/mips_circuit

Primary LanguageRustGNU Lesser General Public License v3.0LGPL-3.0

Mips Circuit

This is a demo implementation of ZKMIPS for Community Education purposes, which serves as Phase 1 of the ZKM Early Contributor Program(ECP).

The demo implementation uses the Cannon simulator, Zokrates DSL, and Groth16. It supports the full execution of Minigeth, outputs the entire instruction sequence, generates proofs for each instruction, and submits them to an on-chain contract for verification.

Prerequisites

  • Hardware: MEM >= 8G

  • Install Rust (>=1.72.1)

  • Install Go (>=1.21)

  • Install Make

  • Install Zokrates, then set $ZOKRATES_STDLIB and $PATH:

    export ZOKRATES_STDLIB=<path-to>/ZoKrates/zokrates_stdlib/stdlib
    export PATH=<path-to>/ZoKrates/target/release:$PATH

    This will be used to compile the MIPS VM circuit.

  • Install postgres

    • You can follow this guide to install using Docker
    • NOTE: you cannot use a default empty password, set the password to postgres for simplicity for the rest of the guide
    • (Optional) Install DBeaver or pgadmin: Using a Database Viewer make debugging and editing data much easier

Postgres Setup

From the DBeaver (or pgadmin) interface, right click on the postgres database and navigate to SQL Editor > New SQL Script

SQLEditor

In the Script page, paste this code:

  DROP TABLE IF EXISTS f_traces;
  CREATE TABLE f_traces
  (
      f_id           bigserial PRIMARY KEY,
      f_trace        jsonb                    NOT NULL,
      f_created_at   TIMESTAMP with time zone NOT NULL DEFAULT now()
  );

  DROP TABLE IF EXISTS t_block_witness_cloud;
  CREATE TABLE t_block_witness_cloud
  (
      f_id             bigserial PRIMARY KEY,
      f_block          BIGINT NOT NULL,
      f_version        BIGINT NOT NULL,
      f_object_key     text   NOT NULL,
      f_object_witness text   NOT NULL
  );

  DROP TABLE IF EXISTS t_prover_job_queue_cloud;
  CREATE TABLE t_prover_job_queue_cloud
  (
      f_id           bigserial PRIMARY KEY,
      f_job_status   INTEGER                  NOT NULL,
      f_job_priority INTEGER                  NOT NULL,
      f_job_type     TEXT                     NOT NULL,
      f_created_at   timestamp with time zone NOT NULL DEFAULT now(),
      f_version      BIGINT                   NOT NULL,
      f_updated_by   TEXT                     NOT NULL,
      f_updated_at   timestamp with time zone NOT NULL,
      f_first_block  BIGINT                   NOT NULL,
      f_last_block   BIGINT                   NOT NULL,
      f_object_key   TEXT                     NOT NULL,
      f_object_job   TEXT                     NOT NULL
  );

  DROP TABLE IF EXISTS t_proofs;
  CREATE TABLE t_proofs
  (
      f_id           bigserial PRIMARY KEY,
      f_block_number BIGINT                   NOT NULL,
      f_proof        jsonb                    NOT NULL,
      f_created_at   TIMESTAMP with time zone NOT NULL DEFAULT now()
  );

  DROP TABLE IF EXISTS t_witness_block_number;
  CREATE TABLE t_witness_block_number
  (
      f_id           bigserial PRIMARY KEY,
      f_block     BIGINT                   NOT NULL
  );

  DROP TABLE IF EXISTS t_proof_block_number;
  CREATE TABLE t_proof_block_number
  (
      f_id           bigserial PRIMARY KEY,
      f_block     BIGINT                   NOT NULL
  );

  DROP TABLE IF EXISTS t_verified_proof_block_number;
  CREATE TABLE t_verified_proof_block_number
  (
      f_id           bigserial PRIMARY KEY,
      f_block       BIGINT                    NOT NULL
  );

Click the Execute SQL Script button:

ExecuteSQL

Note: The id of first execution trace to be verified or proved is 1

Note: you can specify your own <first_execution_trace_id> by following commands:

  INSERT INTO t_witness_block_number(f_block) VALUES(${<first_execution_trace_id>});

  INSERT INTO t_proof_block_number(f_block) VALUES(${$(<first_execution_trace_id>});

Program Execution Records

Clone cannon-mips into another folder and generate the program execution records

cd ..
git clone https://github.com/zkMIPS/cannon-mips
cd cannon-mips
make build

In this proof, we are computing the transition from block 13284469 -> 13284470 on the Ethereum Mainnet

