Add keccak

WizardOfMenlo · WizardOfMenlo · commit 5537a3baa8db · 2024-09-06T21:47:34.000+02:00
diff --git a/src/plugins/pow/keccak.rs b/src/plugins/pow/keccak.rs
@@ -0,0 +1,31 @@
+use super::PowStrategy;
+
+#[derive(Clone, Copy)]
+pub struct KeccakPoW {
+    challenge: [u64; 4],
+    threshold: u64,
+    state: [u64; 25],
+}
+
+impl PowStrategy for KeccakPoW {
+    fn new(challenge: [u8; 32], bits: f64) -> Self {
+        let threshold = (64.0 - bits).exp2().ceil() as u64;
+        Self {
+            challenge: bytemuck::cast(challenge),
+            threshold,
+            state: [0; 25],
+        }
+    }
+
+    /// This deliberately uses the high level interface to guarantee
+    /// compatibility with standard Blake3.
+    fn check(&mut self, nonce: u64) -> bool {
+        self.state[..4].copy_from_slice(&self.challenge);
+        self.state[4] = nonce;
+        for s in self.state.iter_mut().skip(5) {
+            *s = 0;
+        }
+        keccak::f1600(&mut self.state);
+        self.state[0] < self.threshold
+    }
+}
diff --git a/src/plugins/pow/mod.rs b/src/plugins/pow/mod.rs
@@ -1,4 +1,5 @@
 mod blake3;
+mod keccak;
 
 use crate::{
     Arthur, ByteChallenges, ByteIOPattern, ByteReader, ByteWriter, IOPattern, Merlin, ProofError,
@@ -60,7 +61,7 @@ where
     }
 }
 
-pub trait PowStrategy {
+pub trait PowStrategy: Clone + Sync {
     /// Creates a new proof-of-work challenge.
     /// The `challenge` is a 32-byte array that represents the challenge.
     /// The `bits` is the binary logarithm of the expected amount of work.
@@ -71,5 +72,41 @@ pub trait PowStrategy {
     fn check(&mut self, nonce: u64) -> bool;
 
     /// Finds the minimal `nonce` that satisfies the challenge.
-    fn solve(&mut self) -> Option<u64>;
+    #[cfg(not(feature = "parallel"))]
+    fn solve(&mut self) -> Option<u64> {
+        // TODO: Parallel default impl
+        (0u64..).find_map(|nonce| if self.check(nonce) { Some(nonce) } else { None })
+    }
+
+    #[cfg(feature = "parallel")]
+    fn solve(&mut self) -> Option<u64> {
+        // Split the work across all available threads.
+        // Use atomics to find the unique deterministic lowest satisfying nonce.
+
+        use std::sync::atomic::{AtomicU64, Ordering};
+
+        use rayon::broadcast;
+        let global_min = AtomicU64::new(u64::MAX);
+        let _ = broadcast(|ctx| {
+            let mut worker = self.clone();
+            let nonces = (ctx.index() as u64..).step_by(ctx.num_threads());
+            for nonce in nonces {
+                // Use relaxed ordering to eventually get notified of another thread's solution.
+                // (Propagation delay should be in the order of tens of nanoseconds.)
+                if nonce >= global_min.load(Ordering::Relaxed) {
+                    break;
+                }
+                if worker.check(nonce) {
+                    // We found a solution, store it in the global_min.
+                    // Use fetch_min to solve race condition with simultaneous solutions.
+                    global_min.fetch_min(nonce, Ordering::SeqCst);
+                    break;
+                }
+            }
+        });
+        match global_min.load(Ordering::SeqCst) {
+            u64::MAX => self.check(u64::MAX).then_some(u64::MAX),
+            nonce => Some(nonce),
+        }
+    }
 }
