrivateContext {\n // docs:start:private-context\n pub inputs: PrivateContextInputs,\n pub side_effect_counter: u32,\n\n pub min_revertible_side_effect_counter: u32,\n pub is_fee_payer: bool,\n\n pub args_hash: Field,\n pub return_hash: Field,\n\n pub expiration_timestamp: u64,\n\n pub(crate) note_hash_read_requests: BoundedVec<Scoped<Counted<Field>>, MAX_NOTE_HASH_READ_REQUESTS_PER_CALL>,\n pub(crate) nullifier_read_requests: BoundedVec<Scoped<Counted<Field>>, MAX_NULLIFIER_READ_REQUESTS_PER_CALL>,\n key_validation_requests_and_separators: BoundedVec<KeyValidationRequestAndSeparator, MAX_KEY_VALIDATION_REQUESTS_PER_CALL>,\n\n pub note_hashes: BoundedVec<Counted<NoteHash>, MAX_NOTE_HASHES_PER_CALL>,\n pub nullifiers: BoundedVec<Counted<Nullifier>, MAX_NULLIFIERS_PER_CALL>,\n\n pub private_call_requests: BoundedVec<PrivateCallRequest, MAX_PRIVATE_CALL_STACK_LENGTH_PER_CALL>,\n pub public_call_requests: BoundedVec<Counted<PublicCallRequest>, MAX_ENQUEUED_CALLS_PER_CALL>,\n pub public_teardown_call_request: PublicCallRequest,\n pub l2_to_l1_msgs: BoundedVec<Counted<L2ToL1Message>, MAX_L2_TO_L1_MSGS_PER_CALL>,\n // docs:end:private-context\n\n // Header of a block whose state is used during private execution (not the block the transaction is included in).\n pub anchor_block_header: BlockHeader,\n\n pub private_logs: BoundedVec<Counted<PrivateLogData>, MAX_PRIVATE_LOGS_PER_CALL>,\n pub contract_class_logs_hashes: BoundedVec<Counted<LogHash>, MAX_CONTRACT_CLASS_LOGS_PER_CALL>,\n\n // Contains the last key validation request for each key type. This is used to cache the last request and avoid\n // fetching the same request multiple times. The index of the array corresponds to the key type (0 nullifier, 1\n // incoming, 2 outgoing, 3 tagging).\n pub last_key_validation_requests: [Option<KeyValidationRequest>; NUM_KEY_TYPES],\n\n pub expected_non_revertible_side_effect_counter: u32,\n pub expected_revertible_side_effect_counter: u32,\n}\n\nimpl PrivateContext {\n pub fn new(inputs: PrivateContextInputs, args_hash: Field) -> PrivateContext {\n PrivateContext {\n inputs,\n side_effect_counter: inputs.start_side_effect_counter + 1,\n min_revertible_side_effect_counter: 0,\n is_fee_payer: false,\n args_hash,\n return_hash: 0,\n expiration_timestamp: inputs.anchor_block_header.timestamp() + MAX_TX_LIFETIME,\n note_hash_read_requests: BoundedVec::new(),\n nullifier_read_requests: BoundedVec::new(),\n key_validation_requests_and_separators: BoundedVec::new(),\n note_hashes: BoundedVec::new(),\n nullifiers: BoundedVec::new(),\n anchor_block_header: inputs.anchor_block_header,\n private_call_requests: BoundedVec::new(),\n public_call_requests: BoundedVec::new(),\n public_teardown_call_request: PublicCallRequest::empty(),\n l2_to_l1_msgs: BoundedVec::new(),\n private_logs: BoundedVec::new(),\n contract_class_logs_hashes: BoundedVec::new(),\n last_key_validation_requests: [Option::none(); NUM_KEY_TYPES],\n expected_non_revertible_side_effect_counter: 0,\n expected_revertible_side_effect_counter: 0,\n }\n }\n\n /// Returns the contract address that initiated this function call.\n ///\n /// This is similar to `msg.sender` in Solidity (hence the name).\n ///\n /// Important Note: Since Aztec doesn't have a concept of an EoA (Externally-owned Account), the msg_sender is\n /// \"none\" for the first function call of every transaction. The first function call of a tx is likely to be a call\n /// to the user's account contract, so this quirk will most often be handled by account contract developers.\n ///\n /// # Returns\n /// * `Option<AztecAddress>` - The address of the smart contract that called this function (be it an app contract\n /// or a user's account contract). Returns `Option<AztecAddress>::none` for the first function call of the tx. No\n /// other _private_ function calls in the tx will have a `none` msg_sender, but _public_ function calls might (see\n /// the PublicContext).\n pub fn maybe_msg_sender(self) -> Option<AztecAddress> {\n let maybe_msg_sender = self.inputs.call_context.msg_sender;\n if maybe_msg_sender == NULL_MSG_SENDER_CONTRACT_ADDRESS {\n Option::none()\n } else {\n Option::some(maybe_msg_sender)\n }\n }\n\n /// Returns the contract address of the current function being executed.\n ///\n /// This is equivalent to `address(this)` in Solidity (hence the name). Use this to identify the current contract's\n /// address, commonly needed for access control or when interacting with other contracts.\n ///\n /// # Returns\n /// * `AztecAddress` - The contract address of the current function being executed.\n ///\n pub fn this_address(self) -> AztecAddress {\n self.inputs.call_context.contract_address\n }\n\n /// Returns the chain ID of the current network.\n ///\n /// This is similar to `block.chainid` in Solidity. Returns the unique identifier for the blockchain network this\n /// transaction is executing on.\n ///\n /// Helps prevent cross-chain replay attacks. Useful if implementing multi-chain contract logic.\n ///\n /// # Returns\n /// * `Field` - The chain ID as a field element\n ///\n pub fn chain_id(self) -> Field {\n self.inputs.tx_context.chain_id\n }\n\n /// Returns the Aztec protocol version that this transaction is executing under. Different versions may have\n /// different rules, opcodes, or cryptographic primitives.\n ///\n /// This is similar to how Ethereum has different EVM versions.\n ///\n /// Useful for forward/backward compatibility checks\n ///\n /// Not to be confused with contract versions; this is the protocol version.\n ///\n /// # Returns\n /// * `Field` - The protocol version as a field element\n ///\n pub fn version(self) -> Field {\n self.inputs.tx_context.version\n }\n\n /// Returns the gas settings for the current transaction.\n ///\n /// This provides information about gas limits and pricing for the transaction, similar to `tx.gasprice` and gas\n /// limits in Ethereum. However, Aztec has a more sophisticated gas model with separate accounting for L2\n /// computation and data availability (DA) costs.\n ///\n /// # Returns\n /// * `GasSettings` - Struct containing gas limits and fee information\n ///\n pub fn gas_settings(self) -> GasSettings {\n self.inputs.tx_context.gas_settings\n }\n\n /// Returns the function selector of the currently executing function.\n ///\n /// Low-level function: Ordinarily, smart contract developers will not need to access this.\n ///\n /// This is similar to `msg.sig` in Solidity, which returns the first 4 bytes of the function signature. In Aztec,\n /// the selector uniquely identifies which function within the contract is being called.\n ///\n /// # Returns\n /// * `FunctionSelector` - The 4-byte function identifier\n ///\n /// # Advanced\n /// Only #[external(\"private\")] functions have a function selector as a protocol- enshrined concept. The function\n /// selectors of private functions are baked into the preimage of the contract address, and are used by the\n /// protocol's kernel circuits to identify each private function and ensure the correct one is being executed.\n ///\n /// Used internally for function dispatch and call verification.\n ///\n pub fn selector(self) -> FunctionSelector {\n self.inputs.call_context.function_selector\n }\n\n /// Returns the hash of the arguments passed to the current function.\n ///\n /// Very low-level function: You shouldn't need to call this. The #[external(\"private\")] macro calls this, and it\n /// makes the arguments neatly available to the body of your private function.\n ///\n /// # Returns\n /// * `Field` - Hash of the function arguments\n ///\n /// # Advanced\n /// * Arguments are hashed to reduce proof size and verification time\n /// * Enables efficient argument passing in recursive function calls\n /// * The hash can be used to retrieve the original arguments from the PXE.\n ///\n pub fn get_args_hash(self) -> Field {\n self.args_hash\n }\n\n /// Pushes a new note_hash to the Aztec blockchain's global Note Hash Tree (a state tree).\n ///\n /// A note_hash is a commitment to a piece of private state.\n ///\n /// Low-level function: Ordinarily, smart contract developers will not need to manually call this. Aztec-nr's state\n /// variables (see `../state_vars/`) are designed to understand when to create and push new note hashes.\n ///\n /// # Arguments\n /// * `note_hash` - The new note_hash.\n ///\n /// # Advanced\n /// From here, the protocol's kernel circuits will take over and insert the note_hash into the protocol's \"note\n /// hash tree\" (in the Base Rollup circuit). Before insertion, the protocol will:\n /// - \"Silo\" the `note_hash` with the contract address of this function, to yield a `siloed_note_hash`. This\n /// prevents state collisions between different smart contracts.\n /// - Ensure uniqueness of the `siloed_note_hash`, to prevent Faerie-Gold attacks, by hashing the\n /// `siloed_note_hash` with a unique value, to yield a `unique_siloed_note_hash` (see the protocol spec for more).\n ///\n /// In addition to calling this function, aztec-nr provides the contents of the newly-created note to the PXE, via\n /// the `notify_created_note` oracle.\n ///\n /// > Advanced users might occasionally wish to push data to the context > directly for lower-level control. If you\n /// find yourself doing this, > please open an issue on GitHub to describe your use case: it might be > that new\n /// functionality should be added to aztec-nr.\n ///\n pub fn push_note_hash(&mut self, note_hash: Field) {\n self.note_hashes.push(Counted::new(note_hash, self.next_counter()));\n }\n\n /// Creates a new [nullifier](crate::nullifier).\n ///\n /// ## Safety\n ///\n /// This is a low-level function that must be used with great care to avoid subtle corruption of contract state.\n /// Instead of calling this function, consider using the higher-level [`crate::state_vars::SingleUseClaim`].\n ///\n /// In particular, callers must ensure all nullifiers created by a contract are properly domain-separated, so that\n /// unrelated components don't interfere with one another (e.g. a transaction nullifier accidentally marking a\n /// variable as initialized). Only [`PrivateContext::push_nullifier_for_note_hash`] should be used for note\n /// nullifiers, never this one.\n ///\n /// ## Advanced\n ///\n /// The raw `nullifier` is not what is inserted into the Aztec state tree: it will be first siloed by contract\n /// address via [`crate::protocol::hash::compute_siloed_nullifier`] in order to prevent accidental or malicious\n /// interference of nullifiers from different contracts.\n pub fn push_nullifier_unsafe(&mut self, nullifier: Field) {\n notify_created_nullifier(nullifier);\n self.nullifiers.push(Nullifier { value: nullifier, note_hash: 0 }.count(self.next_counter()));\n }\n\n /// Creates a new [nullifier](crate::nullifier) associated with a note.\n ///\n /// This is a variant of [`PrivateContext::push_nullifier_unsafe`] that is used for note nullifiers, i.e.\n /// nullifiers that correspond to a note. If a note and its nullifier are created in the same transaction, then\n /// the private kernels will 'squash' these values, deleting them both as if they never existed and reducing\n /// transaction fees.\n ///\n /// The `nullification_note_hash` must be the result of calling\n /// [`crate::note::utils::compute_confirmed_note_hash_for_nullification`] for pending notes, and `0` for settled\n /// notes (which cannot be squashed).\n ///\n /// ## Safety\n ///\n /// This is a low-level function that must be used with great care to avoid subtle corruption of contract state.\n /// Instead of calling this function, consider using the higher-level [`crate::note::lifecycle::destroy_note`].\n ///\n /// The precautions listed for [`PrivateContext::push_nullifier_unsafe`] apply here as well, and callers should\n /// additionally ensure `nullification_note_hash` corresponds to a note emitted by this contract, with its hash\n /// computed in the same transaction execution phase as the call to this function. Finally, only this function\n /// should be used for note nullifiers, never [`PrivateContext::push_nullifier_unsafe`].\n ///\n /// Failure to do these things can result in unprovable contexts, accidental deletion of notes, or double-spend\n /// attacks.\n pub fn push_nullifier_for_note_hash(&mut self, nullifier: Field, nullification_note_hash: Field) {\n let nullifier_counter = self.next_counter();\n notify_nullified_note(nullifier, nullification_note_hash, nullifier_counter);\n self.nullifiers.push(Nullifier { value: nullifier, note_hash: nullification_note_hash }.count(\n nullifier_counter,\n ));\n }\n\n /// Returns the anchor block header - the historical block header that this private function is reading from.\n ///\n /// A private function CANNOT read from the \"current\" block header, but must read from some older block header,\n /// because as soon as private function execution begins (asynchronously, on a user's device), the public state of\n /// the chain (the \"current state\") will have progressed forward.\n ///\n /// # Returns\n /// * `BlockHeader` - The anchor block header.\n ///\n /// # Advanced\n /// * All private functions of a tx read from the same anchor block header.\n /// * The protocol asserts that the `expiration_timestamp` of every tx is at most 24 hours beyond the timestamp of\n /// the tx's chosen anchor block header. This enables the network's nodes to safely prune old txs from the mempool.\n /// Therefore, the chosen block header _must_ be one from within the last 24 hours.\n ///\n pub fn get_anchor_block_header(self) -> BlockHeader {\n self.anchor_block_header\n }\n\n /// Returns the header of any historical block at or before the anchor block.\n ///\n /// This enables private contracts to access information from even older blocks than the anchor block header.\n ///\n /// Useful for time-based contract logic that needs to compare against multiple historical points.\n ///\n /// # Arguments\n /// * `block_number` - The block number to retrieve (must be <= anchor block number)\n ///\n /// # Returns\n /// * `BlockHeader` - The header of the requested historical block\n ///\n /// # Advanced\n /// This function uses an oracle to fetch block header data from the user's PXE. Depending on how much blockchain\n /// data the user's PXE has been set up to store, this might require a query from the PXE to another Aztec node to\n /// get the data. > This is generally true of all oracle getters (see `../oracle`).\n ///\n /// Each block header gets hashed and stored as a leaf in the protocol's Archive Tree. In fact, the i-th block\n /// header gets stored at the i-th leaf index of the Archive Tree. Behind the scenes, this `get_block_header_at`\n /// function will add Archive Tree merkle-membership constraints (~3k) to your smart contract function's circuit,\n /// to prove existence of the block header in the Archive Tree.\n ///\n /// Note: we don't do any caching, so avoid making duplicate calls for the same block header, because each call\n /// will add duplicate constraints.\n ///\n /// Calling this function is more expensive (constraint-wise) than getting the anchor block header (via\n /// `get_block_header`). This is because the anchor block's merkle membership proof is handled by Aztec's protocol\n /// circuits, and is only performed once for the entire tx because all private functions of a tx share a common\n /// anchor block header. Therefore, the cost (constraint-wise) of calling `get_block_header` is effectively free.\n ///\n pub fn get_block_header_at(self, block_number: u32) -> BlockHeader {\n get_block_header_at(block_number, self)\n }\n\n /// Sets the hash of the return values for this private function.\n ///\n /// Very low-level function: this is called by the #[external(\"private\")] macro.\n ///\n /// # Arguments\n /// * `serialized_return_values` - The serialized return values as a field array\n ///\n pub fn set_return_hash<let N: u32>(&mut self, serialized_return_values: [Field; N]) {\n let return_hash = hash_args(serialized_return_values);\n self.return_hash = return_hash;\n execution_cache::store(serialized_return_values, return_hash);\n }\n\n /// Builds the PrivateCircuitPublicInputs for this private function, to ensure compatibility with the protocol's\n /// kernel circuits.\n ///\n /// Very low-level function: This function is automatically called by the #[external(\"private\")] macro.\n pub fn finish(self) -> PrivateCircuitPublicInputs {\n PrivateCircuitPublicInputs {\n call_context: self.inputs.call_context,\n args_hash: self.args_hash,\n returns_hash: self.return_hash,\n min_revertible_side_effect_counter: self.min_revertible_side_effect_counter,\n is_fee_payer: self.is_fee_payer,\n expiration_timestamp: self.expiration_timestamp,\n note_hash_read_requests: ClaimedLengthArray::from_bounded_vec(self.note_hash_read_requests),\n nullifier_read_requests: ClaimedLengthArray::from_bounded_vec(self.nullifier_read_requests),\n key_validation_requests_and_separators: ClaimedLengthArray::from_bounded_vec(\n self.key_validation_requests_and_separators,\n ),\n note_hashes: ClaimedLengthArray::from_bounded_vec(self.note_hashes),\n nullifiers: ClaimedLengthArray::from_bounded_vec(self.nullifiers),\n private_call_requests: ClaimedLengthArray::from_bounded_vec(self.private_call_requests),\n public_call_requests: ClaimedLengthArray::from_bounded_vec(self.public_call_requests),\n public_teardown_call_request: self.public_teardown_call_request,\n l2_to_l1_msgs: ClaimedLengthArray::from_bounded_vec(self.l2_to_l1_msgs),\n start_side_effect_counter: self.inputs.start_side_effect_counter,\n end_side_effect_counter: self.side_effect_counter,\n private_logs: ClaimedLengthArray::from_bounded_vec(self.private_logs),\n contract_class_logs_hashes: ClaimedLengthArray::from_bounded_vec(self.contract_class_logs_hashes),\n anchor_block_header: self.anchor_block_header,\n tx_context: self.inputs.tx_context,\n expected_non_revertible_side_effect_counter: self.expected_non_revertible_side_effect_counter,\n expected_revertible_side_effect_counter: self.expected_revertible_side_effect_counter,\n }\n }\n\n /// Designates this contract as the fee payer for the transaction.\n ///\n /// Unlike Ethereum, where the transaction sender always pays fees, Aztec allows any contract to voluntarily pay\n /// transaction fees. This enables patterns like sponsored transactions or fee abstraction where users don't need\n /// to hold fee-juice themselves. (Fee juice is a fee-paying asset for Aztec).\n ///\n /// Only one contract per transaction can declare itself as the fee payer, and it must have sufficient fee-juice\n /// balance (>= the gas limits specified in the TxContext) by the time we reach the public setup phase of the tx.\n ///\n pub fn set_as_fee_payer(&mut self) {\n aztecnr_trace_log_format!(\"Setting {0} as fee payer\")([self.this_address().to_field()]);\n self.is_fee_payer = true;\n }\n\n pub fn in_revertible_phase(&mut self) -> bool {\n let current_counter = self.side_effect_counter;\n\n // Safety: Kernel will validate that the claim is correct by validating the expected counters.\n let is_revertible = unsafe { is_execution_in_revertible_phase(current_counter) };\n\n if is_revertible {\n if (self.expected_revertible_side_effect_counter == 0)\n | (current_counter < self.expected_revertible_side_effect_counter) {\n self.expected_revertible_side_effect_counter = current_counter;\n }\n } else if current_counter > self.expected_non_revertible_side_effect_counter {\n self.expected_non_revertible_side_effect_counter = current_counter;\n }\n\n is_revertible\n }\n\n /// Declares the end of the \"setup phase\" of this tx.\n ///\n /// Only one function per tx can declare the end of the setup phase.\n ///\n /// Niche function: Only wallet developers and paymaster contract developers (aka Fee-payment contracts) will need\n /// to make use of this function.\n ///\n /// Aztec supports a three-phase execution model: setup, app logic, teardown. The phases exist to enable a fee\n /// payer to take on the risk of paying a transaction fee, safe in the knowledge that their payment (in whatever\n /// token or method the user chooses) will succeed, regardless of whether the app logic will succeed. The \"setup\"\n /// phase enables such a payment to be made, because the setup phase _cannot revert_: a reverting function within\n /// the setup phase would result in an invalid block which cannot be proven. Any side-effects generated during that\n /// phase are guaranteed to be inserted into Aztec's state trees (except for squashed notes & nullifiers, of\n /// course).\n ///\n /// Even though the end of the setup phase is declared within a private function, you might have noticed that\n /// _public_ functions can also execute within the setup phase. This is because any public function calls which\n /// were enqueued _within the setup phase_ by a private function are considered part of the setup phase.\n ///\n /// # Advanced\n /// * Sets the minimum revertible side effect counter of this tx to be the PrivateContext's _current_ side effect\n /// counter.\n ///\n pub fn end_setup(&mut self) {\n // We bump the counter twice: once so that `min_revertible_side_effect_counter` sits strictly above any\n // non-revertible side effect counter (including queries made via `in_revertible_phase` before this call), and\n // once more so that the next revertible side effect counter is strictly greater than\n // `min_revertible_side_effect_counter`. This ensures `min_revertible_side_effect_counter` occupies a gap that\n // no side effect takes, which the kernel relies on when validating the phase split.\n self.side_effect_counter += 1;\n self.min_revertible_side_effect_counter = self.side_effect_counter;\n self.side_effect_counter += 1;\n\n aztecnr_trace_log_format!(\n \"Ending setup, minimum revertible side effect counter is {0}\",\n )(\n [self.min_revertible_side_effect_counter as Field],\n );\n notify_revertible_phase_start(self.min_revertible_side_effect_counter);\n }\n\n /// Sets a deadline (an \"include-by timestamp\") for when this transaction must be included in a block.\n ///\n /// Other functions in this tx might call this setter with differing values for the include-by timestamp. To ensure\n /// that all functions' deadlines are met, the _minimum_ of all these include-by timestamps will be exposed when\n /// this tx is submitted to the network.\n ///\n /// If the transaction is not included in a block by its include-by timestamp, it becomes invalid and it will never\n /// be included.\n ///\n /// This expiry timestamp is publicly visible. See the \"Advanced\" section for privacy concerns.\n ///\n /// # Arguments\n /// * `expiration_timestamp` - Unix timestamp (seconds) deadline for inclusion. The include-by timestamp of this tx\n /// will be _at most_ the timestamp specified.\n ///\n /// # Advanced\n /// * If multiple functions set differing `expiration_timestamp`s, the kernel circuits will set it to be the\n /// _minimum_ of the two. This ensures the tx expiry requirements of all functions in the tx are met.\n /// * Rollup circuits will reject expired txs.\n /// * The protocol enforces that all transactions must be included within 24 hours of their chosen anchor block's\n /// timestamp, to enable safe mempool pruning.\n /// * The DelayedPublicMutable design makes heavy use of this functionality, to enable private functions to read\n /// public state.\n /// * A sophisticated Wallet should cleverly set an include-by timestamp to improve the privacy of the user and the\n /// network as a whole. For example, if a contract interaction sets include-by to some publicly-known value (e.g.\n /// the time when a contract upgrades), then the wallet might wish to set an even lower one to avoid revealing that\n /// this tx is interacting with said contract. Ideally, all wallets should standardize on an approach in order to\n /// provide users with a large privacy set -- although the exact approach\n /// will need to be discussed. Wallets that deviate from a standard might accidentally reveal which wallet each\n /// transaction originates from.\n ///\n // docs:start:expiration-timestamp\n pub fn set_expiration_timestamp(&mut self, expiration_timestamp: u64) {\n // docs:end:expiration-timestamp\n self.expiration_timestamp = std::cmp::min(self.expiration_timestamp, expiration_timestamp);\n }\n\n /// Asserts that a note has been created.\n ///\n /// This function will cause the transaction to fail unless the requested note exists. This is the preferred\n /// mechanism for performing this check, and the only one that works for pending notes.\n ///\n /// ## Pending Notes\n ///\n /// Both settled notes (created in prior transactions) and pending notes (created in the current transaction) will\n /// be considered by this function. Pending notes must have been created **before** this call is made for the check\n /// to pass.\n ///\n /// ## Historical Notes\n ///\n /// If you need to assert that a note existed _by some specific block in the past_, instead of simply proving that\n /// it exists by the current anchor block, use [`crate::history::note::assert_note_existed_by`] instead.\n ///\n /// ## Cost\n ///\n /// This uses up one of the call's kernel note hash read requests, which are limited. Like all kernel requests,\n /// proving time costs are only incurred when the total number of requests exceeds the kernel's capacity, requiring\n /// an additional invocation of the kernel reset circuit.\n pub fn assert_note_exists(&mut self, note_existence_request: NoteExistenceRequest) {\n // Note that the `note_hash_read_requests` array does not hold `NoteExistenceRequest` objects, but rather a\n // custom kernel type. We convert from the aztec-nr type into it.\n\n let note_hash = note_existence_request.note_hash();\n let contract_address = note_existence_request.maybe_contract_address().unwrap_or(AztecAddress::zero());\n\n let side_effect = Scoped::new(\n Counted::new(note_hash, self.next_counter()),\n contract_address,\n );\n\n self.note_hash_read_requests.push(side_effect);\n }\n\n /// Asserts that a nullifier has been emitted.\n ///\n /// This function will cause the transaction to fail unless the requested nullifier exists. This is the preferred\n /// mechanism for performing this check, and the only one that works for pending nullifiers.\n ///\n /// ## Pending Nullifiers\n ///\n /// Both settled nullifiers (emitted in prior transactions) and pending nullifiers (emitted in the current\n /// transaction) will be considered by this function. Pending nullifiers must have been emitted **before** this\n /// call is made for the check to pass.\n ///\n /// ## Historical Nullifiers\n ///\n /// If you need to assert that a nullifier existed _by some specific block in the past_, instead of simply proving\n /// that it exists by the current anchor block, use [`crate::history::nullifier::assert_nullifier_existed_by`]\n /// instead.\n ///\n /// ## Public vs Private\n ///\n /// In general, it is unsafe to check for nullifier non-existence in private, as that will not consider the\n /// possibility of the nullifier having been emitted in any transaction between the anchor block and the inclusion\n /// block. Private functions instead prove existence via this function and 'prove' non-existence by _emitting_ the\n /// nullifer, which would cause the transaction to fail if the nullifier existed.\n ///\n /// This is not the case in public functions, which do have access to the tip of the blockchain and so can reliably\n /// prove whether a nullifier exists or not via\n /// [`crate::context::public_context::PublicContext::nullifier_exists_unsafe`].\n ///\n /// ## Cost\n ///\n /// This uses up one of the call's kernel nullifier read requests, which are limited. Like all kernel requests,\n /// proving time costs are only incurred when the total number of requests exceeds the kernel's capacity, requiring\n /// an additional invocation of the kernel reset circuit.\n pub fn assert_nullifier_exists(&mut self, nullifier_existence_request: NullifierExistenceRequest) {\n let nullifier = nullifier_existence_request.nullifier();\n let contract_address = nullifier_existence_request.maybe_contract_address().unwrap_or(AztecAddress::zero());\n\n let request = Scoped::new(\n Counted::new(nullifier, self.next_counter()),\n contract_address,\n );\n\n self.nullifier_read_requests.push(request);\n }\n\n /// Requests the app-siloed nullifier hiding key (nhk_app) for the given (hashed) master nullifier public key\n /// (npk_m), from the user's PXE.\n ///\n /// Advanced function: Only needed if you're designing your own notes and/or nullifiers.\n ///\n /// Contracts are not allowed to compute nullifiers for other contracts, as that would let them read parts of their\n /// private state. Because of this, a contract is only given an \"app-siloed key\", which is constructed by\n /// hashing the user's master nullifier hiding key with the contract's address. However, because contracts cannot\n /// be trusted with a user's master nullifier hiding key (because we don't know which contracts are honest or\n /// malicious), the PXE refuses to provide any master secret keys to any app smart contract function. This means\n /// app functions are unable to prove that the derivation of an app-siloed nullifier hiding key has been computed\n /// correctly. Instead, an app function can request to the kernel (via `request_nhk_app`) that it validates the\n /// siloed derivation, since the kernel has been vetted to not leak any master secret keys.\n ///\n /// A common nullification scheme is to inject a nullifier hiding key into the preimage of a nullifier, to make the\n /// nullifier deterministic but random-looking. This function enables that flow.\n ///\n /// # Arguments\n /// * `npk_m_hash` - A hash of the master nullifier public key of the user whose PXE is executing this function.\n ///\n /// # Returns\n /// * The app-siloed nullifier hiding key that corresponds to the given `npk_m_hash`.\n ///\n pub fn request_nhk_app(&mut self, npk_m_hash: Field) -> Field {\n self.request_sk_app(npk_m_hash, NULLIFIER_INDEX)\n }\n\n /// Requests the app-siloed outgoing viewing secret key (ovsk_app) for the given (hashed) master outgoing\n /// viewing public key (ovpk_m), from the user's PXE.\n ///\n /// See `request_nhk_app` and `request_sk_app` for more info.\n ///\n /// The intention of the \"outgoing\" keypair is to provide a second secret key for all of a user's outgoing activity\n /// (i.e. for notes that a user creates, as opposed to notes that a user receives from others). The separation of\n /// incoming and outgoing data was a distinction made by zcash, with the intention of enabling a user to optionally\n /// share with a 3rd party a controlled view of only incoming or outgoing notes. Similar functionality of sharing\n /// select data can be achieved with offchain zero-knowledge proofs. It is up to an app developer whether they\n /// choose to make use of a user's outgoing keypair within their application logic, or instead simply use the same\n /// keypair (the address keypair (which is effectively the same as the \"incoming\" keypair)) for all incoming &\n /// outgoing messages to a user.\n ///\n /// Currently, all of the exposed encryption functions in aztec-nr ignore the outgoing viewing keys, and instead\n /// encrypt all note logs and event logs to a user's address public key.\n ///\n /// # Arguments\n /// * `ovpk_m_hash` - Hash of the outgoing viewing public key master\n ///\n /// # Returns\n /// * The application-specific outgoing viewing secret key\n ///\n pub fn request_ovsk_app(&mut self, ovpk_m_hash: Field) -> Field {\n self.request_sk_app(ovpk_m_hash, OUTGOING_INDEX)\n }\n\n /// Pushes a Key Validation Request to the kernel.\n ///\n /// Private functions are not allowed to see a user's master secret keys, because we do not trust them. They are\n /// instead given \"app-siloed\" secret keys with a claim that they relate to a master public key. They can then\n /// request validation of this claim, by making a \"key validation request\" to the protocol's kernel circuits (which\n /// _are_ allowed to see certain master secret keys).\n ///\n /// The app circuit only sees `pk_m_hash` (not the raw point). The kernel derives the\n /// point from `sk_m`, hashes it, and asserts equality. When a Key Validation Request tuple of\n /// (sk_app, pk_m_hash, app_address) is submitted to the kernel, it performs the following\n /// derivations to validate the relationship between the claimed sk_app and the user's pk_m_hash:\n ///\n /// (sk_m) ----> * G ----> pk_m ----> hash_public_key(pk_m)\n /// | |\n /// v | We use the kernel to prove this\n /// h(sk_m, app_address) | sk_app-pk_m_hash relationship, because app\n /// | | circuits must not be trusted to see sk_m.\n /// v |\n /// sk_app - - - - - - - - - - - - - - - - - -\n ///\n /// The function is named \"request_\" instead of \"get_\" to remind the user that a Key Validation Request will be\n /// emitted to the kernel.\n ///\n fn request_sk_app(&mut self, pk_m_hash: Field, key_index: Field) -> Field {\n // Match against the cache only when a request is actually present in the slot.\n let cached_slot = self.last_key_validation_requests[key_index as u32];\n let cache_hit = cached_slot.is_some() & (cached_slot.unwrap_unchecked().pk_m_hash == pk_m_hash);\n\n if cache_hit {\n // We get a match so the cached request is the latest one\n cached_slot.unwrap_unchecked().sk_app\n } else {\n // We didn't get a match meaning the cached result is stale. Typically we'd validate keys by showing that\n // the master secret key derives to a public key matching `pk_m_hash`, but that'd require the oracle\n // returning the master secret keys, which could cause malicious contracts to leak it or learn about\n // secrets from other contracts. We therefore silo secret keys, and rely on the private kernel to validate\n // that the siloed secret key corresponds to correct siloing of the master secret key that hashes to\n // `pk_m_hash`.\n\n // Safety: Kernels verify that the key validation request is valid and below we verify that a request for\n // the correct public key has been received.\n let request = unsafe { get_key_validation_request(pk_m_hash, key_index) };\n assert_eq(request.pk_m_hash, pk_m_hash, \"Obtained key validation request for wrong pk_m_hash\");\n\n self.key_validation_requests_and_separators.push(\n KeyValidationRequestAndSeparator {\n request,\n key_type_domain_separator: public_key_domain_separators[key_index as u32],\n },\n );\n self.last_key_validation_requests[key_index as u32] = Option::some(request);\n request.sk_app\n }\n }\n\n /// Sends an \"L2 -> L1 message\" from this function (Aztec, L2) to a smart contract on Ethereum (L1). L1 contracts\n /// which are designed to send/receive messages to/from Aztec are called \"Portal Contracts\".\n ///\n /// Common use cases include withdrawals, cross-chain asset transfers, and triggering L1 actions based on L2 state\n /// changes.\n ///\n /// The message will be inserted into an Aztec \"Outbox\" contract on L1, when this transaction's block is proposed\n /// to L1. Sending the message will not result in any immediate state changes in the target portal contract. The\n /// message will need to be manually consumed from the Outbox through a separate Ethereum transaction: a user will\n /// need to call a function of the portal contract -- a function specifically designed to make a call to the Outbox\n /// to consume the message. The message will only be available for consumption once the _epoch_ proof has been\n /// submitted. Given that there are multiple Aztec blocks within an epoch, it might take some time for this epoch\n /// proof to be submitted -- especially if the block was near the start of an epoch.