scroll-tech
diff --git a/‎aggregator/src/recursion.rs
+18-15 b/‎aggregator/src/recursion.rs
+18-15
diff --git a/‎aggregator/src/recursion/circuit.rs
+5-3 b/‎aggregator/src/recursion/circuit.rs
+5-3
diff --git a/‎aggregator/src/recursion/common.rs
+4-228 b/‎aggregator/src/recursion/common.rs
+4-228
diff --git a/‎aggregator/src/recursion/config.rs
+10-4 b/‎aggregator/src/recursion/config.rs
+10-4
@@ -5,41 +5,46 @@
 
 /// Circuit implementation of recursion circuit.
 mod circuit;
+
+/// Common functionality utilised by the recursion circuit.
 mod common;
+
 /// Config for recursion circuit
 mod config;
+
+/// Some utility functions.
 mod util;
 
+pub use circuit::RecursionCircuit;
 pub(crate) use common::dynamic_verify;
 pub use util::{gen_recursion_pk, initial_recursion_snark};
 
-// define the halo2base importing from snark_verifier;
-use snark_verifier::loader::halo2::halo2_ecc::halo2_base as sv_halo2_base;
-use sv_halo2_base::halo2_proofs;
-// fix the circuit on Bn256
 use halo2_proofs::{
     halo2curves::{
         bn256::{Bn256, Fq, Fr, G1Affine},
         group::ff::Field,
     },
     plonk::{Circuit, ConstraintSystem, Error, ProvingKey, Selector, VerifyingKey},
 };
-// exports Snark and specs for F-S scheme
-use snark_verifier_sdk::{
-    types::{PoseidonTranscript, POSEIDON_SPEC},
-    CircuitExt, Snark,
-};
-
-use crate::constants::{BITS, LIMBS};
-
 use itertools::Itertools;
 use rand::Rng;
 use snark_verifier::{
-    loader::{native::NativeLoader, Loader, ScalarLoader},
+    loader::{
+        halo2::halo2_ecc::halo2_base as sv_halo2_base, native::NativeLoader, Loader, ScalarLoader,
+    },
     system::halo2::{compile, Config},
     verifier::{PlonkProof, PlonkVerifier},
 };
+use snark_verifier_sdk::{
+    types::{PoseidonTranscript, POSEIDON_SPEC},
+    CircuitExt, Snark,
+};
+use sv_halo2_base::halo2_proofs;
+
+use crate::constants::{BITS, LIMBS};
 
+/// Any data that can be recursively bundled must implement the described state transition
+/// trait.
 pub trait StateTransition: Sized {
     type Input: Clone;
     type Circuit: CircuitExt<Fr>;
@@ -109,5 +114,3 @@ pub trait StateTransition: Sized {
         (start..end).collect()
     }
 }
-
-pub use circuit::RecursionCircuit;
 
@@ -1,7 +1,6 @@
 #![allow(clippy::type_complexity)]
+use std::{fs::File, iter, marker::PhantomData, rc::Rc};
 
-use super::*;
-use crate::param::ConfigParams as BatchCircuitConfigParams;
 use halo2_proofs::{
     circuit::{Cell, Layouter, SimpleFloorPlanner, Value},
     poly::{commitment::ParamsProver, kzg::commitment::ParamsKZG},
@@ -21,12 +20,15 @@ use snark_verifier_sdk::{
     types::{Halo2Loader, Plonk},
     SnarkWitness,
 };
-use std::{fs::File, iter, marker::PhantomData, rc::Rc};
 use sv_halo2_base::{
     gates::GateInstructions, halo2_proofs, AssignedValue, Context, ContextParams,
     QuantumCell::Existing,
 };
 
+use crate::param::ConfigParams as BatchCircuitConfigParams;
+
+use super::*;
+
 type Svk = KzgSuccinctVerifyingKey<G1Affine>;
 type Pcs = Kzg<Bn256, Bdfg21>;
 type As = KzgAs<Pcs>;
 
