Struct binius_core::protocols::zerocheck::ZerocheckProver

pub struct ZerocheckProver<'a, F, PW, DomainField, W>
where
    F: Field,
    PW: PackedField,
    PW::Scalar: From<F> + Into<F> + ExtensionField<DomainField>,
    DomainField: Field,
    W: AbstractSumcheckWitness<PW>,
{ /* private fields */ }

A zerocheck protocol prover.

To prove a zerocheck claim, supply a multivariate composite witness. In some cases it makes sense to do so in an different yet isomorphic field PW (witness packed field) which may preferable due to superior performance. One example of such operating field would be BinaryField128bPolyval, which tends to be much faster than 128-bit tower field on x86 CPUs. The only constraint is that constituent MLEs should have MultilinearPoly impls for PW - something which is trivially satisfied for MLEs with tower field scalars for claims in tower field as well.

Prover state is instantiated via new method, followed by exactly $n\_vars$ execute_round invocations. Each of those takes in an optional challenge (None on first round and Some on following rounds) and evaluation domain. Proof and Evalcheck claim are obtained via finalize call at the end.

Implementations

impl<'a, F, PW, DomainField, W> ZerocheckProver<'a, F, PW, DomainField, W>

where F: Field, PW: PackedField, PW::Scalar: From<F> + Into<F> + ExtensionField<DomainField>, DomainField: Field, W: AbstractSumcheckWitness<PW>,

pub fn claim(&self) -> &ZerocheckClaim<F>

pub fn round_claim(&self) -> &AbstractSumcheckRoundClaim<F>

impl<'a, F, PW, DomainField, W> ZerocheckProver<'a, F, PW, DomainField, W>

where F: Field, PW: PackedExtension<DomainField>, PW::Scalar: From<F> + Into<F> + ExtensionField<DomainField>, DomainField: Field, W: AbstractSumcheckWitness<PW, MultilinearId = OracleId>,

pub fn new( claim: ZerocheckClaim<F>, witness: W, domain: EvaluationDomain<DomainField>, zerocheck_challenges: &'a [F], seq_id: usize ) -> Result<Self, Error>

Start a new zerocheck instance with claim in field F. Witness may be given in a different (but isomorphic) packed field PW. switchover_fn closure specifies switchover round number per multilinear polynomial as a function of its crate::polynomial::MultilinearPoly::extension_degree value.

Trait Implementations

impl<'a, F, PW, DomainField, W> Debug for ZerocheckProver<'a, F, PW, DomainField, W>

where F: Field + Debug, PW: PackedField + Debug, PW::Scalar: From<F> + Into<F> + ExtensionField<DomainField>, DomainField: Field + Debug, W: AbstractSumcheckWitness<PW> + Debug,

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.