Daira Hopwood
83ae851aad
Show Daira as lead author and add "as intended for the Zcash release of summer 2016".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:33:39 +01:00
Daira Hopwood
7826c99919
Minor correction to what sighashes cover.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:20:19 +01:00
Daira Hopwood
015b607650
Cosmetics: fix spacing in section references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:20:19 +01:00
Daira Hopwood
9f37a0d3c8
Cosmetics: change font of ASCII strings to bold tt.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:20:19 +01:00
Daira Hopwood
389ae76bdb
Change to BLAKE2b/256, and add pubKeyHash indirection. fixes #26
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:20:19 +01:00
Daira Hopwood
76d87e6995
Revert addition of Eli's comments -- moved to eli-comments.0 branch.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-04-04 04:04:07 +01:00
eli.ben.sasson
fb15dd2396
comments through section 5
2016-03-31 11:00:04 +03:00
Daira Hopwood
62f615e459
Clarification of endianness, and that uses of BLAKE2b are unkeyed.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-31 02:21:43 +01:00
Daira Hopwood
ecba0f9e5d
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-31 02:21:02 +01:00
Daira Hopwood
d4d095b33d
Update version to 2.0-alpha-1.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 15:42:07 +01:00
Daira Hopwood
0bc03313bf
Changes to signatures.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 15:18:50 +01:00
Daira Hopwood
c19f1d1523
Change bit ordering.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 14:27:43 +01:00
Daira Hopwood
e95fee5ce7
Add lead byte to note plaintext.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 03:47:57 +01:00
Daira Hopwood
5b0c01d6d0
Clarify that we're using the IETF definition of AEAD_CHACHA20_POLY1305,
...
and that hSig is an input to the KDF.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 03:32:28 +01:00
Daira Hopwood
fb2492d7e5
Switch to Blake2b for KDF and hSig.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 03:28:01 +01:00
Daira Hopwood
674c5614f2
\serialNumber -> \nullifier and related macro changes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-30 01:36:34 +01:00
Daira Hopwood
6897bebfe6
Reserve non-UTF-8 lead bytes in memo field.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 15:08:15 +01:00
Daira Hopwood
9397a606b9
Change memos from 64 to 128 bytes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 03:21:50 +01:00
Daira Hopwood
6f0f88c9de
Change r from 192 to 256 bits.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 03:15:08 +01:00
Daira Hopwood
3dffb0d9c7
Pour/Xfer -> JoinSplit.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 02:28:50 +01:00
Daira Hopwood
263122966a
coin -> note in macro names.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 02:28:07 +01:00
Daira Hopwood
819eb1dac9
transaction -> \transaction
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 01:19:34 +01:00
Daira Hopwood
4036a5d6e4
Make t 8 bits.
...
(This is not a protocol change, it's just simpler because it avoids endianness issues.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 01:18:53 +01:00
Daira Hopwood
fedfc3c315
Fix an endianness bug.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 01:17:36 +01:00
Daira Hopwood
6f049a2c8d
Add restriction that either vpubOld or vpubNew is zero.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 01:16:06 +01:00
Daira Hopwood
c338fd141b
Pour descriptions go in transactions, and only indirectly in blocks. fixes #20
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 00:40:09 +01:00
Daira Hopwood
5bf271d993
ephemeralKey is a change from Zerocash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-29 00:31:11 +01:00
Daira Hopwood
31ce718464
Fix endianness bug in an example.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-23 13:28:17 +00:00
Daira Hopwood
8b5c20cd38
Change i to be the first argument to KDF for consistency with other functions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-22 20:40:52 +00:00
Daira Hopwood
d4e95b73f6
Change KDF to SHA-512 and add hSig input.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-22 17:41:57 +00:00
Daira Hopwood
8b9851a431
Remove a_pk from note plaintexts. This also fixes a bug where the recipient
...
would incorrectly use the decrypted a_pk to check the coin commitment, rather
than its own a_pk.
(The length of encCiphertexts was already computed assuming this change.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 23:36:54 +00:00
Daira Hopwood
5bbbb0bde6
Use standard AEAD_CHACHA20_POLY1305.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 23:32:01 +00:00
Daira Hopwood
d98c941429
Switch to little-endian encoding, consistent with Bitcoin serialization.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 23:19:38 +00:00
Daira Hopwood
350c5ae598
DecryptCoin -> DecryptNote.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:37:43 +00:00
Daira Hopwood
c55489fa2d
Fix some macro uses, and rename rn to nf.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:29:42 +00:00
Daira Hopwood
5e408580c1
Remove "map" terminology; the spent nullifiers are a set at this level of abstraction.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:26:37 +00:00
Daira Hopwood
d60fda0e3d
Rename remnant (serial number) -> nullifier.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 19:48:19 +00:00
Daira Hopwood
0b0295e29e
Fix some cases where macros were not used consistently.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 19:46:19 +00:00
Daira Hopwood
08e25a8b21
WIP - new terminology.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-18 21:09:24 +00:00
Daira Hopwood
0e6953a6eb
WIP: Define types for serialized fields.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-18 01:20:44 +00:00
Daira Hopwood
5ebe7b31e0
Specify precisely the data to be signed. This includes a design change
...
to use a single signature covering all of the transaction except
pourPubKey and pubSig.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 01:36:37 +00:00
Daira Hopwood
a5096c755a
Bibliography: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 01:34:45 +00:00
Daira Hopwood
57d94a0bf9
Specify precise encoding of ECDSA public key. Also improve description
...
of how the public key is bound to the Pour statement.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 00:06:01 +00:00
Daira Hopwood
5d3b31b15f
Cosmetics, re-render PDF.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:23:38 +00:00
Daira Hopwood
1bd4e4cfdb
Make some subparagraphs into subsections.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:23:05 +00:00
Daira Hopwood
5a78817989
Reference libsnark for encoding of proofs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:22:22 +00:00
Daira Hopwood
245c52036c
randomSeed must be chosen independently at random for each Pour description.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:21:41 +00:00
Daira Hopwood
223f7d2e1e
Be more precise about Pour transfers.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:20:46 +00:00
Daira Hopwood
87c502ffd3
Enforce canonical ECDSA signatures, and specify encodings (WIP).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:20:17 +00:00
Daira Hopwood
23e66ae090
Change 'script*' variables to 'pour*', and add references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:17:14 +00:00