Applied edits

SyntheticBird45 · SyntheticBird45 · commit 8959b8edb377 · 2024-10-22T14:11:56.000+02:00
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/constants/Cargo.toml b/constants/Cargo.toml
@@ -13,7 +13,6 @@ default = []
 block   = []
 build   = []
 rpc     = []
-crypto  = []
 
 [dependencies]
 
diff --git a/constants/src/crypto.rs b/constants/src/crypto.rs
diff --git a/constants/src/lib.rs b/constants/src/lib.rs
@@ -8,7 +8,5 @@ mod macros;
 pub mod block;
 #[cfg(feature = "build")]
 pub mod build;
-#[cfg(feature = "crypto")]
-pub mod crypto;
 #[cfg(feature = "rpc")]
 pub mod rpc;
diff --git a/helper/Cargo.toml b/helper/Cargo.toml
@@ -10,12 +10,13 @@ repository = "https://github.com/Cuprate/cuprate/tree/main/consensus"
 
 [features]
 # All features off by default.
-default   = []
+default   = ["std"]
 std       = []
 atomic    = ["dep:crossbeam"]
 asynch    = ["dep:futures", "dep:rayon"]
 cast      = []
 constants = []
+crypto    = ["dep:curve25519-dalek", "dep:monero-serai"]
 fs        = ["dep:dirs"]
 num       = []
 map       = ["cast", "dep:monero-serai", "dep:cuprate-constants"]
@@ -26,12 +27,13 @@ tx        = ["dep:monero-serai"]
 [dependencies]
 cuprate-constants = { path = "../constants", optional = true, features = ["block"] }
 
-crossbeam    = { workspace = true, optional = true }
-chrono       = { workspace = true, optional = true, features = ["std", "clock"] }
-dirs         = { workspace = true, optional = true }
-futures      = { workspace = true, optional = true, features = ["std"] }
-monero-serai = { workspace = true, optional = true }
-rayon        = { workspace = true, optional = true }
+chrono           = { workspace = true, optional = true, features = ["std", "clock"] }
+crossbeam        = { workspace = true, optional = true }
+curve25519-dalek = { workspace = true, optional = true }
+dirs             = { workspace = true, optional = true }
+futures          = { workspace = true, optional = true, features = ["std"] }
+monero-serai     = { workspace = true, optional = true }
+rayon            = { workspace = true, optional = true }
 
