ea59cda07f
Fix a type error in the output of PRF^nfSapling; a Sapling nullifier is a sequence of 32 bytes, not a bit sequence.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-30 21:01:51 +01:00
b3da7a14ee
Remove a silly comment from the LaTeX source.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-30 21:01:51 +01:00
87a0670225
protocol/Makefile: ensure that we don't release from a branch other than master or a dirty working tree.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-30 21:01:50 +01:00
639226dd50
Regenerate PDFs.
2020-08-19 22:03:26 +01:00
b2a7e1deb0
Fix a type error in the output of PRF^nfSapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-17 21:33:05 +01:00
850e7ea019
Correct an off-by-one in an expression used in the definition of c for windowed Pedersen commitments
...
(this does not change the value of c).
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-17 21:32:15 +01:00
b83f2b9542
Regenerate PDFs.
2020-08-11 14:44:38 +01:00
e1cac0c48a
Make the Canopy specification the default.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:56:46 +01:00
19ba684f2c
Minor wording improvement.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:56:19 +01:00
55c51715b5
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:56:08 +01:00
7032c07fb8
Make Halving(height) return 0 (rather than -1) for height < SlowStartShift.
...
This has no effect on consensus since the Halving function is not used in that case,
but it makes the definition match the intuitive meaning of the function.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:55:38 +01:00
d117273977
Refine the domain of HeightForHalving from N to N^+.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:54:06 +01:00
9dbac78f29
Rename some section titles under 'Consensus Changes from Bitcoin' to use 'Encoding and Consensus'.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:52:58 +01:00
6fbe17da59
Updates to reflect ZIP 211: add a consensus rule on v^pub_old, and a rule about node and wallet support for sending to Sprout addresses.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:49:36 +01:00
1d71f6cb31
Rename the type of Sapling transmission keys from KA^Sapling.PublicPrimeOrder to KA^Sapling.PublicPrimeSubgroup.
...
This type is defined as J^(r), which reflects the implementation in zcashd (subject to the point below);
it was never enforced that a transmission key (pk_d) cannot be the zero point.
Add a non-normative note saying that zcashd does not fully conform to the requirement to treat
transmission keys not in KA^Sapling.PublicPrimeSubgroup as invalid when importing payment addresses.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 13:43:00 +01:00
e1037ff046
Wording improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 01:57:49 +01:00
d11304c7d1
Add indexing for "halving".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 01:54:48 +01:00
a651ad7fe7
Modify funding stream tables and notes to reflect changes in ZIP 214.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 01:52:06 +01:00
fd2416d9ea
Set CanopyActivationHeight for Testnet.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-11 01:48:59 +01:00
fb64b2e430
Regenerate PDFs.
2020-08-03 12:19:11 +01:00
17def33bf8
Use abstBytes_{Ed25519} and reprBytes_{Ed25519} for conversions in Ed25519 batch signature validation, and
...
fix a missing requirement that S_j < \ell for all signatures.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-03 12:14:34 +01:00
ff3c7c2bce
Move the footnote about (x, y) notation for Ed25519 to where this notation is first used.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-03 12:11:08 +01:00
13b6f0e120
Delete a potentially misleading Sprout-specific comment.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-03 12:10:20 +01:00
31b844c37c
Give a definition for SHA-512. Also some refactoring of hash macros.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-03 12:09:33 +01:00
6a4b1f5f6c
Add a reference to [BCCGLRT2014].
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-08-03 12:05:33 +01:00
1e6b2f8815
Regenerate PDFs.
2020-07-13 18:54:03 +01:00
b2f033f84d
Add spec changes for ZIPs 207 and 214.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-13 18:45:16 +01:00
bc809dae5d
Add note about full viewing key decryption of mempool transactions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-13 18:45:16 +01:00
0248a44a05
Change instances of "the production network" to "Mainnet", and "the test network" to "Testnet".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-13 18:45:16 +01:00
baad229598
Update stale references to Bitcoin documentation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-13 18:45:16 +01:00
5d2a48ce9d
Regenerate PDFs.
