soroban-poseidon
| Crates.io | soroban-poseidon |
| lib.rs | soroban-poseidon |
| version | 25.0.0-rc.1 |
| created_at | 2026-01-12 06:20:16.05389+00 |
| updated_at | 2026-01-22 02:23:13.72507+00 |
| description | Poseidon and Poseidon2 cryptographic hash functions for Soroban smart contracts |
| homepage | https://github.com/stellar/rs-soroban-poseidon |
| repository | https://github.com/stellar/rs-soroban-poseidon |
| max_upload_size | |
| id | 2037085 |
| size | 671,520 |
Stellar (Rust crate publisher) (stellar-crates)
documentation
https://docs.rs/soroban-poseidon
README
soroban-poseidon
Poseidon and Poseidon2 cryptographic hash functions for Soroban smart contracts.
Features
- Poseidon: Matches circom's implementation
- Poseidon2: Matches noir's implementation
- Support for BN254 and BLS12-381 fields
Installation
Add to your Cargo.toml:
[dependencies]
soroban-poseidon = { git = "https://github.com/stellar/rs-soroban-poseidon" }
Usage
Poseidon Hash
use soroban_poseidon::poseidon_hash;
use soroban_sdk::{crypto::BnScalar, vec, Env, U256};
let env = Env::default();
let inputs = vec![&env, U256::from_u32(&env, 1), U256::from_u32(&env, 2)];
// Hash 2 inputs with t=3 (rate=2, capacity=1)
let hash = poseidon_hash::<3, BnScalar>(&env, &inputs);
Poseidon2 Hash
use soroban_poseidon::poseidon2_hash;
use soroban_sdk::{crypto::BnScalar, vec, Env, U256};
let env = Env::default();
let inputs = vec![&env, U256::from_u32(&env, 1), U256::from_u32(&env, 2), U256::from_u32(&env, 3)];
// Hash 3 inputs with t=4 (rate=3, capacity=1)
let hash = poseidon2_hash::<4, BnScalar>(&env, &inputs);
Reusing Sponge for Multiple Hashes
For repeated hashing, create a sponge once to reuse the pre-initialized parameters:
use soroban_poseidon::PoseidonSponge;
use soroban_sdk::{crypto::BnScalar, vec, Env, U256};
let env = Env::default();
let mut sponge = PoseidonSponge::<3, BnScalar>::new(&env);
let inputs1 = vec![&env, U256::from_u32(&env, 1), U256::from_u32(&env, 2)];
let inputs2 = vec![&env, U256::from_u32(&env, 3), U256::from_u32(&env, 4)];
// Each call computes a fresh hash (state is reset between calls)
let hash1 = sponge.compute_hash(&inputs1);
let hash2 = sponge.compute_hash(&inputs2);
Supported Configurations
Poseidon
| Field | State Size (T) | Rate | Inputs |
|---|---|---|---|
| BN254 | 2, 3, 4, 5, 6 | T-1 | 1–5 |
| BLS12-381 | 2, 3, 4, 5, 6 | T-1 | 1–5 |
Poseidon2
| Field | State Size (T) | Rate | Inputs |
|---|---|---|---|
| BN254 | 2, 3, 4 | T-1 | 1–3 |
| BLS12-381 | 2, 3, 4 | T-1 | 1–3 |
Limitations / Future Work
-
Multi-round absorption: Currently, inputs must fit within a single rate (i.e.,
inputs.len() <= T - 1). Future versions will support absorbing inputs larger than the state size across multiple permutation rounds. -
Persistent parameters: Make
PoseidonParams/Poseidon2Paramsa#[contracttype]so they can be stored as contract data and reduce the contract size. -
Additional sponge modes: Support more sponge operation modes such as full duplex mode for streaming absorb/squeeze operations.
Development
# Format code
make fmt
# Build test contract WASMs
make build-test-wasms
# Run all tests (fmt + build-test-wasms + unit tests)
make test
# Clean build artifacts
make clean
License
Apache-2.0