feat: initial implementation of the full proof (#9)

agglayer · May 30, 2024 · 4ee985e · 4ee985e
1 parent 463504f
commit 4ee985e
Show file tree

Hide file tree

Showing 15 changed files with 1,080 additions and 892 deletions.
diff --git a/pessimistic_proof/Cargo.lock b/pessimistic_proof/Cargo.lock
diff --git a/pessimistic_proof/Cargo.toml b/pessimistic_proof/Cargo.toml
@@ -14,6 +14,7 @@ serde_with = { version = "3" }
 tiny-keccak = { git = "https://github.com/sp1-patches/tiny-keccak", branch = "patch-v2.0.2", features = [
     "keccak",
 ] }
+sp1-derive = { git = "https://github.com/succinctlabs/sp1", tag = "v1.0.2-testnet" }
 
 [dev-dependencies]
 hex = "0.4.3"

diff --git a/pessimistic_proof/src/batch.rs b/pessimistic_proof/src/batch.rs
@@ -0,0 +1,71 @@
+use std::collections::BTreeMap;
+
+use serde::{Deserialize, Serialize};
+
+use crate::{
+    keccak::Digest,
+    local_balance_tree::{BalanceTree, BalanceTreeByNetwork},
+    local_exit_tree::{hasher::Keccak256Hasher, LocalExitTree},
+    withdrawal::NetworkId,
+    Withdrawal,
+};
+
+/// Represents the required data from each CDK for the pessimistic proof.
+#[derive(Clone, Debug, Serialize, Deserialize)]
+pub struct Batch {
+    /// Origin network which emitted this batch
+    pub origin_network: NetworkId,
+    /// Initial local exit tree
+    pub prev_local_exit_tree: LocalExitTree<Keccak256Hasher>,
+    /// Initial local exit root
+    pub prev_local_exit_root: Digest,
+    /// Initial balance tree
+    pub prev_local_balance_tree: BalanceTree,
+    /// Set of withdrawals
+    pub withdrawals: Vec<Withdrawal>,
+}
+
+impl Batch {
+    /// Creates a new [`Batch`].
+    pub fn new(
+        origin_network: NetworkId,
+        prev_local_exit_tree: LocalExitTree<Keccak256Hasher>,
+        prev_local_exit_root: Digest,
+        prev_local_balance_tree: BalanceTree,
+        withdrawals: Vec<Withdrawal>,
+    ) -> Self {
+        Self {
+            origin_network,
+            prev_local_exit_tree,
+            prev_local_exit_root,
+            prev_local_balance_tree,
+            withdrawals,
+        }
+    }
+
+    /// Compute the new exit root.
+    pub fn compute_new_exit_root(&self) -> Digest {
+        let mut new_local_exit_tree = self.prev_local_exit_tree.clone();
+
+        for withdrawal in &self.withdrawals {
+            new_local_exit_tree.add_leaf(withdrawal.hash());
+        }
+
+        new_local_exit_tree.get_root()
+    }
+
+    /// Compute the new balance tree.
+    pub fn compute_new_balance_tree(&self) -> BalanceTreeByNetwork {
+        let mut aggregate: BalanceTreeByNetwork = {
+            let base: BTreeMap<NetworkId, BalanceTree> =
+                [(self.origin_network, self.prev_local_balance_tree.clone())].into();
+            base.into()
+        };
+
+        for withdrawal in &self.withdrawals {
+            aggregate.insert(self.origin_network, withdrawal.clone());
+        }
+
+        aggregate
+    }
+}
diff --git a/pessimistic_proof/src/lib.rs b/pessimistic_proof/src/lib.rs
@@ -2,9 +2,13 @@ pub mod keccak;
 pub mod local_exit_tree;
 
 mod proof;
-pub use proof::{generate_leaf_proof, LeafProofError};
+pub use proof::{generate_full_proof, ProofError};
 
 pub mod test_utils;
 