\n ///\n /// # Arguments\n /// * `recipient` - Ethereum address that will receive the message\n /// * `content` - Message content (32 bytes as a Field element). This content has a very\n /// specific layout. docs:start:context_message_portal\n pub fn message_portal(&mut self, recipient: EthAddress, content: Field) {\n let message = L2ToL1Message { recipient, content };\n self.l2_to_l1_msgs.push(message.count(self.next_counter()));\n }\n\n /// Consumes a message sent from Ethereum (L1) to Aztec (L2).\n ///\n /// Common use cases include token bridging, cross-chain governance, and triggering L2 actions based on L1 events.\n ///\n /// Use this function if you only want the message to ever be \"referred to\" once. Once consumed using this method,\n /// the message cannot be consumed again, because a nullifier is emitted. If your use case wants for the message to\n /// be read unlimited times, then you can always read any historic message from the L1-to-L2 messages tree;\n /// messages never technically get deleted from that tree.\n ///\n /// The message will first be inserted into an Aztec \"Inbox\" smart contract on L1. Sending the message will not\n /// result in any immediate state changes in the target L2 contract. The message will need to be manually consumed\n /// by the target contract through a separate Aztec transaction. The message will not be available for consumption\n /// immediately. Messages get copied over from the L1 Inbox to L2 by the next Proposer in batches. So you will need\n /// to wait until the messages are copied before you can consume them.\n ///\n /// # Arguments\n /// * `content` - The message content that was sent from L1\n /// * `secret` - Secret value used for message privacy (if needed)\n /// * `sender` - Ethereum address that sent the message\n /// * `leaf_index` - Index of the message in the L1-to-L2 message tree\n ///\n /// # Advanced\n /// Validates message existence in the L1-to-L2 message tree and nullifies the message to prevent\n /// double-consumption.\n pub fn consume_l1_to_l2_message(&mut self, content: Field, secret: Field, sender: EthAddress, leaf_index: Field) {\n let nullifier = process_l1_to_l2_message(\n self.anchor_block_header.state.l1_to_l2_message_tree.root,\n self.this_address(),\n sender,\n self.chain_id(),\n self.version(),\n content,\n secret,\n leaf_index,\n );\n\n // Push nullifier (and the \"commitment\" corresponding to this can be \"empty\")\n self.push_nullifier_unsafe(nullifier)\n }\n\n /// Emits a private log (an array of Fields) that will be published to an Ethereum blob.\n ///\n /// Private logs are intended for the broadcasting of ciphertexts: that is, encrypted events or encrypted note\n /// contents. Since the data in the logs is meant to be _encrypted_, private_logs are broadcast to publicly-visible\n /// Ethereum blobs. The intended recipients of such encrypted messages can then discover and decrypt these\n /// encrypted logs using their viewing secret key. (See `../messages/discovery` for more details).\n ///\n /// Important note: This function DOES NOT _do_ any encryption of the input `log` fields. This function blindly\n /// publishes whatever input `log` data is fed into it, so the caller of this function should have already\n /// performed the encryption, and the `log` should be the result of that encryption.\n ///\n /// The protocol does not dictate what encryption scheme should be used: a smart contract developer can choose\n /// whatever encryption scheme they like. Aztec-nr includes some off-the-shelf encryption libraries that developers\n /// might wish to use, for convenience. These libraries not only encrypt a plaintext (to produce a ciphertext);\n /// they also prepend the ciphertext with a `tag` and `ephemeral public key` for easier message discovery. This is\n /// a very dense topic, and we will be writing more libraries and docs soon.\n ///\n /// > Currently, AES128 CBC encryption is the main scheme included in > aztec.nr. > We are currently making\n /// significant changes to the interfaces of the > encryption library.\n ///\n /// In some niche use cases, an app might be tempted to publish _un-encrypted_ data via a private log, because\n /// _public logs_ are not available to private functions. Be warned that emitting public data via private logs is\n /// strongly discouraged, and is considered a \"privacy anti-pattern\", because it reveals identifiable information\n /// about _which_ function has been executed. A tx which leaks such information does not contribute to the privacy\n /// set of the network.\n ///\n /// * Unlike `emit_raw_note_log_unsafe`, this log is not tied to any specific note\n ///\n /// # Arguments\n /// * `tag` - A tag placed at `fields[0]` of the emitted log. Used by recipients and nodes to identify and\n /// filter for relevant logs without scanning all of them.\n /// * `log` - The log data that will be publicly broadcast (so make sure it's already been encrypted before you\n /// call this function). Private logs are bounded in size (`PRIVATE_LOG_CIPHERTEXT_LEN`), to encourage all logs\n /// from all smart contracts look identical. The protocol's kernel circuits can then append random fields as\n /// \"padding\" after the log's length, so that the logs of this smart contract look indistinguishable from (the\n /// same length as) the logs of all other applications. It's up to wallets how much padding to apply, so\n /// ideally all wallets should agree on standards for this.\n ///\n /// ## Safety\n ///\n /// The `tag` should be domain-separated (e.g. via [`crate::protocol::hash::compute_log_tag`]) to prevent\n /// collisions between logs from different sources. Without domain separation, two unrelated log types that\n /// happen to share a raw tag value become indistinguishable. Prefer the higher-level APIs\n /// ([`crate::messages::message_delivery::MessageDelivery`] for messages, `self.emit(event)` for events) which\n /// handle tagging automatically.\n pub fn emit_private_log_unsafe(&mut self, tag: Field, log: BoundedVec<Field, PRIVATE_LOG_CIPHERTEXT_LEN>) {\n self.emit_raw_note_log_unsafe(tag, log, 0);\n }\n\n /// Emits a private log that is explicitly tied to a newly-emitted note_hash, to convey to the kernel: \"this log\n /// relates to this note\".\n ///\n /// This linkage is important in case the note gets squashed (due to being read later in this same tx), since we\n /// can then squash the log as well.\n ///\n /// See [`emit_private_log_unsafe`](PrivateContext::emit_private_log_unsafe) for more info about private log\n /// emission.\n ///\n /// # Arguments\n /// * `tag` - A tag placed at `fields[0]`. See\n /// [`emit_private_log_unsafe`](PrivateContext::emit_private_log_unsafe).\n /// * `log` - The log data as a `BoundedVec` of Field elements.\n /// * `note_hash_counter` - The side-effect counter that was assigned to the new note_hash when it was pushed to\n /// this `PrivateContext`.\n ///\n /// Important: If your application logic requires the log to always be emitted regardless of note squashing,\n /// consider using [`emit_private_log_unsafe`](PrivateContext::emit_private_log_unsafe) instead, or emitting\n /// additional events.\n ///\n /// ## Safety\n ///\n /// Same as [`PrivateContext::emit_private_log_unsafe`]: the `tag` should be domain-separated.\n pub fn emit_raw_note_log_unsafe(\n &mut self,\n tag: Field,\n log: BoundedVec<Field, PRIVATE_LOG_CIPHERTEXT_LEN>,\n note_hash_counter: u32,\n ) {\n let counter = self.next_counter();\n let full_log = [tag].concat(log.storage());\n let private_log = PrivateLogData { log: PrivateLog::new(full_log, log.len() + 1), note_hash_counter };\n self.private_logs.push(private_log.count(counter));\n }\n\n /// Emits large data blobs.\n ///\n /// This reuses the Contract Class Log channel to emit blobs of up to [`CONTRACT_CLASS_LOG_SIZE_IN_FIELDS`].\n ///\n /// ## Privacy\n ///\n /// The address of the contract emitting these blobs is revelead.\n pub fn emit_contract_class_log<let N: u32>(&mut self, log: [Field; N]) {\n let contract_address = self.this_address();\n let counter = self.next_counter();\n\n let log_to_emit: [Field; CONTRACT_CLASS_LOG_SIZE_IN_FIELDS] =\n log.concat([0; CONTRACT_CLASS_LOG_SIZE_IN_FIELDS - N]);\n // Note: the length is not always N, it is the number of fields we want to broadcast, omitting trailing zeros\n // to save blob space.\n // Safety: The below length is constrained in the base rollup, which will make sure that all the fields beyond\n // length are zero. However, it won't be able to check that we didn't add extra padding (trailing zeroes) or\n // that we cut trailing zeroes from the end.\n let length = unsafe { trimmed_array_length_hint(log) };\n // We hash the entire padded log to ensure a user cannot pass a shorter length and so emit incorrect shorter\n // bytecode.\n let log_hash = compute_contract_class_log_hash(log_to_emit);\n // Safety: the below only exists to broadcast the raw log, so we can provide it to the base rollup later to be\n // constrained.\n unsafe {\n notify_created_contract_class_log(contract_address, log_to_emit, length, counter);\n }\n\n self.contract_class_logs_hashes.push(LogHash { value: log_hash, length: length }.count(counter));\n }\n\n /// Calls a private function on another contract (or the same contract).\n ///\n /// Very low-level function.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args` - Array of arguments to pass to the called function\n ///\n /// # Returns\n /// * `ReturnsHash` - Hash of the called function's return values. Use `.get_preimage()` to extract the actual\n /// return values.\n ///\n /// This enables contracts to interact with each other while maintaining privacy. This \"composability\" of private\n /// contract functions is a key feature of the Aztec network.\n ///\n /// If a user's transaction includes multiple private function calls, then by the design of Aztec, the following\n /// information will remain private[1]:\n /// - The function selectors and contract addresses of all private function calls will remain private, so an\n /// observer of the public mempool will not be able to look at a tx and deduce which private functions have been\n /// executed.\n /// - The arguments and return values of all private function calls will remain private.\n /// - The person who initiated the tx will remain private.\n /// - The notes and nullifiers and private logs that are emitted by all private function calls will (if designed\n /// well) not leak any user secrets, nor leak which functions have been executed.\n ///\n /// [1] Caveats: Some of these privacy guarantees depend on how app developers design their smart contracts. Some\n /// actions _can_ leak information, such as:\n /// - Calling an internal public function.\n /// - Calling a public function and not setting msg_sender to Option::none (feature not built yet - see github).\n /// - Calling any public function will always leak details about the nature of the transaction, so devs should be\n /// careful in their contract designs. If it can be done in a private function, then that will give the best\n /// privacy.\n /// - Not padding the side-effects of a tx to some standardized, uniform size. The kernel circuits can take hints\n /// to pad side-effects, so a wallet should be able to request for a particular amount of padding. Wallets should\n /// ideally agree on some standard.\n /// - Padding should include:\n /// - Padding the lengths of note & nullifier arrays\n /// - Padding private logs with random fields, up to some standardized size. See also:\n /// https://docs.aztec.network/developers/resources/considerations/privacy_considerations\n ///\n /// # Advanced\n /// * The call is added to the private call stack and executed by kernel circuits after this function completes\n /// * The called function can modify its own contract's private state\n /// * Side effects from the called function are included in this transaction\n /// * The call inherits the current transaction's context and gas limits\n ///\n pub fn call_private_function<let ArgsCount: u32>(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args: [Field; ArgsCount],\n ) -> ReturnsHash {\n let args_hash = hash_args(args);\n execution_cache::store(args, args_hash);\n self.call_private_function_with_args_hash(contract_address, function_selector, args_hash, false)\n }\n\n /// Makes a read-only call to a private function on another contract.\n ///\n /// This is similar to Solidity's `staticcall`. The called function cannot modify state, emit L2->L2 messages, nor\n /// emit events. Any nested calls are constrained to also be staticcalls.\n ///\n /// See `call_private_function` for more general info on private function calls.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract to call\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args` - Array of arguments to pass to the called function\n ///\n /// # Returns\n /// * `ReturnsHash` - Hash of the called function's return values. Use `.get_preimage()` to extract the actual\n /// return values.\n ///\n pub fn static_call_private_function<let ArgsCount: u32>(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args: [Field; ArgsCount],\n ) -> ReturnsHash {\n let args_hash = hash_args(args);\n execution_cache::store(args, args_hash);\n self.call_private_function_with_args_hash(contract_address, function_selector, args_hash, true)\n }\n\n /// Calls a private function that takes no arguments.\n ///\n /// This is a convenience function for calling private functions that don't require any input parameters. It's\n /// equivalent to `call_private_function` but slightly more efficient to use when no arguments are needed.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n ///\n /// # Returns\n /// * `ReturnsHash` - Hash of the called function's return values. Use `.get_preimage()` to extract the actual\n /// return values.\n ///\n pub fn call_private_function_no_args(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n ) -> ReturnsHash {\n self.call_private_function_with_args_hash(contract_address, function_selector, 0, false)\n }\n\n /// Makes a read-only call to a private function which takes no arguments.\n ///\n /// This combines the optimisation of `call_private_function_no_args` with the safety of\n /// `static_call_private_function`.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n ///\n /// # Returns\n /// * `ReturnsHash` - Hash of the called function's return values. Use `.get_preimage()` to extract the actual\n /// return values.\n ///\n pub fn static_call_private_function_no_args(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n ) -> ReturnsHash {\n self.call_private_function_with_args_hash(contract_address, function_selector, 0, true)\n }\n\n /// Low-level private function call.\n ///\n /// This is the underlying implementation used by all other private function call methods. Instead of taking raw\n /// arguments, it accepts a hash of the arguments.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args_hash` - Pre-computed hash of the function arguments\n /// * `is_static_call` - Whether this should be a read-only call\n ///\n /// # Returns\n /// * `ReturnsHash` - Hash of the called function's return values\n ///\n pub fn call_private_function_with_args_hash(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args_hash: Field,\n is_static_call: bool,\n ) -> ReturnsHash {\n let is_static_call = is_static_call | self.inputs.call_context.is_static_call;\n let start_side_effect_counter = self.side_effect_counter;\n\n // Safety: The oracle simulates the private call and returns the value of the side effects counter after\n // execution of the call (which means that end_side_effect_counter - start_side_effect_counter is the number of\n // side effects that took place), along with the hash of the return values. We validate these by requesting a\n // private kernel iteration in which the return values are constrained to hash to `returns_hash` and the side\n // effects counter to increment from start to end.\n let (end_side_effect_counter, returns_hash) = unsafe {\n call_private_function_internal(\n contract_address,\n function_selector,\n args_hash,\n start_side_effect_counter,\n is_static_call,\n )\n };\n\n self.private_call_requests.push(\n PrivateCallRequest {\n call_context: CallContext {\n msg_sender: self.this_address(),\n contract_address,\n function_selector,\n is_static_call,\n },\n args_hash,\n returns_hash,\n start_side_effect_counter,\n end_side_effect_counter,\n },\n );\n\n // The kernel circuits ensure that end_side_effect_counter is greater than start_side_effect_counter, and that\n // all side effects emitted in the child call have counters within the range [start_side_effect_counter,\n // end_side_effect_counter]. Therefore, we only need to ensure that the next side effect from the current call\n // starts after the end side effect from the child call.\n self.side_effect_counter = end_side_effect_counter + 1;\n\n ReturnsHash::new(returns_hash)\n }\n\n /// Enqueues a call to a public function to be executed later.\n ///\n /// Unlike private functions which execute immediately on the user's device, public function calls are \"enqueued\"\n /// and executed some time later by a block proposer.\n ///\n /// This means a public function cannot return any values back to a private function, because by the time the\n /// public function is being executed, the private function which called it has already completed execution. (In\n /// fact, the private function has been executed and proven, along with all other private function calls of the\n /// user's tx. A single proof of the tx has been submitted to the Aztec network, and some time later a proposer has\n /// picked the tx up from the mempool and begun executing all of the enqueued public functions).\n ///\n /// # Privacy warning Enqueueing a public function call is an inherently leaky action. Many interesting applications will require some interaction with public state, but smart contract developers should try to use public function calls sparingly, and carefully. _Internal_ public function calls are especially leaky, because they completely leak which private contract made the call. See also: https://docs.aztec.network/developers/resources/considerations/privacy_considerations\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args` - Array of arguments to pass to the public function\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn call_public_function<let ArgsCount: u32>(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args: [Field; ArgsCount],\n hide_msg_sender: bool,\n ) {\n let calldata = [function_selector.to_field()].concat(args);\n let calldata_hash = hash_calldata_array(calldata);\n execution_cache::store(calldata, calldata_hash);\n self.call_public_function_with_calldata_hash(contract_address, calldata_hash, false, hide_msg_sender)\n }\n\n /// Enqueues a read-only call to a public function.\n ///\n /// This is similar to Solidity's `staticcall`. The called function cannot modify state or emit events. Any nested\n /// calls are constrained to also be staticcalls.\n ///\n /// See also `call_public_function` for more important information about making private -> public function calls.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args` - Array of arguments to pass to the public function\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn static_call_public_function<let ArgsCount: u32>(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args: [Field; ArgsCount],\n hide_msg_sender: bool,\n ) {\n let calldata = [function_selector.to_field()].concat(args);\n let calldata_hash = hash_calldata_array(calldata);\n execution_cache::store(calldata, calldata_hash);\n self.call_public_function_with_calldata_hash(contract_address, calldata_hash, true, hide_msg_sender)\n }\n\n /// Enqueues a call to a public function that takes no arguments.\n ///\n /// This is an optimisation for calling public functions that don't take any input parameters. It's otherwise\n /// equivalent to `call_public_function`.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn call_public_function_no_args(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n hide_msg_sender: bool,\n ) {\n let calldata_hash = hash_calldata_array([function_selector.to_field()]);\n self.call_public_function_with_calldata_hash(contract_address, calldata_hash, false, hide_msg_sender)\n }\n\n /// Enqueues a read-only call to a public function with no arguments.\n ///\n /// This combines the optimisation of `call_public_function_no_args` with the safety of\n /// `static_call_public_function`.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn static_call_public_function_no_args(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n hide_msg_sender: bool,\n ) {\n let calldata_hash = hash_calldata_array([function_selector.to_field()]);\n self.call_public_function_with_calldata_hash(contract_address, calldata_hash, true, hide_msg_sender)\n }\n\n /// Low-level public function call.\n ///\n /// This is the underlying implementation used by all other public function call methods. Instead of taking raw\n /// arguments, it accepts a hash of the arguments.\n ///\n /// Advanced function: Most developers should use `call_public_function` or `static_call_public_function` instead.\n /// This function is exposed for performance optimization and advanced use cases.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the function\n /// * `calldata_hash` - Hash of the function calldata\n /// * `is_static_call` - Whether this should be a read-only call\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn call_public_function_with_calldata_hash(\n &mut self,\n contract_address: AztecAddress,\n calldata_hash: Field,\n is_static_call: bool,\n hide_msg_sender: bool,\n ) {\n let counter = self.next_counter();\n\n let is_static_call = is_static_call | self.inputs.call_context.is_static_call;\n\n assert_valid_public_call_data(calldata_hash);\n\n let msg_sender = if hide_msg_sender {\n NULL_MSG_SENDER_CONTRACT_ADDRESS\n } else {\n self.this_address()\n };\n\n let call_request = PublicCallRequest { msg_sender, contract_address, is_static_call, calldata_hash };\n\n self.public_call_requests.push(Counted::new(call_request, counter));\n }\n\n /// Enqueues a public function call, and designates it to be the teardown function for this tx. Only one teardown\n /// function call can be made by a tx.\n ///\n /// Niche function: Only wallet developers and paymaster contract developers (aka Fee-payment contracts) will need\n /// to make use of this function.\n ///\n /// Aztec supports a three-phase execution model: setup, app logic, teardown. The phases exist to enable a fee\n /// payer to take on the risk of paying a transaction fee, safe in the knowledge that their payment (in whatever\n /// token or method the user chooses) will succeed, regardless of whether the app logic will succeed. The \"setup\"\n /// phase ensures the fee payer has sufficient balance to pay the proposer their fees. The teardown phase is\n /// primarily intended to: calculate exactly how much the user owes, based on gas consumption, and refund the user\n /// any change.\n ///\n /// Note: in some cases, the cost of refunding the user (i.e. DA costs of tx side-effects) might exceed the refund\n /// amount. For app logic with fairly stable and predictable gas consumption, a material refund amount is unlikely.\n /// For app logic with unpredictable gas consumption, a refund might be important to the user (e.g. if a hefty\n /// function reverts very early). Wallet/FPC/Paymaster developers should be mindful of this.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the teardown function\n /// * `function_selector` - 4-byte identifier of the function to call\n /// * `args` - An array of fields to pass to the function.\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n pub fn set_public_teardown_function<let ArgsCount: u32>(\n &mut self,\n contract_address: AztecAddress,\n function_selector: FunctionSelector,\n args: [Field; ArgsCount],\n hide_msg_sender: bool,\n ) {\n let calldata = [function_selector.to_field()].concat(args);\n let calldata_hash = hash_calldata_array(calldata);\n execution_cache::store(calldata, calldata_hash);\n self.set_public_teardown_function_with_calldata_hash(contract_address, calldata_hash, false, hide_msg_sender)\n }\n\n /// Low-level function to set the public teardown function.\n ///\n /// This is the underlying implementation for setting the teardown function call that will execute at the end of\n /// the transaction. Instead of taking raw arguments, it accepts a hash of the arguments.\n ///\n /// Advanced function: Most developers should use `set_public_teardown_function` instead.\n ///\n /// # Arguments\n /// * `contract_address` - Address of the contract containing the teardown function\n /// * `calldata_hash` - Hash of the function calldata\n /// * `is_static_call` - Whether this should be a read-only call\n /// * `hide_msg_sender` - the called function will see a \"null\" value for `msg_sender` if set to `true`\n ///\n pub fn set_public_teardown_function_with_calldata_hash(\n &mut self,\n contract_address: AztecAddress,\n calldata_hash: Field,\n is_static_call: bool,\n hide_msg_sender: bool,\n ) {\n let is_static_call = is_static_call | self.inputs.call_context.is_static_call;\n\n assert_valid_public_call_data(calldata_hash);\n\n let msg_sender = if hide_msg_sender {\n NULL_MSG_SENDER_CONTRACT_ADDRESS\n } else {\n self.this_address()\n };\n\n self.public_teardown_call_request =\n PublicCallRequest { msg_sender, contract_address, is_static_call, calldata_hash };\n }\n\n /// Increments the side-effect counter.\n ///\n /// Very low-level function.\n ///\n /// # Advanced\n ///\n /// Every side-effect of a private function is given a \"side-effect counter\", based on when it is created. This\n /// PrivateContext is in charge of assigning the counters.\n ///\n /// The reason we have side-effect counters is complicated. Consider this illustrative pseudocode of inter-contract\n /// function calls:\n /// ```\n /// contract A {\n /// let x = 5; // pseudocode for storage var x.\n /// fn a1 {\n /// read x; // value: 5, counter: 1.\n /// x = x + 1;\n /// write x; // value: 6, counter: 2.\n ///\n /// B.b(); // start_counter: 2, end_counter: 4\n ///\n /// read x; // value: 36, counter: 5.\n /// x = x + 1;\n /// write x; // value: 37, counter: 6.\n /// }\n ///\n /// fn a2 {\n /// read x; // value: 6, counter: 3.\n /// x = x * x;\n /// write x; // value: 36, counter: 4.\n /// }\n /// }\n ///\n /// contract B {\n /// fn b() {\n /// A.a2();\n /// }\n /// }\n /// ```\n ///\n /// Suppose a1 is the first function called. The comments show the execution counter of each side-effect, and what\n /// the new value of `x` is.\n ///\n /// These (private) functions are processed by Aztec's kernel circuits in an order that is different from execution\n /// order: All of A.a1 is proven before B.b is proven, before A.a2 is proven. So when we're in the 2nd execution\n /// frame of A.a1 (after the call to B.b), the circuit needs to justify why x went from being `6` to `36`. But the\n /// circuit doesn't know why, and given the order of proving, the kernel hasn't _seen_ a value of 36 get written\n /// yet. The kernel needs to track big arrays of all side-effects of all private functions in a tx. Then, as it\n /// recurses and processes B.b(), it will eventually see a value of 36 get written.\n ///\n /// Suppose side-effect counters weren't exposed: The kernel would only see this ordering (in order of proof\n /// verification): [ A.a1.read, A.a1.write, A.a1.read, A.a1.write, A.a2.read, A.a2.write ]\n /// [ 5, 6, 36, 37, 6, 36 ]\n /// The kernel wouldn't know _when_ B.b() was called within A.a1(), because it can't see what's going on within an\n /// app circuit. So the kernel wouldn't know that the ordering of reads and writes should actually be: [ A.a1.read,\n /// A.a1.write, A.a2.read, A.a2.write, A.a1.read, A.a1.write ]\n /// [ 5, 6, 6, 36, 36, 37 ]\n ///\n /// And so, we introduced side-effect counters: every private function must assign side-effect counters alongside\n /// every side-effect that it emits, and also expose to the kernel the counters that it started and ended with.\n /// This gives the kernel enough information to arrange all side-effects in the correct order. It can then catch\n /// (for example) if a function tries to read state before it has been written (e.g. if A.a2() maliciously tried to\n /// read a value of x=37) (e.g. if A.a1() maliciously tried to read x=6).\n ///\n /// If a malicious app contract _lies_ and does not count correctly:\n /// - It cannot lie about its start and end counters because the kernel will catch this.\n /// - It _could_ lie about its intermediate counters:\n /// - 1. It could not increment its side-effects correctly\n /// - 2. It could label its side-effects with counters outside of its start and end counters' range. The kernel\n /// will catch 2. The kernel will not catch 1., but this would only cause corruption to the private state of the\n /// malicious contract, and not any other contracts (because a contract can only modify its own state). If a \"good\"\n /// contract is given _read access_ to a maliciously-counting contract (via an external getter function, or by\n /// reading historic state from the archive tree directly), and they then make state changes to their _own_ state\n /// accordingly, that could be dangerous. Developers should be mindful not to trust the claimed innards of external\n /// contracts unless they have audited/vetted the contracts including vetting the side-effect counter\n /// incrementation. This is a similar paradigm to Ethereum smart contract development: you must vet external\n /// contracts that your contract relies upon, and you must not make any presumptions about their claimed behaviour.\n /// (Hopefully if a contract imports a version of aztec-nr, we will get contract verification tooling that can\n /// validate the authenticity of the imported aztec-nr package, and hence infer that the side- effect counting will\n /// be correct, without having to re-audit such logic for every contract).\n ///\n fn next_counter(&mut self) -> u32 {\n let counter = self.side_effect_counter;\n self.side_effect_counter += 1;\n counter\n }\n}\n\nimpl Empty for PrivateContext {\n fn empty() -> Self {\n PrivateContext {\n inputs: PrivateContextInputs::empty(),\n side_effect_counter: 0 as u32,\n min_revertible_side_effect_counter: 0 as u32,\n is_fee_payer: false,\n args_hash: 0,\n return_hash: 0,\n expiration_timestamp: 0,\n note_hash_read_requests: BoundedVec::new(),\n nullifier_read_requests: BoundedVec::new(),\n key_validation_requests_and_separators: BoundedVec::new(),\n note_hashes: BoundedVec::new(),\n nullifiers: BoundedVec::new(),\n private_call_requests: BoundedVec::new(),\n public_call_requests: BoundedVec::new(),\n public_teardown_call_request: PublicCallRequest::empty(),\n l2_to_l1_msgs: BoundedVec::new(),\n anchor_block_header: BlockHeader::empty(),\n private_logs: BoundedVec::new(),\n contract_class_logs_hashes: BoundedVec::new(),\n last_key_validation_requests: [Option::none(); NUM_KEY_TYPES],\n expected_non_revertible_side_effect_counter: 0,\n expected_revertible_side_effect_counter: 0,\n }\n }\n}\n"
3134
3134
  },
3135
3135
  "69": {
@@ -3175,7 +3175,7 @@
3175
3175
  "start": 1596
3176
3176
  }
3177
3177
  ],
3178
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/context/utility_context.nr",
3178
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/context/utility_context.nr",
3179
3179
  "source": "use crate::oracle::{execution::get_utility_context, storage::storage_read};\nuse crate::protocol::{abis::block_header::BlockHeader, address::AztecAddress, traits::Packable};\n\n// If you'll modify this struct don't forget to update utility_context.ts as well.\npub struct UtilityContext {\n block_header: BlockHeader,\n contract_address: AztecAddress,\n}\n\nimpl UtilityContext {\n pub unconstrained fn new() -> Self {\n get_utility_context()\n }\n\n pub unconstrained fn at(contract_address: AztecAddress) -> Self {\n // We get a context with default contract address, and then we construct the final context with the provided\n // contract address.\n let default_context = get_utility_context();\n\n Self { block_header: default_context.block_header, contract_address }\n }\n\n pub fn block_header(self) -> BlockHeader {\n self.block_header\n }\n\n pub fn block_number(self) -> u32 {\n self.block_header.block_number()\n }\n\n pub fn timestamp(self) -> u64 {\n self.block_header.timestamp()\n }\n\n pub fn this_address(self) -> AztecAddress {\n self.contract_address\n }\n\n pub fn version(self) -> Field {\n self.block_header.version()\n }\n\n pub fn chain_id(self) -> Field {\n self.block_header.chain_id()\n }\n\n pub unconstrained fn raw_storage_read<let N: u32>(self: Self, storage_slot: Field) -> [Field; N] {\n storage_read(self.block_header, self.this_address(), storage_slot)\n }\n\n pub unconstrained fn storage_read<T>(self, storage_slot: Field) -> T\n where\n T: Packable,\n {\n T::unpack(self.raw_storage_read(storage_slot))\n }\n}\n"
3180
3180
  },
3181
3181
  "74": {
@@ -3184,125 +3184,133 @@
3184
3184
  "name": "EphemeralArray<T>::at",
3185
3185
  "start": 1367
3186
3186
  },
3187
+ {
3188
+ "name": "EphemeralArray<T>::empty_at",
3189
+ "start": 1545
3190
+ },
3187
3191
  {
3188
3192
  "name": "EphemeralArray<T>::len",
3189
- "start": 1500
3193
+ "start": 1687
3190
3194
  },
3191
3195
  {
3192
3196
  "name": "EphemeralArray<T>::push",
3193
- "start": 1680
3197
+ "start": 1867
3194
3198
  },
3195
3199
  {
3196
3200
  "name": "EphemeralArray<T>::pop",
3197
- "start": 1950
3201
+ "start": 2137
3198
3202
  },
3199
3203
  {
3200
3204
  "name": "EphemeralArray<T>::get",
3201
- "start": 2238
3205
+ "start": 2425
3202
3206
  },
3203
3207
  {
3204
3208
  "name": "EphemeralArray<T>::set",
3205
- "start": 2537
3209
+ "start": 2724
3206
3210
  },
3207
3211
  {
3208
3212
  "name": "EphemeralArray<T>::remove",
3209
- "start": 2805
3213
+ "start": 2992
3210
3214
  },
3211
3215
  {
3212
3216
  "name": "EphemeralArray<T>::clear",
3213
- "start": 3084
3217
+ "start": 3273
3214
3218
  },
3215
3219
  {
3216
3220
  "name": "EphemeralArray<T>::for_each",
3217
- "start": 3655
3221
+ "start": 3844
3218
3222
  },
3219
3223
  {
3220
3224
  "name": "<impl Serialize for EphemeralArray<T>>::serialize",
3221
- "start": 4046
3225
+ "start": 4235
3222
3226
  },
3223
3227
  {
3224
3228
  "name": "<impl Serialize for EphemeralArray<T>>::stream_serialize",
3225
- "start": 4141
3229
+ "start": 4330
3226
3230
  },
3227
3231
  {
3228
3232
  "name": "<impl Deserialize for EphemeralArray<T>>::deserialize",
3229
- "start": 4459
3233
+ "start": 4648
3230
3234
  },
3231
3235
  {
3232
3236
  "name": "<impl Deserialize for EphemeralArray<T>>::stream_deserialize",
3233
- "start": 4571
3237
+ "start": 4760
3234
3238
  },
3235
3239
  {
3236
3240
  "name": "test::empty_array",
3237
- "start": 4883
3241
+ "start": 5072
3238
3242
  },
3239
3243
  {
3240
3244
  "name": "test::empty_array_read",
3241
- "start": 5180
3245
+ "start": 5369
