Daira Hopwood
39b498fed9
Remove a todo.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:07:18 +00:00
Daira Hopwood
0835c3837e
Modify the description of fixed-base scalar multiplication to match sapling-crypto.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:06:36 +00:00
Daira Hopwood
2f868aca8d
Add LEBStoIP.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:00:41 +00:00
Daira Hopwood
c7d08a269c
ZIP 205 formatting fixes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-30 20:43:30 +00:00
Daira Hopwood
e4a74b9d0e
Merge pull request #191 from daira/zip-0205
...
Add ZIP 205.
2018-10-29 01:13:22 +00:00
Daira Hopwood
ede1215566
Add ZIP 205.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-28 07:43:31 +00:00
Daira Hopwood
35478ad138
Merge pull request #189 from zcash/bitcartel-patch-1
...
Update ZIP 243 with test vector for transparent tx
2018-10-25 18:28:08 +01:00
Daira Hopwood
43e83effb4
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:18:39 +01:00
Daira Hopwood
e24f7cede5
Clarify the description of the Merkle path check in Appendix A.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:14:28 +01:00
Daira Hopwood
066d424d3a
Correct the input to H⊛ used to derive the nonce r in RedDSA.Sign, from T || M to T || _vk_ || M.
...
This matches the sapling-crypto implementation; the spec was unintentionally changed in 2018.0-beta-20.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:14:28 +01:00
bitcartel
9ed3c3d455
Update ZIP 243 with test vector for transparent tx
2018-10-15 21:14:25 -07:00
Daira Hopwood
f6f47a0ecd
Merge pull request #157 from str4d/zip-0032
...
[ZIP 32] Shielded Hierarchical Deterministic Wallets
2018-10-05 22:07:39 +01:00
Daira Hopwood
34c6a5c0d6
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 16:47:28 +01:00
Daira Hopwood
c04c0542e8
Cosmetics (pagination in Appendix A).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 16:44:31 +01:00
Daira Hopwood
bb52ce246c
Clarify notation in the proof of A.3.3.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 15:44:11 +01:00
Daira Hopwood
223b8db3a7
Minor tweak to the statement of Theorem A.3.4 to make the contradiction clearer.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:22:49 +01:00
Daira Hopwood
da7c6fe190
Correct the statement and proof of Theorem A.3.2.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:21:02 +01:00
Daira Hopwood
25b64382e4
Clarify the notes concerning domain separation of prefixes for MerkleCRH^Sapling and NoteCommit^Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:00:45 +01:00
Daira Hopwood
2a7002a010
Add the QED-it report to the acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:45:19 +01:00
Daira Hopwood
bc48ebe898
Improved cross-referencing in Pedersen hash section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:43:48 +01:00
Daira Hopwood
74c39f073d
Correct a use of \GroupJ that should have been \MontCurve.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:34:56 +01:00
Daira Hopwood
691922ebd1
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
Daira Hopwood
dc81e21c2b
Correct uses of LEOS2IP_l in RedDSAVerify and RedDSABatchVerify to ensure l is a multiple of 8.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
Daira Hopwood
5524822ed5
Correct some uses of r_J that should have been r_S or q.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
Daira Hopwood
dc41de37f3
Avoid clashing notation. Refer to the Montgomery form of Jubjub as \mathbb{M}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
Jack Grigg
975a2aaa64
Formatting
2018-09-20 11:05:25 +01:00
Ariel
cb1e663836
Improve explanation of diversifier sequence choice
2018-09-20 12:11:13 +03:00
Jack Grigg
888681c0b0
Update references to Sapling protocol spec
2018-09-18 11:42:29 +01:00
Jack Grigg
606abd14e2
Be explicit about supported range for the Sapling key path
2018-09-18 11:40:19 +01:00
Jack Grigg
44e9c03d45
dk_i -> dk in "Diversifier derivation" section
2018-09-18 11:39:52 +01:00
Jack Grigg
1f7b5120f1
Clarify that dk is not part of the standard Sapling derivation
2018-09-18 11:38:54 +01:00
Jack Grigg
a414e4e7d3
Pull in definition of hardened notation
2018-09-18 11:37:55 +01:00
Jack Grigg
55e3cd177e
Clarify wording about default payment addresses
2018-09-18 11:25:12 +01:00
Daira Hopwood
88e255b63f
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
3ecbe6b903
The rest for beta-30 (sorry, I have a flight to catch).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
b909f2a482
Add dates to Change History.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
a1f90a56cf
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
bfc9ba5b21
Add security argument about DiversifyHash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
5fd898adea
Makefile fixes and improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
5361fc591e
Cosmetics (pagination in Appendix A).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
2cf4dfacef
Correct the description of the N-ary AND optimization (not used in Sapling):
...
a run of N-1 one bits in c yields an N-ary AND.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
Daira Hopwood
2eec56d936
Add specification for seed fingerprints.
2018-09-01 18:39:41 +01:00
Daira Hopwood
08b8427e91
Don't use 'X' to abbreviate 'extended', since it is ambiguous with 'expanded'.
2018-09-01 18:39:08 +01:00
Daira Hopwood
2aee30ca10
Use the same notation for r_J as the spec.
2018-09-01 18:36:39 +01:00
bitcartel
37da8b64e4
Merge pull request #171 from str4d/zip-243-updates
...
ZIP 243 updates
2018-08-28 23:04:04 -07:00
Jack Grigg
b4abd7fb9b
Fix bugs in ZIP 243 reference implementation
...
Closes #170 .
2018-08-23 15:34:00 +01:00
Jack Grigg
111d0a5cd7
ZIP 243 test vectors
2018-08-23 15:32:38 +01:00
Daira Hopwood
58a12371d1
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:42:35 +01:00
Daira Hopwood
3049a53843
Remove a resolved TODO.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:40:35 +01:00
Daira Hopwood
4d1cb63baf
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:38:15 +01:00