@zkasm/zkevm-rom 0.0.1-security → 6.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of @zkasm/zkevm-rom might be problematic. Click here for more details.
- package/.eslintrc.js +33 -0
- package/.github/CODEOWNERS +14 -0
- package/.github/ISSUE_TEMPLATE/bug.yml +38 -0
- package/.github/ISSUE_TEMPLATE/feature.yml +26 -0
- package/.github/ISSUE_TEMPLATE/question.yml +26 -0
- package/.github/workflows/main.yaml +40 -0
- package/LICENSE +636 -0
- package/README.md +23 -5
- package/audits/Hexens_Polygon_zkEVM_PUBLIC_27.02.23.pdf +0 -0
- package/audits/Polygon-zkEVM-Public-v1.1-verichains-19-03-2024.pdf +0 -0
- package/audits/zkEVM-ROM-upgrade-1-Spearbit-30-May.pdf +0 -0
- package/audits/zkEVM-ROM-upgrade-2-Spearbit-21-August.pdf +0 -0
- package/audits/zkEVM-engagement-1-Spearbit-27-March.pdf +0 -0
- package/audits/zkEVM-engagement-2-Spearbit-27-March.pdf +0 -0
- package/audits/zkEVM-engagement-3-Spearbit-6-April.pdf +0 -0
- package/counters/README.md +45 -0
- package/counters/counters-executor.js +80 -0
- package/counters/countersConstants.zkasm +370 -0
- package/counters/endIncludes.zkasm +18 -0
- package/counters/initIncludes.zkasm +2 -0
- package/counters/tests/MLOAD32.zkasm +27 -0
- package/counters/tests/MLOADX.zkasm +30 -0
- package/counters/tests/MSTORE32.zkasm +32 -0
- package/counters/tests/MSTOREX.zkasm +36 -0
- package/counters/tests/SHLarith.zkasm +28 -0
- package/counters/tests/SHLarithBit.zkasm +28 -0
- package/counters/tests/SHRarith.zkasm +28 -0
- package/counters/tests/SHRarithBit.zkasm +28 -0
- package/counters/tests/abs.zkasm +29 -0
- package/counters/tests/addBatchHashByteByByte.zkasm +31 -0
- package/counters/tests/computeGasSendCall.zkasm +30 -0
- package/counters/tests/divArith.zkasm +27 -0
- package/counters/tests/expAD.zkasm +30 -0
- package/counters/tests/getLenBits.zkasm +30 -0
- package/counters/tests/getLenBytes.zkasm +32 -0
- package/counters/tests/isEmptyAccount.zkasm +30 -0
- package/counters/tests/mulARITH.zkasm +28 -0
- package/counters/tests/offsetUtil.zkasm +29 -0
- package/counters/tests/opADDMOD.zkasm +28 -0
- package/counters/tests/opAdd.zkasm +27 -0
- package/counters/tests/opBLOCKHASH.zkasm +28 -0
- package/counters/tests/opCALL.zkasm +41 -0
- package/counters/tests/opCALLCODE.zkasm +41 -0
- package/counters/tests/opCALLDATACOPY.zkasm +28 -0
- package/counters/tests/opCALLDATALOAD.zkasm +27 -0
- package/counters/tests/opCODECOPY.zkasm +28 -0
- package/counters/tests/opCREATE.zkasm +35 -0
- package/counters/tests/opCREATE2.zkasm +35 -0
- package/counters/tests/opDELEGATECALL.zkasm +35 -0
- package/counters/tests/opDIV.zkasm +27 -0
- package/counters/tests/opEXP.zkasm +29 -0
- package/counters/tests/opEXTCODECOPY.zkasm +29 -0
- package/counters/tests/opMOD.zkasm +27 -0
- package/counters/tests/opMUL.zkasm +27 -0
- package/counters/tests/opMULMOD.zkasm +28 -0
- package/counters/tests/opRETURN.zkasm +32 -0
- package/counters/tests/opRETURNDATACOPY.zkasm +29 -0
- package/counters/tests/opREVERT.zkasm +32 -0
- package/counters/tests/opSDIV.zkasm +28 -0
- package/counters/tests/opSHA3.zkasm +28 -0
- package/counters/tests/opSIGNEXTEND.zkasm +27 -0
- package/counters/tests/opSMOD.zkasm +28 -0
- package/counters/tests/opSTATICCALL.zkasm +35 -0
- package/counters/tests/opSUB.zkasm +27 -0
- package/counters/tests/saveMem.zkasm +31 -0
- package/docs/opcode-cost-zk-counters.md +315 -0
- package/docs/usage-ecrecover.md +51 -0
- package/index.js +43 -0
- package/main/block-info.zkasm +204 -0
- package/main/constants.zkasm +145 -0
- package/main/ecrecover/addFpEc.zkasm +31 -0
- package/main/ecrecover/checkSqrtFpEc.zkasm +1558 -0
- package/main/ecrecover/constEc.zkasm +13 -0
- package/main/ecrecover/ecrecover.zkasm +280 -0
- package/main/ecrecover/invFnEc.zkasm +44 -0
- package/main/ecrecover/invFpEc.zkasm +45 -0
- package/main/ecrecover/mulFnEc.zkasm +36 -0
- package/main/ecrecover/mulFpEc.zkasm +36 -0
- package/main/ecrecover/mulPointEc.zkasm +311 -0
- package/main/ecrecover/sqFpEc.zkasm +38 -0
- package/main/ecrecover/sqrtFpEc.zkasm +70 -0
- package/main/end.zkasm +4 -0
- package/main/l2-tx-hash.zkasm +159 -0
- package/main/load-change-l2-block-utils.zkasm +11 -0
- package/main/load-change-l2-block.zkasm +28 -0
- package/main/load-tx-rlp-utils.zkasm +72 -0
- package/main/load-tx-rlp.zkasm +431 -0
- package/main/main.zkasm +237 -0
- package/main/map-opcodes.zkasm +274 -0
- package/main/modexp/array_lib/array_add_AGTB.zkasm +123 -0
- package/main/modexp/array_lib/array_add_short.zkasm +85 -0
- package/main/modexp/array_lib/array_div.zkasm +215 -0
- package/main/modexp/array_lib/array_div_long.zkasm +284 -0
- package/main/modexp/array_lib/array_div_short.zkasm +222 -0
- package/main/modexp/array_lib/array_mul.zkasm +97 -0
- package/main/modexp/array_lib/array_mul_long.zkasm +156 -0
- package/main/modexp/array_lib/array_mul_short.zkasm +127 -0
- package/main/modexp/array_lib/array_square.zkasm +246 -0
- package/main/modexp/array_lib/unused/array_add.zkasm +100 -0
- package/main/modexp/array_lib/unused/array_is_odd.zkasm +23 -0
- package/main/modexp/array_lib/unused/array_is_one.zkasm +33 -0
- package/main/modexp/array_lib/unused/array_is_zero.zkasm +34 -0
- package/main/modexp/array_lib/unused/array_sub_AGTB.zkasm +111 -0
