zkFold: Cardano integration library

Integration of zkFold Symbolic smart contracts with the Cardano blockchain. The repository contains

• the Plutus script for the zkFold Symbolic verifier;
• the Plutus script for the Plonk proof verification token;
• the off-chain code for transaction building;
• benchmarks for the Plutus scripts;
• end-to-end tests for the zkFold Symbolic smart contracts.

Building the project

This project can be built with Cabal 3.10.2.1 and GHC 9.6.3.

Crypotgraphic depencencies needed for building Haskell packages:

• libsodium
• libsecp256k1
• libblst

Additional steps are required for libblt to register it in pkg-config database. After building the library, execute the following in the same directory:

cat > libblst.pc << EOF
prefix=/usr/local
exec_prefix=\${prefix}
libdir=\${exec_prefix}/lib
includedir=\${prefix}/include

Name: libblst
Description: Multilingual BLS12-381 signature library
URL: https://github.com/supranational/blst
Version: ${BLST_VERSION#v}
Cflags: -I\${includedir}
Libs: -L\${libdir} -lblst
EOF
sudo cp libblst.pc /usr/local/lib/pkgconfig/
sudo cp bindings/blst_aux.h bindings/blst.h bindings/blst.hpp  /usr/local/include/
sudo cp libblst.a /usr/local/lib
sudo chmod u=rw,go=r /usr/local/{lib/{libblst.a,pkgconfig/libblst.pc},include/{blst.{h,hpp},blst_aux.h}}

You might also need Libtool if you are getting errors associated with it:

sudo apt-get install libtool

Then run

$ cabal update
$ cabal build

Running benchmarks and end-to-end tests

Importing circuits from zkfold-base

TODO

Test

cabal run test to check the implementations against the test data.

Benchmarks (in progress)

cabal run bench-cpu-mem to compile the fast implementation to UPLC (.flat) for the further processing and calculate the cpu/mem units of the tests in the plutus-benchmark package.

Setting up a local testnet

To run a local testnet, follow instructions in e2e-test/README.md.

End-to-end tests (in progress)

We have two types of Plutus scripts that facilitate zero-knowledge smart contracts:

1. Plonk verifier mints a token if the statement expressed as an arithmetic circuit is correct. The token name plays the role of the public input to the ZKP protocol.
2. Symbolic verifier validates a transaction that withdraws ada rewards. The transaction data is hashed and supplied as a public input to the ZKP protocol.

General workflow:

• Create a trusted setup for the Plonk protocol;
• Compile the zero-knowledge smart contract into an arithmetic circuit;
• Deploy a local testnet or use sancho.network testnet;
• Fund a public key address on the testnet;
• Generate a proof from a witness and create the redeemer data for the Plutus scripts;
• Construct a transaction with the Plutus scripts using cardano-cli;
• Submit transactions using cardano-cli.