AztecProtocol · lucasxia01 · Jul 25, 2024 · Jul 12, 2024 · Jul 15, 2024 · Jul 15, 2024
diff --git a/barretenberg/cpp/src/barretenberg/dsl/acir_format/acir_format.cpp b/barretenberg/cpp/src/barretenberg/dsl/acir_format/acir_format.cpp
@@ -348,20 +348,19 @@ void build_constraints(Builder& builder,
             // constants set by keeping the nested aggregation object attached to the proof as public inputs.
             std::array<uint32_t, HonkRecursionConstraint::AGGREGATION_OBJECT_SIZE> nested_aggregation_object = {};
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-            // for (size_t i = 0; i < HonkRecursionConstraint::AGGREGATION_OBJECT_SIZE; ++i) {
-            //     // Set the nested aggregation object indices to witness indices from the proof
-            //     nested_aggregation_object[i] =
-            //         static_cast<uint32_t>(constraint.proof[HonkRecursionConstraint::inner_public_input_offset + i]);
-            //     // Adding the nested aggregation object to the constraint's public inputs
-            //     constraint.public_inputs.emplace_back(nested_aggregation_object[i]);
-            // }
+            for (size_t i = 0; i < HonkRecursionConstraint::AGGREGATION_OBJECT_SIZE; ++i) {
+                // Set the nested aggregation object indices to witness indices from the proof
+                nested_aggregation_object[i] =
+                    static_cast<uint32_t>(constraint.proof[HonkRecursionConstraint::inner_public_input_offset + i]);
+                // Adding the nested aggregation object to the constraint's public inputs
+                constraint.public_inputs.emplace_back(nested_aggregation_object[i]);
+            }
             // Remove the aggregation object so that they can be handled as normal public inputs
             // in they way that the recursion constraint expects
-            // constraint.proof.erase(constraint.proof.begin() + HonkRecursionConstraint::inner_public_input_offset,
-            //                        constraint.proof.begin() +
-            //                            static_cast<std::ptrdiff_t>(HonkRecursionConstraint::inner_public_input_offset
-            //                            +
-            //                                                        HonkRecursionConstraint::AGGREGATION_OBJECT_SIZE));
+            constraint.proof.erase(constraint.proof.begin() + HonkRecursionConstraint::inner_public_input_offset,
+                                   constraint.proof.begin() +
+                                       static_cast<std::ptrdiff_t>(HonkRecursionConstraint::inner_public_input_offset +
+                                                                   HonkRecursionConstraint::AGGREGATION_OBJECT_SIZE));
             current_aggregation_object = create_honk_recursion_constraints(builder,
                                                                            constraint,
                                                                            current_aggregation_object,
@@ -379,51 +378,48 @@ void build_constraints(Builder& builder,
             // Set the indices as public inputs because they are no longer being
             // created in ACIR
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-            // for (const auto& idx : current_aggregation_object) {
-            //     builder.set_public_input(idx);
-            // }
-
-            // // Make sure the verification key records the public input indices of the
-            // // final recursion output.
-            // std::vector<uint32_t> proof_output_witness_indices(current_aggregation_object.begin(),
-            //                                                    current_aggregation_object.end());
-            // builder.set_recursive_proof(proof_output_witness_indices);
+            for (const auto& idx : current_aggregation_object) {
+                builder.set_public_input(idx);
+            }
+
+            // Make sure the verification key records the public input indices of the
+            // final recursion output.
+            std::vector<uint32_t> proof_output_witness_indices(current_aggregation_object.begin(),
+                                                               current_aggregation_object.end());
+            builder.set_recursive_proof(proof_output_witness_indices);
+        } else if (honk_recursion &&
