cd1083e086
Implememt sorting for TxIDs
2019-10-14 13:40:08 -07:00
2bbd25b36b
Add prevHash field to CompactBlock
...
This enables basic verification of chain validity when CompactBlocks are
received without the full header.
2019-10-09 14:11:14 +13:00
a3b85b8fe6
Compute and store BlockHash inside BlockHeader
2019-10-09 14:11:14 +13:00
7844394364
Remove unneeded extern crate
2019-10-08 16:12:14 +03:00
8b08528bb0
zcash_primitives 0.1.0
2019-10-08 17:43:33 +13:00
2399d9f3e3
Merge pull request #93 from defuse/qed-it-lrz
...
Bring in QED-it Tests
2019-10-08 13:47:36 +13:00
93563c3c65
Specify rand_core >= 0.5.1 for OsRng import.
2019-10-05 12:16:10 +02:00
524055bbb4
Merge pull request #134 from NikVolf/z-rng
...
Avoid using rand_os crate (fixes warnings)
2019-10-02 17:35:56 -06:00
730d2cbc7e
fix outdated example
2019-09-28 12:50:28 +03:00
b42477a0bf
update from rand_os to fix warnings
2019-09-28 10:48:43 +03:00
4ad3988e43
Crate docs
2019-09-24 14:23:59 +01:00
7f3036d2c8
Update READMEs
2019-09-24 14:23:55 +01:00
d9a0b9c83f
CI: Check intra-doc links
...
Credit: https://twitter.com/tomaka17/status/1176017851410526208
2019-09-24 10:35:12 +01:00
1d02363752
Add READMEs to Cargo.toml files
...
This will cause crates.io to render each crate's README as its
information page.
2019-09-23 14:42:38 +01:00
3701c2b442
Increase the number of pedersen hash generators, exercise all test vectors.
2019-09-17 00:05:54 +01:00
4dff8055bf
Remove unfinished find_group_hash test.
2019-09-16 23:44:14 +01:00
e391594e9e
Fix broken linear relation checking
2019-09-16 22:51:11 +01:00
15b4c37ab0
adds test for linear relation between pedersen hash generators
2019-09-16 22:23:28 +01:00
68ba93f5fd
PH test vectors for edge-cases
2019-09-16 21:58:28 +01:00
6240c02208
Long and random PH test vectors
2019-09-16 21:57:53 +01:00
be18eb240c
Move test vectors into own module
2019-09-16 21:57:42 +01:00
9080b4ccf3
Many test vectors for pedersen hash
2019-09-16 20:52:11 +01:00
f5dfe07355
A test vector for pedersen hash
2019-09-16 20:50:22 +01:00
2edcc12e8e
group_hash: adds test vectors generated by go-jubjub
2019-09-16 20:34:14 +01:00
7ee61c4f94
pedersen_hash: adds test vectors for the circuit implementation
2019-09-16 20:23:07 +01:00
15633ad434
pedersen hashes: example of size limit bug
2019-09-16 20:17:50 +01:00
414d651c9c
pedersen_hash: adds tests for Daniel's vector
2019-09-16 20:12:38 +01:00
8541b2bde4
pedersen_hash: prints hashes, adds comments
2019-09-16 20:12:33 +01:00
0a3b0a9341
Upgrade to hex-literal 0.2
2019-09-12 19:38:51 +01:00
d6f6b50ecd
Check try_sapling_output_recovery fails with identity as pk_d
2019-09-04 19:48:39 -04:00
abbd43ff57
Make pk_d validity an invariant of PaymentAddress
...
Introduces a PaymentAddress::from_parts constructor, and getters for
the diversifier and pk_d fields (which are now private).
2019-09-04 19:48:35 -04:00
86142d044c
PaymentAddress::to_bytes
2019-09-04 19:46:46 -04:00
73ee19239c
Replace manual address decoding with PaymentAddress::from_bytes
2019-09-04 19:46:46 -04:00
0c7eb84d36
impl FromStr for Memo
...
Memo::from_str was previously shadowing a built-in trait method.
2019-08-24 00:40:32 +01:00
7c1d4d9a5b
Log distinct error cases in Equihash verification
2019-08-24 00:40:30 +01:00
fe93f2ff6b
Rename into_ -> to_ where &self is used.
2019-08-24 00:39:54 +01:00
3a8efd9e67
Address various clippy warnings/errors in zcash_primitives
2019-08-24 00:39:49 +01:00
d78c94b2a2
Move Equihash validator into zcash_primitives
2019-08-24 00:37:00 +01:00
d63fa334ff
Remove unnecessary raw marker
...