2020-07-07 00:25:02 +01:00
a67b74aede
Corrections to a note in section 'Ed25519'.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-07 00:21:14 +01:00
9473b9d4af
Regenerate PDFs.
2020-07-06 23:10:15 +01:00
0bfbbd54e2
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
4d148920ae
Add a missing cross reference for Jubjub.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
5e8ae9bb89
Precisely specify the encoding and decoding of Ed25519 points.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
3e3bf8a79b
Add 'Mainnet and Testnet' section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
e87177f97f
Add end comments for conditional blocks in history entries.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
3f41a13087
Corrections to the specification of \abstJ and the security argument for GroupHash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
32a55b0939
Add Jane Lusby and Teor to acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
5504c17ab0
Make duplicate labels work as intended.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-06 22:58:29 +01:00
9acf1b6667
Makefiles: add 'release' targets that perform a protocol spec release.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-05 17:27:20 +01:00
b398183fb0
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 04:02:54 +01:00
9321a0d9fc
Arguments to PRF^expand don't need to be specified as hex.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:59:17 +01:00
553be0f9eb
In RedDSA verification, clarify that \underline{R} used as part of the input to H^\ast must be exactly as encoded in the signature.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:59:17 +01:00
cbf4cb52f1
Adjust the order of operations in Sapling decryption to more closely match the implementation, and improve the notes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:59:17 +01:00
47a2c78990
Correct a bug: esk is only to be checked against ToScalar(PRF^expand_rseed([4])) when the lead byte != 0x01.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:28:36 +01:00
5689d59d32
Specify that shielded outputs of coinbase transactions MUST use v2 note plaintexts after Canopy activation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:28:36 +01:00
9b55332fc2
Add Ying Tong Lai and Kris Nuttycombe as Zcash protocol designers.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:18:52 +01:00
b915222d96
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:18:16 +01:00
154da511c6
Specify \abstJ to be as implemented, and adjust the security argument for \GroupJHash.
...
Also modify \exclusivefun to take an excluded set rather than a single element.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:17:49 +01:00
a7f7befe24
Add \optsqrt macro for "arbitrary square root".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-04 03:12:00 +01:00
e4315ad6a7
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-07-01 19:22:38 +01:00
03932d2335
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 21:24:41 +01:00
a333649a4e
Cosmetic change to the 2020.1.6 history entry.
2020-06-26 20:57:39 +01:00
3ce9bd9823
Replace the block interval 32256 with the constant ZIP212GracePeriod.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 20:57:39 +01:00
66acf80d18
Other cosmetic changes to the batch validation equations.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 20:57:39 +01:00
45c2b616e2
Fix sign errors in the fixed-base terms of the batch validation equations in Appendices B.1 and B.3.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 20:57:39 +01:00
3e98e63a6c
For Sprout, add an explicit lead byte field to note plaintexts.
...
For Sapling, define note plaintext lead bytes as just bytes (so that decoding always succeeds and error handling is more explicit).
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 20:47:32 +01:00
a3e4403f50
Delete some 'new' superscripts that only added notational clutter.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-26 18:58:17 +01:00
3567634837
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:32:25 +01:00
af41efa40c
Protocol spec: ZIP 212 changes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:28:27 +01:00
eb222b4fe0
Remove some unused macros.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
8ccd4e656b
Add an appendix on Ed25519 batch validation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
6e781c5905
Ed25519 updates. This corrects an error in the specification of valid public keys
...
(they are not checked against ExcludedPointEncodings), and includes changes for Canopy.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
ec5eda1d9c
Better positive square root symbol.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
43e4e71989
Corrections to ZIP references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
4f063850d5
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
1a24d6232c
Consistently use "signing key" and "validating key" for signatures.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-17 23:01:13 +01:00
f1a4631b9f
protocol/Makefile: remove dependency on awk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-15 14:04:24 +01:00
564d7f630e
Protocol spec: regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-02 18:35:15 +01:00
b9fb26f5d5
Protocol spec: fix undefined references for sprout.pdf.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-02 18:35:13 +01:00
e61e2460a0
Protocol spec: improve index; cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-02 18:35:13 +01:00
9bac0682c3
Protocol spec: NU4 -> