Enable libraries to define event handlers #1647
Conversation
| @@ -7,6 +7,8 @@ const.J=77321994752 | |||
| const.M=12289 | |||
| const.SQUARE_NORM_BOUND=34034726 | |||
|
|
|||
| const.EVENT_FALCON_SIG_TO_STACK=3419226139 | |||
There was a problem hiding this comment.
How did we choose this value?
There was a problem hiding this comment.
It was chosen randomly, like the other system events. This basically makes collisions with user-defined events improbable.
when there's already a registered event handler to that id
plafer
force-pushed
the
plafer-1584-event-handlers
branch
from
4c2a284 to
608bc41
Compare
|
The biggest issue with libraries not having to depend on I explored creating an analogous So if my understanding is correct, we have to choose between the lesser of 2 evils:
Unless I'm missing something, I feel like option (1) is cleaner, especially since not all libraries will need to define event handlers. This also means we can avoid moving all the advice provider types to cc @bobbinth |
Yes, agreed that option 1 is the way to go (for this PR at least). And I actually don't think it is all that "evil". Yes, would have been nice to move this into the core, but since event handlers need to know about processor-specific things, makes sense that We could re-evaluate bringing back the |
Agreed.
Actually, since we allow And therefore the PR is ready for final review. |
| @@ -32,6 +32,7 @@ processor = { package = "miden-processor", path = "../processor", version = "0.1 | |||
| "testing", | |||
| ] } | |||
| prover = { package = "miden-prover", path = "../prover", version = "0.13", default-features = false } | |||
| stdlib = { package = "miden-stdlib", path = "../stdlib", version = "0.13", default-features = false } | |||
There was a problem hiding this comment.
Maybe not for this PR, but is there a way not to make test-utils dependent on stdlib? Maybe this could be done by adding something like host_libraries: Vec<dyn HostLibrary> field to the Test struct?
There was a problem hiding this comment.
Unfortunately, not really, since HostLibrary is not trait object safe (due to get_event_handlers() being generic)
| @@ -79,6 +79,6 @@ fn assert_eq_fail() { | |||
|
|
|||
| #[test] | |||
| fn emit() { | |||
There was a problem hiding this comment.
Question: why did we need to change this?
There was a problem hiding this comment.
I just changed the event that is emitted to be 1 instead of 42, since I installed a NoopEventHandler to event 1 by default in Test::execute(), but not 42
stdlib/src/lib.rs
Outdated
| use processor::{EventHandler, HostLibrary, ProcessState}; | ||
| use vm_core::{AdviceProvider, AdviceProviderError, AdviceSource, Felt, Word}; |
There was a problem hiding this comment.
AdviceProvider, AdviceProviderError, AdviceSource, Felt, Word should all be re-exported from the processor, right? I'd probably import them from there and then get rid of the vm_core dependency.
stdlib/src/lib.rs
Outdated
| /// A trait for signing messages using the Falcon signature scheme. | ||
| /// | ||
| /// This trait is used by [FalconSigToStackEventHandler] to sign messages using the Falcon signature | ||
| /// scheme. | ||
| /// | ||
| /// It is recommended to use [dsa::falcon_sign] to implement this trait once the private key has | ||
| /// been fetched from a user-defined location. | ||
| pub trait FalconSigner<A>: Send + Sync { | ||
| /// Signs the message using the Falcon signature scheme, and returns the signature as a | ||
| /// `Vec<Felt>`. | ||
| fn sign_message( | ||
| &self, | ||
| pub_key: Word, | ||
| msg: Word, | ||
| advice_provider: &A, | ||
| ) -> Result<Vec<Felt>, Box<dyn Error + Send + Sync + 'static>> | ||
| where | ||
| A: AdviceProvider; | ||
| } |
There was a problem hiding this comment.
We are including the advice provider into the interface so that we could read the private key from it, right? I'm wondering if we could avoid this if we convert this trait into a closure - e.g., something like:
type FalconSigner = Box<dyn Fn(Word, Word) -> Vec<Felt>>;And then in the FalconSigToStackEventHandler::on_event() we'd just invoke this closure capturing the private key we get from the advice provider.
There was a problem hiding this comment.
But this would force implementations to getting the private key from the advice provider, which is what we're trying to avoid (e.g. in miden-base we get it from somewhere else).
I also abstracted away the signing part to give the option to e.g. sign with a hardware device - and exposed dsa::falcon_sign() for convenience otherwise.
There was a problem hiding this comment.
But this would force implementations to getting the private key from the advice provider,
No, the idea here is for the closure to take only 2 parameters: a public key and a message (the two words). The private key would be captured by the closure from the context. We are doing something similar in the client - though there, it is a bit more complex because the closures need to be async.
prover/src/lib.rs
Outdated
| pub use processor::{ | ||
| crypto, math, utils, AdviceInputs, Digest, ExecutionError, Host, InputError, MemAdviceProvider, | ||
| StackInputs, StackOutputs, Word, | ||
| crypto, math, utils, Digest, ExecutionError, Host, InputError, MemAdviceProvider, StackInputs, | ||
| StackOutputs, Word, | ||
| }; |
There was a problem hiding this comment.
I would still re-export AdviceInputs from here.
Now `StdLibrary` is generic over `Inputs`.
Closes #1584
Also moves the Falcon signature event handling to the standard library.
This is a rough implementation as discussed in #1584, which still requires some cleanup