- package/main/modexp/array_lib/unused/array_unshift.zkasm +37 -0
- package/main/modexp/array_lib/utils/array_compare.zkasm +82 -0
- package/main/modexp/array_lib/utils/array_trim.zkasm +49 -0
- package/main/modexp/constants.zkasm +5 -0
- package/main/modexp/modexp.zkasm +296 -0
- package/main/modexp/modexp_utils.zkasm +230 -0
- package/main/opcodes/arithmetic.zkasm +357 -0
- package/main/opcodes/block.zkasm +163 -0
- package/main/opcodes/calldata-returndata-code.zkasm +619 -0
- package/main/opcodes/comparison.zkasm +446 -0
- package/main/opcodes/context-information.zkasm +169 -0
- package/main/opcodes/create-terminate-context.zkasm +1011 -0
- package/main/opcodes/crypto.zkasm +96 -0
- package/main/opcodes/flow-control.zkasm +126 -0
- package/main/opcodes/logs.zkasm +193 -0
- package/main/opcodes/stack-operations.zkasm +658 -0
- package/main/opcodes/storage-memory.zkasm +313 -0
- package/main/pairings/BN254/addPointBN254.zkasm +245 -0
- package/main/pairings/BN254/ecAdd.zkasm +312 -0
- package/main/pairings/BN254/ecMul.zkasm +159 -0
- package/main/pairings/BN254/escalarMulBN254.zkasm +155 -0
- package/main/pairings/BN254/lineDiffPointsBN254.zkasm +83 -0
- package/main/pairings/BN254/lineSamePointsBN254.zkasm +96 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/compressFp12BN254.zkasm +49 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/decompressFp12BN254.zkasm +236 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/expByXCompCycloFp12BN254.zkasm +444 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/squareCompCycloFp12BN254.zkasm +212 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/squareCycloFp12BN254.zkasm +228 -0
- package/main/pairings/FP12BN254/CYCLOFP12BN254/xBinDecompBN254.zkasm +64 -0
- package/main/pairings/FP12BN254/frob2Fp12BN254.zkasm +80 -0
- package/main/pairings/FP12BN254/frob3Fp12BN254.zkasm +96 -0
- package/main/pairings/FP12BN254/frobFp12BN254.zkasm +96 -0
- package/main/pairings/FP12BN254/inverseFp12BN254.zkasm +289 -0
- package/main/pairings/FP12BN254/mulFp12BN254.zkasm +408 -0
- package/main/pairings/FP12BN254/sparseMulAFp12BN254.zkasm +296 -0
- package/main/pairings/FP12BN254/sparseMulBFp12BN254.zkasm +291 -0
- package/main/pairings/FP12BN254/squareFp12BN254.zkasm +376 -0
- package/main/pairings/FP2BN254/addFp2BN254.zkasm +19 -0
- package/main/pairings/FP2BN254/escalarMulFp2BN254.zkasm +20 -0
- package/main/pairings/FP2BN254/invFp2BN254.zkasm +66 -0
- package/main/pairings/FP2BN254/mulFp2BN254.zkasm +19 -0
- package/main/pairings/FP2BN254/squareFp2BN254.zkasm +21 -0
- package/main/pairings/FP2BN254/subFp2BN254.zkasm +19 -0
- package/main/pairings/FP4BN254/squareFp4BN254.zkasm +76 -0
- package/main/pairings/FP6BN254/addFp6BN254.zkasm +59 -0
- package/main/pairings/FP6BN254/escalarMulFp6BN254.zkasm +51 -0
- package/main/pairings/FP6BN254/inverseFp6BN254.zkasm +208 -0
- package/main/pairings/FP6BN254/mulFp6BN254.zkasm +201 -0
- package/main/pairings/FP6BN254/sparseMulAFp6BN254.zkasm +65 -0
- package/main/pairings/FP6BN254/sparseMulBFp6BN254.zkasm +134 -0
- package/main/pairings/FP6BN254/sparseMulCFp6BN254.zkasm +128 -0
- package/main/pairings/FP6BN254/squareFp6BN254.zkasm +147 -0
- package/main/pairings/FP6BN254/subFp6BN254.zkasm +59 -0
- package/main/pairings/FPBN254/addFpBN254.zkasm +29 -0
- package/main/pairings/FPBN254/invFpBN254.zkasm +55 -0
- package/main/pairings/FPBN254/mulFpBN254.zkasm +29 -0
- package/main/pairings/FPBN254/reduceFpBN254.zkasm +25 -0
- package/main/pairings/FPBN254/squareFpBN254.zkasm +31 -0
- package/main/pairings/FPBN254/subFpBN254.zkasm +36 -0
- package/main/pairings/FRBN254/reduceFrBN254.zkasm +25 -0
- package/main/pairings/constants.zkasm +62 -0
- package/main/pairings/ecPairing.zkasm +244 -0
- package/main/pairings/finalExpBN254.zkasm +2095 -0
- package/main/pairings/halfPairingBN254.zkasm +428 -0
- package/main/pairings/loopLengthBN254.zkasm +75 -0
- package/main/pairings/millerLoopBN254.zkasm +741 -0
- package/main/pairings/pairingBN254.zkasm +481 -0
- package/main/pairings/unused/addFp12BN254.zkasm +130 -0
- package/main/pairings/unused/expByXCycloFp12BN254.zkasm +411 -0
- package/main/pairings/unused/expFp12BN254.zkasm +333 -0
- package/main/pairings/unused/subFp12BN254.zkasm +130 -0
- package/main/pairings/unused/xPseudoBinDecompBN254.zkasm +68 -0
- package/main/pairings/utilsTests/expCycloFp12BN254.zkasm +334 -0
- package/main/precompiled/end.zkasm +42 -0
- package/main/precompiled/identity.zkasm +99 -0
- package/main/precompiled/pre-ecAdd.zkasm +84 -0
- package/main/precompiled/pre-ecMul.zkasm +82 -0
- package/main/precompiled/pre-ecPairing.zkasm +72 -0
- package/main/precompiled/pre-ecrecover.zkasm +71 -0
- package/main/precompiled/pre-modexp.zkasm +367 -0
- package/main/precompiled/pre-sha2-256.zkasm +125 -0
- package/main/precompiled/revert-precompiled.zkasm +25 -0
- package/main/precompiled/selector.zkasm +77 -0
- package/main/process-change-l2-block.zkasm +147 -0
- package/main/process-tx.zkasm +587 -0
- package/main/tables/2-exp.zkasm +260 -0
- package/main/touched.zkasm +118 -0
- package/main/utils.zkasm +2335 -0
- package/main/vars.zkasm +117 -0
- package/package.json +62 -3
- package/test/bytes-length.zkasm +39 -0
- package/test/ecrecover.zkasm +538 -0