@@ -1,4 +1,5 @@
-use super::*;
+use std::rc::Rc;
+
 use snark_verifier::{
     loader::halo2::EccInstructions,
     pcs::{kzg::KzgAccumulator, MultiOpenScheme, PolynomialCommitmentScheme},
@@ -8,225 +9,8 @@ use snark_verifier_sdk::{
     types::{BaseFieldEccChip, Halo2Loader, Plonk},
     SnarkWitness,
 };
-use std::rc::Rc;
-
-// pub const LIMBS: usize = 3;
-// pub const BITS: usize = 88;
-// pub const T: usize = 5;
-// pub const RATE: usize = 4;
-// pub const R_F: usize = 8;
-// pub const R_P: usize = 60;
-
-// pub type Svk = KzgSuccinctVerifyingKey<G1Affine>;
-// pub type As = KzgAs<Pcs>;
-// pub use snark_verifier_sdk::types::{Plonk, Halo2Loader, BaseFieldEccChip};
-// pub type Poseidon<L> = hash::Poseidon<Fr, L, T, RATE>;
-// // TODO: replace with POSEIDON_SPEC
-// pub type PoseidonTranscript<L, S> =
-//     halo2::transcript::halo2::PoseidonTranscript<G1Affine, L, S, T, RATE, R_F, R_P>;
-
-// pub struct Snark {
-//     pub protocol: Protocol<G1Affine>,
-//     pub instances: Vec<Vec<Fr>>,
-//     pub proof: Vec<u8>,
-// }
-
-// impl Snark {
-//     pub fn new(protocol: Protocol<G1Affine>, instances: Vec<Vec<Fr>>, proof: Vec<u8>) -> Self {
-//         Self { protocol, instances, proof }
-//     }
-// }
-
-// impl From<Snark> for SnarkWitness {
-//     fn from(snark: Snark) -> Self {
-//         Self {
-//             protocol: snark.protocol,
-//             instances: snark
-//                 .instances
-//                 .into_iter()
-//                 .map(|instances| instances.into_iter().map(Value::known).collect_vec())
-//                 .collect(),
-//             proof: Value::known(snark.proof),
-//         }
-//     }
-// }
-
-// #[derive(Clone)]
-// pub struct SnarkWitness {
-//     pub protocol: Protocol<G1Affine>,
-//     pub instances: Vec<Vec<Value<Fr>>>,
-//     pub proof: Value<Vec<u8>>,
-// }
-
-// impl SnarkWitness {
-//     pub fn without_witnesses(&self) -> Self {
-//         SnarkWitness {
-//             protocol: self.protocol.clone(),
-//             instances: self
-//                 .instances
-//                 .iter()
-//                 .map(|instances| vec![Value::unknown(); instances.len()])
-//                 .collect(),
-//             proof: Value::unknown(),
-//         }
-//     }
-
-//     pub fn proof(&self) -> Value<&[u8]> {
-//         self.proof.as_ref().map(Vec::as_slice)
-//     }
-// }
-
-// pub fn gen_pk<C: Circuit<Fr>>(params: &ParamsKZG<Bn256>, circuit: &C) -> ProvingKey<G1Affine> {
-//     let vk = keygen_vk(params, circuit).unwrap();
-//     keygen_pk(params, vk, circuit).unwrap()
-// }
-
-// pub fn gen_proof<C: Circuit<Fr>>(
-//     params: &ParamsKZG<Bn256>,
-//     pk: &ProvingKey<G1Affine>,
-//     circuit: C,
-//     rng: impl Rng + Send,
-//     instances: Vec<Vec<Fr>>,
-// ) -> Vec<u8> {
-//     if params.k() > 3 {
-//         let mock = start_timer!(|| "Mock prover");
-//         MockProver::run(params.k(), &circuit, instances.clone())
-//             .unwrap()
-//             .assert_satisfied_par();
-//         end_timer!(mock);
-//     }
 
