npm - @zkasm/zkevm-rom - Versions diffs - 0.0.1-security → 6.0.1 - Mend

@zkasm/zkevm-rom 0.0.1-security → 6.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of @zkasm/zkevm-rom might be problematic. Click here for more details.

Files changed (232) hide show

package/.eslintrc.js +33 -0
package/.github/CODEOWNERS +14 -0
package/.github/ISSUE_TEMPLATE/bug.yml +38 -0
package/.github/ISSUE_TEMPLATE/feature.yml +26 -0
package/.github/ISSUE_TEMPLATE/question.yml +26 -0
package/.github/workflows/main.yaml +40 -0
package/LICENSE +636 -0
package/README.md +23 -5
package/audits/Hexens_Polygon_zkEVM_PUBLIC_27.02.23.pdf +0 -0
package/audits/Polygon-zkEVM-Public-v1.1-verichains-19-03-2024.pdf +0 -0
package/audits/zkEVM-ROM-upgrade-1-Spearbit-30-May.pdf +0 -0
package/audits/zkEVM-ROM-upgrade-2-Spearbit-21-August.pdf +0 -0
package/audits/zkEVM-engagement-1-Spearbit-27-March.pdf +0 -0
package/audits/zkEVM-engagement-2-Spearbit-27-March.pdf +0 -0
package/audits/zkEVM-engagement-3-Spearbit-6-April.pdf +0 -0
package/counters/README.md +45 -0
package/counters/counters-executor.js +80 -0
package/counters/countersConstants.zkasm +370 -0
package/counters/endIncludes.zkasm +18 -0
package/counters/initIncludes.zkasm +2 -0
package/counters/tests/MLOAD32.zkasm +27 -0
package/counters/tests/MLOADX.zkasm +30 -0
package/counters/tests/MSTORE32.zkasm +32 -0
package/counters/tests/MSTOREX.zkasm +36 -0
package/counters/tests/SHLarith.zkasm +28 -0
package/counters/tests/SHLarithBit.zkasm +28 -0
package/counters/tests/SHRarith.zkasm +28 -0
package/counters/tests/SHRarithBit.zkasm +28 -0
package/counters/tests/abs.zkasm +29 -0
package/counters/tests/addBatchHashByteByByte.zkasm +31 -0
package/counters/tests/computeGasSendCall.zkasm +30 -0
package/counters/tests/divArith.zkasm +27 -0
package/counters/tests/expAD.zkasm +30 -0
package/counters/tests/getLenBits.zkasm +30 -0
package/counters/tests/getLenBytes.zkasm +32 -0
package/counters/tests/isEmptyAccount.zkasm +30 -0
package/counters/tests/mulARITH.zkasm +28 -0
package/counters/tests/offsetUtil.zkasm +29 -0
package/counters/tests/opADDMOD.zkasm +28 -0
package/counters/tests/opAdd.zkasm +27 -0
package/counters/tests/opBLOCKHASH.zkasm +28 -0
package/counters/tests/opCALL.zkasm +41 -0
package/counters/tests/opCALLCODE.zkasm +41 -0
package/counters/tests/opCALLDATACOPY.zkasm +28 -0
package/counters/tests/opCALLDATALOAD.zkasm +27 -0
package/counters/tests/opCODECOPY.zkasm +28 -0
package/counters/tests/opCREATE.zkasm +35 -0
package/counters/tests/opCREATE2.zkasm +35 -0
package/counters/tests/opDELEGATECALL.zkasm +35 -0
package/counters/tests/opDIV.zkasm +27 -0
package/counters/tests/opEXP.zkasm +29 -0
package/counters/tests/opEXTCODECOPY.zkasm +29 -0
package/counters/tests/opMOD.zkasm +27 -0
package/counters/tests/opMUL.zkasm +27 -0
package/counters/tests/opMULMOD.zkasm +28 -0
package/counters/tests/opRETURN.zkasm +32 -0
package/counters/tests/opRETURNDATACOPY.zkasm +29 -0
package/counters/tests/opREVERT.zkasm +32 -0
package/counters/tests/opSDIV.zkasm +28 -0
package/counters/tests/opSHA3.zkasm +28 -0
package/counters/tests/opSIGNEXTEND.zkasm +27 -0
package/counters/tests/opSMOD.zkasm +28 -0
package/counters/tests/opSTATICCALL.zkasm +35 -0
package/counters/tests/opSUB.zkasm +27 -0
package/counters/tests/saveMem.zkasm +31 -0
package/docs/opcode-cost-zk-counters.md +315 -0
package/docs/usage-ecrecover.md +51 -0
package/index.js +43 -0
package/main/block-info.zkasm +204 -0
package/main/constants.zkasm +145 -0
package/main/ecrecover/addFpEc.zkasm +31 -0
package/main/ecrecover/checkSqrtFpEc.zkasm +1558 -0
package/main/ecrecover/constEc.zkasm +13 -0
package/main/ecrecover/ecrecover.zkasm +280 -0
package/main/ecrecover/invFnEc.zkasm +44 -0
package/main/ecrecover/invFpEc.zkasm +45 -0
package/main/ecrecover/mulFnEc.zkasm +36 -0
package/main/ecrecover/mulFpEc.zkasm +36 -0
package/main/ecrecover/mulPointEc.zkasm +311 -0
package/main/ecrecover/sqFpEc.zkasm +38 -0
package/main/ecrecover/sqrtFpEc.zkasm +70 -0
package/main/end.zkasm +4 -0
package/main/l2-tx-hash.zkasm +159 -0
package/main/load-change-l2-block-utils.zkasm +11 -0
package/main/load-change-l2-block.zkasm +28 -0
package/main/load-tx-rlp-utils.zkasm +72 -0
package/main/load-tx-rlp.zkasm +431 -0
package/main/main.zkasm +237 -0
package/main/map-opcodes.zkasm +274 -0
package/main/modexp/array_lib/array_add_AGTB.zkasm +123 -0
package/main/modexp/array_lib/array_add_short.zkasm +85 -0
package/main/modexp/array_lib/array_div.zkasm +215 -0
package/main/modexp/array_lib/array_div_long.zkasm +284 -0
package/main/modexp/array_lib/array_div_short.zkasm +222 -0
package/main/modexp/array_lib/array_mul.zkasm +97 -0
package/main/modexp/array_lib/array_mul_long.zkasm +156 -0