 mod withdrawal;
-pub use withdrawal::{TokenInfo, Withdrawal};
+pub use withdrawal::{NetworkId, TokenInfo, Withdrawal};
+
+pub mod batch;
+
+pub mod local_balance_tree;
diff --git a/pessimistic_proof/src/local_balance_tree.rs b/pessimistic_proof/src/local_balance_tree.rs
@@ -0,0 +1,192 @@
+use std::{
+    collections::{BTreeMap, HashMap},
+    ops::{Deref, DerefMut},
+};
+
+use reth_primitives::U256;
+use serde::{Deserialize, Serialize};
+use tiny_keccak::{Hasher, Keccak};
+
+use crate::{
+    keccak::Digest,
+    withdrawal::{NetworkId, TokenInfo},
+    Withdrawal,
+};
+
+/// Records all the deposits and withdrawals for each network.
+///
+/// Specifically, this records a map `network => (token_id => (deposit, withdraw))`: for each
+/// network, the amounts withdrawn and deposited for every token are recorded.
+///
+/// Note: a "deposit" is the counterpart of a [`Withdrawal`]; a "withdrawal" from the source
+/// network is a "deposit" in the destination network.
+#[derive(Debug, Clone, Default, Serialize, Deserialize)]
+pub struct BalanceTreeByNetwork(BTreeMap<NetworkId, BalanceTree>);
+
+impl BalanceTreeByNetwork {
+    /// Creates a new empty [`BalanceTreeByNetwork`].
+    pub fn new() -> Self {
+        Self(BTreeMap::new())
+    }
+
+    /// Updates the origin and destination network in the aggregate from a [`Withdrawal`].
+    pub fn insert(&mut self, origin_network: NetworkId, withdrawal: Withdrawal) {
+        // Withdraw the origin network
+        self.0
+            .entry(origin_network)
+            .or_default()
+            .withdraw(withdrawal.token_info.clone(), withdrawal.amount);
+
+        // Deposit the destination network
+        self.0
+            .entry(withdrawal.dest_network)
+            .or_default()
+            .deposit(withdrawal.token_info, withdrawal.amount);
+    }
+
+    /// Merge two [`BalanceTreeByNetwork`].
+    pub fn merge(&mut self, other: &BalanceTreeByNetwork) {
+        for (network, balance_tree) in other.0.iter() {
+            self.0
+                .entry(*network)
+                .and_modify(|bt| bt.merge(balance_tree))
+                .or_insert(balance_tree.clone());
+        }
+    }
+}
+
+/// Merge a set of [`BalanceTreeByNetwork`].
+pub fn merge_balance_trees(
+    balance_trees: &HashMap<NetworkId, BalanceTreeByNetwork>,
+) -> BalanceTreeByNetwork {
+    let mut merged_balance_trees = BalanceTreeByNetwork::new();
+
+    for balance_tree in balance_trees.values() {
+        merged_balance_trees.merge(balance_tree);
+    }
+
+    merged_balance_trees
+}
+
+impl From<BTreeMap<NetworkId, BalanceTree>> for BalanceTreeByNetwork {
+    fn from(value: BTreeMap<NetworkId, BalanceTree>) -> Self {
+        Self(value)
+    }
+}
+
+impl Deref for BalanceTreeByNetwork {
+    type Target = BTreeMap<NetworkId, BalanceTree>;
+
+    fn deref(&self) -> &Self::Target {
+        &self.0
+    }
+}
+
+impl DerefMut for BalanceTreeByNetwork {
+    fn deref_mut(&mut self) -> &mut Self::Target {
+        &mut self.0
+    }
+}
+
+/// Record the balance as total deposit and total withdraw.
+#[derive(Default, Clone, Serialize, Deserialize, Debug)]
+pub struct Balance {
+    deposit: U256,
+    withdraw: U256,
+}
+
+pub struct Deposit(pub U256);
+pub struct Withdraw(pub U256);
+
+impl From<Deposit> for Balance {
+    fn from(v: Deposit) -> Self {
+        Self {
+            deposit: v.0,
+            withdraw: U256::ZERO,
+        }
+    }
+}
+
+impl From<Withdraw> for Balance {
+    fn from(v: Withdraw) -> Self {
+        Self {
+            deposit: U256::ZERO,
+            withdraw: v.0,
+        }
+    }
+}
+
+impl Balance {
+    pub fn is_negative(&self) -> bool {
+        self.withdraw > self.deposit
+    }
+
+    pub fn deposit(&mut self, amount: U256) {
+        self.deposit += amount;
+    }
+
+    pub fn withdraw(&mut self, amount: U256) {
+        self.withdraw += amount;
+    }
+
+    pub fn hash(&self) -> Digest {
+        let mut hasher = Keccak::v256();
+
+        hasher.update(&self.deposit.to_be_bytes::<32>());
+        hasher.update(&self.withdraw.to_be_bytes::<32>());
+
+        let mut output = [0u8; 32];
+        hasher.finalize(&mut output);
+        output
+    }
+}
+
+/// Records the balances for each [`TokenInfo`].
+#[derive(Clone, Debug, Serialize, Deserialize, Default)]
+pub struct BalanceTree(BTreeMap<TokenInfo, Balance>);
+
+impl From<Vec<(TokenInfo, Balance)>> for BalanceTree {
+    fn from(initial_balance: Vec<(TokenInfo, Balance)>) -> Self {
+        Self(initial_balance.into_iter().collect())
+    }
+}
+
+impl BalanceTree {
+    /// Apply deposit to the given [`TokenInfo`].
+    pub fn deposit(&mut self, token: TokenInfo, amount: U256) {
+        self.0.entry(token).or_default().deposit(amount);
+    }
+
+    /// Apply withdraw to the given [`TokenInfo`].
+    pub fn withdraw(&mut self, token: TokenInfo, amount: U256) {
+        self.0.entry(token).or_default().withdraw(amount);
+    }
+
+    /// Merge with another [`BalanceTree`].
+    pub fn merge(&mut self, other: &BalanceTree) {
+        for (token, balance) in other.0.iter() {
+            self.deposit(token.clone(), balance.deposit);
+            self.withdraw(token.clone(), balance.withdraw)
+        }
+    }
+
+    /// Returns whether any token has debt.
+    /// TODO: We may want to return the debtor (token, debt)
+    pub fn has_debt(&self) -> bool {
+        self.0.iter().any(|(_, balance)| balance.is_negative())
+    }
+
+    /// Returns the hash of [`BalanceTree`].
+    pub fn hash(&self) -> Digest {
+        let mut hasher = Keccak::v256();
+
+        for (token_info, balance) in self.0.iter() {
+            hasher.update(&token_info.hash());
+            hasher.update(&balance.hash());
+        }
+
+        let mut output = [0u8; 32];
+        hasher.finalize(&mut output);
+        output
+    }
+}
diff --git a/pessimistic_proof/src/local_exit_tree/hasher.rs b/pessimistic_proof/src/local_exit_tree/hasher.rs
@@ -9,6 +9,7 @@ pub trait Hasher {
 }
 
 /// A Keccak hasher with a 256-bit security level.
+#[derive(Debug, Clone)]
 pub struct Keccak256Hasher;
 
 impl Hasher for Keccak256Hasher {