anemoi/pallas/anemoi_4_3/
mod.rs

1//! Implementation of the Anemoi permutation
2
3use super::{sbox, Felt, MontFp};
4use crate::{Anemoi, Jive, Sponge};
5use ark_ff::{One, Zero};
6/// Digest for Anemoi
7mod digest;
8/// Sponge for Anemoi
9mod hasher;
10/// Round constants for Anemoi
11mod round_constants;
12
13pub use digest::AnemoiDigest;
14
15// ANEMOI CONSTANTS
16// ================================================================================================
17
18/// Function state is set to 4 field elements or 128 bytes.
19/// 1 element of the state is reserved for capacity.
20pub const STATE_WIDTH: usize = 4;
21/// 3 elements of the state are reserved for rate.
22pub const RATE_WIDTH: usize = 3;
23
24/// The state is divided into two even-length rows.
25pub const NUM_COLUMNS: usize = 2;
26
27/// One element (32-bytes) is returned as digest.
28pub const DIGEST_SIZE: usize = 1;
29
30/// The number of rounds is set to 14 to provide 128-bit security level.
31pub const NUM_HASH_ROUNDS: usize = 14;
32
33// ANEMOI INSTANTIATION
34// ================================================================================================
35
36/// An Anemoi instantiation over Pallas basefield with 2 columns and rate 3.
37#[derive(Debug, Clone)]
38pub struct AnemoiPallas_4_3;
39
40impl<'a> Anemoi<'a, Felt> for AnemoiPallas_4_3 {
41    const NUM_COLUMNS: usize = NUM_COLUMNS;
42    const NUM_ROUNDS: usize = NUM_HASH_ROUNDS;
43
44    const WIDTH: usize = STATE_WIDTH;
45    const RATE: usize = RATE_WIDTH;
46    const OUTPUT_SIZE: usize = DIGEST_SIZE;
47
48    const ARK_C: &'a [Felt] = &round_constants::C;
49    const ARK_D: &'a [Felt] = &round_constants::D;
50
51    const GROUP_GENERATOR: u32 = sbox::BETA;
52
53    const ALPHA: u32 = sbox::ALPHA;
54    const INV_ALPHA: Felt = sbox::INV_ALPHA;
55    const BETA: u32 = sbox::BETA;
56    const DELTA: Felt = sbox::DELTA;
57
58    fn exp_by_inv_alpha(x: Felt) -> Felt {
59        sbox::exp_by_inv_alpha(&x)
60    }
61}
62
63#[cfg(test)]
64mod tests {
65    use super::*;
66
67    #[test]
68    fn test_sbox() {
69        // Generated from https://github.com/anemoi-hash/anemoi-hash/
70        let mut input = [
71            [Felt::zero(); 4],
72            [Felt::one(); 4],
73            [Felt::zero(), Felt::zero(), Felt::one(), Felt::one()],
74            [Felt::one(), Felt::one(), Felt::zero(), Felt::zero()],
75            [
76                MontFp!(
77                    "18712880128871405660082341349730785565255823061628968703358865218751151417752"
78                ),
79                MontFp!(
80                    "28852735674895552575971176920132291269394325921159912401133547399551253823836"
81                ),
82                MontFp!(
83                    "26914183606871107651657798736743760395879931340732129890542130715219568635233"
84                ),
85                MontFp!(
86                    "27817720939029377917254451534893082130205436526319390756748725483821043682962"
87                ),
88            ],
89            [
90                MontFp!(
91                    "7488280825670435445228503460715501154849843394606817722757467631878489491576"
92                ),
93                MontFp!(
94                    "2100987632991283471444150478455496231109403827315568273860288078718165741464"
95                ),
96                MontFp!(
97                    "6222520451026549836150679335151684263209710554091853508002985812478940178025"
98                ),
99                MontFp!(
100                    "2331294531406910958527822246275943944406710088456573436153274102010924017354"
101                ),
102            ],
103            [
104                MontFp!(
105                    "28236554368047742021122674913664702925498051699009480797855123423396409127424"
106                ),
107                MontFp!(
108                    "28571956557648956032290472207534755544155543961067813238521143563020835260190"
109                ),
110                MontFp!(
111                    "11890864596492355263204927068825137107155013350717250075271605503208215692102"
112                ),
113                MontFp!(
114                    "2146385911254725323188938434966974025494729246886919375868288131679851507942"
115                ),
116            ],
117            [
118                MontFp!(
119                    "5662602441506544082794930546694382613083638283645264190718286175614291950641"
120                ),
121                MontFp!(
122                    "26426230950527356812142221026275565116303738754790084240578429795339466034164"
123                ),
124                MontFp!(
125                    "7606431703282712728472704009353367791943393945493591493569682126997947706297"
126                ),
127                MontFp!(
128                    "12646889247097562650417490351564075056024075418253246000525029119338492484289"
129                ),
130            ],
131            [
132                MontFp!(
133                    "10825787260607616751169609178840463930489641212864382637613146607964956037921"
134                ),
135                MontFp!(
136                    "12945133801140879334333735332705086675570931561015785398145176519124729231398"
137                ),
138                MontFp!(
139                    "25796573378662241386672798266462663816631914566359170227059964498775517557593"
140                ),
141                MontFp!(
142                    "22905675056529224862135491481164551982575868649347349452708091844005700084745"
143                ),
144            ],
145            [
146                MontFp!(
147                    "2706293383103552142713750355410095922374008816626706310439385030279551962855"
148                ),
149                MontFp!(
150                    "25095174773049296127150329242829615480392172531687294760034581117446118221012"
151                ),
152                MontFp!(
153                    "26266110874738862263602215168345217096550795904430199626942629792028606958240"
154                ),
155                MontFp!(
156                    "28603368972835430820221743278802074927949345284922929996556953635303950088156"
157                ),
158            ],
159        ];
160
161        let output = [
162            [
163                MontFp!(
164                    "11579208923731619542357098500868790785345222592776624286381870705739987052135"