3242
3246
  },
3243
3247
  {
3244
3248
  "name": "test::empty_array_pop",
3245
- "start": 5450
3249
+ "start": 5639
3246
3250
  },
3247
3251
  {
3248
3252
  "name": "test::array_push",
3249
- "start": 5683
3253
+ "start": 5872
3250
3254
  },
3251
3255
  {
3252
3256
  "name": "test::read_past_len",
3253
- "start": 6022
3257
+ "start": 6211
3254
3258
  },
3255
3259
  {
3256
3260
  "name": "test::array_pop",
3257
- "start": 6276
3261
+ "start": 6465
3258
3262
  },
3259
3263
  {
3260
3264
  "name": "test::array_set",
3261
- "start": 6683
3265
+ "start": 6872
3262
3266
  },
3263
3267
  {
3264
3268
  "name": "test::array_remove_last",
3265
- "start": 6981
3269
+ "start": 7170
3266
3270
  },
3267
3271
  {
3268
3272
  "name": "test::array_remove_some",
3269
- "start": 7276
3273
+ "start": 7465
3270
3274
  },
3271
3275
  {
3272
3276
  "name": "test::array_remove_all",
3273
- "start": 7747
3277
+ "start": 7936
3274
3278
  },
3275
3279
  {
3276
3280
  "name": "test::for_each_called_with_all_elements",
3277
- "start": 8173
3281
+ "start": 8362
3278
3282
  },
3279
3283
  {
3280
3284
  "name": "test::for_each_remove_some",
3281
- "start": 8909
3285
+ "start": 9098
3282
3286
  },
3283
3287
  {
3284
3288
  "name": "test::for_each_remove_all",
3285
- "start": 9461
3289
+ "start": 9650
3286
3290
  },
3287
3291
  {
3288
3292
  "name": "test::different_slots_are_isolated",
3289
- "start": 9860
3293
+ "start": 10049
3290
3294
  },
3291
3295
  {
3292
3296
  "name": "test::works_with_multi_field_type",
3293
- "start": 10434
3297
+ "start": 10623
3298
+ },
3299
+ {
3300
+ "name": "test::empty_at_wipes_previous_data",
3301
+ "start": 11247
3294
3302
  },
3295
3303
  {
3296
3304
  "name": "test::clear_returns_self",
3297
- "start": 11048
3305
+ "start": 11656
3298
3306
  },
3299
3307
  {
3300
3308
  "name": "test::clear_wipes_previous_data",
3301
- "start": 11435
3309
+ "start": 12043
3302
3310
  }
3303
3311
  ],
3304
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/ephemeral/mod.nr",
3305
- "source": "use crate::oracle::ephemeral;\nuse crate::protocol::traits::{Deserialize, Serialize};\nuse crate::protocol::utils::{reader::Reader, writer::Writer};\n\n/// A dynamically sized array that exists only during a single contract call frame.\n///\n/// Ephemeral arrays are backed by in-memory storage on the PXE side rather than a persistent database. Each contract\n/// call frame gets its own isolated slot space of ephemeral arrays. Child simulations cannot see the parent's\n/// ephemeral arrays, and vice versa.\n///\n/// Each logical array operation (push, pop, get, etc.) is a single oracle call, making ephemeral arrays significantly\n/// cheaper than capsule arrays.\n///\n/// ## Use Cases\n///\n/// Ephemeral arrays are designed for passing data between PXE (TypeScript) and contracts (Noir) during simulation,\n/// for example, note validation requests or event validation responses. This data type is appropriate for data that\n/// is not supposed to be persisted.\n///\n/// For data that needs to persist across simulations, contract calls, etc, use\n/// [`CapsuleArray`](crate::capsules::CapsuleArray) instead.\npub struct EphemeralArray<T> {\n pub slot: Field,\n}\n\nimpl<T> EphemeralArray<T> {\n /// Returns a handle to an ephemeral array at the given slot, which may already contain data (e.g. populated\n /// by an oracle).\n pub unconstrained fn at(slot: Field) -> Self {\n Self { slot }\n }\n\n /// Returns the number of elements stored in the array.\n pub unconstrained fn len(self) -> u32 {\n ephemeral::len_oracle(self.slot)\n }\n\n /// Stores a value at the end of the array.\n pub unconstrained fn push(self, value: T)\n where\n T: Serialize,\n {\n let serialized = value.serialize();\n let _ = ephemeral::push_oracle(self.slot, serialized);\n }\n\n /// Removes and returns the last element. Panics if the array is empty.\n pub unconstrained fn pop(self) -> T\n where\n T: Deserialize,\n {\n let serialized = ephemeral::pop_oracle(self.slot);\n Deserialize::deserialize(serialized)\n }\n\n /// Retrieves the value stored at `index`. Panics if the index is out of bounds.\n pub unconstrained fn get(self, index: u32) -> T\n where\n T: Deserialize,\n {\n let serialized = ephemeral::get_oracle(self.slot, index);\n Deserialize::deserialize(serialized)\n }\n\n /// Overwrites the value stored at `index`. Panics if the index is out of bounds.\n pub unconstrained fn set(self, index: u32, value: T)\n where\n T: Serialize,\n {\n let serialized = value.serialize();\n ephemeral::set_oracle(self.slot, index, serialized);\n }\n\n /// Removes the element at `index`, shifting subsequent elements backward. Panics if out of bounds.\n pub unconstrained fn remove(self, index: u32) {\n ephemeral::remove_oracle(self.slot, index);\n }\n\n /// Removes all elements from the array and returns self for chaining (e.g. `EphemeralArray::at(slot).clear()`\n /// to get a guaranteed-empty array at a given slot).\n pub unconstrained fn clear(self) -> Self {\n ephemeral::clear_oracle(self.slot);\n self\n }\n\n /// Calls a function on each element of the array.\n ///\n /// The function `f` is called once with each array value and its corresponding index. Iteration proceeds\n /// backwards so that it is safe to remove the current element (and only the current element) inside the\n /// callback.\n ///\n /// It is **not** safe to push new elements from inside the callback.\n pub unconstrained fn for_each<Env>(self, f: unconstrained fn[Env](u32, T) -> ())\n where\n T: Deserialize,\n {\n let mut i = self.len();\n while i > 0 {\n i -= 1;\n f(i, self.get(i));\n }\n }\n}\n\n/// Serializes an `EphemeralArray` as its slot identifier, allowing oracle function signatures to use\n/// `EphemeralArray<T>` instead of opaque `Field` slots.\nimpl<T> Serialize for EphemeralArray<T> {\n let N: u32 = 1;\n\n fn serialize(self) -> [Field; Self::N] {\n [self.slot]\n }\n\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self.slot);\n }\n}\n\n/// Deserializes a single Field into an `EphemeralArray` handle, treating the field value as the slot identifier.\n/// This is the inverse of [`Serialize`].\nimpl<T> Deserialize for EphemeralArray<T> {\n let N: u32 = 1;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n Self { slot: fields[0] }\n }\n\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n Self { slot: reader.read() }\n }\n}\n\nmod test {\n use crate::test::helpers::test_environment::TestEnvironment;\n use crate::test::mocks::MockStruct;\n use super::EphemeralArray;\n\n global SLOT: Field = 1230;\n global OTHER_SLOT: Field = 5670;\n\n #[test]\n unconstrained fn empty_array() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT);\n assert_eq(array.len(), 0);\n });\n }\n\n #[test(should_fail_with = \"out of bounds\")]\n unconstrained fn empty_array_read() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n let _: Field = array.get(0);\n });\n }\n\n #[test(should_fail_with = \"is empty\")]\n unconstrained fn empty_array_pop() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n let _: Field = array.pop();\n });\n }\n\n #[test]\n unconstrained fn array_push() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 5);\n });\n }\n\n #[test(should_fail_with = \"out of bounds\")]\n unconstrained fn read_past_len() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n\n let _ = array.get(1);\n });\n }\n\n #[test]\n unconstrained fn array_pop() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.push(10);\n\n let popped: Field = array.pop();\n assert_eq(popped, 10);\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 5);\n });\n }\n\n #[test]\n unconstrained fn array_set() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.set(0, 99);\n assert_eq(array.get(0), 99);\n });\n }\n\n #[test]\n unconstrained fn array_remove_last() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.remove(0);\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn array_remove_some() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n assert_eq(array.len(), 3);\n\n array.remove(1);\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 7);\n assert_eq(array.get(1), 9);\n });\n }\n\n #[test]\n unconstrained fn array_remove_all() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n array.remove(1);\n array.remove(1);\n array.remove(0);\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn for_each_called_with_all_elements() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n let called_with = &mut BoundedVec::<(u32, Field), 3>::new();\n array.for_each(|index, value| { called_with.push((index, value)); });\n\n assert_eq(called_with.len(), 3);\n assert(called_with.any(|(index, value)| (index == 0) & (value == 4)));\n assert(called_with.any(|(index, value)| (index == 1) & (value == 5)));\n assert(called_with.any(|(index, value)| (index == 2) & (value == 6)));\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_some() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| {\n if index == 1 {\n array.remove(index);\n }\n });\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 4);\n assert_eq(array.get(1), 6);\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_all() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| { array.remove(index); });\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn different_slots_are_isolated() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array_a = EphemeralArray::at(SLOT);\n let array_b = EphemeralArray::at(OTHER_SLOT);\n\n array_a.push(10);\n array_a.push(20);\n array_b.push(99);\n\n assert_eq(array_a.len(), 2);\n assert_eq(array_a.get(0), 10);\n assert_eq(array_a.get(1), 20);\n\n assert_eq(array_b.len(), 1);\n assert_eq(array_b.get(0), 99);\n });\n }\n\n #[test]\n unconstrained fn works_with_multi_field_type() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<MockStruct> = EphemeralArray::at(SLOT);\n\n let a = MockStruct::new(5, 6);\n let b = MockStruct::new(7, 8);\n array.push(a);\n array.push(b);\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), a);\n assert_eq(array.get(1), b);\n\n let popped: MockStruct = array.pop();\n assert_eq(popped, b);\n assert_eq(array.len(), 1);\n });\n }\n\n #[test]\n unconstrained fn clear_returns_self() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT).clear();\n assert_eq(array.len(), 0);\n\n array.push(42);\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 42);\n });\n }\n\n #[test]\n unconstrained fn clear_wipes_previous_data() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT);\n array.push(1);\n array.push(2);\n array.push(3);\n assert_eq(array.len(), 3);\n\n // Clear the same slot, previous data should be gone.\n let fresh: EphemeralArray<Field> = EphemeralArray::at(SLOT).clear();\n assert_eq(fresh.len(), 0);\n fresh.push(4);\n assert_eq(fresh.get(0), 4);\n });\n }\n}\n"
3312
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/ephemeral/mod.nr",
3313
+ "source": "use crate::oracle::ephemeral;\nuse crate::protocol::traits::{Deserialize, Serialize};\nuse crate::protocol::utils::{reader::Reader, writer::Writer};\n\n/// A dynamically sized array that exists only during a single contract call frame.\n///\n/// Ephemeral arrays are backed by in-memory storage on the PXE side rather than a persistent database. Each contract\n/// call frame gets its own isolated slot space of ephemeral arrays. Child simulations cannot see the parent's\n/// ephemeral arrays, and vice versa.\n///\n/// Each logical array operation (push, pop, get, etc.) is a single oracle call, making ephemeral arrays significantly\n/// cheaper than capsule arrays.\n///\n/// ## Use Cases\n///\n/// Ephemeral arrays are designed for passing data between PXE (TypeScript) and contracts (Noir) during simulation,\n/// for example, note validation requests or event validation responses. This data type is appropriate for data that\n/// is not supposed to be persisted.\n///\n/// For data that needs to persist across simulations, contract calls, etc, use\n/// [`CapsuleArray`](crate::capsules::CapsuleArray) instead.\npub struct EphemeralArray<T> {\n pub slot: Field,\n}\n\nimpl<T> EphemeralArray<T> {\n /// Returns a handle to an ephemeral array at the given slot, which may already contain data (e.g. populated\n /// by an oracle).\n pub unconstrained fn at(slot: Field) -> Self {\n Self { slot }\n }\n\n /// Returns an empty ephemeral array at the given slot, clearing any pre-existing data.\n pub unconstrained fn empty_at(slot: Field) -> Self {\n Self::at(slot).clear()\n }\n\n /// Returns the number of elements stored in the array.\n pub unconstrained fn len(self) -> u32 {\n ephemeral::len_oracle(self.slot)\n }\n\n /// Stores a value at the end of the array.\n pub unconstrained fn push(self, value: T)\n where\n T: Serialize,\n {\n let serialized = value.serialize();\n let _ = ephemeral::push_oracle(self.slot, serialized);\n }\n\n /// Removes and returns the last element. Panics if the array is empty.\n pub unconstrained fn pop(self) -> T\n where\n T: Deserialize,\n {\n let serialized = ephemeral::pop_oracle(self.slot);\n Deserialize::deserialize(serialized)\n }\n\n /// Retrieves the value stored at `index`. Panics if the index is out of bounds.\n pub unconstrained fn get(self, index: u32) -> T\n where\n T: Deserialize,\n {\n let serialized = ephemeral::get_oracle(self.slot, index);\n Deserialize::deserialize(serialized)\n }\n\n /// Overwrites the value stored at `index`. Panics if the index is out of bounds.\n pub unconstrained fn set(self, index: u32, value: T)\n where\n T: Serialize,\n {\n let serialized = value.serialize();\n ephemeral::set_oracle(self.slot, index, serialized);\n }\n\n /// Removes the element at `index`, shifting subsequent elements backward. Panics if out of bounds.\n pub unconstrained fn remove(self, index: u32) {\n ephemeral::remove_oracle(self.slot, index);\n }\n\n /// Removes all elements from the array and returns self for chaining.\n ///\n /// Prefer [`EphemeralArray::empty_at`] when the intent is to start with a fresh array.\n pub unconstrained fn clear(self) -> Self {\n ephemeral::clear_oracle(self.slot);\n self\n }\n\n /// Calls a function on each element of the array.\n ///\n /// The function `f` is called once with each array value and its corresponding index. Iteration proceeds\n /// backwards so that it is safe to remove the current element (and only the current element) inside the\n /// callback.\n ///\n /// It is **not** safe to push new elements from inside the callback.\n pub unconstrained fn for_each<Env>(self, f: unconstrained fn[Env](u32, T) -> ())\n where\n T: Deserialize,\n {\n let mut i = self.len();\n while i > 0 {\n i -= 1;\n f(i, self.get(i));\n }\n }\n}\n\n/// Serializes an `EphemeralArray` as its slot identifier, allowing oracle function signatures to use\n/// `EphemeralArray<T>` instead of opaque `Field` slots.\nimpl<T> Serialize for EphemeralArray<T> {\n let N: u32 = 1;\n\n fn serialize(self) -> [Field; Self::N] {\n [self.slot]\n }\n\n fn stream_serialize<let K: u32>(self, writer: &mut Writer<K>) {\n writer.write(self.slot);\n }\n}\n\n/// Deserializes a single Field into an `EphemeralArray` handle, treating the field value as the slot identifier.\n/// This is the inverse of [`Serialize`].\nimpl<T> Deserialize for EphemeralArray<T> {\n let N: u32 = 1;\n\n fn deserialize(fields: [Field; Self::N]) -> Self {\n Self { slot: fields[0] }\n }\n\n fn stream_deserialize<let K: u32>(reader: &mut Reader<K>) -> Self {\n Self { slot: reader.read() }\n }\n}\n\nmod test {\n use crate::test::helpers::test_environment::TestEnvironment;\n use crate::test::mocks::MockStruct;\n use super::EphemeralArray;\n\n global SLOT: Field = 1230;\n global OTHER_SLOT: Field = 5670;\n\n #[test]\n unconstrained fn empty_array() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT);\n assert_eq(array.len(), 0);\n });\n }\n\n #[test(should_fail_with = \"out of bounds\")]\n unconstrained fn empty_array_read() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n let _: Field = array.get(0);\n });\n }\n\n #[test(should_fail_with = \"is empty\")]\n unconstrained fn empty_array_pop() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n let _: Field = array.pop();\n });\n }\n\n #[test]\n unconstrained fn array_push() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 5);\n });\n }\n\n #[test(should_fail_with = \"out of bounds\")]\n unconstrained fn read_past_len() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n\n let _ = array.get(1);\n });\n }\n\n #[test]\n unconstrained fn array_pop() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.push(10);\n\n let popped: Field = array.pop();\n assert_eq(popped, 10);\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 5);\n });\n }\n\n #[test]\n unconstrained fn array_set() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.set(0, 99);\n assert_eq(array.get(0), 99);\n });\n }\n\n #[test]\n unconstrained fn array_remove_last() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n array.push(5);\n array.remove(0);\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn array_remove_some() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n assert_eq(array.len(), 3);\n\n array.remove(1);\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 7);\n assert_eq(array.get(1), 9);\n });\n }\n\n #[test]\n unconstrained fn array_remove_all() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(7);\n array.push(8);\n array.push(9);\n\n array.remove(1);\n array.remove(1);\n array.remove(0);\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn for_each_called_with_all_elements() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n let called_with = &mut BoundedVec::<(u32, Field), 3>::new();\n array.for_each(|index, value| { called_with.push((index, value)); });\n\n assert_eq(called_with.len(), 3);\n assert(called_with.any(|(index, value)| (index == 0) & (value == 4)));\n assert(called_with.any(|(index, value)| (index == 1) & (value == 5)));\n assert(called_with.any(|(index, value)| (index == 2) & (value == 6)));\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_some() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| {\n if index == 1 {\n array.remove(index);\n }\n });\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), 4);\n assert_eq(array.get(1), 6);\n });\n }\n\n #[test]\n unconstrained fn for_each_remove_all() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array = EphemeralArray::at(SLOT);\n\n array.push(4);\n array.push(5);\n array.push(6);\n\n array.for_each(|index, _| { array.remove(index); });\n\n assert_eq(array.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn different_slots_are_isolated() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array_a = EphemeralArray::at(SLOT);\n let array_b = EphemeralArray::at(OTHER_SLOT);\n\n array_a.push(10);\n array_a.push(20);\n array_b.push(99);\n\n assert_eq(array_a.len(), 2);\n assert_eq(array_a.get(0), 10);\n assert_eq(array_a.get(1), 20);\n\n assert_eq(array_b.len(), 1);\n assert_eq(array_b.get(0), 99);\n });\n }\n\n #[test]\n unconstrained fn works_with_multi_field_type() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<MockStruct> = EphemeralArray::at(SLOT);\n\n let a = MockStruct::new(5, 6);\n let b = MockStruct::new(7, 8);\n array.push(a);\n array.push(b);\n\n assert_eq(array.len(), 2);\n assert_eq(array.get(0), a);\n assert_eq(array.get(1), b);\n\n let popped: MockStruct = array.pop();\n assert_eq(popped, b);\n assert_eq(array.len(), 1);\n });\n }\n\n #[test]\n unconstrained fn empty_at_wipes_previous_data() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT);\n array.push(1);\n assert_eq(array.len(), 1);\n\n let fresh: EphemeralArray<Field> = EphemeralArray::empty_at(SLOT);\n assert_eq(fresh.len(), 0);\n });\n }\n\n #[test]\n unconstrained fn clear_returns_self() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT).clear();\n assert_eq(array.len(), 0);\n\n array.push(42);\n assert_eq(array.len(), 1);\n assert_eq(array.get(0), 42);\n });\n }\n\n #[test]\n unconstrained fn clear_wipes_previous_data() {\n let env = TestEnvironment::new();\n env.utility_context(|_| {\n let array: EphemeralArray<Field> = EphemeralArray::at(SLOT);\n array.push(1);\n array.push(2);\n array.push(3);\n assert_eq(array.len(), 3);\n\n // Clear the same slot, previous data should be gone.\n let fresh: EphemeralArray<Field> = EphemeralArray::at(SLOT).clear();\n assert_eq(fresh.len(), 0);\n fresh.push(4);\n assert_eq(fresh.get(0), 4);\n });\n }\n}\n"
3306
3314
  },
3307
3315
  "76": {
3308
3316
  "function_locations": [
@@ -3323,7 +3331,7 @@
3323
3331
  "start": 2814
3324
3332
  }
3325
3333
  ],
3326
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/event/event_interface.nr",
3334
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/event/event_interface.nr",
3327
3335
  "source": "use crate::{event::EventSelector, messages::logs::event::MAX_EVENT_SERIALIZED_LEN};\nuse crate::protocol::{\n constants::DOM_SEP__EVENT_COMMITMENT,\n hash::{poseidon2_hash_with_separator, poseidon2_hash_with_separator_bounded_vec},\n traits::{Serialize, ToField},\n};\n\npub trait EventInterface {\n fn get_event_type_id() -> EventSelector;\n}\n\n/// A private event's commitment is a value stored on-chain which is used to verify that the event was indeed emitted.\n///\n/// It requires a `randomness` value that must be produced alongside the event in order to perform said validation.\n/// This random value prevents attacks in which someone guesses plausible events (e.g. 'Alice transfers to Bob an\n/// amount of 10'), since they will not be able to test for existence of their guessed events without brute-forcing the\n/// entire `Field` space by guessing `randomness` values.\npub fn compute_private_event_commitment<Event>(event: Event, randomness: Field) -> Field\nwhere\n Event: EventInterface + Serialize,\n{\n poseidon2_hash_with_separator(\n [randomness, Event::get_event_type_id().to_field()].concat(event.serialize()),\n DOM_SEP__EVENT_COMMITMENT,\n )\n}\n\n/// Unconstrained variant of [`compute_private_event_commitment`] which takes the event in serialized form.\n///\n/// This function is unconstrained as the mechanism it uses to compute the commitment would be very inefficient in a\n/// constrained environment (due to the hashing of a dynamically sized array). This is not an issue as it is typically\n/// invoked when processing event messages, which is an unconstrained operation.\npub unconstrained fn compute_private_serialized_event_commitment(\n serialized_event: BoundedVec<Field, MAX_EVENT_SERIALIZED_LEN>,\n randomness: Field,\n event_type_id: Field,\n) -> Field {\n let mut commitment_preimage =\n BoundedVec::<_, 2 + MAX_EVENT_SERIALIZED_LEN>::from_array([randomness, event_type_id]);\n commitment_preimage.extend_from_bounded_vec(serialized_event);\n\n poseidon2_hash_with_separator_bounded_vec(commitment_preimage, DOM_SEP__EVENT_COMMITMENT)\n}\n\nmod test {\n use crate::event::event_interface::{\n compute_private_event_commitment, compute_private_serialized_event_commitment, EventInterface,\n };\n use crate::messages::logs::event::MAX_EVENT_SERIALIZED_LEN;\n use crate::protocol::traits::{Serialize, ToField};\n use crate::test::mocks::mock_event::MockEvent;\n\n global VALUE: Field = 7;\n global RANDOMNESS: Field = 10;\n\n #[test]\n unconstrained fn max_size_serialized_event_commitment() {\n let serialized_event = BoundedVec::from_array([0; MAX_EVENT_SERIALIZED_LEN]);\n let _ = compute_private_serialized_event_commitment(serialized_event, 0, 0);\n }\n\n #[test]\n unconstrained fn event_commitment_equivalence() {\n let event = MockEvent::new(VALUE).build_event();\n\n assert_eq(\n compute_private_event_commitment(event, RANDOMNESS),\n compute_private_serialized_event_commitment(\n BoundedVec::from_array(event.serialize()),\n RANDOMNESS,\n MockEvent::get_event_type_id().to_field(),\n ),\n );\n }\n}\n"
3328
3336
  },
3329
3337
  "78": {
@@ -3353,7 +3361,7 @@
3353
3361
  "start": 985
3354
3362
  }
3355
3363
  ],
3356
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/event/event_selector.nr",
3364
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/event/event_selector.nr",
3357
3365
  "source": "use crate::protocol::{hash::poseidon2_hash_bytes, traits::{Deserialize, Empty, FromField, Serialize, ToField}};\n\n#[derive(Deserialize, Eq, Serialize)]\npub struct EventSelector {\n // Low 32 bits of the poseidon2 hash of the event signature.\n inner: u32,\n}\n\nimpl FromField for EventSelector {\n fn from_field(field: Field) -> Self {\n Self { inner: field as u32 }\n }\n}\n\nimpl ToField for EventSelector {\n fn to_field(self) -> Field {\n self.inner as Field\n }\n}\n\nimpl Empty for EventSelector {\n fn empty() -> Self {\n Self { inner: 0 as u32 }\n }\n}\n\nimpl EventSelector {\n pub fn from_u32(value: u32) -> Self {\n Self { inner: value }\n }\n\n pub fn from_signature<let N: u32>(signature: str<N>) -> Self {\n let bytes = signature.as_bytes();\n let hash = poseidon2_hash_bytes(bytes);\n\n // `hash` is automatically truncated to fit within 32 bits.\n EventSelector::from_field(hash)\n }\n\n pub fn zero() -> Self {\n Self { inner: 0 }\n }\n}\n"
3358
3366
  },
3359
3367
  "80": {
@@ -3399,7 +3407,7 @@
3399
3407
  "start": 5385
3400
3408
  }
3401
3409
  ],
3402
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/hash.nr",
3410
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/hash.nr",
3403
3411
  "source": "//! Aztec hash functions.\n\nuse crate::protocol::{\n address::{AztecAddress, EthAddress},\n constants::{\n DOM_SEP__FUNCTION_ARGS, DOM_SEP__MESSAGE_NULLIFIER, DOM_SEP__PUBLIC_BYTECODE, DOM_SEP__PUBLIC_CALLDATA,\n DOM_SEP__SECRET_HASH, MAX_PACKED_PUBLIC_BYTECODE_SIZE_IN_FIELDS,\n },\n hash::{poseidon2_hash_subarray, poseidon2_hash_with_separator, sha256_to_field},\n traits::ToField,\n};\n\npub use crate::protocol::hash::compute_siloed_nullifier;\n\npub fn compute_secret_hash(secret: Field) -> Field {\n poseidon2_hash_with_separator([secret], DOM_SEP__SECRET_HASH)\n}\n\npub fn compute_l1_to_l2_message_hash(\n sender: EthAddress,\n chain_id: Field,\n recipient: AztecAddress,\n version: Field,\n content: Field,\n secret_hash: Field,\n leaf_index: Field,\n) -> Field {\n let mut hash_bytes = [0 as u8; 224];\n let sender_bytes: [u8; 32] = sender.to_field().to_be_bytes();\n let chain_id_bytes: [u8; 32] = chain_id.to_be_bytes();\n let recipient_bytes: [u8; 32] = recipient.to_field().to_be_bytes();\n let version_bytes: [u8; 32] = version.to_be_bytes();\n let content_bytes: [u8; 32] = content.to_be_bytes();\n let secret_hash_bytes: [u8; 32] = secret_hash.to_be_bytes();\n let leaf_index_bytes: [u8; 32] = leaf_index.to_be_bytes();\n\n for i in 0..32 {\n hash_bytes[i] = sender_bytes[i];\n hash_bytes[i + 32] = chain_id_bytes[i];\n hash_bytes[i + 64] = recipient_bytes[i];\n hash_bytes[i + 96] = version_bytes[i];\n hash_bytes[i + 128] = content_bytes[i];\n hash_bytes[i + 160] = secret_hash_bytes[i];\n hash_bytes[i + 192] = leaf_index_bytes[i];\n }\n\n sha256_to_field(hash_bytes)\n}\n\n// The nullifier of a l1 to l2 message is the hash of the message salted with the secret\npub fn compute_l1_to_l2_message_nullifier(message_hash: Field, secret: Field) -> Field {\n poseidon2_hash_with_separator([message_hash, secret], DOM_SEP__MESSAGE_NULLIFIER)\n}\n\n// Computes the hash of input arguments or return values for private functions, or for authwit creation.\npub fn hash_args<let N: u32>(args: [Field; N]) -> Field {\n if args.len() == 0 {\n 0\n } else {\n poseidon2_hash_with_separator(args, DOM_SEP__FUNCTION_ARGS)\n }\n}\n\n// Computes the hash of calldata for public functions.\npub fn hash_calldata_array<let N: u32>(calldata: [Field; N]) -> Field {\n poseidon2_hash_with_separator(calldata, DOM_SEP__PUBLIC_CALLDATA)\n}\n\n/// Computes the public bytecode commitment for a contract class. The commitment is `hash([(length | separator),\n/// ...bytecode])`.\n///\n/// @param packed_bytecode - The packed bytecode of the contract class. 0th word is the length in bytes.\n/// packed_bytecode is mutable so that we can avoid copying the array to construct one starting with first_field\n/// instead of length. @returns The public bytecode commitment.\npub fn compute_public_bytecode_commitment(\n mut packed_public_bytecode: [Field; MAX_PACKED_PUBLIC_BYTECODE_SIZE_IN_FIELDS],\n) -> Field {\n // First field element contains the length of the bytecode\n let bytecode_length_in_bytes: u32 = packed_public_bytecode[0] as u32;\n let bytecode_length_in_fields: u32 = (bytecode_length_in_bytes / 31) + (bytecode_length_in_bytes % 31 != 0) as u32;\n // Don't allow empty public bytecode. AVM doesn't handle execution of contracts that exist with empty bytecode.\n assert(bytecode_length_in_fields != 0);\n assert(bytecode_length_in_fields < MAX_PACKED_PUBLIC_BYTECODE_SIZE_IN_FIELDS);\n\n // Packed_bytecode's 0th entry is the length. Append it to the separator before hashing.\n let first_field = DOM_SEP__PUBLIC_BYTECODE.to_field() + (packed_public_bytecode[0] as u64 << 32) as Field;\n packed_public_bytecode[0] = first_field;\n\n // `fields_to_hash` is the number of fields from the start of `packed_public_bytecode` that should be included in\n // the hash. Fields after this length are ignored. +1 to account for the prepended field.\n let num_fields_to_hash = bytecode_length_in_fields + 1;\n\n poseidon2_hash_subarray(packed_public_bytecode, num_fields_to_hash)\n}\n\n#[test]\nunconstrained fn secret_hash_matches_typescript() {\n let secret = 8;\n let hash = compute_secret_hash(secret);\n\n // The following value was generated by `yarn-project/stdlib/src/hash/hash.test.ts`\n let secret_hash_from_ts = 0x1848b066724ab0ffb50ecb0ee3398eb839f162823d262bad959721a9c13d1e96;\n\n assert_eq(hash, secret_hash_from_ts);\n}\n\n#[test]\nunconstrained fn var_args_hash_matches_typescript() {\n let mut input = [0; 100];\n for i in 0..100 {\n input[i] = i as Field;\n }\n let hash = hash_args(input);\n\n // The following value was generated by `yarn-project/stdlib/src/hash/hash.test.ts`\n let var_args_hash_from_ts = 0x262e5e121a8efc0382566ab42f0ae2a78bd85db88484f83018fe07fc2552ba0c;\n\n assert_eq(hash, var_args_hash_from_ts);\n}\n\n#[test]\nunconstrained fn compute_calldata_hash() {\n let mut input = [0; 100];\n for i in 0..input.len() {\n input[i] = i as Field;\n }\n let hash = hash_calldata_array(input);\n\n // The following value was generated by `yarn-project/stdlib/src/hash/hash.test.ts`\n let calldata_hash_from_ts = 0x14a1539bdb1d26e03097cf4d40c87e02ca03f0bb50a3e617ace5a7bfd3943944;\n\n // Used in cpp vm2 tests:\n assert_eq(hash, calldata_hash_from_ts);\n}\n\n#[test]\nunconstrained fn public_bytecode_commitment() {\n let mut input = [0; MAX_PACKED_PUBLIC_BYTECODE_SIZE_IN_FIELDS];\n let len = 99;\n for i in 1..len + 1 {\n input[i] = i as Field;\n }\n input[0] = (len as Field) * 31;\n let hash = compute_public_bytecode_commitment(input);\n // Used in cpp vm2 tests:\n assert_eq(hash, 0x09348974e76c3602893d7a4b4bb52c2ec746f1ade5004ac471d0fbb4587a81a6);\n}\n"
3404
3412
  },
3405
3413
  "91": {
@@ -3437,7 +3445,7 @@
3437
3445
  "start": 5055
3438
3446
  }
3439
3447
  ],
3440
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/keys/ecdh_shared_secret.nr",
3448
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/keys/ecdh_shared_secret.nr",
3441
3449
  "source": "use crate::protocol::{\n address::aztec_address::AztecAddress,\n constants::{DOM_SEP__APP_SILOED_ECDH_SHARED_SECRET, DOM_SEP__ECDH_FIELD_MASK, DOM_SEP__ECDH_SUBKEY},\n hash::poseidon2_hash_with_separator,\n point::EmbeddedCurvePoint,\n scalar::Scalar,\n traits::{FromField, ToField},\n};\nuse std::{embedded_curve_ops::multi_scalar_mul, ops::Neg};\n\n/// Computes a standard ECDH shared secret: secret * public_key = shared_secret.\n///\n/// The input secret is known only to one party. The output shared secret can be derived given knowledge of\n/// `public_key`'s key-pair and the public ephemeral secret, using this same function (with reversed inputs).\n///\n/// E.g.: Epk = esk * G // ephemeral key-pair\n/// Pk = sk * G // recipient key-pair\n/// Shared secret S = esk * Pk = sk * Epk\n///\n/// See also: https://en.wikipedia.org/wiki/Elliptic-curve_Diffie%E2%80%93Hellman\npub fn derive_ecdh_shared_secret(secret: Scalar, public_key: EmbeddedCurvePoint) -> EmbeddedCurvePoint {\n multi_scalar_mul([public_key], [secret])\n}\n\n/// Computes an app-siloed shared secret from a raw ECDH shared secret point and a contract address.\n///\n/// `s_app = h(DOM_SEP__APP_SILOED_ECDH_SHARED_SECRET, S.x, S.y, contract_address)`\npub fn compute_app_siloed_shared_secret(shared_secret: EmbeddedCurvePoint, contract_address: AztecAddress) -> Field {\n poseidon2_hash_with_separator(\n [shared_secret.x, shared_secret.y, contract_address.to_field()],\n DOM_SEP__APP_SILOED_ECDH_SHARED_SECRET,\n )\n}\n\n/// Derives an indexed subkey from an app-siloed shared secret, used for AES key/IV derivation.\n///\n/// `s_i = h(DOM_SEP__ECDH_SUBKEY + i, s_app)`\npub(crate) fn derive_shared_secret_subkey(s_app: Field, index: u32) -> Field {\n poseidon2_hash_with_separator([s_app], DOM_SEP__ECDH_SUBKEY + index)\n}\n\n/// Derives an indexed field mask from an app-siloed shared secret, used for masking ciphertext fields.\n///\n/// `m_i = h(DOM_SEP__ECDH_FIELD_MASK + i, s_app)`\npub(crate) fn derive_shared_secret_field_mask(s_app: Field, index: u32) -> Field {\n poseidon2_hash_with_separator([s_app], DOM_SEP__ECDH_FIELD_MASK + index)\n}\n\n#[test]\nunconstrained fn test_consistency_with_typescript() {\n let secret = Scalar {\n lo: 0x00000000000000000000000000000000649e7ca01d9de27b21624098b897babd,\n hi: 0x0000000000000000000000000000000023b3127c127b1f29a7adff5cccf8fb06,\n };\n let point = EmbeddedCurvePoint {\n x: 0x2688431c705a5ff3e6c6f2573c9e3ba1c1026d2251d0dbbf2d810aa53fd1d186,\n y: 0x1e96887b117afca01c00468264f4f80b5bb16d94c1808a448595f115556e5c8e,\n };\n\n let shared_secret = derive_ecdh_shared_secret(secret, point);\n\n // This is just pasted from a test run. The original typescript code from which this could be generated seems to\n // have been deleted by someone, and soon the typescript code for encryption and decryption won't be needed, so\n // this will have to do.\n let hard_coded_shared_secret = EmbeddedCurvePoint {\n x: 0x15d55a5b3b2caa6a6207f313f05c5113deba5da9927d6421bcaa164822b911bc,\n y: 0x0974c3d0825031ae933243d653ebb1a0b08b90ee7f228f94c5c74739ea3c871e,\n };\n assert_eq(shared_secret, hard_coded_shared_secret);\n}\n\n#[test]\nunconstrained fn test_shared_secret_computation_in_both_directions() {\n let secret_a = Scalar { lo: 0x1234, hi: 0x2345 };\n let secret_b = Scalar { lo: 0x3456, hi: 0x4567 };\n\n let pk_a = std::embedded_curve_ops::fixed_base_scalar_mul(secret_a);\n let pk_b = std::embedded_curve_ops::fixed_base_scalar_mul(secret_b);\n\n let shared_secret = derive_ecdh_shared_secret(secret_a, pk_b);\n let shared_secret_alt = derive_ecdh_shared_secret(secret_b, pk_a);\n\n assert_eq(shared_secret, shared_secret_alt);\n}\n\n#[test]\nunconstrained fn test_shared_secret_computation_from_address_in_both_directions() {\n let secret_a = Scalar { lo: 0x1234, hi: 0x2345 };\n let secret_b = Scalar { lo: 0x3456, hi: 0x4567 };\n\n let mut pk_a = std::embedded_curve_ops::fixed_base_scalar_mul(secret_a);\n let mut pk_b = std::embedded_curve_ops::fixed_base_scalar_mul(secret_b);\n\n let address_b = AztecAddress::from_field(pk_b.x);\n\n // We were lazy in deriving the secret keys, and didn't check the resulting y-coordinates of the pk_a or pk_b to be\n // less than half the field modulus. If needed, we negate the pk's so that they yield valid address points. (We\n // could also have negated the secrets, but there's no negate method for EmbeddedCurvesScalar).\n pk_a = if (AztecAddress::from_field(pk_a.x).to_address_point().unwrap().inner == pk_a) {\n pk_a\n } else {\n pk_a.neg()\n };\n pk_b = if (address_b.to_address_point().unwrap().inner == pk_b) {\n pk_b\n } else {\n pk_b.neg()\n };\n\n let shared_secret = derive_ecdh_shared_secret(secret_a, address_b.to_address_point().unwrap().inner);\n let shared_secret_alt = derive_ecdh_shared_secret(secret_b, pk_a);\n\n assert_eq(shared_secret, shared_secret_alt);\n}\n\n#[test]\nunconstrained fn test_app_siloed_shared_secret_differs_per_contract() {\n let secret_a = Scalar { lo: 0x1234, hi: 0x2345 };\n let pk_b = std::embedded_curve_ops::fixed_base_scalar_mul(Scalar { lo: 0x3456, hi: 0x4567 });\n\n let shared_secret = derive_ecdh_shared_secret(secret_a, pk_b);\n\n let contract_a = AztecAddress::from_field(0xAAAA);\n let contract_b = AztecAddress::from_field(0xBBBB);\n\n let s_app_a = compute_app_siloed_shared_secret(shared_secret, contract_a);\n let s_app_b = compute_app_siloed_shared_secret(shared_secret, contract_b);\n\n assert(s_app_a != s_app_b, \"app-siloed secrets must differ for different contracts\");\n}\n"