Co-Authored-By: str4d <thestr4d@gmail.com>
2019-08-21 16:14:28 -06:00
76795a9014
cargo fmt
2019-08-20 22:22:03 -06:00
c28ae31c71
cargo fix --edition-idioms for zcash_primitives
2019-08-20 22:20:22 -06:00
09882c6d08
Add edition = 2018
2019-08-20 18:31:20 -06:00
b35a819a09
Replace try! macro
2019-08-20 18:24:47 -06:00
f523ac285d
cargo fmt
2019-08-20 17:17:21 -06:00
b0d8747697
cargo fix --edition for zcash_primitives
2019-08-20 17:15:07 -06:00
e12d315ab9
Warning cleanup
2019-08-20 16:45:10 -06:00
81c58172c3
cargo fmt zcash_primitives
2019-08-15 10:39:55 -06:00
5fb9b86ba0
Move Jubjub, Pedersen hash and primitives into zcash_primitives
2019-08-14 10:47:22 +01:00
2ae5804a67
Move Sprout and Sapling circuits into zcash_proofs
2019-08-14 10:45:55 +01:00
7ea6d10480
Move redjubjub into zcash_primitives
2019-08-14 10:43:25 +01:00
3211536324
Upgrade to crypto_api_chachapoly >= 0.2.1
2019-08-14 01:12:26 +01:00
2f1cae62b1
Upgrade to fpe 0.2
2019-08-14 01:12:23 +01:00
4a6c9ec425
Comment that we support a minimal set of script opcodes
...
Co-Authored-By: Daira Hopwood <daira@jacaranda.org>
2019-08-14 00:30:18 +01:00
a28d94ff2e
Panic if Amount addition or subtraction overflows
2019-08-14 00:16:09 +01:00
1760b275a7
Simplify transaction builder tests
...
Requires impl PartialEq for Transaction, which is implemented as a TxId
comparison (relying on the invariant that Transaction is immutable).
2019-08-13 15:24:08 +01:00
3a73f946c5
Simplify structure of transaction builder errors
2019-08-13 15:10:57 +01:00
e6663212ff
Improve documentation for Amount
2019-08-08 09:21:09 +01:00
7c07914bfd
Separate Amount::{from_i64, from_nonnegative_i64} APIs
...
This is more intuitive than a boolean flag for handling non-negative
Amounts stored in i64 values.
2019-08-08 00:55:23 +01:00
59ed258c7f
Make Amount opaque, and use it more
...
This helps to ensure type-safety of values that are required to satisfy
zatoshi range bounds.
2019-07-27 00:35:29 +01:00
ab60b8804a
impl operators for Amount
2019-07-27 00:35:28 +01:00
0ea4408d46
Amount::{zero, is_positive, is_negative}
2019-07-27 00:35:27 +01:00
fa50d551c8
Move Amount impl into a submodule
2019-07-27 00:35:26 +01:00
17f6bbcc67
Pass tx builder RNG to spend_sig()
2019-07-27 00:35:04 +01:00
532299d46e
Allow transaction::Builder RNG to be configured
2019-07-27 00:32:56 +01:00
4b61120cd0
Pass tx builder RNG to SaplingNoteEncryption
2019-07-27 00:31:16 +01:00
a1cd9dfbac
transaction::Builder::add_transparent_output()
2019-07-27 00:28:02 +01:00
c26188a0bb
TransparentAddress struct for P2PKH and P2SH
2019-07-27 00:28:01 +01:00
dab3c002b7
Script opcode and data support
...
Overrides the shift-left operator for pushing opcodes onto the Script,
matching the notation used in zcashd.
2019-07-27 00:28:00 +01:00
1862354ea6
Sapling transaction builder
2019-07-27 00:27:50 +01:00
01618038bf
TxProver trait to abstract over the circuit parameters
...
An implementation using local parameters is provided in the zcash_proofs
crate.
2019-07-26 23:56:00 +01:00
05f098e893
Merge pull request #91 from str4d/upgrade-rand
...
Upgrade rand crate dependency to 0.7
2019-07-26 23:31:42 +01:00
5a48d179b8
Merge pull request #90 from adityapk00/paperwallet
...
Make some methods pub for use in External Wallet Generators
The exposed APIs may change in future crate versions.
2019-07-22 13:25:25 +01:00
7f60f0f881
Make some methods in DiversifierKey, DiversiferIndex pub
2019-07-18 16:19:45 -07:00
6f9083b5ab
Migrate to rand 0.7
2019-07-19 00:47:40 +02:00
8f7adec0d9
Migrate zcash_primitives to rand_core 0.4
2019-07-19 00:46:37 +02:00
6149166ccb
Migrate zcash_primitives to rand 0.5
2019-07-19 00:35:06 +02:00
8361674efc
Merge branch 'master' into blake2_simd
2019-07-18 18:22:20 +02:00
504c3eaeae
Address Daira's review comments
2019-07-15 16:33:43 +02:00
07dbfbef59
Address Eirik's review comments
2019-07-10 13:53:22 -04:00
79006ecbdf
Unify Sapling tree depth constants
...