165                ),
166                MontFp!(
167                    "11579208923731619542357098500868790785345222592776624286381870705739987052135"
168                ),
169                Felt::zero(),
170                Felt::zero(),
171            ],
172            [
173                MontFp!(
174                    "21735578927475698800610569875486878598709331368954848907691439386750294515554"
175                ),
176                MontFp!(
177                    "21735578927475698800610569875486878598709331368954848907691439386750294515554"
178                ),
179                MontFp!(
180                    "14915059756306458668798776150463074115887270782104658469523764643553127876149"
181                ),
182                MontFp!(
183                    "14915059756306458668798776150463074115887270782104658469523764643553127876149"
184                ),
185            ],
186            [
187                MontFp!(
188                    "8778638346924233418081111828888910239654127576710317834940372077697612057229"
189                ),
190                MontFp!(
191                    "8778638346924233418081111828888910239654127576710317834940372077697612057229"
192                ),
193                MontFp!(
194                    "22051619713425230766531768624512758113922728761788164591626179149121958488460"
195                ),
196                MontFp!(
197                    "22051619713425230766531768624512758113922728761788164591626179149121958488460"
198                ),
199            ],
200            [
201                MontFp!(
202                    "11579208923731619542357098500868790785345222592776624286381870705739987052141"
203                ),
204                MontFp!(
205                    "11579208923731619542357098500868790785345222592776624286381870705739987052141"
206                ),
207                MontFp!(
208                    "28948022309329048855892746252171976963363056481941560715954676764349967630336"
209                ),
210                MontFp!(
211                    "28948022309329048855892746252171976963363056481941560715954676764349967630336"
212                ),
213            ],
214            [
215                MontFp!(
216                    "17283201414116924245089329907535698111224648658784221600439748639335637674941"
217                ),
218                MontFp!(
219                    "26479782800068398970458204182012705758401605304420106167204650590713256532182"
220                ),
221                MontFp!(
222                    "10338391597216277656942980413829008466777109536073581900877591835021695568819"
223                ),
224                MontFp!(
225                    "17123282312932080046038193128576470212124183002819788764877324951792820434754"
226                ),
227            ],
228            [
229                MontFp!(
230                    "6206380954349620232623210204008393720703543989720135339896580206585522492619"
231                ),
232                MontFp!(
233                    "16358178024424626585878286405746802069580448534221731165679599104937972035362"
234                ),
235                MontFp!(
236                    "1725186594966228291626100224452100382425697018376797116674060244334399737935"
237                ),
238                MontFp!(
239                    "22511022351156139808252235478233147735737684785393794001239173856649217523884"
240                ),
241            ],
242            [
243                MontFp!(
244                    "1501345805127759538149278409744046764755030147159523194334056836741639537914"
245                ),
246                MontFp!(
247                    "2072956593715702166804090764699142512499267021860921056724909591595402265164"
248                ),
249                MontFp!(
250                    "6794616548982850581352118323703858558247511785700686750944534384011588938265"
251                ),
252                MontFp!(
253                    "28891023274198955119276558361602207121843074497319805569597386468487474083941"
254                ),
255            ],
256            [
257                MontFp!(
258                    "12768072330711405752402872149949159672547968162080820602959168114898639808665"
259                ),
260                MontFp!(
261                    "3189142344855296694473746181389271523945849654798698928000280836774441230698"
262                ),
263                MontFp!(
264                    "20167495834362902685692827595809744708982207525482514019908874904371289631934"
265                ),
266                MontFp!(
267                    "476365962398447037164228410788223316602498531574527301541232344419852537249"
268                ),
269            ],
270            [
271                MontFp!(
272                    "15863354971048065449627781299461239741107190960137886773206747362106533641213"
273                ),
274                MontFp!(
275                    "10443118821636765910392437596462640759768063449734247551061174994355315788226"
276                ),
277                MontFp!(
278                    "25787971215416328828361145584498935717599739690296329140906648755455106361026"
279                ),
280                MontFp!(
281                    "25233982640752157338965249744316550200028374932491477612911337158015794810420"
282                ),
283            ],
284            [
285                MontFp!(
286                    "26879508395061745657933050746142536283130246035495192961566834648341564386249"
287                ),
288                MontFp!(
289                    "19414158739869868624990935872412201125324268703029552775035867917335734225509"
290                ),
291                MontFp!(
292                    "16584764994245004770894514188341380367909435067872517650346782058589958303457"
293                ),
294                MontFp!(
295                    "19769027774488544067737788505065028224861787632221296613317373544887464195211"
296                ),
297            ],
298        ];
299
300        for i in input.iter_mut() {
301            AnemoiPallas_4_3::sbox_layer(i);
302        }
303
304        for (&i, o) in input.iter().zip(output) {
305            assert_eq!(i, o);
306        }
307    }
308}
anemoi/pallas/anemoi_4_3/mod.rs

anemoi/pallas/anemoi_4_3/
mod.rs