package/main/modexp/array_lib/array_mul_short.zkasm +127 -0
package/main/modexp/array_lib/array_square.zkasm +246 -0
package/main/modexp/array_lib/unused/array_add.zkasm +100 -0
package/main/modexp/array_lib/unused/array_is_odd.zkasm +23 -0
package/main/modexp/array_lib/unused/array_is_one.zkasm +33 -0
package/main/modexp/array_lib/unused/array_is_zero.zkasm +34 -0
package/main/modexp/array_lib/unused/array_sub_AGTB.zkasm +111 -0
package/main/modexp/array_lib/unused/array_unshift.zkasm +37 -0
package/main/modexp/array_lib/utils/array_compare.zkasm +82 -0
package/main/modexp/array_lib/utils/array_trim.zkasm +49 -0
package/main/modexp/constants.zkasm +5 -0
package/main/modexp/modexp.zkasm +296 -0
package/main/modexp/modexp_utils.zkasm +230 -0
package/main/opcodes/arithmetic.zkasm +357 -0
package/main/opcodes/block.zkasm +163 -0
package/main/opcodes/calldata-returndata-code.zkasm +619 -0
package/main/opcodes/comparison.zkasm +446 -0
package/main/opcodes/context-information.zkasm +169 -0
package/main/opcodes/create-terminate-context.zkasm +1011 -0
package/main/opcodes/crypto.zkasm +96 -0
package/main/opcodes/flow-control.zkasm +126 -0
package/main/opcodes/logs.zkasm +193 -0
package/main/opcodes/stack-operations.zkasm +658 -0
package/main/opcodes/storage-memory.zkasm +313 -0
package/main/pairings/BN254/addPointBN254.zkasm +245 -0
package/main/pairings/BN254/ecAdd.zkasm +312 -0
package/main/pairings/BN254/ecMul.zkasm +159 -0
package/main/pairings/BN254/escalarMulBN254.zkasm +155 -0
package/main/pairings/BN254/lineDiffPointsBN254.zkasm +83 -0
package/main/pairings/BN254/lineSamePointsBN254.zkasm +96 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/compressFp12BN254.zkasm +49 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/decompressFp12BN254.zkasm +236 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/expByXCompCycloFp12BN254.zkasm +444 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/squareCompCycloFp12BN254.zkasm +212 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/squareCycloFp12BN254.zkasm +228 -0
package/main/pairings/FP12BN254/CYCLOFP12BN254/xBinDecompBN254.zkasm +64 -0
package/main/pairings/FP12BN254/frob2Fp12BN254.zkasm +80 -0
package/main/pairings/FP12BN254/frob3Fp12BN254.zkasm +96 -0
package/main/pairings/FP12BN254/frobFp12BN254.zkasm +96 -0
package/main/pairings/FP12BN254/inverseFp12BN254.zkasm +289 -0
package/main/pairings/FP12BN254/mulFp12BN254.zkasm +408 -0
package/main/pairings/FP12BN254/sparseMulAFp12BN254.zkasm +296 -0
package/main/pairings/FP12BN254/sparseMulBFp12BN254.zkasm +291 -0
package/main/pairings/FP12BN254/squareFp12BN254.zkasm +376 -0
package/main/pairings/FP2BN254/addFp2BN254.zkasm +19 -0
package/main/pairings/FP2BN254/escalarMulFp2BN254.zkasm +20 -0
package/main/pairings/FP2BN254/invFp2BN254.zkasm +66 -0
package/main/pairings/FP2BN254/mulFp2BN254.zkasm +19 -0
package/main/pairings/FP2BN254/squareFp2BN254.zkasm +21 -0
package/main/pairings/FP2BN254/subFp2BN254.zkasm +19 -0
package/main/pairings/FP4BN254/squareFp4BN254.zkasm +76 -0
package/main/pairings/FP6BN254/addFp6BN254.zkasm +59 -0
package/main/pairings/FP6BN254/escalarMulFp6BN254.zkasm +51 -0
package/main/pairings/FP6BN254/inverseFp6BN254.zkasm +208 -0
package/main/pairings/FP6BN254/mulFp6BN254.zkasm +201 -0
package/main/pairings/FP6BN254/sparseMulAFp6BN254.zkasm +65 -0
package/main/pairings/FP6BN254/sparseMulBFp6BN254.zkasm +134 -0
package/main/pairings/FP6BN254/sparseMulCFp6BN254.zkasm +128 -0
package/main/pairings/FP6BN254/squareFp6BN254.zkasm +147 -0
package/main/pairings/FP6BN254/subFp6BN254.zkasm +59 -0
package/main/pairings/FPBN254/addFpBN254.zkasm +29 -0
package/main/pairings/FPBN254/invFpBN254.zkasm +55 -0
package/main/pairings/FPBN254/mulFpBN254.zkasm +29 -0
package/main/pairings/FPBN254/reduceFpBN254.zkasm +25 -0
package/main/pairings/FPBN254/squareFpBN254.zkasm +31 -0
package/main/pairings/FPBN254/subFpBN254.zkasm +36 -0
package/main/pairings/FRBN254/reduceFrBN254.zkasm +25 -0
package/main/pairings/constants.zkasm +62 -0
package/main/pairings/ecPairing.zkasm +244 -0
package/main/pairings/finalExpBN254.zkasm +2095 -0
package/main/pairings/halfPairingBN254.zkasm +428 -0
package/main/pairings/loopLengthBN254.zkasm +75 -0
package/main/pairings/millerLoopBN254.zkasm +741 -0
package/main/pairings/pairingBN254.zkasm +481 -0
package/main/pairings/unused/addFp12BN254.zkasm +130 -0
package/main/pairings/unused/expByXCycloFp12BN254.zkasm +411 -0
package/main/pairings/unused/expFp12BN254.zkasm +333 -0
package/main/pairings/unused/subFp12BN254.zkasm +130 -0
package/main/pairings/unused/xPseudoBinDecompBN254.zkasm +68 -0
package/main/pairings/utilsTests/expCycloFp12BN254.zkasm +334 -0
package/main/precompiled/end.zkasm +42 -0
