zebra/zebra-chain/src/sprout/tree.rs

//! Note Commitment Trees.
//!
//! A note commitment tree is an incremental Merkle tree of fixed depth
//! used to store note commitments that JoinSplit transfers or Spend
//! transfers produce. Just as the unspent transaction output set (UTXO
//! set) used in Bitcoin, it is used to express the existence of value and
//! the capability to spend it. However, unlike the UTXO set, it is not
//! the job of this tree to protect against double-spending, as it is
//! append-only.
//!
//! A root of a note commitment tree is associated with each treestate.
#![allow(clippy::unit_arg)]
#![allow(dead_code)]

use std::fmt;

use byteorder::{ByteOrder, LittleEndian};
#[cfg(any(test, feature = "proptest-impl"))]
use proptest_derive::Arbitrary;
use sha2::digest::generic_array::{typenum::U64, GenericArray};

/// MerkleCRH^Sprout Hash Function
///
/// MerkleCRH^Sprout(layer, left, right) := SHA256Compress(left || right)
///
/// `layer` is unused for Sprout but used for the Sapling equivalent.
///
/// https://zips.z.cash/protocol/protocol.pdf#merklecrh
fn merkle_crh_sprout(left: [u8; 32], right: [u8; 32]) -> [u8; 32] {
    let mut state = [0u32; 8];
    let mut block = GenericArray::<u8, U64>::default();

    block.as_mut_slice()[0..32].copy_from_slice(&left[..]);
    block.as_mut_slice()[32..63].copy_from_slice(&right[..]);

    sha2::compress256(&mut state, &[block]);

    let mut derived_bytes = [0u8; 32];
    LittleEndian::write_u32_into(&state, &mut derived_bytes);

    derived_bytes
}

/// Sprout note commitment tree root node hash.
///
/// The root hash in LEBS2OSP256(rt) encoding of the Sprout note
/// commitment tree corresponding to the final Sprout treestate of
/// this block. A root of a note commitment tree is associated with
/// each treestate.
#[derive(Clone, Copy, Default, Eq, PartialEq, Serialize, Deserialize, Hash)]
#[cfg_attr(any(test, feature = "proptest-impl"), derive(Arbitrary))]
pub struct Root([u8; 32]);

impl fmt::Debug for Root {
    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
        f.debug_tuple("Root").field(&hex::encode(&self.0)).finish()
    }
}

impl From<[u8; 32]> for Root {
    fn from(bytes: [u8; 32]) -> Root {
        Self(bytes)
    }
}

impl From<Root> for [u8; 32] {
    fn from(rt: Root) -> [u8; 32] {
        rt.0
    }
}
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`//! Note Commitment Trees.`
			`//!`
			`//! A note commitment tree is an incremental Merkle tree of fixed depth`
			`//! used to store note commitments that JoinSplit transfers or Spend`
			`//! transfers produce. Just as the unspent transaction output set (UTXO`
			`//! set) used in Bitcoin, it is used to express the existence of value and`
			`//! the capability to spend it. However, unlike the UTXO set, it is not`
			`//! the job of this tree to protect against double-spending, as it is`
			`//! append-only.`
			`//!`
			`//! A root of a note commitment tree is associated with each treestate.`
			`#![allow(clippy::unit_arg)]`
Add merkle_crh_sprout() and tidy note* things 2020-09-09 00:15:12 -07:00			`#![allow(dead_code)]`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00
			`use std::fmt;`

Add merkle_crh_sprout() and tidy note* things 2020-09-09 00:15:12 -07:00			`use byteorder::{ByteOrder, LittleEndian};`
export proptest impls for use in downstream crates (#1092) * export proptest impls for use in downstream crates * add testjob for disabled feature in zebra-chain * run rustfmt * try to fix github actions syntax * differentiate name * prove that github action tests zebra-chain build without features * revert change from last commit now that test is running * remove accidentally introduced newline * Update .github/workflows/ci.yml Co-authored-by: Deirdre Connolly <deirdre@zfnd.org> Co-authored-by: Deirdre Connolly <deirdre@zfnd.org> 2020-09-23 18:52:52 -07:00			`#[cfg(any(test, feature = "proptest-impl"))]`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`use proptest_derive::Arbitrary;`
Add merkle_crh_sprout() and tidy note* things 2020-09-09 00:15:12 -07:00			`use sha2::digest::generic_array::{typenum::U64, GenericArray};`