We first want to set the folder that the computations will be done from

export BASEDIR=/tmp/cannon
mkdir -p /tmp/cannon

Next, we have to add in a mainnet node that we will use to pull the block information from. Please use your own alchemy/infura account for this link

export NODE=<mainnet-node> # example: https://eth-mainnet.g.alchemy.com/v2/YOUR_ID_HERE

Lets run the code to pull the block information

minigeth/go-ethereum 13284469

Now that we have the block information, we want to generate a proof. We need to use the database to store this information

export POSTGRES_CONFIG="sslmode=disable user=postgres password=postgres host=localhost port=5432 dbname=postgres"

Now that we have the database connection setup, we want to generate 1 MIPS trace

cd mipsevm
./mipsevm -b 13284469 -s 1

We should see a record in the database in the f_traces table (refresh the table if you don't see it)

f_traces

Note: There should be 1 record that starts with id of 1. If the id of that record is not 1, change it to 1.

Now that we have the trace, we want to go back to the and compile the MIPS VM circuit using Zokrates

cd ../../mips_circuit
pushd core/lib/circuit
zokrates compile -i mips_vm_poseidon.zok  # may need several minutes
wget http://ec2-46-51-227-198.ap-northeast-1.compute.amazonaws.com/proving.key -O proving.key
popd

Verification though a Smart Contract Verifier

We have deployed a goerli verify contract at: 0xacd47ec395668320770e7183b9ee817f4ff8774e. You can use this to verify the proof.

The next steps will be focused on verifying the proof on-chain

Witness Generator

We need to edit the environment variables, replacing the variables with your database, the RPC from goerli, and the private key for your verifier account, note that the verifier account needs some Goerli ETH to post the witness string

Edit the setenv.bash file:

export DATABASE_URL=postgresql://postgres:postgres@localhost:5432/postgres
export DATABASE_POOL_SIZE=10
export API_PROVER_PORT=8088
export API_PROVER_URL=http://127.0.0.1:8088
export API_PROVER_SECRET_AUTH=sample
export PROVER_PROVER_HEARTBEAT_INTERVAL=1000
export PROVER_PROVER_CYCLE_WAIT=500
export PROVER_PROVER_REQUEST_TIMEOUT=10
export PROVER_PROVER_DIE_AFTER_PROOF=false
export PROVER_CORE_GONE_TIMEOUT=60000
export PROVER_CORE_IDLE_PROVERS=1
export PROVER_WITNESS_GENERATOR_PREPARE_DATA_INTERVAL=500
export PROVER_WITNESS_GENERATOR_WITNESS_GENERATORS=2
export CIRCUIT_FILE_PATH=${PWD}/core/lib/circuit/out # generated by zokrates compile -i mips_vm_poseidon.zok
export CIRCUIT_ABI_FILE_PATH=${PWD}/core/lib/circuit/abi.json # generated by zokrates compile -i mips_vm_poseidon.zok
export RUST_LOG=warn
export VERIFIER_CHAIN_URL=PROVIDER_URL # provider url where the verifier contract deployed, Note: please use your own secret key here
export VERIFIER_CONTRACT_ADDRESS=0xacd47ec395668320770e7183b9ee817f4ff8774e # verifier contract address
export VERIFIER_ACCOUNT=PRIVATE_KEY # your goerli account private key
export VERIFIER_ABI_PATH=${PWD}/contract/verifier/g16/verifier
export CHAIN_ETH_NETWORK=goerli
export CIRCUIT_PROVING_KEY_PATH=${PWD}/core/lib/circuit/proving.key # generated by: zokrates compile -i mips_vm_poseidon.zok

Source the file into your local shell

source ./setenv.bash

Compile the witness generator

pushd core/bin/server
cargo build --release # may need several minutes
popd

Run the witness generator

nohup ./target/release/server > server.output 2>&1 &

In the server.output file, you should be able to see

Witness:
true

witness_str:A_LONG_STRING

Prover

Now that the proof is on-chain, we can verify the proof using a Prover

We need to set the environment variables

source ./setenv.bash

Compile the Prover

pushd core/bin/prover
cargo build --release  # may need several minutes
popd

And run the Prover

nohup ./target/release/prover > prover.output 2>&1 &

In a few seconds, you should be able to see your transaction here.

Congratulations! You have completed the process of posting and verifying a ZK proof with the MIPS circuit.