package/main/precompiled/identity.zkasm +99 -0
package/main/precompiled/pre-ecAdd.zkasm +84 -0
package/main/precompiled/pre-ecMul.zkasm +82 -0
package/main/precompiled/pre-ecPairing.zkasm +72 -0
package/main/precompiled/pre-ecrecover.zkasm +71 -0
package/main/precompiled/pre-modexp.zkasm +367 -0
package/main/precompiled/pre-sha2-256.zkasm +125 -0
package/main/precompiled/revert-precompiled.zkasm +25 -0
package/main/precompiled/selector.zkasm +77 -0
package/main/process-change-l2-block.zkasm +147 -0
package/main/process-tx.zkasm +587 -0
package/main/tables/2-exp.zkasm +260 -0
package/main/touched.zkasm +118 -0
package/main/utils.zkasm +2335 -0
package/main/vars.zkasm +117 -0
package/package.json +62 -3
package/test/bytes-length.zkasm +39 -0
package/test/ecrecover.zkasm +538 -0
package/test/lt4-test.zkasm +38 -0
package/test/mstorex.zkasm +191 -0
package/test/opcalldatacopy.ignore.zkasm +331 -0
package/test/performance/read-push.zkasm +71 -0
package/test/read-push.zkasm +304 -0
package/test/testArrayArith.zkasm +1099 -0
package/test/testArrayUtils.zkasm +335 -0
package/test/testCycloFp12ArithBN254.zkasm +548 -0
package/test/testEcAdd.zkasm +252 -0
package/test/testEcMul.zkasm +231 -0
package/test/testEcPairing.zkasm +436 -0
package/test/testFinalExpBn254.zkasm +139 -0
package/test/testFp12ArithBN254.zkasm +692 -0
package/test/testFp2ArithBN254.zkasm +185 -0
package/test/testFp4ArithBN254.zkasm +128 -0
package/test/testFp6ArithBN254.zkasm +260 -0
package/test/testFpArithBN254.zkasm +159 -0
package/test/testFrArithBN254.zkasm +113 -0
package/test/testHalfPairingBN254.zkasm +285 -0
package/test/testModExp.zkasm +586 -0
package/test/testModExpReturn.zkasm +81 -0
package/test/testPairingBN254.zkasm +463 -0
package/test/testPointArithBN254.zkasm +270 -0
package/test/testSHA256.zkasm +27 -0
package/test/touched-assert.zkasm +59 -0
package/test/utils-expAD.zkasm +48 -0
package/test/utils-getLenBytes.zkasm +36 -0
package/tools/audit-tools/registry-op-checker.js +71 -0
package/tools/get-not-used-labels.js +31 -0
package/tools/helpers/helpers.js +47 -0
package/tools/modexp-utils/README.md +5 -0
package/tools/modexp-utils/modexp-test-gen.js +168 -0
package/tools/modexp-utils/modexp-test-int.sage +37 -0
package/tools/parallel-testing/checker.sh +6 -0
package/tools/parallel-testing/gen-parallel-tests.js +78 -0
package/tools/parallel-testing/parallel-tests-sample/sample.test.js +136 -0
package/tools/run-tests-zkasm.js +83 -0

package/test/testEcAdd.zkasm ADDED Viewed

@@ -0,0 +1,252 @@
+; constants needed by executor C++
+CONST %N = 2**19
+CONST %MAX_CNT_STEPS_LIMIT = %N
+CONST %MAX_CNT_ARITH_LIMIT = %N
+CONST %MAX_CNT_BINARY_LIMIT = %N
+CONST %MAX_CNT_MEM_ALIGN_LIMIT = %N
+CONST %MAX_CNT_KECCAK_F_LIMIT = %N
+CONST %MAX_CNT_PADDING_PG_LIMIT = %N
+CONST %MAX_CNT_POSEIDON_G_LIMIT = %N
+CONSTL %BN254_P = 21888242871839275222246405745257275088696311157297823662689037894645226208583n
+CONSTL %BN254_P_MINUS_ONE = 21888242871839275222246405745257275088696311157297823662689037894645226208582n
+CONSTL %BN254_E_B = 3n
+VAR GLOBAL lastHashKId
+VAR GLOBAL lastHashPId
+VAR GLOBAL initial_A
+VAR GLOBAL initial_B
+VAR GLOBAL initial_C
+VAR GLOBAL initial_D
+VAR GLOBAL initial_E
+VAR GLOBAL initial_CTX
+VAR GLOBAL initial_SP
+VAR GLOBAL initial_PC
+VAR GLOBAL initial_GAS
+VAR GLOBAL initial_SR
+VAR GLOBAL initial_RR
+VAR GLOBAL initial_HASHPOS
+VAR GLOBAL initial_RCX
+start:
+        STEP => A
+        0 :ASSERT
+        A           :MSTORE(initial_A)
+        B           :MSTORE(initial_B)
+        C           :MSTORE(initial_C)
+        D           :MSTORE(initial_D)
+        E           :MSTORE(initial_E)
+        CTX         :MSTORE(initial_CTX)
+        SP          :MSTORE(initial_SP)
+        PC          :MSTORE(initial_PC)
+        GAS         :MSTORE(initial_GAS)
+        SR          :MSTORE(initial_SR)
+        RR          :MSTORE(initial_RR)
+        HASHPOS     :MSTORE(initial_HASHPOS)
+        RCX         :MSTORE(initial_RCX)
+        0 => A,B,C,D,E,CTX, SP, PC, GAS, SR, RR, HASHPOS, RCX
+        -1          :MSTORE(lastHashKId)
+        -1          :MSTORE(lastHashPId)
+        ; 1] 0 + 0 = 0
+        0n                                                                              :MSTORE(ecAdd_P1_x)
+        0n                                                                              :MSTORE(ecAdd_P1_y)
+        0n                                                                              :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        0n                                                                              :MLOAD(ecAdd_P3_x)
+        0n                                                                              :MLOAD(ecAdd_P3_y)