+                   builder.is_recursive_circuit) { // Set a default aggregation object if we don't have one.
+            // TODO(https://github.com/AztecProtocol/barretenberg/issues/911): These are pairing points extracted
+            // from a valid proof. This is a workaround because we can't represent the point at infinity in biggroup
+            // yet.
+            fq x0("0x031e97a575e9d05a107acb64952ecab75c020998797da7842ab5d6d1986846cf");
+            fq y0("0x178cbf4206471d722669117f9758a4c410db10a01750aebb5666547acf8bd5a4");
+
+            fq x1("0x0f94656a2ca489889939f81e9c74027fd51009034b3357f0e91b8a11e7842c38");
+            fq y1("0x1b52c2020d7464a0c80c0da527a08193fe27776f50224bd6fb128b46c1ddb67f");
+            std::vector<fq> aggregation_object_fq_values = { x0, y0, x1, y1 };
+            size_t agg_obj_indices_idx = 0;
+            for (fq val : aggregation_object_fq_values) {
+                const uint256_t x = val;
+                std::array<fr, fq_ct::NUM_LIMBS> val_limbs = {
+                    x.slice(0, fq_ct::NUM_LIMB_BITS),
+                    x.slice(fq_ct::NUM_LIMB_BITS, fq_ct::NUM_LIMB_BITS * 2),
+                    x.slice(fq_ct::NUM_LIMB_BITS * 2, fq_ct::NUM_LIMB_BITS * 3),
+                    x.slice(fq_ct::NUM_LIMB_BITS * 3, stdlib::field_conversion::TOTAL_BITS)
+                };
+                for (size_t i = 0; i < fq_ct::NUM_LIMBS; ++i) {
+                    uint32_t idx = builder.add_variable(val_limbs[i]);
+                    builder.set_public_input(idx);
+                    current_aggregation_object[agg_obj_indices_idx] = idx;
+                    agg_obj_indices_idx++;
+                }
+            }
+            // Make sure the verification key records the public input indices of the
+            // final recursion output.
+            std::vector<uint32_t> proof_output_witness_indices(current_aggregation_object.begin(),
+                                                               current_aggregation_object.end());
+            builder.set_recursive_proof(proof_output_witness_indices);
         }
-        static_cast<void>(honk_recursion);
-        // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-        // else if (honk_recursion &&
-        //            builder.is_recursive_circuit) { // Set a default aggregation object if we don't have one.
-        //     // TODO(https://github.com/AztecProtocol/barretenberg/issues/911): These are pairing points extracted
-        //     from
-        //     // a valid proof. This is a workaround because we can't represent the point at infinity in biggroup
-        //     yet. fq x0("0x031e97a575e9d05a107acb64952ecab75c020998797da7842ab5d6d1986846cf"); fq
-        //     y0("0x178cbf4206471d722669117f9758a4c410db10a01750aebb5666547acf8bd5a4");
-
-        //     fq x1("0x0f94656a2ca489889939f81e9c74027fd51009034b3357f0e91b8a11e7842c38");
-        //     fq y1("0x1b52c2020d7464a0c80c0da527a08193fe27776f50224bd6fb128b46c1ddb67f");
-        //     std::vector<fq> aggregation_object_fq_values = { x0, y0, x1, y1 };
-        //     size_t agg_obj_indices_idx = 0;
-        //     for (fq val : aggregation_object_fq_values) {
-        //         const uint256_t x = val;
-        //         std::array<fr, fq_ct::NUM_LIMBS> val_limbs = {
-        //             x.slice(0, fq_ct::NUM_LIMB_BITS),
-        //             x.slice(fq_ct::NUM_LIMB_BITS, fq_ct::NUM_LIMB_BITS * 2),
-        //             x.slice(fq_ct::NUM_LIMB_BITS * 2, fq_ct::NUM_LIMB_BITS * 3),
-        //             x.slice(fq_ct::NUM_LIMB_BITS * 3, stdlib::field_conversion::TOTAL_BITS)
-        //         };
-        //         for (size_t i = 0; i < fq_ct::NUM_LIMBS; ++i) {
-        //             uint32_t idx = builder.add_variable(val_limbs[i]);
-        //             builder.set_public_input(idx);
-        //             current_aggregation_object[agg_obj_indices_idx] = idx;
-        //             agg_obj_indices_idx++;
-        //         }
-        //     }
-        //     // Make sure the verification key records the public input indices of the
-        //     // final recursion output.
-        //     std::vector<uint32_t> proof_output_witness_indices(current_aggregation_object.begin(),
-        //                                                        current_aggregation_object.end());
-        //     builder.set_recursive_proof(proof_output_witness_indices);
-        // }
     }
 }
 