			`/// MerkleCRH^Sprout Hash Function`
			`///`
			`/// MerkleCRH^Sprout(layer, left, right) := SHA256Compress(left \|\| right)`
			`///`
			/// `layer` is unused for Sprout but used for the Sapling equivalent.
			`///`
			`/// https://zips.z.cash/protocol/protocol.pdf#merklecrh`
			`fn merkle_crh_sprout(left: [u8; 32], right: [u8; 32]) -> [u8; 32] {`
			`let mut state = [0u32; 8];`
			`let mut block = GenericArray::<u8, U64>::default();`

			`block.as_mut_slice()[0..32].copy_from_slice(&left[..]);`
			`block.as_mut_slice()[32..63].copy_from_slice(&right[..]);`

			`sha2::compress256(&mut state, &[block]);`

			`let mut derived_bytes = [0u8; 32];`
			`LittleEndian::write_u32_into(&state, &mut derived_bytes);`

			`derived_bytes`
			`}`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00
			`/// Sprout note commitment tree root node hash.`
			`///`
			`/// The root hash in LEBS2OSP256(rt) encoding of the Sprout note`
			`/// commitment tree corresponding to the final Sprout treestate of`
			`/// this block. A root of a note commitment tree is associated with`
			`/// each treestate.`
Implement RFC5: State updates `Chain` type (#1069) * Begin work on RFC5 implementation * I think this is necessary * holy shit supertrait implemented via subtrait * implement most of the chain functions * change to slightly better name * implement fork * fix outpoint handling in Chain struct * update expect for work * resolve review comment * split utxo into two sets * update the Chain definition * just a little more * update comment * Apply suggestions from code review Co-authored-by: teor <teor@riseup.net> * apply changes from code review * remove allow attribute in zebra-state/lib.rs * Update zebra-state/src/memory_state.rs Co-authored-by: teor <teor@riseup.net> * merge ChainSet type into MemoryState * rename state impl types * Add error messages to asserts * add module doc comment * update RFC for utxos * add missing header Co-authored-by: teor <teor@riseup.net> 2020-09-24 15:46:04 -07:00			`#[derive(Clone, Copy, Default, Eq, PartialEq, Serialize, Deserialize, Hash)]`
export proptest impls for use in downstream crates (#1092) * export proptest impls for use in downstream crates * add testjob for disabled feature in zebra-chain * run rustfmt * try to fix github actions syntax * differentiate name * prove that github action tests zebra-chain build without features * revert change from last commit now that test is running * remove accidentally introduced newline * Update .github/workflows/ci.yml Co-authored-by: Deirdre Connolly <deirdre@zfnd.org> Co-authored-by: Deirdre Connolly <deirdre@zfnd.org> 2020-09-23 18:52:52 -07:00			`#[cfg_attr(any(test, feature = "proptest-impl"), derive(Arbitrary))]`
Rename tree::*NoteTreeRootHash to tree::Root 2020-08-28 01:22:40 -07:00			`pub struct Root([u8; 32]);`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00
Rename tree::*NoteTreeRootHash to tree::Root 2020-08-28 01:22:40 -07:00			`impl fmt::Debug for Root {`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {`
Rename tree::*NoteTreeRootHash to tree::Root 2020-08-28 01:22:40 -07:00			`f.debug_tuple("Root").field(&hex::encode(&self.0)).finish()`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`}`
			`}`

Rename tree::*NoteTreeRootHash to tree::Root 2020-08-28 01:22:40 -07:00			`impl From<[u8; 32]> for Root {`
			`fn from(bytes: [u8; 32]) -> Root {`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`Self(bytes)`
			`}`
			`}`

Rename tree::*NoteTreeRootHash to tree::Root 2020-08-28 01:22:40 -07:00			`impl From<Root> for [u8; 32] {`
			`fn from(rt: Root) -> [u8; 32] {`
Whoops forgot to add sprout::NoteTreeRootHash 2020-08-11 23:51:11 -07:00			`rt.0`
			`}`
			`}`