+        ; 2] 0 + P = P
+        0n                                                                              :MSTORE(ecAdd_P1_x)
+        0n                                                                              :MSTORE(ecAdd_P1_y)
+        1n                                                                              :MSTORE(ecAdd_P2_x)
+        2n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        1n                                                                              :MLOAD(ecAdd_P3_x)
+        2n                                                                              :MLOAD(ecAdd_P3_y)
+        ; 3] P + 0 = P
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        2n                                                                              :MSTORE(ecAdd_P1_y)
+        0n                                                                              :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        1n                                                                              :MLOAD(ecAdd_P3_x)
+        2n                                                                              :MLOAD(ecAdd_P3_y)
+        ; 4] P1 not in range
+        21888242871839275222246405745257275088696311157297823662689037894645226208584n  :MSTORE(ecAdd_P1_x)
+        2n                                                                              :MSTORE(ecAdd_P1_y)
+        3n                                                                              :MSTORE(ecAdd_P2_x)
+        3n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        1 => A
+        1                                                                               :EQ
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        21888242871839275222246405745257275088696311157297823662689037894645226208585n  :MSTORE(ecAdd_P1_y)
+        3n                                                                              :MSTORE(ecAdd_P2_x)
+        3n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        2 => A
+        1                                                                               :EQ
+        ; 5] P2 not in range
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        2n                                                                              :MSTORE(ecAdd_P1_y)
+        21888242871839275222246405745257275088696311157297823662689037894645226208583n  :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        3 => A
+        1                                                                               :EQ
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        2n                                                                              :MSTORE(ecAdd_P1_y)
+        0n                                                                              :MSTORE(ecAdd_P2_x)
+        21888242871839275222246405745257275088696311157297823662689037894645226208583n  :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        4 => A
+        1                                                                               :EQ
+        ; 6] P1 not in E
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        0n                                                                              :MSTORE(ecAdd_P1_y)
+        0n                                                                              :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        5 => A
+        1                                                                               :EQ
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        0n                                                                              :MSTORE(ecAdd_P1_y)
+        1n                                                                              :MSTORE(ecAdd_P2_x)
+        2n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        5 => A
+        1                                                                               :EQ
+        ; 7] P2 not in E
+        0n                                                                              :MSTORE(ecAdd_P1_x)
+        0n                                                                              :MSTORE(ecAdd_P1_y)
+        1n                                                                              :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        6 => A
+        1                                                                               :EQ
+        1n                                                                              :MSTORE(ecAdd_P1_x)
+        2n                                                                              :MSTORE(ecAdd_P1_y)