3442
3450
  },
3443
3451
  "96": {
@@ -3507,7 +3515,7 @@
3507
3515
  "start": 4151
3508
3516
  }
3509
3517
  ],
3510
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/logging.nr",
3518
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/logging.nr",
3511
3519
  "source": "// Not all log levels are currently used, but we provide the full set so that new call sites can use any level. Because\n// of that we tag all with `#[allow(dead_code)]` to prevent warnings.\n//\n// All wrappers resolve function paths at comptime via `resolve_fn` so that the emitted `Quoted` code works both inside\n// aztec-nr (where `crate::` = aztec) and inside macro-generated contract code (where `crate::` = the contract).\n\nuse std::meta::ctstring::AsCtString;\n\ncomptime fn log_prefix<let N: u32>(msg: str<N>) -> CtString {\n \"[aztec-nr] \".as_ctstring().append_str(msg)\n}\n\n// --- No-args variants (direct call) ---\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_fatal_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::fatal_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_error_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::error_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_warn_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::warn_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_info_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::info_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_verbose_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::verbose_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_debug_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::debug_log });\n quote { $f($msg) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_trace_log<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::trace_log });\n quote { $f($msg) }\n}\n\n// --- Format variants (return lambda for runtime args) ---\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_fatal_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::fatal_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_error_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::error_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_warn_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::warn_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_info_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::info_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_verbose_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::verbose_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_debug_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::debug_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n#[allow(dead_code)]\npub(crate) comptime fn aztecnr_trace_log_format<let N: u32>(msg: str<N>) -> Quoted {\n let msg = log_prefix(msg);\n let f = resolve_fn(quote { crate::protocol::logging::trace_log_format });\n quote { (|args| $f($msg, args)) }\n}\n\n// See module-level comment for why this is needed.\ncomptime fn resolve_fn(path: Quoted) -> TypedExpr {\n path.as_expr().unwrap().resolve(Option::none())\n}\n"
3512
3520
  },
3513
3521
  "98": {
@@ -3525,7 +3533,7 @@
3525
3533
  "start": 7724
3526
3534
  }
3527
3535
  ],
3528
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/macros/aztec/compute_note_hash_and_nullifier.nr",
3536
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/macros/aztec/compute_note_hash_and_nullifier.nr",
3529
3537
  "source": "use crate::logging;\nuse crate::macros::{notes::NOTES, utils::get_trait_impl_method};\n\n/// Generates two contract library methods called `_compute_note_hash` and `_compute_note_nullifier`, plus a\n/// (deprecated) wrapper called `_compute_note_hash_and_nullifier`, which are used for note discovery (i.e. these are\n/// of the `aztec::messages::discovery::ComputeNoteHash` and `aztec::messages::discovery::ComputeNoteNullifier` types).\npub(crate) comptime fn generate_contract_library_methods_compute_note_hash_and_nullifier() -> Quoted {\n let compute_note_hash = generate_contract_library_method_compute_note_hash();\n let compute_note_nullifier = generate_contract_library_method_compute_note_nullifier();\n\n quote {\n $compute_note_hash\n $compute_note_nullifier\n\n /// Unpacks an array into a note corresponding to `note_type_id` and then computes its note hash (non-siloed) and inner nullifier (non-siloed) assuming the note has been inserted into the note hash tree with `note_nonce`.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[contract_library_method]\n #[allow(dead_code)]\n unconstrained fn _compute_note_hash_and_nullifier(\n packed_note: BoundedVec<Field, aztec::messages::logs::note::MAX_NOTE_PACKED_LEN>,\n owner: aztec::protocol::address::AztecAddress,\n storage_slot: Field,\n note_type_id: Field,\n contract_address: aztec::protocol::address::AztecAddress,\n randomness: Field,\n note_nonce: Field,\n ) -> Option<aztec::messages::discovery::NoteHashAndNullifier> {\n _compute_note_hash(packed_note, owner, storage_slot, note_type_id, contract_address, randomness).map(|note_hash| {\n\n let siloed_note_hash = aztec::protocol::hash::compute_siloed_note_hash(contract_address, note_hash);\n let unique_note_hash = aztec::protocol::hash::compute_unique_note_hash(note_nonce, siloed_note_hash);\n \n let inner_nullifier = _compute_note_nullifier(unique_note_hash, packed_note, owner, storage_slot, note_type_id, contract_address, randomness);\n\n aztec::messages::discovery::NoteHashAndNullifier {\n note_hash,\n inner_nullifier,\n }\n })\n }\n }\n}\n\ncomptime fn generate_contract_library_method_compute_note_hash() -> Quoted {\n if NOTES.len() == 0 {\n // Contracts with no notes still implement this function to avoid having special-casing, the implementation\n // simply throws immediately.\n quote {\n /// This contract does not use private notes, so this function should never be called as it will unconditionally fail.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[contract_library_method]\n unconstrained fn _compute_note_hash(\n _packed_note: BoundedVec<Field, aztec::messages::logs::note::MAX_NOTE_PACKED_LEN>,\n _owner: aztec::protocol::address::AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: aztec::protocol::address::AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n panic(f\"This contract does not use private notes\")\n }\n }\n } else {\n // Contracts that do define notes produce an if-else chain where `note_type_id` is matched against the\n // `get_note_type_id()` function of each note type that we know of, in order to identify the note type. Once we\n // know it we call the correct `unpack` method from the `Packable` trait to obtain the underlying\n // note type, and compute the note hash (non-siloed).\n\n // We resolve the log format calls here so that the resulting Quoted values can be spliced into the quote\n // block below.\n let warn_length_mismatch = logging::aztecnr_warn_log_format(\n \"Packed note length mismatch for note type id {0}: expected {1} fields, got {2}. Skipping note.\",\n );\n let warn_unknown_note_type = logging::aztecnr_warn_log_format(\"Unknown note type id {0}. Skipping note.\");\n\n let mut if_note_type_id_match_statements_list = @[];\n for i in 0..NOTES.len() {\n let typ = NOTES.get(i);\n\n let get_note_type_id = get_trait_impl_method(\n typ,\n quote { crate::note::note_interface::NoteType },\n quote { get_id },\n );\n let unpack = get_trait_impl_method(\n typ,\n quote { crate::protocol::traits::Packable },\n quote { unpack },\n );\n\n let compute_note_hash = get_trait_impl_method(\n typ,\n quote { crate::note::note_interface::NoteHash },\n quote { compute_note_hash },\n );\n\n let if_or_else_if = if i == 0 {\n quote { if }\n } else {\n quote { else if }\n };\n\n if_note_type_id_match_statements_list = if_note_type_id_match_statements_list.push_back(\n quote {\n $if_or_else_if note_type_id == $get_note_type_id() {\n // As an extra safety check we make sure that the packed_note BoundedVec has the expected\n // length, since we're about to interpret its raw storage as a fixed-size array by calling the\n // unpack function on it.\n let expected_len = <$typ as $crate::protocol::traits::Packable>::N;\n let actual_len = packed_note.len();\n if actual_len != expected_len {\n $warn_length_mismatch([note_type_id, expected_len as Field, actual_len as Field]);\n Option::none()\n } else {\n let note = $unpack(aztec::utils::array::subarray(packed_note.storage(), 0));\n\n Option::some($compute_note_hash(note, owner, storage_slot, randomness))\n }\n }\n },\n );\n }\n\n let if_note_type_id_match_statements = if_note_type_id_match_statements_list.join(quote {});\n\n quote {\n /// Unpacks an array into a note corresponding to `note_type_id` and then computes its note hash\n /// (non-siloed).\n ///\n /// The signature of this function notably matches the `aztec::messages::discovery::ComputeNoteHash` type,\n /// and so it can be used to call functions from that module such as `do_sync_state` and\n /// `process_private_note_msg`.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[contract_library_method]\n unconstrained fn _compute_note_hash(\n packed_note: BoundedVec<Field, aztec::messages::logs::note::MAX_NOTE_PACKED_LEN>,\n owner: aztec::protocol::address::AztecAddress,\n storage_slot: Field,\n note_type_id: Field,\n _contract_address: aztec::protocol::address::AztecAddress,\n randomness: Field,\n ) -> Option<Field> {\n $if_note_type_id_match_statements\n else {\n $warn_unknown_note_type([note_type_id]);\n Option::none()\n }\n }\n }\n }\n}\n\ncomptime fn generate_contract_library_method_compute_note_nullifier() -> Quoted {\n if NOTES.len() == 0 {\n // Contracts with no notes still implement this function to avoid having special-casing, the implementation\n // simply throws immediately.\n quote {\n /// This contract does not use private notes, so this function should never be called as it will unconditionally fail.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[contract_library_method]\n unconstrained fn _compute_note_nullifier(\n _unique_note_hash: Field,\n _packed_note: BoundedVec<Field, aztec::messages::logs::note::MAX_NOTE_PACKED_LEN>,\n _owner: aztec::protocol::address::AztecAddress,\n _storage_slot: Field,\n _note_type_id: Field,\n _contract_address: aztec::protocol::address::AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n panic(f\"This contract does not use private notes\")\n }\n }\n } else {\n // Contracts that do define notes produce an if-else chain where `note_type_id` is matched against the\n // `get_note_type_id()` function of each note type that we know of, in order to identify the note type. Once we\n // know it we call the correct `unpack` method from the `Packable` trait to obtain the underlying\n // note type, and compute the inner nullifier (non-siloed).\n\n // We resolve the log format calls here so that the resulting Quoted values can be spliced into the quote\n // block below.\n let warn_length_mismatch = logging::aztecnr_warn_log_format(\n \"Packed note length mismatch for note type id {0}: expected {1} fields, got {2}. Skipping note.\",\n );\n let warn_unknown_note_type = logging::aztecnr_warn_log_format(\"Unknown note type id {0}. Skipping note.\");\n\n let mut if_note_type_id_match_statements_list = @[];\n for i in 0..NOTES.len() {\n let typ = NOTES.get(i);\n\n let get_note_type_id = get_trait_impl_method(\n typ,\n quote { crate::note::note_interface::NoteType },\n quote { get_id },\n );\n let unpack = get_trait_impl_method(\n typ,\n quote { crate::protocol::traits::Packable },\n quote { unpack },\n );\n\n let compute_nullifier_unconstrained = get_trait_impl_method(\n typ,\n quote { crate::note::note_interface::NoteHash },\n quote { compute_nullifier_unconstrained },\n );\n\n let if_or_else_if = if i == 0 {\n quote { if }\n } else {\n quote { else if }\n };\n\n if_note_type_id_match_statements_list = if_note_type_id_match_statements_list.push_back(\n quote {\n $if_or_else_if note_type_id == $get_note_type_id() {\n // As an extra safety check we make sure that the packed_note BoundedVec has the expected\n // length, since we're about to interpret its raw storage as a fixed-size array by calling the\n // unpack function on it.\n let expected_len = <$typ as $crate::protocol::traits::Packable>::N;\n let actual_len = packed_note.len();\n if actual_len != expected_len {\n $warn_length_mismatch([note_type_id, expected_len as Field, actual_len as Field]);\n Option::none()\n } else {\n let note = $unpack(aztec::utils::array::subarray(packed_note.storage(), 0));\n\n // The message discovery process finds settled notes, that is, notes that were created in\n // prior transactions and are therefore already part of the note hash tree. The note hash\n // for nullification is hence the unique note hash.\n $compute_nullifier_unconstrained(note, owner, unique_note_hash)\n }\n }\n },\n );\n }\n\n let if_note_type_id_match_statements = if_note_type_id_match_statements_list.join(quote {});\n\n quote {\n /// Computes a note's inner nullifier (non-siloed) given its unique note hash, preimage and extra data.\n ///\n /// The signature of this function notably matches the `aztec::messages::discovery::ComputeNoteNullifier`\n /// type, and so it can be used to call functions from that module such as `do_sync_state` and\n /// `process_private_note_msg`.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[contract_library_method]\n unconstrained fn _compute_note_nullifier(\n unique_note_hash: Field,\n packed_note: BoundedVec<Field, aztec::messages::logs::note::MAX_NOTE_PACKED_LEN>,\n owner: aztec::protocol::address::AztecAddress,\n _storage_slot: Field,\n note_type_id: Field,\n _contract_address: aztec::protocol::address::AztecAddress,\n _randomness: Field,\n ) -> Option<Field> {\n $if_note_type_id_match_statements\n else {\n $warn_unknown_note_type([note_type_id]);\n Option::none()\n }\n }\n }\n }\n}\n"
3530
3538
  },
3531
3539
  "99": {
@@ -3563,7 +3571,7 @@
3563
3571
  "start": 12880
3564
3572
  }
3565
3573
  ],
3566
- "path": "/home/aztec-dev/aztec-packages/noir-projects/aztec-nr/aztec/src/macros/aztec.nr",
3574
+ "path": "/home/nico-chamo/repos/aztec-packages-oracle-hash-calculation/noir-projects/aztec-nr/aztec/src/macros/aztec.nr",
3567
3575
  "source": "mod compute_note_hash_and_nullifier;\n\nuse crate::{\n macros::{\n calls_generation::{\n external_functions::{generate_external_function_calls, generate_external_function_self_calls_structs},\n internal_functions::generate_call_internal_struct,\n },\n dispatch::generate_public_dispatch,\n emit_public_init_nullifier::generate_emit_public_init_nullifier,\n internals_functions_generation::{create_fn_abi_exports, process_functions},\n offchain_receive::{\n OFFCHAIN_RECEIVE_FN_NAME, OFFCHAIN_RECEIVE_PARAM_NAME, offchain_receive_param_type,\n OFFCHAIN_RECEIVE_RETURN_TYPE,\n },\n storage::STORAGE_LAYOUT_NAME,\n utils::{is_fn_contract_library_method, is_fn_external, is_fn_internal, is_fn_test, module_has_storage},\n },\n messages::discovery::{CustomMessageHandler, CustomSyncHandler},\n};\n\nuse compute_note_hash_and_nullifier::generate_contract_library_methods_compute_note_hash_and_nullifier;\n\n/// Configuration for the [`aztec`] macro.\n///\n/// This type lets users override different parts of the default aztec-nr contract behavior, such\n/// as message handling and state synchronization. These are advanced features that require careful\n/// understanding of the behavior of these systems.\n///\n/// ## Examples\n///\n/// ```noir\n/// #[aztec(aztec::macros::AztecConfig::new().custom_message_handler(my_handler))]\n/// contract MyContract { ... }\n/// ```\npub struct AztecConfig {\n custom_message_handler: Option<CustomMessageHandler>,\n custom_sync_state: Option<CustomSyncHandler>,\n}\n\nimpl AztecConfig {\n /// Creates a new `AztecConfig` with default values.\n ///\n /// Calling `new` is equivalent to invoking the [`aztec`] macro with no parameters. The different methods\n /// (e.g. [`AztecConfig::custom_message_handler`]) can then be used to change the default behavior.\n pub comptime fn new() -> Self {\n Self { custom_message_handler: Option::none(), custom_sync_state: Option::none() }\n }\n\n /// Sets a handler for custom messages.\n ///\n /// This enables contracts to process non-standard messages (i.e. any with a message type that is not in\n /// [`crate::messages::msg_type`]).\n ///\n /// `handler` must be a function that conforms to the\n /// [`crate::messages::discovery::CustomMessageHandler`] type signature.\n pub comptime fn custom_message_handler(&mut self, handler: CustomMessageHandler) -> Self {\n self.custom_message_handler = Option::some(handler);\n *self\n }\n\n /// Overrides the default state synchronization logic.\n ///\n /// The generated `sync_state` function will call `handler` instead of\n /// [`crate::messages::discovery::do_sync_state`]. The handler receives all of the same parameters, so it can\n /// run custom logic (e.g. fetching and decrypting custom logs) before, after, or instead of calling\n /// `do_sync_state`.\n ///\n /// `handler` must be a function that conforms to the\n /// [`crate::messages::discovery::CustomSyncHandler`] type signature.\n pub comptime fn custom_sync_state(&mut self, handler: CustomSyncHandler) -> Self {\n self.custom_sync_state = Option::some(handler);\n *self\n }\n}\n\n/// Enables aztec-nr features on a `contract`.\n///\n/// All aztec-nr contracts should have this macro invoked on them, as it is the one that processes all contract\n/// functions, notes, storage, generates interfaces for external calls, and creates the message processing\n/// boilerplate.\n///\n/// ## Examples\n///\n/// Most contracts can simply invoke the macro with no parameters, resulting in default aztec-nr behavior:\n/// ```noir\n/// #[aztec]\n/// contract MyContract { ... }\n/// ```\n///\n/// Advanced contracts can use [`AztecConfig`] to customize parts of its behavior, such as message\n/// processing.\n/// ```noir\n/// #[aztec(aztec::macros::AztecConfig::new().custom_message_handler(my_handler))]\n/// contract MyAdvancedContract { ... }\n/// ```\n#[varargs]\npub comptime fn aztec(m: Module, args: [AztecConfig]) -> Quoted {\n let num_args = args.len();\n let config = if num_args == 0 {\n AztecConfig::new()\n } else if num_args == 1 {\n args[0]\n } else {\n panic(f\"#[aztec] expects 0 or 1 arguments, got {num_args}\")\n };\n\n // Functions that don't have #[external(...)], #[contract_library_method], or #[test] are not allowed in contracts.\n check_each_fn_macroified(m);\n\n // We generate new functions prefixed with `__aztec_nr_internals__` and we replace the original functions' bodies\n // with `static_assert(false, ...)` to prevent them from being called directly from within the contract.\n let functions = process_functions(m);\n\n // We generate structs and their implementations necessary for convenient functions calls.\n let interface = generate_contract_interface(m);\n let self_call_structs = generate_external_function_self_calls_structs(m);\n let call_internal_struct = generate_call_internal_struct(m);\n\n // We generate ABI exports for all the external functions in the contract.\n let fn_abi_exports = create_fn_abi_exports(m);\n\n // We generate `_compute_note_hash`, `_compute_note_nullifier` (and the deprecated\n // `_compute_note_hash_and_nullifier` wrapper) only if they are not already implemented.\n // If they are implemented we just insert empty quotes.\n let contract_library_method_compute_note_hash_and_nullifier = if !m.functions().any(|f| {\n // Note that we don't test for `_compute_note_hash` or `_compute_note_nullifier` in order to make this simpler\n // - users must either implement all three or none.\n // Down the line we'll remove this check and use `AztecConfig`.\n f.name() == quote { _compute_note_hash_and_nullifier }\n }) {\n generate_contract_library_methods_compute_note_hash_and_nullifier()\n } else {\n quote {}\n };\n let process_custom_message_option = if config.custom_message_handler.is_some() {\n let handler = config.custom_message_handler.unwrap();\n quote { Option::some($handler) }\n } else {\n quote { Option::<aztec::messages::discovery::CustomMessageHandler>::none() }\n };\n\n let offchain_inbox_sync_option = quote {\n Option::some(aztec::messages::processing::offchain::sync_inbox)\n };\n\n if m.functions().any(|f| f.name() == quote { sync_state }) {\n panic(\n \"User-defined 'sync_state' is not allowed. Use AztecConfig::custom_sync_state() to customize sync behavior.\",\n );\n }\n\n let custom_sync_handler = if config.custom_sync_state.is_some() {\n let handler = config.custom_sync_state.unwrap();\n Option::some(quote { $handler })\n } else {\n Option::none()\n };\n\n let sync_state_fn_and_abi_export = generate_sync_state(\n process_custom_message_option,\n offchain_inbox_sync_option,\n custom_sync_handler,\n );\n\n if m.functions().any(|f| f.name() == quote { offchain_receive }) {\n panic(\n \"User-defined 'offchain_receive' is not allowed. The function is auto-injected by the #[aztec] macro. See https://docs.aztec.network/errors/7\",\n );\n }\n let offchain_receive_fn_and_abi_export = generate_offchain_receive();\n\n let (has_public_init_nullifier_fn, emit_public_init_nullifier_fn_body) = generate_emit_public_init_nullifier(m);\n let public_dispatch = generate_public_dispatch(m, has_public_init_nullifier_fn);\n\n quote {\n $interface\n $self_call_structs\n $call_internal_struct\n $functions\n $fn_abi_exports\n $contract_library_method_compute_note_hash_and_nullifier\n $public_dispatch\n $sync_state_fn_and_abi_export\n $emit_public_init_nullifier_fn_body\n $offchain_receive_fn_and_abi_export\n }\n}\n\ncomptime fn generate_contract_interface(m: Module) -> Quoted {\n let calls = generate_external_function_calls(m);\n\n let module_name = m.name();\n\n let has_storage_layout = module_has_storage(m) & STORAGE_LAYOUT_NAME.get(m).is_some();\n let storage_layout_getter = if has_storage_layout {\n let storage_layout_name = STORAGE_LAYOUT_NAME.get(m).unwrap();\n quote {\n pub fn storage_layout() -> StorageLayoutFields {\n $storage_layout_name.fields\n }\n }\n } else {\n quote {}\n };\n\n let library_storage_layout_getter = if has_storage_layout {\n quote {\n #[contract_library_method]\n $storage_layout_getter\n }\n } else {\n quote {}\n };\n\n quote {\n pub struct $module_name {\n pub target_contract: aztec::protocol::address::AztecAddress\n }\n\n impl $module_name {\n $calls\n\n pub fn at(\n addr: aztec::protocol::address::AztecAddress\n ) -> Self {\n Self { target_contract: addr }\n }\n\n pub fn interface() -> Self {\n Self { target_contract: aztec::protocol::address::AztecAddress::zero() }\n }\n\n $storage_layout_getter\n }\n\n #[contract_library_method]\n pub fn at(\n addr: aztec::protocol::address::AztecAddress\n ) -> $module_name {\n $module_name { target_contract: addr }\n }\n\n #[contract_library_method]\n pub fn interface() -> $module_name {\n $module_name { target_contract: aztec::protocol::address::AztecAddress::zero() }\n }\n\n $library_storage_layout_getter\n\n }\n}\n\n/// Generates the `sync_state` utility function that performs message discovery.\ncomptime fn generate_sync_state(\n process_custom_message_option: Quoted,\n offchain_inbox_sync_option: Quoted,\n custom_sync_handler: Option<Quoted>,\n) -> Quoted {\n let body = if custom_sync_handler.is_some() {\n let handler = custom_sync_handler.unwrap();\n quote {\n $handler(\n address,\n _compute_note_hash,\n _compute_note_nullifier,\n $process_custom_message_option,\n $offchain_inbox_sync_option,\n scope,\n );\n }\n } else {\n quote {\n aztec::messages::discovery::do_sync_state(\n address,\n _compute_note_hash,\n _compute_note_nullifier,\n $process_custom_message_option,\n $offchain_inbox_sync_option,\n scope,\n );\n }\n };\n\n quote {\n pub struct sync_state_parameters {\n pub scope: aztec::protocol::address::AztecAddress,\n }\n\n #[abi(functions)]\n pub struct sync_state_abi {\n parameters: sync_state_parameters,\n }\n\n #[aztec::macros::internals_functions_generation::abi_attributes::abi_utility]\n unconstrained fn sync_state(scope: aztec::protocol::address::AztecAddress) {\n let address = aztec::context::UtilityContext::new().this_address();\n $body\n }\n }\n}\n\n/// Generates an `offchain_receive` utility function that lets callers add messages to the offchain message inbox.\n///\n/// For more details, see `aztec::messages::processing::offchain::receive`.\ncomptime fn generate_offchain_receive() -> Quoted {\n let param_type = offchain_receive_param_type(quote { aztec });\n let parameters_struct_name = f\"{OFFCHAIN_RECEIVE_FN_NAME}_parameters\".quoted_contents();\n let abi_struct_name = f\"{OFFCHAIN_RECEIVE_FN_NAME}_abi\".quoted_contents();\n\n quote {\n pub struct $parameters_struct_name {\n pub $OFFCHAIN_RECEIVE_PARAM_NAME: $param_type,\n }\n\n #[abi(functions)]\n pub struct $abi_struct_name {\n parameters: $parameters_struct_name,\n }\n\n /// Receives offchain messages into this contract's offchain inbox for subsequent processing.\n ///\n /// Each message is routed to the inbox scoped to its `recipient` field.\n ///\n /// For more details, see `aztec::messages::processing::offchain::receive`.\n ///\n /// This function is automatically injected by the `#[aztec]` macro.\n #[aztec::macros::internals_functions_generation::abi_attributes::abi_utility]\n unconstrained fn $OFFCHAIN_RECEIVE_FN_NAME($OFFCHAIN_RECEIVE_PARAM_NAME: $param_type) -> $OFFCHAIN_RECEIVE_RETURN_TYPE {\n let address = aztec::context::UtilityContext::new().this_address();\n aztec::messages::processing::offchain::receive(address, $OFFCHAIN_RECEIVE_PARAM_NAME);\n }\n }\n}\n\n/// Checks that all functions in the module have a context macro applied.\n///\n/// Non-macroified functions are not allowed in contracts. They must all be one of\n/// [`crate::macros::functions::external`], [`crate::macros::functions::internal`] or `test`.\ncomptime fn check_each_fn_macroified(m: Module) {\n for f in m.functions() {\n let name = f.name();\n if !is_fn_external(f) & !is_fn_contract_library_method(f) & !is_fn_internal(f) & !is_fn_test(f) {\n // We don't suggest that #[contract_library_method] is allowed because we don't want to introduce another\n // concept\n panic(\n f\"Function {name} must be marked as either #[external(...)], #[internal(...)], or #[test]\",\n );\n }\n }\n}\n"
3568
3576
  }
3569
3577
  },
@@ -5412,11 +5420,11 @@
5412
5420
  "visibility": "databus"
5413
5421
  }
5414
5422
  },
5415
- "bytecode": "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",
5423
+ "bytecode": "H4sIAAAAAAAA/+3dB5jVVPcvfpKcnJycQ++999577yBNQERE+gCDwwDDgICIgIiIiDAUERGRXkRBQFB6b2dRVJAuRZHeBETqf6PvK+MS33wTZ937PP/n3ud9vOe3OLNWPtlJdrKT7GPEjZ98OHv79h0HxUZ0bh8d0z4yOjYiJrpjVN/27SOiY2MG9u6lIsdCD4YtqRnVsfPLNXsNqNsvunOtjlFRw+Y0r9GkXp24YfOej4yNjujbV88OfMnQgC+lQDKlqg58KW14KPCtdNC3MiNLlQX5UlbkS9mQL2WHljwH9K2c0LdyQd/KjSx8XuRL+ZENpgDypYLIlwojy1QUyVQM+VJx5EslkWUqjWQqg3ypLPKl8sgyVUQyVUK+VBn5UlVkmaojmWogX6qpDVtUMyYyKiqy2+N/n5ho3LgJ48ZtyZ7of/8/bdjCGn37RsTEtomI6TVh3Pi4LdmLd2kSc6rEjAKrmtX5ctiw1i/lL3Wu/sCveo+vderWhGvqT8gY/b/THihy5mUvad/5x7R/xp+yIpY369U3IrJLr+iSzSJievaL7Rgb2Ss6buKfK0Yt7p+f8zzZ2+P9+zsTyRhDxrtkjCXjvb8u+YQ451WYD/iOqgCtA+cWS+R+AfNDC/gutIDjJRawALSAY6EFjAMW0MtWNC7e5/HxPsfF+/ye2pImkKH+O4mMye7XQ0FoPUyA1sP7Eg1VCFrAidACTpFYwMLQAk6CFvADoS3p/Xifp8T7/EG8z5PVNjSVjA/JmEbGR+7XQxFoPUyF1sN0iYYqCi3gh9ACfiyxgMWgBZwGLeAMoS1perzPH8f7PCPe54/UlvQJGTPJmEXGbPfroTi0Hj6B1sMciYYqAS3gTGgB50osYEloAWdBCzhPaEuaE+/z3Hif58X7PFttSfPJWEDGQjIWuV8PpaD1MB9aD59KNFRpaAEXQAu4WGIBy0ALuBBawM+EtqRP431eHO/zZ/E+L1Jb0udkLCFjKRlfuF8PZaH18Dm0HpZJNFQ5aAGXQAu4XGIBy0MLuBRawBVCW9KyeJ+Xx/u8It7nL9SW9CUZK8lYRcZX7tdDBWg9fAmth68lGqoitIAroQVcLbGAlaAFXAUt4BqhLenreJ9Xx/u8Jt7nr9SWtJaMdWSsJ2OD+/VQGVoPa6H1sFGioapAC7gOWsBNEgtYFVrA9dACbhbakjbG+7wp3ufN8T5vUFvSFjK2krGNjO3u10M1aD1sgdbDDomGqg4t4FZoAXdKLGANaAG3QQu4S2hL2hHv8854n3fF+7xdbUm7yQiTQWTscb8eakLrYTe0HvZKNFQtaAHD0ALuE2qovfE+74v3meJ93qMaaj8Z35DxLRnf/XU9xAHG3JDwADCc73ynQOXJ7n4JU0FLeNAhkfbsUGgJD1b/690MNeI6t0VkdLeoiD9uJjgtbT7nbeH3jD17R0WQ8b37OyXjJwALoTKPhzbwQ87r1kv1Q67vJsRBi3sA2hYOe1ilTlnzKxSyjPmhJTzicvUgq125VWLshtdRT0esv+8tR7P/dW/RXO4teZyXYxyWyds6dVpTBVRabMs8Aq33YwLt/njLRG7MYFvmIehbxwUOWmpdH0cOG3/Z4PRJCX54dpcwb0InzJPQCZHe+0lKZK8oaCD7BHA/VCvovGRxT3rLE08+/oDajyfQke5Edg8H5OPq77DDx3FotzuZQJiT2V0fCY2CExKqzSHqKZdHyjigQdR6PgYe9LFu9LSXs5yEOgafcXkMjoM22SOqU0e37ZPYWvrR7UHd7Tl3EVfn3D/JnHMXUZmxQ9JZgXNuVf2s23Nu7Bh2QG2PUDuH1ojUP6M2IKz+Wi/jBM6b789Io4bWQN9a62HDc1rCoqrpkU6mKKQ9J9KIP6vE2MHifAJ1cef/5ZVJoQS8MvGyTp3WVDGVFju1OAet9wtuD9K+OLenoQ4XaI8ePTr5JOX/Pphpj/8T78zw4pOPl7DDO7INXcS+dim7++FHxwvGuGu/f+si1HiXgDXrdgNTG44qL9OnqJOM09jh4LJA/Xzw+d0VKf0prP5Vgfp5YP01qfMJsP51t/05lvYGkrZxRM9eMQMbREfGTkh8LNEMtSGqrUE1iForasFUkv/3v/8//W/uH+3tdnM2f9+ZwTObX4Dtbv4fy9G0d1ziCZvUn5Bx08tV7gXwBAJb8FseLsWh3uUmdMBQX7yFnenchDi3XbbD5t/b4bbHbSMhz9F+db8F/UrGHddbkLqYPIe24R0MeAcC/ua+aRTwN7mm0dGmueu+ae6Scc/9MFzxhBqGKw657kvt+/fQff8+toHdgzgP3G9gqpkeyG1gBrqBPXS/gT0k45Hrfb+Qi33/EdY0jxCgL5H7pnmo/kquaXxg0/g0103j08inexiL8iE7dsKNRXnbtX06uGv7oNtIKh+0anyut5/HreBzfQXzeLgNaSxsuO0sZDMFxquLqbTit1uBkXl3CQsndMJCCZ1QbdYJfwcX6IafjIb5/E8+WuhCm8BCA4NhPn/2fztMeNxxMOuOx2FCX+DJRzvBhgl9AexrtqdhwuPIMKEvAB1GbGDNuh4m9JmqvMQw4WM8dIHqC8oMEoLVQwLV88LVE4sM0h1Hhyh9SWSGKEF9Uin9D1j9ZFJDpKA/uZT/BFY/hcux1CTHElVX+6vaadSWqzYe1YJqJSqHSvV/fRBQdqww8Hi9+kxsvaZ0dTKb5PElRUrypfIwVugz0YN8KuxsHXpc25faJXDz78DUHlc6tuQmtORp3DdNGvKl9TAIhzdNWgyYFgKmc980CphOrml0tGnSu2+a9OTL4LppCrtomgxY02SAgBndN40CZpRrGgNtmkzumyYT+TJ7eIDtvovGyYw1TmaImMV94yhiFrnG8aGNk9V942QlXzYPY4t402TDmiYbBMzuvmkUMLtc05ho0+Rw3zQ5yJfT/X7zeJ1baOPkxBonJ0TM5b5xFDGXXOP40cbJ7b5xcpMvj4fGMVzsOXmwxskDEfO6bxxFzCvXOBbaOPncN04+8uX3tuf40cbJjzUO9K6Or4D7xlHEAu6vCH8nJuRJNPDeBzSmVjA7a0N1heYr5OGpIJ/zwLLGNxd1GljES6mizme8vFRR8hXzUqq48xkcL1WcfCW8lCrpfD7CS5UkXykvpUo796+8VGnylfFSqqxzb8FLlSVfOS+lyjsf+3ip8uSr4KVURecDMi9VkXyVvJSq7FjK5qUqk6+Kl1JVHUsFeamq5KvmpVR1x1IhXkqNe9XwUqqmY6nEvFRN8tXyUqq2Y6kkvFRt8tXxUqquY6mkvFRd8tXzUqq+Y6lkvFR98jXwUqqhY6nkvFRD8j3jpVQjx1IpeKlG5GvspVQTx1Ipeakm5GvqpVQzx1KpeKlm5HvWS6nmjqVS81LNydfCS6mWjqXS8FItyfecl1KtHEul5aVake95L6VaO5ZKx0u1Jt8LXkq1cSyVnpdqQ74XvZRq61gqAy/VlnwveSnVzrFURl6qHfnaeynVwbFUJl6qA/k6einVybFUZl6qE/k6eynVxbFUFl6qC/kivJTq6lgqKy/VlXzdvJTq7lgqGy/VnXyRXkr1cCzFr698PcjnZYp9X5RjqRy8VBT5enopFe1YKicvFU2+Xl5K9XYslYuX6k2+Pl5KxTiWys1LxZCvr5dSsY6l8vBSseTr56VUf8dSeXmp/uR7xUupAY6l8vFSA8g30EupQY6l8vNSg8j3qpdSgx1LFeClBpPvNS+lhjiWKshLDSHf615KDXUsVYiXGkq+YV5KDXcsVZiXGk6+N7yUGuFYqggvNYJ8b3opNdKxVFFeaiT53vJSapRjqWK81Cjyve2l1GjHUsV5qdHke8dLqTGOpUrwUmPI966XUmMdS5XkpcaS7z0vpZyf0yvFS40j33gvpZxHi0vzUnHkm+Cl1ETHUmV4qYnkm+Sl1GTHUmV5qcnke99LKedfKSnHS00h3wdeSk11LFWel5pKvg+9lJrmWKoCLzWNfB95KeX86yEVeanp5PvYSynnn9moxEvNIN8nXkrNdCxVmZeaSb5ZXkrNdixVhZeaTb45Xko5//xFVV5qLvnmeSk137FUNV5qPvkW8Ler1I2mhSz2+I7QIh5Tt24+5TF1j2Uxj6mbIZ/xmLpr8TmPqdsLS3hM3QdYymNqwP4LHlMj68t4TA2BL+ex6uRbwWM1yfclj6nR35U8poZpV/GYGk/9isfUwOfXPKZGKFfzmBpKXMNjasxvLY+pwbl1PKZG0dbzmBru2sBjalxqI4+pAaRNPKZGejbzmBqS2cJjauxkK491It82HlOjEdt5TA0b7OAxdX2/k8fUhfguHlNXzLt5TF3ahnlMXYMSj6mLxT08pq7q9vKYuvzax2PqOmk/j6kLmm94TF15fMtj6hLhOx5T5/IHeGw4+Q7ymDo7/p7H1GnsIR5T55uHeUydGB7hMXUGd5TH1KnWMR5T50THeUydvJzgMXWW8QOPqdOBkzym+u1TPKY62NM8pnrCMzymuqwfeUz1LT/x2EzyneUxdbT+mcfUYfUcj6nj33kvh1rnSYWq81IXyHfRS6lLjqVq8FKXyHfZSynnWWFq8lJXyHfVSynnKVhq8VLXyHfdS6kbjqVq81KqC/zFS6mbjqXq8FI3yXfLSynnyR7q8lK3yferl1J3HEvV46XukO83L6WcZxuoz0vdJd89L6Wc3zxswEvdJ98DL6WcX3FvyEs9JN8jD6VM55fNn2GlTPVXXn6y1tQdSzXipXQyDS+lnF+BbsxL+cg0vZTyO5Zqwkv5ybS8lAo4lmrKSwXItL2Ucn6RsBkvFSQz5KWU83t7z/JSiclM4qWU80tyzXmppGQm81LK+X20FrxUcjJTeCmV0rFUS14qJZmpvJRyflnpOV4qNZlpvJRK61iqFS+Vlsx0Xko5vy3zPC+VnswMXko5v7fSmpfKSGYmL6UyO5Z6gZfKTGYWL6WcX5tow0tlJTObl1LOLzC8yEtlJzOHl1I5HUu15aVykpnLSynn5+df4qVyk5nHSynn59jb8VJ5ycznpVR+x1Ltean8ZBbwUsr5MeoOvFRBMr08H206Px/dkZcqTKaX56NN5+ejO/FSRcn08ny06fx8dGdeqjiZXp6PNks6lurCS5Uk08vz0abz89ERvFRpMr08H206Px/dlZcqS6aX56NN5+eju/FS5cn08ny06fx8dHdeqiKZXp6PNp2fj47kpSqT6eX5aNP5+egevFRVMr08H206Px/9Mi9VnUwvz0ebzs9HR/FSNcn08ny06fx8dE9eqjaZXp6PNp2fj47mpeqS6eX5aNP5+ehevFR9Mr08H206Px/dm5dqSKaX56NN5+ej+/BSjcj08ny06fx8dAwv1YRML89Hm87PR/flpZqR6eX5aLO5Y6lYXqo5mV6ejzadn4/ux0u1JNPL89Gm8/PR/XmpVmR6eT7adH4++hVeqjWZXp6PNp2fjx7AS7Uh08vz0abz89EDeam2ZHp5Ptp0fj56EC/Vjkwvz0ebzs9Hv8pLdSDTy/PRpvPz0YN5qU5kenk+2nR+Pvo1XqoLmV6ejzadn48ewkt1JdPL89Gm8/PRr/NS3cn08ny06fx89FBeqgeZXp6PNp2fjx7GS0WR6eX5aNP5+ejhvFQ0mV6ejzadn49+g5fqTaaX56PNGMdSI3ipGDK9PB9tOj8f/SYvFUuml+ejTefno0fyUv3J9PJ8tOn8fPRbvNQAMr08H206Px89ipcaRKaX56NN5+ej3+alBpPp5flo0/n56NG81BAyvTwfbTo/H/0OLzWUTC/PR5vOz0eP4aWGk+nl+WjT+fnod3mpEWR6eT7adH4+eiwvNZJML89Hm87PR7/HS40i08vz0abz89HjeKnRZHp5Ptp0fj56PC81hkwvz0ebzs9Hx/FSY8n08nw0MCHyBF5qHJleno82nZ+PnshLxZHp5flo0/n56Em81EQyvTwfbTo/Hz2Zl5pMppfno03n56Pf56WmkOnl+WjT+fnoKbzUVDK9PB9tOj8f/QEvNY1ML89Hm87PR0/lpaaT6eX5aNP5+egPeakZZHp5Ptp0fj56Gi81k0wvz0ebzs9Hf8RLzSbTy/PRpvPz0dN5qblkenk+2nR+PvpjXmo+mQv+Wgr7oVto9ntzoeMCefmh23NknEfnPiqIrblFjun+5Q/dlnIu8OSHbs1PZX7otpTKjCwsmYudV5qX6otlfpTwLPkMqJ1DxyTqmwvVBoTVP+6yPvbjIuZnSKOGjkHfOu5hw3NaQnWPcjEyCVlpSPu5SCN+phJjB4slQH1gCjRzyb/8odsSzsuB/tCtp3XqtKbKqLRxWHVovS91e5CO9wsW8E+owz+hdAT7CaUj0Lccfmf4X/zArvnFk4/LEuyXM8wvsK8tY7+cMTEh19n/3mj++H0N8wto01oGrH+3m7/arFV5tz0e/DNsl9HfalqIbaiXoRW1XIpzBeUswjhXIM4KKc5VlPMpxrkKcb6U4lxDOYsxzjWIs1KKcx3lfIZxrkOcVSInv2opwfOWr6TqL8Hqfy1VfylWf7VU/S+w+muk6i/D6q+Vqr8cq79Oqv4KrP56qfpfYvU3SNVfidXfKFV/FVZ/k1T9r7D6m6Xqf43V3yJVfzVWf6tU/TVY/W1S9ddi9bdL1V+H1d8hVX89Vn+nVP0NWP1dUvU3YvV3S9XfhNUPS9XfjNUnqfpbsPp7pOpvxervlaq/Dau/T6r+dqz+fqn6O7D630jV34nV/1aq/i6s/ndS9Xdj9Q9I1Q9j9Q9K1Ses/vdS9fdg9Q9J1d+L1T8sVX8fVv+IVP39WP2jUvW/weofk6r/LVb/uFT977D6J6TqH8Dq/yBV/yBW/6RU/e+x+qek6h/C6p+Wqn8Yq39Gqv4RrP6PUvWPYvV/kqp/DKt/Vqo+9pPb5s9S9bGf3DbPSdXHfvLcPC9V/yRW/4JUfewH782LUvVPY/UvSdU/g9W/LFX/R6z+Fan6P2H1r0rVP4vVvyZV/2es/nWp+uew+jek6p/H6v8iVf8iVv+mVP3LWP1bUvWvYvVvS9W/jtX/Var+L1j9O1L1b2H1f5Oq/ytW/65U/d+w+vek6t/D6t+Xqv8Aq/9Aqv4jrP5DofqmhtV/JFUfe/jcn0iqvonV16TqW1h9Xaq+jdU3pOqHsPo+qfpJsPqmVP1kWH2/VP0UWH1Lqn4qrH5Aqn4arL4tVT8dVj8oVT8DVj8kVT8TVj+xVP0sWP0kUvWzYfWTStXPgdVPJlU/F1Y/uVT9PFj9FFL182H1U0rVL4DVTyVVvxBWP7VU/SJY/TRS9Yth9dNK1S+B1U8nVb8UVj+9VP0yWP0MUvXLYfUzStWvgNXPJFW/ElY/s1T9Klj9LFL1q2H1s0rVr4HVzyZVvxZWP7tU/TpY/RxS9eth9XNK1W+A1c8lVf8ZrH5uqfqNsfp5pOo3xernlar/LFY/n1T9Flj9/FL1n8PqF5Cq/zxWv6BU/Rew+oWk6r+I1S8sVf8lrH4RqfrtsfpFpep3xOoXk6rfGatfXKp+BFa/hFT9blj9klL1I7H6paTqv4zVLy1VvydWv4xU/V5Y/bJS9ftg9ctJ1e+L1S8vVb8fVr+CVP1XsPoVpeoPxOpXkqr/Kla/slT917D6VaTqv47VrypVfxhWv5pU/Tew+tWl6r+J1a8hVf8trH5NqfpvY/VrSdV/B6tfW6r+u1j9OlL138Pq15WqPx6rX0+q/gSsfn2p+pOw+g2k6r+P1W8oVf8DrP4zUvU/xOo3kqr/EVa/sVT9j7H6TaTqf4LVbypVfxZWv5lU/TlY/Wel6s/D6jeXqr8Aq