When sapling-crypto is refactored, the zcash_primitives::sapling
constant would become the canonical one.
2019-07-10 13:53:22 -04:00
e67560b154
Document merkle_tree module
2019-07-10 13:53:22 -04:00
b9cea33804
Move merkle_tree::Node into sapling module
...
This makes the merkle_tree module properly generic over the tree hash.
It still hard-codes a depth 32 tree, because Rust doesn't yet support
generic sizes, and we are unlikely to need to alter the tree depth in
future circuit changes.
2019-07-10 13:53:22 -04:00
263bbe1207
Use Iterator::all() in place of Iterator::fold()
2019-07-10 13:53:22 -04:00
98d7621135
Don't assert when parsing a CommitmentTreeWitness
2019-07-10 13:53:22 -04:00
9b4186705a
Add serialization APIs to CommitmentTree and IncrementalWitness
2019-07-10 13:53:22 -04:00
70a7069058
Helper for serializing Option<T>
2019-07-10 13:53:22 -04:00
667d6101c9
Sapling incremental witnesses
2019-07-10 13:53:20 -04:00
bf74915053
Move CommitmentTreeWitness into zcash_primitives
2019-07-10 13:52:47 -04:00
f4059a5faa
Sapling commitment tree
2019-07-10 13:44:21 -04:00
8f3f95ee08
Sapling commitment tree empty roots
2019-07-10 13:44:21 -04:00
785f22ca5a
Move Sapling commitment tree hash into zcash_primitives
2019-07-10 13:44:19 -04:00
999dcbfcab
Migrate to blake2b_simd and blake2s_simd crates
...
The primary reason for migrating is that these crates provide APIs for
setting the personalisation string. This enables us to depend solely on
published crates, and thus publish our own crates.
The SIMD implementations are ported from libsodium.
Closes #67 .
2019-07-10 13:12:14 -04:00
f25a8a557e
Convert zip32 crate into a module of zcash_primitives
2019-06-27 16:14:24 +01:00
3b6f5e3d5e
Merge pull request #69 from str4d/sapling-note-encryption
...
Sapling note encryption
2019-06-06 20:50:17 +01:00
b65aae9bc1
Test both invalid and incorrect diversifiers
2019-06-06 13:56:06 +01:00
fdb6e208db
Check note plaintext version byte when decrypting
2019-06-06 13:38:34 +01:00
060977fe54
Return edwards::Point from sapling_ka_agree
...
This matches how sapling_ka_agree and kdf_sapling are defined in the
protocol spec. kdf_sapling also now takes ownership of dhsecret to
discourage use of the sapling_ka_agree output elsewhere.
2019-06-06 13:38:33 +01:00
9d80be62f9
Simplify Memo::to_utf8 implementation
2019-06-06 13:38:32 +01:00
6846ac5f9e
Require that ak in FullViewingKey is prime order
2019-06-06 13:38:31 +01:00
75bede4bc8
Use fixed-length arrays instead of Vec
2019-06-06 13:38:30 +01:00
d4fce58019
Tweaks to debug output and function names
2019-06-05 14:19:50 +01:00
23aa869bf4
Add comments with specification references
2019-06-05 14:19:33 +01:00
6d03b5c1db
Replace AeadCipher::seal with AeadCipher::seal_to
2019-06-05 13:55:17 +01:00
c5642f9f5e
Merge pull request #70 from rex4539/electric-coin-company
...
Electric Coin Company
2019-05-23 17:33:38 +01:00
34f762cea2
Electric Coin Company
2019-05-09 20:32:39 +03:00
edf7bc144d
Document note_encryption module
2019-04-11 16:08:32 -07:00
6dcb4040af
Switch to crypto_api_chachapoly crate
...
This crate exposes both the ChaCha20Poly1305 IETF construction, and the
underlying ChaCha20 IETF primitive, removing the need for depending on
our own fork of the previous chacha20-poly1305-aead crate.
2019-04-11 06:33:41 -07:00
e17e4b1346
Test invalid decryption edge cases
2019-04-05 21:05:05 +01:00
9086dd9afb
Enforce consistent plaintext and ciphertext lengths
2019-04-05 21:05:05 +01:00
899d852c39
Inline empty nonces
2019-04-05 21:05:05 +01:00
566db65a91
Use a slice instead of a vector in prf_expand()
2019-04-05 21:05:05 +01:00
2b1583d75f
Deduplicate Sapling key agreement logic
2019-04-05 21:05:05 +01:00
247f3fb038
Impl traits and functions for Memo
2019-04-05 21:05:05 +01:00
484330ebd9
Trial Sapling compact note decryption
...