+        1n                                                                              :MSTORE(ecAdd_P2_x)
+        0n                                                                              :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        6 => A
+        1                                                                               :EQ
+        ; 8] P + (-P) = 0
+        10744596414106452074759370245733544594153395043370666422502510773307029471145n  :MSTORE(ecAdd_P1_x)
+        848677436511517736191562425154572367705380862894644942948681172815252343932n    :MSTORE(ecAdd_P1_y)
+        10744596414106452074759370245733544594153395043370666422502510773307029471145n  :MSTORE(ecAdd_P2_x)
+        21039565435327757486054843320102702720990930294403178719740356721829973864651n  :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        0n                                                                              :MLOAD(ecAdd_P3_x)
+        0n                                                                              :MLOAD(ecAdd_P3_y)
+        ; 9] P + Q when P != Q
+        2893332206675025542079383054128180540025417352513932043566889211329192179032n   :MSTORE(ecAdd_P1_x)
+        6530629491743359417280396166892081514007566149119717903717756741482263401518n   :MSTORE(ecAdd_P1_y)
+        15490799329273967747501973647822742581714860109251269127154113506193693607878n  :MSTORE(ecAdd_P2_x)
+        4229358293223510599397432508631487048670295788986070026939193461742686527076n   :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        13154776318592227270778558029295227935378730842313609923118896637591559850250n  :MLOAD(ecAdd_P3_x)
+        11035980320923476543935377623718958678920911311849399323950347759358969041431n  :MLOAD(ecAdd_P3_y)
+        1745860766704548035074878643814414425056208216948549237180537806484993001172n   :MSTORE(ecAdd_P1_x)
+        10428992577810537311515619307712828512800028181521723820412159824785899508051n  :MSTORE(ecAdd_P1_y)
+        10744596414106452074759370245733544594153395043370666422502510773307029471145n  :MSTORE(ecAdd_P2_x)
+        848677436511517736191562425154572367705380862894644942948681172815252343932n    :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        20109137777308224484751705964830245061785572657602899297228633767392913518415n  :MLOAD(ecAdd_P3_x)
+        14499175368639637950478596677291617168262069295802020711454610174461584835979n  :MLOAD(ecAdd_P3_y)
+        ; 10] P + P
+        2893332206675025542079383054128180540025417352513932043566889211329192179032n   :MSTORE(ecAdd_P1_x)
+        6530629491743359417280396166892081514007566149119717903717756741482263401518n   :MSTORE(ecAdd_P1_y)
+        2893332206675025542079383054128180540025417352513932043566889211329192179032n   :MSTORE(ecAdd_P2_x)
+        6530629491743359417280396166892081514007566149119717903717756741482263401518n   :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        11220622501868821308995844886766009822833441579384302982823096531245924405698n  :MLOAD(ecAdd_P3_x)
+        2355690023525969090855462437460037724073976772193253577110863269987724684477n   :MLOAD(ecAdd_P3_y)
+        15490799329273967747501973647822742581714860109251269127154113506193693607878n  :MSTORE(ecAdd_P1_x)
+        4229358293223510599397432508631487048670295788986070026939193461742686527076n   :MSTORE(ecAdd_P1_y)
+        15490799329273967747501973647822742581714860109251269127154113506193693607878n  :MSTORE(ecAdd_P2_x)
+        4229358293223510599397432508631487048670295788986070026939193461742686527076n   :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        14301632400969957113316344359548233118734763289927867040319376723985850943059n  :MLOAD(ecAdd_P3_x)
+        19259402839901377893267670172732143592044261932601111690978918426524987173751n  :MLOAD(ecAdd_P3_y)
+        1745860766704548035074878643814414425056208216948549237180537806484993001172n   :MSTORE(ecAdd_P1_x)
+        10428992577810537311515619307712828512800028181521723820412159824785899508051n  :MSTORE(ecAdd_P1_y)
+        1745860766704548035074878643814414425056208216948549237180537806484993001172n   :MSTORE(ecAdd_P2_x)
+        10428992577810537311515619307712828512800028181521723820412159824785899508051n  :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        7635241416710394435863784018619353890364763495262225661273147225960091861733n   :MLOAD(ecAdd_P3_x)
+        21716464559528323959695889215160185865818678200951896286120725092340748527691n  :MLOAD(ecAdd_P3_y)
+        10744596414106452074759370245733544594153395043370666422502510773307029471145n  :MSTORE(ecAdd_P1_x)
