Dynamic SHA256 Verification Noir

Dynamic arrays (slices) are expensive to use when computing SHA256 hashes within Noir.
By using recursive proofs and field encoding, we can design a circuit where the verification cost of a preimage for a given SHA256 hash remains constant, regardless of the preimage's length, up to a specified maximum. For example, with a fixed byte length of ~32k it costs ~430k gates to verify, with the num of gates and thus proving time increasing for larger byte lengths.

Circuit Generation and Demo

Generate sub-circuit verification keys and hashes
python scripts/generate_circuits.py <chunk_num>
Create hash list
python scripts/create_hash_list.py > ./example/src/hash_list.nr
Create recursive proofs and test verification
python scripts/full_demo.py

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
cached_bb		cached_bb
example		example
generated_circuit_data		generated_circuit_data
recursive_sha		recursive_sha
scripts		scripts
.gitattributes		.gitattributes
.gitignore		.gitignore
README.md		README.md
bootstrap.sh		bootstrap.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Dynamic SHA256 Verification Noir

Circuit Generation and Demo

About

Releases

Packages

Languages

alpinevm/dyn-sha256-noir

Folders and files

Latest commit

History

Repository files navigation

Dynamic SHA256 Verification Noir

Circuit Generation and Demo

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages