Daira Hopwood
864e1eaa8d
ZIP 252: add references to ZIP 239.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-29 18:25:13 +01:00
Daira Hopwood
50e4914b01
ZIP 239: message type -> inv type.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-29 18:01:01 +01:00
Daira Hopwood
a756260c05
ZIP 239: mention `getdata` in Motivation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-29 17:58:08 +01:00
Daira Hopwood
16f48e70d2
Add ZIP 239.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-29 17:50:53 +01:00
Daira Hopwood
b4386f93b8
Minor updates to ZIP titles. Also add a reference to ZIP 316 from ZIP 252.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-29 17:30:29 +01:00
Daira Hopwood
44ad348ce6
Regenerate PDFs.
2021-05-20 22:27:53 +01:00
Daira Hopwood
c3f48359e6
Clarify that v4 transactions continue to use the ZIP 243 SIGHASH algorithm after NU5 activation.
...
fixes #510
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-20 22:23:19 +01:00
Daira Hopwood
572a0d6e4f
Regenerate PDFs.
2021-05-20 22:02:23 +01:00
Daira Hopwood
0ab0bcb7cb
Set Change History entry date.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-20 21:57:49 +01:00
Daira Hopwood
eb5a018396
Note that [JT2020] proves a tight reduction from finding a nontrivial discrete log relation to DLP.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-20 21:57:03 +01:00
Daira Hopwood
b6e50f8252
Clarify the distinction between Orchard incoming viewing keys and KA^Orchard private keys.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-20 21:47:34 +01:00
Daira Hopwood
e7ec658413
Cosmetics and indexing.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-20 21:45:59 +01:00
Daira Hopwood
c90528fa5c
Change the notation \mathcal{I}^D_i for a Sapling Pedersen generator to \mathcal{I}(D, i).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 21:11:09 +01:00
Daira Hopwood
9f948307cf
Change the type of Orchard Merkle hashes to \mathbb{P}_x, with a corresponding change to the
...
signature of MerkleCRH^Orchard. Add a note to \crossref{merklepath} clarifying that non-canonical
encodings are allowed as input to MerkleCRH^Orchard.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 21:07:10 +01:00
Daira Hopwood
67cea8589a
Add a note to \crossref{merklepath} clarifying the encoding of rt^Sapling as a primary input to
...
the Sapling spend circuit, and that non-canonical encodings are allowed as input to MerkleCRH^Sapling.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 20:39:42 +01:00
Daira Hopwood
c5589648c1
Cosmetics (vertical spacing for the non-NU5 spec).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 15:37:06 +01:00
Daira Hopwood
79d1a477db
Add Change History entry for the correction to the size of vActionsOrchard.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 15:37:06 +01:00
teor
3f3195eb5c
Fix Orchard Action byte size
...
Since the signature is now separate, the size is 64 bytes smaller.
2021-05-18 15:37:06 +01:00
Kris Nuttycombe
2b520f41f9
Merge pull request #505 from nuttycom/zip_244_empty_hashes
...
The roots of empty transaction hash subtrees are now uniformly committed to with empty hashes.
2021-05-18 08:16:46 -06:00
Kris Nuttycombe
97aa1be78e
Regenerate HTML
2021-05-18 08:16:15 -06:00
Kris Nuttycombe
9ccd44743f
Apply suggestions from code review
...
Make the specification of the cases in which empty hashes are produced more
explicit, and less dependent upon how these rules are scoped.
Co-authored-by: Daira Hopwood <daira@jacaranda.org>
2021-05-18 08:16:00 -06:00
Kris Nuttycombe
12fa6ffa8e
Remove trailing whitespace.
2021-05-18 08:05:07 -06:00
Kris Nuttycombe
8d21457112
Add a note about the signedness of `value`
2021-05-18 07:53:40 -06:00
Daira Hopwood
8e6b15e9e9
ZIP 316: minor clarification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 19:15:20 +01:00
Daira Hopwood
0cda82ce0f
ZIP 316: remove a TODO.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 15:34:52 +01:00
Daira Hopwood
6b1db880c8
ZIP 316: fix a typo in the description of the attack against a 3-round Feistel.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 15:31:25 +01:00
Daira Hopwood
f42dfd4260
ZIP 316: improve resolution and size of Feistel diagrams.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 15:26:08 +01:00
Daira Hopwood
935b3ea767
ZIP 316: define the inverse.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 10:29:11 +01:00
Daira Hopwood
615a4e0505
ZIP 316: formatting of quoted ASCII strings.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-12 10:28:34 +01:00
Kris Nuttycombe
becbec175c
Fix rendering of txin_sig_digest
2021-05-11 08:16:33 -06:00
Kris Nuttycombe
0bc4726a79
Regenerate ZIP-244 HTML.
2021-05-10 17:44:08 -06:00
Kris Nuttycombe
d023ef8220
Update zip-0244.rst
...
Co-authored-by: str4d <jack@electriccoin.co>
2021-05-10 17:42:51 -06:00
Kris Nuttycombe
622179e574
Apply suggestions from code review
...
Co-authored-by: teor <teor@riseup.net>
2021-05-10 14:14:39 -06:00
Daira Hopwood
e9430c3752
Regenerate PDFs.
2021-05-07 16:41:22 +01:00
Daira Hopwood
74c83f6d59
Set history entry date.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:35:22 +01:00
Daira Hopwood
205b2f5861
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:35:22 +01:00
Daira Hopwood
d0caaa2ee9
Clarify that transparent inputs are prohibited in coinbase transactions only if they have a non-null `prevout` field. closes #498
...
Co-authored-by: teor <teor@riseup.net>
Co-authored-by: Jack Grigg <jack@electriccoin.co>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:35:13 +01:00
teor
330254c9ca
Add ZIP-244 block commitments as a consensus rule. closes #499
...
It's currently just a note, which makes it look like the Heartwood rule might still apply.
Co-authored-by: teor <teor@riseup.net>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:34:36 +01:00
Daira Hopwood
296b8e6543
Make "Discrete Logarithm Problem" and "Decisional Diffie–Hellman Problem" indexed terms.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
1db1224657
Unlinkability of diversified addresses depends on DDH, not DLP.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
4353accc0e
Add [Canopy onward] and [NU5 onward] to a couple of notes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
e4af6e42a0
State explicitly that valueBalanceOrchard can only be negative in a coinbase transaction if
...
it has ZIP 213 shielded outputs.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
639a554a04
Change the statement of Theorem 5.4.3 to exclude ⊥ outputs from SinsemillaHashToPoint.
...
Previously the proof did not match the statement.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
d7bd67900a
Update the list of ZIPs relevant to NU5 in \crossref{networkupgrades}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
00c39b73e0
Delegate to ZIP 316 for the specification of unified payment addresses and unified viewing keys.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
38b740aad2
Caveat how the result of \cite{GG2015} applies to analysis of PRF^nfOrchard in \crossref{concreteprfs}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
4804f6040e
Add a paragraph to \crossref{truncation} covering Orchard.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
748e6f8f37
Typo.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
35c8af6e47
DJB's "High-speed cryptography" book seems completely stalled.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00
Daira Hopwood
58add67726
* Specify that diversifier indices for Orchard should be chosen uniquely, not randomly.
...
* Vanity diversifiers are not an issue for Orchard given that it does not have its own
payment address format, and given the use of "jumbling" (ZIP 316) in unified addresses.
Remove the corresponding note from \crossref{orchardkeycomponents}.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2021-05-07 16:03:16 +01:00