+        848677436511517736191562425154572367705380862894644942948681172815252343932n    :MSTORE(ecAdd_P1_y)
+        10744596414106452074759370245733544594153395043370666422502510773307029471145n  :MSTORE(ecAdd_P2_x)
+        848677436511517736191562425154572367705380862894644942948681172815252343932n    :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        4444740815889402603535294170722302758225367627362056425101568584910268024244n   :MLOAD(ecAdd_P3_x)
+        10537263096529483164618820017164668921386457028564663708352735080900270541420n  :MLOAD(ecAdd_P3_y)
+        ; 11] Worst case scenario in terms of ARITH calls and therefore in terms of number of steps
+        ;     In this case, we only need to perform a doubling, since the cost of ecAdd is constant
+        ;     on its input and doubling strictly dominates addition in terms of cost.
+        2893332206675025542079383054128180540025417352513932043566889211329192179032n   :MSTORE(ecAdd_P1_x)
+        6530629491743359417280396166892081514007566149119717903717756741482263401518n   :MSTORE(ecAdd_P1_y)
+        2893332206675025542079383054128180540025417352513932043566889211329192179032n   :MSTORE(ecAdd_P2_x)
+        6530629491743359417280396166892081514007566149119717903717756741482263401518n   :MSTORE(ecAdd_P2_y)
+                                                                                        :CALL(ecAdd)
+        11220622501868821308995844886766009822833441579384302982823096531245924405698n  :MLOAD(ecAdd_P3_x)
+        2355690023525969090855462437460037724073976772193253577110863269987724684477n   :MLOAD(ecAdd_P3_y)
+end:
+        $ => A           :MLOAD(initial_A)
+        $ => B           :MLOAD(initial_B)
+        $ => C           :MLOAD(initial_C)
+        $ => D           :MLOAD(initial_D)
+        $ => E           :MLOAD(initial_E)
+        $ => CTX         :MLOAD(initial_CTX)
+        $ => SP          :MLOAD(initial_SP)
+        $ => PC          :MLOAD(initial_PC)
+        $ => GAS         :MLOAD(initial_GAS)
+        $ => SR          :MLOAD(initial_SR)
+        $ => RR          :MLOAD(initial_RR)
+        $ => HASHPOS     :MLOAD(initial_HASHPOS)
+        $ => RCX         :MLOAD(initial_RCX)
+; label finalizeExecution needed by executor C++
+finalizeExecution:
+        ${beforeLast()}  : JMPN(finalizeExecution)
+                         : JMP(start)
+opINVALID:
+; label checkAndSaveFrom needed by executor C++
+checkAndSaveFrom:
+                         :JMP(opINVALID)
+INCLUDE "../main/pairings/BN254/ecAdd.zkasm"
+INCLUDE "../main/pairings/FPBN254/reduceFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/addFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/subFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/mulFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/squareFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/invFpBN254.zkasm"

package/test/testEcMul.zkasm ADDED Viewed

@@ -0,0 +1,231 @@
+; constants needed by executor C++
+CONST %N = 2**19
+CONST %MAX_CNT_STEPS_LIMIT = %N
+CONST %MAX_CNT_ARITH_LIMIT = %N
+CONST %MAX_CNT_BINARY_LIMIT = %N
+CONST %MAX_CNT_MEM_ALIGN_LIMIT = %N
+CONST %MAX_CNT_KECCAK_F_LIMIT = %N
+CONST %MAX_CNT_PADDING_PG_LIMIT = %N
+CONST %MAX_CNT_POSEIDON_G_LIMIT = %N
+CONSTL %BN254_P = 21888242871839275222246405745257275088696311157297823662689037894645226208583n
+CONSTL %BN254_P_MINUS_ONE = 21888242871839275222246405745257275088696311157297823662689037894645226208582n
+CONSTL %BN254_R = 21888242871839275222246405745257275088548364400416034343698204186575808495617n
+CONSTL %BN254_E_B = 3n
+VAR GLOBAL lastHashKId
+VAR GLOBAL lastHashPId
+VAR GLOBAL initial_A
+VAR GLOBAL initial_B
+VAR GLOBAL initial_C
+VAR GLOBAL initial_D
+VAR GLOBAL initial_E
+VAR GLOBAL initial_CTX
+VAR GLOBAL initial_SP
+VAR GLOBAL initial_PC
+VAR GLOBAL initial_GAS
+VAR GLOBAL initial_SR
+VAR GLOBAL initial_RR
+VAR GLOBAL initial_HASHPOS
+VAR GLOBAL initial_RCX
+start:
+        STEP => A
+        0 :ASSERT
+        A           :MSTORE(initial_A)
+        B           :MSTORE(initial_B)
+        C           :MSTORE(initial_C)
+        D           :MSTORE(initial_D)
+        E           :MSTORE(initial_E)
+        CTX         :MSTORE(initial_CTX)
+        SP          :MSTORE(initial_SP)
+        PC          :MSTORE(initial_PC)
+        GAS         :MSTORE(initial_GAS)
+        SR          :MSTORE(initial_SR)
+        RR          :MSTORE(initial_RR)
+        HASHPOS     :MSTORE(initial_HASHPOS)
+        RCX         :MSTORE(initial_RCX)
+        0 => A,B,C,D,E,CTX, SP, PC, GAS, SR, RR, HASHPOS, RCX
+        -1          :MSTORE(lastHashKId)
+        -1          :MSTORE(lastHashPId)
+        ; 1] 0·O = O
+        0n                                                                              :MSTORE(ecMul_k)