- package/test/lt4-test.zkasm +38 -0
- package/test/mstorex.zkasm +191 -0
- package/test/opcalldatacopy.ignore.zkasm +331 -0
- package/test/performance/read-push.zkasm +71 -0
- package/test/read-push.zkasm +304 -0
- package/test/testArrayArith.zkasm +1099 -0
- package/test/testArrayUtils.zkasm +335 -0
- package/test/testCycloFp12ArithBN254.zkasm +548 -0
- package/test/testEcAdd.zkasm +252 -0
- package/test/testEcMul.zkasm +231 -0
- package/test/testEcPairing.zkasm +436 -0
- package/test/testFinalExpBn254.zkasm +139 -0
- package/test/testFp12ArithBN254.zkasm +692 -0
- package/test/testFp2ArithBN254.zkasm +185 -0
- package/test/testFp4ArithBN254.zkasm +128 -0
- package/test/testFp6ArithBN254.zkasm +260 -0
- package/test/testFpArithBN254.zkasm +159 -0
- package/test/testFrArithBN254.zkasm +113 -0
- package/test/testHalfPairingBN254.zkasm +285 -0
- package/test/testModExp.zkasm +586 -0
- package/test/testModExpReturn.zkasm +81 -0
- package/test/testPairingBN254.zkasm +463 -0
- package/test/testPointArithBN254.zkasm +270 -0
- package/test/testSHA256.zkasm +27 -0
- package/test/touched-assert.zkasm +59 -0
- package/test/utils-expAD.zkasm +48 -0
- package/test/utils-getLenBytes.zkasm +36 -0
- package/tools/audit-tools/registry-op-checker.js +71 -0
- package/tools/get-not-used-labels.js +31 -0
- package/tools/helpers/helpers.js +47 -0
- package/tools/modexp-utils/README.md +5 -0
- package/tools/modexp-utils/modexp-test-gen.js +168 -0
- package/tools/modexp-utils/modexp-test-int.sage +37 -0
- package/tools/parallel-testing/checker.sh +6 -0
- package/tools/parallel-testing/gen-parallel-tests.js +78 -0
- package/tools/parallel-testing/parallel-tests-sample/sample.test.js +136 -0
- package/tools/run-tests-zkasm.js +83 -0
|
@@ -0,0 +1,436 @@
|
|
|
1
|
+
; constants needed by executor C++
|
|
2
|
+
CONST %N = 2**19
|
|
3
|
+
;CONST %MAX_CNT_STEPS_LIMIT = %N
|
|
4
|
+
;CONST %MAX_CNT_ARITH_LIMIT = %N
|
|
5
|
+
;CONST %MAX_CNT_BINARY_LIMIT = %N
|
|
6
|
+
;CONST %MAX_CNT_MEM_ALIGN_LIMIT = %N
|
|
7
|
+
;CONST %MAX_CNT_KECCAK_F_LIMIT = %N
|
|
8
|
+
;CONST %MAX_CNT_PADDING_PG_LIMIT = %N
|
|
9
|
+
;CONST %MAX_CNT_POSEIDON_G_LIMIT = %N
|
|
10
|
+
|
|
11
|
+
VAR GLOBAL lastHashKId
|
|
12
|
+
VAR GLOBAL lastHashPId
|
|
13
|
+
|
|
14
|
+
VAR GLOBAL initial_A
|
|
15
|
+
VAR GLOBAL initial_B
|
|
16
|
+
VAR GLOBAL initial_C
|
|
17
|
+
VAR GLOBAL initial_D
|
|
18
|
+
VAR GLOBAL initial_E
|
|
19
|
+
VAR GLOBAL initial_CTX
|
|
20
|
+
VAR GLOBAL initial_SP
|
|
21
|
+
VAR GLOBAL initial_PC
|
|
22
|
+
VAR GLOBAL initial_GAS
|
|
23
|
+
VAR GLOBAL initial_SR
|
|
24
|
+
VAR GLOBAL initial_RR
|
|
25
|
+
VAR GLOBAL initial_HASHPOS
|
|
26
|
+
VAR GLOBAL initial_RCX
|
|
27
|
+
|
|
28
|
+
start:
|
|
29
|
+
STEP => A
|
|
30
|
+
0 :ASSERT
|
|
31
|
+
|
|
32
|
+
A :MSTORE(initial_A)
|
|
33
|
+
B :MSTORE(initial_B)
|
|
34
|
+
C :MSTORE(initial_C)
|
|
35
|
+
D :MSTORE(initial_D)
|
|
36
|
+
E :MSTORE(initial_E)
|
|
37
|
+
CTX :MSTORE(initial_CTX)
|
|
38
|
+
SP :MSTORE(initial_SP)
|
|
39
|
+
PC :MSTORE(initial_PC)
|
|
40
|
+
GAS :MSTORE(initial_GAS)
|
|
41
|
+
SR :MSTORE(initial_SR)
|
|
42
|
+
RR :MSTORE(initial_RR)
|
|
43
|
+
HASHPOS :MSTORE(initial_HASHPOS)
|
|
44
|
+
RCX :MSTORE(initial_RCX)
|
|
45
|
+
0 => A,B,C,D,E,CTX, SP, PC, GAS, SR, RR, HASHPOS, RCX
|
|
46
|
+
|
|
47
|
+
-1 :MSTORE(lastHashKId)
|
|
48
|
+
-1 :MSTORE(lastHashPId)
|
|
49
|
+
|
|
50
|
+
; 1] 0 inputs should return 1
|
|
51
|
+
0 :MSTORE(ecPairing_ninputs)
|
|
52
|
+
:CALL(ecPairing)
|
|
53
|
+
0 => A
|
|
54
|
+
B :ASSERT
|
|
55
|
+
1 :MLOAD(ecPairing_result)
|
|
56
|
+
|
|
57
|
+
; 2] Tests with 6 inputs
|
|
58
|
+
; 2.1] Fails and returns nothing if the input is invalid
|
|
59
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
60
|
+
32*6 :MSTORE(txCalldataLen)
|
|
61
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
62
|
+
0 => E
|
|
63
|
+
0n :MSTORE(MEM:E)
|
|
64
|
+
1n :MSTORE(MEM:E + 1)
|
|
65
|
+
2046729899889901964437012741252570163462327955511008570480857952505584629957n :MSTORE(MEM:E + 2)
|
|
66
|
+
4351401811647638138392695977895401859084096897123577305203754529537814663109n :MSTORE(MEM:E + 3)
|
|
67
|
+
14316075702276096164483565793667862351398527813470041574939773541551376891710n :MSTORE(MEM:E + 4)
|
|
68
|
+
322506915963699862059245473966830598387691259163658767351233132602858049743n :MSTORE(MEM:E + 5)
|
|
69
|
+
:CALL(ecPairing)
|
|
70
|
+
1 => A
|
|
71
|
+
B :ASSERT
|
|
72
|
+
|
|
73
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
74
|
+
32*6 :MSTORE(txCalldataLen)
|
|
75
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
76
|
+
0 => E
|
|
77
|
+
0n :MSTORE(MEM:E)
|
|
78
|
+
0n :MSTORE(MEM:E + 1)
|
|
79
|
+
2046729899889901964437012741252570163462327955511008570480857952505584629957n :MSTORE(MEM:E + 2)
|
|
80
|
+
4351401811647638138392695977895401859084096897123577305203754529537814663108n :MSTORE(MEM:E + 3)
|
|
81
|
+
14316075702276096164483565793667862351398527813470041574939773541551376891710n :MSTORE(MEM:E + 4)
|
|
82
|
+
322506915963699862059245473966830598387691259163658767351233132602858049743n :MSTORE(MEM:E + 5)
|
|
83
|
+
:CALL(ecPairing)
|
|
84
|
+
1 => A
|
|
85
|
+
B :ASSERT
|
|
86
|
+
|
|
87
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
88
|
+
32*6 :MSTORE(txCalldataLen)