 # This is kinda a stupid work around.
 # [thread] needs to activate one of these libs (windows|libc)
diff --git a/helper/src/crypto.rs b/helper/src/crypto.rs
@@ -0,0 +1,96 @@
+//! Crypto related functions and runtime initialized constants
+
+//---------------------------------------------------------------------------------------------------- Use
+use std::sync::LazyLock;
+
+use curve25519_dalek::{
+    constants::ED25519_BASEPOINT_POINT, edwards::VartimeEdwardsPrecomputation,
+    traits::VartimePrecomputedMultiscalarMul, EdwardsPoint, Scalar,
+};
+use monero_serai::generators::H;
+
+/// This is the decomposed amount table containing the mandatory Pre-RCT amounts. It is use to pre-compute 
+/// zero commitments at runtime.
+/// 
+/// Defined at:
+/// - <https://github.com/monero-project/monero/blob/893916ad091a92e765ce3241b94e706ad012b62a/src/ringct/rctOps.cpp#L44>
+#[rustfmt::skip]
+const ZERO_COMMITMENT_DECOMPOSED_AMOUNT: [u64; 172] = [
+    1,                   2,                   3,                   4,                   5,                   6,                   7,                   8,                   9,
+    10,                  20,                  30,                  40,                  50,                  60,                  70,                  80,                  90,
+    100,                 200,                 300,                 400,                 500,                 600,                 700,                 800,                 900,
+    1000,                2000,                3000,                4000,                5000,                6000,                7000,                8000,                9000,
+    10000,               20000,               30000,               40000,               50000,               60000,               70000,               80000,               90000,
+    100000,              200000,              300000,              400000,              500000,              600000,              700000,              800000,              900000,
+    1000000,             2000000,             3000000,             4000000,             5000000,             6000000,             7000000,             8000000,             9000000,
+    10000000,            20000000,            30000000,            40000000,            50000000,            60000000,            70000000,            80000000,            90000000,
+    100000000,           200000000,           300000000,           400000000,           500000000,           600000000,           700000000,           800000000,           900000000,
+    1000000000,          2000000000,          3000000000,          4000000000,          5000000000,          6000000000,          7000000000,          8000000000,          9000000000,
+    10000000000,         20000000000,         30000000000,         40000000000,         50000000000,         60000000000,         70000000000,         80000000000,         90000000000,
+    100000000000,        200000000000,        300000000000,        400000000000,        500000000000,        600000000000,        700000000000,        800000000000,        900000000000,
+    1000000000000,       2000000000000,       3000000000000,       4000000000000,       5000000000000,       6000000000000,       7000000000000,       8000000000000,       9000000000000,
+    10000000000000,      20000000000000,      30000000000000,      40000000000000,      50000000000000,      60000000000000,      70000000000000,      80000000000000,      90000000000000,
+    100000000000000,     200000000000000,     300000000000000,     400000000000000,     500000000000000,     600000000000000,     700000000000000,     800000000000000,     900000000000000,
+    1000000000000000,    2000000000000000,    3000000000000000,    4000000000000000,    5000000000000000,    6000000000000000,    7000000000000000,    8000000000000000,    9000000000000000,
+    10000000000000000,   20000000000000000,   30000000000000000,   40000000000000000,   50000000000000000,   60000000000000000,   70000000000000000,   80000000000000000,   90000000000000000,
+    100000000000000000,  200000000000000000,  300000000000000000,  400000000000000000,  500000000000000000,  600000000000000000,  700000000000000000,  800000000000000000,  900000000000000000,
+    1000000000000000000, 2000000000000000000, 3000000000000000000, 4000000000000000000, 5000000000000000000, 6000000000000000000, 7000000000000000000, 8000000000000000000, 9000000000000000000,
+    10000000000000000000
+];
+
+/// Runtime initialized H generator.
+static H_PRECOMP: LazyLock<VartimeEdwardsPrecomputation> =
+    LazyLock::new(|| VartimeEdwardsPrecomputation::new([*H, ED25519_BASEPOINT_POINT]));
+
+/// Runtime initialized zero commitment lookup table
+///
+/// ASSUMPTION: This function assume that the [`ZERO_COMMITMENT_DECOMPOSED_AMOUNT`]
+/// table is sorted.
+pub static ZERO_COMMITMENT_LOOKUP_TABLE: LazyLock<[(u64, EdwardsPoint); 172]> =
+    LazyLock::new(|| {
+        let mut lookup_table: [(u64, EdwardsPoint); 172] = [(0_u64, ED25519_BASEPOINT_POINT); 172];
+
+        for (i, amount) in ZERO_COMMITMENT_DECOMPOSED_AMOUNT.into_iter().enumerate() {
+            lookup_table[i] = (
+                amount,
+                (ED25519_BASEPOINT_POINT + *H * Scalar::from(amount)),
+            );
+        }
+
+        lookup_table
+    });
+
+/// This function compute the zero commitment given a specific amount.
+///
+/// It will first attempt to lookup into the table of known Pre-RCT value.
+/// Compute it otherwise.
+pub fn compute_zero_commitments(amount: u64) -> EdwardsPoint {
+    // OPTIMIZATION: We first make an arithmetic check that the value lies between valid pre-computed amounts. This permit to avoid the lookup cost if possible
+    if amount > 10 && amount % 10 != 0 {
+        return H_PRECOMP.vartime_multiscalar_mul([Scalar::from(amount), Scalar::from(1_u8)]);
+    }
+
+    // Binary search in lookup table (O(log2(n)) instead of O(n))
+    let (mut start, mut end, mut c): (usize, usize, Option<EdwardsPoint>) =
+        (0, (ZERO_COMMITMENT_LOOKUP_TABLE.len() - 1) / 2, None);
+    while start <= end {
+        let mid = (start + end) / 2;
+        let lookup = ZERO_COMMITMENT_LOOKUP_TABLE[mid].0;
+        match amount {
+            a if a == lookup => {
+                c = Some(ZERO_COMMITMENT_LOOKUP_TABLE[mid].1);
+            }
+            a if a < lookup => {
+                end = mid - 1;
+            }
+            _ => {
+                start = mid + 1;
+            }
+        }
+    }
+
+    // Compute the zero commitment if not found.
+    c.unwrap_or_else(|| {
+        H_PRECOMP.vartime_multiscalar_mul([Scalar::from(amount), Scalar::from(1_u8)])
+    })
+}
diff --git a/helper/src/lib.rs b/helper/src/lib.rs
@@ -30,6 +30,9 @@ pub mod time;
 
 #[cfg(feature = "tx")]
 pub mod tx;
+
+#[cfg(all(feature = "crypto", feature = "std"))]
+pub mod crypto;
 //---------------------------------------------------------------------------------------------------- Private Usage
 
 //----------------------------------------------------------------------------------------------------
diff --git a/storage/blockchain/Cargo.toml b/storage/blockchain/Cargo.toml
@@ -18,10 +18,9 @@ redb-memory = ["cuprate-database/redb-memory"]
 service     = ["dep:thread_local", "dep:rayon", "cuprate-helper/thread"]
 
 [dependencies]
-cuprate-constants        = { path = "../../constants", features = ["crypto"]}
 cuprate-database         = { path = "../database" }
 cuprate-database-service = { path = "../service" }
-cuprate-helper           = { path = "../../helper", features = ["fs", "map"] }
+cuprate-helper           = { path = "../../helper", features = ["fs", "map", "crypto"] }
 cuprate-types            = { path = "../../types", features = ["blockchain"] }
 cuprate-pruning          = { path = "../../pruning" }
 
diff --git a/storage/blockchain/src/ops/output.rs b/storage/blockchain/src/ops/output.rs
@@ -1,15 +1,13 @@
 //! Output functions.
 
