fix batch equation (#167)
This commit is contained in:
parent
b401c3a5bc
commit
b810b980a8
|
@ -92,13 +92,10 @@ impl Verifier {
|
|||
///
|
||||
/// The batch verification equation is:
|
||||
///
|
||||
/// h_G * -[sum(z_i * s_i)]P_G + sum(\[z_i\]R_i + [z_i * c_i]VK_i) = 0_G
|
||||
/// h_G * ( -[sum(z_i * s_i)]P_G + sum(\[z_i\]R_i) + sum([z_i * c_i]VK_i) ) = 0_G
|
||||
///
|
||||
/// which we split out into:
|
||||
///
|
||||
/// h_G * -[sum(z_i * s_i)]P_G + sum(\[z_i\]R_i) + sum([z_i * c_i]VK_i) = 0_G
|
||||
///
|
||||
/// so that we can use multiscalar multiplication speedups.
|
||||
/// as given in https://zips.z.cash/protocol/protocol.pdf#reddsabatchvalidate
|
||||
/// (the terms are split out so that we can use multiscalar multiplication speedups).
|
||||
///
|
||||
/// where for each signature i,
|
||||
/// - VK_i is the verification key;
|
||||
|
|
Loading…
Reference in New Issue