|
|
89
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
90
|
+
0 => E
|
|
91
|
+
1n :MSTORE(MEM:E)
|
|
92
|
+
2n :MSTORE(MEM:E + 1)
|
|
93
|
+
2046729899889901964437012741252570163462327955511008570480857952505584629957n :MSTORE(MEM:E + 2)
|
|
94
|
+
4351401811647638138392695977895401859084096897123577305203754529537814663108n :MSTORE(MEM:E + 3)
|
|
95
|
+
14316075702276096164483565793667862351398527813470041574939773541551376891710n :MSTORE(MEM:E + 4)
|
|
96
|
+
322506915963699862059245473966830598387691259163658767351233132602858049743n :MSTORE(MEM:E + 5)
|
|
97
|
+
:CALL(ecPairing)
|
|
98
|
+
1 => A
|
|
99
|
+
B :ASSERT
|
|
100
|
+
|
|
101
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
102
|
+
32*6 :MSTORE(txCalldataLen)
|
|
103
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
104
|
+
0 => E
|
|
105
|
+
1n :MSTORE(MEM:E)
|
|
106
|
+
1n :MSTORE(MEM:E + 1)
|
|
107
|
+
0n :MSTORE(MEM:E + 2)
|
|
108
|
+
0n :MSTORE(MEM:E + 3)
|
|
109
|
+
0n :MSTORE(MEM:E + 4)
|
|
110
|
+
0n :MSTORE(MEM:E + 5)
|
|
111
|
+
:CALL(ecPairing)
|
|
112
|
+
1 => A
|
|
113
|
+
B :ASSERT
|
|
114
|
+
|
|
115
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
116
|
+
32*6 :MSTORE(txCalldataLen)
|
|
117
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
118
|
+
0 => E
|
|
119
|
+
0n :MSTORE(MEM:E)
|
|
120
|
+
0n :MSTORE(MEM:E + 1)
|
|
121
|
+
1n :MSTORE(MEM:E + 2)
|
|
122
|
+
2n :MSTORE(MEM:E + 3)
|
|
123
|
+
3n :MSTORE(MEM:E + 4)
|
|
124
|
+
3n :MSTORE(MEM:E + 5)
|
|
125
|
+
:CALL(ecPairing)
|
|
126
|
+
1 => A
|
|
127
|
+
B :ASSERT
|
|
128
|
+
|
|
129
|
+
; 2.2] Fails if some input is not in range
|
|
130
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
131
|
+
32*6 :MSTORE(txCalldataLen)
|
|
132
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
133
|
+
0 => E
|
|
134
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E)
|
|
135
|
+
1n :MSTORE(MEM:E + 1)
|
|
136
|
+
0n :MSTORE(MEM:E + 2)
|
|
137
|
+
0n :MSTORE(MEM:E + 3)
|
|
138
|
+
0n :MSTORE(MEM:E + 4)
|
|
139
|
+
0n :MSTORE(MEM:E + 5)
|
|
140
|
+
:CALL(ecPairing)
|
|
141
|
+
1 => A
|
|
142
|
+
B :ASSERT
|
|
143
|
+
|
|
144
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
145
|
+
32*6 :MSTORE(txCalldataLen)
|
|
146
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
147
|
+
0 => E
|
|
148
|
+
1n :MSTORE(MEM:E)
|
|
149
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E + 1)
|
|
150
|
+
0n :MSTORE(MEM:E + 2)
|
|
151
|
+
0n :MSTORE(MEM:E + 3)
|
|
152
|
+
0n :MSTORE(MEM:E + 4)
|
|
153
|
+
0n :MSTORE(MEM:E + 5)
|
|
154
|
+
:CALL(ecPairing)
|
|
155
|
+
1 => A
|
|
156
|
+
B :ASSERT
|
|
157
|
+
|
|
158
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
159
|
+
32*6 :MSTORE(txCalldataLen)
|
|
160
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
161
|
+
0 => E
|
|
162
|
+
1n :MSTORE(MEM:E)
|
|
163
|
+
2n :MSTORE(MEM:E + 1)
|
|
164
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E + 2)
|
|
165
|
+
0n :MSTORE(MEM:E + 3)
|
|
166
|
+
0n :MSTORE(MEM:E + 4)
|
|
167
|
+
0n :MSTORE(MEM:E + 5)
|
|
168
|
+
:CALL(ecPairing)
|
|
169
|
+
1 => A
|
|
170
|
+
B :ASSERT
|
|
171
|
+
|
|
172
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
173
|
+
32*6 :MSTORE(txCalldataLen)
|
|
174
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
175
|
+
0 => E
|
|
176
|
+
1n :MSTORE(MEM:E)
|
|
177
|
+
2n :MSTORE(MEM:E + 1)
|
|
178
|
+
0n :MSTORE(MEM:E + 2)
|
|
179
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E + 3)
|
|
180
|
+
0n :MSTORE(MEM:E + 4)
|
|
181
|
+
0n :MSTORE(MEM:E + 5)
|
|
182
|
+
:CALL(ecPairing)
|
|
183
|
+
1 => A
|
|
184
|
+
B :ASSERT
|
|
185
|
+
|
|
186
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
187
|
+
32*6 :MSTORE(txCalldataLen)
|
|
188
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
189
|
+
0 => E
|
|
190
|
+
1n :MSTORE(MEM:E)
|
|
191
|
+
2n :MSTORE(MEM:E + 1)
|
|
192
|
+
0n :MSTORE(MEM:E + 2)
|
|
193
|
+
0n :MSTORE(MEM:E + 3)
|
|
194
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E + 4)
|
|
195
|
+
0n :MSTORE(MEM:E + 5)
|
|
196
|
+
:CALL(ecPairing)
|
|
197
|
+
1 => A
|
|
198
|
+
B :ASSERT
|
|
199
|
+
|
|
200
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
201
|
+
32*6 :MSTORE(txCalldataLen)
|
|
202
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
203
|
+
0 => E
|
|
204
|
+
1n :MSTORE(MEM:E)
|
|
205
|
+
2n :MSTORE(MEM:E + 1)
|
|
206
|
+
0n :MSTORE(MEM:E + 2)
|
|
207
|
+
0n :MSTORE(MEM:E + 3)
|
|
208
|
+
0n :MSTORE(MEM:E + 4)
|
|
209
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208583n :MSTORE(MEM:E + 5)
|
|
210
|
+
:CALL(ecPairing)
|
|
211
|
+
1 => A
|
|
212
|
+
B :ASSERT
|
|
213
|
+
|
|
214
|
+
; 2.3] Degenerate tests: e(0,Q) = 1 or e(P,0) = 1 therefore the pairing equation is trivally satisfied
|
|
215
|
+
; and in fact this is the only possibility for the pairing equation to be satisfied with one pair of P,Q
|
|
216
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
217
|
+
32*6 :MSTORE(txCalldataLen)
|
|
218
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
219
|
+
0 => E
|
|
220
|
+
0n :MSTORE(MEM:E)
|
|
221
|
+
0n :MSTORE(MEM:E + 1)
|
|
222
|
+
2046729899889901964437012741252570163462327955511008570480857952505584629957n :MSTORE(MEM:E + 2)
|
|
223
|
+
4351401811647638138392695977895401859084096897123577305203754529537814663109n :MSTORE(MEM:E + 3)