98Cqf/H9NgNoiNjJyQ9lmgGmcvJXEHml2SuJHMVmV+R+TWZq8lcQ+ZaMteRuZ7MDWRuJHMTmZvJ3ELmVjK3kbmdzB1k7iRzF5m7yQyTSWTuIXMvmfvI3E/mN2R+S+Z3ZB4g8yCZ35N5iMzDZB4h8yiZx8g8TuYJMn8g8ySZp8g8TeYZMn8k8ycyz5L5M5nKfp7MC2ReJPMSmZfJvELmVTKvkXmdzBtk/kLmTTJvkXmbzF/JvEPmb2TeJfMemffJfEDmQzIfkf/xw6Hk18lvkN9HfpP8fvJb5A+Q3yZ/kPwh8icmfxLyJyV/MvInJ38K8qckfyrypyZ/GnVvX91eV3e41U1mdZ9X3WpVdzvVDUd1z0/ddlN3vtTNJ3X/R92CUXdB1I0IdS9ADcerEXE1KK3GhdXQrBodVQOUaoxQDdOpkTI1WKXGi9SQjRo1UQMXauxAXb6rK2h1EauuI9WlnLqaUhc06ppCndarM2t1cqvOL9UpnjrLUic66lxDdfeqx1Wdnup31KFfHX3VAVAdg9RhQO2JamdQ26PaJOb+0d5/2e5+n3TZYUMxoVlK1bfOQZtmS4ldw/xcJcZ2jeeA+k9mjk86YZP6E/K3+ssyIVPsqoVaOsF5gcqgczH7n3e54qApIh+vuFboGn4emiLS3writHbZDpt/b4fWHreNBJyc2f+C+y3oBfK3cb0FlVILhLZhG6xp2kDAF903jQK+KNc0Oto0bd03TVvyv/S3JXeqZJQFDpyaAXynLORqJ7Xvv4Q2UztsA3sJ4rR3v4GpZmovt4EZ6AbWwf0G1oH8HV3v+yVc7PsdsabpCAE7uW8aBewk1zQ+tGk6u2+azuTv8vfzIedSEcgKT7AfofC4a3dBWyEC2366QKumq/vtR7VCV9dnpVoCzZ3/n8Xu5pzK2yYO3jDuDqw24FcI/N2zu17Mx79Ygmz22C+WLIa4kQKrW106RSI/QfCX383QJyX4jxu5S1gyoROWSOiE6gCR8CmBE5onP+zh7/Hk48tohcgE2qN6ZP+Xv7RynHwmcsz2qUvo49gk/MeRb/kcXoJ89OjRHY+/tOKPevKxZ4L90oo/Cvtaz78e48BfWgHX2f8+fP3xSyv+KOgg1xNY/24vPNR2rcqL/NLK49+QC06AVhL5CkEbqi8IrahoKU4I5RTBOCGI00uKkxjlFMM4iSFObylOEpRTAuMkgTh9pDhJUU4pjJMU4sRIcZKhnDIYJxnE6SvFSY5yymGc5BAnVoqTAuVUwDgpIE4/ibH7x0sJvlbWX6o++FrZK1L1wdfKBkjVB18rGyhVH3ytbJBUffC1slel6oOvlQ2Wqg++VvaaVH3wtbIhUvXB18pel6oPvlY2VKo++FrZMKn64Gtlw6Xqg6+VvSFVH3ytbIRUffC1sjel6oOvlY2Uqg++VvaWVH3wtbJRUvXB18relqoPvlY2Wqo++FrZO1L1wbsEY6Tqg6+VvStVH3ytbKxUffC1svek6oOvlY2Tqg++VjZeqj74WlmcVH3wtbIJUvXB18omStUHXyubJFUffK1sslR98LWy96Xqg6+VTZGqD75W9oFUffC1sqlS9cHXyj6Uqg++VjZNqj74WtlHUvXB18qmS9UHXyv7WKo++FrZDKn64Gtln0jVB18rmylVH3ytbJZUffC1stlS9cHXyuZI1QdfK5srVR98rWyeVH3wtbL5UvXB18oWSNUHXytbKFUffK1skVR98LWyT6Xqg6+VLUbqx3utLNmxRNXJH03+XuTvrW69q9vV6havui2qbiWqu3nqhpq6p6VuK6k7O+rmirq/oW4xqFF+NdCuxrrVcLMa8VWDrmrcUw09qtE/NQCnxsDUMJQaCVKDMWo8RA1JqFEBdWGuro3V5am6QlQXaeo6SV2qqKsFdcKuzpnVaas6c1Qnb+r8SZ3CqLMI1ZGrvlR1Z6pHUQd1dVxVhzZ1dFE7uNrH1GautjTV2Gp9K7LX16YC0CNHAcdHjv6z6j+TaPrHDxN9hjX950D9J8/1Jnv8dPXn5F/i4bUpfyT6HNQS7MHlJRBwqUvg5t+BSz2udGzJI6El/8J903xB/mUe3kfCm2YZBlwGAZe7bxoFXC7XNDraNCvcN80K8n/pumlKumiaL7Gm+RICrnTfNAq4Uq5pDLRpVrlvmlXk/8p105C/nYvG+QprnK8g4tfuG0cRv5ZrHB/aOKvdN85q8q/x8JoV3jRrsKZZAwHXum8aBVwr1zQm2jTr3DfNOvKv97DfRD5+2h9snPVY46yHiBvcN44ibpBrHD/aOBvdN85G8m/y0DgRLvacTVjjbIKIm903jiJulmscC22cLe4bZwv5t3rbc3qgjbMVa5ytEHGb+8ZRxG1e3v5LkPc5/rPY251Tedt+tmMXVzuA1Ya8GbMju7fF7JGQlyM7EwizMzvbG4wb5N/FYr7C5N/NY0XJH+ax4uQnHlNnzXt4rDT59/JYWfLv47Hy5N/PYxXJ/w2PVSb/tzxWlfzf8ZgaJznAYzXJf5DHapP/ex6rS/5DPFaf/Id5rCH5j/BYI/If5bEm5D/GY83If5zHmpP/BI+1JP8PPNaK/Cd5rDX5T/FYG/Kf5rG25D/DY+qE+kce60D+n3isE/nP8lgX8v/MY13Jf47HupP/PI/1IP8FHosi/0UeUwNel3hMDX9d5jE1GHaFx9TQ2FUeUwNl13hMDZtd5zE1iHaDx9SQ2i88pgbYbvKYGm67xWNq8O02j6mhuF95TA3M3eExNUz3G4+pQbu7PKaG8O7xmBrQu89janjvAY+pwb6HPKaG/h7x2GSyeM/qm0KWxmNTydJ5bBpZBo9NJ8vHYzPIMnlsJll+HptNlsVjc8kK8Nh8smw2XYE6/llBFlPHPyvEY0XJSsxjxclKwmMlyUrKY6XJSsZjZclKzmPlyUrBYxXJSsljlclKxWNVyUrNY9XJSsNjNclKy2O1yUrHY3XJSs9j9cnKwGMNycrIY43IysRjTcjKzGPNyMrCY83JyspjLcnKxmOtyMrOY63JysFjbcjKyWNtycrFY+3Iys1jHcjKw2OdyMrLY13IysdjXcnKz2PdySrAYz3IKshjUWQV4rFosgrzWG+yivBYDFlFeSyWrGI81p+s4jw2gKwSPDaIrJI8NpisUjw2hKzSPDaUrDI8Npyssjw2gqxyPDaSrPI8NoqsCjw2mqyKPDaGrEo8Npasyjw2jqwqPBZHVlUem0hWNR5Tx7/qPKaOfzV4TB3/avKYOv7V4jF1/KvNY+r4V4fH1PGvLo+p4189HlPHv/o8po5/DXjsAlkNeewSWc/w2BWyGvHYNbIa85g6njbhsZtkNeWx22Q147E7ZD3LY3fJas5j98lqwWMPyWrJYmYisp7jMZ2sVjzmI+t5HvOT1ZrHAmS9wGNBstrwWGKyXuSxpGS15bHkZL3EYynJasdjqclqz2NpyerAY+nJ6shjGcnqxGOZyerMY1nJ6sJj2cmK4LGcZHXlsdxkdeOxvGR157H8ZEXyWEGyevCY6n9f5jHV/0bxmOp/e/KY6n+jeUz1v714TPW/vXlM9b99eEz1vzE8pvrfvjym+t9YHlP9bz8eU/1vfx5T/e8rPKb63wE8pvrfgTym+t9BPKb631d5TPW/g3lM9b+v8Zjqf4fwmOp/X+cx1f8O5THV/w7jMdX/Ducx1f++wWOq/x3BY6r/fZPHVP87ksdU//sWj6n+dxSPqf73bR5T/e9oHlP97zs8pvrfMTym+t93eUz1v2N5TPW/7/GY6n/H8Zjqf8fzmOp/43hM9b8TeEz1vxN5TPW/k3hM9b+TeUz1v+/zmOp/p/CY6n8/4DHV/07lMdX/fshjqv+dxmOq//2Ix1T/O53HVP/7MY+p/ncGj6n+9xMeU/3vTB5T/e8sHlP972weU/3vHB5T/e9cHlP97zweU/3vfB5T/e+Cvw7LxSGjP9j8T9ZClwNu0LCn+TmZS9Ahr53QyJzl9okfbC1hI2nWpy7X0v/5kVNrscj6wWb8sz6TWT8JOK+chTw285fppYzx7qbSAn7paPyfkzVZS7DJmtwOIldQmaFZuaylzivNS/WlIm9GmYvVfS7oOJFY5Ae/rYXqAITVd/uD39hEl9YXSKMmTgt9K52HDc9pCdUZ71Lk3kVFSLtMpBG/UImxzmZ5wtw5sZazKes0l8cU4NfjxoHT8Hlap05rqpJKG4dVh9b7CrcHabdzAD6eCLQ7tLF8proMh2PZo0ePTnqct8/68snHlQk2b5/1Jfa1lR7uTv6+5rBDYHqRvfdxg2D1M7g9BE+MA+YatKDn8KyV0CE4PfStDMD253reQmuZoojMW/j4tH85uC1ZQeyHAJZDK32VFGcFyglhnBUQ5yspzpcoJzHGwXaJr6U4K1FOEoyzEuKsluKsQjlJMc4qiLNGivMVykmGcaBHba21UpyvUU5yjPM1xFknxVmNclJgnNUQZ70UZw3KSYlxoIeHrQ1SnLUoJxXGWQtxNkpx1qGc1BhnHcTZJMVZj3LSYBzoYWhrsxRnA8pJi3E2QJwtUpyNKCcdxtkIcbZKcTahnPQYB3q429omxdmMcjJgnM0QZ7sUZwvKyYhxtkCcHVKcrSgnE8aBHla3dkpxtqGczBhnG8TZJcXZjnKyYJztEGe3FGcHysmKcXZAnLAUZyfKyYZxdkIckuLsQjnZMc4uiLNHirMb5eTAOLshzl4pThjl5MQ4YYizT4pDKCcXxiGIs1+Kswfl5MY4eyDON1KcvSgnD8bZC3G+leLsQzl5Mc4+iPOdFGc/ysmHcfZDnANSnG9QTn6M8w3EOSjF+RblFMA430Kc76U436GcghjnO4hzSIpzAOVgP7NlHoA4h6U4B1FOYYxzEOIckeJ8j3KwXw0zv4c4R6U4h1BOUYxzCOIck+IcRjnYj6CZhyGO1K/0mkdQTnGMcwTinJDiHEU52G+6mUchzg9SnGMopyTGOQZxTkpxjqMc7CfqzOMQ55QU5wTKKY1xTkCc01KcH1AO9ot75g8Q54wU5yTKKYtxTkKcH6U4p1AO9gOC5imI85MU5zTKKY9xTkOcs1KcMygH+z1E8wzE+VmK8yPKqYhxfoQ456Q4P6GcShjnJ4hzXopzFuVUxjhnIc4FKc7PKKcKxvkZ4lyU4pxDOVUxDvaizyUpznmUUw3jnIc4l6U4F1BOdYxzAeJckeJcRDk1MM5FiHNVinMJ5dTEOJcgzjUpzmWUUwvjXIY416U4V1BObYxzBeLckOJcRTl1MM5ViPOLFOcayqmLca5BnJtSnOsopx7GuQ5xbklxbqCc+hjnBsS5LcX5BeU0wDi/QJxfpTg3UU5DjHMT4tyR4txCOc9gnFsQ5zcpzm2U0wjj3IY4d6U4v6KcxhjnV4hzT4pzB+U0wTh3IM59Kc5vKKcpxvkN4jyQ4txFOc0wzl2I81CKcw/lPItx7kGcR1Kc+yinOca5j3ACiaQ4D1BOC4zzAOJoUpyHKKclxnkIcXQpziOU8xzGeQRxDCGOPxHKaYXNLp4I4vikOBrKeR7jaBDHlOLoKKc1xtEhjl+KY6CcFzCOAXEsKY4P5bTBOD6IE5DimCjnRYwDzT0WsKU4fpTTFuP4IU5QimOhnJcwjgVxQlKcAMpph3ECECexFMdGOe0xjg1xkkhxgiinA8YJQpykUpwQyumIcUIQJ5kUJzHK6YRxEkOc5FKcJCinM8ZJAnFSSHGSopwuGCcpxEkpxUmGciIwTjKIk0qKkxzldMU4ySFOailOCpTTDeOkgDhppDgpUU53jJMS4qSV4qRCOZEYJxXESSfFSY1ywF8iSw1x0ktx0qCclzFOGoiTQYqTFuVEYZy0ECejFCcdyumJcdJBnExSnPQoJxrjpIc4maU4GVBOL4yTAeJkkeJkRDm9MU5GiJNVipMJ5fTBOJkgTjYpTmaUE4NxMkOc7FKcLCinL8bJAnFySHGyopxYjJMV4uSU4mRDOf0wTjaIk0uKkx3l9Mc42SFObilODpTzCsbJAXHySHFyopwBGCcnxMkrxcmFcgZinFwQJ58UJzfKGYRxckOc/FKcPCjnVYyTB+IUkOLkRTmDMU5eiFNQipMP5byGcfJBnEJSnPwoZwjGyQ9xCktxCqCc1zFOAYhTRIpTEOUMxTgFIU5RKU4hlDMM4xSCOMWkOIVRznCMUxjiFJfiFEE5b2CcIhCnhBSnKMoZgXGKQpySUpxiKOdNjFMM4pSS4hRHOSMxTnGIU1qKUwLlvIVxSkCcMlKckihnFMYpCXHKSnFKoZy3MU4piFNOilMa5YzGOKUhTnkpThmU8w7GKQNxKkhxyqKcMRinLMSpKMUph3LexTjlIE4lKU55lDMW45SHOJWlOBVQznsYpwLEqSLFqYhyxmEc6JcoA1WlOJVQzniMUwniVJPiVEY5cRinMsSpLsWpgnImYJwqEKeGFKcqypmIcapCnJpSnGooZxLGqQZxaklxqqOcyRinOsSpLcWpgXLexzg1IE4dKU5NlDMF49SEOHWlOLVQzgcYpxbEqSfFqY1ypmKc2hCnvhSnDsr5EOPUgTgNpDh1Uc40jFMX4jSU4tRDOR9hnHoQ5xkpTn2UMx3j1Ic4jaQ4DVDOxxinAcRpLMVpiHJmYJyGEKeJFOcZlPMJxnkG4jSV4jRCOTMxTiOI00yK0xjlzMI4jSHOs1KcJihnNsZpAnGaS3Gaopw5GKcpxGkhxWmGcuZinGYQp6UU51mUMw/jPAtxnpPiNEc58zFOc4jTSorTAuUswDgtIM7zCKdxRM9eMQMbREfGTkh+LNEMslaR9RVZX5O1mqw1ZK0lax1Z68naQNZGsjaRtZmsLWRtJWsbWdvJ2kHWTrJ2kbWbrDBZRNYesvaStY+s/WR9Q9a3ZH1H1gGyDpL1PVmHyDpM1hGyjpJ1jKzjZJ0g6weyTpJ1iqzTZJ0h60eyfiLrLFk/k3WOrPNkXSDrIlmXyLpM1hWyrpJ1jazrZN0g6xeybpJ1i6zbZP1K1h2yfiPrLln3yLpP1gOyHpL1iAKPp6ahgE4BgwI+CpgU8FPAokCAAjYFghQIUSAxBZJQICkFklEgOQVSUCAlBVJRIDUF0lAgLQXSUSA9BTJQICMFMlEgMwWyUCArBbJRIDsFclAgJwVyUSA3BfJQIC8F8lEgPwUKUKAgBQpRoDAFilCgKAWKUaA4BUqo2/HqFra67atularbi+qWnLqNpW79qNsl6haDGpZXQ9lq+FcNmaphRjU0p4az1BCQGjZRQw3q8lxd0qrLQHXppC431Cm6Oq1Vp4Lq9EmdcqhuWnVtqjtQh1B12FG7qtq81SYx94/2/stmPG4CtDm1dt40TUqcHvqW25eXxiM7kLVMLeR4yPICUH/+H6uqae+45BM2qT+hQJu/7f1Oy6QWagVwkKiklh1b8BclDlGPV1wbdA1jk3YE2kCcti7bYfPv7dDW47YBLbm1DFryl9xvQS9RoJ3rLaiCWiC0DbEpLtTXEGB7902jgO3lmkZHm6aD+6bpQIGOf1typ0pG5QnA+jaA72A3mjpJ7fsd0WbC5oEIdIQ4nd1vYKqZOsttYAa6gXVxv4F1oUCE632/nIt9H5s1QX0NAXZ13zQK2FWuaXxo03Rz3zTdKNDdy/lQJLLCE6eFvpVOatfujrYCNnNAoDu0anq4335UK/Tw0govQ+s3PfQt57NSzdsm/jJ2chcFrLYlNaM6dn65Zq8BdftFd67VMSpq2JzmNZrUqxM3bN7zkbHREX37qjzZXS9mRbKWIiscemDFWgpxewqsbnXR1HMcsBoX1YyJjIqK7PZ4DU7UJw2b2yIyultUxIRx44EtBXk0z1XC8gmdsFxCJ1QHiIRPCZzQxD3O2bN3VAQFop987IVW6JlAe1R09r9uMb64P61IR07+SPLvgI4Wn5K12GEDfvTo0Z0nq/p/f1l7/J94K7H3k499nP7297+HVk9v7Gt93B+X/lhz0OEzSVeXneh4uEGw+t1c1h838X+njbv2+zbcGzqY9kH2hyRdoW91A7Y/txdLal9UlHEuVxF0nvN4E4lGt6Vd2AhrNLTSY6Q4vVDObozTC+L0leL0RjlhjIPtErFSnD4ohzBOH4jTT4oTg3L2YJwYiNNfitMX5ezFOH0hzitSnFiUsw/jxEKcAVKcfihnP8bpB3EGSnH6o5xvME5/iDNIivMKyvkW47wCcV6V4gxAOd9hnAEQZ7AUZyDKOYBxBkKc16Q4g1DOQYwzCOIMkeK8inK+xzivQpzXpTiDUc4hjDMY4gyV4ryGcg5jnNcgzjApzhCUcwTjDIE4w6U4r6OcoxjndYjzhhRnKMo5hnGGQpwRUpxhKOc4xhkGcd6U4gxHOScwznCIM1KK8wbK+QHjvAFx3pLijEA5JzHOCIgzSorzJso5hXHehDhvS3FGopzTGGckxBktxXkL5ZzBOG9BnHekOKNQzo8YZxTEGSPFeRvl/IRx3oY470pxRqOcsxhnNMQZK8V5B+X8jHHegTjvSXHGoJxzGGcMxBG7IfIuyjmPcd6FOOOlOGNRzgWMMxbixElx3kM5FzHOexBnghRnHMq5hHHGQZyJUhz4xvRljIM9/TNJigM/oXAF48RBnMlSnAko5yrGwZ4ze1+KMxHlXMM4EyHOFCnOJJRzHeNMgjgfSHEmo5wbGGcyxJkqxXkf5fyCcd6HOB9KcaagnJsYZwrEmSbF+QDl3MI4H0Ccj6Q4U1HObYwzFeJMl+J8iHJ+xTgfQpyPpTjTUM4djDMN4syQ4nyEcn7DOB9BnE+kONNRzl2MMx3izJTifIxy7mGcjyHOLCnODJRzH+PMgDizpTifoJwHGOcTiDNHijMT5TzEODMhzlwpziyU8wjjzII486Q4s0GOlQjjzIY486U4c1COhnHmQJwFUpy5KEfHOHMhzkIpzjyUY2CceRBnkRRnPsrxYZz5EOdTKc4ClGNinAUQZ7EUZyHK8WOchRDnMynOIpRjYZxFEOdzKc6nKCeAcT6FOEukOItRjo1xFkOcpQgn3pRCKY4lqk6BGAr0pUAsBfpRoD8FXqHAAAoMpMAgCrxKgcEUeI0CQyjwOgWGUmAYBYZT4A0KjKDAmxQYSYG3KDCKAm9TYLS6da5uN6tbtOq2proVqG6fqVtO6jaNurWhbgeoIXQ17KyGatXwphoSVMNoauhJDdeoIQ41LKAupdXlp7pkU5c56tJAnU6rU1B12qZOddTpgepSVTekDt3qcKcOEWq3Upuiaj5F/hdT5nzhvOoD0EtZAfdvl0E3MR6/lPUFdntiGVD/yTvdKR6/Wb+MAss9TJkT6InsBI8XfTn20vpyCLjCJXDz78AVHlc6tuQ9oSX/0n3TfEmBlR7mosGbZiUGXAkBV7lvGgVcJdc0Oto0X7lvmq8o8LXrpinvomm+xprmawi42n3TKOBquaYx0KZZ475p1lBgreumoUAnF42zFmuctRBxnfvGUcR1co3jQxtnvfvGWU+BDR6m2MGbZgPWNBsg4Eb3TaOAG+WaxkSbZpP7plH/2+xhv+n5eKYHsHE2Y42zGSJucd84irhFrnH8aONsdd84WymwzUPjRLrYc7ZhjbMNIm533ziKuF2ucSy0cXa4b5wdFNjpbc+JRhtnJ9Y4OyHiLveNo4i7vFxc7UYWO2FmvHj8JW/bz27s4ioMrDZkhpVwdm+LGZ2QlyOUQBjKzvYG4wYF9rCYrzAF9vJYUQrs47HiFNjPYyUp8A2PlabAtzxWlgLf8Zg64z7AYxUpcJDHKlPgex6rSoFDPKbGSQ7zWE0KHOGx2hQ4ymN1KXCMx+pT4DiPNaTACR5rRIEfeKwJBU7yWDMKnOKx5hQ4zWMtKXCGx1pR4Ecea02Bn3isDQXO8lhbCvzMY+0ocI7HOlDgPI+pE+8LPNaFAhd5rCsFLvFYdwpc5rEeFLjCY1EUuMpj0RS4xmO9KXCdx9TA2A0eU8Nkv/CYGjS7yWNqCO0Wj6kBtds8pobXfuUxNdh2h8fU0NtvPKYG4u7ymBqWu8djapDuPo+pIbsHPKYG8B7ymBrOe8RjY8nmPaFvHNkaj8WRrfPYRLINHptMto/HppBt8thUsv08No1si8emkx3gsRlk2zw2k+wgj80mO8Rjc8lOzGPzyU7CpqpUxz87KYup45+djMeKkp2cx4qTnYLHSpKdksdKk52Kx8qSnZrHypOdhscqkp2WxyqTnY7HqpKdnseqk52Bx2qSnZHHapOdicfqkp2Zx+qTnYXHGpKdlccakZ2Nx5qQnZ3HmpGdg8eak52Tx1qSnYvHWpGdm8dak52Hx9qQnZfH2pKdj8fakZ2fxzqQXYDHOpFdkMe6kF2Ix7qSXZjHupNdhMd6kF2Ux6LILsZj0WQX57HeZJfgsRiyS/JYLNmleKw/2aV5bADZZXhsENlleWww2eV4bAjZ5XlsKNkVeGw42RV5bATZlXhsJNmVeWwU2VV4bDTZVXlsDNnVeEwd/6rzmDr+1eAxdfyryWPq+FeLx9TxrzaPqeNfHR5Tx7+6PKaOf/V4TB3/6vOYOv414DF1/GvIY+r49wyPqeNfIx5Tx7/GPHaB7CY8donspjx2hexmPHaN7Gd5TB1Pm/PYTbJb8Nhtslvy2B2yn+Oxu2S34rH7ZD/PYw/Jbs1iZiKyX+Axnew2POYj+0Ue85PdlscCZL/EY0Gy2/FYYrLb81hSsjvwWHKyO/JYSrI78VhqsjvzWFqyu/BYerIjeCwj2V15LDPZ3XgsK9ndeSw72ZE8lpPsHjyWm+yXeSwv2VE8lp/snjxWkOxoHlP9by8eU/1vbx5T/W8fHlP9bwyPqf63L4+p/jeWx1T/24/HVP/bn8dU//sKj6n+dwCPqf53II+p/ncQj6n+91UeU/3vYB5T/e9rPKb63yE8pvrf13lM9b9DeUz1v8N4TPW/w3lM9b9v8Jjqf0fwmOp/3+Qx1f+O5DHV/77FY6r/HcVjqv99m8dU/zuax1T/+w6Pqf53DI+p/vddHlP971geU/3vezym+t9xPKb63/E8pvrfOB5T/e8EHlP970QeU/3vJB5T/e9kHlP97/s8pvrfKTym+t8PeEz1v1N5TPW/H/KY6n+n8Zjqfz/iMdX/Tucx1f9+zGOq/53BY6r//YTHVP87k8dU/zuLx1T/O5vHVP87h8dU/zuXx1T/O4/HVP87n8dU/7uAx1T/u5DHVP+7iMdU//spj6n+d/Ffh+Wg9/6wub/tz1wOuEHDntYyspajQ14EjczZbp9HwtYSNpJmL3G5lrCRU3vp/9GRUy/rB/u1B/sLmfWzDJEn2G8KsMnojfHuplGv5lxg/J+TftvLsUm/3Q4iV1OZoRnZ7RXODeCl+gq3Eylgk38vVfe5sMm/70rUtz9TByCs/j23+yG2K3wJHQTuQt+652HDc1pCdda6Arl3UR3SrhRpxC9VYqyzWZUwd07sVeznCjSXx5QqzssxDvwJBk/r1GlN1VBp47Dq0Hr/yu1B2u3vPzz+EZgoaGP5QnU/zr//cNLj7z/YXz/5uDrBfv/B/hr72moPdyd/X3PYIfC+yN77uEGw+g/cHoKh33+woefw7NXQIfg+9K0HwPbndpdVu6KiiEx39Pi0fxW4LdlJsR+BXAWt9DVSnK9QTjKM8xXEWSvF+RrlJMc42C6xToqzGuWkwDirIc56Kc4alJMS46yBOBukOGtRTiqMAz1qa2+U4qxDOakxzjqIs0mKsx7lpME46yHOZinOBpSTFuNADw/bW6Q4G1FOOoyzEeJsleJsQjnpMc4miLNNirMZ5WTAONDD0PZ2Kc4WlJMR42yBODukOFtRTiaMsxXi7JTibEM5mTEO9HC3vUuKsx3lZME42yHObinODpSTFePsgDhhKc5OlJMN40APq9skxdmFcrJjnF0QZ48UZzfKyYFxdkOcvVKcMMrJiXHCEGefFIdQTi6MQxBnvxRnD8rJjXH2QJxvpDh7UU4ejLMX4nwrxdmHcvJinH0Q5zspzn6Ukw/j7Ic4B6Q436Cc/BjnG4hzUIrzLcopgHG+hTjfS3G+QzkFMc53EOeQFOcAyimEcQ5AnMNSnIMopzDGOQhxjkhxvkc5RTDO9xDnqBTnEMopinEOQZxjUpzDKKcYxjkMcY5LcY6gnOIY5wjEOSHFOYpySmCcoxDnBynOMZRTEuMcgzgnpTjHUU4pjHMc4pyS4pxAOaUxzgmIc1qK8wPKKYNxfoA4Z6Q4J1FOWYxzEuL8KMU5hXLKYZxTEOcnKc5plFMe45yGOGelOGdQTgWMcwbi/CzF+RHlVMQ4P0Kcc1Kcn1BOJYzzE8Q5L8U5i3IqY5yzEOeCFOdnlFMF4/wMcS5Kcc6hnKoY5xzEuSTFOY9yqmGc8xDnshTnAsqpjnEuQJwrUpyLKKcGxrkIca5KcS6hnJoY5xLEuSbFuYxyamGcyxDnuhTnCsqpjXGuQJwbUpyrKKcOxrkKcX6R4lxDOXUxzjWIc1OKcx3l1MM41yHOLSnODZRTH+PcgDi3pTi/oJwGGOcXiPOrFOcmymmIcW5CnDtSnFso5xmMcwvi/CbFuY1yGmGc2xDnrhTnV5TTGOP8CnHuSXHuoJwmGOcOxLkvxfkN5TTFOL9BnAdSnLsopxnGuQtxHkpx7qGcZzHOPYjzSIpzH+U0xzj3EU4wkRTnAcppgXEeQBxNivMQ5bTEOA8hji7FeYRynsM4jyCOIcQJJEI5rbAZkhNBHJ8UR0M5z2McDeKYUhwd5bTGODrE8UtxDJTzAsYxII4lxfGhnDYYxwdxAlIcE+W8iHFMiGNLcfwopy3G8UOcoBTHQjkvYRwL4oSkOAGU0w7jBCBOYimOjXLaYxwb4iSR4gRRTgeME4Q4SaU4IZTTEeOEIE4yKU5ilNMJ4ySGOMmlOElQTmeMkwTipJDiJEU5XTBOUoiTUoqTDOVEYJxkECeVFCc5yumKcZJDnNRSnBQopxvGSQFx0khxUqKc7hgnJcRJK8VJhXIiMU4qiJNOipMa5fTAOKkhTnopThqU8zLGSQNxMkhx0qKcKIyTFuJklOKkQzk9MU46iJNJipMe5YC/RJYe4mSW4mRAOb0wTgaIk0WKkxHl9MY4GSFOVilOJpTTB+NkgjjZpDiZUU4MxskMcbJLcbKgnL4YJwvEySHFyYpyYjFOVoiTU4qTDeX0wzjZIE4uKU52lNMf42SHOLmlODlQzisYJwfEySPFyYlyBmCcnBAnrxQnF8oZiHFyQZx8UpzcKGcQxskNcfJLcfKgnFcxTh6IU0CKkxflDMY4eSFOQSlOPpTzGsbJB3EKSXHyo5whGCc/xCksxSmAcl7HOAUgThEpTkGUMxTjFIQ4RaU4hVDOMIxTCOIUk+IURjnDMU5hiFNcilME5byBcYpAnBJSnKIoZwTGKQpxSkpxiqGcNzFOMYhTSopTHOWMxDjFIU5pKU4JlPMWxikBccpIcUqinFEYpyTEKSvFKYVy3sY4pSBOOSlOaZQzGuOUhjjlpThlUM47GKcMxKkgxSmLcsZgnLIQp6IUpxzKeRfjlIM4laQ45VHOWIxTHuJUluJUQDnvYZwKEKeKFKciyhmHcSpCnKpSnEooZzzGqQRxqklxKqOcOIxTGeJUl+JUQTkTME4ViFNDilMV5UzEOFUhTk0pTjWUMwnjVIM4taQ41VHOZIwD/U5osLYUpwbKeR/j1IA4daQ4NVHOFIxTE+LUleLUQjkfYJxaEKeeFKc2ypmKcWpDnPpSnDoo50OMUwfiNJDi1EU50zBOXYjTUIpTD+V8hHHqQZxnpDj1Uc50jFMf4jSS4jRAOR9jnAYQp7EUpyHKmYFxGkKcJlKcZ1DOJxjnGYjTVIrTCOXMxDiNIE4zKU5jlDML4zSGOM9KcZqgnNkYpwnEaS7FaYpy5mCcphCnhRSnGcqZi3GaQZyWUpxnUc48jPMsxHlOitMc5czHOM0hTispTguUswDjtIA4z0txWqKchRinJcRpLcV5DuUswjjPQZwXpDitUM6nGKcVxGkjxXke5SzGOM9DnBcRTuOInr1iBjaIjoydkPJYohlkryF7LdnryF5P9gayN5K9iezNZG8heyvZ28jeTvYOsneSvYvs3WSHySay95C9l+x9ZO8n+xuyvyX7O7IPkH2Q7O/JPkT2YbKPkH2U7GNkHyf7BNk/kH2S7FNknyb7DNk/kv0T2WfJ/pnsc2SfJ/sC2RfJvkT2ZbKvkH2V7GtkXyf7Btm/kH2T7Ftk3yb7V7LvkP0b2XfJvkf2fbIfkP2Q7EcUfDyVEwV1ChoU9FHQpKCfghYFAxS0KRikYIiCiSmYhIJJKZiMgskpmIKCKSmYioKpKZiGgmkpmI6C6SmYgYIZKZiJgpkpmIWCWSmYjYLZKZiDgjkpmIuCuSmYh4J5KZiPgvkpWICCBSlYiIKFKViEgkUpWIyCxSlYgoIlKViKgqUpWEbdjle3sNVtX3WrVN1eVLfk1G0sdetH3S5RtxjUsLwaylbDv2rIVA0zqqE5NZylhoDUsIkaalCX5+qSVl0GqksndbmhTtHVaa06FVSnT+qUQ3XTqmtT3YE6hKrDjtpV1eatNom5f7T3XzbjcROgzamt86ZpUpL70LfcTk43HtmB7JVqIcdDlpeA+vP/WFVNe8elnLBJ/QkF2/1t73daJrVQXwEHiRpq2bEFby9xiHq84tqhaxibtCPYDuJ0cNkOm39vhw4etw1oye2V0JJ3dL8FdaRgJ9dbUDW1QGgbYlNcqK8hwM7um0YBO8s1jY42TRf3TdOFghF/W3KnSkbNCcD6NoDvYLcyukrt+xFoM2HzQAQjIE439xuYaqZuchuYgW5g3d1vYN0pGOl636/iYt/HZk1QX0OAPdw3jQL2kGsaH9o0L7tvmpcpGOXlfKgnssKT3IW+dU9q145CWwGbOSAYBa2aaPfbj2qFaC+t0Atav/ehbzmflWreNvFe2Mldb2C1LakZ1bHzyzV7DajbL7pzrY5RUcPmNK/RpF6duGHzno+MjY7o21flye56MauTvQJZ4dAjEfYKiNtHYHWry6U+44DVuKhmTGRUVGS3x2twoj5p2NwWkdHdoiImjBsPbCnIw1+uElZN6IRVEjqhOkAkfErghCbucc6evaMiKBjz5GNftEKfBNqjYrL/dYvxxf1pRTpyCvSkQBg6Wiwhe6nDBvzo0aM7T1b1//6y9vg/8VZi7JOP/Zz+9ve/h1ZPLPa1fu6PS3+sOejwmczt4wrj4QbB6rt9vmDcxP+dNu7a79twLHQw7YfsD8kaQt96Btj+3F4sqX1RUca5XEXQec7jTSQG3Zb2YCOsMdBK7y/F6Yty9mKcvhDnFSlOLMrZh3GwXWKAFKcfytmPcfpBnIFSnP4o5xuM0x/iDJLivIJyvsU4r0CcV6U4A1DOdxhnAMQZLMUZiHIOYJyBEOc1Kc4glHMQ4wyCOEOkOK+inO8xzqsQ53UpzmCUcwjjDIY4Q6U4r6GcwxjnNYgzTIozBOUcwThDIM5wKc7rKOcoxnkd4rwhxRmKco5hnKEQZ4QUZxjKOY5xhkGcN6U4w1HOCYwzHOKMlOK8gXJ+wDhvQJy3pDgjUM5JjDMC4oyS4ryJck5hnDchzttSnJEo5zTGGQlxRktx3kI5ZzDOWxDnHSnOKJTzI8YZBXHGSHHeRjk/YZy3Ic67UpzRKOcsxhkNccZKcd5BOT9jnHcgzntSnDEo5xzGGQNxxAZ130U55zHOuxBnvBRnLMq5gHHGQpw4Kc57KOcixnkP4kyQ4oxDOZcwzjiIM1GKA99cu4xxsCcYJklx4LusVzBOHMSZLMWZgHKuYhzsWZn3pTgTUc41jDMR4kyR4kxCOdcxziSI84EUZzLKuYFxJkOcqVKc91HOLxjnfYjzoRRnCsq5iXGmQJxpUpwPUM4tjPMBxPlIijMV5dzGOFMhznQpzoco51eM8yHE+ViKMw3l3ME40yDODCnORyjnN4zzEcT5RIozHeXcxTjTIc5MKc7HKOcexvkY4syS4sxAOfcxzgyIM1uK8wnKeYBxPoE4c6Q4M1HOQ4wzE+LMleLMQjmPMM4siDNPijMb5NiJMM5siDNfijMH5WgYZw7EWSDFmYtydIwzF+IslOLMQzkGxpkHcRZJceajHB/GmQ9xPpXiLEA5JsZZAHEWS3EWohw/xlkIcT6T4ixCORbGWQRxPpfifIpyAhjnU4izRIqzGOXYGGcxxFkqxfkM5QQxzmcQ5wspzucoJ4RxPoc4y6Q4S1BOYoyzBOIsl+IsRTlJMM5SiLMC4cSbUijVsUTVKdifgq9QcAAFB1JwEAVfpeBgCr5GwSEUfJ2CQyk4jILDKfgGBUdQ8E0KjqTgWxQcRcG3KTiagu9QcAwF36XgWHXrXN1uVrdo1W1NdStQ3T5Tt5zUbRp1a0PdDlBD6GrYWQ3VquFNNSSohtHU0JMarlFDHGpYQF1Kq8tPdcmmLnPUpYE6nVanoOq0TZ3qqNMD1aWqbkgdutXhTh0i1G6lNkXVfIr8L6bM+dJ51Qegl7IC7t8ug24APn4p60vs1t5KoP6Td7pTPX6zfiUFV3mYMifYB9kJHi/6Kuyl9VUQ8CuXwM2/A7/yuNKxJe8DLfnX7pvmawqu9jAXDd40qzHgagi4xn3TKOAauabR0aZZ675p1lJwneumqeqiadZhTbMOAq533zQKuF6uaQy0aTa4b5oNFNzoumko2NVF42zEGmcjRNzkvnEUcZNc4/jQxtnsvnHUwm/xMMUO3jRbsKbZAgG3um8a9b+tck1jok2zzX3TbKPgdg/7TZ/HMz2AjbMda5ztEHGH+8ZRxB1yjeNHG2en+8bZScFdHhqnp4s9ZxfWOLsg4m73jaOIu+Uax0IbJ+y+ccIUJG97TgzaOIQ1DkHEPe4bRxH3eLm42ossdsLMePH4S962n73YxdU+YLUhM6zsy+5tMWMS8nJkfwJh9mdne4Nxg4LfsJivMAW/5bGiFPyOx4pT8ACPlaTgQR4rTcHveawsBQ/xWHkKHuaxihQ8wmOVKXiUx9TZ+jEeU+Mkx3msJgVP8FhtCv7AY3UpeJLH6lPwFI81pOBpHmtEwTM81oSCP/JYMwr+xGPNKXiWx1pS8Gcea0XBczzWmoLneawNBS/wWFsKXuSxdhS8xGMdKHiZxzpR8AqPdaHgVR5TJ+jXeKw7Ba/zWA8K3uCxKAr+wmPRFLzJY70peIvHYih4m8diKfgrj6kBtDs8pobTfuMxNbh2l8fUUNs9HlMDb/d5TA3DPeAxNSj3kMfUEN0jHhtJId5z+UZRSOOx0RTSeWwMhQweG0shH4+No5DJY3EU8vPYRApZPDaZQgEem0Ihm8emUijIY9MoFOKx6RRKzGMzKJSEx2ZSKCmPzaZQMh6bS6HkPDafQinYVJXq+BdKyWLq+BdKxWNFKZSax4pTKA2PlaRQWh4rTaF0PFaWQul5rDyFMvBYRQpl5LHKFMrEY1UplJnHqlMoC4/VpFBWHqtNoWw8VpdC2XmsPoVy8FhDCuXksUYUysVjTSiUm8eaUSgPjzWnUF4ea0mhfDzWikL5eaw1hQrwWBsKFeSxthQqxGPtKFSYxzpQqAiPdaJQUR7rQqFiPNaVQsV5rDuFSvBYDwqV5LEoCpXisWgKleax3hQqw2MxFCrLY7EUKsdj/SlUnscGUKgCjw2iUEUeG0yhSjw2hEKVeWwoharw2HAKVeWxERSqxmPq+Fedx9TxrwaPqeNfTR5Tx79aPKaOf7V5TB3/6vCYOv7V5TF1/KvHY+r4V5/H1PGvAY+p419DHlPHv2d4TB3/GvGYOv415jF1/GvCY+r415TH1PGvGY+p49+zPHaBQs157BKFWvDYFQq15LFrFHqOx9TxtBWP3aTQ8zx2m0KteewOhV7gsbsUasNj9yn0Io89pFBbFjMTUeglHtMp1I7HfBRqz2N+CnXgsQCFOvJYkEKdeCwxhTrzWFIKdeGx5BSK4LGUFOrKY6kp1I3H0lKoO4+lp1Akj2WkUA8ey0yhl3ksK4WieCw7hXryWE4KRfNYbgr14rG8FOrNY/kp1IfHClIohsdU/9uXx1T/G8tjqv/tx2Oq/+3PY6r/fYXHVP87gMdU/zuQx1T/O4jHVP/7Ko+p/ncwj6n+9zUeU/3vEB5T/e/rPKb636E8pvrfYTym+t/hPKb63zd4TPW/I3hM9b9v8pjqf0fymOp/3+Ix1f+O4jHV/77NY6r/Hc1jqv99h8dU/zuGx1T/+y6Pqf53LI+p/vc9HlP97zgeU/3veB5T/W8cj6n+dwKPqf53Io+p/ncSj6n+dzKPqf73fR5T/e8UHlP97wc8pvrfqTym+t8PeUz1v9N4TPW/H/GY6n+n85jqfz/mMdX/zuAx1f9+wmOq/53JY6r/ncVjqv+dzWOq/53DY6r/nctjqv+dx2Oq/53PY6r/XcBjqv9dyGOq/13EY6r//ZTHVP+7mMdU//sZj6n+93MeU/3vEh5T/e/Svw7LQe/MYnN/h75wOeAGDXvaK8lehQ557YdG5kJun0fC1hI2khZa7nItYSOnoRX/R0dOvawf7NceQl/KrJ+ViDzBflPAw/pJBJSuLVFYAwrXkSisA4XrShRGfr6nnpfCTkmhHwE39rstjcyb30BiRfqAwg0lCptAYZGjmB8o3EiisAUUbixROAAUbiJR2AYKN5UoDEyvozWTKBwCCj8rUTgxULi5ROEkQOEWEoWTAoVbShROBhR+TqJwcqBwK4nCKYDCz0sUTgkUbi1ROBVQ+AWJwqmBwm0kCqcBCr8oUTgtULitROF0QOGXJAqnBwq3kyicASjcXqJwRqBwB4nCmYDCHSUKZwYKd5IonAUo3FmicFagcBeJwtmAwhEShbMDhbtKFM4BFO4mUTgnULi7ROFcQOFIiYvuHhJJX/ayipySQr8BahyUaJ3cwOL1dFkY+y3VFRTsiXwx9IUaM0aaJlqivXtJJO0tkbSPRNIYiaR9JZLGSiTtJ5G0v0TSVySSDpBIOlAi6SCJpK9KJB0skfQ1iaRDJJK+LpE0PFQk6zCRrMNFsr4hknWESNY3RbKOFMn6lkjWUSJZ3xbJOlok6zsiWceIZH1XJOtYkazviWQdJ5J1vEjWOJGsE0SyThTJOkkk62SRrO+LZJ0ikvUDkaxTRbJ+KJJ1mkjWj0SyThfJ+rFI1hkiWT8RyTpTJOsskayzRbLOEck6VyTrPJGs80WyLhDJulAk6yKRrJ+KZF0skvUzkayfi2RdIpJ1qUjWL0SyLhPJulwk6wqRrF+KZF0pknWVSNavRLJ+LZJ1tUjWNSJZ14pkXSeSdb1I1g0iWTeKZN0kknWzSNYtIlm3imTdJpJ1u0jWHSJZd4pk3SWSdbdI1rBIVhLJukck616RrPtEsoq86hL+RiTrtyJZvxPJekAk60GRrN+LZD0kkvWwSNYjIlmPimQ9JpL1uEjWEyJZfxDJelIk6ymRrKdFsp4RyfqjSNafRLKeFcn6s0jWcyJZz4tkvSCS9aJI1ksiWS+LZL0ikvWqSNZrIlmvi2S9IZL1F5GsN0Wy3hLJelsk668iWe+IZP1NJOtdkaz3RLLeF8n6QCTrQ5GsjySykpZIJq0mk1aXSWu4TAvP/N4fnfn9G2jWb+3xzB3O+fpLcV5BOd9iHBPivCLFGYByvsM4fogzQIozEOUcwDgWxBkoxRmEcg5inADEGSTFeRXlfI9xbIjzqhRnMMo5hHGCEGewFOc1lHMY44QgzmtSnCEo5wjGSQxxhkhxXkc5RzFOEojzuhRnKMo5hnGSQpyhUpxhKOc4xkkGcYZJcYajnBMYJznEGS7FeQPl/IBxUkCcN6Q4I1DOSYyTEuKMkOK8iXJOYZxUEOdNKc5IlHMa46SGOCOlOG+hnDMYJw3EeUuKMwrl/Ihx0kKcUVKct1HOTxgnHcR5W4ozGuWcxTjpIc5oKc47KOdnjJMB4rwjxRmDcs5hnIwQZ4wU512Ucx7jZII470pxxqKcCxgnM8QZK8V5D+VcxDhZIM57UpxxKOcSxskKccZJccajnMsYJxvEGS/FiUM5VzBOdogTJ8WZgHKuYpwcEGeCFGciyrmGcXJCnIlSnEko5zrGyQVxJklxJqOcGxgnN8SZLMV5H+X8gnHyQJz3pThTUM5NjJMX4kyR4nyAcm5hnHwQ5wMpzlSUcxvj5Ic4U6U4H6KcXzFOAYjzoRRnGsq5g3EKQpxpUpyPUM5vGKcQxPlIijMd5dzFOIUhznQpzsco5x7GKQJxPpbizEA59zFOUYgzQ4rzCcp5gHGKQZxPpDgzUc5DjFMc4syU4sxCOY8wTgmIM0uKMxvkhBJhnJIQZ7YUZw7K0TBOKYgzR4ozF+XoGKc0xJkrxZmHcgyMUwbizJPizEc5PoxTFuLMl+IsQDkmxikHcRZIcRaiHD/GKQ9xFkpxFqEcC+NUgDiLpDifopwAxqkIcT6V4ixGOTbGqQRxFktxPkM5QYxTGeJ8JsX5HOWEME4ViPO5FGcJykmMcapCnCVSnKUoJwnGqQZxlkpxvkA5STFOdYjzhRRnGcpJhnFqQJxlUpzlKCc5xqkJcZZLcVagnBQYpxbEWeGBA10z70O+GFpOoRXYi0a1Jdb7499aX4MsqPpiKCW23usg691eI8VZi3JSYZy6EGetFGcdykmNcepBnHVSnPUoJw3GgX5f214vxdmActJinAYQZ4MUZyPKSYdxGkKcjVKcTSgnPcZ5BuJskuJsRjkZME4jiLNZirMF5WTEOI0hzhYpzlaUkwnjNIE4W6U421BOZozTFOJsk+JsRzlZME4ziLNdirMD5WTFOM9CnB1SnJ0oJxvGaQ5xdkpxdqGc7BinBcTZJcXZjXJyYJyWEGe3FCeMcnJinOcgTliKQygnF8ZpBXFIirMH5eTGOM9DnD1SnL0oJw/GaQ1x9kpx9qGcvBjnBYizT4qzH+XkwzhtIM5+Kc43KCc/xnkR4nwjxfkW5RTAOG0hzrdSnO9QTkGM8xLE+U6KcwDlFMI47SDOASnOQZRTGOO0hzgHpTjfo5wiGKcDxPleinMI5RTFOB0hziEpzmGUUwzjdII4h6U4R1BOcYzTGeIckeIcRTklME4XiHNUinMM5ZTEOBEQ55gU5zjKKYVxukKc41KcEyinNMbpBnFOSHF+QDllME53iPODFOckyimLcSIhzkkpzimUUw7j9IA4p6Q4p1FOeYzzMsQ5LcU5g3IqYJwoiHNGivMjyqmIcXpCnB+lOD+hnEoYJxri/CTFOYtyKmOcXhDnrBTnZ5RTBeP0hjg/S3HOoZyqGKcPxDknxTmPcqphnBiIc16KcwHlVMc4fSHOBSnORZRTA+PEQpyLUpxLKKcmxukHcS5JcS6jnFoYpz/EuSzFuYJyamOcVyDOFSnOVZRTB+MMgDhXpTjXUE5djDMQ4lyT4lxHOfUwziCIc12KcwPl1Mc4r0KcG1KcX1BOA4wzGOL8IsW5iXIaYpzXIM5NKc4tlPMMxhkCcW5JcW6jnEYY53WIc1uK8yvKaYxxhkKcX6U4d1BOE4wzDOLckeL8hnKaYpzhEOc3Kc5dlNMM47wBce5Kce6hnGcxzgiIc0+Kcx/lNMc4b0Kc+1KcByinBcYZCXEeSHEeopyWGOctiPNQivMI5TyHcUZBnEdCnGAilNMK47yNcIKJpDgaynke44yGOJoUR0c5rTHOOxBHl+IYKOcFjDMG4hhSHB/KaYNx3oU4PimOiXJexDhjIY4pxfGjnLYY5z2I45fiWCjnJYwzDuJYUpwAymmHccZDnIAUx0Y57TFOHMSxpThBlNMB40yAOEEpTgjldMQ4EyFOSIqTGOV0wjiTIE5iKU4SlNMZ40yGOEmkOElRTheM8z7ESSrFSYZyIjDOFIiTTIqTHOV0xTgfQJzkUpwUKKcbxpkKcVJIcVKinO4Y50OIk1KKkwrlRGKcaRAnlRQnNcrpgXE+gjippThpUM7LGGc6xEkjxUmLcqIwzscQJ60UJx3K6YlxZkCcdFKc9CgnGuN8AnHSS3EyoJxeGGcmxMkgxcmIcnpjnFkQJ6MUJxPK6YNxZkOcTFKczCgnBuPMgTiZpThZUE5fjDMX4mSR4mRFObEYZx7EySrFyYZy+mGc+RAnmxQnO8rpj3EWQJzsUpwcKOcVjLMQ4uSQ4uREOQMwziKIk1OKkwvlDMQ4n0KcXFKc3ChnEMZZDHFyS3HyoJxXMc5nECePFCcvyhmMcT6HOHmlOPlQzmsYZwnEySfFyY9yhmCcpRAnvxSnAMp5HeN8AXEKSHEKopyhGGcZxCkoxSmEcoZhnOUQp5AUpzDKGY5xVkCcwlKcIijnDYzzJcQpIsUpinJGYJyVEKeoFKcYynkT46yCOMWkOMVRzkiM8xXEKS7FKYFy3sI4X0OcElKckihnFMZZDXFKSnFKoZy3Mc4aiFNKilMa5YzGOGshTmkpThmU8w7GWQdxykhxyqKcMRhnPcQpK8Uph3LexTgbIE45KU55lDMW42yEOOWlOBVQznsYZxPEqSDFqYhyxmGczRCnohSnEsoZj3G2QJxKUpzKKCcO42yFOJWlOFVQzgSMsw3iVJHiVEU5EzHOdohTVYpTDeVMwjg7IE41KU51lDMZ4+yEONWlODVQzvsYZxfEqSHFqYlypmCc3RCnphSnFsr5AOOEIU4tKU5tlDMV4xDEkfoZu2AdlPMhxtkDcepIceqinGkYZy/EqSvFqYdyPsI4+yBOPSlOfZQzHePshzj1pTgNUM7HGOcbiNNAitMQ5czAON9CnIZSnGdQzicY5zuI84wUpxHKmYlxDkCcRlKcxihnFsY5CHEaS3GaoJzZGOd7iNNEitMU5czBOIcgTlMpTjOUMxfjHIY4zaQ4z6KceRjnCMR5VorTHOXMxzhHIU5zKU4LlLMA4xyDOC2kOC1RzkKMcxzitJTiPIdyFmGcExDnOSlOK5TzKcb5AeK0kuI8j3IWY5yTEOd5KU5rlPMZxjkFcVpLcV5AOZ9jnNMQ5wUpThuUswTjnIE4baQ4L6KcpRjnR4jzogcOspTB3sgXQ19SaOV4iOP2JwHGYWnPyqT9WSbtOZm052XSXpBJe1Em7SWZtJdl0l6RSXtVJu01mbTXZdLekEn7i0zamzJpb8mkvS2T9leZtHdk0v4mk/auTNp7Mmnvy6R9IJP2oUzaRyJp9UQyaTWZtLpMWkMmrU8mrSmT1i+T1pJJG5BJa8ukDcqkDcmkTSyTNolM2qQyaZPJpE0ukzaFTNqUMmlTyaRNLZM2jUzatDJp08mkTS+TNoNM2owyaTPJpM0skzaLTNqsMmmzyaTNLpM2h0zanDJpc8mkzS2TNo9M2rwyafPJpM0vk7aATNqCMmkLyaQtLJO2iEzaojJpi8mkLS6TtoRM2pIyaUvJpC0tk7aMTNqyMmnLyaQtL5O2gkzaijJpK8mkrSyTtopM2qoyaavJpK0uk7aGTNqaMmlryaStLZO2jkzaujJp68mkrS+TtoFM2oYyaZ+RSdtIJm1jmbRNZNI2lUnbTCbtszJpm8ukbSGTtqVM2udk0raSSfu8TNrWMmlfkEnbRibtizJp28qkfUkmbTuZtO1l0naQSdtRJm0nmbSdZdJ2kUkbIZO2q0zabjJpu8ukjZRJ20Mm7csyaaNk0vaUSRstk7aXTNreMmn7yKSNkUnbVyZtrEzafjJp+8ukfUUm7QCZtANl0g6SSfuqTNrBMmlfk0k7RCbt6zJph8qkHSaTdrhM2jdk0o6QSfumTNqRMmnfkkk7Sibt2zJpR8ukfUcm7RiZtO/KpB0rk/Y9mbTjZNKOl0kbJ5N2gkzaiTJpJ8mknSyT9n2ZtFNk0n4gk3aqTNoPZdJOk0n7kUza6TJpP5ZJO0Mm7ScyaWfKpJ0lk3a2TNo5MmnnyqSdJ5N2vkzaBTJpF8qkXSST9lOZtItl0n4mk/ZzmbRLZNIulUn7hUzaZTJpl8ukXSGT9kuZtCtl0q6SSfuVTNqvZdKulkm7RibtWpm062TSrpdJu0Em7UaZtJtk0m6WSbtFJu1WmbTbZNJul0m7QybtTpm0u2TS7pZJG5ZJSzJp98ik3SuTdp9M2v0yab+RSfutTNrvZNIekEl7UCbt9zJpD8mkPSyT9ohM2qMyaY/JpD0uk/aETNofZNKelEl7SibtaZm0Z2TS/iiTVmb+W11m/ltdZv5bXWb+W11m/ltdZv5bXWb+W11m/ltdZv5bXWb+W11m/ltdZv5bXWb+W/2GTFqZ+W91mflvdZn5b3WZ+W91mflvdZn5b3WZ+W91mflvdZn5b3WZ+W91mflvdZn5b3WZ+W8NmflvDZn5bw2Z+W8NmflvDZn5bw2Z+W8NmflvDZn5bw2Z+W8NmflvDZn5bw2Z+W8NmflvDZn5bw2Z+W8NmflvDZn5bw2Z+W+NlDJpZea/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NWTmvzVk5r81ZOa/NUrKpJWZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9aQmf/WkJn/1pCZ/9ZoLpNWZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bQ2b+W0Nm/ltDZv5bI0Ymrcz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8t4bM/LeGzPy3hsz8twY0/23jiJ69YgY2iI6MnZD6mFG3dp269eo3aPhMo8ZNmjZ7tnmLls+1er71C21ebPtSu/YdOnbq3CWia7fukT1ejuoZ3at3n5i+sf36vzJg4KBXB7825PXw0PCw8PDwG+ER4TfDI8NvhUeF3w6PDr8THhN+Nzw2/F54XHh8OC48ITwxPCk8Ofx+eEr4g/DU8IfhaeGPwtPDH4dnhD8JzwzPCs8OzwnPDc8Lzw8vCC8MLwp/Gl4c/iz8eXhJeGn4i/Cy8PLwivCX4ZXhVeGvwl+HV4fXhNeG14XXhzeEN4Y3hTeHt4S3hreFt4d3hHeGd4V3h8NhCu8J7w3vC+8PfxP+Nvxd+ED4YPj78KHw4fCR8NHwsfDx8InwD+GT4VPh0+Ez4R/DP4XPhn8OnwufD18IXwxfCl8OXwlfDV8LXw/fCP8Svhm+Fb4d/jV8J/xb+G74Xvh++EH4YfgRaYlI00jTSTNI85FmkuYnzSItQJpNWpC0EGmJSUtCWlLSkpGWnLQUpKUkLRVpqUlLQ1pa0tKRlp60DKRlJC0TaZlJy0JaVtKykZadtByk5SQtF2m5SctDWl7S8pGWn7QCpBUkrRBphUkrQlpR0oqRVpy0EqSVJK0UaaVJK0NaWdLKkVaetAqkVSStEmmVSatCWlXSqpFWnbQapNUkrRZptUmrQ1pd0uqRVp+0BqQ1JO0Z0hqR1pi0JqQ1Ja0Zac+S1py0FqS1JO050lqR9jxprUl7gbQ2pL1IWlvSXiKtHWntSetAWkfSOpHWmbQupEWQ1pW0bqR1Jy2StB6kvUxaFGk9SYsmrRdpvUnrQ1oMaX1JiyWtH2n9SXuFtAGkDSRtEGmvkjaYtNdIG0La66QNJW0YacNJe4O0EaS9SdpI0t4ibRRpb5M2mrR3SBtD2rukjSXtPdLGkTaetDjSJpA2kbRJpE0m7X3SppD2AWlTSfuQtGmkfUTadNI+Jm0GaZ+QNpO0WaTNJm0OaXNJm0fafNIWkLaQtEWkfUraYtI+I+1z0paQtpS0L0hbRtpy0laQ9iVpK0lbRdpXpH1N2mrS1pC2lrR1pK0nbQNpG0nbRNpm0raQtpW0baRtJ20HaTtJ20XabtLCpBFpe0jbS9o+0vaT9g1p35L2HWkHSDtI2vekHSLtMGlHSDtK2jHSjpN2grQfSDtJ2inSTpN2hrQfSfuJtLOk/UzaOdLOk3aBtIukXSLtMmlXSLtK2jXSrpN2g7RfSLtJ2i3SbpP2K2l3SPuNtLuk3SPtPmkPSHtI2iPSE5Guka6TbpDuI90k3U+6RXqAdJv0IOkh0hOTnoT0pKQnIz056SlIT0l6KtJTk56G9LSkpyM9PekZSM9IeibSM5OehfSspGcjPTvpOUjPSXou0nOTnof0vKTnIz0/6QVIL0h6IdILk16E9KKkFyO9OOklSC9JeinSS5NehvSypJcjvTzpFUivSHol0iuTXoX0qqRXI7066TVIr0l6LdJrk16H9Lqk1yO9PukNSG9I+jOkNyK9MelNSG9KejPSnyW9OektSG9J+nOktyL9edJbk/4C6W1If5H0tqS/RHo70tuT3oH0jqR3Ir0z6V1IjyC9K+ndSO9OeiTpPUh/mfQo0nuSHk16L9J7k96H9BjS+5IeS3o/0vuT/grpA0gfSPog0l8lfTDpr5E+hPTXSR9K+jDSh5P+BukjSH+T9JGkv0X6KNLfJn006e+QPob0d0kfS/p7pI8jfTzpcaRPIH0i6ZNIn0z6+6RPIf0D0qeS/iHp00j/iPTppH9M+gzSPyF9JumzSJ9N+hzS55I+j/T5pC8gfSHpi0j/lPTFpH9G+uekLyF9KelfkL6M9OWkryD9S9JXkr6K9K9I/5r01aSvIX0t6etIX0/6BtI3kr6J9M2kbyF9K+nbSN9O+g7Sd5K+i/TdpIdJJ9L3kL6X9H2k7yf9G9K/Jf070g+QfpD070k/RPph0o+QfpT0Y6QfJ/0E6T+QfpL0U6SfJv0M6T+S/hPpZ0n/mfRzpJ8n/QLpF0m/RPpl0q+QfpX0a6RfJ/0G6b+QfpP0W6TfJv1X0u+Q/hvpd0m/R/p90h+Q/pD0R2QkIkP1uzoZBhk+Mkwy/GRYZATIsMkIkhEiIzEZSchISkYyMpKTkYKMlGSkIiM1GWnISEtGOjLSk5GBjIxkZCIjMxlZyMhKRjYyspORg4ycZOQiIzcZecjIS0Y+MvKTUYCMgmQUIqMwGUXIKEpGMTKKk1GCjJJklCKjNBllyChLRjkyypNRgYyKZFQiozIZVcioSkY1MqqTUYOMmmTUUjfs1c11dSNc3bRWN5jVzWB141bdZFU3RNXNS3WjUd0UVDfw1M02dWNM3cRSN5zUzSF1I0fddFE3SNTNDHXjQd0kUAP6avBdDZSrQW01AK0Gi9XArhqEVQOmanBTDUSqQUM1wKcG49TAmRrkUgNSavBIDfSoQRk1gKIGO9TAhBpEUBf86uJcXUiri151gaouJtWFn7pIUxdU6uJHXaioiwp1AaBO1tWJtToJVies6uRSnQiqkzZ1gqVOhhY2j4jtFxNdu2Nsx2OJaifSdMNn+q2AHQwlTpI0WfIUKVOlTpM2XfoMGTNlzpI1W/YcOXPlzpM3X/4CBQsVLlK0WPESJUuVLlO2XPkKFStVrlK1WvUaNWuNG3csUba4YbNrdI6MaRq3d5918ebubd3GjftP6Nm/h1r/PdQ2bu97Ry6eGBEce+W/oQ5//1bPv4di4/YuK1O4YpLWeYf+NxSe+Pdk4Q+f8r1tf0+nDmZPCz7/979WW+tTvmmk+XtttfE+7c+HPe3P33hK0BfztOCrT8lplnvKN80KT1kks+bT/nze0/58wVOC/ilPC37ylJzWS0/5ptX+KYtkdX/an9PT/nxvvOCkuMP5O/5+UdC+c6+evTvGRnaKimjfK6ZjZ/X/9Y+I6RvZK7r9KzEde/eOiDmWKPmwObV6RfeNnTBsbu3ImIjOsfqweQ2iYyO6RcTMeq5USefrCf73mqu/H1qH/30id/XrDJtdq2NU1PjQn3nmN4+IUuj+ES4lif6ewXCb4dPHy9JFHUpq9eo98E9SnfjLFC/5H0ue9F8veZ0EWPLZLWJ79R4f9w9Lytqo1py6kRFRzre2svA/rA3+YaK5fxyVhy2q2ysmIrJb9OM1NUlt14NiIzq37xnZt3P7PzbxWn9u4U1/38Bb/bF9P941Fv9xCVujS5eYiL59/1z0f4jXjhs2t0Vkz95REX8s4l//r/8sTtzhwv/Zs/p3jIrs0r53v05RkZ3bd1YL1/5xq/93L/vP3vXR/+V9q/a/3Ldq/+vtSvt7Bl/C7FO14i9TvOSzGvfq/5et+M/vJ9Rxorb43vbXjT7XHxt975j+/9nmWz3e9pr9vun9d9WMGzeeb9dPUo9/+ra87vfNtndMZP+OsRHtu/aL7hz7uGeIVJCY6I5RxxLl/b+8+Tb8l5tvw783lOUug/n3DIEE33yt+MnVRhr/cPnkQ/yq7Ft1n3z4H9+q9+TDf78187kS/2N/Yf9iPFkW9i++J/0c+xfzyZKxf/E/WZo/9svU//nGf8L14y/SX/6lwdP6Ja9Hl/p/z2C6y6D/fV/2xU/G3NaTfeHfblrqOFEzMrrj40Ha2Ka9J/2ZeJY6Avze/n9WildhcYPoLn+077/bMzRW/EmJP8v/3az/9ci29smB7fGhqNkfR6K6/zkQjR+2oH5Ex941YmI6Doy3AgPqcDbnjyA7rumT/vkQ+I//Yvzjv/j+8V/Mf/wX/6Snn0T8db/Ev/KXPfXf9lv/2GTG05osXpXZjXp17BL31P7W+O9B5mkbv/HUw9HTujzff9YF/4rxT9h/vTL0f1oZPpcrw/c/Tz7iSf52OH3yd//tkZf8sWuqkOqF1ZVa7Ae8B0zzL3vg1AnTeyV6sjx/JubnCuiZ/rDFfzTE719v2nvifxMYc+v06dcxqu/faqouqmG/nr0bdP2zSzACfzvTAKtr/1Q90azakf2fHEH/XIb/Huz/ZP93RcR9Hb/xfl/F7fv06xUbGREdO4UvXtDtxsr+PpTAzRh8kvgf1oe+8D8F462WRE/Wzz/8lTarcb+oeO3m+PUW/To9Jftf+v942wFrjNCfnP8Pp05jBsTtBAA=",
5416
5424
  "custom_attributes": [
5417
5425
  "abi_private"
5418
5426
  ],
5419
- "debug_symbols": "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",
5427
+ "debug_symbols": "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",
5420
5428
  "is_unconstrained": false,
5421
5429
  "name": "entrypoint",
5422
5430
  "verification_key": "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"
@@ -5555,7 +5563,7 @@
5555
5563
  "custom_attributes": [
5556
5564
  "abi_utility"
5557
5565
  ],
5558
- "debug_symbols": "tZndTiM9DIbvpcc9iPPnmFtBK1SgrCpVBXXhkz4h7n1tJm86ZZWoO2VPyAN0njoeO8m076vH7f3bz7vd4en51+rm9n11f9zt97ufd/vnh83r7vmgf31fOfuRfVndhLWOsrrJOgZXR6qjr2OoY6xjqmOuI9ex1LH6YvXF6ovVl/R1rGPWv4uNvo7qJzJIAH0HshAzAwpAKrADEMADAiACEgBmhplhZpgLzAXmAnOBucBcYC4wF5gLzAVmgVlgFpgFZoFZqpmdXZUMCOAB9ppskAEM0Hf3zkAqkAMQwAMCQN/d2+WUABnAADOzgVTwDmBmMVBzsOB9AERAAmQAAwpAKlhtTkAAmAPMAWYr0GBpsQqdgAFmtgitSD/BqnQCu9xijvriSAb64mjCKBWSA2gYMRp4QABEQAJkAAPMbPEkqZAdgABmtsByAESAmYtBBjCgAKSCNcgEBDCzzdQaZIIISAA1J0uCNcgEBaDm5BWsQSYggAcEQAQkgJkth9YgExSAVLAGSZYoa5BkxWYNMkEAmNmyYQ0yQQYwoABkgmJNNIGZi4EHBEAE2ErnDDKAAbbYkYFUsLbK3oAAHhAAtoRmAzPbW1hbTcCAApAK1lYTEMDMYhAAamYLw9qK7b2srSZQMweDApAK1lYTEMADAsDM0SABMoABZk4GUsHaagIC2FU2d+uvCQrArrJZWH9NQACNp1jCrb8miIAEyAAGFICai6XF+msCAniAzZQ/PtYrbJJ3r8ft1vbI2a6pe+nL5rg9vK5uDm/7/Xr132b/9vmiXy+bw+f4ujnqf/Vtt4dHHVX4tNtvjT7Wp6td/1Ly0aV6uXL0TSFy5qC+I9ra/GmIkdv1+fx6378+JEwgcGnXU/mbSVgh1kmklHuTiH1Hyg6zSNmHUxgpnClSX+Gz91Xh8yyT+fIYJCAG3Ty7MQwUenRCMvV0xF1F6Su4JUIX8pNAb82l0+AWQ+JZHr7GQINbGjwhl8EX18nl2CCtrIIrPcOgLiN5GCIFWXA/dc1GInRx7Cdi4JCmEH8KIbqLYxA7akwF4RwvqilHJ4XvK+xV3RaVjKoi4dgc6byqaFCXxK0kSM8IXYUMkkkIQspspflcii80SEQMjlJX4QfLpfcRDu9T6d1TP6hMcm2lIZeoH0YYFWdzJN20TmHQeX37YWU4OVWG6ztGq2ZMbdHkmSEsKwzpFwaP7kmgdk9i6Cn8IIqcUstFkrgoCspoNI2nG0UYrHoxtb2Y+3URRrs5Zd9WPZnf03juGNVnajckhZnhL6LwrbKiZ+5HEUfHAsZ2SiGmfhwDR+CAOEKZ7SJ/xJH/rYMyxZbTTBy6vRYGNSqpHTBkXqN/OIaRhNMaqJ+09Ls+jnbnfDrzxe6dGRpiS+rZ6vXFMNrfXcDSE13k/jwGDt+OOj75RVH40ta/kvs1ysOja1vJtUz688jfkIt8dS7y1bnI1+ciuetzMXJclouh4epcaPClzSPTom6/OBfp3zouzGe6Op/DPUnaPMJgHU/yDXvSqD4ZK1+Krn+KHR00QsExQZ//l51VIrVTbJodQb8ocrj2rJJHu7OT9pRI1N8Tcxo9J2Y5PWn6hY42FdWVvoOvrfBhPi+qi9Fx3jMKPM+b5OuDHg+KU7/eQCr0e43QeWgeG9oN0e9B8hJD8e2BVT/pW2Tg0gy84NFfv9JqaQjUf2YentZyOwNLprzsxDd3hH6H8DecL7hcvweMHJd1yNDQ3wN+6K+bh93x7GvLD1Mdd5v7/bb++vR2eJj99/X/F/wHX3u+HJ8fto9vx62ZTt996o/bop9cF/E/1iv9/PdWT/Fr7Tj9zT6+vy0ia3H048Ni+Q0=",
5566
+ "debug_symbols": "tZndTiM9DIbvpcc9iPPnmFtBK1SgrCpVBXXhkz4h7n1tJm86ZZWoO2VPyAN0njoeO8m076vH7f3bz7vd4en51+rm9n11f9zt97ufd/vnh83r7vmgf31fOfuRfVndhLWOsrrJOgZXR6qjr2OoY6xjqmOuI9ex1LH6YvXF6ovVl/R1rGPWv4uNvo7qJzJIAH0HshAzAwpAKrADEMADAiACEgBmhplhZpgLzAXmAnOBucBcYC4wF5gLzAVmgVlgFpgFZoFZqpmdXZUMCOAB9ppskAEM0Hf3zkAqkAMQwAMCQN/d2+WUABnAADOzgVTwDmBmMVBzsOB9AERAAmQAAwpAKlhtTkAAmAPMAWYr0GBpsQqdgAFmtgitSD/BqnQCu9xijvriSAb64mjCKBWSA2gYMRp4QABEQAJkAAPMbPEkqZAdgABmtsByAESAmYtBBjCgAKSCNcgEBDCzzdQaZIIISAA1J0uCNcgEBaDm5BWsQSYggAcEQAQkgJkth9YgExSAVLAGSZYoa5BkxWYNMkEAmNmyYQ0yQQYwoABkgmJNNIGZi4EHBEAE2ErnDDKAAbbYkYFUsLbK3oAAHhAAtoRmAzPbW1hbTcCAApAK1lYTEMDMYhAAamYLw9qK7b2srSZQMweDApAK1lYTEMADAsDM0SABMoABZk4GUsHaagIC2FU2d+uvCQrArrJZWH9NQACNp1jCrb8miIAEyAAGFICai6XF+msCAniAzZQ/PtYrbJJ3r8ft1vbI2a6pe+nL5rg9vK5uDm/7/Xr132b/9vmiXy+bw+f4ujnqf/Vtt4dHHVX4tNtvjT7Wp6td/1Ly0aV6uXL0TSFy5qC+I9ra/GmIkdv1+fx6378+JEwgcGnXU/F/MQkrxDqJlHJvErHvSNlhFin7cAojxTNF6it89r4qfJ5lMl8egwTEoJtnN4aBQo9OSKaejrirKH0Ft0ToQj67He7iaXCLIfEsD19joMEtDZ6Qy+CL6+RybJBWVsGVnmFQl5E8DJGCLLifumYjEbo49hMxcEhTiD+FEC+/GWJHjakgnONFNeXopPB9hb2q26KSUVUkHJsjlXPFoC6JW0mQnhG6ChkkkxCElNlKw3K5QSJicJS6Cj9YLr2PcHifSu+e+kFlkmsrDblE/TDCqDibI+mmdQqDzvPph5Xh5FQZru8YrZoxtUWTZ4a0rDCkXxg8uieB2j2JoafwgyhySi0XSeKiKCij0TSebhRhsOrF1PZi7tdFGO3mlH1b9WR+T8/XvTCqz9RuSAozw19E4VtlRc/cjyKOjgWM7ZRCTP04Bo7AAXGEMttF/ogj/1sHZYotp5k4dHstDGpUUjtgyLxG/3AMIwmnNVA/ael3fRztzvl05ovdOzM0xJbUs9Xri2G0v7uApSe6yP15DBy+HXV88oui8KWtfyX3a5SHR9e2kmuZ9OeRvyEX+epc5Ktzka/PRXLX52LkuCwXQ8PVudDgS5tHpkXdfnEu0r91XJjPdHU+h3uStHmEwTqe5Bv2pFF9Mla+FF3/FDs6aISCY4I+/y87q0Rqp9g0O4J+UeRw7Vklj3ZnJ+0pkai/J+Y0ek7McnrS9AsdbSqqK30HX1vhw3xeVBej47xnFHieN8nXBz0eFKd+vYFU6PcaofPQPDa0G6Lfg+QlhuLbA6t+0rfIwKUZeMGjv36l1dIQqP/MPDyt5XYGlkx52Ylv7gj9DuFvOF9wuX4PGDku65Chob8H/NBfNw+749nXlh+mOu429/tt/fXp7fAw++/r/y/4D772fDk+P2wf345bM52++9Qft0U/uS7if6xX+vnvrZ7i19px+pt9fH9bRNbi6MeHxfIb",
5559
5567
  "is_unconstrained": true,
5560
5568
  "name": "offchain_receive"
5561
5569
  },
@@ -5699,11 +5707,11 @@
5699
5707
  ],
5700
5708
  "return_type": null
5701
5709
  },
5702