+        0n                                                                              :MSTORE(ecMul_P_x)
+        0n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        0n                                                                              :MLOAD(ecMul_Q_x)
+        0n                                                                              :MLOAD(ecMul_Q_y)
+        ; 2] k·O = O
+        5n                                                                              :MSTORE(ecMul_k)
+        0n                                                                              :MSTORE(ecMul_P_x)
+        0n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        0n                                                                              :MLOAD(ecMul_Q_x)
+        0n                                                                              :MLOAD(ecMul_Q_y)
+        ; 3] 0·P = O, where P != O
+        0n                                                                              :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        0n                                                                              :MLOAD(ecMul_Q_x)
+        0n                                                                              :MLOAD(ecMul_Q_y)
+        ; 4] P not in range
+        0n                                                                              :MSTORE(ecMul_k)
+        21888242871839275222246405745257275088696311157297823662689037894645226208584n  :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        1 => A
+        1                                                                               :EQ
+        0n                                                                              :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        21888242871839275222246405745257275088696311157297823662689037894645226208585n  :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        2 => A
+        1                                                                               :EQ
+        ; 5] P not in E
+        0n                                                                              :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        0n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        3 => A
+        1                                                                               :EQ
+        65n                                                                             :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        0n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        3 => A
+        1                                                                               :EQ
+        ; 6] k·P when k != 0
+        1n                                                                              :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        1n                                                                              :MLOAD(ecMul_Q_x)
+        2n                                                                              :MLOAD(ecMul_Q_y)
+        2n                                                                              :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        1368015179489954701390400359078579693043519447331113978918064868415326638035n   :MLOAD(ecMul_Q_x)
+        9918110051302171585080402603319702774565515993150576347155970296011118125764n   :MLOAD(ecMul_Q_y)
+        65n                                                                             :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        21184532036463169063041779836861514142873086093180850953095098556309204188255n  :MLOAD(ecMul_Q_x)
+        16870949628445799017882714788639508275834535486794531840392367353784571921174n  :MLOAD(ecMul_Q_y)
+        10000000089n                                                                    :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        4768044760451824005417871472283223457728569810854115125480649095031772328870n   :MLOAD(ecMul_Q_x)
+        21389337952468851259287213083493638952853622949895525580347877121675081015727n  :MLOAD(ecMul_Q_y)
+        57n                                                                             :MSTORE(ecMul_k)
+        1745860766704548035074878643814414425056208216948549237180537806484993001172n   :MSTORE(ecMul_P_x)
+        10428992577810537311515619307712828512800028181521723820412159824785899508051n  :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        21092868577100313210583214784627729175513062432513303686654820611840644382013n  :MLOAD(ecMul_Q_x)