|
|
224
|
+
14316075702276096164483565793667862351398527813470041574939773541551376891710n :MSTORE(MEM:E + 4)
|
|
225
|
+
322506915963699862059245473966830598387691259163658767351233132602858049743n :MSTORE(MEM:E + 5)
|
|
226
|
+
:CALL(ecPairing)
|
|
227
|
+
0 => A
|
|
228
|
+
B :ASSERT
|
|
229
|
+
1 :MLOAD(ecPairing_result)
|
|
230
|
+
|
|
231
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
232
|
+
32*6 :MSTORE(txCalldataLen)
|
|
233
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
234
|
+
0 => E
|
|
235
|
+
1n :MSTORE(MEM:E)
|
|
236
|
+
2n :MSTORE(MEM:E + 1)
|
|
237
|
+
0n :MSTORE(MEM:E + 2)
|
|
238
|
+
0n :MSTORE(MEM:E + 3)
|
|
239
|
+
0n :MSTORE(MEM:E + 4)
|
|
240
|
+
0n :MSTORE(MEM:E + 5)
|
|
241
|
+
:CALL(ecPairing)
|
|
242
|
+
0 => A
|
|
243
|
+
B :ASSERT
|
|
244
|
+
1 :MLOAD(ecPairing_result)
|
|
245
|
+
|
|
246
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
247
|
+
32*6 :MSTORE(txCalldataLen)
|
|
248
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
249
|
+
0 => E
|
|
250
|
+
0n :MSTORE(MEM:E)
|
|
251
|
+
0n :MSTORE(MEM:E + 1)
|
|
252
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E + 2)
|
|
253
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E + 3)
|
|
254
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E + 4)
|
|
255
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E + 5)
|
|
256
|
+
:CALL(ecPairing)
|
|
257
|
+
0 => A
|
|
258
|
+
B :ASSERT
|
|
259
|
+
1 :MLOAD(ecPairing_result)
|
|
260
|
+
|
|
261
|
+
1 :MSTORE(ecPairing_ninputs)
|
|
262
|
+
32*6 :MSTORE(txCalldataLen)
|
|
263
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
264
|
+
|
|
265
|
+
0 => E
|
|
266
|
+
0n :MSTORE(MEM:E)
|
|
267
|
+
0n :MSTORE(MEM:E + 1)
|
|
268
|
+
11509234998032783125480266028213992619847908725038453197451386571405359529652n :MSTORE(MEM:E + 2)
|
|
269
|
+
4099696940551850412667065443628214990719002449715926250279745743126938401735n :MSTORE(MEM:E + 3)
|
|
270
|
+
19060191254988907833052035421850065496347936631097225966803157637464336346786n :MSTORE(MEM:E + 4)
|
|
271
|
+
16129402215257578064845163124174157135534373400489420174780024516864802406908n :MSTORE(MEM:E + 5)
|
|
272
|
+
:CALL(ecPairing)
|
|
273
|
+
0 => A
|
|
274
|
+
B :ASSERT
|
|
275
|
+
1 :MLOAD(ecPairing_result)
|
|
276
|
+
|
|
277
|
+
; 3] Tests with 12 inputs
|
|
278
|
+
|
|
279
|
+
; Ethereum example
|
|
280
|
+
2 :MSTORE(ecPairing_ninputs)
|
|
281
|
+
32*6*2 :MSTORE(txCalldataLen)
|
|
282
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
283
|
+
0 => E
|
|
284
|
+
20333349487611174579608837001148061570648440167819460274134014152400656275674n :MSTORE(MEM:E)
|
|
285
|
+
19928268888036365434500215951569291213336085054454884806456691094014419998198n :MSTORE(MEM:E + 1)
|
|
286
|
+
14335504872549532354210489828671972911333347940534076142795111812609903378108n :MSTORE(MEM:E + 2)
|
|
287
|
+
15548973838770842196102442698708122006189018193868154757846481038796366125273n :MSTORE(MEM:E + 3)
|
|
288
|
+
19822981108166058814837087071162475941148726886187076297764129491697321004944n :MSTORE(MEM:E + 4)
|
|
289
|
+
21654797034782659092642090020723114658730107139270194997413654453096686856286n :MSTORE(MEM:E + 5)
|
|
290
|
+
1n :MSTORE(MEM:E + 6)
|
|
291
|
+
21888242871839275222246405745257275088696311157297823662689037894645226208581n :MSTORE(MEM:E + 7)
|
|
292
|
+
11509234998032783125480266028213992619847908725038453197451386571405359529652n :MSTORE(MEM:E + 8)
|
|
293
|
+
4099696940551850412667065443628214990719002449715926250279745743126938401735n :MSTORE(MEM:E + 9)
|
|
294
|
+
19060191254988907833052035421850065496347936631097225966803157637464336346786n :MSTORE(MEM:E + 10)
|
|
295
|
+
16129402215257578064845163124174157135534373400489420174780024516864802406908n :MSTORE(MEM:E + 11)
|
|
296
|
+
:CALL(ecPairing)
|
|
297
|
+
0 => A
|
|
298
|
+
B :ASSERT
|
|
299
|
+
1 :MLOAD(ecPairing_result)
|
|
300
|
+
|
|
301
|
+
; KZG proof with one poly and one evaluation
|
|
302
|
+
2 :MSTORE(ecPairing_ninputs)
|
|
303
|
+
32*6*2 :MSTORE(txCalldataLen)
|
|
304
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
305
|
+
0 => E
|
|
306
|
+
20593188969319011263398594823255811823444990825298196162496264072013322991388n :MSTORE(MEM:E)
|
|
307
|
+
20958531318718262179638310844977035402258325676941759254411716094948903283238n :MSTORE(MEM:E + 1)
|
|
308
|
+
19014538453489502551198430834271851224745298622671277274539119640314913863353n :MSTORE(MEM:E + 2)
|
|
309
|
+
4011274991290276638756079424799286249285264639232842260296401218902340006571n :MSTORE(MEM:E + 3)
|
|
310
|
+
5493217260886730300768636259682920882409386426126823957476482234761131640151n :MSTORE(MEM:E + 4)
|
|
311
|
+
18471742500483808444303896273620229467289887099913869033627754256214290219997n :MSTORE(MEM:E + 5)
|
|
312
|
+
3526892542800189419786189901545486150149308978725362430328886936745555020543n :MSTORE(MEM:E + 6)
|
|
313
|
+
2119286186166371280112264238015778473404141003919064027522145193839708208181n :MSTORE(MEM:E + 7)
|
|
314
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E + 8)
|
|
315
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E + 9)
|
|
316
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E + 10)
|
|
317