- "bytecode": "H4sIAAAAAAAA/+19aYAdRbXwzN33ucvcZebeWZIgCBggIURAVCCEzSQgCSQEMBmSIYlMZoZZYsIiSZgsxGT2BJLoQ2UxLriigE95ggg+5PKh7z2XJzxFVHws6nNHRb8J3Nu3uqvOqa6+1ZNupvPrZrrr1Omz16lTp9yjI/s+1bupc9WK3r62vvaRLZ8+u2ddR8e6NfPaOjrGa0a23LN4Xeeajvax4ZHRR1tr8H+1NdxXaobHhof5gEZqhocnZiQwe2bGVVvuntfV2ds3tuWec9b1tK/qc235xAWdfe1r2nvuvPTk2Xyg2vG1QuM336EdXyM2/x1b7jpM1JGIAufQJe0dbX3rNrS7jX6JAsEjBqFmy2cO47K6ra9tXlf3JuWTnvwXEikC+p0LuzaMVv7gIga88VVraZxcovSpli41W+5a3NfVPaJClACm4d+8u89d196xegLss6tO6tqxt/3VQ1e8d3jj7rXFBZ9a7Hv5P075691rn//3r33td9qB5ygDh+M/P/HZWS+++pXvzDntf0YX/9uKX8y7MF2z7IHPn7f/ro994CntwPnKwPjnLuhc9Y7PnXbS+PgHj7nk8due+Le/PNJ/1Uj36DcP3nHfote0A88lCDF3DocQtes/qh1/njL+45eeyqUjRanzhYb7tMMvUD77Xfe7l6/9wl+7wufd8rkP/PePFvVHC22PtOy8e/m3Rlr+d8V27cALlYG/2n3w5rrPjX609fjiH33nDb284vcXeE/97+KNDd/c+vf//e2YduB7lIHfW/73Z++rG7t+454Hbzj1ram2z4z94P9efPw7n637/XP3XveDU7QDF1RpUxYKja8d1Y5fJDZ/XDv+IhFBmfinHX+x2Hjq+98rNt6lHX+JkKDT+C9WGL/lrkPPnrWneNLzfw/tWtg2sPHkD/3H0leuz33iLb94/72FzyS0A5eIEf5M7fhLyxPnZh9zWvftT9c/89bpPz7zG585YbzhD0ed8cwD53/st3/9978wKH5ZeWAtZ0rtwKXKpwoOXKZzIMXcy3UOpLi6XIy4Ae34K5SJn9t+/c7RNT+5/u6HFly6NDgzsOtffrn4q99eNLtwkvu/n277pnbglQITh69YsEA7/irgiyleaQe+j0OqWmjgCjFSUaZ6pajL1IxvExtPsfpqnTLi1Q5cJTZxSDt+NTFx7S3Te28L7qld+MjWmfdFQo/871l3nD2v+J2BXS11n6HCuPbywOPOCP727l0f3Fbz00+8NPin47525sxE81mJE/7z4PfznT1XNPxWO/AaMYw92vFrCK86S5xTa4WGU8q8Tgx7il/vFxtPBQXXio33a8d36BQ0ypisF5s4rB3fKTY+qh3fJTY+ph3fLTa+Tjv+OrHxKe34HqFgsFU7vFdo+Nu0w/uEhs/UDu8XGn6SdvgGoeGztMM/IDR8tnb4RqHhZ2mHbxIaPk87/Hqh4edoh98gNHy+dviNQsMv1g6/SWj4Yu3wDwoNX6IdfrPQ8Cu0w5/cLDSeSpQ8uUVo/Apq/Fah8W3U+FuExl9NjR8QGr+KGr9NaPxqavx2ofHt1PgdQuOvocbvFBq/hhp/q9D4tdT4XULj11HjPyQ0/lpq/G6h8R3U+D1C49dT4weFxndS44eExndR44eFxndT40eExvdQ40eFxvdS48eExvdR48eFxvdT4/cKjd9Ajd8nNP4D1PjbhMZvpMbfLjR+EzV+v9D466nxB4TG30CNPyg0/iZq/Ic5sb6r/IMa+RGdqccd91zS3tff07nl0+d29bSvW9N5OKm991/bru9rX7Wiv69jxZr2vkv71nWs69s0MUNf+8a+Z2qyW+5d2L6+q2fTWatX97T39pL5cuiJF3ziA5/4wScB8EkQfBICn4TBJxHwSRR8EgOf1IFP4uCTBPgkCT5JgU/qwSdp8EkGfALLQQ580gA+aTwsWBO7buu7O0qZCbv9T7W+5L4yd44QzLsunTX7VPyvfEyHh7UbWp7KpiC1C+UVWzC/bWIPdV1nW8+miUEXde9VAN85weo3KFKeibQKF3SufmNTqrqNvVrN5JUplOnpb3ZpqeEjUbt7Yk+tp131VFnWAJP56Ml8lclggBMLDdkQ90uHOCYd4nbpEAdkQ+yTjuKgdIgj0iFulg2xRzbAG20gjPL5skM6xCEbfPUe6RB32UCrd1peByeWx9b3MVunoh+0A6tvt4EOSg8nJjKS1re3QzbgjHwLvn9Kmp5dtpAezTLNW1lK6l1yKvOAC06vpAUn4zO9len1D/JwB/nxmciE3r2VhF5H15rh4XFtGqY07Pwtnzy/va37rJ6etk0kL44H3l/Jft9fM06lKiYyoFvufuPFEdbD49lpFO2QNxIZNerPe0iVr7y4fYLFnWuWtK1Z0756Qdea3hE4YamBC7/p0rypRuBBFQLzu9e2r2/vaetY0N4JQ3SPML9YP7JVZ2yW0BB8YhASW+66sH9998iTT4NCemjBxEcsWdvWSSrkSoIMW+45DOKCa0j5KQb3liH/h5rSD1Qovaqjva1HofXw8AggpOegrDMAcL4WIGyfqiWwSzyp5jviNo4k730qzZjX1t3b3zFh5uEdBLYBqh1l2IxZgHWoHYezzABL5wF/XwAbhPFqc8IGiLtgy10LutpWs1OWvsNHEjT8rhC2NOm9b0z6+n8u6h4nXrhzYX8HcygN10cyTPWFCAa+EgbaVzyQfDLsm86TC7/XaqS7YnhKZuUXIPnVBosAQbpmymT5isH3lWH/Sq0CPzpKpQMLJ8C3rWkvbaf1nr1pycbz23rXwnbfx3NSuuycERflF3VRvhF9Mh64Z/51/W0dvWoS+3ESB578NS0SQeGjMkt62g4flaENZ1DOJqizbTmVti3z4JMC+KQJfNLsbIJOxiYoZUX8YlbkHBpCQAzC4qot2TzaxxHWs+SJ/gAZYI+RsNxT9D9fhvznyVsAQVF3CZNXZX9jrgz5705gb/vA/gInsJ+swF6gtOSIKovHPGWBS0v8JGpUstNPEtY8o3OUDY2OIB15JTqMpKkfyUL7+dl8wxD3S4c4Jh3idukQB2RD7JOO4qB0iCPSIW6WDbFHOooHpEM8aP2PHraBCsqX723SIe6ywVfvnIriuNUGxnHMBuIon467rS+O8nVwaEoGUSLlWPzqAz9efSCzkGAGuBxnFxLUihcSzBApJKh1UjxOisdJ8Uzq3i3y7999P/4Gd++2WLte+uat7yEFeLdaCb6iUoLD5UQTO7Zta6qoKSp9zmLZZSmLpe//eqsuUaKyN7B1DZpuXYOwdfVLsq5B1KNXY119bOsanELWFSMubV2D5E+t4fLTtg20rj61dfVjcINQtIBhEASsqw+STzCQY5ZVqNwBq9iudmAy6yosVyup52z+uYp72KHT9+jbbvQVawcV0Ls0dUMnVSi1oa1j3eq2vvazOle/viqY33ldf3t/++pFXX3tvRN/nL+hvbOvd3h4DNDWC4G/vwfW4jGBzf9qXdeFsn3hezQAlTYHUNy2uP9qbcigWBZI2z5bZjihdcoglO0TOjdaaiBcDF/qeEnYS36FbS1GIG84Ank+bN0C+txRPb5LvrfSyEMIkYew6fIQhuUhJEkewjSpQnKiJj9bTsJTKGrCiEvLYZj8qQ1IQgRheVGTXx01hTC4YTDQQTAIA1GTH5JPiEAhYNGoCr9oGx4q1n5KseHLqoowQ4dZpCT3PkIC0ZiCMGIKIqINNoVNQQQ2BWFJpiBCS2vYVFMQiYqYgqiAKSDEkG0MOk00BpR0pMQYlNdKXr6MdY32SRMir80kG5nyVqOVtxoS57J+XVECTL9DoRMhMdM8i5KYaZ7FKj9btM/qKj9btc/ilZ/TtM8SlZ/Ttc+SlZ8zGOYlUqz9ZtWFqtiyzH8EzgcEdZ4PCAPnA5RFFcVz2CzGTY+Q4rBZjEgyi3HaLEbAGqkUiRq1i5QixZqWu3DRd5KyIn1KCzqNEDojWsAsTOgMTOi0JEJnaEKnQUJnSdQoQmfL426AJsvSk2WR/T/l2ZO3SYc4LB3idukQB6RDHLPBV2+TDbFHOopbrc8Y+R+9RzrEIekQR6cgYzZYX3QGbCA6e2zgYnbbwHzLdzG7bCA9g9ZXwt02IONO65PRDoHjyFQk41brk9EWxnGr9S1Pj/XttwnG0QaLt17rc3rnVOS0fDIesIEKjttgkbDFifMsuvIHD99l8GT9AkaSOVN0racTyFmxHO58bTo2V56SkZxuEIUtnJxu0KLTQGIGJq4bVO1QYMTuXPSFa1556fsvQ1xooPnaUOErMCiPZrspIhbEiHi2etOOKMLOq594aCqWnnjJyUubgZEv0ZjlRTEToSIxC6UfCo2XGWMMAyChQoZAlrf8COkjVExb8EHUKUQknVOKkK8J1LYJ7uG8U1xH0+bXtqVRWmmokSFRo+iYKY+7WWC3KoMwJsNf1BiGuF86xDHpELdLhzggG2KfdBQHpUMckQ5xs2yIPbIBbpL+zUPSIe6RDnFYOsTdNlBq+YZnlw2kZ9DyOmiC8Mgn407rk3GHDcg4bgM/uM1htSXDiR4b+MGt1iejLfzgVus7mR4bmLIhGwjPduszZp8NNEY+Y261PmPGbGB4bBA5HpAO8aCxPJp+NIgyeZmdjNJniHUyyhjoZHRGVZ2MsEyr4LGEJeKZ1oj5mdYILiHGTxFHFkOniBeP6r/CoYTJSl1niKkzRTDvBE+Ax8V5h5wAj5t3AjxO2Isq5bVOQGQi5HdTp12IZ6UzMe5a2pwpe2ZLBaxZmm/NgIOpaZV1Y22u/lOA7orOLBJroZKGRJJ6kyBxGji0G4R4DR6AXUmfeoKe1FeelJkIbnVFAJor83Yzz+r5wgroOnjnvdxkQgFFfD8wKMdqMkEMQ7DKFd0posmEfonIVnyZIayyKgRZeGWVvdyHYGpReNVXTa961UeyMMvzMQsCIkJ8doABPFh0NyvAH4aA1xsJe4IorbK4XusPpfhyUa9XLjIMAtUX3W8hqC9wxLNezD2cJe4S680/4lmPxq7VFsucKVQPRHw3VWNDPCubvJNol5jjusQcPXGOK+kNgO7lcMVuKLpPEKC7sjxZAlINFfSMyvdQ2GSL7rk6DCDwqfW4mZkAfhrfzOSMmJksi2OkOGjMTFZlgzQePweJMvUm8cE5IHzIQrZAf/iQpoMEsEqonhckLGGaN+8vFdDzYWnUBAlLyK806I4RrCZc3gX8IIHpjKsLEviueCFfR5i6Wy29ONo7gdl7+ZhljGlvpuhewtfejBF2ZPWyI8O2Kst0sOMeDj0DbLd/hQL6UZ0qp+jqISL8Z4F+nwL6cQEhileoqTVq9ZjFy5Ag5KTK4uRrkz1ftVGHsS4ycbqLDCDcZWDayK1G43leF4An9PeQyZB4cZdzpAwasYnKIFSYJ+xOD99Sp5h60qXHKJaU93DzI/qL1rAx+kDVldY1SIuaBkrgieYlCZAEtMCnEIFPkK8JtNsSbKgUFF90pMxvt8WgFdFuC479U/IjfgegA1DApC2vvJCUatLGFIfxN3BLpbJG2KsTawIGgTeNQKro/S8F+O0CNE7qMPENaAiYVDGFtYb+MD8EbOAxKweNzLOY1YAxK190f1QXs+D+WJW07Z0QXmE+I7PMPlreryvA75n0YxfIfClJ86XI1yj3mJyMSDGN9Bts1D5rISN3zbNWmDw6YsykIoX/0B9j+skvouIO4osAbiWZiy0iwUHLZLLo+Ykik1/FdnTC7PsbMkg8JLg0cIvHQ1k4HspIioey6GIJPuCXRQ9ypUFrafhsWB3dohJmjeDBqneJswY5WFVn3sGqOpA1WRI1+FDrzUJZcZgxZnaL2C8doh263klvkdUnHUX5B/TlN1jZLBui9M4J10v/ZvktYEatL94mNCXYawMzMWIDHG3QwFN695J+6SgetD4VnaZJFjW38lm9wwasdrreWdTFOF3vHAP+Zjbg8hmzzwYaI58xt1qfMWM2MDw2aKIrPf6W3gRd6KAWkZczlGeVelDrncD7bez3sy7xg1rvFDmo5aLy7sTtQjn8Xpw0UtpAlyqlyZ/6q4NSFQoh9UYZAdYqEFfgNaL6dzsViNdQEHPkT/15dwXiOgpiA/kT2r1EIL6fgpgnfwIQCwjEaymIBfInALEJgbicgthE/qTurioNW1neTvJcDs3aDOyfJis/w4y9quaiZ1gBfqUWAeXgi9WuxAxK2u1g3NoYBAykcyWmhCsxg7AZRa/EJI7SiF6JGcTg6r8SkwTDvxIzqO/uWmNXYgaLno7yVngMPHESpAsniWaxEMv0FU76mZUYnm5+4ST7yjmfSkJYoG9RjFSvgLj5uB8cQWt1fLjxjBQ9HyBqdZADmWGe0L6OvBIFfoQEAmHO4i+BOTAsqveDWTyOFj038XnspzGLcBkR1Sd5ETZWW0isSKv9ZeJS867uTSWzPTy818AFo2H9V48SVATN7l6Bm991GOGyftyC2iWeHAYhOdTcY3l/ha6r2zva+9oVyo4ZoGwQptKYAJUEopeQ6dFLyPzoJYRGL3CxU4hegaocIajXRoKlXiVYYiwqdYQzzDDKX2s0nIHaejCVyfc1KkwhSt/A0vhmmlDNyOo/Qb6GzJeSNF9K53xxSfPFdc4XkTRfhHxNeLlUgruEvVi6g39srPlw/AlAXQENajVyUrSFHtSK0bqF/KkfkWau855uBPtp9KDp5IdosZ9G/jSAfZtU7JsFsW/GGNOqQ8lbWczWpeStkz4fVfYLO+LpYr4wJe6Ip8OOuFWSI56O0kpDjRkkahQdZ5A+EZhuBj3dDIQ1BMiofJD18kHG5INskQay9KxDPo5p+SAz8kFm5YPMyQfZIB9kXj7IgnyQTfJB1skHOU0+yGb5IIMCzr8VWAkRC+Xu/t61RFM8aAHTMsJc7o8CK6QL2Suk5uSorpVPUuAbk5VAkNqpIKMbZa+C8vYucj+P62+P0U7jRgIJj5gvXyUeSHjgQMItKZDw0ER3g4GEl0SNkmNvedxGaDIvPZkXUQwvd2PeKEC4QM0wxK3SIY5IhzgmHeIuG9Bxt/XFcVA6xCEbCM92aRAJcy8byVHrS8+ADaRnjw1M+G4LS7idTPiQ9e1jjw2ERz4Zd1qfjNtsIN/bnIDCkqZMPhlHbOARpAco8B1dFjKONhCeXVPRDW61gSm73bHfb/YFoY1Wb7fYgIw2MGV2CG532ECrx23AausH4H3WF0b55vtWG9gdGziEURswxg52Z/cUtDsmGFv50cReG+A4Yn1Wy9dq+Yu3YRtA3D55SugieuGWXl5T/rGWUf/rOtxsttrCg9X0Nn5pSkZRg08UtnBRg0+Ljo/EDCx4IBGbOwdG7JX+urnfK04Dq+V8NFN9FaYCgxgHEYgqCYqIATEiXq1uLusm5lU/8dBULD3xkpOXC8a/RGPmF8VMhIrELJRyKDReaowx5csECFEh9AEAyTiglySxBIbpbqcdZrbT9j4s3E6bwKn0xV1s0I/yTwMwTqxnuALOODifJ7EydHSed5vScmbvb+8TxDdCipFSRFtRDcFbG8rHWeeBDaq90IcVWMTiUZhxSL9A0oTSmCYdJGYIOHHkFm5MHUZap+f5rdNTPOldzu6A/0NDF5gluLRl3HaRw6Q3Rf6ERCxsnojluCLWwPoiHhkYmt+AGuU8SQf9tNUlYinkOGCOf80CbDyUn1m2+XiZviZW+RlBrj5JI23AM8r5PK8owpxbsiYQ/g1fKwoIE0TEoaD6JAPNSxoQ5wIe1irovZatgUGgQtH7J74/LYBXKpeQW8IG/aqipJeBhiBSpSE4CzYE9UZ8TX2VviaN+pq8gGVOc1mfR1mfVlk3hm74PGS3A64K0hiGQVMVJj+ZupOWIDZ8d3gOuV6sgX/bZJZv4oLMK/t8CQThOIJwCkFYufXVd5wowtybS331Vry5FIBp6BLGXDWXMOaKPh3XU+cA6iutnth3hfuadZi4eJUmLg6buAjXxDE4HzGyYMGvMWvQwXq8DRskgyjrUyprydKNYxkm7jgBgddl4rLaZ3EkKEohQVE9IyhyRyb9GiToTihGRiso6q2FM1pBOGvll3RMJ4jSSkONEIkaRcdQeRx4SQqjy0cIYUyInz82DHG/dIhj0iFulw5xQDbEPukoDkqHOCId4mbZEHukAVR+eqV/9ZB0iOM2kJ5t1uW1eR89ZP2PHrCBfO+RDnFYOsTdNnBb8l3rLhtIz6D1lXC3Dci4UzrEUeszZocNGDNifTLKN7dbrU9GW5jbrda3ZVMy0LPDMlg+Y/bZQGPkM+ZW6zNmzAaGZ6f1yXhAOsSDxhKS+tEgM/0Sb4cJngneSsB8P1QrfjvMmSK3w9QSHX6pHlPKT1/5rdodJqa4DfSWPuIp7mpuxvABMjKFbsYIolU82t2bIPkTae7u4zV396lvxvBjcIMkw9CbMRjt5bWv+CD5BDejgN1VlXLS+3f+ou8p5SaAZRgabv4tImexG+H7TGwzHxM3BUe8zbwJpiAUFTEF0XEDNw74AWPQaaIxoKQjLsagPFgbW6N90oTIazPJRqa81WjlrYbEuaxfV6jrF4h3apBCxCZke7QZ2TJvQYpsqIbT0crPadpnscrP6dpnxBVxM9jm5YWqz2jUKMXztDIzDmPAtkXQ03vFbYtf3/mPamyLHz1mQFlaAjUqTCaeegUcbxCJvIOkuMkCWXq2VDbAJz9sYpDqtUuQyj89FEIj20Nnd7Stuvbsro1b7ru4q7d93equztkXt/es7++beLOrc5SkvIc0Yx6BkzRIsOdDrIFEfgbe/HU1RBQgvU7AJ3tpf7lsgEsdgLo0sOp23UGxdt2L2SGvz6+vXbdf4BvdFSsDeV+0WJK72PJniGJJPWmU9bDiU1fG8bEP6bsyzs3APVT0F4gr4yjLAttZwWtPl4jbWeTa05AkOxtGNUylEF9RregIfWBfb7p4BBDcxZBCzIc1a1TPGkvgNHVYtIxaJu+85vGOPAavnTYiNi1410OElSwmvhtegYXL6u+fSRvvKNd4R+mJo9wYLwbkj6Ik9rRZiBX9xxvRmUVit9lGIZHErhCNArm1MMRrLUs8ZWxXgqvMlWDEuVJh4qmghAA0V+btZl6h6lfq7P3vgEDXKe5BAUV8PzAojjq3MIZVvOh/t467bGmJqOM6LRyrOhWCLLzm8Y+m1LHCnWrp5Vd9JAuz8/iYQWld4rMD7EjjQv6RJY5T051/CJN4IScpwFAsZkQuwnrlIsa8INn/XjgUi8hziWdJdYkR81xiBHGJdWLTnimgZ3WIS4yzXOKVtEuMc11inJ44zpX0BKB7cVyxE0X/cgG6x8p4LAGphgp6DDeAdUX/1ToMIP8oZ4ANvJ1vZuJGzEwdi2OkOGjMTJ3KBmk8fhwSZSw2iAPhQx0Yi+gOH6J0kNAJigwvSFjCNm/7FdDXQaA92iBhCfmVImtI2mwvYa8h+/lBAiOZ4anSGXhUksei1ia+jnhYukvANYRZTPWRLMxu4mMWAkUE1d4Jdmzma+8RYceADnbcwwIdwj/ZU/TvUEA/ShkRAjGvgBh4kFyb+sqxKjuhGdvPbKT3M0uj1miftJCIU3fSKj+pPPs0MsjTPJtOxhjwza5R7bOjKj9d4ruuSuOF2OX6d12JFFywZD6ffBUShCRf61jhQbLovwPZtY0gQRBFogRpSMrm/gFRhGO4zkwg/HG+mUgZcfJJ1nl18pM0+pkkf0JRGxJigfYqpddIJ5iNofyf5NurFJhgQTzmBOjPHNkOL8qq3yvA+TCX8/Uo56O0Ha3Xwfo4kvgCWZ9EWR8lFZGpG/fT7Q8QFUSdKRU/Ep8M13JgmcQ4UsuR4MeedXwTB6w5HkUQ9iII+xCE/QrCz4oi7MdN3ATCjx+RdYwfX8foT5f4q0yj+VXWkpWseopv4uIA9X2czOF3dZg475Hs8BLH6751O6I4SRPKxCV0sD6K1G8sMJZA8KmsJUs3nmGYuGcFBF6Xiauj96XgoMiHBEV+VlB0Kj9RfqgSBRrSJX37qBPi/gK8jxpHEo8JMYGfL554TMCJx7ikxGMCT8QZ30dNnAPto56DVdNCT+p07aQa+Ei6fimhYgBUXZ0sLXdVoWg568kKTAILFeH/HYRoGkG0jUI0Tf6krjOHBTdresY8CwtuUpLgMhpXJZGMeU5SxpzRWyxHfjfc8jOrsP+frGZivIw5oz9ZA9flQT1EG0jsWX0S/a8J0J3wokG8Q542ddsACSX1JkHkBiAPnIW4Ta/SoTxwCnxST6jhG2wMgBlGqLFeAltZ5oqBtyqgo7AlgzPEYBc6vJdgloNVgp8hZshEguuzcawSKgRZeKX58S/D7tdXTa961UeyMGvgY1YPiggRNtHA64uBAn9dVG9kcy2K0ipB6XWU/Kl/XZQwFsuxCMReFwVmwNvISty7FqnETSPJQGzZn1K0dyX0aQU+17PMtsKBE5A+00nE6aToBDXB3jLC54kiXI+L6QTCs/hi2mRETBnti5tUn6QR0wL5E/KSLNHniWmTXiORZxCoqRg4lW8kmngNWpewQb9Dx/I9aV6Gkt+MvokVRPE434xyntGgtVkH6xtYaU8e6wt6G7Sy248HzqWX74gKojYU3n8o0CsCgthU3EPgTEU+hChXYh8oLV1b9SFBA+uNOLzeCEtab8TRrHq1yYEzBUKYBPndMJPjCrOW0bqR5K43kuj6SnBPJYnHTKli4DLQV68Ba9uXgolDuMBjqZ58NuzB4/dw9qP87KBkFbHJbV6KyUAfBmulmAQPX8eA1JPZfRjmWacPQxWpLaQoK8brLRBT92GIY3BVITu6yCfBAIv8GCSfonsgddyFRC/Sh4FAo45Hq9c9R+W/XhIKlJlg2ALBxFm9uC1IwrYgIckWJJFoxhRbkEyJ2IKUkUYMccAaXDeZjRgaJqNwKYY0YkiIlwQpeZKW8/WXBCVJzOAwthkJY1uQG02oRgxEVnEasgifzs75f4jmVExes4UYJ/Eydw6Ja2n8uaAroZY16vGovUwUA0M6EnKEMSaBE+Y0wwY+qsRmj5loNF2O0Xx9wikUQCXR9TVa8IYFOoIBVAKDm9QdQJFg+AFUQt/mqbEAakJnlSrF2Jn8/QwSmJEKMXq3P8Y2yffw9zOS93BOMCXYoB9UjNQnBcSNf7IqrfdkVZKBV7oYuJdMOGnkIU2LDLznDUayaXhHm8FgAnVoR6mas2TZYuBLfCbHaMz4189l9Yke+2amwP0kVqTZ/nLFbK/q6t5UstvDw3sNhKNJ/YEqQUXQ7u7VY3f1W+GygjyIGqZqllRQM4zV7R3tfe0KacdkRPoVMo0JkMlJAJEJIDi+T7DylrqDX8F8U68SLjF6w+oIaJiBVKzWaEADNX1la9NjzKM1gSeUF76NnKyoK5+s+AMbSrHqsBpbwyRF1EFwk8pA6xKP+ergQeWzWlovFkroE98Nr4k9ihj9kNbINHcngVHUlubuJGTB+3fRYGfCyX4fO0WWknSKLKWiziTPR+1gQLseCepYa+B5ECHwMBJSK+4pBs9XQP+ScukE1vX4KkxHPUyAXQ/zIlFoYNZtpEuquXA5jVQXiNxDm0YdY1aHzMWNlOOk9JbjxNkbe38UywqprSLK/IkV5l90ML/ePObHuMzHDr/Bu6icPV/MOoQEzH+cy3z8bHkct8WhYtBNLjw1VpIouQoLnHXG+uiFydcmez642UDJQAbhaY20FJgg72wFdIyyvYQTiuC2N8TftGefVg8mdahfzDz1C3HVz1BDnQjaUCeJXiTsEfD3Sa764af2VdEb69R+sIlve8PGWhVMAG/VwfyQecznn4ONGDkHG0ObxHlo5hNpi6iAWeG3bIhU07IhUgweb1rLhuAJysbd9wXkPQwswsUblobEGpbOZy/OPYv1NSxdrG/tbKhuTL/AxLEVR0hHABA3ZubjxeCpR9bMx41EWfEqo6yksSgrZMTMJ/Sa+RAzCg7qaKiXMHgINIGUy2HFhyF+0JNESm9dQm6UQA5ZioOuOWls7ZksBhcd2bVn0sjak1/EWc3aUyT+4a8903rXnh7mvlfwcr5ipNHuJLDwp2krRZAYLsv2EJkYgd74AdP3AQLm98YPIG0STLmFJzCF6hgCaA8KrV0MkD/NuZCLhhsgGab3Qq7AEb+QK9gp9UIu5b9eEorGFgQQWxA0vRAUuScjIMkWMO7JCJhqC4LmF4L6rVAIGpuMQlDsRq6AeCFozEghKHYjV5DEDD7q2YIc9WxFjnpOQxomTWfbkO22vXXLQCxhtVu3AiRqVPgaIHlsaLoq0xkBsXTGOWwD568d1VlDAHzjkbh/JTgmdP/Kk7+AM70G2gZFjLcNmkiw7YfbBmH9yqNiGnCpuPpFze9XHmWlSdn6INY2KLoEahu0BHb5HvBJ2MgFLAF53EtI5V7APO4FkAoUwZAiLpBbV2XP7wSvsowq6aRP0fa7jluBUocU3bqkHxwLHhLSGtLIYT02kLbnUXw1xTishtznEkN1ww8WmwTBJyF6K/TLoIyADSNLMBYxL70Jn6SAfoBfa66AIr5fpNacGIZgNZEg/Bq/DDlqJDGW1JsYi7Lx+oahjHGoanqFVB/JwuxR493VE+TSmrlfraOnaNRIZ8kQq88tgZeh7RojchGtplgnWgw+BUdjMXlO8SypTjFmnlOMIU5xcho8RJE9lopT/JH1GzwEfyBA93il7sXQllkcN4ATW2Y/MV6VFsXNzATwn/HNTFJSA1u1OIic9k9CoozFBtChsgQYi+gOH+roIOElUGR4QcISpnkLK5cWBX8NL/ThBnsJY6UaaNu/iXXk7/hBQgRN7htyBn6V5LGcwZ903IaG1ilEjGGmasfNxOyvfMwi/MbjXjY7XuNr75FgR6hWBzuY9TwR/JP9xZCH6E4jBJqI+ZmAP1FWuJBfpy4r8Mg5WOQIKTg/bmSZuwBfbDlHtGQc0YqCbZiqp+MxUukYNY+OUcN0LI272VgEBwN8cqt0iPulQxyTDnG7dIgDsiH2SUdxUDrEEekQN8uG2CMb4I02oOKQ9cXbBBUctQHEXTbQ6p2W18End9tAZWxAxn02kG/5zv9W6zNmzAZxng3k+4BsiP3SUTxobPmgHw2o38W9lb34jq41jEYXpWHnA41VjwbrXYE+YuOMmrtTqQ1+8uHR7C16qJYFWcUHBPICUYRvAfK1yZ7PvMKSuA0LS6ptLV4nsNum855XZRcmtJF1gxxvF4a5/cPVeP4OKPtyzNAGJCFf/o4bDafdu9mpun0K6Jv5aXflT0FuRjWgr3yLlUAMFEO38NPuAWZuspv8cqi8uZQuPVxhTCh2CcIaBkbBYmhn1Tpdg9SIRqs+VTKZt11HkNuu/cht1yHktusYctt1ndzbrgO6brsuqUU4KGANdVwsyrvYeBGzbCl0gL/xkcCr9gUqGRCXGid/mnXDMnL9qGJ/vQIRF99op9DdWz963jSOFL9HkUL1BGHUndNm5Gkz+MBAgOZEELEvEk/qHGfDkzrw4YogTccQd0tDsAFLiL/UNQxxv3SIY9IhbpcOcUA2xD7pKA5KhzgiHeJm2RB7ZAO8Sfo3f0g6xF3SIQ7bAOIuG2jMTsvLtwm2cY8NhEe+j7nd+qzeLR3i0FTUmB02cKxD1tfqHhso9W3W/+gDsiH2S0fxoLE1k340/FXu45wH9EI4VmwfJ2RgH+dYwX0cJRUGnwIul28/+TREwnp+1W+C2UY4nECO9MeQwr065A4q5QbO8HGiCBM5MC8b4Xp+ti5t5JAB4/LwtOqTNNm6evKn/tQXv/dsWm+ReIrZ/Cmc19H8CTziWUJuCRt0s44LlqttiIdcsBzlJijTRvaRMyjn62hDmNHBekP33dRXc9/NhG4cS1+wjKggmmOH8671SHcw7CxzEukcluKffUnwTRz7zFN4LoJwAEE4iCCs9PkLXySKcAg3cRMIn3ZEzlGF8HNU+jc5Qlw5131Ylr2bGz6Tb+KgreIgthk0AXqeDhMXqNLEJarprJ5Ej2sa2oMJonswIOsZ3QX4e9f4AcagylqydGMRw8RdJCDwukxcAmmkE0O2UOqQbYE40QNAu3eh7G9UxGjuHFiM8l9rf/rdz7z4DL3pXZaDey5p7+vv6ax2oltnexKDly88nz8RzStXMbxJ4dBVYNMExu6RS0ybguK7Ry549ygoaffIhSiHC4n1GesupZ8PWEzjpidzIws5B+AUAwhd0UAVonjBMT7wiR98EgCf0J1RIp8WqAUhOlyhpxkBiDEEYhsFMUb+1O8KFYgrKIh15E/9cZUC8Rq8dES/M1QgdhqK/ZIIxHViV8jWk9Ohp/IZdyshp/JTulqkpnhncRM68xiKWPJHppkj23SMzDBHrtAxMssceY2OkTnmyHU6RjYwR75fx8hG5shrkTAtj0QVBdOjigIcVeQlRRUFWuPyYFTRRKJGuYcmrr9poidrQvyNA3CKAWS1uwl/SiuFLlJUobtsVoL1/tcoa4hHaMiwtqdM1/YUrO0uSdrOWLW7QG3Pk6hRbMuTzheYLo8aFwZInmg5AN9UACHlXQAq7zpCeZkJ68eRHSYXssMURqQ/okz6U9Hdp0glHmai+wQ/MVtAF2n6U/EF1QcZ2HvKIxliMDtXQLNzEZVYUAQqFMPfNd6gSBGn5cz2ROH/1JGYdVWZmA1Wc+dMhJVj5XG+wOISQRNKHws6WM/wG2Eu610o68OkGjKTfT9hJGZ/yt5G/AUSIyRpM0PMDFf855VJ/yGq9XmO1v/K0I6zIa1Pqz7IgNZHEOtucMdZZVqZ/PyN8R3nFKb1E6B/p0Prk+ZpvcvIjrOLy/k8ynk8fANZz7jzM1XlTpzK4zK3y15jaP0/GK9mihG3LF9fz/D1kYKo5KG+Pl2M+PhanzGi9QyByWC+Pk3+1G9J+L4+o9fX17P5GTXN10fib0pfnxH19RkdrD8Svj6Sp7V+QgHpV7PFyDQTfH29Munpolpfz9H6o46I1tcb0nqGENZXqfX1uK+f0Hodt+vWG/H19cXICVb39fVGfH2GxSXM1+vR+iPh6yOnMbT+dMaruWLk3ab6+mWyff3Zjq/Hff0F5vn6BY6vt7SvX8rQ+mWMVxuKkatM9fUbZPv6lY6vx339GvN8/fsdX29pX9/P0PoNjFcbi5EbTPX147J9/Qff7L7eXY2vdxcj2/ha7zbi6ydA77S6r3cb8fURlrhgvj5iVV8/xtD6cbjCVXNjyPLKs4Qx4Uxw5Od2fusyN2K3QbqFUaxcKjNA4RUuRj7MVxkX6hrcxjCrV30kC7OP6lDme9gfjZjRCVbcSVydAZWXrqXLS5WfUbrAVPkZQ0rz65DS/DhSmp9ESvNTRBEqHMF66O8kkIe/JoBgHEIqwb0I9fwIhYLlmnxmSYtfW9LirhhFlUkOVF5Q/T1Ysctlqv1r2bmVnvgqMMq2TzvYx8YuoMUOPD1cBqgdEOQMCDGLCpVpiIt3ygOKkfslHad42v/SH77z2Jph089t/Dxw8XzXl3e3mD7RH71DP5j/ww/9wPSJot964KLn/tJ9NH8iwMphlzx3QYOqvOQ58pSOq4t4rTZ94BexWm0qxfisVpu+YuR7yo3zPwJr/2urvrK9TryczgeX03klldMxRMBLVD5V2Y8PPBvgZx1Cgz1HgHxWtrDPsrol8yq9AkaaMQSB0F51lTyri2vkx2AcsFL5judA3gDTeio6ypTnXyqgf464bq+4cfDoCM5w8+DhmocXhc0DCbFsKZigX+GvcgNGMhx+lkyRAqtZ5frpmIVe8nmrXPLVwUs+H3fJxyCDj68lKBk8aCdNvwBtPWCNpQcJBr0sE/JctS5476Mzz//Ne19p5rtg7XkcIhh2lY7sCJRyC9phj7jv8Ztfyu0XKeVW2VqsTb7PmOnHQLrlg/TQixyY24Kqf7U4tz0wt92SuO1BE4jwUpFhOBRbdLOA8/IhjFGewa1jDUPcLx3imHSI26VDHJANsU86ioPSIY5Ih7hZNsQe2QA32kC87aAwe6RDHLYBHXfZQKt3Wl4HTfjoIRvgOGB9tZbP6m020MFRG7BavoDvtYGXkR+h3G59lbGBLZP/0QdkQ+yXjuJB61Nx2AbCaIfodtAGXy3fD8pPJux2YtGpojKjjmO15EfbIRS1g7kdsYG5HbA+HW0QOW6YipHjDhuYiRHrk3HUBpbMBowxwTbutH4MZQdx3G0DcZyKTusDk+e08J1x/WiQlUpGLgg6n33hj6cNeH8F+32fW/yCoDaRC4LcVEUVWda2Rf9hAxfCNy/5mkBljmC5xLHitRpu8ytz3CKVOaqqQIqOSrXWBwXE34MwRnn25K3SIe6SDnFUNsQe6SgOSIc4JB3ioHSIY9IhjkiHuNUGvB6zvoBvs4GAb5+KlmfQBoyxgXyPW1925Mu3fDIO28AjyA9Q9trAa41NRXGcksZxMv2gmzgrWHp5TfnHWuYB79iZVdfmH2fiCcPjxNeS2BltL7zO9Ok8HrOvLfeZW2b2dBvLpQCD8GMjFBEDYkR8K3giS3NWi3HSvfTES05ePnL2paoP8bxViIrELHBOaqkxxpQPOxGiQuhDlUeqbv/DolNuyc34jY4jVewD9m62GvjJlg7aMS7qiLu/GFuiZauCiV49U0SFOYA6p++uDFDNHKq8oPp7uIJa6URb7GINVQIVGGUx0A4OsLELabELQZpZBqgdEOYMiDCPeSvTBCmeRIqxBZB4CR+ILlPsUoDLbkmn9L90yttOjy47erPhU/ox3kVcrBtzY8XYeuUTrwQvo6j+sJmBY+3IYbOIeYfNIoiP8Eo61u6lp1WZRvjOZaVxSGwNba9jXHvNuL2PfwFuHXCOOoaLVl0x1g7eXbgGvBFlKXhz+Url23dh1wJ6wO+gP74ODQ2J1yZ7Pkr06sREL07fv12auQZpOeehW86VRi1gq2+NVn1rVEQrxTRPqE0n8U4N0r0SvGspqjTPOkRFx2CbqjpWvwFlEE+Qb+Y3z/IyzW8XKccQaqxmJF5ircHCaIAWkbiYiNTQnoaUFpar2K6w9HHoY8LI+ou+cTRM/oRsxVpC7xG9mNge5H7zyVVTjdXuM1SM/YuC46DIyi0kNnlU3ImGzO8NE2J5M9iJhkUJrl/SwuR3w5YlpDBrP22GI1wnGkGDBshogS03SRdIiVa0GLtN/xXEMcpVJldtufcNhF7fEr+oe5wwsHcu7O8AdBEclFIPSpKDKFYn39iI5/I4Ac9Xf9jYkw6JmLramwvTWvqlQSeZJTDSPsuVR10q7iRTSk+pZ/Q7ySSJF8IpFeWSZcjL4CFpkLkpRIxK7otBxqW65UhpyHw1s6du7EFFZT/PELPJYHtKnLnJMnNbvfqZmyBnh8PnMjkeOULkqLcSOdYS5AAlLqOWONUl3RQNs0JhxXXMoKButYLWYzBaIUp96rkeKMeKGENYxJgrxpQLGKfvAwnJCFFyYtL0LvEQJQeHKCFJIUqOdtlEmkpDjQYSNSo+aCiPAwuVGujJGpB1n/IMLlQyDHG7bIg9NvjoXdIhDkqHOGZ9xhxwWG1NVsMVwtYRnm3SIQ5Z3zjCe8jWYcygDRhjA+O4zQbSuMcGrB60vg6aYMBHpEPcaoOvtkEwOmaDmMcGrLZDMHrbVAzLdjkhjxPyWMXu9FhYGJWfWelIjtvAI4yY4PzBDGiWyoASl7+lmFdj17VVnag8i077wUnQRlHYwknQRi06jSRmYIK0UWd12XvuWNFw9H3zvgvxtZHma2OFr8CgPJpVpYhYECPiO8EK2zxYYdsIVtgWsArbvChmIlQkZqH0Q6Hx5cYYwwCo/EzIB1lvDCRVB6zKsEMXDa4B96WWlvdV6n4uspMhuDs8S1yJU+bvZKREdjJyJGoUY5V96w8KbJvkEEnJ8Vc9hiFulw2xRzqKA9Ih7pYOcat0iLukQ9xjfeGB83+GIW6RDnFUGsRD3GjYMJIj0iGOWd9SHLCBwZWv14PWZzWcw7GO8OyysKEw7aPly87QVDQ8YzYwPDaI9BzPalXOyNfqHdb/6NumYsRzmwm+H65WxlKU9YwUZapY9xxWVaorCTAHrDRnZDcaRGELZzca0EJJMPPRoDNF+YUXO26cVnP0N4ylnvUnprAUpWAi8CQwRdkIpigbwBRlHktRNopiJkJFYhY4hX+5McZgmysJ+SDrjYGkUpQq1wylKNfSKUri2ypJStaRhroXlRd+qf+YbKKSA4WOalayo39EDm0ox5HKwy4lv+LORV2k8NUTAw/XnCM19ofPnCiIEBC199oSRwlKp4SoV5IEAqVXkGNCquL+LGmo9Z4ISJL4IgdXJuSISZoMcj4BPtUQJtjFOkUQ9ysv/BkURKsdLUyad7QwiZjviKSjhcwTfsR3UyfUiWclZsUZZipa0Qxg4ig9cZTr4xLA0cIoiT0tWolivAY8hU8ZHuVQykrlaOEKdfvgByrtg1d1tLf1zO9e276+vaetY3h4BOgMfIWmY6920gwi34KxlFtcvrOwfGckyXeW5nemwm94NyeLriUT8penKVD40C9QCcj9FQHp7u9dq8gHJR2VWUeY/Z5HIXFiN5pOuEY1YsbuF61B96sVdNe09y1e29bTvnpx+6qe9r5eGOOEBuYY+GYQ/AhohGtM8xnY/1Sf8qDqUxTCL2jvFKa9/k+HJCZDNliiw5cFDFOVKcZzyum1/WDkw7ASgorqErcSGdhKpCRZiQytYylAx77C5vQIWzMytSOALtSOwnwGBHflKFsg1a3a9ZsRQiK0bSNUZzehKoHqKwAM9CxCKgDS5lUApJGYSFADYgJCqCrTwk5Ol2Oi42kfk+XGRAwfmeXGRDkgJlItDFjHZOPHglG8EvnETwR5A0wbUsVzjGxRS04BPhvjoZ7TyDUibbzEwqjaL0kNoyLmhVFYGy+xSsHaLwqFU8R3w+myrMLtd6HZjIzcZBggnao8Hi2djcX4GVULTk3VBZst1eY8JxgJqzYUU1SU/lxRsnKUvrHY/EsF+AUMZ6Wneco//vzlY0Q8oCDNveLqnjPfA+ZQDwjX0ebQ4saUlUsweU7SKMAnPywSTR9R6UlNivTopy8Rgh86u6Nt1bVnd23cct/FXb3t61Z3dc6+uL1nfX/fxJtdnaNkhOEh2QD2DkwLxcNp8qdhQ/JWke2mRtNFoREWhZwkUWhE8yEaauRJ1CiNyuswJIx6+TyipHkdhkQYJM+QGAUoZkiOqPSkJkV69NPXmCFpJA1J3iNg7RBDklM5S5hrE5tA4ssQTCAEN16niQtE3nyBwHlb7XmYVkI6PrGk65K21es27mX6gCzThhRU9ksyb9NW5W3aPN6mJ423OSHeQv2Tqw/opkkN6KLmBXRRhDWNoqwxdNgrh4QPlVzPKOr1M8acNDCoACxTVXENvUwtFOPDVQtOq46k2m3i6+sSjEXs1fU3FdAH6A9I6wyKj6XXk9IsnVeqpWs0z9I1gkFxgUSNkuUCaSwhsaSnKyABZ0FHUCwMkhcUGwVIB8Vpq0pPelKkRz9904aC4jwZFBc8AqY7DQfFjWjgpNeQHEc7BFgUCqaLQgEWhbwkUSigXkpDjSYSNUqjmnQYkiZ6uiZESZt0GBJhkDxDYhQgbUgSiPSkTZeeNCw9CUnSkzYU49CDEoYMSVqfIUkj84mm6fLVrcAS8szJNKnmJGGeOUkgYX6T1BVYI3MFVmCak7x03jZalbeN5vG2cdJ4mxbirUBSK206a9LmJ7XSYkmtrChrRKo+iO+GV9dpZdn3vLVW11n26vo5HWvjF0DuGFkbp4vNH1VAv0i5KYLOUWNFOYzKZ+I1AcclKE0JqdUpshxXVsxxCdrUuLH8VBbRoEp1yl9skZ/6k8gq+4iKVNo8kUrbQ6QSXjuIVMLNN8qJIMgdI0Y5W2y+RQEdwZIQsgpVUuRrApsGjaZrUKP5mwaNYpsGeUkaxBRjmA2qfZ2ycDSiWdGMsSQmlLAARFmV96WFuamYyNEVwRYVqax5IpW1iUgdYwuReosOo3y87F2kaxTQJ2BGWVapX0LFHni+tKT50jrnm+zvi0qaL6pzvqyk+bIW/b6IpPkiiGlJWdXCm1jxlbKJhV9kCwu/QIeFv0S2hV+mgL7UxM1+AxJ9xDf7q002x4XEivhueHMwrzBrJbqnlzG2BQcMagZES7VrSQtXczHxPh0SDR6VzRuR6Hyx+UIF9Bqz9+n5R/Ga0JWWhjotiMK1mq5wrbDCtUhSuGk0NVoIEgLn5Ve3r+rZ1N13VnvvrNmnwmfKm9nHfKfFwRGtY9Qx3cMNXrSHgsnzh3Hmwd5x9tT5OHBaeBH7/UKc/fem+LgBpDhDOABZ6tyvaFaP/qY99GGyxKioE2stw2hjOrHEbgX0Rp2gFZzIOVigb1D6Uj0uEBi16Cyo0Xb9yUNOTsI2oL40YQnv5SoHwUoSblV6EnwYJszitR1A2nK5TrOv0BFlVL6Y2M5nVB5hVBvFqLzK72oYVYBCITAt+vGLesDkcQHMQCqXOyeGwHfWgMmmlfBo1flMSmUJUBWlZTVoStymvDBeFYIfEVPchSS2moZdpBIdtucA4OjhBliqS6TzJHm0HA8Jc/wwfG3oQmBd+XKasNFi4nPKC3eILDXFTpXXjonHCRHzl5oRsaWmWFq8dhSWCEawRnw33OUhojDrU2hWJGNsSxk6B8/v88A6e91QTBzS778baV192rxqTiMCecSrOav0zbBAMpdrsNdoJp+VmfVVWiCbdQhkMz11M1cgWwCBbMajiZZi4gHQeVTE7iHRnc5oxVuwQpjmUxXQD+tUMdr7gKnTQqnTk8rDNFTUjBlUPVZ1nFejdPOkFaWJ7o1CfAfc16+Sdvh3UVMUwVjQUGw+XgH9pP4GkikkdmlkxS5Ps2OXnykvfE9kCzhkukULmb8FHBLbAk5IsmgJVjkQ8d0wp5Xmkoln0d180KKl0KBCsMQsReLPKjJL/JhWNoFw+GUBvvG/osFI14c8WrkloC9HNAKImhcBRKWlriJAPqiIdKLLiievDoMTSF+FsOkb2WMa4lAqbNwQalUlsSrKRGtopJj4h/LCr0XKMgX7dkWlrrAS5q2wEtJWWHBvYcEVVpq1wnqVtY9fQn2pQCE33wJmAOOfxtdXmWLiz9XkR5NXVL3fBmf77jxn3QZwtZiHFyJULqOgY1jj4Y7o4GxNoOdhNkklFqKsBGBSKX1PekVKYqOmq3PU/JLYqFhJbEaSOuNtMaNIwiSqMCtu/baYyZj+WK6BVmfkQCSmjDmRLEuz6VLcbH6WpVksy9IiSYpbWNsCxHdr2NBKPivzeBotxa1cKW6lJ27lSvE0cI+MwJ6W4mnFZAsmNnp6qy7CeKAHwHPYvrYeAB+lAUwTAnAsDWC6EIAHaAAzhAB8hQZwlBCALTSAtwgBWEYDOFoIwFtpAMcIAfgVDeCtQgDOpwEcKwTgQRrAcUIARmgAxwsB+CMN4G1CAMZoADOFAPyWBnCCEACGHzpRT0MIdkfck4TmdiH7FFRJIOWST4Os6yzAuhJpRVYGe1axaZsC/AwwAGHGtQUc9ET4cZEC+t0il4TkTI8JcuZfEpJjhZjSDnuJFQZjoRnxrMysC+W3oJR91Ct5fjWb9snFSN0CJagEVvC6oADDjmyBVxZpciIdnceTS5F6iAhyYVUayVA3EAt46mohYiLqHitiIuriIWKiytVDmrc85ESaZ15yIs2zGDlRGfoqMHXBMDFhMXUzcMNIGDYxIUkmJkyrXAhMdEdI1LADAj6GwnmKKZdC6A6q4shFIgAg66KRdSEnFkLka5pPcSGMdYvR9lxxxrphxrokMdaN0gpWIjdNR0953M3QZB56Mg/CGOXZk1ulQ9wvHeKYdIjbpUMckA2xTzqKg9IhjkiHuFk2xB7ZADdJ/+Yh6RDHpUPcLR3iNstz2gSFGbK+beyxPqftYL5NsI23S4c4PBXFcY8NxHHUBhDlR447rc+ZHhtYnl02sBO32kAJR6xvHU346tumok/YYQPhGbK+J+yxgcbcZv2PPiAbYr90FA/KhthrfbbsskHAY4cl64gNODM4ebzG88T60SB2DVQF4fdWCsI7utYMD48DbQHOY9dOu+cD7y9gv++pHWfVQ6PF0vP1VV+X7kcv72E0vYu9yeGtusyyBjnGFKU2TojcvVeS2HjJ1yCQzP38WBnqSjZxkmXqpcIgYF6zghgbdIx/Bp5R+O2tyJOWsBHyJ7WnWRqmnFFPpcF31oAVlEuJ0fRHhYsp5fRZKkvv2UDglY3oi8DSfqWqIjVry71vEOt16b6oe7zydr3CCQbqVzEQri+mpiuAm/XTIwkinKIRnkmdTk+T6FU0be4c6k1iS7l0ewv1Sop8WwUMpFP6cKU3U27qGScoykVCR33/q/4/f2rI88Uf/rbrA388buyJ8/Y89OkzRosz37V58fP7fr0Q4cvhgnTg8xHa1OO0ifBpkwQJzVePmSIb91FyTrggIUVIcbU9+INsq3KuMsUckU4EnupKccqAkS1kj/mdCDxinQi8YtOCDsDLstLEd8Oy4lGY9W5Wv0TF6Ioc0OGFQjHw/DXpYyjRihVT7zTgMC7SbzrrK66zTJUdlgkeEEfchiHpETiNoUBcQUHMkD/1H7NQIF6DXZ2QFSjnUyCuw2/k1X+2VYH4fgpiA/lTf+2fAvFavJ+T/qI+BeJyvPGQ/uOoXtLua2EWyJ/gcRQYy1UUxCbyp/4DHQrE9RTEZvKn/rMaxHfHKZgt5E8B5+U13Xl5zXdeXtR5wcdavKzDLHz7gx9nwUBm5IPMygeZkw+yQT7IRvkg8/JBFuSDbJIPslk+yBYIZD19VjZWWZhDQcRny5EXkYlQBpGAWIH9B8vpgvClYpmI9WSIBRkfVv8bYsFOY+Qtpm6hLXFMXuIohqzRBIrNk5WfCSKuZCUv6ivJi1vfROW+5zjlvk65rxBEp9zXKfd1yn0FIDrlvk65r2U4bYty36GpSEenONcpzn1Ti+OwDTyrfFbboZzGKaV1SmmdUtojqzFOKa1TSuuU0h5Js+OU0tqqlHae+aW08+SV0k5sIDRXXVhVg+yI6ChtnTun8le4BsdbAa53a0BhMLgx4DWvwYu3Mr22wo/o1ZMsFQFCxVK8Ml1wcyyG7MzTVbgx8icAMcG7NgvEJYngQhciJcmfUCESE5c2HbhkEVxW4AVHSPszPf3kTmdukTYuLutn/UkGVeViCm0/KYYAUD9NCD9imb2q1xgfkvus8iFzDX7Ie5mAM+sVwGBTPRchD0zQl1BKSGzPlaqFEYtDsd5nelsqn/lWy4daLQ01/CRqlHj4ScIi/kSPopyAkVsPgBMZcuQqplcocnQu4wV3MX2F8sL52Fa6V9JWupd87W54z1rPJ1+iZZcbEV6/mPwMiAuvHxZetyThZdgvNyi8ARI1ihGB8jhwLz5ATxZAOBvgJ+4MQ9wvHeKYdIjbpUMckA2xTzqKg9IhjkiHuFk2xB5pAAnDNwXF0QQcd0mHuNcGX73NuhJunvCMS4c4agMvMyQd4h7rC88eG+jgqA0gyg/MdlqfM/LFcZ8N3JZ8y3Or9Rkj/6Nvlw5xeCpqzK6pGPIckA2xXzqKB61PxVtsEDiOWZ+Mg9aPRHus77JMiKAGrW8a4do+C8XfI1PRC45a/6MHrG94TNDBHTYQnp028KwjNrA80u1t71Q0ZTunYshjgnzvsgEd5fFa+emxvM7cZANTZoNUgvyYfswGEIctHDoqP3PyQfqsDNK8BZd8RzNgBwGSbsSdUhTLiY+JzB60ASHlM3ufDayP/DD3Q3ZwDDbIcpkA0Q7iM2oD8fkABJBRcktUgQKDsMaock8DuSb2bEw/DjQxh7TzQO5i+n1YLfJhwFWdB3IR09usxnoh1tVMD4AL6Jp6hUAU6IAYzbdoCFYGrJCLZkUALtL2SyrSZug7cchEQ40giRrFyWB5HFikHaQnCyKiEeRHxoYh7pcOcUw6xO3SIQ7IhtgnHcVB6RBHpEPcLBtijzSAhOW0vjiO2gCifNOz0/qc6bGBdbxdOsThqcSYQ5UISTKO11tfGg/IhtgvHcWD1qfiLuubbzt89OBUtN63TkUnOGL9jzYhgtpuAzrutcFXb5uKAr7V+uZ2agb0t0iHOG59t+XEUBZVwaGpKDt2CCcGbMDqnTYQcPl2Yv9UDHl6p6JHsIN8D9nAOtpg6S+R18pPj+V15iYbmDIbhPS3Wj+IMgGi/Kz/qHwdzMkH6bMySNMCABMczYAdBEi6EXdqMiwnPiYye9AGhJTP7H1TMsz9kB0cgx02FUampPiM2iJUqYNAutCCSGAQ48oD0+qVN4vVK7uN1CtvNlqvTF2hXEKOUT5bJ1bB+lYN7cuAFcorMxEzgOWzEUnls3U04yMVxmuokSFRo4QzUx4Hls9m6MkyiLRn+KGaYYj7pUMckw5xu3SIA7Ih9klHcVA6xBHpEDfLhtgjG+CNNqDikPXF2wQVHLUBxF020OqdltdBODFnISWUz+q9NvD+NvDVPdZH0QRWb7eB5RmzPqv32MDJ7KQOZ9aRi0/965U6ZDov+ZqhJZD+z652wXw+e/1bdwzw/kr2+5ka8fXyMSLL5RrGod5EMfPL8io68236bhx4FS1401RYfBXthVfRAUmraC8tDQFwFR0mUaMkNlwetxSajHETYBhRAQegA9BiAKGLxNZon3gqtg46176UPuOtjCkZpOwM6mq+CImXyuZp3yQ8SPkSP+SeP7U1YxjKaDHz0mEAHR0jxcjjlAskZksJGBsvQveUDq/KAKlcWXkNhqRXQDgUiOsoiGHyJwAxgkB8PwUxQv4EIEYRiNdSEKPkT/2hhAJxORbvgMFJggVR+ZmmYCbIn/pjFwXLVRTEDPkTgJhDIK6nIObInwKhQsr0UCFlfqiQEgkVGkjUKM0mniah6Rro6RoQY0GAzMoH6ZUPMiwfZEQ+yKh8kHXyQSbkg8zIB4lUki3uv1oNsr4McgHo+T5bvta3fG/wyeyLp2lX7i1m82VXHr4UnIB5j/QqMl6BXGjpKuOPXzqL4enXMK9az7bSZjMir7VSBAzd1iKX+caIQIzVDyr7b8oLb8E6NoUEtryxjk0h8jUN2i7E/wjeK3u+uP9xw/7HJcn/uFFaUfE3gRpFRyU6Bzd8GW3QPAhjPPyUr2GI+6VDHJMOcbt0iAOyIfZJR3FQOsQR6RA3y4bYIxvgJunfPCQd4rh0iLulQ9xmeU6boDBD1reNPdbntB3MtwmstgEd5QvPsA2c1i7pEPfaIM6zQVTWYwPLs9cGOA5ORbe1xwaMGbUBRPmWZ+dUtDw7bOAIh6yvhD028IO3Wf+jD8iG2C8dxYOyIfZany27bGBr7bCqtsMaYXDyeI2nsvWjESIGSTzp5j7P/Is5zpN5L0f2EXrPIyxv8yhM7e24Kz8DAkx2I2ITIF/TFuoQ83lKtTyaDY9QBW+KFB4xUkTFt3888PZPSNL2Dy7+cKWih1XQpfz0S6sRI3glC2TpmVO65wCcWgA9WlPTVnkGVx0gBRFtKvfMKj94QaltfAicQF0Qofw9TgKHagBZJREKIVglEZFitlJv+TetgVOqKVYqFQiviOLtJYnKIkpunwL8twK891TCBYgaLFYR40kKsQjzB4JZWIFsyVXe+wYWr//nou5xEvmF/R3k0BLi7xM5TR8Vc3Aece8aNf80fRQ9SqKhRoxEjVLvGFe9Y/RkMcRemAlQ82VRhM8xMVJ7xfkcg/kclcRnBqWiIJ/rSNQoKtZx2SJ45MkOAAnLRIWcCkP1Ml5XOBlBbFH1E0VIOYCVofqJohWHRVkTidPEKi6VbnvyhjvAlWdf5BHGXYYJMfXL0P1HSmjVaJ/kEJFqQKSgEWFcnqSH5lmBlGYmvWu09K4h6VByvNPvKAGm36nhxyq5Y0CF5McqrACurpjbogA/jlque0iCQOWurAjNg0Vo3mLuRFpUQvLyDqGql/KTLYjCAuVRBOopRKBgNV+L8Rqsh/eiQSt6agiZLiApgai6/Hyy59MPMgBTzKMDYgiB2EZBDJE/9S9FFIgrZJ3cUiBeI+vklgJxnaGTWzEEIn26LKbDEtYhEK81dBYsjkCkT5fFyZ8AxAQLovLT2OmyJIIlfbosSf7ULkIJXIKlRShlyoN6wpGJfyGtxU0hi5R6Mf+QFF+k1MOLlJSkRUo9zYgUuEhJk6hRto14Cm6spOnp0oi5JEC65YP0ywcZlA/SIx9kSD7IsHyQEfkgo/JBxuSDrJMPMi4fZEI+yKR8kAH5IL3yQYKtX12oeVZtRN9f2Yju7u9dO797bfv69p62jhHtBnPFpI4wN4ZHgR3p9wC9WhOj6h1kYGM5gW4sT6wqbyFaHhhfssbZwLcrwB8WiHPITX/dAVyCxAsN4ZzcR1W5D/0s8VbWT1TChMCTmzIJI5tlXqEdGHo8e/8ld4C/WRYBtUKJqJmgP8LXCWwN5RJYykUxndC1mAO+MYxrfrSYu5P4SpUsuUk9L6ti6ZlwGUdpjtg8MLPrNbZPoF/IYyRVsHx6RGBVr0tzwnSFDPEplU1TzVtxZHGVFmPAieKLqzS8uIpLWlwxAoI4uLjKkahR7MuVx4HHqBntVXJI9KE8g4vcDUPcLx3imHSI26VDHJANsU86ioPSIY5Ih7hZNsQe2QBvtAEVh6wv3iao4KgNIO6ygVbvtLwOwodrLeQHR2zgB3fZgI67rS+Ogzaw4DYIouxgJ0ZsoIN7baDVU1Ic99ggQqGbrqcrP2Vlv73ka4bWz/o/26Sm6+kTxJqu5ww0XT9BrOk6VIQDZM+U1ocrmDVXDaeWkzcNOWZyraGRyNmzGr43FNAXMsWG5iPY6LjaPvM5OocD5d8bSRSoPLrCBeFMubdMvhn1+qsEIyReYIIRbpS5AmQGkupeoQLEkraZRhtlLifQBhPIwo0yJ8R7Ni0icXk1h3H9jTJVVZWaZ77KzyTSYDNLd1FWfoYVPV8ichxDUF2C4klar/nHMbwixzGcaxkcgNa69GApbQ6gJ/B1CAHwSV0lpqmYCNa58IZ/KC9c9ibqz3uRuM1y+vPyloxOf14hiE5/XikQnf68MiA6/XktqjBOf96pYr6d/rxyUBy2QcQzYn2tNqE/2FbrOxnHJTh2wunjfYS1ekqKo9Pc2ari6DR3tqh1dJo7S4HoNHeWgaLT3NmattZp7mxVOtq2ufMi85s7L5LZ3Lmx+k3+GqTgwQu2q6qturmTS3yjLgRv1HklbdSF9Bej3VeRtTXtffPaunv7O9pH4cPbbBEK1Y4ypGQWJA/jIHwXILoXgCINQQqOa86HM/+nFl/1KwaIuwBva6RtIkNUmrl5nUzd6k6mXgxuiGSY6gsRDEIlDJDO5Gr5hHF9nUSKHf0ICQApthNp5oUV20XI1wyU33D6g+mvvlAgthnqTYV1bF0hq5OUAvEaQ52k4gjEdbL6PikQ3y+r65MC8Vq86xMAMYVApLtdpcifSDPjOnbf/zrEWwk2g4qJeyukGVSdec2giBatRptBmdDAyCcfpAnNoOzRe8aEzk32aLM0ZXsipeSDjAgstur4AXCvEgAz1lyHwBD1UCXsYq+vokaDVHb4HNUXpzJo4K6EOCKl9MR4wryyiukbz0f69vOvuPEgrs5r+sIMqfr2mFf17QFdnY9EjVIDH0lY/YkKj2lqoKzU2EmJWrlKUKt5q5JhMK/dyzHiMmW1di8NJGqUTDWUx4FVuQ30ZA2IrW7gb3sZhrhfOsQx6RC3S4c4IBtin3QUB6VDHJEOcbNsiD2yAd5oAyoOWV+8TVDBURtA3GUDrd5peR2Ea7AspITyWb3XBt7fBr66xwY6OOQwRgaKe2zgEuzdX6NB/5Zmtf01jhbrr9FgoL/G0WL9NZD9KL+kTTO/Dllgt0Hgdlho/E55dd74eeecP3bOX8UEBotK48AT4H56Mj/KcwfglAIo4Zx/EHwC9xOgT/M3vsjsfNJY5DT2afx/nMY+jd+1cWOfBjpbV5q5BmmCn6Kb4CuWmWkRzWzsk4foOvmNfRp/amZjH79wYx9/sfEXVd8tXIPUuUXlNPYJVn4mkUY0WVSX3cX8gPLCy2+izhzniUcZTmcOXhbA6cwhBNHpzCEFotOZQwZEpzPHlDkG4nTmsKb5djpzyEHROXFv1ThvSp64dzpzWJQxTisEq9oJpxWCRd2W0wpBCkSnFYIMFJ1WCNa0tU4rBKvS0batEM41vxXCuTJbIeR3mNwKQbsTQxzKiQgw2Y2ITYR8jfoa/2TsiQaQi8Gp/ZCmys+g9lkzTJ4yGshuql/ZjP6H/t1UN/lF8O3HBd7OJLCJvZK5NVk4rSyY+dupg1tkWQr74FagImvVdtRwi2+wIR01AuZ11CBuJKcu3yZQo9QjShIWmI5x9D+KaFwUkW6/PNacL5U1fvNY4zfMmtK4m6UxhrvWNQxxv3SIY9IhbpcOcUA2xD7pKA5KhzgiHeJm2RB7ZAO8Xvo375IOcdT64g0vgQxD3GsDMzFiAxy3WV4H4WSOUYj90lE8aH0qDtpAqe3g+0etz+odNrBk8oVnj/UZs9X6KA7bQHZ22SCa2DoVjWOP9ZXaDh7BBIjyxXHnVBTHHTbwgyPWJ6MdFpiDNjDgIzawEwPWp6MNlqwbJm/Jiqey9aNBbE3IPBkfOg94v439ftQlvpt6nshuqkvZTT1GZNsjYPqOVMD8bY+AyLZHiESNkkziqU9ANEOIsGOn8SRuFna9+TcLS+OcHSlnR8rZkTqioYWzI2VVwyNfGrfZgNfytXqn5XXQSZI6SVIriaOztedkr53s9ZF1MlMze+3sC1vUON7mlPVIQNEGZT3OjpSzI+XsSB1hXjs7UtaytsrPnLN4myILIzukEuQbnludDKGj1U5K5ohqjHzLM2r9r56aC5lxG9gJGxzosYGPsUOO59apaL8nMVWGV9DoR4OsnpPYViTUaX4hXKfRQjht94ZA5WcdfmMwg+rKXSULqM4hIfKnfpZEKrTSQoySPwGIMQTiCgpijPwJQKxDIF5DQawjfwIQ4wjEdRTEOPkTgJhAIL6fgpggfwIQkwjEaymISfInADGFQFxOQUyRP6HazZWKWJ8OzVqvvsGBgKH89DI6ntQXm96tAH9npSnPPZe09/X3dFLo1pMfBaFCE6AeMYMR8jXhryvBXcL+tvlK45mHYWwX9ncAUMELOTL0J7q5dplx31eG/HbkWrK0ACL1FVMFDMoZwT5LD8qRH6LFPkv+NIB9m1Ts6wWxr8cYk9GhBBkWs3UpQWbS59OYHWUcoy45J1YarL1eqAxYQVaZiZgBrEvOSKpLzqG0gm8Kz9F0JJ6KXNmH31So/PTIBxmUDzIsH2RaGsjSsw75OIbkg4zKBxmTD7JOPsi4fJAJ+SCT8kGm5IMMyAeZlQ+yXj5In4DzzwAL4vsrC+Lu/t6187vXtq9v72nrGNEudCumaoS5QB0FVsYXslfG9clR9UoWWOAmBb7RXwkE4fs164mlhTbumKPDMs2h552D5jyI10CQVETeSDphYNjcO89Zt0GLCX/YKcw2kXPJuemlxSnFpj3KDYEL6TBprlik0kpDOLW6s3kKnLfT/JlLzqKRjFMqEZlw5PZ2OHI7RVLkxviaUxBpezv50fpBvl0vSIprb5fEtbms7yRm0XBNjRSNculz+qXRgJvpN07VZulIjshHskU2khvk49gqH+Q0+SCny6bkjbIB3iD/o2fIB3mULUC+Rbpyb5aP5NHyQdbJB3mMfJBvlc6d2+Ujeax0JIflI3mcbCQ3WdmHKT+Plw/ybfJBzpQPMmMLkCdo48ZZlQ0mzRMlvqcusT+ZRLG8dnwWDGSBjRvisvAcY301t9j0TwX4T3lLt8NbyCz8TqD2gImlzymldfa9b8B+/T8XdY+TdJ5YhjKHzmavCF+gyav8pG4wIJamBeVL/wp96Wzul9IYzS42vUSvUE6Rd4nGKSC2ANOJyyfibIR/XV5Uxy5TXxShugyi/FGlZx6xT4oqc8wD9cELfhqtfLO4m08n04NUVKF09mRSffUnXgrcnb/Zny1zhpX0KJDiyeTPq8p+6kM6hJbGsBFMSTWStIEvNJmFXGgyp4xS8jQB2zmHBA4MOxUl2xyVIabIdmqx2U2QDZoC0BnCfGfZwH0K8MfFgZfYsZANOsjfPj8NrXmC8KEHnUZipU1Enkr+1GuwCeAnUo6AmO5UniM4/TC2TI7Acsax1xkGvd9ebKYqQOaSo0vS3Xw0bdXPkJR3egeadzpDQAjeQaqVlp+n6SDhOxSZVRHxVHIoTcR3FJunK4RqhGCfwYZNCgUD9hnF5mYtg97BYlAr8tZJ8FtvJweU3zoKeesE+K25KnVSBEe/WZwFWupZJGgqbKxoDRI4ziUCR5rODcXmmYThgeKAaHVxQO0YHAc0cOOAPLpLBQwq0IMI1xah44ACaTH0YxIBeRdBItIo+Skl/iT+XeBbFLu/CBrUxA8MGxgC0VRsPoPviZoRQoAsaaIHNZN4aS1XE/nTpAgVk8wCVzKbkbgQJEMLSoYoLZktJB300zYKSmaUJixLSZS1UuIhAclMcQmQZ1FN+Rmi5CBPKxItB41VrlQS1chBkxE5YAhPE0kGSg6aSTrop20IlIMQYqEaWXKw2ohhBAnQiJpoWg4ayZ+QHKTMk4M8Vw6YTseAWSygctBE0kE/bXXJQaP2WYr8lLIcXCIgB6kjIwdRRw54cgCGDgUgdFBVhtChQ6HY3McPHZqMiEgBtZWNlIgUyJ+QiGTNE5FGIy6j0VSXURCgrS5TUUDCCsqdZFXcKpmR4wWklp/oyLIoipgRVdE8JCOJIykjeSMyUuBYU2zhkxWgLd+M5AEzksXNSL7YPMI3IwUjIoJHnlljkWfaPBHJGvE0WVM9jfmRZwKJRtIqbpXMCFhmn75zcf/VapRyJA6gsFPD0txsf56VtlYGkYBYAn93WQbCl4IfY0yb0sXmQ3xtYjAvwRWjNGppsvgZK7Pi92m2itvSfNoqVpYvuE2S/EUTxsWCjpAiC8hqGpfVbLH5QR3JyLx5IpLiikjWSPjaxLLSpANBRKQgoH66DG66bDjjL8DxlyHDmaeHNXINZ0Gf4WxkLzi+zTecjYAw5nFhbCw2f8dQGGJowVsg8ToiC95ptkqA6VjwChhOBibpKtPZeTydLRgyN3JD5md0GM6CeSISNbKYiRoRkTxJFUxEmuTnxsqG8za2vfgVvzoAMkYKAl1s0C8Z2pNJGzFFzSRWqCmitsZbiGYis3TUO2lo3VwpfKJAt4qe8lF/cBkwcqSmFT5S0yzpSE0ri9qVckLttNPEpp3YJzq7o23VtWd3bdzyiSVdl7StXrdxL5N1WfKriekIRkKx80qkKCiifdZEesXyzvhfpTvqFqUVTfNrpifEI+Snw8nyJsVYnCu0EWhAYVt0xw4QIgDhCfaxtopbii0BHTWEVXqd2i/BXqeF63VaWeTi0XgaPaiVpArldaYJBSYEJF5w3IoWwzXh4XFrsSXFL4ZrRda8C5Dd4VbEELQghqCRbwhSRpxkqtiS5zvJjJGNyhTrTDPiJFV9hriIlGa/UkecmkXWSleSyLHW1i3TyYJSTY0e4REypRo98zqVeMWds207lZhwnF9etwXl3IFkgE9+GMxkW016spMiPfrpS2TvK9HcfRd39bavW93VOfvi9p71/X0Tb3Z1jhLkzXlINngErF+2YuuRVkgZuGL39Ww50/YhgyoWnoHJZZR1IjBJ8SqIU+rK5Aw5gVlbOHVwiJIxklHkS04OzSgycic5HT4pZTBGTiHbNMq5pfiJDK/kKrZcVX6h5UItGC9iNFxiHIqLGw0XbDS8koyGiya4F1kPukWlEpjWTU/rJr8b5rSy0Gq5lBaxENef4Bc6A4PCYDRIYE+LVrjYslj7JZ7yZGu0T3zg+tZf+SroTmnqSbD85CKFXp+CPi/KYoaSu0TblWrNZB35UNXBVfsm0aO03J9V+0qUfFsFjBIPWEtjpmtpDNbSkCQtjaFSS31znSQtZfSIrSO/W8OGOPmsLHXraS2Nc7WU0Uo2ztXSBKClcRJ7WksTxZZrtV/iAnUxDD6JVJ6Uv70X5CeAqjJvNwPRWLHlCwroDbBBL++AKaAIhYLwQRf5UQ5W1/N3wBgmxsVNPeBYuVQIsvD6ID/14GItxqulV0T1kSzMtvIxi/BE5DoG6EixZRs/AxFB7D2oXX6UUi7KTfjJn/oR4UtFVK9URBgEihZbduuQCoD2EYz2E4HkEJ/2LiO0D7DoRGClpX2A/Cki+dXRniP3E7TfZ57c7+fTPmqE9hHWpiEi9xHyp/7oV6Lcu9m0/yiSe4uSSFdih7lzqDdJqwuEbUHybRUwSBSZPfncHGW7R/meR8Egey29niMCKCoAJ7x8JWimQgNiGmpeAhgMPaB95iYRhDH20wuDCtHLLdwFgyOOF50Iju7XzhpDaFhH0hAODyMKfZ8WRRi1wRPofpVvB5JG7ADjLoIkZoP13EYQN2KDk3ptMKvpRrLY8jDfBicB2oexQHAC9KM69uJCVSa64nCiK8ZNdDE4HzOy95IkaUKtb1I6WM9YWoW5rE+grA+TasjUjf9H9/NAFBB1UrBVTCDJmxi9nCJwhre548SSSrvYVhbkpKuBxWhg3jdn/uyFL11Pd7opy0HZklY50c51hd996cxT9vAnotbvfjGVYGQAAkJlMLVgLoqRUAmKIfdP8YRKEE6o+CQlVIK0cPuQhIpgHucfeBmMm+3BmRoTAA1pUP3EQw4v9yq+uOoM7j+qls7XwOhsJZhtX6bo+yvgmgjwUR48EA4UW36nAP8tYsa8ihmAtnkC6m0eL/kTFDuqPNlPog4lrVG77yGB0V8cKrb8mZ+gCQHkDOLknAD+V37AFUa1TX+mPkzihV7MhaxJQrztu5Car6rlDDgo/PoepCK+pC2DhgTVjYZC5HeCg7xq5ALkTPqzBx7QkXtI2BUlpIyAR3THHFL1GmRR4wL3O1azvUqN1qvUkBiX5LTlGbXlJN6pQVZmfpgpHjVT3ORPvZz06BIzeCZkkAsxVOAgt3qQy8hM+gjhzOTM5MzkzGTnmUoZTHIGJRa4c1GXOgCvDJtYnFGhCpEodAEZVjLZy4tmqO8p4dUOD/GrAxOfEbqpglI6engD60dbPQdecH1p1Uu/WvGW99+x/rHnV9+39ZTZf5p308fdF/59/ubR3edgSEJ88mASAX0Z4t19oPvUL3s+8qfekMCQlOvz7s5MzkzOTM5MFpmJcp8u0H2SKRqW+yRvQAbcp5f2sAa+x4Ot0lRuxl9ltOJhZPHKDjS+5rID//fP3i/Wpn7z6gM//MiFK6+45CvvXPvqZwubvr70xEWjSQxJ6MvQRSv0ZR7dM/mMSJ9H10w+CXKuz1U7MzkzOTM5M8mfifKFPtAX+qT6Qh/PF/qMeAw36DH0U05V3ESfwyj7wuN6F/3r7FVn/eZjB91tP0pF/vOGo+8/f89j3+t8uXjRux7YeHIjhqSBJR7sCw0tk72Tll/W76oNKYczkzOTM5MzE8eteUC35pHq1jw8t+Yxlt+TuhByIW4tcsenHx+46uLvbTvhOPd1j53TUv++6AMn3HL0vsJb/u/554/3XCE5c+mV4LDdumTCLSFHaiipb0g5nJmcmZyZ3sQzUR7KC3oocunD8VBuwEO5aSdm4HsMeShDAQHmoVzxf6xaft/jC6+94f91f23Gx067bPNjZ05/dn/LlxfO931687c+YmRl4zKypDTkew2t1vQnIQ3JuaEEgzOTM5Mzkz1mMlYw4uM4Gx/gbHy0PzLwPYacjSHfjjmbxh+deO4X/vKjTxQ/+tRXPvTTremXG1u8p/zLS//6ifX/c9nHG875oJEkrguTCalu1Cd5Xe2TsII3pBzOTM5MzkyTPpOx3SEPx294AL/hoV2Lge8x5DcMuWnMbzS9cuvmzx7/bOPZ09Oxbbf/ffeyP3o/8MTyK5//4rc3bvv701+eYWQVgFbqS/WI+qXP2R1yZnJmehPP5OykGN1JOTp51cdCsadXHXPxrq/6vvu8+zNt18z+8Stz7lh89sxPLj5541JnJ6UKD+XkmJ2ZnJmEZ3J2HYzuOkxf+cJRA+954pL3bh1bvG/wgvRJlyw765al551+ZdPlN7e9u+Przq6D6ExO5teZyZmp9MjJ0BvN0Dc8+7XPnb7n3IevrN3wty8/+L6F3+re+c/UH7779YHH/u3um4rf+KmToa/CbzhZUmemN81MTjbbaDY7/5eZL33iBxe4vtm9+7EXYm2/9yZf/uRll06LHdO5bNlTQ8t+4WSzRWdycpfOTE7m902a+a359Re/c/mWV+avPvDQ13+65Zl/Zr69sunncz5403ev/tDH//sz8+53Mr9VWHMnz+fMZPJMTpbUaJZ0Zv6ersvPemak9rrr/rru5eOfdh133Myz0h8NfnLOstcWHf3y35wsqehMTvbNmcnJKE5qRnHmvsveW/zRz7e0LHrvA9FnDh2675Pveq6v9VO/vPdTtY+03di5zckoVmFjnUzVFJ3Jyb4Zzb7VdH36ggfWffbqmqYXv73xi9fc8B/53/9s8PSZGy686+Ceg1//j7iTfROdyckfvalmcjJVRjNVwVn/te9/TvxuXe2zT/e+tnz4kxv+b93jXe6DDxbO6++pOfs/T3cyVVVYPifXYqmZnKyO0ayO6/pTBvZ/y3P8fa6bf3D3KVdd98DDb8v2jf/2iadDy17dcOCEnzlZHdGZnAzIJMzkZECMZkB8rzU83J29q/Wlh752/Od3XPf8aV/d9I1D3/vBpxOv7n3uaydcnnQyIFXYIydboGMmJ1tgNFtQ1/RK859eOPGKf37jbbFnD/r6f3XScWf9fePM/ltPv/lj59UufcrJFojO5KysyRmclbUuNfR//ltt99QPeH67vfXCO+b+8/Ntm85esubi35307bG2kb67r9/grKyrsBLOKlRra6fAKjTzwjtfu3dWcOQnVz734V9dPu+nTd+5dPVXfrdg00di50W++pFcwlmFis7krNi0+mPbFVt9rn7hFYG6Jx5Z8OMNF3z93t+de893jjr6+aMe+vH437yJIdfpzoqtCt11VjfrrLK6CX5r9mMnXTv2vX0bW6PnfeOLn/xw7r/ytwy+1PSuVxYsfseXk087qxvRmZyVwDpzVwLTAm/7eOY7/7ao0HnR/PFnL969f/3fnssu+tvtX0gHH3ved27YWQnwNcqJmo1GzceffNNz3374oukvH/yXE/d97jdzL7m695q/ZEOh8T33Xvjw19+3eYpFzU6EaTTCPGn1op7nZn30WM+HOhve/cOzPFe+eNSfXuu99uUZSU/3UPfcufaNMI0ZFw/nOmUd0ZiocTEUjem7ABFT9jsXdm0YJf9AkO6S9r7+ns4t917Qufp1ipXEp0S/2i2fuKCzr31Ne8+dl86d82hrDfBvx8/++cPdNzT8estdS3raukdGK+NLP1ySJnrvyOdcvzp/3VWmT/Sed+y/fusjv1zCn+iuBV1tq0cBSf/0G/yamPKi7r10NHZYBImBJdBrttxzYf/67guuIaB6i9PvopU7QHzNybPhryn/o7+GAKX9EFXcC3yIv/Qhh6dn6N8Kxpf4i9P/dctdh/88Upx+iJpVJbmGUDq0oL23d8natk4xpO49rOkdHSPFyMMljSm9rwpx7laLk0eMAZ7yHLF5Wq1UuA8KTeCwXVB/kzLIBQ0K0oMCJE3uXtzX1dNO4BEkLQ/11EXODUzpoqdUaL8AGuT+bJlrbIEiMKC55y5Of1Dh3kM01iq7Wxa9Iq1OXjFu+kEe1mifBBF7HCLlS/MsDAt8eSqF2srcxPeUiDL9KbVIE+/U4Bp4BDTBy9UEPyphFPv9ekXayxIdBa4iOJDl12OdfGrrVAK+UvUhlHz7itO/p0z/HDavG5wXJZkWomopiDg4lxFbRU8XIH+CIY4fjIsCoJh6qxRTLyymPiMG24eIaYCkFfXUrWKJHlkQlMEFXBn8hTLvH6TLYNvkymCbI4OHiSBDBv9gSAY9TBlsw2XQU5z+l/K8M/zUvB4dMuil6eGpBIbIl3gxAXUJxEI+eDoX+VPvytqrx117zJNBF1cGGTR3VYhASZkXddduRizHkAXVJdCIoICc8yCC4kKjCI+WQp7KcqvakNPLDgJrtUFgLTmDdilMICY0ea0RBrsEvAFB4ENnd7Stuvbsro1b7ru4q7d93equztkXt/es7++beLOrc5SUFw+plB5UZJSEh36klATjcjAcRdcuKqPJWnnOyBFrF32L2hJG60nQ0BcJpxp8xRmFMkYtPwKjc4Yw+8TkKSguzD5YmL2ShBmLUlz0ig+zVQqZlwqsZPyIlXEATjGAkCdZqbi+k3VG+TSM5WzdP1UBPRfJHHvFDame8Aw3pR6uKT1D2JQeouKy9WzQ7ybyg/qDbb4f9KMZOnTp4zdtzRE0a81hMFHpQROVfgHaEgkdSrkowh5ixqQV1atyk8Hrye9v/dzKBfxNBhWf/RWGMx1oQOtA3RUpAAYs7r+aHBCosKv8scvLgqhwX8FG/cBXAVLmmRZvn/ZJAJKp8kjtF4GJbx1fxBwQZAZYfmJ42SaUBxRnLClx5/8DMIfOYG7UBQA=",
5710
+ "bytecode": "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",
5703
5711
  "custom_attributes": [
5704
5712
  "abi_utility"
5705
5713
  ],
5706