+        10293123368529248350591404721829100625076077203595282162629899903703630633665n  :MLOAD(ecMul_Q_y)
+        123456789n                                                                      :MSTORE(ecMul_k)
+        1745860766704548035074878643814414425056208216948549237180537806484993001172n   :MSTORE(ecMul_P_x)
+        10428992577810537311515619307712828512800028181521723820412159824785899508051n  :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        9551410454255481932113938269904288675272239827491596157984458647610565008967n   :MLOAD(ecMul_Q_x)
+        17781856861347070862134441477208204792978952663354273425763774350233183876915n  :MLOAD(ecMul_Q_y)
+        21888242871839275222246405745257275088548364400416034343698204186575808495617n  :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        0n                                                                              :MLOAD(ecMul_Q_x)
+        0n                                                                              :MLOAD(ecMul_Q_y)
+        21888242871839275222246405745257275088548364400416034343698204186575808495618n  :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        1n                                                                              :MLOAD(ecMul_Q_x)
+        2n                                                                              :MLOAD(ecMul_Q_y)
+        21888242871839275222246405745257275088696311157297823662689037894645226208583n  :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        7793429943220682609834519115512946233910458086191548249060013461061457526887n   :MLOAD(ecMul_Q_x)
+        16460968250425543446028981775631045522280113359306664586749259656855967130574n  :MLOAD(ecMul_Q_y)
+        21888242871839275222246405745257275088696311157297823662689037894645226208584n  :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        15886422571275617715400903250697722692198979607302343556925904858625057687404n  :MLOAD(ecMul_Q_x)
+        9788557113822741943783365060165103517008620829146475047263378292709661309554n   :MLOAD(ecMul_Q_y)
+        115792089237316195423570985008687907853269984665640564039457584007913129639935n :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        21415159568991615317144600033915305503576371596506956373206836402282692989778n  :MLOAD(ecMul_Q_x)
+        8573070896319864868535933562264623076420652926303237982078693068147657243287n   :MLOAD(ecMul_Q_y)
+        ; 7] Worst case scenario in terms of ARITH calls and therefore in terms of number of steps.
+        ;    In ecMul, this should be the scalar multiplication with scalar with higer Hamming weight
+        ;    that is lower than r, which in this case is 2^253 - 1.
+        14474011154664524427946373126085988481658748083205070504932198000989141204991n  :MSTORE(ecMul_k)
+        1n                                                                              :MSTORE(ecMul_P_x)
+        2n                                                                              :MSTORE(ecMul_P_y)
+                                                                                        :CALL(ecMul)
+        3739418567393436576913511739065691570763034865122368432616000129799288055432n   :MLOAD(ecMul_Q_x)
+        18298856760603404171434473181920219106007178146585940397845192637485681860518n  :MLOAD(ecMul_Q_y)
+end:
+        $ => A           :MLOAD(initial_A)
+        $ => B           :MLOAD(initial_B)
+        $ => C           :MLOAD(initial_C)
+        $ => D           :MLOAD(initial_D)
+        $ => E           :MLOAD(initial_E)
+        $ => CTX         :MLOAD(initial_CTX)
+        $ => SP          :MLOAD(initial_SP)
+        $ => PC          :MLOAD(initial_PC)
+        $ => GAS         :MLOAD(initial_GAS)
+        $ => SR          :MLOAD(initial_SR)
+        $ => RR          :MLOAD(initial_RR)
+        $ => HASHPOS     :MLOAD(initial_HASHPOS)
+        $ => RCX         :MLOAD(initial_RCX)
+; label finalizeExecution needed by executor C++
+finalizeExecution:
+        ${beforeLast()}  : JMPN(finalizeExecution)
+                         : JMP(start)
+opINVALID:
+; label checkAndSaveFrom needed by executor C++
+checkAndSaveFrom:
+                         :JMP(opINVALID)
+INCLUDE "../main/pairings/BN254/ecMul.zkasm"
+INCLUDE "../main/pairings/BN254/ecAdd.zkasm"
+INCLUDE "../main/pairings/FRBN254/reduceFrBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/reduceFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/addFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/subFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/mulFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/squareFpBN254.zkasm"
+INCLUDE "../main/pairings/FPBN254/invFpBN254.zkasm"