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E + 11)
|
|
318
|
+
:CALL(ecPairing)
|
|
319
|
+
0 => A
|
|
320
|
+
B :ASSERT
|
|
321
|
+
1 :MLOAD(ecPairing_result)
|
|
322
|
+
|
|
323
|
+
; KZG proof with one poly and one evaluation
|
|
324
|
+
2 :MSTORE(ecPairing_ninputs)
|
|
325
|
+
32*6*2 :MSTORE(txCalldataLen)
|
|
326
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
327
|
+
0 => E
|
|
328
|
+
7732322222446307127032679746925673403013840763103947213960757438494804067267n :MSTORE(MEM:E)
|
|
329
|
+
8619360092012773279112944586645719683585858765189162557863470404130431808723n :MSTORE(MEM:E + 1)
|
|
330
|
+
7754062701624777074058760614745676120554164137217320298195308357000412149840n :MSTORE(MEM:E + 2)
|
|
331
|
+
4480687189204505779534873101802061566996023148878380905742776654135663383221n :MSTORE(MEM:E + 3)
|
|
332
|
+
18744429014512523574338799100424477374744612401726532054975840530120472566n :MSTORE(MEM:E + 4)
|
|
333
|
+
16667361185745910936700318129097219900413959552154798924397125501722669434888n :MSTORE(MEM:E + 5)
|
|
334
|
+
595801121933130257838893357109567932541713044978712091132608377833002940532n :MSTORE(MEM:E + 6)
|
|
335
|
+
15681552092527426161541501125159206079106959026991100968107368848241580050483n :MSTORE(MEM:E + 7)
|
|
336
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E + 8)
|
|
337
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E + 9)
|
|
338
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E + 10)
|
|
339
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E + 11)
|
|
340
|
+
:CALL(ecPairing)
|
|
341
|
+
0 => A
|
|
342
|
+
B :ASSERT
|
|
343
|
+
1 :MLOAD(ecPairing_result)
|
|
344
|
+
|
|
345
|
+
; 4] Tests with 18 inputs
|
|
346
|
+
3 :MSTORE(ecPairing_ninputs)
|
|
347
|
+
32*6*3 :MSTORE(txCalldataLen)
|
|
348
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
349
|
+
0 => E
|
|
350
|
+
7732322222446307127032679746925673403013840763103947213960757438494804067267n :MSTORE(MEM:E)
|
|
351
|
+
8619360092012773279112944586645719683585858765189162557863470404130431808723n :MSTORE(MEM:E + 1)
|
|
352
|
+
7754062701624777074058760614745676120554164137217320298195308357000412149840n :MSTORE(MEM:E + 2)
|
|
353
|
+
4480687189204505779534873101802061566996023148878380905742776654135663383221n :MSTORE(MEM:E + 3)
|
|
354
|
+
18744429014512523574338799100424477374744612401726532054975840530120472566n :MSTORE(MEM:E + 4)
|
|
355
|
+
16667361185745910936700318129097219900413959552154798924397125501722669434888n :MSTORE(MEM:E + 5)
|
|
356
|
+
595801121933130257838893357109567932541713044978712091132608377833002940532n :MSTORE(MEM:E + 6)
|
|
357
|
+
15681552092527426161541501125159206079106959026991100968107368848241580050483n :MSTORE(MEM:E + 7)
|
|
358
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E + 8)
|
|
359
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E + 9)
|
|
360
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E + 10)
|
|
361
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E + 11)
|
|
362
|
+
1n :MSTORE(MEM:E + 12)
|
|
363
|
+
2n :MSTORE(MEM:E + 13)
|
|
364
|
+
0n :MSTORE(MEM:E + 14)
|
|
365
|
+
0n :MSTORE(MEM:E + 15)
|
|
366
|
+
0n :MSTORE(MEM:E + 16)
|
|
367
|
+
0n :MSTORE(MEM:E + 17)
|
|
368
|
+
:CALL(ecPairing)
|
|
369
|
+
0 => A
|
|
370
|
+
B :ASSERT
|
|
371
|
+
1 :MLOAD(ecPairing_result)
|
|
372
|
+
|
|
373
|
+
3 :MSTORE(ecPairing_ninputs)
|
|
374
|
+
32*6*3 :MSTORE(txCalldataLen)
|
|
375
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
376
|
+
0 => E
|
|
377
|
+
20408625067408993290064640368727791004970573998302586029702220794326757674498n :MSTORE(MEM:E)
|
|
378
|
+
16305464745216061320718924810220361252899630638785881184214175311729150579496n :MSTORE(MEM:E + 1)
|
|
379
|
+
19366297632879679637284621799459008574776307690134846433263569915955921902826n :MSTORE(MEM:E + 2)
|
|
380
|
+
7402184029652592179271650707149396214555402416834379616679103713331638701004n :MSTORE(MEM:E + 3)
|
|
381
|
+
13233069919494729038860025360853108843397419493559475327647450442468969143158n :MSTORE(MEM:E + 4)
|
|
382
|
+
10493112377715503836766497500954305714610771526749266396762372159550562853087n :MSTORE(MEM:E + 5)
|
|
383
|
+
6065896804174124393372571703959114319291624137637105019419069942189555692569n :MSTORE(MEM:E + 6)
|
|
384
|
+
1817372094771574002977021734119138264961743925299214620753363200235482672254n :MSTORE(MEM:E + 7)
|
|
385
|
+
19366297632879679637284621799459008574776307690134846433263569915955921902826n :MSTORE(MEM:E + 8)
|
|
386
|
+
7402184029652592179271650707149396214555402416834379616679103713331638701004n :MSTORE(MEM:E + 9)
|
|
387
|
+
13233069919494729038860025360853108843397419493559475327647450442468969143158n :MSTORE(MEM:E + 10)
|
|
388
|
+
10493112377715503836766497500954305714610771526749266396762372159550562853087n :MSTORE(MEM:E + 11)
|
|
389
|
+
5155695327752856721154364733178772660419613502017586895566245903460009198248n :MSTORE(MEM:E + 12)
|
|
390
|
+
17870951736543108265510715325941304521966082260796939666348236029204261385066n :MSTORE(MEM:E + 13)
|
|
391
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E + 14)
|
|
392
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E + 15)
|
|
393
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E + 16)
|
|
394
