From bc48ebe898058a9805ba5ee8513a80eef431f327 Mon Sep 17 00:00:00 2001
From: Daira Hopwood <daira@jacaranda.org>
Date: Mon, 1 Oct 2018 10:43:48 +0100
Subject: [PATCH] Improved cross-referencing in Pedersen hash section.

Signed-off-by: Daira Hopwood <daira@jacaranda.org>
---
 protocol/protocol.tex | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/protocol/protocol.tex b/protocol/protocol.tex
index ab75b6ef..645cbcca 100644
--- a/protocol/protocol.tex
+++ b/protocol/protocol.tex
@@ -5993,9 +5993,9 @@ and of Mihir Bellare, Oded Goldreich, and Shafi Goldwasser in \cite{BGG1995},
 with optimizations for efficient instantiation in \zkSNARKCircuits
 by Sean Bowe and Daira Hopwood.
 
-$\PedersenHash$ is used in the \incrementalMerkleTree over \noteCommitments
-(\crossref{merkletree}) and in the definition of \xPedersenCommitments
-(\crossref{concretewindowedcommit}).
+$\PedersenHash$ is used in the definitions of \xPedersenCommitments
+(\crossref{concretewindowedcommit}), and of the \hashFunction for the
+\Sapling \incrementalMerkleTree (\crossref{saplingmerklecrh}).
 
 Let $\GroupJ$, $\SubgroupJ$, $\ZeroJ$, $\ParamJ{q}$, $\ParamJ{r}$, $\ParamJ{a}$, and $\ParamJ{d}$ be as defined in \crossref{jubjub}.
 
@@ -9784,6 +9784,10 @@ Peter Newell's illustration of the Jubjub bird, from \cite{Carroll1902}.
           extractors $\Extractor{\Adversary}$.
     \item Correct a use of $\GroupJ$ that should have been $\MontCurve$ in the proof of
           \theoremref{thmdistinctxcriterion}.
+    \item Address some of the findings of the QED-it report:
+          \begin{itemize}
+            \item Improved cross-referencing in \crossref{concretepedersenhash}.
+          \end{itemize}
 } %sapling
 \end{itemize}