- "debug_symbols": "vf3djuTMkWYL34uO+yDc7cfd+1YGg4amRzMQIKgHmu4P+NDoe9/hRtKXVdYOT2ZGvvtEtSRV2WI4aQ//nOR//ul//uV//Mf//pe//v1//dv//dM//7f//NP/+Mdf//a3v/7vf/nbv/3rn//9r//29+f/+p9/esz/KA/90z/LPz3/tD/9s80//fyznX/2889x/Fke55/l/LOef8r5p55/nvXKWa+c9cpZr5z16lmvnvXqWa+e9epZr5716lmvnvXqWa+e9eSsJ2c9OevJWU/OenLWk7OenPXkrCdnPT3r6VlPz3p61tOznp719KynZz096+lZz856dtazs56d9eysZ2c9O+vZWc/OenbW87Oen/X8rOdnPT/r+VnPz3p+1vOznp/12lmvnfXaWa+d9dpZr5312lmvnfXaWa+d9fpZr5/1+lmvn/X6Wa+f9fpZr5/1+lmvn/XGWW+c9cZZb5z1xllvnPXGs16bf7bzz37+OeLP+njWK2VCuaBe8CxZZMKzZvEJz39c5r+aW399THj+5VonPP9ytQl6gV3gF7QL+gXPpZDpmm1wQLmgXvCsLFMxW+EAu2D+87mEcyuXWXBu5jKXcG7n0ifYBX5Bu+C5GDoVcyPWWXButTrrzM1V50+O7XP+0thAA/QCu8AvaBfMtRb/fJwQ22lAuWBWnosam2rArDwXLDbWAL+gXdAvGCfEFhvwrOzTPrfZA+QCvcAu8AvaBf2CccLcdg+4Kvercr8q96tyvyr3q3K/Kvercr8qj6vyuCqPq/K4Ko+r8rgqj6vyuCqPq/I4K8vjcUG5oF4gF+gFdoFf0C7oF1yVy1W5XJXLVblclctVuVyVy1W5XJXLVblcletVuV6V61W5XpXrVbleletVuV6V61W5XpXlqixXZbkqy1VZrspyVZarslyV5aosV2W9KutVWa/KelXWq7JelefewXVCu6BfMCs/N2OZe4gDygX1ArlAL3hWbvOfzx48oF3QL5hR92xqmT14QLlg/nOfMP/yLDjbqs9FnW3V64TnX+7zL8+2OkAu0AvsAr/guRijTOgXjBNmWx3wrDymYrbVAXLBs/KQCXaBX9AumJXnws8mGm3CDOrHXPrZM+UxK82meR7lTJrp/ZgLN7slSCP+DyqL5g7g0SbJIl1ki3xRWxSOMWlcVGIXo5PKorpIFukiWzQdc0+js39O6ovGRbOFnsdQk8qiumg65m5KZxs9j60m2aJwzF9ew+GTwtEnjYvksagsqotkUTjmLxdb5Ivaor5oXKSPRWVRXSSLlkOXQ5dDl2O2V5m7UZ39ddBssJOmY+5AdbbY89hwkizSRbbIF7VFfdG4yKPeHFOXRbrIFvmitqgvGhe1x6KyaDnacrTlaMvRlqMtR1uOthx9Ofpy9OXoy9GXoy9HX46+HH05+nKM5RjLMZZjLMdYjrEcYznGcozlGJfDHo9FZVFdJIt0kS3yRW1RX7QcZTnKcpTlKMtRlqMsR1mOshxlOcpy1OWoy1GXoy5HXY66HHU56nLU5ajLIcshyyHLIcshyyHLIcshyyHLIcuhy6HLocuhy6HLocuhy6HLocuhy2HLYcthy2HLYcthy2HLYcthy2HL4cvhy7H63Faf2+pzW31uq89t9bmtPrfV57b63Faf2+pzW31uq89t9bmtPrfV57b63Faf2+pzW31uq89t9bmtPrfV57b63Faf2+pzW31uq89t9bmtPrfV57b63Faf2+pzW31uq89t9bmvPvfV57763Fef++pzX33uq8999bmvPvfV57763Fef++pzX33uq8999bmvPvfV57763Fef++pzX33uq8999bkffd4m2SJf1Bb1ReOio8+DyqK6SBYthyyHLIcshyyHLIcuhy6HLocuhy6HLocuhy6HLocuhy2HLYcthy2HLYcthy2HLYcthy2HL4cvhy+HL4cvhy+HL4cvhy+HL0dbjrYcbTnacrTlaMvRlqMtR1uOthx9Ofpy9OXoy9GXoy9HX46+HH05+nKM5RjLMZZjLMdYjrEcYznGcozlGJejPR6LyqK6SBbpIlvki9qivmg5ynKU5SjLUZajLEdZjrIcZTnKcpTlqMtRl6MuR12O1edt9Xlbfd5Wn7fV5231eVt93laft9XnbfV5W33eVp+31edt9Xlbfd5Wn7fV5231eVt93laft9XnbfV5W33eVp+31ect+nxekWrR5weVRdOhMkkW6SJb5IvaounQPmlcFH1+UFlUF8kiXWSLfFFbtBy+HG05os/nxbEWfX7QdNj8bdHnB9lF0b9WJ8Xfm78jevUgW+SL5rKYTuqLxkXRqwfFsvikukgW6aJwzKWPXj2oLeqLxkk9evWgcIxJdZEs0kXXmPaHL2qL+qJrTHt5LCqL6iJZpIuWoyxHWY7o1Xl5pkevBkWvHlQWXeutR68epItskS9qi/q5Vnv0alD06kF6rukenTfXZY/OO2hcFJ13UDnXZY/OO0gW6SI712WPzjuoLeqL1hq0tQaj8w5aa9DWGrS1BqPzDpoOn78jOu+gvihGdy5VdJ7bpLJoOrxNkkVx4X3+3ui8g3xROKY3Ou+gcVF0XptjH513UF0ki3SRLfJFbVFc+59rK/awQdGhB5VF4ZjLF107r8D16NqDbJEvit8xxzm69qBxUXRtm6MRXXtQXSSLdJEt8kVtUV80ThqPx6KyqC6SRbrIFvmitqgvWo6yHNG1bUyajnm1cUTXHqSLZr3+HNMR3dhlUllUF8mi+Lc6aS7fvBA5ohsPahfFvrH7pPhF8b/ZIl/UFvVF46Loxj5/UXTjQXWRLNJFtsgXtUV90bjIliO6sfdJUW+OX3TeQb6oLeqLxkXReQeVRXWRLJqOeZF2ROcd5Ivaor5oXBSdd1BZVBfJouVoy9GWoy1HW462HH05+nL05ejL0ZejL0dfjr4cfTn6cozlGMsxlmMsx1iOsRxjOcZyjOUYl+N5sfoBFrCCAipooIMN7CC2gq1gK9gKtoKtYCvYCraCrWCr2Cq2iq1iq9gqtoqtYqvYKjbBJtgEm2ATbIJNsAk2wSbYFJtiU2yKTbEpNsWm2BSbYjNshs2wGTbDZtgMm2EzbIbNsTk2x+bYHJtjc2yOzbE5toatYWvYGraGrWFr2Bq2hq1h69g6to6tY+vYOraOrWPr2Dq2ge3IEAusoIBz4sC8UfXEOXXg4YEONrCD48Iys+TCAlZQQAUNdLCBHcRWsMXkh3n/q8R8nzqnT5SY8nNhB8fCmQ8XFnAub4liMx8uVNDAsPXABnYwbGPizIc6b5aVmBx0YUzgCPHMhwsVNHDa5m20EtOD6rx7VmKG0IUFrGDUtcCoG2OmUTd+hTrYwA6GLX6QPcACVnDaJH7bbP8qsbyz/avE4sz2rxKLM9u/6vF3x8LZ/hcWsIICKjhtGgM12//CvjYNHwvbAyxgBdmimoIGOthAbA1bjx8UP74XsIICKmiggw3s4Fg4sA1sA9vANrAdPR8r6+j5AxsYNg0cF8b8pQvD5oEVFFBBAx1sYAfHwuj5E7EVbAVbwVawFWwFW8FWsFVsFVvFVrFVbBVbxVaxVWwVm2ATbIJNsAk2wSbYBJtgE2yKTbFFamgLFDD2QwfG0X0P7OBYeJwwHFjACgqooIEOYjNshs2xOTbH5tgcm2NzbI7NsTm2hq1ha9gatoatYWvYGraGrWHr2Dq2jq1j69g6to6tY+vYOraBbWAb2Aa2gW1gG9gGtoFtLFvMEruwgBUUUEEDHWxgB7EVbAVbwVawFWwFW8FWsBVsBVvFVrFVbBVbxVaxVWwVW8VWsQk2wSbYBJtgE2yCTbAJNsGm2BSbYlNsik2xKTayRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMgSIUuELBGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMkSJUuULFGyRMmSmHP3PDiZGOctJxawggIqaKCDDewgNsfm2BybY3Nsjs2xOTbHFmcz895Oicl5FxawgvFwQA1U0EAHG9jBsM0zqpimd2EBwyaBAipooIMN7OBYGCcrZoEKGuhgAzsYxebhbczMu7CAFRRQQQN9YZyLzOcGSsyoq/MeXYkpdRd2cCyMk4oTCziXwUuggAoaGDYJDJsGdjBs88fH/LoLC1hBARU0MGzxi+Ok4sQOjoVxJjHvtZWYLneOTnTW8TOjs040kOEzhs8Yvuis48dHZ51YQIYvOusYneisY0iis0709duis07sIMPXGL7G8DWGLzrr+PHRWScayPBFOx2j06+pveWc23agg7FkPbCDY2Gc5Z9YwAoKqKCBDmIb2MayxVS3CwtYQQEVNNDBBnYQW8FWsBVsBVvBVrAVbAVbwVawVWwVW8VWsVVsFVvFVrFVbBWbYBNsgk2wCTbBJtgEm2ATbIpNsSk2xabYFJtiU2yKTbEZNsNm2AybYTNshs2wGTbD5tgcm2NzbI7NsTk2x+bYHFvD1rA1bA1bw9awNWwNW8PWsHVsHVvH1rF1bB1bx0aWOFniZImTJU6WOFniZImTJU6WOFniZImTJU6WNLKkkSWNLGlkSSNLGlnSyJJGljSypJEljSxpZEkjSxpZ0siSRpY0sqSRJY0saWRJTLGrcxpGiTl2F1ZwFpt370tMpLuwg2NhRMWJBZzFehSLqDhRQQOnbT5EVWJK3YUdnLY5daHErLo65y6UmFZ3Ydg8MGwtMGwj0EAHG9jBsTCiYjwCC1hBARU00MEGdnAsdGyOzbE5toiKEaMTUXGig2GL1R1RceJYGFFxYgErKKCCBjqIrWFr2GZUyCMWfUbFhRUUUEEDHWwTY9uZUXHhmBi28QALWEEBFTTQwQZ2cNliNt+FBayggAoa6GADwzYCx8IZFc9rhYEFrKCAs27cL4yJfBd2cCw8nq2WwAJWUEAFDQxbLHptYAfHQnmABayggAoaiE2wCbaZGhK3L2NG4IXTFjcqY07ghQLOCnH7Mqb2SdydjLl9Fwqo4FyyqoEONrCDsWQzrmKO34UFrGDYYs27ggY62MAOTlvc6ozZfhcWsILTFvdCY8bfhQY62MAOjoXR8ycWsILYOraOLXo+TjVi+t+FHRwLo+fjhm1MAbywggIqaGDYYtSj50/sF8ZkP5lTsEvM7JP5eoASU/subGAHYyHnuojpfRcWsIJzIeOecEzxu9BAB9fqHqWDY2FdqztmBF5YQQHDJoEGOjht860HT+zgWBgtHTfoYubghRUUUEEDHWxgB8dCxabYFJtG3VhZ0cdxjWlEH58ooIIGOjgXJy4hxXzBC8fC6OMTwxZjFn08ZxiXmDR4YdhizKKPT3SwgR0cC6OPTwxb/OLo4xMFVDAUs7NiFqDEhY+Y1CdxBSNm9Z0Y7XRiASso4FTEdY2Y23ehgw0MW4xO7ELn1Y4a8/suDJsFVlBABQ10sIFhi5eSRBceGF14YgFDUQPj77Z4zckDLGAF45+NQAUNdLCBHZy2Fj8+eujEaWvxK6JbWvzd6JYTZ915BF0fx7tKDuzgWBjdcmIBKyigggZiU2yKTcMWL4KxBxi2+EHReicKGBXiZ0bj9FgX0TgnCqhgLFmsgGicExvYwViyGLNonBMLWEFZ49sY9caoRw+d2MAOTts8SK8xi+7CAlZw/rMRwxc9NGJIoodOdLCBHRwXxrw2mZPkasxru7CCAoatBYatBzoYthHYwbEweujEAlZQwKdN56F7jRdeXehgA0Mx13HMYNNHvDaoOtjADo6Fs4cuLGAFBVQQm2ATbPH6n0cMtRroYPzdGD7t4FhoD7CAFZxLVqLY3CVdaKCD01Zibc4eunAsnLskjRcyxQQ1PV7JNDvrwrDFGpqdpcermmZn6fGyptlZFzawg2Ph7KwLp20eFdeYq3ahgAoa6GADOzgW9geIrWPr2HrYYki6gQ6GLQaqd3AsHA8wbDF8s2M13j0Vs9IudLCBHRwXxqw0jfdQxay0CysoYNh6oIEOhm0ETtucblhjVtqJs2M1XmQVs9IurKCA0xbvuor5ZzoPAWvMP7twLKwPMOpaYNT1wKgbv6IqaKCDYYsfFN194lgY3X3itMWLtGLSmVosb7S0xeJES1ssTrS0H3+3gR0cC+fO8sICVnDaPAYqQuHA6G4PcXT3iRWMfxY/M7r7RAMdbGAHx8Lo7hMLWEFsjs2xRXfHEUjMKbuwg9PW4rdFd59YwFmsxW+LNo2jlZgcpi0U0aYnFnAuZItVGG16ooIGOtjADoYtljfa9MQCVnDa+vFKOAUNnLY4cInJYRd2cFwYk8MuLGAFw6aBChroYNgegR0cC6N54zApJoddWMGo2wKjwgicFeIAIyZ8XVjAWWFeMawx4etCBQ10sIEdDFv8+GjTEwtYwbUuYsLXhQaudRETvi7sIOtCWRfKulDWhbIulHWhrAtlXcRuPA6TYsLXhWNhNHocosSErwtjzGIFREuf6GCbr/2LtRkv/jtxLIyX/z1itcTr/06soIAKGuhg2GIk42WAJ46F8ULAE+NX9MCoEGMW76o8sYNRIX5xvLTyxALG8sYvjrdXnqiggQ42sINhiyWLV1qeWMAKhi1W4exYK/HbZsceGFOwLixgBQWcyzuvI9aYgnWhgw0M2wgcC+MVsCdOWxxdxRQsmxcaa0zBunDa4mglpmDZvExYYwqWxWFHTMG6sINjYbwg9sQChq0FCqiggQ42sINjYbw+9sQCYhNsgi3eJltjSOKFsic2cNokfny8WfbAeLnsiQWsoIAKTtu8sldjCtaF0yYxOvHS2RPHwnj17IlRNxY9Xud5ooEORt34FdHdJ46F0d0nFrCC06ax6NHdJxroYAM7OBZGd59YwApia9gatkiCOICLyVYXhi1+cSTBgZEEJ0aF6IvoY43fFn18YPTxiQWcSxbHcjGX6kIFDZxLFgd7MZfqwg6OC2MulcUhYMylurCCAipoYNg8sIEdHAuj5+Mtq/HCswsrKKCCBjrYwA6OhRVbxVaxRc/HIWvM0brQQAenLQ5kY47WhWNh9PyJBaxg2GLUo+dPNDCKzZSLF5tZXO+LN5tdqKCBsZCxLqJ5T+zgWBjNG4e38YazCysoIKvbWN3R0ieyuo3VbazuaOkTwzYCKyjgtMVhc8znsjhsjvlcFtf7Yj7XidG8LepG854467YYyWjeExU00MEGdjBssZVE855YwAoKqKCBDjawg9gGtoFtYBvYBraBbWAb2Aa2sWwxI+zCAlZQQAUNdLCBHcRWsBVsBVvBVrAVbAVbwVawFWwVW8VWsVVsFVvFVrFVbBVbxSbYBJtgE2yCTbAJNsEm2ASbYlNsik2xKTbFptgUm2JTbIbNsBk2w2bYDJthM2yGzbBFasQ5TswIu7CCYWuBCho4bXGy4scbvw/s4LTFhXI/3vt9YAErKKCCBjrYwA5i69g6tkiNODeNWV7WYxwiH04cCyMfTpwV4kJ5zPKyOGONWV4XKmjgXN44IY1ZXhd2cFwYs7wuLGAFBVTQQAcbuGwxtcvinDemdllcrI+pXRcKqKCBDobCAjs4FkYonFjACgoYW2oJ7OBYePT8gQWsoICx6C3QQAcb2MGxMHr+xAJWUEBsik2xKTbFptgMm2EzbIbNsBk2w2bYDJthc2yOzbE5Nsfm2BybY3Nsjq1ha9gatoatYWvYGraGrWFr2Dq2jq1j69g6to6tY+vYOraObWAb2Aa2gW1gG9gGtoFtYBvL1h8PsIAVFFBBAx1sYAexFWwFW8FWsBVsBVvBVrAVbAVbxXZ8UaAEVlDANnHmWT++CGCBChroYAM7OCbOPUM/vg9wYAErGLYeGLYRaOC0zdluNd7YdmEHx8L4ZsCJBazgtMVXTWJq14UGOhg/KIbP4+/G6LRQxM+MD22cWEEBFTQwFPHj46MbJ3ZwLIxPb8RFqJhh5XG5KWZYXThtceUpZlhdaKCDDezgWBif44gLVjHD6sIKChg/aI7O8XKzeI9IPV5vdnFJXBNLYk1siT1xS9wTJ29N3pq8NXlr8tbkrclbk7cmb03emrzHa/zjCtHxcrSL4+/EfbnjBWkXl8Q1sSTWxMeyebAnDu+cj1SPF6ZdfCxbLIM9EpfEh7cHS2JNbIk9cUvcEw/YD+8ILolrYkmsiS2xJ26Je+IBt+RtyduStyVvS96WvC15W/K25G3J25M3np2KJ/Pq8Vq1i3viAcczyheXxDWxJNbEljh5R/KO5B3LK8f71i4uiWtiSayJLbHDR//O7VCO96Nd3BL3xAM++vfkY3lqcE0siTXx4dXgw2vBLXFnOWsaB0njIGkcJI2DpHGQNA7HZz3mHDs53pl2cUvcYU3jo2l8NI2PpvHRND6WxsfS+FgaH0vjY2l8LI2PpfGxND6WxsfS+HgaH0/j42l8PI2Pp/HxND6exsfT+Hgan5bGp6XxaWl8Whqflsanp/HpaXx6Gp+exqen8elpfHoan57Gp6fx6Wl8RhqfkcZnpPEZaXxGGp+Rxmek8RlpfAbjUx6MT3l44pa4J2Z8SnkkZnxKqYklsSZmfEphfEppiRmfUhifUh+JS+KaWBJrYsanVE/cEqfxkTQ+ksZH0vhIGh9J46NpfDSNj6bx0TQ+msZH0/hoGh9N46NpfDSNj6XxsTQ+lsbH0vhYGh9L42NpfCyNj6Xx8TQ+nsbH0/h4Gh9P49PS+LQ0Pi2NT0vj09L4tDQ+LY1PS+PT0vi0ND49jU9P49PT+PQ0Pj2NT0/j09P49DQ+PY3PSOMz0viMND4jjc9gfOrjkZjxqY+aWBJrYsanPhif+miJGZ/6YHxqeSQuiWtiSayJGZ9aPHFLzPjUo5clfuPRyyfXxJI4XBK/8fzM1sGeuCU+jp9jHI599MHHPvrkkvg4jo1lO/bRJyscp2DHX49TsBMdbOA8KZIY7jgFkxilOAU7sYDzpEhCEadgJypooIMN7OBYGKdgJxYQ28A2sMWXEOc0QTm+czhvOMvxpcMTFTRwLtk80ZDji4cndnAsjO8enljAaZtTCuX4+uGJChroYAM7OBbGVw3nbFM5vms4507I8WXDE8fC+LrhiQWsoIAKGuggtriiMWeQyvG9wwPjisaJBayggAoa6GADsSk2w2bYDJthM2yGzbAZNsNm2BybY3Nsjs2xOTbH5tgcm2Nr2Bq2hq1ha9gatoatYWvYGraOrWPr2Dq2jq1j69g6to6tYxvYBraBbWAb2Aa2gW1gG9jGssXEpwsLWEEBFTTQwQZ2EFvBVrAVbAVbwVawFWwFW8FWsFVsFVvFVrFVbBVbxVaxVWwVm2ATbIJNsAk2wSbYBBtZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSVGlhhZYmSJkSV2ZMkI7OBYeGSJBhawgnE0WAIVNNDBBnZwLIwsObGAFcRm2AybYTNshs2wOTbH5tgcm2NzbI7NsTk2x9awNWwNW8PWsDVsDVvD1rA1bB1bx9axdWwdW8fWsXVsHVvHNrANbAPbwDawDWwD28A2sI1li9lZFxawggIqaKCDDewgtoKtYCvYCraCrWAr2Aq2gq1gq9gqtoqtYqvYKraKrWKLLJmvqJeYnXViZMmJBayggAoa6GADsQk2xabYFJtiU2yKTbEptmgcPTBOBi2wgR0cC6NFTixgBQVU0EBsHVvHNliy2OxPNDAqtMAGdjCWd56Cx6SjCwtYQQEVNNDBsI3ADo6Fx4n5gdMWF6Fi/pHH9aWYf3ShggZOW1x/ivlHF05bXCmK+UcnxkZrYYuN9sQOjoWx0Z5YwAoKqKCB2ASbYItt0uNXxDY5Zx9LzB5yj18R2+SJs5jHoMY2eWIHx8LYv51YwAoKGLZYnNi/ze+kScwe8hbrIvZvLZYs9mQtFif2ZCdWUEAFDXRwLu98Jk9iRtCFBayggAoaOMdhTj+UmNrjLX5bdFaL3xaddaKBc3F6/OLorBM7OBbGzufEAlZQQAUNxDawDWxj2WJqz4UFrKCAChroYAM7iK1gK9gKtoKtYCvYCraCrWAr2Cq2iq1iq9gqtoqtYqvYKraKTbAJNsEm2ASbYBNsgk2wCTbFptgUm2JTbIpNsSk2xabYDJthM2yGzbAZNsNm2AybYXNsjs2xOTbH5tgcm2NzbI6tYWvYGraGrWFr2Bq2hq1ha9g6to6tY+vYOraOjSzpZEknSzpZ0smSTpZ0sqSTJZ0s6WRJJ0s6WdLJkk6WDLJkkCWDLBlkySBLBlkyyJJBlgyyZJAlgywZZMkgSwZZMsiSQZYMsmSQJYMsGWTJIEsGWTLIkkGWDLJkkCWDLBlkySBLBlkyyJJBlgyyZJAlgywZZMkgS8YRFSWwgBUUUEEDHWxgB8dCw2bYDJthM2yGzbAZNsNm2BybY3Nsjs2xOTbH5tgcm2Nr2Bq2hq1ha9gatoatYWvYGraOrWPr2Dq2jq1j69g6to6tYxvYBraBbWAb2Aa2gW1gG9jGZdPH4wEWsIICKmiggw3sILaCrWAr2Aq2gq1gK9gKtoKtYKvYKraKrWKr2Cq2iq1iq9gqNsEm2ASbYBNsgk2wCTbBJtgUm2JTbIpNsSk2xabYFJtiM2yGzbAZNsNm2AybYTNshs2xOTbH5tgc29HoPTDEGhjiEdjADo6FR6MfWMD5z+bDMxrzqi4cC6NjTyxgBQVU0EAHsQ1sY9nitVk+58lrvDarPY7/1UAHG9jBsXA25IUFrKBMlEAFw6aBYfPAsMWSlQ6OhTVsI7CAFRRQQQOnrcQyzIa8cNpKLMNsyBNnQ15YwAoKqKCBDjYQm2BTbBp14xfPJmtz7rXG/KoLOzgWzia7sIAVFFBBA7EZNsNm2Dz+bgmM/zXGtz3AAlZQQAUNdLCBHcTWsXVsHdvcsTaJhZw71gsNdLCBHRwLZ5s2ia16tumF0zbnomh84vFCBQ10sIEdHBfGFKsLC1hBARU0cNrmvBWNuVUXdnAsjD4+sYAVnLY5WUVjUtWF0zbfr6AxperCBnZwLIw+PrGAFQxbC1TQQAcb2MGxMPr4xLDF6EQfnyigggY62MAOjoXRxydiU2yKLVp6XsvUamtTrlbACgqooIEONrCDq3HibVsXYnNsjs1X48Tbti50sIEdXI0Tb9u6cDVOfMHxQjblxqbc2JSbgw3sII3TaZxO43Qap2Pr2Dq2jq3TOJ3G6TTOoHEGjTNonAiFE2mcCIUTaZxB4wwaZ6zGiZd0XVjACgq4GifmwF3oYAM7uBpHygMs4NqUpQiooIEONrCDq3GkPsACYqvYKra6eihmxrV5P0BjZtyFFZwV5k0AjZlxFxroYAM7OBZGo59YwApiU2yKLXbu89V+GjPjLuzgWBj5cGIBKyigggZiM2yGLZLAYtuJnj/GLHr+RAcZHWd0nNFpjE5jdBqj0xidxug0RqexLhq2hq1h64xOZ3Q6o9MZnc7odEanMzqd0emMTmddDGwD28AW3X2MZPTxnNSsMYPtwJjBdmEBKyigggY6GMvrgR0cC6OPTyxgBQVU0MCwtcAGdjBsswtjBtuFBayggAoa6GADO4hNsAm26O75IiCNWWlt3ifTmJV24VgYfXxiASsooIIGOohNsSm26FiP9Ra96TF80ZsnNrCDY2Hsu08sYAUFnP9s3pXTmBzWWixDtN68p6YxOezCuTgtVne03olzcVoUi9ab98k0JoedGK13YgErOG091kW0Xpxsx+SwC6etx5JF6504bXEKHpPD2nwtpMZsrBbn6DEb68TYqufbMjTmUl0ooIIGOtjADo6FsVWfiK1iq9hio50vuNCYKnXhWBgb7YkFrKCAChroIDbBJthiUx4xfLHRxrl/TH9qI4YvNtoTOzgWxr5lvvtaYxZSj1P7mIV0oYIGOtjADo6Fc39xYQGxNWwNW4ti8dvaWNgfYAErKKCCBvrCEcViHEYBKyigggY62MAOjgtjDtGFBazgLDYf2deYInRhB8fCGfx9PsivMRmozzdta0wGutBABxvYwbGwPsACVhBbxVax1Sg2xzfm+vS42hFzfS6soIAKGuhgAzs4Fio2xabYYvstMdSxpc4XD2i8a6jH1Y5419CFAipooIMN7OBYGBvtidg6tr5sMUumz8c2NGbJXDgWxpo/sYAVFDAWsgY2sINRd66seB/PhQWsoIAKGuhgAzuITbAJNsEm2ASbYBNsgk2wCTbFptgUm2JTbIpNsSk2xabYDJthM2yGzbAZNsNm2AybYXNsjs2xOTbH5tgcm2NzbI6tYWvYGraGrWFr2Bq2hq1ha9g6to6tY+vYOraOrWPr2Dq2jm1gG9gGtoFtYBvYBraBbWAbyxazei4sYAUFVNBABxvYQWwFW8FWsBVsBVvBVrAVbAUbWdLJkk6WdLKkkyWdLOlkSSdLOlnSyZJOlnSypJMlnSzpZEknSzpZ0smSTpZ0sqSTJZ0s6WRJJ0s6WdLJkk6WdLKkkyWdLOlkSSdLOlnSyZJOlnSypJMlnSzpZEknSzpZ0smSTpb0I0tGoIAKTkVcBYypPBd2cCrmzFmNqTwXFnAq5gOpGpN2elyii0k7XUIRUXHirBsX2GLSzonRsXGxKGa+9PkCXo2ZLwfGzJcL59+Nqx0x86XHlYaY+XLh/G1xwh8zXy70hdEMcQId01Iu7OBYGM1wYgErKKCCBmKr2Cq22Krj/Djml1zo4PxnHr84tuoTx8LYqk8sYAUFVNBAB7EpNsVm2AybYTNshs2wGTbDZthiq/ZYm7FVn1jACgqooIEONrCD2Bq2hq1ha9gatoatYWvYGraGrWPr2Dq2jq1j69hiDxlXMGICyoUdHAtjDxmXOGICSvfY+mIPeaKAeqI9Htdxqj0eFRQw/m4PNNDBBnZwLIz924kFrKCA2Aq2gq1gK9gKtoqtYqvYKraKrWKr2Cq2iq1iE2yCTbAJNsEm2ASbYBNsgk2xKTbFptgUm2JTbIpNsSk2w2bYDJthM2yGzbAZNsNm2BybY3Nsjs2xOTbH5tgcm2Nr2Bq2hq1ha9gatoatYWvYGraOrWPr2Dq2jq1j69g6to6tYxvYBraBbWAb2Aa2gW1gG9jGssUH4y4sYAUFVNBABxvYQWxkSSFLCllSyJJClhSypJAlhSwpZEkhSwpZUsiSQpYUsqSQJYUsKWRJIUsKWVLIkkKWFLKkkCWFLClkSSFLCllSyJJClhSypJAlhSwpZEnMh+nzPe8WLyK60MCpmFexLabGXDgWRoDMBz8spsb0eUHbYmrMhQIqOBXz0rXF1JjewxYB0o+6HZy2+X5oiy/V9R6LHgFy4rSNKBYBMqJYBMiJs9h8s7LFjJpzGSIfTmTRIwlGiKPnR/y26PkRyxA9f2D0/IkFrKCACtrC6NgR4ujYExWMvxs/Mzr2xAZ2cFwYc1wuLGAFBVTQQAcb2EFsBVvBVrAVbAVbwVawFWwFW8FWsVVsFVvFVrFVbBVbxVaxVWyCTbAJNsEm2ASbYBNsgk2wKTbFptgUm2JTbIpNsSk2xWbYDJthM2yGzbAZNsNm2AybY3Nsjs2xOTbH5tgcm2NzbA1bw9awNWwNW8PWsDVsDVvD1rF1bB1bx9axdWwdW8fWsXVsA9vANrANbAMbWVLJkkqWVLKkkiVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVClghZImSJkCVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomSJkiVKlihZomRJTPsZ8/MGFi+YutDANlECOzgWtnV2oK2CAkZdCzTQwQZ2cCycqXFhASsoILaOrWPr2Dq2jm1gG9gGtoFtYBvYBraBbWAbyxavkrqwgBUUUEEDHWxgB7EVbAVbwVawFWwFW8FWsBVsBVvFVrFVbBVbxVaxVWwVW8VWsQk2wSbYBJtgE2yCTbAJNsGm2BSbYlNsik2xKTbFptgUm2EzbIbNsBk2w2bYDJthM2yOzbE5Nsfm2BybY3Nsjs2xNWwNW8PWsJElRpYYWWJkiZElRpYYWWJkiZElRpYYWWJkiZElRpYYWWJkiZElRpYYWWJkiZElRpYYWWJkiZElRpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkiZMlTpY0sqSRJY0saWRJI0saWdLIkkaWNLKkkSWNLGlkSSNLGlnSyJJGljSypJEljSxpZEkjSxpZ0siSRpY0sqSRJY0saWRJI0saWdLIkkaWNLKkkSWNLGlkSSNL2pElI7CDY+FxCqOBFRRQQQMdbGAHx8LjFOZAbIbNsBk2w2bYDJthM2yOzbE5Nsfm2BybY3Nsjs2xNWwNW8PWsHE75ZiEeCK2hq1ha9g6to6tY+vYOraOrWPr2Dq2jm1gG9gGtoFtYBvYBraBbWAby3ZMQjyxgBUUUEEDHWxgB7EVbAVbwVawFWwFW8FWsBVsBVvFVrFVbBVbXXcGj0mIJzo4W3q+UsBiEuKFY2FERYm/G1FxooIGOtjADo6FcdhxYgGxKTbFptgUm2JTbIrNsBk2w2bYDJthM2xx/DAn2VvMG7xQwfnP5rR3iymEF86FjHlBPY4fThwL4/hhTk20mEJ4YQUFVNBABxvYwbGwY+vYOraOrWPr2OL4YX7tzuJtYBd2cCyM44cTC1hBARU0ENvANrCNZYs5kRcWsIICKmiggw3sILaCLY4f5kf8LN4GdqGACoZtBE6bPAIb2MGxMA4E5vRTi/mTFzYw/pkEjoVxIHBiASsooIIGOthAbIJNsSk2xabYFJtiU2yKTbEpNsNm2AybYTNshs2wGTbDZtgcm2NzbI7NsTk2x+bYHJtja9gatoatYWvYGraGrWFr2Bq2jq1j69g6to6tY+vYOraOrWMb2Aa2gW1gG9gGtoFtYBvYxmXzeO/XhQWsoIAKGuhgAzuIrWAr2Aq2gq1gK9gKtoKtYCvYKraKrWKr2Cq2iq1iq9gqtopNsAk2wSbYBJtgE2yCTbAJNsWm2BSbYlNsik2xKTbFptgMm2EzbIbNsBk2w2bYDJthc2yOzbE5Nsfm2BybY3Nsjq1ha9gatoatYTuypAU62MBQjIlHgBxYwFD0QAEVnIr5wIPHbM0x3/ntMVvzwg6OhREgJxawggIqaCC2gW1gG8sWszUvLGAFBVTQQAcb2EFsBVvBVrAVbAVbBMh87YnHbM0LG9jBsM0VELM1x3zMxGO25oUVnHXnYyYeMzDHfKDEYwbmiREKJxZwVpjPlnjMwBzzFRMeMzDHfMTDYwbmhQ42sINjYYTCiQWsoIDYIhQsfnyEwokN7OBYGKFwYgErKKCC2AybYYtQsFhvEQoHRiicWMAKCqiggQ42EJtji1Cw2AgiFE6soIAKGuhgAzs4FnZskQQWG1f0/Hy+xeOdZsNj24meP3EsjJ4/cS6vx8YVPX+igAoa6GADOzgujPmeY76d3mO+55gPiXjM97wwbCNQQQOnbb5x3mO+54UdnLY5K9hjvueFBayggAoa6GADO4itYqvYKraKrWKr2Cq2iq1ii3xoMXyRD/MNHR7zPS+soIAKGuhgAzs4Fio2xabYFJtiU2yKTbEpNsVm2AybYTNshs2wGTbDZtgMm2NzbI7NsTk2x+bYHJtjc2yRD/Nikcd8zwtDERt4hMKJUzFfkeIxyfPCBnZwLIxQOHEqemw7cdBwooAKGuhgAzs4FkaAnIgtoqJHz0dUnOhgA6NutH9ERWBM57ywgBUUMGwaaKCDYfPADo6FERUnFrCCAip4zdj3c7Zm4HFJ8cACVlBABQ10sIHYKjbBJtgEm2ATbIJNsAk2wSbYFJtiU2yKTbEpNsWm2BSbYjNshs2wGTbDZtgMm2EzbIbNsTk2x+bYHJtjc2yOzbE5toatYWvYGraGrWFr2Bq2hq1h69g6to6tY+vYOraOrWPr2Dq2gW1gG9gGtoFtYBvYBraBbSzbOVvzwAJWUEAFDXSwgR3EVrAVbAVbwVawleuGgR+zNU9s4HXDwGO25olxVHFiBNMInBE03zXlMS/zwhl4hy2OH06cdefjQR7zMk+M44cR4jh+OLGCM/DmxEKPeZkXGuhgAzs4Fsbxw4lhi18Rxw8nCqjg0/Y8T4wfF1+af8yXPnnMzFzcEw/Yjr+vwS1xTzzg2fyLS+KaWBJrYkucvJ68nryevC15W/K25G3J25K3JW9L3n5wrOjeEvfExzLEuh6PxCVxTSyJNbEl9sQtcU+MNyZMLi6Ja2JJrIktsSduiXvi5C3JW5K3JG9J3pK8JXlL8pbkLclbkrcmb03emrw1eWvy1uStyVuTtyZvTV5JXkleSV5JXkleSV5JXkleSV5JXk1eTV5NXk1eTV5NXk1eTV5NXk1eS15LXkteS15LXkteS15LXkteS15PXk9eT15PXk9eT15PXk9eT15P3pa8LXlb8rbkbcnbkrclb0velrwteXvy9uTtyduTtydvT96evD15e/KmvLKUV5byylJeWcorS3llKa8s5ZWlvLKUV5byylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorP/JqvrLR/cirk2vicMWRoB8ZdbInDtf8hoT7kVEnD/jIqJNL4po4fuN895/7kVEnW2JPHN4ay3Bk1MkDPjJqTnVwPzJq3oB3PzLqZEkcXon6R0ad7Ilb4p54wEdGnVwS18SSOHl78vbk7cnbk7cn75FRosGHN8b2yKiTJbEmtsSeuCXuicfidmTUySVxTSyJNbEl9sQtcU+cvCV5S/KW5C3JW5K3JG9J3pK8JXlL8tbkrcl7ZFTcUWtHRp18eHuwJfbELXF4tQaHd75d39uRUSeXxDWxJNbElji8cbepHRl18jzjbIFxzeXEAlZQQAUNdLCBHcRm2AybYTNshs2wGTbDZtgMm2NzbI7NsTk2x+bYHJtjc2wNW8PWsDVsDVvD1rA1bA1bw9axdWwdW8fWsXVsHVvH1rF1bAPbwDawDWwD28A2sA1sA9tYtmNK6IkFrKCAChroYAM7iK1gK9gKtoKtYCvYCraCrWAr2OL6bVyUOaaEnlhBuS7KxJTQCw0Mmwc2sINHkgSfidGDJbEmtsSeuCXuiQd8HNWcXBInryavJq8mryavJq8mryavJa8lryXvcWQS98T7cWRycvz9uEHejyOTk2M550sZvR9HJifHcsad8X4cmZzcEsdyxi3zfhyZHHwcmZxcEtfEklgTW+LDG5vQcWRyck884OPIJG5d9+PIJO7k9uPI5GRJrPBxFBG3e/txFHGyJo5li/vA/TiKOLkl7onH4nEcRZxcEtfEklgTW2JP3BL3xMlbkrckb0nekrwleUvyluQtyVuStyRvTd6avDV5a/LW5K3JW5O3Jm9N3pq8krySvJK8krySvJK8krySvJK8kryavJq8mryavJq8mryavJq8mryavJa8lryWvJa8lryWvJa8lryWvJa8nryevJ68nryevJ68nryevJ68nrwteVvytuRtyduStyVvS96WvC15W/L25O3J25O3J29P3p68PXl78vbk7ck7knck70jekbwjeVNejZRXI+XVSHk1yKv2IK/ag7xqD/KqPcir9iCv2oO8ag/y6sktcU+cvCV5S/KW5C3JW5K3JG9J3pK8JXlL8tbkrclbk7cmb03emrw1eWvy1uStySvJK8krySvJK8krySvJK8krySvJe+aVBZfENfHhasGW2BMfrh7cEw/4zKgRXBLXxJJYE1tiT9wS98QD9uQ9MmrOaGqPI4tajMORRXM2UHscWXRyS9wTD/jIopNL4ppYEh9eDbbEnrgl7okHfGTRySVxTSyJk7cnb0/enrw9eXvyjuQdyTuSdyTvSN6RvCN5R/KO5B14y+ORuCSuiSWxJrbEnrgl7omTtyRvSd6SvCV5S/KW5C3JW5K3JG9J3pq8NXlr8tbkrclbk7cmb03emrw1eSV5JXkleSV5JXkleSV5JXkleSV5NXk1eTV5NXk1eTV5NXk1eTV5NXkteS15LXkteS15LXkteS15LXkteT15PXk9eT15PXk9eT15PXk9eT15W/K25G3J25I35VVJeVVSXpWUVyXlVUl5VVJelZRXJeVVSXlVUl6VlFcl5VVJeVVSXpWUVyXlVUl5VVJelZRXJeVVSXlVUl6VlFcl5VVJeVVTXtWUVzXlVU15VVNe1ZRXNeVVTXlVU17VlFc15VVNeVVTXtWUVzXlVU15VVNe1ZRXNeVVTXlVU17VM696cE0siQ/XCPbELXFPPOAzow4uiWtiSRy/cU7ebPXIqJM9cUvcEw/4yKiTS+KaWBInryavJq8mryavJq8lryWvJa8lryWvJa8lryWvJa8lryevJ68nryevJ68nryevJ68nrydvS96WvC15W/K25G3J25K3JW9L3pa8PXl78vbk7cnbk7cnb0/enrw9eXvyjuQdyTuSdyTvSN6RvCN5R/KO5B145fFIXBLXxJJYE1tiT9wS98TJW5K3JG9J3pK8JXlL8pbkLclbkrckb03emrw1eWvy1uStyVuTtyZvTd6avJK8krySvJK8Ka8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWkvJKUV5LySlJeScorSXklKa8k5ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5rySlNeacorTXmlKa805ZWmvNKUV5ry6pwdPZ+waefs6JNL4nDNt+O0c0b0fFFsO2dEn+yJW+KeeMBHRp1cEtfEkjh5W/K25G3J25K3Je+RRXP2eztnTZ/cEw/4yJY5U72ds6ZProklsSa2xJ64Je6Jx+Jz1vTJJXFNLIk18eGtwZ64JZ7e51Ws4AFHtlxcguPvR7ZcLIk1sSX2xC1xTzzg+kicvDV5a/LW5K3JW5O3Jm9N3pq8krySvJK8krySvJK8krySvJK8kryavJq8mryavJq8mryavJq8mryavJa8lrx2eCVYEh/Z0oLnLIf50eQWk6MvHAv9KK7BJXFNLIk18fGjPNgTt8Q98YDbI3FJXBNLYk2cvC15W/K25G3J25O3J29P3p68PXl78vbk7cnbk7cn70jekbwjeUfyjuQdyTuSdyTvSN6B95gafXFJXBNLYk1siT1xS9wTJ29J3pK8JXlL8pbkLclbkrckb0nekrw1eWvy1uStyVuTtyZvTd6avDV5a/JK8krySvJK8krySvJK8krySvJK8mryniHTgo+/P3v8mJb8/C/Bnrgl7omj/vw8fTumJZc5e6od05Ivjt81vxnfjmnJF2tiS+yJW+Ke+PDOA5hjWvLFJXFNfLhK8PFvYxyOHj+5JK6Jj2WO8Tl6fL7Urh1Tiy+OZa5R/+jxk3viAR89fnJJHN4a43n0eI0xPHq8xm8/erzG7zr6d75qrR3Thi8uiWvio2YLPpZ5/q5jam6Z715rMdW2jQMVDOuc2N2OibYXt8Q98YCPLf7kkrgmPmqW4KNmDe6JB3xszSeXxDVx/Nr5zp7Wjl3syZbYE7fEPfGAj13syUdNDbbEnvioacE98YCPzjm5JK6JJbEmPmrG2j264uCjK04+asZaP7riZEmsiS2xJ26JO3x0i8SWdHTLyZr4qBnb0tEtJ7fEPfGAj245uSQOr8b2c3SLxvZzdMvJltgTt8Q9cXjnZPHWj446uSSuiSWxJrbEDh97uBiTXmpiSazrN/ZiiT1xS9wTM269PhKXNVb92MPF7+1VEmtiS+yJW+LO76pp3CSNm6RxkzRuksZN0rhJGrejx1WCjzoaXBNLYk181LFgT9wS98QDPnr85MPrwTWxJNbEltgTt8SHtwUf3ljvRw6cXBLXxJJYEx/eWNfHHvTklrgnHvCRFSeXxDWxsS6OTDjG+ciEk3viAfc0nsde9uSaWBJr4rQeexrPnsbzyI2TB3zkxslpPY60Hs/ciHUx0nieuXGwJ26Je2LW43gwnuNREtfEklgTW2JPzHo8ptiWOW26HVNsL476c6p0O6bYXqyJLbEnbonjd80XhLVjiu3JR56cXBLXxJJYExt85MOcNt2OqbHFYtyOfb3Fbzz29QcfOXByeP0RHN6YXnZMdb04vPOVWO2Y6nqxJ26Je+IBHzlw8uGN8Tly4GRJrImN33X0dUxxO6auXlwTS2JNbImP5Y9xOPr65J54wEdfx1SwY+pqaTH+R1+fLIk1sSX2xC1xTzzgo99PTt6evD15j36PW/XH1NWLPXFL3BMP+Oj3kw9vjMPR7yeHt8f2c/R7XAY9pq5e/7snDm+P5Tz6/eRxcT+mrl5cEtfEkljh6OVaH8ElcU0siTWxJfbELXFPPOCavDV5a/LW4+/Hcsoj8fH3W3BNLImP5RzBltgTt8Q98YD1kbgkroklcfJq8mryRi9Xid8YPVvneUc/pn5e7Ilb4ljOeX7Rj6mfJ0ePX1wSx3LOc4Ee7y5drIkt8eGNMfSWuCcecHskLokPbw+WxJrYEodXY0yixy/uiQccPX5xSRxejbGKHr9YE1viwyvBLXFPPODxSFwSH94YwyGJNbElPrwW3BL3xId3jucxJfTiAh+9Off7/ZhSWee+uB9TKi8uiWtiSayJYznn+0L7MaXy4pa4Jz6883cdUyrrfDypH1MqLz68HiyJNbEl9sQtcU98eGMcjj49uSSuiQ/XXF/HFMY6ryL1YwrjxT3xgI/+OrkkroklsSa2xMnryXv0SInxP7b5EmN7bPMllvnY5k8uiWvio06si2ObP9kSe+KWuCc+vLHujm2+xJgf23yJ8Ty2+RLb3rHNn6yJo/4jftexbZ88Fh/TBy8uiWtiSayJ43fN2wz9mD5Y562FfkwfrPPqfz+mD9b50qJ+TB88+dj3nVwS18SSWBNbYk/cEidvSd6avDV5a/LW5K3JW5O3Jm9N3pq8NXkleSV5JXkleY/enFds+zGV8OSj1+bV235M+6vz6m0/pv2d/1bTsmlaNk3LpmnZLC2bpWWztGyWls3SmFjyWvJa8lryWvJ68nryevJ68nryevJ68nryevJ68h77zWM8j/3myc7YHv1+jG1Py9bTsvW0bD0tW0/L1tOy9bRsPS1bT8s20piM5B3JO5J3JO9I3pG8I3lH8g688ngkLolrYkmsidk+5cyB4LOvW7Ct8ZTUs5J6VlLPSupZST0rqWcl9ayknpXUs5J6VlLPSupZST0rqWcl9ayknpXUs5J6ViR5JXkleSV5JXmP/ekxbvpIbIzh2bMxhqlnJfWspJ6V1LOSelZSz0rqWUk9K6lnJfWspJ6V1LOSelZSz0rqWUk9K6lnJfWspJ6V1LPSkrcl73Gse4zVsR8/uTNuZ8/GuKWeldSzknpWUs9K6llJPSupZyX1rKSeldSzknpWUs9K6llJPSupZyX1rKSe1dSzmnpWU89q6ll9sE/R1LNa2KdoYZ+iaT+rqWc19aymntXUs5p6VlPPaupZTT2rqWc19aymntXUs5p6VlPPaupZTT2rqWc19aymntW0n1Uhx44pYuf4KDmmaT+raT+raT+raT+rqWc19aymntXUs5p6VlPPaupZTT2rqWc19aymntXUs5p6VlPPaupZ9TQmnsakpTFpaUxaWraWlq2lZWtp2XpatrSf1bSf1dSzmnpWU89q6llNPaupZzX1rKae1dSzmnpWU8/qSL0zGBN70Dv2oHfswbLZwxO3xD0xy2bp2NjSsbGlY2NLx8aWjo0t9aylnrXUs5Z61lLPWupZSz1rlYy1KonJWBMy1lJ/WeovS/tES/tES/tES/tEk7RsmpZN07JpGhNNXk3edGxsqWct9aylnjVlX2z2SMy+2Ix9saX+stRflvrLUn9Z6i9L+0RL+0RL+0RL+0RL+0RL+0RL+0RryduStyVvS9two6+t09fW6WtL/WWpvyz1l6X+stRflvrLUn9Z6i9L+0RL+0RL+0RL+0RL+0RL+0R/sL78URJzbO+FY3tP/eWpvzz1l6f+8tRfnvrLU3956i9P/eWpvzz1l6d9oqd9olcyxyvry4XMcSFzPPWXp/7y1F+e+stTf3nqL0/95am/PPWXp/7y1F+e+svP/oplPvsr+NzHxfKf+69Y/rT/8rT/8tRfnvrLU3956i9P/eWpvzz1l6f+8tRf7vS+p/NEb/S+N3rf0/7L0/7L0/7L0/7L0/7L0/7LU3956i9P/eWpv3ykZRtpOx9s5+3Bdt7S8WFLx4ctHR+2dE7X0v6rpf1XS/uvlvZfLe2/WmHZWimJ07LVtGypF1rqhZZ6oaXjw5aOD1s6Pmzp+LCl48NWWadN0rIJ67QJ67SlXmipF1rqhZZ6oaVeaKkXWuqFlnqhpV5oqRda6oWWeqGlXmipF1rqhZZ6oaVeaE6GtHQs1xoZ0hoZ0lpa/nQs19KxXEvHci0dy7Wexran9d7Teh9pvaf9Qkv7hZb2Cy3tF1o67mqDfVZ/sM/qD/ZZPW23PW23PW23/cG20dN22wvbRi9sGz1leE/bbU/HSD0dI/V0jNTTMVJPx0g9Xevr6Rykp2t9PV3r65r/ThoHS+Nw3FPuBx/3HOPfHveUT/bELXFPfNzrnPfOzjkh4xEsiTWxJfbEUX9+6aCfc0VOHvBx7/jkkrgmlsSa+PDWYE/cEvfEAz7uF8/vLfRzfsjJklgTW2JP3BL3xGPxOT9kPnLTz/khJ9fEklgTW2JP3NY4n/ND5lci+jk/ZD4e0895ICcfdVqwJ26Jj+XvwQM+5oGcXPj7xzyQkyWxJk7emrw1eY+5ZMfyH3NFjmU+5oqcnGpKqimp5jGP9FhOSb9F0m855pYcf1/Tb9H0WzT9Fk1eTV5N3mM+ybH8x3ySY5mPeSMnp5qWalqqecwfO5bT0m+x9FuO+WPH3/f0Wzz9Fk+/xZPXk9eT19O6OHLg5ORqyXWed8S2d553HCyJNbEl9sQt8eGdmRPzSTxuj8d0kgsrKKBOjKGfceASoz3T4MIG9onxE2YUnDgeYAErKKCCBjrYQGzjso2YO3JhASsooIIGOtjAvrBE3R4Yf3cENrCDY+Hscp839UdMELmwggIqaOC0zdv8I95MdmEHx0J5gAWsYNjKf/3XP/3pb//2r3/+97/+29//5d//8Ze//Omf/3P9D//3T//83/7zT//nz//4y9///U///Pf/+Nvf/ulP/78//+0/4i/93//z57/Hn//+5388/9/nEv7l7//z+eez4P/669/+Mum//ol//Xj9T8sjPhUZ/3w+lldXiTF+qVFe19A5lSYqPC8brn/vv/77+vrfi10/4HmZe/375y3q+z8i7i6fP+J5XezVj9DNQsicHHcshZY0DP1uhRLfkjwW4plBVPBfKvjrCj6uX9GEJXjuCe8WaPPgIQr04qvA88bGLwX65jf4nFp2/IZW2ssS43WJ50HdtTqfd78fL0uUzQqtMQPkqFHT6vxYY7M25tsp1mC2NJr119VR6rvrY7sQcwbfWWGU1wux2zB9vub52DCfp9irRtNfS9hmrVq5Vkl5XmF8WWK3FG3OhTib9NFfldhUmPd5r41T1F+PRd+tELnWyHyjJzVMfq2x2T4lHhA/fkmpL3/JbjFavK/pWK25xMfFqOWPXYyYl3csRtXXozGfu3q5abRSV8M3Gt5+jb26WbGjXPH/PAphIZ7FbldYQ1EexV6X8F1iKIlhLIb+2qtzQudmL7KG4mHl9WJsVon1VeN5uZnget5v/LXGZgN9XvO9MtgfKUA/1pBdgOrVJ9VbqvDNDWO83DD22+c6tJjvrHrdrbsapldqzMdBX9aQzeb13JlcKVyfF+BfBvl2OZzf4s1fL4e/H8PbxVAWYzy+N6Ttce1Q5nOOr3/KePOQTx/vHvPtf8Y6zpiP5L38GbtdkpivXZKPl7sklbd3z6pvbxfbpXh/99zbdez4PEHZjMUmQUXrWquqaZXUDwfR/e0dko53d0jbCvd2SFbe3iFZfX+HZPL+Dsn0/R2S2bs7pNsbxusd0u3t0/z19tm254lGjf6yho23f8quhLR1CPoM0PbyZLO8f67n9f2TPZcfONnbrZXG2fvz3sLLteK227fWdVTvmhLQPvwWfzu9vL2bXtsK99LLx9vp1R7vp1cr76dXq++nV5N30+v2hvG65ffbp3MoPPT19mm7k/C6TsJrry9rtLbr+dVr9ZGX4+N1qt1yaFnLob+cun5YjvdP5HexoY91AKiP9vqApZf3j962i7GSWJ/XL18vxvsn8v3tE/n+/ol8f/9Evv/AiXz/gRP5/gMn8uPtE/n+/on8fvtUZ/ts3zpu0njd0VlDXh83jfcvhY73L4WOP/RS6KjrqOl5I/j1ZeGx20Db2hvY+OVKwIcr9bvj0LiBewyG5PX6Icl3y+FV1kYu8no5yuP9i6Hb5ZC1jbrK2CyHvL8c262j9rV11PG9EkqJdJry8TrRYxuj6zSlStqlfKmGrJatz+s1r2tsVotqr+tKUbpi/7XhoN/89WLsbigpl8q12usEi/eqvRyP1q4Fqa2Xl5dEd7eUbu6m431z7+2n9yXu7ajL7q7SzT11vHru3V11Ke39fXXZ3lq6ubMuu3tL9/bW9zeQzXX3/YZK87cu36xh66J5T3n6pRq9rxrj8XhZY3dvyG3tK93S2cbXati4U2P/W9YV6zrq5re8fWq/L3G3cW//lNeb2O4G03hca3akndxvrb+N5H5tpCqP8jqSpb5/S2W7IFLaWpB8BPPbvmFXpMt1+VxHlW8WGXKNqj2GbYZke6VhTYVJ96l+y6BdiZsXF+MVf+9eXSzyE3NJ9Acmk2xXjUXuH6umyGbVaH3/oGxb4+ZB2faG0+PR2e0+f1naTD6Wse0to3X7bKQJMr8X2W2uWsfVfuXZivp6z7s7vay+jgGqpyDwryyJNZbEUv/9viS7k6q6jhJLXsm/deD9ZfGyW5ZtGV+JMnl8t0xf18me7PL9MkaZUb9dRoQyttlidneknum1RliGfG893T5qtPb2UeO2xFhb//anbLfbnrbbXZFtssR7dNcByuN1KGxvTams7c0euyPpXWTLusZskufvfYzs3c0pqSv3pabc9y+VWPemnhd+vldirBuXki45fSzhu+tv697ncxTHqxLbAVX2gWqbYxzvu6Becf/E1z+lb1OtsnVw5Fg/ToLZFrF1Fa9Yrd8sonVQRF4Xadt7qG113pPTBCX/UpG1M55F2rdWcFvHbDbK5ki42W5Dc46mGRH9MJ28+ds78+1S6NraU6b+vhS7lZuGdH4RU14ux76Ir03k0V8nyL5IT6d9Ix1UfGVE1o+xx2a99O2ElMbhxPN+2csU+aTIvWH9pMi9Yd0XuTms254Z62Kt6+40dlfEbV3Mf16g+OYpqPcVIz6KfrNI62mG9WanubtpdXNfsytx9xR01B84BR3yA6egu0vYP3IK2h7M23zsjmfG9uqAPtYVk/nlu5crp+2WZDXf/PjWZkn6bg2vS/KS91e/3bDZ3sFiLutz9/jy+k88iPf6QtQ6htfa2ssj1rq9g9XWbTDp6Qjt9yLbDVYIJNfy+nyibu9iOXNr88lR+8qSxEWIc0lKk82SbPY5w9fQDi/++vRov8nKmppa5gc7vxPTjQli8yMcLzfZuruZJdzDft4erK8unMb29OYNoLr7MTefuNiWuPnIRalv3wCquxtRtx+62D2cdPupi93trLun8nV3P+vmcxe3N5DXN4A+2VC1rA3V5Zs1ZG3stZbv1bB1E0ksXY3+Wg0db9doKRJ9fLOGNu7Kv67xAzez6g/czNr/ll7XJOau7f0a9s3tw9epgPTdeOz6pbfVL0M3CbKdplDWsfPzIoe9XBAp76/cfY33V67Gfe5rrsPj9XLsruPFq82PQa354OxLg1pX1z1PxzeDurtsxQTNtlm3spsb/lgXR5878M2RzO52ltS1IJKfZfu9yO52lqxTCauvD8y248EVGn28HI9PTwFqOgV4dUWy7m5D3TvF2x5j/sghs/n6Leabm0d1dyPr3nr55ESE4+V8vvqVG9HO0bK3zeMpdfeYTF3jUWsejq9cFhlcfX88L29879rKMA7shr/cQnbPUN28jvDJcqwZ7/PHjO9df7v7Y/TtH/PJctz7MZ/cE7R0a9H1u3fh2mOdQmizzQGz/cC0q2pvT7val7h5A20/sNxBe47OZk+ze6TKuTzqr6+OflJiXZ/x/CKQr5Tota0SLze0T0qsl1888Vt3nFTWmlV7bBLR29uXEqv/wGyW6j8wm6W2H5jNsn2SiEtv86uuLy+91e0dp3uzYWv7gbdPtPdfP9F+4P0T7SdeQPETb6BoP/EKivYDj67EgwxvxnJ7/+GVTzbUW7NhP6lxazbsvsa92bAxLfLdc8x9jXvnmPvfcms2bN09YnWzcbcl7jbu7Z/yehMbmwPVW7Nht4k81vY1vxf3OpF3t6pc+zpysHRLVOzDq9h2t6qGPK5uGZLuvf9eZHfd/7Ee2RiPdLX99yK7Wag89pFG5Llz/FBiPyuQySZpRL5URAZX/fMx9+9Fdi9MKW0d/df8qFX7yoKs+yBPfL0g2wdvH2NtaM+LPC83NNneHbp31012N6nu3nWTh75/CUF2N6nKw9eZ2ZOlvdzbye5pKVtTgeyXeZbtQ4n27nWIT1bNresQ202k8KK2snnOfP8+mltPwe1L3HoKTsr7E673Ne5NuJbyIxOupfzAhGspPzLhWsrbE64/WZK7E66l/MCE6y8sy27C9Sdl7k64/qTM3QnXn5a5N+H6szI3J1xL/YEJ19tlud0Cu4eobr9hb/eqv3tnN/sSty46bX/KF7p5d9/pZjfvl+R2N8vujO/mNPRPityMhPs/aBsJ+zK3I2Ff5nYkfFbmZiR8UuZuJOwezbofCT/yzIHs7mjdfebgk2OWO4+qi+rblyu3NeZ3Ca+UbOX1y48/23Bv3ij4pMzdGwWiP3CjQPTtGwX7Ej+R2XdvFIi9faPgkxJ3bhTsS9y6UfBJiTs3Cj477rq7rZYfuaklP3FTS96/qSXv39T6bGDvbqvv39SS929qyfs3teQHbmrtrlnKuqT9xPQU1Rde4TtkXfd43qt//Rpg2T6JdfPkeFvj5snx9kWBz4sua8/7/C+bTWz3rsBSmKLz5LY5stldDrb1JQmrmwPH998WeHcp0vuhfi+xHQ9hmk8R7Zvx+IkTrvYTJ1zt/ROu9jNnS9sbW/fOltrPnC1tp7fcPdFpP3Oi037mRKf9zIlO+5kTnfYzJzq7G1W3T3Ta+5cL2s8c07efOaYfP/BqVhnvp+22xI8M7N3jpN09r5vHSfsSt46TtiXuHSftS9w6pt/vwJTz+mdGlZdDqrsns5QX8+QSj68coJT1JoEnVt8siLx/gWF/4Le2siH58cyPHz3Y3fC6OXNHH++/6Fofb78Oa1/i3gQAfbz/rmstP/Cyay0/8LZrLT+QqVreztT7G8jmtbP7DfXWzJ1PatyaubOvcW/mjm7fL3hv5s4nNW7N3Pnkt9yauaO7b1fdbNxtibuNe/unvN7Etp+euvUeu10i2+qVYZvP0Gxr+DriHd7rN2usM5vRHuP1nqG+/4Cr1vcfcFV5+wHXfYmbG5i8/4Cryg884KryAw+4qvzAA64qbz/gen8D2ewZ6vsPuH5S49YDrvsa9x5w/aTGrQdc9zXuPeD6SY1bD7iqvv+A6yc17u3l6vsPuN6vYd/cPu494Kr6Aw+4bhfk5gOuau8/4PpJjfdX7s0HXNV+4AHX/YLce8A1nmF9WePWA65qP/CAq9oPPOCq9vYDrvvxuPeA6/YpOb4Z+WTbHAvt7vS8fWT4dPPekoftztZ9t6Xem2yrvn8nW6X7X0+Q0O0njHgG0uT1yt0ux81Jv7p9Fitf81bbLMn+7UO3Zg7r7sLQ3YePt0Xuv2pHd3eMhq1ZuyMH6xeX5e4LiLRtv9Ny5wVE+xLpmGhsSvgfWuJmnm1LrPep1e6bEo8f2Fb7T2yru29d3RzSXYmbQ9rL20Pa/+gh/ULn7r54dbtz+890bu9vd+62xL1tZPvyv/dL3NzMtiXubWb7/d1I3zjYbGZDf2J/tz2KuPVcyH5Dvfk2t/tFZNMy249f3Q2z3SNZd7ey9493tyVu7h/qD6yX20U268V2z2PdXS+2u6x7b71sS9xbL/bJxeUb62X7gfLa11sy63j9nXXb3py6d6/Otjen7l2RtfL2Jf99ibsf1Za3r8jafr74zc9q7x7Fuv1d7fIDXw+w8vbXA+5vIJvvUe831Fv36j6pcete3b7GvXt1VuvbF7o+qXHrQtcnv+XWvTrbPXV1s3G3JW427v2f8noT211ue/uKTJNyXZBpoq+n3po83r4eY7vHrZ4XqNaHnnSXHvIDrz6z3e2pm3vK/YDce/XZdsU0Vkzb3AB9/8Ob5f0Pb5q8P6t6X+PerGrbPlp1+5Fj082Wenf6r+0frbo77dZ2T1fdm3b7yZLcnXZruxcG3p12+4Vl2U27/aTM3Wm3n5S5O+320zL3pt1+VubmtFvb3W26O+12uyy3W8DkBw71djetbh7qbUvcmuq6/Slf6GZ7+wUCnyzJ7W62H/jy1SdFbkbC/R+0jYR9mduRsC9zOxI+K3MzEj4pczcStnexbkfCdud695Fj238+6uaM4Pe/jm27GwxN13HP8wjo9ffo90W8r2O4lt9w9FuR3TuBb31u7bMS627468+tfVLizufWbP8VrDtve/1kQNfLXtvuIW7bPZdwdznef3+m7d4nePf9mbZ97Orm+zNte/Po5vsz96umr4P8Nn55L+mHMembQGujXg3T6y/fa/pCkbvfwrO+vZi1HvdIs1jmCeHtEmyrns69fi+x+yk3v8j3yXjc+yKf9e2LWu99ke+zIre+yLff0G5vI9sXPq514/LN1buuyednxr5YYl1TU39dYr+fGteItl/m03wcjfH+x633NfgUl+Sj+d9qbKexcFlN0kO+vwXR+IFXCvvjB14p/Nkx580nCz8pc/fJQn/8wOmWP94+3dqX+InTrbtPFvruSal7TxZ+UuLOk4X7EreeLPykxJ0nCz+7ZHJ3W92Xub2tlp/YVsv722p5f1v9ZGDvbqvl/W21vL+tlve31fL2tro95OVqcnnk/X+7XaI81mFIkfKdEmXUtYMoZi9L+O5Jq5v7zH2Ne/tur/7+qYjvXuF0e7+7ff3fzf3uduV27hTI6+3D5eZcqRw/9yuIrLMQ0XSqOvqHGruHre58uGb3rYh1bJg/Sfrx+PJegfq9Amu+h5l8p8C987DHu2dhj3dPFR7vnig83j1N2IbV2hafm1Q6N5cPG/R2R9b6upv45PTynOex+hfK9LLuOJdf37f9W5ndp4PuvMLgk98zfP2e/kh3A39fkO2H2QfvUx+vLoz5J1/JuXXBYl/k5qWCT5bk3qUCt8f7lwo+K3LrUsEn29pjPb/3ZC+vV/HudOPe5dNPSty5fOr29uXTT1vY6L38mZvfxmN39dNW84nl2bcf37nf3+3f7VLo2jVI7pqPNXwXjN04XXneP9kMiG8voK7ee2L6MIM/vlkkHTC8UaR9twjHtjXNe/29yG6yqD3KOoTKc+8fHw7DdnemZKxTFhm9bIq07UncWGdxaYrTF4twYDry9KSvFVGWxB8/UcQ2RXZrx9d3UWrLb+/5WGT7Rr62ntJ43l/Q761i9baeB2hFvlnkUa4s0IeMb46JrY2t2tiNyW5J+pqR97xtOL45sLxzwvKp1BeLrJNLK+2bS+KyroB4PgX46pissH+e/W/Wzu1Q2iRbf//tFd630wON2WzpaOD3Bdkcvj6v1a87w3mi4sdLQn37UMA6kH5ifqT3Q439VXvhCoS+rrF7z9tzQ1s70fLIT477F4ZVuVynuttz3d+f5w/Gftyfbx+2unmAM959x9p+KW4e4Oxe41d63OY4B8TTDJHfB2S3ua6T6J6nMYwP/bv7/tXzxHOdJz26bopsN9eRXsbTX83s+GRBuKhb0sHa7wuyu1PVlHFtmjrnwya/vVNFzD8vQ9aXS9Ie78+9brv3Ad6crvzJctz7ytJ21RQu7dbNgOyLpOv+NV2x+X1Ud7NZ4+GQ80RY6/d+TV0zzp77jO/+Gl3TwKumC6K//5r3J2Dva9ybgN3K9mLevSeE2u6Zqbv3htr2C1b37g19Eq1jXSzp+bL5x2ht20evXLj4/jzcenW1pJXt4fydiaOfLIeux/uePOxlou3GZJT1qcQnq2/GZPtqYFlVcuc8j9A/FBnvj8l2OdYXCov018vxyZjUted7cn99nbHtHp4yWbdXnockj02R3RcGH+ui2vPgcbPF1v1z0+kiEgE7yocau+enbn5Ss+1uW939pGar28tIdz6p2bY3rW5+UnNb5O4nNdvuptPNT2p+siD3Pqm539Dis/DnhjZeX3dt2/cE3tzQ5Ae+3drkB77d2uTtb7c2+YFvt26L3N/Q3v926ycL8hMbGndqn0fhm0TbXRe3uuYkWB0vz8bb7kms52WUdZeu5R2ff+XHrDM+zcdpv/8Y+4Ef43/wj5F1rUXzOzq+tsOS9aI/za9f+dquU9fUJjPdhJFtb4Wvu7DPu+Ly3SLr3POJ3yxiPKz/xG8XWQ8fP7FuLgtsD21kvXN08vhuGU1HjVrku2VsXXud/O2l8UIZ75tj2N0NrnsTF7Yl7k1d2P6Y+ijrOZbnFZj6+qZ98+1Dg2XdL3heqXi8mn/Wdm8PvHlAvl+OymcHpIq+LLI7JCjr0s0oaV6Mf2VYq63T8ofUzeH49sGrB+8PfOTXobTy3WVR2QTC9u1/9642xhzC14uixp1/HZvWadvJ149W0/3U8d0ypVi6o7rZBb3//FV7//mr9v7zV+3956++MqRi318z3Icpu13yJ2XWWcaTbbe5jfdX8Hh/BY+3V/Du7tbPrOA8pO7fX8FpHoK37+2Kf402q5sg6NtbzOvSibZHfRltfTu71Xhby8Mf9Sd+kUvd/KLt91nWvMr6y+PZH37R7vbSrRtUnyzFrbupbWynuA7Gdb6G6vWA7Mb15tHWrsS9o639j0k79GcHlM3R1u4u1/OCyXoN/7yK+mru22dF0mXHov17RSpHKCOv4+8eLJXnNvNyVPrj/Zuy/e0PX+2X4t5hUt89iTWPRTo3/krZDIj+f3n0WJ4npZtl8R9YOe3tleM/sHK2N2WtsHJsc6bfy/YphHVzaB6apDxp3yySTjK+VqQ90lSvXRF5d91sF6NyIlp/mQf/ld8irBuR3aj6u+ehnyzHuqJUJR3dfO3H/DLf7LubiK/XEz/vZG6Gtb57KLB/C8HKkF+vApUPC7F9d5twc9hfP6SwXS2cN2r+8NRvy6F/cJGbT3b17VNZN5+G7j/xVFb/o5/K4uMizxL6elS3H7C687bD7UYmZTWu5K8+/L4Y734Go3/ynsJ19TW/i2jOAvq1iL6/t9t/AGtdwPXHL5c66xeKcDPoeem0bIq0d8/CPytx4yz8kxJ3zsK7Pt49C7+7efiv12w/DOjuptbdzWN7U4uu9V/e1/zbguwmD5Z156QV3RXZbGM3J8x23R4e3pow23X7YaFbE2a77qaV3J0w+8mwrntJz8M6/ea6qUKRX451v1ZkrZva27eLrK2kDtuEyM3Gkfx+qI9Ftu8DvHdxpW8f1rp1vLxfilsXV/ruESmX9WzF80B3s5vZ3oX6iSJ3H3Hs/vaDtJ+UuPMo7f6n3HzQ8pPxuPegZd/dyLr7oOVnRW49aLk/du+DOZllc1i1e7DpR4rcPfD28QMH3u0H3szW2w+8mW1/zFtXA8uv0w8/Lon8oYfezMQSUf3eSeLzhjxXRtPDbx9X7/ZxpFvZvP0pWnnB5O5kpu0nVFeuIeRD7w9LsrtrpHUd0ugvM+b1K0W88whe+j7Ab0W238G6d/y+L3Hr4LvL2wff29FoTG1r+fz/t9Gw90fD3h+N9seORl/fbHieT+hmNMb7o/H27dG+fSLr3mhsG7+vx8t++f7tlzJMi6+5sfXh3yyi3NO08s0i9ljX/u3RvvlzrK8Dd+u22W3v5vnd3W3/xNsD+0+8PXD8xNsD9+NajIeAu7wc1/Gof+RuO73w2h6/nNx9XAx9czG2FW5uIOPxAxdUx6P9xAbyAxdUt8cxbV0RyW9z+205tl85uvnir7F7IOv2iGwfyPqJltG6Zimq+usoGmX7wbbGtTdK1PGhxG7X3dNc/1/estI/FHn3MPWTxRi8PUN3i7H9/OW6Zpa+5tn6/cVQHnBTyRPSPy7G7hbVvWu7++XQ9TkCtV/uUn1cjt0mZnzf3Ms3i9y9GjJ2t5juXQ35pMSdqyH7n3Lzasgn43HvasjY3qS6eTXksyK3roZsE6R3Pg6WTyB+ixDdXiNek9BrenXeb0V2l0N/pMjdPa/oD+x5xX5gP7N7Cuvufma7cvg2YH53zu+j+u6H2/Zb2ZpP8bwO9XohtreqOLdLr2X5Ldt3I7FuZPS22b72L2njHW0jzV5vH7av3X2qu88FDN0+F1DXdwGL1Zcltpen1je0y0gPDP/2W7YPBTS+VPNoNl4uyL7IyrEnv3xh8GdF1gyVZ5K8PHH/pEhP30ocD/3OuFYyqD5Ssn8c1+2Hrx6Fx0kfJb0M8ONjnJ+VSfFe0oS5L5dZW+yjpmeevlim8r2cR/XHpszudRfc1Xwiq2i+3+gLRdbznCU/tPF7kf0P8vSD2reHV9bFnidL/XaZtLIl3QH/rcz2tUQ/U+a5lfDaaq+vB9j31yaY4N/sm0WU1wzqbnvZFuHdYs8imyXZfjb0sT4nb7mni33Yn2+fw7r3Dp2xu/H0vJS3dqa15XeKfCyyO9lqa//xHIW+KTL+4CLPseR9Pl7a69fWj90NrLvfYf9kWYRdiGt5bJZld41xnbnlJ4k/ftd1uyR3vy872ttfYv9kg731sqXPso0vPjzyLNbfQml3G+vmifm+xJ1r+6O/Penqs/FQdoKSnib7bTz2xzsj7ZHHy+cuPiuS5/b7yx+0e8fgzTH5ZDmqpB/zvZsmYx3P6q+vBPoQ0duXDHZeCdTzjKn64Wyl7za0zn2onh+/13K/iLYHd0vzk78fi4z3L2dtl6Ovef3a06s5f1+O+scuB+8T0Xwu+/ty6B+6HM8jgfSxAt0sx2aDf17CWocTv8xk/0qR25f3xg+8z/2TJbl3Ye150P8DL3T/tMq9S2vbDh7cgB35+boP6+c4oXnv0vr2cdD0tlLPc5V+i6Pt63zWXvx5oqMvizx/jP/RVW5e5ZufUH//Ml95PH7gFuzzFPoH7sHu11DlukPNGfvb2JZ3b8I+x2R3bj04Kx7p6NV+W47ti9sKR43pFOX3Irt3YZV1kaznZw7bV2qkK0Lp2bj/lyLbdXNrguy80LK93MBxVp7Q8fui7E4Lbr7X8mnbzU29+WLLeblol0x33mz5hQ1lbDaUx/71p+uhsJpeu/9bke0dKluXqN2GfnNJivO0XtktiW9v/K2jvt12Un/gGsGzyg9cJHhWGX90lfuXCZ6nVD9wneCzpbl7oWBeE3z3SsEnNdbtWfklEX6r8faVgk+223Xz3fSx2W63DSR8LSJf7vtaFyrvfLEUtb8V2b538GYX7u56CS8Al1J2W6xuJ6vyaZLa67errB/0LNh3VeT97WQ7sre2k/1c0UdLJ/qbmbPbIoVVXNrrycjloW+/S+CT+cx3Hib8ZBLwrRJvv1hoP6Bj3V+1X96v8tuAWn3/xHhf5e6Z8SdVbp4af7Ysd8+NzX/i3PiTKvcewtk+UKBjvRyha3747fGFIn29Kv55SjheFimP7a2dH6ly+5x099bB++ekLj9xTrp91ur2tM/tas5fBLDd2Prb56Q2fmD1bIu48hLg6ptfs63CNXf59eWsX6mivs5t1X+ZL/m1KuvIT/2XV9Z+qQpfTlXPJ9q/VWn7N2jf+kzJvsrNTwzPySq7Y/N7U43Lo/lP9GFr7/fhZ6tovWDreTWwfndF84i9qu8aYHf/6/Yq6j+Rt/1H8rb/SN52/cPXc+PzZW0bUd1/ohW3T3S19fExe/hum+v7KwjrqDIfbHycNDGn8bw9a2JO+vqJSyK7R7vuX8zY3Qz7yuWD8QOXD/bLcv/Cyu77QfcvrOw3XmFuV5NeXm+8n7RATS3weFll95jXvdva+9H9me3l7myQUnbvJLx78r5vxVvzQfZvElNJH+DL52ZfeR0ZIfcsUl8WKWV3qUge626H5OmeX6xSnOs8mzfOfVKF00RR+far3gofw/3l7aK/Lcp485j9k9XDCwXzR3l/X47tF7g4WfXXU4s/q7Eun3l+fO1LNfo6APP+cm7KZzXWNasnvq6x39AGF/Ee399c10XWZ0HbrZu3X6P1aY0bF50+q3FnTlcp9e1JXZ+MKtetnuPx7XVT2V9U+3as5WV5owrXVmqTb1dZF4ue6+f7y7KeQX2niqzJbiL+7V8knV/UX2fsZy88bvljbS/fBr99kzQvTfvl13zlZdS3Hu77pMSdh/s++VLGOtt43vZ//dGPtx+q2X8G5d5Y7EvcGov9B3P4/t4vb1v+2ld3nGvxrX2zCI8BWNH63SIrW59FvvsRobJ2FLb/nOBuMpbyiaf8GNr3i/T6zSK2Tmg1f+z8i0uyDgae9fS7S6Lcv9LvDqwZRfy7H+CydVbwXJLN2tnOstH11ZDnBpsPbT7uyu3tObOf1bh3WGLvf2bj9oDoYzcguzcV3PvSWym7p7bufupt/3N4K1e+hvn791q3RdZLpIuO8t0iI91g3A5sf/8EZ1/j3gnOtsbNE5x9jTsnOJ98Gth4pMHNXl66LK7vt80nC1LSgrzu3+3DM503fD1588mDUnx7F8Ebr7Rvmy/xPevsbuiVBx8NSY8uf/jM6SdF4vblVcReF9m9s/B5A25957T21w/IPqvsHslbb5Oz/KTjGF9ZkpufbX1W2b608N53W59Vtu/ZvvPh1meN/Qe6b325dV/l7qdbn1W2b4W79e3Wzxbl3sdbP20hvoHwWQtt63BH48m6q7Ob9HPzLdPPItu3Q956zXQpff9CtDvvmS6l718icu9F05+lbuG2iNVXqfv2lZzti6q4c+BpCT4+K7wtwbdK84nkV0p0XqrQ0+nbV0oMrsA+0s3EL5SonEQ+8Xtj0da1ktIf3/shnScDu3zrh5S65luU/Hmbr5SQdND4+F4JXVdMnyfC9XslOD5SHd8rsU4bS56A+bFEKeP9z3LvTpDS+76k5amTXyixpq5Ift/Xt0v0b5XQB/dt8q3cL5QwbpObyPdKcA/K/Hs/hEcgxLp9qwRfNBbXb62R5x2J9OJlf1mi1Mf2zdrKC6n85cnmdjk612fHt1ZrffBBrEdqki+VWFfy60P8myWYNyrt7RL63aVYx00PK98rYYxFngj/zaXo32q0mx9tKHX3HNfb38G6+Uharfs34Nx7JK1uX6n3iFlaZ5lSxus5DnV3/a9zyNOH1F2V3SGkGrdVNH/s7Le5EnGP7HV+NF7z9cgzLuTbS+NluzTbOnVQR3YzQOr2pYO3Pkj32bI4bw3T/E2pr/4m3vf7ZJc36nCJs4/6/Toi1LHdGMv2DXHsN2TIN7ecwYYznuO96Yb9R7duPuhZt28yvPeg574Gb2D69ph84deMH/g144/9NaqaJvVuHsiq2/fV3fw12xo//Wt+WRL/0r6kCG8KKvbYbPfbt8mk0yR7tG+nt1tKb9dvJ0t7cNei2W7L1fET27893t9itjV+YIt5jijvJXyO0C7/Td6+hfJJjVu3UPY17t1C+aTGy1so//35X/78r3/9x7/87d/+9c///td/+/v/ff67/5ql/vHXP/+Pv/3l/K//6z/+/q/p//33////uf6f//GPv/7tb3/93//yf/7xb//6l//5H//4y6w0/78/Pc7/+G/yvP72T/K8UPrf/+lP5fnfx3y6dTysPv+7zP9/fsFZqpf5/5f4B8+rAM//qP/9v+YS/j8=",
5714