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E + 17)
|
|
395
|
+
:CALL(ecPairing)
|
|
396
|
+
0 => A
|
|
397
|
+
B :ASSERT
|
|
398
|
+
1 :MLOAD(ecPairing_result)
|
|
399
|
+
|
|
400
|
+
; 5] Tests with 24 inputs
|
|
401
|
+
4 :MSTORE(ecPairing_ninputs)
|
|
402
|
+
32*6*4 :MSTORE(txCalldataLen)
|
|
403
|
+
-32 :MSTORE(readXFromCalldataOffset)
|
|
404
|
+
0 => E
|
|
405
|
+
1153563745531144946586097928621095258348432585499389732309707300454996283289n :MSTORE(MEM:E)
|
|
406
|
+
7370404687973809887690049462468892748861464831518247317487007737601322454777n :MSTORE(MEM:E+1)
|
|
407
|
+
9376055848676368316410365621777214987372973768688270899357881297879508822452n :MSTORE(MEM:E+2)
|
|
408
|
+
19738309004667351906306506105426292998739264612662465709107894554928292805496n :MSTORE(MEM:E+3)
|
|
409
|
+
285143926121120094170748007008262512509578107228129423236125884572189904421n :MSTORE(MEM:E+4)
|
|
410
|
+
10279962913447536422932523162364510093030414102832227875578519449385249705476n :MSTORE(MEM:E+5)
|
|
411
|
+
8576791937965657966843713337336683588215881223744955532549571901036035091965n :MSTORE(MEM:E+6)
|
|
412
|
+
20999102966105130950411191886633074956452730563320480529699815227954081231322n :MSTORE(MEM:E+7)
|
|
413
|
+
9376055848676368316410365621777214987372973768688270899357881297879508822452n :MSTORE(MEM:E+8)
|
|
414
|
+
19738309004667351906306506105426292998739264612662465709107894554928292805496n :MSTORE(MEM:E+9)
|
|
415
|
+
285143926121120094170748007008262512509578107228129423236125884572189904421n :MSTORE(MEM:E+10)
|
|
416
|
+
10279962913447536422932523162364510093030414102832227875578519449385249705476n :MSTORE(MEM:E+11)
|
|
417
|
+
18556379486610508840908277815073629329531616761731760569700551412487192333649n :MSTORE(MEM:E+12)
|
|
418
|
+
17673868103043290791894327402153901008120365354485186198280340860768344163073n :MSTORE(MEM:E+13)
|
|
419
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E+14)
|
|
420
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E+15)
|
|
421
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E+16)
|
|
422
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E+17)
|
|
423
|
+
20364104435611758595377721340560864676183708759135257849771131236782155536356n :MSTORE(MEM:E+18)
|
|
424
|
+
6044194345605039714961350342623860353524318320217972076629496104743557530117n :MSTORE(MEM:E+19)
|
|
425
|
+
11559732032986387107991004021392285783925812861821192530917403151452391805634n :MSTORE(MEM:E+20)
|
|
426
|
+
10857046999023057135944570762232829481370756359578518086990519993285655852781n :MSTORE(MEM:E+21)
|
|
427
|
+
4082367875863433681332203403145435568316851327593401208105741076214120093531n :MSTORE(MEM:E+22)
|
|
428
|
+
8495653923123431417604973247489272438418190587263600148770280649306958101930n :MSTORE(MEM:E+23)
|
|
429
|
+
:CALL(ecPairing)
|
|
430
|
+
0 => A
|
|
431
|
+
B :ASSERT
|
|
432
|
+
1 :MLOAD(ecPairing_result)
|
|
433
|
+
|
|
434
|
+
:JMP(finalizeExecution)
|
|
435
|
+
|
|
436
|
+
INCLUDE "../main/main.zkasm"
|
|
@@ -0,0 +1,139 @@
|
|
|
1
|
+
; constants needed by executor C++
|
|
2
|
+
CONST %N = 2**19
|
|
3
|
+
CONST %MAX_CNT_STEPS_LIMIT = %N
|
|
4
|
+
CONST %MAX_CNT_ARITH_LIMIT = %N
|
|
5
|
+
CONST %MAX_CNT_BINARY_LIMIT = %N
|
|
6
|
+
CONST %MAX_CNT_MEM_ALIGN_LIMIT = %N
|
|
7
|
+
CONST %MAX_CNT_KECCAK_F_LIMIT = %N
|
|
8
|
+
CONST %MAX_CNT_PADDING_PG_LIMIT = %N
|
|
9
|
+
CONST %MAX_CNT_POSEIDON_G_LIMIT = %N
|
|
10
|
+
|
|
11
|
+
VAR GLOBAL lastHashKId
|
|
12
|
+
VAR GLOBAL lastHashPId
|
|
13
|
+
|
|
14
|
+
VAR GLOBAL initial_A
|
|
15
|
+
VAR GLOBAL initial_B
|
|
16
|
+
VAR GLOBAL initial_C
|
|
17
|
+
VAR GLOBAL initial_D
|
|
18
|
+
VAR GLOBAL initial_E
|
|
19
|
+
VAR GLOBAL initial_CTX
|
|
20
|
+
VAR GLOBAL initial_SP
|
|
21
|
+
VAR GLOBAL initial_PC
|
|
22
|
+
VAR GLOBAL initial_GAS
|
|
23
|
+
VAR GLOBAL initial_SR
|
|
24
|
+
VAR GLOBAL initial_RR
|
|
25
|
+
VAR GLOBAL initial_HASHPOS
|
|
26
|
+
VAR GLOBAL initial_RCX
|
|
27
|
+
|
|
28
|
+
start:
|
|
29
|
+
|
|
30
|
+
STEP => A
|
|
31
|
+
0 :ASSERT
|
|
32
|
+
|
|
33
|
+
|
|
34
|
+
A :MSTORE(initial_A)
|
|
35
|
+
B :MSTORE(initial_B)
|
|
36
|
+
C :MSTORE(initial_C)
|
|
37
|
+
D :MSTORE(initial_D)
|
|
38
|
+
E :MSTORE(initial_E)
|
|
39
|
+
CTX :MSTORE(initial_CTX)
|
|
40
|
+
SP :MSTORE(initial_SP)
|
|
41
|
+
PC :MSTORE(initial_PC)
|
|
42
|
+
GAS :MSTORE(initial_GAS)
|
|
43
|
+
SR :MSTORE(initial_SR)
|
|
44
|
+
RR :MSTORE(initial_RR)
|
|
45
|
+
HASHPOS :MSTORE(initial_HASHPOS)
|
|
46
|
+
RCX :MSTORE(initial_RCX)
|
|
47
|
+
0 => A,B,C,D,E,CTX, SP, PC, GAS, SR, RR, HASHPOS, RCX
|
|
48
|
+
|
|
49
|
+
-1 :MSTORE(lastHashKId)
|
|
50
|
+
-1 :MSTORE(lastHashPId)
|
|
51
|
+
|
|
52
|
+
13640254227245024655838601068231183157721360561601028708811475275217122101072n :MSTORE(finalExpBN254_f11_x)
|
|
53
|
+
19308417300657558492615098636528930118171456086181403615599560648373004008445n :MSTORE(finalExpBN254_f11_y)
|
|
54
|
+
11600807028088028070223911119334614254604789223029238428546002219857166268982n :MSTORE(finalExpBN254_f12_x)
|
|
55
|
+
4879406373235938927297467572708988980645988929154072556290202741257062565094n :MSTORE(finalExpBN254_f12_y)
|
|
56
|
+
4171685090913488783052266386653991584736187693807813444268445186114207424938n :MSTORE(finalExpBN254_f13_x)
|
|
57
|
+