 //---------------------------------------------------------------------------------------------------- Import
-use curve25519_dalek::{
-    constants::ED25519_BASEPOINT_POINT, edwards::CompressedEdwardsY, EdwardsPoint, Scalar,
-};
-use monero_serai::{generators::H, transaction::Timelock};
+use curve25519_dalek::edwards::CompressedEdwardsY;
+use monero_serai::transaction::Timelock;
 
-use cuprate_constants::crypto::ZERO_COMMITMENT_LOOKUP_TABLE as ZC_LT;
 use cuprate_database::{
     RuntimeError, {DatabaseRo, DatabaseRw},
 };
+use cuprate_helper::crypto::compute_zero_commitments;
 use cuprate_helper::map::u64_to_timelock;
 use cuprate_types::OutputOnChain;
 
@@ -158,31 +156,7 @@ pub fn output_to_output_on_chain(
     amount: Amount,
     table_tx_unlock_time: &impl DatabaseRo<TxUnlockTime>,
 ) -> Result<OutputOnChain, RuntimeError> {
-    // Binary search in lookup table (O(log2(n)+2) instead of O(n+2))
-    let commitment: EdwardsPoint = {
-        let (mut start, mut end, mut c): (usize, usize, Option<EdwardsPoint>) =
-            (0, (ZC_LT.len() - 1) / 2, None);
-        while start <= end {
-            let mid = (start + end) / 2;
-            let lookup = ZC_LT[mid].0;
-            match amount {
-                a if a == lookup => {
-                    c = CompressedEdwardsY::from_slice(&ZC_LT[mid].1)
-                        .expect("The lookup table cannot contain invalid curve point data")
-                        .decompress();
-                }
-                a if a < lookup => {
-                    end = mid - 1;
-                }
-                _ => {
-                    start = mid + 1;
-                }
-            }
-        }
-
-        // Compute the zero commitment if not found.
-        c.unwrap_or_else(|| ED25519_BASEPOINT_POINT + *H * Scalar::from(amount))
-    };
+    let commitment = compute_zero_commitments(amount);
 
     let time_lock = if output
         .output_flags
diff --git a/storage/blockchain/src/ops/tx.rs b/storage/blockchain/src/ops/tx.rs
@@ -2,13 +2,10 @@
 
 //---------------------------------------------------------------------------------------------------- Import
 use bytemuck::TransparentWrapper;
-use curve25519_dalek::{
-    constants::ED25519_BASEPOINT_POINT, edwards::CompressedEdwardsY, EdwardsPoint, Scalar,
-};
 use monero_serai::transaction::{Input, Timelock, Transaction};
 
-use cuprate_constants::crypto::ZERO_COMMITMENT_LOOKUP_TABLE as ZC_LT;
 use cuprate_database::{DatabaseRo, DatabaseRw, RuntimeError, StorableVec};
+use cuprate_helper::crypto::compute_zero_commitments;
 
 use crate::{
     ops::{
@@ -140,48 +137,14 @@ pub fn add_tx(
             .map(|(i, output)| {
                 // Create commitment.
 
-                // Binary search in lookup table (O(log2(n)+2) instead of O(n+2))
-                let commitment: EdwardsPoint = {
-                    let (mut start, mut end, mut c, amount): (
-                        usize,
-                        usize,
-                        Option<EdwardsPoint>,
-                        u64,
-                    ) = (0, (ZC_LT.len() - 1) / 2, None, output.amount.unwrap_or(0));
-                    while start <= end {
-                        let mid = (start + end) / 2;
-                        let lookup = ZC_LT[mid].0;
-                        match amount {
-                            a if a == lookup => {
-                                c = CompressedEdwardsY::from_slice(&ZC_LT[mid].1)
-                                    .expect(
-                                        "The lookup table cannot contain invalid curve point data",
-                                    )
-                                    .decompress();
-                            }
-                            a if a < lookup => {
-                                end = mid - 1;
-                            }
-                            _ => {
-                                start = mid + 1;
-                            }
-                        }
-                    }
-
-                    // Compute commitment if not found.
-                    c.unwrap_or_else(|| {
-                        if miner_tx {
-                            ED25519_BASEPOINT_POINT
-                                + *monero_serai::generators::H
-                                    * Scalar::from(output.amount.unwrap_or(0))
-                        } else {
-                            proofs
-                                .as_ref()
-                                .expect("A V2 transaction with no RCT proofs is a miner tx")
-                                .base
-                                .commitments[i]
-                        }
-                    })
+                let commitment = if miner_tx {
+                    compute_zero_commitments(output.amount.unwrap_or(0))
+                } else {
+                    proofs
+                        .as_ref()
+                        .expect("A V2 transaction with no RCT proofs is a miner tx")
+                        .base
+                        .commitments[i]
                 };
 
                 // Add the RCT output.
