EspressoSystems · mrain · Sep 18, 2024 · Sep 13, 2024 · Sep 13, 2024 · Sep 13, 2024
@@ -3,6 +3,16 @@
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## 0.1.0
+# 0.1.1
+
+## Added
+
+- [#683](https://github.com/EspressoSystems/jellyfish/pull/683): add a simple hash chain delay function using Keccak.
+
+## Deprecated
+
+- [#683](https://github.com/EspressoSystems/jellyfish/pull/683): MinRoot delay function is now hidden under a feature flag. Add documentation about its security issue.
+
+# 0.1.0
 
 - Initial release. VDF trait definition and (non-verifiable) MinRoot delay function implementation.
@@ -1,6 +1,6 @@
 [package]
 name = "jf-vdf"
-version = "0.1.0"
+version = "0.1.1"
 description = "Verifiable delay function."
 authors = { workspace = true }
 edition = { workspace = true }
@@ -11,24 +11,31 @@ documentation = { workspace = true }
 repository = { workspace = true }
 
 [dependencies]
-ark-bls12-381 = { workspace = true }
-ark-bn254 = { workspace = true }
-ark-ec = { workspace = true }
-ark-ff = { workspace = true }
-ark-pallas = "0.4.0"
+ark-bls12-381 = { workspace = true, optional = true }
+ark-bn254 = { workspace = true, optional = true }
+ark-ec = { workspace = true, optional = true }
+ark-ff = { workspace = true, optional = true }
+ark-pallas = { version = "0.4.0", optional = true }
 ark-serialize = { workspace = true }
 ark-std = { workspace = true }
 displaydoc = { workspace = true }
+sha3 = { workspace = true }
 
 [dev-dependencies]
 criterion = "0.5.1"
 
 [[bench]]
 name = "minroot"
 harness = false
+required-features = ["minroot"]
+
+[[bench]]
+name = "hashchain"
+harness = false
 
 [features]
 default = []
+minroot = ["ark-bls12-381", "ark-bn254", "ark-ec", "ark-ff", "ark-pallas"]
 std = [
     "ark-pallas/std", "ark-bls12-381/std", "ark-bn254/std", "ark-std/std",
     "ark-ff/std", "ark-ec/std",

diff --git a/vdf/benches/hashchain.rs b/vdf/benches/hashchain.rs
@@ -0,0 +1,34 @@
+// Copyright (c) 2022 Espresso Systems (espressosys.com)
+// This file is part of the Jellyfish library.
+
+// You should have received a copy of the MIT License
+// along with the Jellyfish library. If not, see <https://mit-license.org/>.
+
+#[macro_use]
+extern crate criterion;
+use ark_std::rand::rngs::StdRng;
+use criterion::{Criterion, Throughput};
+use jf_vdf::{hashchain::HashChain, VDF};
+
+fn minroot_bench(c: &mut Criterion) {
+    let mut benchmark_group = c.benchmark_group("HashChain");
+    benchmark_group.sample_size(10);
+    let iterations = 1u64 << 22;
+
+    benchmark_group.throughput(Throughput::Elements(iterations));
+    let pp = HashChain::setup::<StdRng>(iterations, None).unwrap();
+    let input = [0u8; 32];
+    benchmark_group.bench_function("HashChain_sha3_keccak", |b| {
+        b.iter(|| HashChain::eval(&pp, &input).unwrap())
+    });
+
+    benchmark_group.finish();
+}
+
+fn bench(c: &mut Criterion) {
+    minroot_bench(c);
+}
+
+criterion_group!(benches, bench);
+
+criterion_main!(benches);
diff --git a/vdf/src/hashchain.rs b/vdf/src/hashchain.rs
@@ -0,0 +1,88 @@
+// Copyright (c) 2022 Espresso Systems (espressosys.com)
+// This file is part of the Jellyfish library.
+
+// You should have received a copy of the MIT License
+// along with the Jellyfish library. If not, see <https://mit-license.org/>.
+//! Instantiation of the hash chain delay function.
+
+use crate::{VDFError, VDF};
+use ark_serialize::{CanonicalDeserialize, CanonicalSerialize};
+use ark_std::vec::Vec;
+use core::marker::PhantomData;
+use sha3::Digest;
+
+/// Glorified bool type
+type VerificationResult = Result<(), ()>;
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    Default,
+    Eq,
+    PartialEq,
+    Ord,
+    PartialOrd,
+    CanonicalSerialize,
+    CanonicalDeserialize,
+)]
+/// Public parameter for MinRoot DF,
+pub struct HashChainParam {
+    /// Indicates the number of iterations
+    pub difficulty: u64,
+}
+
+#[derive(Copy, Debug, Clone)]
+/// Dummy struct for MinRoot delay function.
+pub struct HashChain;
+
+impl VDF for HashChain {
+    type PublicParameter = HashChainParam;
+    type Proof = [u8; 32];
+    type Input = [u8; 32];
+    type Output = [u8; 32];
+
+    fn setup<R: ark_std::rand::CryptoRng + ark_std::rand::RngCore>(
+        difficulty: u64,
+        prng: Option<&mut R>,
+    ) -> Result<Self::PublicParameter, VDFError> {
+        Ok(HashChainParam { difficulty })
+    }
+
+    fn eval(
+        pp: &Self::PublicParameter,
+        input: &Self::Input,
+    ) -> Result<(Self::Output, Self::Proof), VDFError> {
+        let mut output = *input;
+        for _ in 0..pp.difficulty {
+            output = sha3::Keccak256::digest(&input).into();
+        }
+        Ok((output, output))
+    }
+
+    fn verify(
+        _pp: &Self::PublicParameter,
+        _input: &Self::Input,
+        output: &Self::Output,
+        proof: &Self::Proof,
+    ) -> Result<crate::VerificationResult, VDFError> {
+        Ok(if output == proof { Ok(()) } else { Err(()) })
+    }
+}
+
+#[cfg(test)]
+mod test {
+    use crate::{hashchain::HashChain, VDF};
+    use ark_std::rand::rngs::StdRng;
+
+    #[test]
+    fn test_hashchain() {
+        let start = [0u8; 32];
+        let pp = HashChain::setup::<StdRng>(100, None).unwrap();
+        let (output, proof) = HashChain::eval(&pp, &start).unwrap();
+        assert_eq!(output, proof);
+        assert!(HashChain::verify(&pp, &start, &output, &proof)
+            .unwrap()
+            .is_ok());
+    }
+}
@@ -25,6 +25,8 @@ use ark_std::{
 };
 use displaydoc::Display;
 
+pub mod hashchain;
+#[cfg(feature = "minroot")]
 pub mod minroot;
 
 /// VDF error type

@@ -3,6 +3,7 @@
 
 // You should have received a copy of the MIT License
 // along with the Jellyfish library. If not, see <https://mit-license.org/>.
+//! DEPRECATED! DO NOT USE UNLESS YOU CLEARLY UNDERSTAND THIS <https://ethresear.ch/t/statement-regarding-the-public-report-on-the-analysis-of-minroot/16670>.
 //! Instantiation of the MinRoot Delay function <https://eprint.iacr.org/2022/1626.pdf>.
 
 use crate::{VDFError, VDF};
@@ -68,6 +69,7 @@ where
     }
 }
 
+#[derive(Copy, Clone, Debug)]
 /// Dummy struct for MinRoot delay function.
 pub struct MinRoot<F: MinRootField> {
     _phantom: PhantomData<F>,