Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add SHA256 support for variable message_size to be hashed #4909

Closed
Savio-Sou opened this issue Apr 24, 2024 · 2 comments · Fixed by #4920
Closed

Add SHA256 support for variable message_size to be hashed #4909

Savio-Sou opened this issue Apr 24, 2024 · 2 comments · Fixed by #4920
Labels
enhancement New feature or request stdlib Standard library shipped with Noir tooling

Comments

@Savio-Sou
Copy link
Collaborator

Problem

The SHA256 hash function in the stdlib doesn't currently support hashing of variable actual lengths of inputs.

This hinders use cases that rely on:

  • One circuit (and by extension one e.g. verification key / verifier smart contract) for hashing different input sizes
  • Hash matching with established services (i.e. customized input-padding that results in different hashes isn't useful)

Happy Case

Extend the SHA256 library to support an additional message_size argument, similar to Keccak256: noir-lang/acvm#313

Project Impact

Blocker

Impact Context

For projects verifying passport ownerships, sizes of data to hash varies from passport to passport.

Workaround

None

Workaround Description

No response

Additional Context

Credit to @madztheo @michaelelliot for flagging.

Would you like to submit a PR for this Issue?

None

Support Needs

No response
@Savio-Sou Savio-Sou added enhancement New feature or request stdlib Standard library shipped with Noir tooling labels Apr 24, 2024
@Savio-Sou Savio-Sou added this to Noir Apr 24, 2024
@github-project-automation github-project-automation bot moved this to 📋 Backlog in Noir Apr 24, 2024
@Savio-Sou
Copy link
Collaborator Author

Savio-Sou commented Apr 24, 2024
edited
Loading

@guipublic mentioned this should be approachable to implement in pure Noir now with the sha256compression opcode AztecProtocol/aztec-packages#4511.

@michaelelliot you mentioned attempting to implement this in pure Noir but was met with poor performance some while ago. Was that before or already using sha256compression?

@guipublic guipublic mentioned this issue Apr 25, 2024
Merged
5 tasks
@guipublic
Copy link
Contributor

Since I said it would be easy, I figured that I might just implement it. I confirm that the performance is good, the cost is the same as if you would hash the full message.

github-merge-queue bot pushed a commit that referenced this issue Apr 25, 2024
@guipublic
feat: add variable size sha256 (#4920)
dbfca58 
# Description

## Problem\*

Resolves #4909 

## Summary\*
Thanks to the sha256compression opcode, we can create conditionally the
blocks to be hashed. As a result there is no additional cost to support
variable input size for sha256, except of course that we pay for the
full input len (even if we hash less).


## Additional Context



## Documentation\*

Check one:
- [ ] No documentation needed.
- [X] Documentation included in this PR.
- [ ] **[For Experimental Features]** Documentation to be submitted in a
separate PR.

# PR Checklist\*

- [X] I have tested the changes locally.
- [X] I have formatted the changes with [Prettier](https://prettier.io/)
and/or `cargo fmt` on default settings.
@github-project-automation github-project-automation bot moved this from 📋 Backlog to ✅ Done in Noir Apr 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request stdlib Standard library shipped with Noir tooling
Projects
Noir
Archived in project
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: add variable size sha256 noir-lang/noir
2 participants
@guipublic @Savio-Sou