Part of ZIP 307.
2019-04-05 21:05:05 +01:00
8e098d4d72
Trial Sapling output recovery
2019-04-05 21:05:05 +01:00
6996853168
Trial Sapling note decryption
2019-04-05 21:05:05 +01:00
757316d355
Test prf_ock
2019-04-05 21:05:05 +01:00
70caa7d4b0
Sapling note encryption test vectors
2019-04-05 21:05:05 +01:00
65bbe7daed
Implement Sapling note encryption
2019-04-05 21:05:05 +01:00
9b455a12cc
Move Sapling key structs from zip32 to zcash_primitives
2019-04-05 21:05:03 +01:00
6c99d71d4f
cargo fmt
2019-04-02 01:30:00 +01:00
3501365950
Test Transaction::txid()
2019-04-02 01:29:48 +01:00
663f9d619d
Use named fields in Transaction struct
2019-04-02 01:29:22 +01:00
b856d23069
Reverse a clone of [u8; 32] instead of allocating
2019-03-07 23:43:58 +00:00
4289843852
Compute TxId for Transaction
2019-03-07 23:42:00 +00:00
670bb277e9
Block header serialisation
2019-03-07 23:41:59 +00:00
a1664c6bbc
impl Display for BlockHash and TxId
2019-03-07 23:41:46 +00:00
20d5cdc571
TxId struct
2019-03-07 23:26:03 +00:00
e21be37042
Block header representation
2019-03-07 23:26:00 +00:00
3d39706aee
Make SpendDescription.spend_auth_sig optional
2019-02-26 13:44:28 -07:00
012d43bc8c
derive Debug for various structs
2019-02-26 13:44:28 -07:00
09a20aacfe
Make zcash_primitives::JUBJUB the canonical instantiation of JubjubBls12
2019-02-26 13:44:28 -07:00
6b43b2d0d6
Refactor Sapling spendAuthSig creation into zcash_primitives::sapling
2019-02-26 13:44:28 -07:00
482bef87f0
Add ff and group crates to Cargo workspace
2019-01-06 09:50:07 +00:00
538de482f3
Update zcash_primitives crate to use ff crate
2019-01-06 09:31:20 +00:00
1a1c77536d
cargo fmt 1.31.1
2019-01-03 21:52:06 +00:00
c9b23dfdef
Extract single-TxOut hashing from signature_hash_data() for clarity
2018-11-30 23:13:39 +00:00
e25b614573
Match error message in Amount::Read_i64() to allow_negative value
2018-11-30 23:04:04 +00:00
7ff32b04d6
Document enforcement of consensus rules on transaction components
2018-11-30 22:59:48 +00:00
d707ebd321
Use Option<[u8; N]> for JoinSplit pubkey and signature in a transaction
2018-11-30 01:08:45 +00:00
9b06205ed6
Reject unexpected binding sig during transaction write
2018-11-30 00:54:30 +00:00
61ce4dd3d6
Enforce range checks when reading Amounts
2018-11-30 00:30:37 +00:00
9282c7da29
Replace tx_read_write() test vector with one from current testnet chain
2018-11-16 09:50:27 +00:00
2d2e4aad86
Pass &[E] into Vector::write() instead of &Vec<E>
2018-11-16 08:55:06 +00:00
cc183efda4
Define MAX_SIZE constant for CompactSize serialization
2018-11-16 08:52:53 +00:00
1f11c404dc
Convert Transaction into a wrapping struct with impl Deref
...
Users who have a Transaction can now only obtain an immutable reference
to its underlying data.
2018-11-09 08:34:49 +13:00
0c81695731
ZIP 243
2018-11-09 08:34:49 +13:00
2d8b1fe504
ZIP 143
2018-11-09 08:34:38 +13:00
e490b79907
Transaction serialization
2018-10-11 18:05:50 +01:00
91ff2c71cf
Helper for serializing CompactSize-prefixed vectors
2018-10-11 17:48:12 +01:00
ad16ba6a35
Empty crates as a base for code refactoring
2018-08-28 22:24:14 +01:00
Aditya Kulkarni
Jack Grigg
NikVolf
Jim Posen
Taylor Hornby
Kobi Gurkan
Aurélien Nicolas
Eirik Ogilvie-Wigley
Eirik Ogilvie-Wigley
str4d
Dimitris Apostolou
George Tankersley