-//     let instances = instances.iter().map(Vec::as_slice).collect_vec();
-//     let proof = {
-//         let mut transcript = PoseidonTranscript::<NativeLoader, _>::new(Vec::new());
-//         create_proof::<_, ProverGWC<_>, _, _, _, _>(
-//             params,
-//             pk,
-//             &[circuit],
-//             &[instances.as_slice()],
-//             rng,
-//             &mut transcript,
-//         )
-//         .unwrap();
-//         transcript.finalize()
-//     };
-
-//     let accept = {
-//         let mut transcript = PoseidonTranscript::<NativeLoader, _>::new(proof.as_slice());
-//         VerificationStrategy::<_, VerifierGWC<_>>::finalize(
-//             verify_proof::<_, VerifierGWC<_>, _, _, _>(
-//                 params.verifier_params(),
-//                 pk.get_vk(),
-//                 AccumulatorStrategy::new(params.verifier_params()),
-//                 &[instances.as_slice()],
-//                 &mut transcript,
-//             )
-//             .unwrap(),
-//         )
-//     };
-//     assert!(accept);
-
-//     proof
-// }
-
-// pub fn gen_snark<ConcreteCircuit: CircuitExt<Fr>>(
-//     params: &ParamsKZG<Bn256>,
-//     pk: &ProvingKey<G1Affine>,
-//     circuit: ConcreteCircuit,
-//     rng: impl Rng + Send,
-// ) -> Snark {
-//     let protocol = compile(
-//         params,
-//         pk.get_vk(),
-//         Config::kzg()
-//             .with_num_instance(ConcreteCircuit::num_instance())
-//             .with_accumulator_indices(ConcreteCircuit::accumulator_indices()),
-//     );
-
-//     let instances = circuit.instances();
-//     let proof = gen_proof(params, pk, circuit, rng, instances.clone());
-
-//     Snark::new(protocol, instances, proof)
-// }
-
-// pub fn gen_dummy_snark<ConcreteCircuit: CircuitExt<Fr>>(
-//     params: &ParamsKZG<Bn256>,
-//     vk: Option<&VerifyingKey<G1Affine>>,
-//     rng: impl Rng + Send,
-// ) -> Snark {
-//     use std::{iter, marker::PhantomData};
-//     struct CsProxy<F, C>(PhantomData<(F, C)>);
-
-//     impl<F: Field, C: CircuitExt<F>> Circuit<F> for CsProxy<F, C> {
-//         type Config = C::Config;
-//         type FloorPlanner = C::FloorPlanner;
-//         #[cfg(feature = "circuit-params")]
-//         type Params = ();
-
-//         fn without_witnesses(&self) -> Self {
-//             CsProxy(PhantomData)
-//         }
-
-//         fn configure(meta: &mut ConstraintSystem<F>) -> Self::Config {
-//             C::configure(meta)
-//         }
-
-//         fn synthesize(
-//             &self,
-//             config: Self::Config,
-//             mut layouter: impl Layouter<F>,
-//         ) -> Result<(), Error> {
-//             // when `C` has simple selectors, we tell `CsProxy` not to over-optimize the selectors (e.g., compressing them  all into one) by turning all selectors on in the first row
-//             // currently this only works if all simple selector columns are used in the actual circuit and there are overlaps amongst all enabled selectors (i.e., the actual circuit will not optimize constraint system further)
-//             layouter.assign_region(
-//                 || "",
-//                 |mut region| {
-//                     for q in C::selectors(&config).iter() {
-//                         q.enable(&mut region, 0)?;
-//                     }
-//                     Ok(())
-//                 },
-//             )?;
-//             Ok(())
-//         }
-//     }
-
-//     let dummy_vk = vk
-//         .is_none()
-//         .then(|| keygen_vk(params, &CsProxy::<Fr, ConcreteCircuit>(PhantomData)).unwrap());
-//     let protocol = compile(
-//         params,
-//         vk.or(dummy_vk.as_ref()).unwrap(),
-//         Config::kzg()
-//             .with_num_instance(ConcreteCircuit::num_instance())
-//             .with_accumulator_indices(ConcreteCircuit::accumulator_indices()),
-//     );
-//     let instances = ConcreteCircuit::num_instance()
-//         .into_iter()
-//         .map(|n| iter::repeat_with(|| Fr::random(rng)).take(n).collect())
-//         .collect();
-//     let proof = {
-//         let mut transcript = PoseidonTranscript::<NativeLoader, _>::new(Vec::new());
-//         for _ in 0..protocol
-//             .num_witness
-//             .iter()
-//             .chain(Some(&protocol.quotient.num_chunk()))
-//             .sum::<usize>()
-//         {
-//             transcript.write_ec_point(G1Affine::random(rng)).unwrap();
-//         }
-//         for _ in 0..protocol.evaluations.len() {
-//             transcript.write_scalar(Fr::random(rng)).unwrap();
-//         }
-//         let queries = PlonkProof::<G1Affine, NativeLoader, Pcs>::empty_queries(&protocol);
-//         for _ in 0..Pcs::estimate_cost(&queries).num_commitment {
-//             transcript.write_ec_point(G1Affine::random(rng)).unwrap();
-//         }
-//         transcript.finalize()
-//     };
-
-//     Snark::new(protocol, instances, proof)
-// }
+use super::*;
 
