fix sp1 aggregation

Signed-off-by: smtmfft <[email protected]>
taikoxyz · Oct 3, 2024 · d14774d · d14774d
1 parent e34567f
commit d14774d
Show file tree

Hide file tree

Showing 7 changed files with 31 additions and 13 deletions.
diff --git a/lib/src/input.rs b/lib/src/input.rs
@@ -73,7 +73,7 @@ pub struct AggregationGuestOutput {
     pub hash: B256,
 }
 
-#[derive(Clone, Serialize, Deserialize)]
+#[derive(Debug, Clone, Serialize, Deserialize)]
 pub struct ZkAggregationGuestInput {
     pub image_id: [u32; 8],
     pub block_inputs: Vec<B256>,

diff --git a/lib/src/protocol_instance.rs b/lib/src/protocol_instance.rs
@@ -336,6 +336,15 @@ pub fn words_to_bytes_le(words: &[u32; 8]) -> [u8; 32] {
     bytes
 }
 
+pub fn words_to_bytes_be(words: &[u32; 8]) -> [u8; 32] {
+    let mut bytes = [0u8; 32];
+    for i in 0..8 {
+        let word_bytes = words[i].to_be_bytes();
+        bytes[i * 4..(i + 1) * 4].copy_from_slice(&word_bytes);
+    }
+    bytes
+}
+
 pub fn aggregation_output_combine(public_inputs: Vec<B256>) -> Vec<u8> {
     let mut output = Vec::with_capacity(public_inputs.len() * 32);
     for public_input in public_inputs.iter() {

diff --git a/pipeline/src/executor.rs b/pipeline/src/executor.rs
@@ -100,7 +100,8 @@ impl Executor {
             let elf = std::fs::read(&dest.join(&name.replace('_', "-")))?;
             let prover = CpuProver::new();
             let key_pair = prover.setup(&elf);
-            println!("sp1 elf vk is: {}", key_pair.1.bytes32());
+            println!("sp1 elf vk bn256 is: {}", key_pair.1.bytes32());
+            println!("sp1 elf vk hash_bytes is: {}", hex::encode(&key_pair.1.hash_bytes()));
         }
 
         Ok(())

diff --git a/provers/sp1/driver/src/lib.rs b/provers/sp1/driver/src/lib.rs
@@ -196,7 +196,7 @@ impl Prover for Sp1Prover {
             time.stop_with("==> Verification complete");
         }
 
-        let proof_string = proof_bytes.is_empty().then_some(
+        let proof_string = (!proof_bytes.is_empty()).then_some(
             // 0x + 64 bytes of the vkey + the proof
             // vkey itself contains 0x prefix
             format!(
@@ -269,6 +269,11 @@ impl Prover for Sp1Prover {
             image_id: image_id,
             block_inputs,
         };
+        info!(
+            "Aggregating {:?} proofs with input: {:?}",
+            input.proofs.len(),
+            aggregation_input
+        );
 
         let mut stdin = SP1Stdin::new();
         stdin.write(&aggregation_input);
@@ -296,6 +301,12 @@ impl Prover for Sp1Prover {
             .unwrap_or_else(ProverClient::new);
 
         let (pk, vk) = client.setup(AGGREGATION_ELF);
+        info!(
+            "sp1 aggregate: {:?} based {:?} blocks with vk {:?}",
+            reth_primitives::hex::encode_prefixed(stark_vk.hash_bytes()),
+            input.proofs.len(),
+            vk.bytes32()
+        );
 
         let prove_result = client
             .prove(&pk, stdin)
@@ -306,27 +317,24 @@ impl Prover for Sp1Prover {
         let proof_bytes = prove_result.bytes();
         if param.verify {
             let time = Measurement::start("verify", false);
-            let pi_hash = prove_result
-                .clone()
-                .borrow_mut()
-                .public_values
-                .read::<[u8; 32]>();
+            let aggregation_pi = prove_result.clone().borrow_mut().public_values.raw();
             let fixture = RaikoProofFixture {
                 vkey: vk.bytes32().to_string(),
-                public_values: B256::from_slice(&pi_hash).to_string(),
+                public_values: reth_primitives::hex::encode_prefixed(&aggregation_pi),
                 proof: reth_primitives::hex::encode_prefixed(&proof_bytes),
             };
 
             verify_sol(&fixture)?;
             time.stop_with("==> Verification complete");
         }
 
-        let proof = proof_bytes.is_empty().then_some(
+        let proof = (!proof_bytes.is_empty()).then_some(
             // 0x + 64 bytes of the vkey + the proof
             // vkey itself contains 0x prefix
             format!(
-                "{}{}",
+                "{}{}{}",
                 vk.bytes32(),
+                reth_primitives::hex::encode(stark_vk.hash_bytes()),
                 reth_primitives::hex::encode(proof_bytes)
             ),
         );

diff --git a/provers/sp1/guest/elf/sp1-aggregation b/provers/sp1/guest/elf/sp1-aggregation
diff --git a/provers/sp1/guest/elf/sp1-guest b/provers/sp1/guest/elf/sp1-guest
diff --git a/provers/sp1/guest/src/aggregation.rs b/provers/sp1/guest/src/aggregation.rs
@@ -7,7 +7,7 @@ use sha2::{Digest, Sha256};
 use raiko_lib::{
     input::ZkAggregationGuestInput,
     primitives::B256,
-    protocol_instance::{aggregation_output, words_to_bytes_le},
+    protocol_instance::{aggregation_output, words_to_bytes_be},
 };
 
 pub fn main() {
@@ -24,7 +24,7 @@ pub fn main() {
 
     // The aggregation output
     sp1_zkvm::io::commit_slice(&aggregation_output(
-        B256::from(words_to_bytes_le(&input.image_id)),
+        B256::from(words_to_bytes_be(&input.image_id)),
         input.block_inputs,
     ));
 }