1277573873092817905392452044933753278511826457458184982228668801202320403016n :MSTORE(finalExpBN254_f13_y)
|
|
58
|
+
14431703268682647902296102635071887590346322924866425403256046961671041030534n :MSTORE(finalExpBN254_f21_x)
|
|
59
|
+
11898392435919290118390574221795784387718317590754683868792519816848089304255n :MSTORE(finalExpBN254_f21_y)
|
|
60
|
+
583787015380908422861158991038392109634638768690762169717364137330743074526n :MSTORE(finalExpBN254_f22_x)
|
|
61
|
+
13126870183170761631152540488140870675640427576483291663794972909787720839738n :MSTORE(finalExpBN254_f22_y)
|
|
62
|
+
6457767870676104874999362178075129079810053093666926870765167604207462152679n :MSTORE(finalExpBN254_f23_x)
|
|
63
|
+
12911511138445339632082563502636262379527290965988664015632615336010308825090n :MSTORE(finalExpBN254_f23_y)
|
|
64
|
+
:CALL(finalExpBN254)
|
|
65
|
+
13413524510323321318921703539856938196252165859353070108808910520379565591578n :MLOAD(finalExpBN254_f11_x)
|
|
66
|
+
3548381829456735642031500506306367847474828769923557674325753657986253436214n :MLOAD(finalExpBN254_f11_y)
|
|
67
|
+
11258588180307399598255242775094467208478122055367286369273756816466078325984n :MLOAD(finalExpBN254_f12_x)
|
|
68
|
+
15692415863664227683780306499051704744181486071132299317385971936570963983778n :MLOAD(finalExpBN254_f12_y)
|
|
69
|
+
14331327121685823241734822812072572580994818894715351943735993854561590776973n :MLOAD(finalExpBN254_f13_x)
|
|
70
|
+
5829057651356763815288519037751619402051833008237861839412688801032331829766n :MLOAD(finalExpBN254_f13_y)
|
|
71
|
+
15475783993587934296880977452723101772140252350911606731569729596277613550216n :MLOAD(finalExpBN254_f21_x)
|
|
72
|
+
5097655688415311910623889733978393264040884000272175630800968927057028195666n :MLOAD(finalExpBN254_f21_y)
|
|
73
|
+
11451831001542370722617744987566735321553462342240810632153337322850540201855n :MLOAD(finalExpBN254_f22_x)
|
|
74
|
+
10214880648406402761779167726229820911960967566000435639888288131094179536430n :MLOAD(finalExpBN254_f22_y)
|
|
75
|
+
7513746461017094458199399930075345786758663515755635567834665490471393582925n :MLOAD(finalExpBN254_f23_x)
|
|
76
|
+
1522857835029638585907442329762418957365351568194442821861575097484378991036n :MLOAD(finalExpBN254_f23_y)
|
|
77
|
+
|
|
78
|
+
|
|
79
|
+
end:
|
|
80
|
+
|
|
81
|
+
$ => A :MLOAD(initial_A)
|
|
82
|
+
$ => B :MLOAD(initial_B)
|
|
83
|
+
$ => C :MLOAD(initial_C)
|
|
84
|
+
$ => D :MLOAD(initial_D)
|
|
85
|
+
$ => E :MLOAD(initial_E)
|
|
86
|
+
$ => CTX :MLOAD(initial_CTX)
|
|
87
|
+
$ => SP :MLOAD(initial_SP)
|
|
88
|
+
$ => PC :MLOAD(initial_PC)
|
|
89
|
+
$ => GAS :MLOAD(initial_GAS)
|
|
90
|
+
$ => SR :MLOAD(initial_SR)
|
|
91
|
+
$ => RR :MLOAD(initial_RR)
|
|
92
|
+
$ => HASHPOS :MLOAD(initial_HASHPOS)
|
|
93
|
+
$ => RCX :MLOAD(initial_RCX)
|
|
94
|
+
|
|
95
|
+
; label finalizeExecution needed by executor C++
|
|
96
|
+
finalizeExecution:
|
|
97
|
+
${beforeLast()} : JMPN(finalizeExecution)
|
|
98
|
+
|
|
99
|
+
: JMP(start)
|
|
100
|
+
opINVALID:
|
|
101
|
+
; label checkAndSaveFrom needed by executor C++
|
|
102
|
+
checkAndSaveFrom:
|
|
103
|
+
:JMP(opINVALID)
|
|
104
|
+
|
|
105
|
+
INCLUDE "../main/pairings/constants.zkasm"
|
|
106
|
+
|
|
107
|
+
INCLUDE "../main/pairings/finalExpBN254.zkasm"
|
|
108
|
+
|
|
109
|
+
INCLUDE "../main/pairings/FPBN254/reduceFpBN254.zkasm"
|
|
110
|
+
INCLUDE "../main/pairings/FPBN254/addFpBN254.zkasm"
|
|
111
|
+
|
|
112
|
+
INCLUDE "../main/pairings/FP2BN254/addFp2BN254.zkasm"
|
|
113
|
+
INCLUDE "../main/pairings/FP2BN254/subFp2BN254.zkasm"
|
|
114
|
+
INCLUDE "../main/pairings/FP2BN254/mulFp2BN254.zkasm"
|
|
115
|
+
INCLUDE "../main/pairings/FP2BN254/squareFp2BN254.zkasm"
|
|
116
|
+
INCLUDE "../main/pairings/FP2BN254/escalarMulFp2BN254.zkasm"
|
|
117
|
+
INCLUDE "../main/pairings/FP2BN254/invFp2BN254.zkasm"
|
|
118
|
+
|
|
119
|
+
INCLUDE "../main/pairings/FP4BN254/squareFp4BN254.zkasm"
|
|
120
|
+
|
|
121
|
+
INCLUDE "../main/pairings/FP6BN254/addFp6BN254.zkasm"
|
|
122
|
+
INCLUDE "../main/pairings/FP6BN254/subFp6BN254.zkasm"
|
|
123
|
+
INCLUDE "../main/pairings/FP6BN254/mulFp6BN254.zkasm"
|
|
124
|
+
INCLUDE "../main/pairings/FP6BN254/sparseMulAFp6BN254.zkasm"
|
|
125
|
+
INCLUDE "../main/pairings/FP6BN254/squareFp6BN254.zkasm"
|
|
126
|
+
INCLUDE "../main/pairings/FP6BN254/inverseFp6BN254.zkasm"
|
|
127
|
+
|
|
128
|
+
INCLUDE "../main/pairings/FP12BN254/mulFp12BN254.zkasm"
|
|
129
|
+
INCLUDE "../main/pairings/FP12BN254/inverseFp12BN254.zkasm"
|
|
130
|
+
INCLUDE "../main/pairings/FP12BN254/frobFp12BN254.zkasm"
|
|
131
|
+
INCLUDE "../main/pairings/FP12BN254/frob2Fp12BN254.zkasm"
|
|
132
|
+
INCLUDE "../main/pairings/FP12BN254/frob3Fp12BN254.zkasm"
|
|
133
|
+
|
|
134
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/xBinDecompBN254.zkasm"
|
|
135
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/compressFp12BN254.zkasm"
|
|
136
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/decompressFp12BN254.zkasm"
|
|
137
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/squareCompCycloFp12BN254.zkasm"
|
|
138
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/squareCycloFp12BN254.zkasm"
|
|
139
|
+
INCLUDE "../main/pairings/FP12BN254/CYCLOFP12BN254/expByXCompCycloFp12BN254.zkasm"
|