 type AssignedScalar<'a> = <BaseFieldEccChip as EccInstructions<'a, G1Affine>>::AssignedScalar;
 
@@ -236,17 +20,9 @@ fn poseidon<L: Loader<G1Affine>>(loader: &L, inputs: &[L::LoadedScalar]) -> L::L
     hasher.squeeze()
 }
 
-// TODO: maybe it can be added into snark-verifier sdk later?
-// Now it is still a version specified for Kzg since the only
-// type support AccumulatorEncoding trait in verifier::Plonk
-// is LimbsEncoding, which only be generic with PCS whose Accmulator
-// is KzgAccmulator ...
-
 /// It is similar to `succinct_verify` method inside of snark-verifier
 /// but allow it allow loader to load preprocessed part as witness (so ANY circuit)
-/// can be verified
-///
-///
+/// can be verified.
 pub fn dynamic_verify<'a, PCS>(
     svk: &PCS::SuccinctVerifyingKey,
     loader: &Rc<Halo2Loader<'a>>,
 
@@ -1,21 +1,27 @@
-use super::*;
-use crate::param::ConfigParams as BatchCircuitConfigParams;
-
 use halo2_proofs::plonk::{Column, Instance};
 use snark_verifier::loader::halo2::halo2_ecc::{
     ecc::{BaseFieldEccChip, EccChip},
     fields::fp::FpConfig,
     halo2_base::gates::{flex_gate::FlexGateConfig, range::RangeConfig},
 };
 
+use crate::param::ConfigParams as RecursionCircuitConfigParams;
+
+use super::*;
+
 #[derive(Clone)]
 pub struct RecursionConfig {
+    /// The non-native field arithmetic config from halo2-lib.
     pub base_field_config: FpConfig<Fr, Fq>,
+    /// The single instance column to hold the public input to the [`RecursionCircuit`].
     pub instance: Column<Instance>,
 }
 
 impl RecursionConfig {
-    pub fn configure(meta: &mut ConstraintSystem<Fr>, params: BatchCircuitConfigParams) -> Self {
+    pub fn configure(
+        meta: &mut ConstraintSystem<Fr>,
+        params: RecursionCircuitConfigParams,
+    ) -> Self {
         assert!(
             params.limb_bits == BITS && params.num_limbs == LIMBS,
             "For now we fix limb_bits = {}, otherwise change code",