diff --git a/barretenberg/cpp/src/barretenberg/dsl/acir_format/honk_recursion_constraint.test.cpp b/barretenberg/cpp/src/barretenberg/dsl/acir_format/honk_recursion_constraint.test.cpp
@@ -162,13 +162,15 @@ class AcirHonkRecursionConstraint : public ::testing::Test {
             std::vector<fr> inner_public_input_values(
                 proof_witnesses.begin() + static_cast<std::ptrdiff_t>(inner_public_input_offset),
                 proof_witnesses.begin() +
-                    static_cast<std::ptrdiff_t>(inner_public_input_offset + num_inner_public_inputs));
+                    static_cast<std::ptrdiff_t>(inner_public_input_offset + num_inner_public_inputs -
+                                                RecursionConstraint::AGGREGATION_OBJECT_SIZE));
 
             // We want to make sure that we do not remove the nested aggregation object.
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
             proof_witnesses.erase(proof_witnesses.begin() + static_cast<std::ptrdiff_t>(inner_public_input_offset),
                                   proof_witnesses.begin() +
-                                      static_cast<std::ptrdiff_t>(inner_public_input_offset + num_inner_public_inputs));
+                                      static_cast<std::ptrdiff_t>(inner_public_input_offset + num_inner_public_inputs -
+                                                                  RecursionConstraint::AGGREGATION_OBJECT_SIZE));
 
             std::vector<bb::fr> key_witnesses = verification_key->to_field_elements();
 
@@ -179,9 +181,9 @@ class AcirHonkRecursionConstraint : public ::testing::Test {
             const uint32_t public_input_start_idx =
                 static_cast<uint32_t>(inner_public_input_offset + witness_offset); // points to public_input_0
             const uint32_t proof_indices_start_idx =
-                static_cast<uint32_t>(public_input_start_idx + num_inner_public_inputs);
+                static_cast<uint32_t>(public_input_start_idx + num_inner_public_inputs -
+                                      RecursionConstraint::AGGREGATION_OBJECT_SIZE); // points to agg_obj_0
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-            //  - RecursionConstraint::AGGREGATION_OBJECT_SIZE); // points to agg_obj_0
             const uint32_t key_indices_start_idx =
                 static_cast<uint32_t>(proof_indices_start_idx + proof_witnesses.size() -
                                       inner_public_input_offset); // would point to vkey_3 without the -
@@ -205,7 +207,7 @@ class AcirHonkRecursionConstraint : public ::testing::Test {
             // thus we do not explicitly have to keep the public inputs while setting up the initial recursion
             // constraint. They will later be attached as public inputs when creating the circuit.
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-            for (size_t i = 0; i < num_inner_public_inputs; ++i) {
+            for (size_t i = 0; i < num_inner_public_inputs - RecursionConstraint::AGGREGATION_OBJECT_SIZE; ++i) {
                 inner_public_inputs.push_back(static_cast<uint32_t>(i + public_input_start_idx));
             }
 
@@ -245,7 +247,7 @@ class AcirHonkRecursionConstraint : public ::testing::Test {
             // We once again have to check whether we have a nested proof, because if we do have one
             // then we could get a segmentation fault as `inner_public_inputs` was never filled with values.
             // TODO(https://github.com/AztecProtocol/barretenberg/issues/1044): Reinstate aggregation
-            for (size_t i = 0; i < num_inner_public_inputs; ++i) {
+            for (size_t i = 0; i < num_inner_public_inputs - RecursionConstraint::AGGREGATION_OBJECT_SIZE; ++i) {
                 witness[inner_public_inputs[i]] = inner_public_input_values[i];
             }
 

diff --git a/noir/noir-repo/test_programs/execution_success/verify_honk_proof/Prover.toml b/noir/noir-repo/test_programs/execution_success/verify_honk_proof/Prover.toml
diff --git a/noir/noir-repo/test_programs/execution_success/verify_honk_proof/src/main.nr b/noir/noir-repo/test_programs/execution_success/verify_honk_proof/src/main.nr
@@ -1,6 +1,6 @@
 
 // This circuit aggregates a single Honk proof from `assert_statement_recursive`.
-global SIZE_OF_PROOF_IF_LOGN_IS_28 : u32 = 393;
+global SIZE_OF_PROOF_IF_LOGN_IS_28 : u32 = 409;
 fn main(
     verification_key: [Field; 103],
     // This is the proof without public inputs attached.

diff --git a/noir/verify_honk_proof/src/main.nr b/noir/verify_honk_proof/src/main.nr
@@ -1,6 +1,6 @@
 
 // This circuit aggregates a single Honk proof from `assert_statement_recursive`.
-global SIZE_OF_PROOF_IF_LOGN_IS_28 : u32 = 393;
+global SIZE_OF_PROOF_IF_LOGN_IS_28 : u32 = 409;
 fn main(
     verification_key: [Field; 103],
     // This is the proof without public inputs attached.