+ "debug_symbols": "vf3djuS+lWeBvouv+yLI/UGyX2UwaHh6PAMDhnvg6T7AQaPf/QS3JK5dWRNMZUb+z41r2a7aS2Jo//RFSf/5p//5l//xH//7X/769//1b//3T//83/7zT//jH3/929/++r//5W//9q9//ve//tvfn//rf/7pMf+jPOxP/yz/9PzT//TPNv9s55/9/HMcf5bH+Wc5/6znn3L+qeefdv551itnvXLWK2e9etarZ7161qtnvXrWq2e9etarZ7161qtnPTnryVlPznpy1pOznpz15KwnZz0568lZT896etbTs56e9fSsp2c9PevpWU/PenrWs7OenfXsrGdnPTvr2VnPznp21rOznp31/KznZz0/6/lZz896ftbzs56f9fys52e9dtZrZ7121mtnvXbWa2e9dtZrZ7121mtnvX7W62e9ftbrZ71+1utnvX7W62e9ftbrZ71x1htnvXHWG2e9cdYbZ71x1hvPem3+2c8/R/xZH4/zz2e9UibUC+SCZ8miE541i094Fi3jCbMb6mPC8y/X+Xfm9l9nwdkAEv+XX9Au6BeME2YXHPBcDJmK2QcHyAV6waw8FbMXDmgnzK1e+oTnX9ZZcG7nWic8/7LKhHZBv2CcMDd2nYq5FessGJvtrBPb6xyN2EBtgl3gF7QL+gXjhLmZ+vznczs9oF4gFzwr+1zUua0e8Kzsc8Hm1npAv2CcMDfYA8oF9YJZedrnRnuAXeAXtAv6BeOEuekeUC6oF1yV+1W5X5X7VblflftVuV+Vx1V5XJXHVXlclcdVeVyVx1V5XJXHVXmcleXxuKBcUC+QC/QCu8AvaBf0C67K5apcrsrlqlyuyuWqXK7K5apcrsrlqlyuyvWqXK/K9apcr8r1qlyvyvWqXK/K9apcr8pyVZarslyV5aosV2W5KstVWa7KclWWq7JelfWqrFdlvSrrVVmvynpV1qvy3D34mDBOmDuIA56Vm0yoF8gFeoFd4BfMnIt/3i8YJ8wePOBZuT8m1Avkguc/789mlNlWfRacbdXnos626m3C8y+P+ZdnWx1gF/gF7YJ+wXMxxjNbZLbVAeWCesGsPBWzrQ6wC2blPqFd0C8YJ8y2Ko+59LOLyqNOmlH9mMs/u+Z5WDOpT3qOhM52eR7STCqL6iJZNHcBpU6yRb6oLeqLxkUlHDqpLArHXIIii3SRLfJFbdF0VJs0LpotdFJZNB3VJ8kiXTQdc0els5Geh1GT2qLpmDsknb30PJh60mym52HUpLKoLpJFusgWTYfMNZ89dVJfNC7Sx6KyqC6SRbrIFi2HLocuhy6HhWOOgZVFdVE45hhYOOaImy3yRW1RXzQu8seisigOI+aYzv3bSb6oLeqLxkWzG08qi+oiWbQcbTnacrTlaMvRlqMvR1+Ovhx9Ofpy9OXoy9GXoy9HX46xHGM5xnKM5RjLMZZjLMdYjrEc43LY47GoLKqLZJEuskW+qC3qi5ajLEdZjrIcZTnKcpTlKMtRlqMsR1mOuhx1Oepy1OWoy1GXoy5HXY66HHU5ZDlkOWQ5ZDlkOWQ5ZDlkOWQ5ZDl0OXQ5dDl0OXQ5dDl0OXQ5dDl0OWw5bDlsOWw5bDlsOWw5bDlsOWw5fDl8OXw5fDlWn9vqc1t9bqvPbfW5rT631ee2+txWn9vqc1t9bqvPbfW5rT631ee2+txWn9vqc1t9bqvPbfW5rT631ee2+txWn9vqc1t9bqvPbfW5rT631ee2+txWn9vqc1t9bqvPffW5rz731ee++txXn/vqc1997qvPffW5rz731ee++txXn/vqc1997qvPffW5rz731ee++txXn/vqc1997qvPffW5rz73o8/rpLaoLxoXHX0eVBbVRbJIF9mi5ZDlkOWQ5dDl0OXQ5dDl0OXQ5dDl0OXQ5dDlsOWw5bDlsOWw5bDlsOWw5bDlsOXw5fDl8OXw5fDl8OXw5fDl8OXw5WjL0ZajLUdbjrYcbTnacrTlaMvRlqMvR1+Ovhx9Ofpy9OXoy9GXoy9HX46xHGM5xnKM5RjLMZZjLMdYjrEc43K0x2NRWVQXySJdZIt8UVvUFy1HWY6yHGU5ynKU5SjLUZajLEdZjrIcdTnqctTlqMtRl6Mux+rztvq8rT5vq8/b6vO2+rytPm+rz9vq87b6vK0+b6vP2+rztvq8rT5vq8/b6vO2+rytPm+rz9vq87b6vK0+b6vP2+rzdvS5T6qLZFE4+iRb5Ivaor5oXBR9bjKpLKqLZJEuskW+qC3qi8ZFbTnacrTliD6fl8da9PlB4ZjrFn1+ULso+tfapPh7cz2iVw9qi/qiWJbn+UeLXj2oLKqL5rLMy3AtevUgW+SLpmNeXWvRqweNk3r06kFlUV0UDp2ki2yRL7rGtD/6omtMe3ksKovqIlmki2yRL1qOshxlOaJX5wWaHr16UF0ki67frUevHuSL2qK+aFwUvTp/1R69elBd5Ocv3aPz5m/Zo/MOKovqIjl/yx6dd5At8kXt/C17dN5B46LovIPWL2jrF4zOO2j9grZ+QVu/YHTeQeGY6xGdFxSdd1A45lJF57XHJFk0Ha1OskXhmOsbnXdQXzQdbXqj8w4qi8Ixxz467yBdZIt8UVvUF42LYg/b5q8Ve9iD6iJZFI65fNG18xpcj649qC3qi8Ixxzm69qCyaDr6HI3o2oN0kS3yRW1RXzROGtG1B5VFdZEs0kW2yBe1RX3RcpTlKMtRliO6tuukcNgkW+SLot5zTEd0Y++TZJEuskXxb8ekuXzzUuSIbjxoXBT7xlEmxb+I/60t6ovGRdGNB5VFc6nGXKPoxoN0kS3yRW1RXzQuim48qCxajujGIZOi3hy/6LyD+qJxUXTeQWVRXSSLdJEtCscc++i8g/qicVF03kFlUV0ki3SRLVqOthxtOdpy9OXoy9GXoy9HX46+HH05+nL05ejLMZZjLMdYjrEcYznGcozlGMsxlmNcjvJ4PMACVlBABQ10sIEdxFawFWwFW8FWsBVsBVvBVrAVbBVbxVaxVWwVW8VWsVVsFVvFJtgEm2ATbIJNsAk2wSbYBJtiU2yKTbEpNsWm2BSbYlNshs2wGTbDZtgMm2EzbIbNsDk2x+bYHJtjc2yOzbE5NsfWsDVsDVvD1rA1bA1bw9awNWwdW8fWsXVsHVvH1rF1bB1bxzawDWwD20yR+ngEKmigTxyBT1udExKe2MFxYZlZcmEBKyigggY62MAOYivYCraCrUTdGhgVPHAsrA+wgBUUcC5vjWIzHy50sIHTViVwLJz5cOG0zdkaJaYH1Xm7rMQMoQvDFmIx0MEGhm1OKYk5QnXePysxTehCARWcdecdthJThqrEmM0kqBJrMZPgwrFwJsGF0yaxQjMJLhRQwbDFulkoYnktFLE4s/2rxuLM9q8af3e2/4UVFFBBAx2cNo2Bmu1/YnusTaMVsIICKsgW1RxsYAfHwo6tY+uxQrHyXUAFDXSwgR0cC8cDLCC2gW1gG9gGtuj5R/xY0fMnjgtj+lLVEVjACk7bnLhTYh7ThQY62MAOjoXR8ycWsILYCraCrWAr2Aq2gq1iq9gqtoqtYqvYKraKrWKr2ASbYBNsgk2wCTbBJtgEm2BTbIpNsSm2SA2rgQbGnuHA2OPMRq/HkcKBBayggAoa6GADO4jNsTk2x+bYHJtjc2yOzbE5toatYWvYGraGrWFr2Bq2hq1h69g6to6tY+vYOraOrWPr2Dq2gW1gG9gGtoFtYBvYBraBbSybPB5gASsooIIGOtjADmIr2Aq2gq1gK9gKtoKtYCvYCraKrWKr2Cq2iq1iq9gqtoqtYhNsgk2wCTbBJtgEm2ATbIJNsSk2xabYFJtiU2yKTbGRJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFkiZImQJUKWCFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWKFmiZImSJUqWxKy757FHYAUFVNBABxvYwbEwTmFOxObYHJtjc2yOzbE5NsfWsMXZzLy7U2J63oUCKhi2FuhgAzs4FsbZzIlh88AKChi2Hmiggw3s4FgYZzMnFnAW80eggw3s4LgwZuZdOIvN20wl5uZdKKCCBjrYwL4wzkXmswMl5tTVeZeuxKS6E+Ok4sQCVlDAWAYPNNDBBoatB4Ztnn3F/LoLp63FysdJxYkCKmiggw2cthZrHCcVB8ZJxYkFjBVqgWONTnTWsZrRWSc2kOEzhs8ZvuisY+Wjs04UkOGLzjpGJzrrGJLorBP7WrforAOjs05k+BrD1xi+xvBFZx0rH511YgMZvminY3T6Nbm3HLPbTuxgLNkMsZjgdmEBKyigggY62MAOLltMdbuwgBUUUEEDHWxgB7EVbAVbwVawFWwFW8FWsBVsBVvFVrFVbBVbxVaxVWwVW8VWsQk2wSbYBJtgE2yCTbAJNsGm2BSbYlNsik2xKTbFptgUm2EzbIbNsBk2w2bYDJthM2yOzbE5Nsfm2BybY3Nsjs2xNWwNW8PWsDVsDVvD1rA1bA1bx9axdWwdW8fWsXVsHVvHRpY4WeJkiZMlTpY4WeJkiZMlTpY4WeJkSSNLGlnSyJJGljSypJEljSxpZEkjSxpZ0siSRpY0sqSRJY0saWRJI0saWdLIkkaWNLKkkSXtyBIPFFDBWWzevy8xle7EiIoTC1hBAWexHsUiKk50sIFha4FjYUTFiWHrgWEbgQJO25yrUGJqXZ2TAUrMravzTn2JyXUXdnAsjKg4sYDTNixQQAUNdLCBHRwLIypOLCA2x+bYHFtExYjRiag4sYNjPkAbP/eMigsLWEEBFTTQwQZ2EFvH1rH1sMWidwEVNNDBBnYwbLHtjAc4bSVsMyouFFBBAx1sYAfHhTGb78ICVlBABQ10sIEdxFbCpoEFDJsFCqiggVHXA8fCeLb6xAJG3R4ooIIGOtjAaYsbijGp78SZGhcWsIICKmiggw3EJtgUm4YtxkErGLZYY1XQFlpUaIHxd2PdTEEDHYwlG4EdHAv9Ac4li/ubMcvvQgEVnDaJX372/IUN7OBYGD1/Ythi5aPnTxRQwbDFykfPn9jADo6F0fMnFrCCAiqIrWPr2KLn41QjJgCeGD1/YgGnLW7YxiTACxU00MEGTpvGqEfPB8ZcwAujWA2MfyaBHRwLo3lPnAupGlhBARWMhfRABxvYwfVzj/oAC7h+7pgTeKGCBoatBzawg9M233zwvGr1AAs4bXGDLuYOXqiggQ42sINjYbT0iQXEptgUm0bd+LGij+Ma04g+PtFABxvYwVicGPXo4xMLWMGwxZhFH885xiWmDV44bXHVJyYOXtjBsTD6+MQCVnDa4lJPzB+80EAHY4WOl37E343RiXaKKxgxr+/CCgqooIGhiJWPdjqxg+PEGvP7ZF74qDG/T+bVjhrz+y6ctnnZosb8vgsNdLCBHRwLowtbvLMkuvDECgoYKxSvPokemrOra8zOu1BABWPJ4m0ox+tHDmxgB8fC6KETwxYrHz104rT1WIvoln783QbOuj0GNbrlwOiWEwtYQQEVNNDBBmJTbIbNwhY/rFUwbLFC0Xon2sJopxGrGY0z4reIxjnRQAfnko34AaJxThwLo3FOnEs2YsyicU4UUEFb49sY9caoRw+dOBbGDvDEsFlgBQXUhdF6I4YvemjEkEQPndjBcWHMa7uwgHW+4eYRKKCCBvrEGtgmSmAHx8R4f8/soQsLWEEBFTQwbBbYwA6OhTUUJTD+brw6qHZwLJQHWMAKCqiggQ5iE2yCLV4B9Iih1gZ2cP7dEsM3++LCAlZQQAXnkh3vUZq7pAsb2MFpO161NHvowgJOW42RnJ2lNX7u2VkXTtvxjqbZWVrjB5idpccLm2ZnXTgWtgdYwAqGrQcqaKCDDezgWNgfYAEriK1j69jmoaWer5lqYAenTWKgZkNeWMAKTpvE8I2o64EN7OC4MGalXVjAWTfeRRWz0i5U0MBpi3dSxay0Czs4bfMgssasNJ3TDWvMSrswbCGOjj1RQQPDFm/Sit6ch4A15p9dWMAKzrrxdqyYf6bxfqyYf6YWazH3kBc2sIPTZrFC0d0nFrCCYYt1i5a2WN5oaYvFiZb2WJxoaT/+7lh4vN7rwAJWUEAFpy0OZ473gh0Y3R1HNjGn7EIF5z+Lg4aYU3ZhAzs4FkZ3n1jACgqoIDbH5tiiu+MIJOaUnRjdfWLYYt2iu08UMIrFukWbxtFKTA7THopo0xMFnAvZ4yeMNj3RwQZ2cCyMNj0xbLG80aYnCqhg2GIrieY9sYFhixWK5g2MyWEXFrCCAioYthHoYAM7GLa5ccXksAsLOG1xmBSTwy5UcNaN452Y8KVxOBMTvjQOMGLC14UCRoV4U1606YkONrCDY2G06Ylhi5WPNj1RQAXXbxETvi5s4PotYsLXicpvofwWym+h/BbKb6H8FspvofwWym9xvOEvBjXeTXliAevEEiigT4wfIF77d2IHo278mvGOyhMLGHXjZ4mXVZ6ooIEONrCDYYuRjDdYnljACoZNAqNCjFm8sPLAeGflibNCvAUypmtdKOBc3hJrHK+wPNHBBnZwLIw3Wp4YtliyeK/liQIqGKMzf8KYgmUlXtf4KGAFBVTQwLm88zpijSlYF3ZwLIw3wMZxVEzBurCC0xZHVzEFy+aFxhpTsC4MWw8MW6xFvBk2DjtiCtaJ8X7YEwtYQQGnLY5WYgrWhQ42sINjYbw99sQCVlBAbIJNsMUrZSWGJN4qe+JYGO+WlVj5eL3siRUUUEEDHZy2eWWvxhSsC6dNY3Siu08sYAVn3Tj8islWFzawg1E31iK6+8QCVlBABcMWix7dfWIDOzgWRnefWMAKCqggtoatYYskiAO4mGx1YiRBHKrFZKsLKzgrxPFZTJUyi3WLPj6xggLOJYtjuZhLdaGDDYwlO17GOi6MuVQXFnDa4hAw5lJdqKCBDjZw2uJ1rPG6sxOj508sYNgkUEAFDXSwgR0cC6PnTywgtoqtYouej0PWmKN1YQM7GLaZRjFH68ICVlBABcMWox49f2JbGC0dh8LxajOL633xbrMLHWzgXMi4nBfTtU6M5j2xgHMh4/A23nF2oYIG8nMbP3e09In83M7P7fzc0dInhk0DFTRw2uKwOeZzWRw2x3wui+t9MZ/rwlm3R91o3hOjboxkNO+JDjawg2NhNO+J0xZH0PGqswsFVNBABxvYwbEw2v9EbAPbwDawDWwD28A2sI1lixlhFxawggIqaKCDDewgtoKtYCvYCraCrWAr2Aq2gq1gq9gqtoqtYqvYKraKrWKr2Co2wSbYBJtgE2yCTbAJNsEm2BSbYlNsik2xKTbFptgUm2IzbIbNsBk2w2bYDJthM2yGzbE5tkiNOMeJGWEXKhi2GuhgA8M2AsfCyJITpy0ulMeMsAsFVNBABxvYwbEwsuREbB1bxxapEeemMcvLRoxD5MOJBaxgVLDAWF4PNNDBBsbyxkhGPgTGLK8LC1hBARU00MEGdhBbwRahEOe8MbXL4mJ9TO260EAHG9jBp8LjLDSmdl1YwAoKqKCBsWeYYxZTuy4sYAUFVNBAn3VrYAM7OBbGu8JPLGAFBVTQQGyKTbEpNsNm2AybYTNshs2wGTbDZtgcm2NzbI7NsTk2x+bYHJtja9gatoatYWvYGraGrWFr2Bq2jq1j69g6to6tY+vYOraOrWMb2Aa2gW1gG9gGtoFtYBvYxrLF1K4LC1hBARU00MEGdhBbwVawFWwFW8FWsBVsBVvBVrBVbBVbxXZEhQcqaGAUm3kWE7N8vgO+xsSsCxvYwbEwev7EuQxxsSgmZl0ooIJhk8CwaWADw2aBY2H0/IkFrKCACoYt1jh6/sQG9oXHBzxi+KJj47pRzLDyuP8WM6wuVNBABxs4FXHbLmZYnRitd2IBwxajE60Xl5tihtWFYYt1i9Y7sYEdHAuj9U4sYNhi5aP1TlTQwFDM0TlebxbvBqnHC84ulsSa2BJ74pa4Jx7w8dr/k5O3Jm9N3pq8NXlr8tbkrclbk1eSV5I3Hi+scYPueD3axfF34l7b8Yq0iyWxJrbEnjiWLa6uHa9Luzi8cQnkeGXaxeGVWIZ4bvliSRzeuCwTc6QWe+KWuCcesD8Sl8SH14IlsSa2xJ64Je6JBxxPMl9cEidvS96WvC15W/K25G3J25K3J29P3p688exUPHBWjxernRxPKF9cEtfEklgTW2JP3BIn71heOd62dnFJXBNLYk1siT1xS9zho3/ndiiP85MdBw+4PhKXxDVxLM+8wyvHW9IutsSe+FieR/CxPCV4wJLGQdI4SBoHSeMgaRwkjYOkcZDDK8E98YCPTDg5jY+m8dE0PpbGx9L4WBofS+NjaXwsjY+l8bE0PpbGx9L4eBofT+PjaXw8jY+n8fE0Pp7Gx9P4eBofT+PT0vi0ND4tjU9L49PT+PQ0Pj2NT0/j09P49DQ+PY1PT+PT0/j0ND4jjc9I4zPS+Iw0PiONz0jjM9L4jDQ+I43PYHzK45GY8SmPnpjxiblci0vimpjxKUUTW2JPzPiUwviUwviUyviUWhLXxJJYE1tiT8z4lNoTp/GRND6SxkfS+EgaH03jo2l8NI2PpvHRND6axkfT+GgaH03jo2l8LI2PpfGxND6WxsfS+FgaH0vjY2l8LI2PpfHxND6exsfT+Hgan5bGp6XxaWl8WhqflsanpfFpaXxaGp+Wxqel8elpfHoan57Gp6fx6Wl8ehqfnsanp/HpaXx6Gp+Rxmek8RlpfAbjUx+PxCVxTcz4HF9SvNgSe2LGpz4Yn/pgfGphfGopiWtiSayJLbEnZnxq6YkZn1ofiY/jnFjHo5dP1sSW+Di+inU8evnknnjARy9rjMOxjz65JpbEx9jGsh376JMdjlOwebtYju8entjBsTBOwY7ScQqmMfJxCnaigPOkSGMY4xTsRAcb2MGxME7BTixgBQXENrANbHGdY555yPGtw3nDWY6vHZ7oYANjySxwLIxrFycWsIIChs0DDXSwgR0cC+PaxYkFjNPWFhinrXMLOb5ueGIBKyigggY62MAOYosrGnMGqRzfPDyxggIqaKCDDezgWGjYDJthM2yGzbAZNsNm2AybY3Nsjs2xOTbH5tgcm2NzbA1bw9awNWwNW8PWsDVsDVvD1rF1bB1bx9axdWwdW8fWsXVsA9vANrANbAPbwDawDWwD21i2mPh0YQErKKCCBjrYwA5iK9gKtoKtYCvYCraCrWAr2Aq2iq1iq9gqtoqtYqvYKraKrWITbIJNsAk2wSbYBJtgE2yCjSxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLlCxRskTJEiVLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEjuyZB612ZElBxYwjoLi88eRJScqGDYPdLCBHRwLjyw5sIAVFFBBbIbNsBk2w+bYHJtjc2yOzbE5Nsfm2Bxbw9awNWwNW8PWsDVsDVvD1rB1bB1bx9axdWwdW8fWsXVsHdvANrANbAPbwDawDWwD28A2ls0fD7CAFRRQQQMdbGAHsRVsBVvBVrAVbAVbwVawFWwFW8VWsVVsFVvFVrFVbBVbxVaxHVnSAwtYQQEVNNDBBnZwLFRsik2xKTbFptgUm2JTbIotGkcPnH9hPkkmMenoxGiREwtYQQEVNNDBBmLr2Aa2wZIdp9UHNjAq1MBxYUw6ujCWVwIrKKCCBjrYwA6GbUZ8TDq6sIAVDJsHhq0FGuhgA8M2AsfC2Ozj6tMx/+jE+Xc9bLHRHhgb7YkFrKCAChroYAOxCTbFFtukx1rENjlnH8sxe8hjLWKbPHEWazGosU0eGPu3EwtYQQEVNHDaWixO7N/ml9LkmD3U4reI/VuLJYs9WYvFiT3ZiQoa6GAD+8LYZ81n8uSYEXSigAoa6GBbGK3XY1OOzuqxbtFZPdYtOuvEBs7F6bHG0VkHRmedWMAKCqiggQ42ENtYtmNqz4kFrKCAChroYAM7iK1gK9gKtoKtYCvYCraCrWAr2Cq2iq1iq9gqtoqtYqvYKraKTbAJNsEm2ASbYBNsgk2wCTbFptgUm2JTbIpNsSk2xabYDJthM2yGzbAZNsNm2AybYXNsjs2xOTbH5tgcm2NzbI6tYWvYGraGrWFr2Bq2hq1ha9g6to6tY+vYOraOrWPr2MiSTpZ0sqSTJZ0s6WRJJ0s6WdLJkk6WdLKkkyWDLBlkySBLBlkyyJJBlgyyZJAlgywZZMkgSwZZMsiSQZYMsmSQJYMsGWTJIEsGWTLIkkGWDLJkkCWDLBlkySBLBlkyyJJBlgyyZJAlgywZZMkgSwZZMsiSQZYMsmQcUeGBAipooIMN7OBYeETFgQXEZtgMm2EzbIbNsBk2x+bYHJtjc2yOzbE5Nsfm2Bq2hq1ha9gatoatYWvYGraGrWPr2Dq2jq1j69g6to6tY+vYBraBbWAb2Aa2gW1gG9gGtnHZ9PF4gAWsoIAKGuhgAzuIrWAr2Aq2gq1gK9gKtoKtYCvYKraKrWKr2Cq2iq1iq9gqtopNsAk2wSbYBJtgE2yCTbAJNsWm2BSbYlNsik2xKTbFptgMm2EzbIbNsBk2w2bYDJthc2yOzbE5Nsfm2BxbNPp8VEcfR6OPwCmeb5/QmJl1YjT6iQWsoIDxz9rE6NgTC1hBARU00MEGdnDZYjbVhQV8Fmvz7Qgar81q8z0IGrOtLuzgWDgb8sICVlBABcM2Ah2ctjl7XmOKVZvzzjVmWLUSSzYb8sICTtuc2q4xu+pCBQ10sIFhi2WoY+FsyFZjGWZDXlhBARU00MEGdnAsVGyKTbFp1I011qjggWOhPcACVlBABQ10sIHYDJtjc2wefze2qLljbRLjO3esFwqooIEONrCDY+HstwuxdWwdW8fWwxYL2R1sYAfHwvEACxi22KqHgNM255dofOLxQgcb2MFxYUyyurCAFRRQQQMdbGDYPHAsjD4+sYAVFFDBsLVAB6dtXlLUmFJ14VgYfXxiASsooILTNi8IakyrurCBHRwLo49PLGAFwxajE318ooEONrCDY2H08YkFrCA2xabYoqXnSyA03rZ1bLTxtq0LFTTQwQZ2cDVOvG3rwgJic2yOzbH5apx429aFHVyNE2/burCAFVyNU49QOJBNubEpNzbl1kEap9M4ncbpNE6ncTqN07F1bB1bx9ZpnEHjDBpn0DiDxhk0zhEKB9I4RygcSOOM1Tjxkq4LC1hBARU0cDVOzIG7sIOrcWIO3IUFrKCAa1OOOXAXOtjADq7GkfoAC1hBAbFVbBVbXT0kR6O3QAEVjAo90MEGdnAsPBr9wAJWUEAFsSk2xRY793n3QeVIgsDYuZ9YwAoKqKCBDjYQm2FzbJEEHttO9PwxZtHzJ3aQ0WmMTmN0GqPTGJ3G6DRGpzE6jdFp/BYNW8fWsXVGpzM6ndHpjE5ndDqj0xmdzugMRmfwWwxsA9vAFt0dIxkz2Nq8l6Qxg+3CCgqooIEONrCDc3nnHGeNGWwXFrCCAipooIMNDJsEjoXRxyeGzQIrKKCCBjrYwA6OhbFzPxGbYBNs0d3zNT4as9LavCOmMSvtwgJWUEAFDXSwgR3EZtgMW3Rsi98terPF8EVvnjgWRm+eWMAKCqigLYyGnG/I0Zgc1losQ7Rej80zWu/EuTg9fu5ovRPn4vQoFq03b4NpTA67sIICKhi2+C2i9XosTrTeiWGLJYvWOzBab8SSRevNV29ozMZqcVods7FOjK06zm5jLtWFBjrYwA6OhbFVn1jACmKr2Cq2udH2+U4KjalSFxawggIqaKCDDewgNsWm2DTqxvBpVJDAqBDDp2OhPcACxuLMzopZSD1O7WMW0oUONrCDY2F7gAWsoIDYGraGbW6TvcS6zW3ywgoKqKCBDjawLxxRLMZhCKiggQ42sIPjwphDdGEBKyigglGsBY6F5QEWMIr1wLmQ84l8jclAFzawg2PhbIYLC1hBARXEVrFVbNEM86F/jbk+Pa52xFyfCxU00MEGdnAsjGY4sYDYFJtii+23xlDHljrfFaDxrqEeVzviXUMXGuhgAzs4FsZGe2IBK4itY+vLFrNk+pznqDFL5sICVlBABQ2MheyBY+Hxyx846843cGq8j+dCARU00MEGdnAsjJw8EZtgE2yCTbAJNsEm2ASbYlNsik2xKTbFptgUm2JTbIbNsBk2w2bYDJthM2yGzbA5Nsfm2BybY3Nsjs2xOTbH1rA1bA1bw9awNWwNW8PWsDVsHVvH1rF1bB1bx9axdWwdW8c2sA1sA9vANrANbAPbwDawjWWLWT0XFrCCAipooIMN7CC2gq1gK9gKtoKtYCvYCraCrWCr2MiSTpZ0sqSTJZ0s6WRJJ0s6WdLJkk6WdLKkkyWdLOlkSSdLOlnSyZJOlnSypJMlnSzpZEknSzpZ0smSTpZ0sqSTJZ0s6WRJJ0s6WdLJkk6WdLKkkyWdLOlkSSdLOlnSyZJOlnSypB9ZYoEGOhiKFjgWHgFyYChGYAUFnIr5BKjGpJ0el+hi0k7XUERUHBhRERfYYtLOidGxcbEoZr70OXlUY+bLhRWMv9sCpziuNMTMlwvnusUJf8x8ubAvjGaIE+iYlnJiNMOJBayggAoa6GADsVVsgi226jg/jvklF3Yw/lmscWzVJxawggIqaKCDDewgNsNm2AybYTNshs2wGTbDZtgcW2zVHr9mbNUnCqiggQ42sINjYWzgJ2Jr2Bq2hq1ha9gatoatYevYOraOrWPr2Dq2jq1jiz1kXMGICSgnxh7yxAJOW1ziiAkovcXWF3vIEw30Ey2mj8QRqcX0kQsNjL+rgQ3s4FgY+7cTC1hBARU0EFvBVrAVbBVbxVaxVWwVW8VWsVVsFVvFJtgEm2ATbIJNsAk2wSbYBJtiU2yKTbEpNsWm2BSbYlNshs2wGTbDZtgMm2EzbIbNsDk2x+bYHJtjc2yOzbE5NsfWsDVsDVvD1rA1bA1bw9awNWwdW8fWsXVsHVvH1rF1bB1bxzawDWwD28A2sA1sA9vANrCNZYuJLRcWsIICKmiggw3sIDaypJAlhSwpZEkhSwpZUsiSQpYUsqSQJYUsKWRJIUsKWVLIkkKWFLKkkCWFLClkSSFLCllSyJJClhSypJAlhSwpZEkhSwpZUsiSQpYUsqSQJYUsKUeW9EAHGzgV8yq2xdSYCws4FfO18xZTY/q8oG0xNeZCAx2cinnp2mJqTO9hiwAZUTcC5MRpmy+FtvhSXR+x6BEgJ07biGIRICOKRYAcGPkw34tsMaPmXIbIhxNZ9JkE4xHi2fPjEes2e348Yhlmz19YQQEVNNDBtnDE3w3xMNDB+LuxmrNjLxwXxhyXCwtYQQEVNNDBBnYQW8FWsBVsBVvBVrAVbAVbwVawVWwVW8VWsVVsFVvFVrFVbBWbYBNsgk2wCTbBJtgEm2ATbIpNsSk2xabYFJtiU2yKTbEZNsNm2AybYTNshs2wGTbD5tgcm2NzbI7NsTk2x+bYHFvD1rA1bA1bw9awNWwNW8PWsHVsHVvH1rF1bB1bx9axdWwd28A2sA1sA9vANrANbGRJJUsqWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWSJkiZAlQpYIWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiZIlSpYoWaJkiR5Z0gIdbGAo5vmFHgFyYAHX2YE2BQ2cdeesCIvZQhd2cCyM1DixgBUUUEEDsXVsHVvHNrANbAPbwDawDWwD28A2sI1li1dJXVjACgqooIEONrCD2Aq2gq1gK9gKtoKtYCvYCraCrWKr2Cq2iq1iq9gqtoqtYqvYBJtgE2yCTbAJNsEm2ASbYFNsik2xKTbFptgUm2JTbIrNsBk2w2bYDJthM2yGzbAZNsfm2BybY3Nsjs2xOTbH5tgatoatYWvYGraGjSwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLjCwxssTIEiNLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLnCxxssTJEidLGlnSyJJGljSypJEljSxpZEkjSxpZ0siSRpY0sqSRJY0saWRJI0saWdLIkkaWNLKkkSWNLGlkSSNLGlnSyJJGljSypJEljSxpZEkjSxpZ0siSRpY0sqSRJY0saWRJO7LEJh5ZcmAB43D8EaiggQ42sINj4XEKc2ABK4jNsBk2w2bYDJthc2yOzbE5Nsfm2BybY3Nsjq1ha9gatoatYWvYuJ3SGraGrWHr2Dq2jq1j69g6to6tY+vYOraBbWAb2Aa2gW1gG9gGtoFtLFt/PMACVlBABQ10sIEdxFawFWwFW8FWsBVsBVvBVrAVbBVbxVaxVWwVW8VW153BYxLiiR2Mlp7n0v0IkAMLOOvW+LsRFSc62MAOjoURFScWsIICYlNsik2xKTbFZtgMm2EzbIbNsBk2w2bYov3nJHuLeYMXOhj/rAV2MBYyBjXa/8QCzoWcUxMtphBeqKCBDjawg2NhtP+JBcTWsXVsHVvH1rFF+8+v3Vm8DezEaP8TC1hBARU00MEGYhvLFnMiLyxgBQVU0EAHG9hBbAVbwVawRfvPj/hZvA3sQgMdDJsFhs0Dx8Jo/xMLGP+sBXZwLIw+ntNPLV7rdWEFBVTQQAcb2MGxULEpNsWm2BSbYlNsik2xKTbDZtgMm2EzbIbNsBk2w2bYHJtjc2yOzbE5Nsfm2BybY2vYGraGrWFr2Bq2hq1ha9gato6tY+vYOraOrWPr2Dq2jq1jG9gGtoFtYBvYBraBbWAb2MZl88fjARawggIqaKCDDewgtoKtYCvYCraCrWAr2Aq2gq1gq9gqtoqtYqvYKraKrWKr2Co2wSbYBJtgE2yCTbAJNsEm2BSbYlNsik2xKTbFptgUm2IzbIbNsBk2w2bYDJthM2yGzbE5Nsfm2BybY3Nsjs2xObaGrWFr2Bq2hq1ha9giS+a3qzwmbl44FkaAzIcYPGZrXijgVMxnHzxma17oYCha4FRYCRwLI0BOLGAFBVTQQAcbiG0sW8zWvLCAFRRQQQMdbGAHsRVsBVvBVrAVbAVbwRYBMl974jFb88KxMALkxLBpYNgsUEAFo65PjFCYD5R4zMC8sIICRoUROJd3vmLCYwbmmI94eMzAvLCDY2GEwokFrKCAChqILULBY+UjFE4cCyMUTixgBQVU0EAHsRk2wxah4PG7RSicWEEBFTTQwQZ2cCxs2Bq2CAWPjSBC4UQFDXSwgR0cC+MA48QCYosk8Ni4oufn8y0e7zQbHttO9PyJBaxgLG9sXNHzJxroYAM7OC485nueWMBpa4/AaZsPifgx3/PEaZsvlPdjvueJDZy2+Zp5P+Z7Hhg9f+K0zVnBfsz3PFFABQ10sIEdHAuj50/EVrFVbBVbxVaxVWwVW8Um2CIfegxf5MN8Q4cf8z1PVNBABxvYwbEw8uHEAmJTbIpNsSk2xabYFJthM2yGzbAZNsNm2AybYTNsjs2xOTbH5tgcm2NzbI7NsTVsDVvkw7xY5Md8zxNDERt4hMKJoWiBHRwLIxROLGAFQxHbThw0nGiggw3s4FgYAXJiASuILaKiR89HVJzYwXHhMZ1zvt3Fj+mcJ1ZQQAUNnLY5C9+P6ZwndnDa5tx8P6ZznljACgqooIG+sF4z9j1ma15YQQEVNNDBBnZwLBRsgk2wCTbBJtgEm2ATbIJNsSk2xabYFJtiU2yKTbEpNsNm2AybYTNshs2wGTbDZtgcm2NzbI7NsTk2x+bYHJtja9gatoatYWvYGraGrWFr2Bq2jq1j69g6to6tY+vYOraOrWMb2Aa2gW1gG9gGtoFtYBvYxrLFbM0LC1hBARU00MEGdhBbwVawFWwFW8FWsBVs5bph4DFb88KxsF43DPyYrXliBSOYLDAiqAU2MALv+LtjYXxm+jGfD/KYmLm4Boc7PjN9sSa2YA32xC1xTzxgfSQuiWviwxvrpJrYEnviwxtrq4e3Bw/YHolL4vj7853THpMtL45Pxl9cEtfEklgTW2JP3BInrydvS96WvC15W/K25G3J25K3JW9L3n5w/O59wOOR+FiG+N1HTSyJNbEl9sQtcU88Fsf8ycUlcU0siTWxJfbELXFPnLwleUvyluQtyVuStyRvSd6SvCV5S/LW5K3JW5O3Jm9N3pq8NXlr8tbkrckrySvJK8krySvJK8krySvJK8kryavJq8mryavJq8mryavJq8mryavJa8lryWvJa8lryWvJa8lryWvJa8nryevJ68nryevJ68nryevJ68nryduStyVvS96WvC15W/K25G3J25K3JW9P3p68PXl78vbk7cnbk7cnb0/enrwjeVNeWcorS3llKa8s5ZWlvLKUV5byylJeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWnvPKUV57yylNeecorT3nlKa885ZWfedWCJbEmPlwjuCXuicM1PyrhfmTUySVxTSyJNXGs43wZoPuRUSe3xD3x4Y1lODLq5JI4vHPug/uRUfOOvPuRUSdb4vBK1D8y6uSeeMBHRp1cEtfEklgTW+Lk7cnbk7cn70jekbxHRukjOLwaY3tk1MmW2BO3xD3xWNyOjDq5JK6JJbEmtsSeuCXuiZO3JG9J3pK8JXlL8pbkLclbkrckb0nemrw1eWvy1uQ9MipusbUjo04+vBrcEvfEAz4yan4l19uRUfN1+96OjDpZEmtiS+yJW+Lwxu2ndmTUwXERph9YQQEVNNDBBnZwLDzenXEgNsNm2AybYTNshs2wGTbH5tgcm2NzbI7NsTk2x+bYGraGrWFr2Bq2hq1ha9gatoatY+vYOraOrWPr2Dq2jq1j69gGtoFtYBvYBraBbWAb2Aa2sWzHiypPLGAFBVTQQAcb2EFsBVvBVrAVbAVbwVawFWwFW8FWsVVscUE3rtIcL6o8UUG7rtL0Y5L5gQ0MWw0cC+OC7olHkhx8JIYGW2JP3BL3xAM+jmpOLolrYkmcvJq8mryavJq8mryWvJa8lryWvJa8x5FJ3CTvx5HJycff92BNfCxnC/bEx3LG4B9HJicP+DgyiXvo/TgyObkmlsSa2BJ74pY4vHFfuB9HJgcfRyYnl8SHN7ao48gkbu3248jkZEvs8HEUEfd/+3EUcbInPpYtxuc4ijh5LB7HUcTJJXFNLIk1sSX2xC1xT5y8JXlL8pbkLclbkrckb0nekrwleUvy1uStyVuTtyZvTd6avDV5a/LW5K3JK8krySvJK8krySvJK8krySvJK8mryavJq8mryavJq8mryavJq8mryWvJa8lryWvJa8lryWvJa8lryWvJ68nryevJ68nryevJ68nryevJ68nbkrclb0velrwteVvytuRtyduStyVvT96evD15e/L25O3J25O3J29P3p68I3lH8o7kHck7knck70jelFcj5dUgr9qDvGoP8qo9yKv2IK/ag7xqD/KqPcir9iCv2oO8ao9H8pbkLclbkrckb0nekrwleUvyluQtyVuTtyZvTd6avDV5a/LW5K3JW5O3Jq8krySvJK8krySvJK8krySvJK8kryavJu+RV3PSUHsceXWyJg7X/BBOexwZdXJPHK75msH2ODLq5JL4cFmwJNbEltgTt8Q98YCPjDq5JE7eI6PmFKf2OLKoxTgcWTSnB7XHkUUnD/jIopNL4ppYEmtiSxzeOf+oPY4sOrknHvCRRSeXxDWxJNbEljh5e/L25O3JO5J3JO9I3pG8I3lH8o7kHck7knfgLY9H4pK4JpbEmtgSe+KWuCdO3pK8JXlL8pbkLclbkrckb0nekrwleWvy1uStyVuTtyZvTd6avDV5a/LW5JXkleSV5JXkleSV5JXkleSV5JXk1eTV5NXk1eTV5NXk1eTV5NXk1eS15LXkteS15LXkteS15LXkteS15PXk9eT15PXk9eT15PXk9eT15PXkbcnbkrclb0velrwteVNelZRXJeVVSXlVUl6VlFcl5VVJeVVSXpWUVyXlVUl5VVJelZRXJeVVSXlVUl6VlFcl5VVJeVVSXpWUVyXlVUl5VVNe1ZRXNeVVTXlVU17VlFc15VVNeVVTXtWUVzXlVU15VVNe1ZRXNeVVTXlVU17VlFc15VVNeVVTXtWUVzXlVT3zSoM1sSU+XBbcEw/4zKiDS+KaWBJrYkt8rGMLbol74gGfGXVwSVwTS2JNbImTV5NXk1eT15LXkteS15LXkteS15LXkteS15LXk9eT15PXk9eT15PXk9eT15PXk7clb0velrwteVvytuRtyduStyVvS96evD15e/L25O3J25O3J29P3p68PXlH8o7kHck7knck70jekbwjeUfyDrzyeCQuiWtiSayJLbEnbol74uQtyVuStyRvSd6SvCV5S/KW5C3JW5K3Jm9N3pq8NXlr8tbkrclbk7cmb01eSV5JXkleSV5JXknelFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLySlFeS8kpSXknKK0l5JSmvJOWVpLzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015pSmvNOWVprzSlFea8kpTXmnKK015dc6Ono/ctHN29MmSeLrKfF1OO2ZEl/nm2HbMiL64Jx5wZNTFJXFNLIk1sSVO3pa8LXlb8vbk7cnbj/oSPODxSFwSH8tpwZJYE1tiT9wS98Rj8TFr+uKSuCaWxJrYEnvi2Abm90faOWv65AGXw+vBJXFNfHiPv6+JLbEnbol74gHXR+KSuCZO3pq8NXlr8tbkrclbk1eSV5JXkleSV5JXkleSV5JXkleSV5NXk1eTV5NXk1eTV5NXk1eTV5PXkteS15LXktcO7wi2xJEtQ4LnLIf5FeUWk6MvLGAUn48ntGNq9MWa2BJ74lipUoN74gEfYXJySVwTS2JNbIk9cfK25G3J25O3J29P3p68PXl78vbk7cnbk7cn70jekbwjeUfyjuQdyTuSdyTvSN6B95gafXFJXBNLYk1siT1xS9wTJ29J3pK8JXlL8pbkLclbkrckb0nekrw1eWvy1uStyVuTtyZvTd6avDV5a/JK8krySvJK8krySvJK8krySvJK8mryavJq8h4hM6cut2NKc5mfqm/HtOTnbYXgnnjA/kh81O/BR/0RLIljveZH5NsxLfliT9wS98QDPvLh5PDOr9G3Y1ryxZJYEx9jOA+KjqnFpcY4HD1+siTWxMcyx/gcPT7fcteOqcUXH8t81B/w0eMnl8Q1sSQ+vDGeR4/XGMOjxyXW/ejxOQ27HdOGy3z3WjumDV8siTVx1JzvX2vH9ODnrZbJR4/Ml7G143vwjwMdPKwe3BMP+NjiTy6Ja2JJrImPmi34qDlHoR1b88klcU0siTXxsbYj2BO3xD3xgI+uOLkkromj5pwg3trROSf3xFFT49c6OufkkrgmlsSa2BI7fHSFxq97dMXJNfFRM371oytOtsSeuCXuiQd87DVPPmrGlnR0y8me+KgZ29LRLScP+OiWk0vimlgSH97Yfo5u0dh+jm45uSXuicfifuwRTz68PbgmlsSa2BJ74pa4w8ceLsakF01siX2tYy8tcU/MuPX6SFwS18Syxqofe7hjfasl9sQtcU+cxu3o92O9JI2bpHGTNG6Sxk3SuEkaN0njdvS4juCoMyfct2Pa68WW2BNHnTkRvx3TXi8e8NHjJ5fENfHhrcGa2BJ74pa4Jx7wkQPzHVTtmD5bLH73IwdOlsSa2BJ74sMbv/WxBz15wEdWnFwS18SSWBM3fosjE45xPjLh4CMTTi6J03gee9mTNbEl9sTpd+xpPHsazyM3Ti6Ja+L0O470Ox65cfwWI43nkRsn98Rj8TH19uKSmPE8pt5erIktsSduiXtifsdjim2Z06bbMcX24qP+CLbEnrgl7okHfOTJfGNYO6bYXlwTS2JNbIk9cYOPfJjTptsxNbZ4jNuxr/dYx2Nff3JNfHg9+PDGuh85cPLh7cEtcU884CMHTi6Ja+LDG+Nz5MDJltgTN9br6OuY4nZMXb1YE1tiT9wSx/LH9LJj6urJR1+fXBIf3lj+o697jP/R1ydbYk/cEvfEAz76/eSSuCZO3p68PXmPfo9b9cfU1Yt74gEf/X5ySVwTH94Yh6PfTz68sf0c/R6XQY+pq9f/3hOHd748qB9TVy8uiWtiSayJLbHD0cu1erAk1sSW2BO3xD3xgKOXLy6Jk7cmb03e2KdXieWMnr04/v48i+jHtNGLLXEs5zyj6Me00Yt74gFH719cEtfEklgTW+Lk1eTV5LWjTqyjHX+/BbfEPfGA/VjOHlwS18SSOJZzngv0eJnpYk/cEodXYwyjx0+OHr+4JK6JJfHh1WBL7Ilb4sMbY9IG3B+JS+KaWBIf3hirbok9cUt8eEfwgMcjcUlcE0vi8FqMYfT4xZ64JQ7vPK7ox5TQg48poReHdx4b9GNK6MUCH7059/v9mFJZ5764H1MqL5bEmtgSe+JjOXtwTzxgeSQO73yEqR9TKqvH8h99enJ45/63H1MqL/bELXFPPOCjT08+vDEOR5+eLIk18bGO8/c6pjDWeRWpH1MYTz766+SSuCaWxJrYEnviljh5PXmPHikx/sc2X2Jsj22+xDIf2/zJklgTH1kdv8WxzZ/cEvfEAz62+ZOPrI7f7tjma4z5sc3XGM9jm6+x7R3b/MmeOOrPFzD1Y/rgxSVxTSyJNbEl9sSxXvM2Qz+mD9Z5a6Ef0wfrvPrfj+mDdb60qB/TBy+uiSWxJrbEnrgl7okHXJO3Jm9N3pq8NXlr8tbkrclbk7cmrySvJK8krySvJK8k79Gb84ptP6YSnnz02rx6249pf3Veve3HtL/z32paNk3LZmnZLC2bpWWztGyWls3SslkaE0teS15LXk9eT15PXk9eT15PXk9eT15PXk/elrwteY/95jGex37z5M7Ynv0eY9vTsvW0bD0tW0/L1tOy9bRsPS3bSMs20rKNNCYjeUfyjuQdyTuSdyTvwHtM0bu4JK6JJbEmtsSemO3zmKJ38tnXEtzWeErqWUk9K6lnJfWspJ6V1LOSelZSz0rqWUk9K6lnJfWspJ6V1LOSelZSz0rqWUk9K5K8krySvJK8mrzH/vQYN62JG2N49myMYepZST0rqWcl9ayknpXUs5J6VlLPSupZST0rqWcl9ayknpXUs5J6VlLPSupZST0rqWcl9ay05G3JexzrHmN17seDz/14jNvZszFuqWcl9ayknpXUs5J6VlLPSupZST0rqWcl9ayknpXUs5J6VlLPSupZTT2rqWc19aymntXUs5p6Vh/sUzT1rBb2KVrYp2jaz2rqWU09q6lnNfWspp7V1LOaelZTz2rqWU09q6lnNfWspp7V1LOaelZTz2rqWU09q6lnNe1nVcixY4rYOT5Kjmnaz2raz2raz2raz2rqWU09q6lnNfWspp7V1LOaelZTz2rqWU09q6lnNfWspp7V1LOaelY9jYmnMWlpTFoak5aWraVl62nZelq2npYt7Wc17Wc19aymntXUs5p6VlPPaupZTT2rqWc19aymntXUszpS7wzGxB70jj3oHXuwbPboiVk2S8fGlo6NLR0bWzo2tnRsbOnY2NKxsaWetdSzlnrWUs9a6llLPWupZ62SsVbJWBMy1oSMtdRflvrL0j7R0j7R0j7R0j7RNC2bpmXTtGyaxkSTV5M3HRtb6llLPWupZ83YF5vVxOyLzdkXW+ovS/1lqb8s9Zel/rK0T7S0T7S0T7S0T7S0T7S0T7S0T7SWvC15W/K2tA03+to6fW2dvrbUX5b6y1J/WeovS/1lqb8s9Zel/rK0T7S0T7S0T7S0T/S0T/S0T/QHv5c/JDHH9l44tvfUX576y1N/eeovT/3lqb889Zen/vLUX576y1N/edonetoneiVzvPJ7uZA5LmSOp/7y1F+e+stTf3nqL0/95am/PPWXp/7y1F+e+stTf/nZX7HMZ38dbCz/uf+K5U/7L0/7L0/95am/PPWXp/7y1F+e+stTf3nqL0/95Y3e93Se6I3e907ve9p/edp/edp/edp/edp/edp/eeovT/3lqb889ZePtGwjbeeD7bw92M5bOj5s6fiwpePDls7pWtp/tbT/amn/1dL+q6X9VyssWyuSOC1bTcuWeqGlXmipF1o6Pmzp+LCl48OWjg9bOj5swm/aJC2b8Js25TdtqRda6oWWeqGlXmipF1rqhZZ6oaVeaKkXWuqFlnqhpV5oqRda6oWWeqGlXmipF5qTIS0dy7VGhrRGhrSWlj8dy7V0LNfSsVxLx3Ktp7Ht6Xfv6Xcf6XdP+4WW9gst7Rda2i+0dNzVBvus/mCf1R/ss3rabnvabnvabnth2+hpu+2FbaNXto2eMryn7banY6SejpF6Okbq6Ripp2Oknq719XQO0tO1vp6u9XXNfyeNg6VxOO4pj4OPe47xb497yif3xAM+7imffNzrtODjnqYHW2JP3BL3xEf9ed34nCtycklcE0tiTWyJPfHh7cE98YCPe8cnl8SHawRrYkvsiVvinngsPueHnFwSH9fbH8GSWBNbYk/cEvfEY43zMT+kzo9G9GN+SJ2Px/RjHsjFRx0J7okHfBzDzA8/9GMeyMU1saS/r4ktsSdO3pq8NXmPrD6W/8jqY5mPfjk51ZRUU1LN45jnWE5N66JpXY7+Ov6+pnXRtC6a1kWTV5NXk/fI9mP5j/OIY5mPc/yTU01LNS3VPM7xj+W0tC6e1uXYLxx/39O6eFoXT+viyevJ68nr6bc4jotOTq6WXMd5xyO2veO842RL7Ilb4p54wMf+Zc497jGfxCVaZ0bChQoa+PR43EqPqSSu8SvMNLhwLJxZ4Bo/x4yCCysooIIGOtjADo4TR8weubCAFRRQQQMdbGAHsRVsJepKYPxdDRwL6wMsYCyZBQqooIEONjBsHjgWygMsYAUFVDBs/l//9U9/+tu//euf//2v//b3f/n3f/zlL3/65/9c/8P//dM//7f//NP/+fM//vL3f//TP//9P/72t3/60//nz3/7j/hL//f//Pnv8ee///kfz//3uYn85e//8/nns+D/+uvf/jLpv/6Jf/14/U/LIz4KGv/8yaOuEmP8UqO8rqFzik1UeF5OXP/ef/339fW/F7tWQFpf//55i/r+Sjzvra6VeF4ve7USulkImRMBjqV4XkGmQr9bocTHMI+FeGYTFfyXCr5Zhjrf6Hssw/MO06rQ9G6FNmeARYFefP37552NXwr0zUp4G9dKtLQIH0uM1yVqvM0mSjwP5B4vS5TNL1pjGspRo6bf82ONzc8xnwA6S8xHNdiuavt1MTZbZjGa43np6dUPMg9R3/xNdyvSVn/MefOvV8R2HdKuGvM5H2qMensx4tnJczGkvV6MthmM7ldUPO9Q6cvx3G6go60NtI6XJbZLMVarP/fU3/hJnufaV5fMU8CXY1E3qTlfpXvWmG8tpYb9uhj1/e2zvr997tZkvszx2jJK9ddrYu+vif+xa1Ln82rHmtS8jX9ck90G2kpdG2ijhv26I6mbBB3l6pLn0R4L0cb9CmPtih7FXpaQsotgJYKNxdBfjy2kbvfLaygeVl4vxmb7tL5q2POSOYtRfh1P2bTr8+r61a7PC+qP1zU2G2jVa/us3lIF+96GMV5vGNvt08raPl1fb5+7Grayaz6o+7KG7Hbx8SnIo9UeKi93J9vlcNbleWn65XJoeXtnsF8MZTG6f29I20PWoUZ9PaSqbx5Eq717FL1fjeZrNfrrPdJux9gf1zb+vBRmL3eM2t8+SNDx9naxX4p3DxKe136uhXheUnk9FrY7NdK6flXVXOPXDcPk7R2S6bs7pG2Fezsk87d3SNbe3yFZf3+HZOP9HZI/3t0h3d4wXu+Qbm+f5q+3z7o98zZq9Jc1XN9elV0JaU0J0Pby9N3fP3n29v7Zs/f3z563v0rjekhXffmrtMd237pODNzz4fSvO6VW3k6vVt9Nr22Fe+nV9O30avZ+ejV/P71aez+9Wn83vW5vGK9bfr999nXs10p9vX1uajyviqxLbvJ4vKzRN5tXtTWgz84tLw+nt8uhspZD0w/723Lo22fQu9jQ+DTWcRz7aK8PWLq/ffS2X4yVxPq8Ivx6Md4/ke9vn8j390/kx/sn8uMHTuTHD5zIjx84kR9vn8j390/k99unOttn+9Zxk8aLrs4a8vq4aYz3L8g+Hm+3634x3j7Zauv8eeRm/e3q9GO3iba1P3huaf1lhpbH7lDU14l4af46zLdL4nXdvHheo9ktyfsXRPcLIuum1vNOaNssSH97QbZbyFgn00/s3yshlNDXN3NK2YbHtaFWTRftv1TDHmXt7eX1z7K7q6Terhrq/fHN4agMx+sbKbvbSlpXDa32OsbiFXsvx6O1a+uo+bLThzgtu1s6N/fVZXdn6d7Oel/i3t463vz35u667K7k3d1fl93Npbs77LK7vXR3jx0vJXxvl31/AxmbDWS7oa4LFc8NVb5Zw647TM9QHN+r0fuqMdIpx8cauxtEbusyg9vQb9awcafGfl3W3rKO+npd5O3z+32Jm417f1Veb2K7u0zjcf2yIx1JfWz9fST3ayNVeZTXkSzt/Zvs2wXh8reKPDb7hl2Rvs5qdVT5ZpEh16g+T7Rfn5OW7a2mZhzVvc6gXYmbVxjjTZTvXmIsu3tNt2fo7O433b3IuP1pLF6se/w0z8bY/DTt/YOybY2bB2Xbu07PcwZ2u881S5vJh5/Ydldy+roNN+cMb4rsNlettPCzFfX1nnd3jll9HQM87zezLF9aEmssiaX++31JdqdVdR0lFnno6w68vyxedsuyLeMrUSaP75bp62LZk12+X8YoM+q3y4hQxjZbzO621PNKxBrh5ynG936n20eNXt8+atyWWJcl6nZVttttT9vtpsg+Wco6d50HKI/XobC9P6Wytjd77I6kd5Et5VohE6mvI9u3VwRW7ktNue9fKrHOX2s6Bf5SibHuXkq63vOhxO4uhJZ1A/R5EW68KrEdUGUfqLY5xmmyC+oV9098vSqyTbXK1sFutJp9oYitqTDPHUv9ZhGtgyKyKbK9kdpW5z15+Msx2RdZO+NZpH3rB27rmM1G2RwJ98duQ3OOptOIlA8lyts78+1S6NraU6b+vhS7HzcN6ZNTrvqXivjaRB79dYLsi/R02jfSQcVXRmStjD12v8t2VkrjcOJ50+xlinxS5Oawtp8Y1vYDw7rtmaF9XXfencbuiri5cIHim6eg3leM+Cj6zSKtp8nem53m7s7VzX3NrsTdU9DRfuAUdPQfOAXdXcL+kVPQ9nis50Qem+OZeAjy9dUBfXDXR+urbT6emHy9JKv55rfONkuym8/P0yLyywzMDzds6vYeVurg8Xg9r/axvRC1juG1tvbyiLVub2HxoIX0dIT2e5HtBiusjmt5fT5Rt3exnAm2+eRofGVJypoR9eT2+oyv7p6OGr6GdnjxzepsN1lZ95DK/D7qd2K6MUtsfvPk9Sa7fUSKG9lS0jHjbxPj704A3Dx1sVuZm49dbEvcu45cd7cqbt4AqtunpG7eAIrTsHdvANXd7ay7p/K1lndP5e9vILunL7Yb6prrJcXlmzVkbezPdf5eDVs3kcTS1eiv1dDxdo2WItHHN2vouiufD30/1viBm1n1B25m7del1zWTuWt7v4Z9c/vwxqyezbrI9hBgPdRXhu4SZDdNoaxj5+d+0l4viL//4+5rvP/jatz5v+Y6PF4vx+46Xrxp/xjUmkLoa4NaV9c9T8dfD+ruVpQyS7NtflvdTRB/MGerlM2RjG6fPl0LItX7psjudpasUwmrrw/MtuPBFRp9vB6Pz04BajoFeHVFsu5uQ907xdseY/7IIbP5Whfzzc2juruRdfN32Z6IDK4Ejs38xO25N0fL3jbPqNTdszJ1jUeteTi+cllkcPX9MbR/79rKMA7shr/cQnYPUt28jvDJclRJKzO+d/3t7sqM91dGfmBlPrknaOnWout378K1xzqF0GabA2b/gWlX1d+edrUvcfMG2n5guYP2HJ3Nnmb3XJVzedRfXx39pMS6PuP59SpfKdHrmtfbX25on5Ro68pob9+646Syflm1xyYRW337UmJtPzCbpbYfmM1S2w/MZtk+TpRe1NLa5tLb9o7Tvdmwtf3AKyja+++gaO8/u1L7+w+v1P4DT6/U/gOPr9T+A8+vxBy+N2O5/cCrKPYb6q3ZsJ/UuDUbdl/j3mzYuNX/7jnmvsa9c8z9utyaDVt3z1ndfXmMvN+491dl8xqczYHqrdmw20QeTKUreUf3MZF3t6pc+zpysHRLVLx8KLLLQnlc3TIk3Xv/WER2T1o976Ve+4bnXZnHpshuFuqqIWn7eO7qP5TYzwpkskkakS8VkcFV/3zM/XuR3VtTynqv2fOMO19Q+cqCrPsgT3y9INunb0thQ8svxLGPK9Pevusmu5tUd++6yWO8fwlByvaljL7OzJ4s7eXeTnZPS9m6AGC/zLP8+CKr+u51iP1Pc+86xP5B8bIe0K6bh823L6W59xTcvsStp+CkvD/hel/j3oRrKT8y4VrqD0y4lvojE66lvj3h+pMluTvhWuoPTLj+wrLsJlx/UubuhOtPytydcP1pmXsTrj8rc3PCtcgPTLjeLsvtFtg9RHX7NXu79/3dO7vZl7h10Wm7Kl/o5t19p5vdvF+S290suzO+m9PQPylyMxLur9A2EvZlbkfCvsztSPiszM1I+KTM3UjYPZp1OxLKjzxzILs7WnefOfjkmOXOo+qi4+3Lldsa8xMj1/lXsddvYv5sw715o+CTMndvFIj9wI0CsbdvFOxL/ERm371RIPb2jYJPSty5UbAvcetGwScl7two+Oy46+62Wn/kppb8xE0tef+mlrx/U+uzgb27rb5/U0vev6kl79/Ukvdvau1GdAgXC+WR33+mX6ghXKSz1+8Clibvnxxva9w8Od6+LfB50WXteZ//ZbOJ7V4YOD8XQJnaNkc2u8vBtj7QYXVz4Pj+KwPvLoWUTYnteAjTfEp+N9Nv49F/4oSr/8QJV3//hKv/zNnS9sbWvbOl/jNnS9vpLXdPdPrPnOj0nznR6T9zotN/5kSn/8yJzu5G1e0Tnf7+5YL+M8f0/WeO6ccPvJ9Vxvtpuy3xIwN78zhJd/e87h0nfVLiznHSvsSt46RPStw6pt/vwJTz+mdGlc2Q7iYR8mKeXOLxlQOUst4k8MTqmwXp719g2B/4rXlII98V/f1bFLvprvdm7mh5/23XWt5+Hda+xL0JAFref+G1lh9447WWH3jltZYfyFQtb2fq/Q1kbDaQ7YZ6a+bOJzVuzdzZ17g3c0e37xe8N3Pnkxq3Zu58si63Zu7o7gNWNxt3W+Ju495eldeb2Pb7U3dm7mwT2dajdsM236LZ1vB1Jj689W/WGGvKTXvY6z2DvP+Aq8r7D7iqvP2A677EzQ1M3n/AVeUHHnBV+YEHXOOtJ2/vGfTtB1zvbyCbPYO8/4DrJzVuPeC6r3HvAddPatx6wHVf494Drp/UuPWAq+r7D7h+UuPeXk7ef8D1fg375vZx7wFXtR94wHW7IDcfcFV7/wHXT2q8/+PefMBV7QcecN0vyL0HXJ+X1DY1bj3gqv4DD7iq/8ADrupvP+C6H497D7hu3ynOhyOfbJtjod2dnrePDJ9uZ16C7c7Wfbel3ptsq23/TrZK97+eIKHb7xjxDKTJ6x93uxw3J/3q9lmsfM1bbbMk253dvZnDurswdPfh422R+6/a0d0do2Ec/+dg/eKy3H0Bke6ep7r3AqJ9iXRM9Ho2tfbyh5a4mWfbEut9arX7ZizsB7bV/hPb6u6DV3eH1N8fUn97SPsfPaRf6NxRfqBz+8907pC3O3db4t42sn353/slbm5m2xI3O3e7vxvpGwebzWyMH9jfbY8i7j0Xst9Qb77N7X4Red0ytv3+1c0ws90jWfe2sm2Je1vZvsTNraz9wO9yu8j2dxk/8LvsLuve/F3K2y90sU8uLt/4XbZfKadEq+P1x9Zte3Pq3r06296cuvld7fL2Jf99iZtf1t7emLr5ae39fPGb39bePYp1++Pa9Qe+HmD17a8H3N9ANt+J3G+ot+7VfVLj1r26fY179+qstrcvdH1S49aFrk/W5da9Ots9dXWzcbcl7jbu7VV5vYntLre9fUWmCW9QFnk99dZ2N5ZuXo+x3eNWpnzoSXfpIT/w6jPb3Z66uafcDsi9Q8v9D+P8MP76Qtlu4sPNR473JW49cmz6/qzqfY17s6pt+2jV7UeOTTdb6t3pv7Z/tOrutFvbPV11b9rtJ0tyd9qt7V4YeHfa7ReWZTft9pMyd6fdflLm7rTbT8vcm3b7WZmb025td7fp7rTb7bLcbgHrP3Cot7tpdfNQb1vi1lTX7ap8oZv97RcIfLIkt7vZf+DLV58UuRkJ91doGwn7MrcjYV/mdiR8VuZmJHxS5m4kbO9i3Y6E7c717iPHtv981M3PnO2PWe48cmy7GwyNQ9qWD84/Pi68LdLLmjTeyy9fB/tYZLc2tz639lmJG59b+6TEnc+t2f4rWHfe9rofUL6y0ncPcdvuuYSby9Hff3+m7d4nePf9mbZ97Orm+zNte/Po5vsz9z+N8Ioksbr5afquyDrp6e6P7xW5+y08G9uLWetxjzSLpX48K96+VHC9mNjTuflvJbarcvOLfJ+Mx70v8tnYvqj13hf5Pity64t8n2xoN7eR/Qsf12/j8s2fd12Tz8+MfbHEuqam/rrEdj811v3W/pDXieiP9z9uva/Bp7gkH83/VmM7jYXrSJIe8v0YRP74gVcK++MHXin82THnzScLPylz98lCf/zA6ZY/3j7d2pf4idOtu08W+u5JqXtPFn5S4s6ThfsSt54s/KTEnScLP7tkcndb3Ze5va2Wn9hWy/vbanl/W/1kYO9uq/X9bbW+v63W97fV+va2ursL/eCuWnnkb3r22yXKYx2GFCnfKfG8wr92ECXPp60ff9Tx/j6zvv9uLJfy/qmI717hdHu/u33938397vbH7auEyOvtw+XmXKkcP/criKyzENH0ytjxcSm2X7C+8eGa3Rn3WN83LuXl8eW9AvV7Bfqaum7ynQL3zsPePgt7+1Th7ROFt08TtmG1tsXnJpXejSS/vr7Ytzuy1uu6gtp6enlOEf1CmV7WhYInV9uU2X066M4rDD5Zn7HeCFj6I90N/G1BbPth9sH71MerC2P+yVdybl2w2Be5eangkyW5d6nAzd6/VPBZkVuXCj7Z1h7r+b0ne9n8xP3dy6eflLhz+dT97cunn7aw0XvWXo/H9uEqW80nlmfffui+3bNV9/p3uxS6dg2Su+a3GtuJK8bpyvP+yW5AthdQV+89MX2Ywes3i6QDhjeKtO8W4di2pnmvvxXZzfP+ZcJGnnv/GB+K7C4qjXXKIqOXTZG6PYkb6ywufd/hi0U4MB15etLXiihL4o+fKGKbIrtfx9d3UWrLb+/5rchutlVbT2lYz/e8v/ITq7f1PEAr8s0ijzXRSR8yvjkmtja2amMzJrtnm7SvGXnay/jmwPLOCcunUl8ssk4urbRvLsnzRvm16/N8CvDVMVlh31t/XeR+KG2Srb//9grv2+mB69Z9lXQ08PuCbA5fm41rSFqeqPjhVrmP7UMB60BaNB++fjhWG/ur9sIVCH1dY/eet+eGtnai5ZGfHPcvDKtyuU51t+e6vz/Pr4H9uD/fPmx18wBnvPuOtf1S3DzA2b3Gr3R/rA/5dE8zRH4fkN3muk6ie/5Q0/i1f9tje9mO7049um6KbE9ymDZj7eVs1Lb9ZBRTm573mNrrGtuVGVzryt8m+21lti99UX6bpqn7/EOR3XlSWecmz0uZj82S7OYE3pu/3X7kK0v+AzW2l/+cI+DtgDy2+wmK5NPGj0W2r3vjykBpdXxvbeqaDvXc73x3bZQDG+2b/i37d6/fmcS9r3FvEnf7iTcCtp94I2B7/42An8XzWFt8z5feP8Zz2z159dzkuYD/PGR7dcWl1e2FrDuTTz9ZDl3P9z15vJqsth+TUdbnFp+svhmTXbryPviS5yPVD4/XtGrvj8l2OdZXDov018vxyZjUtfd8ch+bMdmUMVm3aJ6HNY9Nkd2V18e6MPc8AN1ssdsPXzVNF6I46xvlQ439VwNufZaz7e5a3f0sZ9u+0urWZznb7g1wdz/LuS1y97Ocbfcg1s3Pcn6yIDc/y7nd0IqyoY2y2dDG+xva7i2Btze03VsCb29oWt/e0LYPUt3d0HZFbm9ouxnjdze0/YL8xIbG3d7nUfgm0XZPYlld8xrsl0fbP+wrtq/5a+sSv7e84/OvrMw6a9T80MVvK2Pl/ZWx+gevjKzrNZrf8/G1HZaslwVqfoXL13aduqZHmekmjHbPXulYd3Kfd9blu0XWJbknfrOI8cD/E79dZD3A/MS6ubSwPbSR9d7SyeO7ZTQdNWqR75axdf128reXxgtlvG+OYXcPUN2b/LAtcW/6w3Zl6qNoZ/pA7ZuV2V0gkLLuORSpj1dz2Jq//bzrJ8tR+XSBVHl52aVtXyGwLt2MkubW+FeGtdo6G35I3RyO724HPU+WeKZ55NcZyHeXRWUTCE3fvmLZ2vbGvxqzB3RsWqftb4S2mu7Jju+WKeuzU/Ou7GYX1PYzCG48w/VZiRuTED4pcWcSQtveyrk1CeErQyr2/V+Gezllt0v+pMw6y3jy5o5B2748794P/EmJOz/wvsS9H7j/0T9wHlL37//AaS6Dt+/tin+NNqubINjd5FJfl070eXvhZbTtXgP41PPGl4c/6k+skUvdrNH2EZc1N7P+8oj3xzV69ybXJ0tx645s2w/IsHQ7pu4GZLx9tLUrce9oa78yaYf+7IDy+mir7+5yPS+YiKarqK/mz31WJF12LNq/V6RyhDLyb/zdg6Xy3GY2o+Jv39jtuxtdt7b5/VLcO0zq26eonscinRt/5fXur+9e6ffzR4/leVK6WZb3pxX28u60wv1S3PxxyvamrBV+HNuc6ffdra7nMcVIhyYpT8Y3i6STjK8VaY80XWxXZLz922wPCTgRrb/Mpf/Kugi/jchmVOvbb2r5ZDnWFaXnTd72zZX5Zc7adzcRX684ft7J3AxrffdQYDuloq8M+fUqUP2wELurdC7cHPbXDzps35PKeePzbubr5ZA/usjNp8P67vbW3Seq+/ahrJtPdvXtDa4feLKLD5Q8S+hmVHevXL3zxsTtRiZlNa7kL0f8vhj93cWQ7ba+LkFZfp/R83f+tYg+3t/b6faVresCrj9+udQpXyjCzaDnpdOyKSLvnoV/VuLGWfgnJe6chXf1d8/C724e/us1248D2n9g89ieE1k6KdosyO7tgq2sOyet6K7I7pWa9ybddtseHt6adNtNtsF+Z9Jt334B6+6k20+Gdd1Leh7W6Td/myoU+eVY92tF1m9T8xy1LxZZW0kd9rrI3caRUl8X8cfbF1f69rNPt46X90tx6+JK3z2o5bKez3ge6G52M9u7UD9R5O5jkn33GMG9h3E/KXHncdz9qtx8WPOT8bj3sGbfPvRy82HNz4rcelhzf+zeB3Myy+awavf6wB8pcvfAe/vZqLsH3ttL4HcPvFt7/8B7f8xbVwPLr9MPP47rux8W3i8GM7FEVL93kvi8Ic+V0fQA3cefd/sOwVvZvF0VXdeKpe1OZvr2YyvM/pdfznfLhyK7eVh1HdI8lynt8PQrRbzzGF/6xsDvRd5+1eUnJW4dfPfx9sH3djQaU9taPv//OBrbZ7Pujca+xK3RGPLHjkZf3314nk/oZjTs/dGw90ejvT0a28bv6xG1X76h+6UM0+Jrbmx9+DeLKPc0rXyziD3WtX97tG+ujvV14G7dNrvtH3ib0tg+k3Vztz0eP/BS1vH4gZey7se1GA8Sd3k5ruPR/8jddnpptj1+Obn7sBi7W1W3FmNb4e4GUn7gguooP3BBdZQfuKC6PY5p64pIfiPc78uxe2jv5svDRmk/MSL9D24ZrWuWoqq/jqKx/RTWekWt/zIb4cPGunscS3qa6//Lm1rGhyLvHqZ+shiDN3DobjF28wJ9XTNLXwRt/f5iKA+4qeQJ6b8thr97bXe/HLo+aaD2y12qj8ux28SMb6R7+WaRu1dDhrz9arJPSty5GrJflZtXQz4Zj3tXQ4b8wFuuPyty62rINkF65wNjv9xAfNyv8bwuvCah1/z5gY9FdpdDf6TI3T2vPn5gz7u7zXR7P7N7Cuvufmb74/B9wfbLG/k+jKrqu0dE261szad4Xt/bLMTuVhXndunVLr9l+24k1o2M3jbbl26fo+Y9byPNXm8ft6/dk4I3nwsYtn0uoK5vCxZ7NS9kvy5DeAlCemD447rY9qGAxtduHs3Gy3XZF1k59uSXLx3+rMiaofJMkpcn7p8USS+oeIyHfmdcKxlUHynZfxvX3bMjj8LjpI/iOYXKl8qkeC9jfL/M2mIfNT3z9MUyvGTiyf762dSxu11VuKv5RH6i+dD7F4qs5zlLfmjjtyKfrJCnFWrfHl5ZF3ueLPXbZdKPLekO+O/D6394medWwquvvW5+pf21CSb4p9fwfK2I8qpC3W4v20l0vKFdH5slkf3r1tZ77PKb0maA/1Jk+xzWvXfojN2Np+elvLUzrS2/U+RDRm0fwmpr//G81Ng3RewPLvLMx/Vxkie316++Hz/xLfdPlkX4fVzLY1Nmd41xnbnlJ4k/fht2uyR3v1E7ds9h3ftG7X6Dvfeypc+yja9GPPIs1t9CaXcb6+aJ+b7EnWv7o7896eqz8VB2gmK+2WVsj3dG2iOPl89dfFYkz+33lys0Hu+PyX45qqSV+d5Nk7GOZ/XXVwJ9iOjdrazn0RLvAskzpuqHttl9w0o696F6fvxe6/0i2h7cLc1P/v5W5P3LWdvl6Gtev/b0es/fl6P/scvB+0Q0n8t+XI7ngeXjD10Qe+QvHuhuQTab/PMi1vXz2i9z2b9U5e4Vvk+q3Ly49tmy3Lu69qzi719e+7TKvetr2zYe3IXNn0b/f/xE7z7Sss2k/NpTzxOWfsuk7Tt91nHW82xHXxZ5njDWP7rKzUt980z6/Wt980Oz71/sm2fyP3C1b/sLVS4+1By0v4/tu3di55ftd0d9nBrno74Pb6N7njZv3962gra0dJ7ye5HdC7HKulLW84OH4ys10mWh9IDc/6PI9re5NUv2WUS31xw42MqzOn5flN25wc2XW84rHJtbMjffblnilbyvk+nO6y2/sKGMzYay22QrU8Pne1lfF9neprJ1ndpt6DeXpDiP7JXdktTt3b916LfbTuQHLhTM85H3T/LnmcwfXeX+tYJnnR+4WPDZ0ty9WjAvxb17ueCTGuserfySCB9r6NuXCz7ZbtcdeNPHZrvdNpDw2Yl8ze9rXai8+MVS1P5WZPvywZtduLv1JY918VFK2W2xup2xyjdOaq/frrJW6Fmw76qM97eT7cje2k72E0YfLZ3tb6bPbosUfuLSXs9Ifu6u336hwCeTmu88UfjJTOBbJd5+u9B+QMe6yWq/vGTl9wHtP3FubD8w++WTKrfPje0HZp6Uh9efODf+pMq9J3G2TxXoWG9I6Jrnr5UvFOnrM63PU8LxsshzffyPrnL7nHT36sH756Q+fuKctD3ePyf95Gde91o/vKTg49i2+vY56e6rLfd/nl0RV94EXH23pdj2OvPajf76htavVFFf57bqv0ya/FqVdeSn/st7a79UhU+wqucT7d9/5f1rtG99q2Rf5ea3isuj/8DHip9V6k/0Yf+BzxV/9hOtt2w9rwbW7/7QPGev6rsG2N0Eu/8T/UTe9h/J2/4jeTsef/jv3PgOWttG1PZzW7dbcftYV1tfUrKH77a57VX0tl6897wvZi9nTsx7kW9PnSiP7asIb18S2T3fdf9ixvb1z1+4fDB+4PLBflluX1gpu09v3b+wst94hQleTXp5vfF+0gI1tcCr05nnGum797b3o/sz28vdKSGl7F5MePfkfduK9yaF7F8nppK+5JfPzb7yTjJC7lmkvixSStl+3nDd7ZA85/OLVYpznWfz2rlPqnCaKCrfft9b4Qtav7xi9LdFsTeP2T/5eXirYP667/9jOXaf4eJk1V/PL/6sxrp85vkZti/V6OsAzPvLCSqf1VjXrJ64qbHd0AYX8R7f31zXRdZnQdtUqW+/S+vTGjcuOn1W487ErlLq2zO7PhlVrls9x+Pbv01lf1Ht27GWl+WNKlxbqU2+XWVdLHr+Pt9flvUg6jtVZM14E/Fvr5F01qi/ztjP3nrc8hfbXr4Sfvs6ad6c9svafOWN1Lee8PukxJ0n/D75XMY623je9n/55Y/29pM1+2+h3BuLfYlbY7H/ag4f4fvllctf+/SOcy2+tW8W4VkAK1q/W2Rl67PId78kxFdsbftNwe13npTvPOVn0b5fpNdvFrF1/UPzV9O/uCTrYOBZT7+7JMr9K/3uwJpRxL/7FS5bZwXPJdn9OttXnq1Phzw32Hxo8/FEyd6eOPtZjXuHJfb+tzZuD4g+NgOye0/gzc+9PYvs3uB693tv+1f8resm+Rrm7x9t3RZZb5Iu+UvFXywy0g3G7cDq+yc4+xr3TnC2NW6e4Oxr3DnB+eT7wMZzDW728tJlaY/32+aTBSlpQV737/6RL17z9eTNdw+edbZ3EbzxXvu2+Rzfs87uhl55pG/BM7gfvnX6SZEH30/PH2f6vcjuJdt1FXke+75+SvZZZfdc3nqlnI08LfNLS3Lz263PKts3F977eGspffuy7Ttfb33W2H+l+9bnW/dV7n6/tZS+fTXcrQ+4frYo977g+mkL8SGEz1poW6cJn41ruquzm/Rz81XTzyLbV0Teetf0s8j+rWh3XjZdyti/SeTe26Y/S93CbRGrr1L37ezfLgN3DjwtwccHhvdfuWff4fqtEp03K/R0+vaVEoMrsI90M/ELJSonkU/83li0da3kGX3fW5HO44FdvrUipa75FiV/4+YrJSQdND6+V0LXFdPniXD9XgmOj1TH90qs08aSJ2B+LPFspPe/zb3b2aWXfknLUyfH/RJr6orkl359u0T/Vgl9cN8m38r9QglbO5UnyvdKcA/K/HsrwiMQYt2+VYLPGovrt36R5x2J9PZlf1ni2dPb12srb6Xylyeb2+XoXJ8d3/pZ64OvYj1Sk3ypxLqSXx/i3yzBvFFpb5fQ7y7FOm56WPleCWMs8kT4by5F/1aj3fxyQ6m757je/hjWzUfSat2/BufeI2l1+169R8yjO8uUMl7Pcai763+dQ54+pG6qyHbvZtxW0fzFs9/mSsRTY6/zo/Gur0eecWHfXhov26XZ1qmDOrKbAVK3bx689VW6z5bFeXWY5g9LfXWdeOnvk13eqMMlzj7q9+uIUMe2Y7x9TRz7DRnyzS1nsOGM53hvumH/5a2bD3rW7esM7z3oua/Ba5i+PSZfWBv7gbWxP3ZtVDVN6u27tek/sDb9/49r88uS9C/tS4rwuqBij812v32lTDpNskf7dnq7pfR2/XaytAd3LZrttlyzn9j+zd/fYrY1fmCLeY4oLyd8jtAu/228fQvlkxq3bqHsa9y7hfJJjZe3UP7787/8+V//+o9/+du//euf//2v//b3//v8d/81S/3jr3/+H3/7y/lf/9d//P1f0//77//f/3P9P//jH3/929/++r//5f/849/+9S//8z/+8ZdZaf5/f3qc//HfZM4nEW/lv//Tn8rzvz+vatd/Gg/T53+X+f/PJwjkeVl5/v8l/sHz9sfzP/S//9dcwv8f",
5707
5715
  "is_unconstrained": true,
5708
5716
  "name": "sync_state"
5709
5717
  },
@@ -5990,5 +5998,5 @@
5990
5998
  }
5991
5999
  },
5992
6000
  "transpiled": true,
5993
- "aztec_version": "0.0.1-commit.993d240"
6001
+ "aztec_version": "0.0.1-commit.b9865e97"
5994
6002
  }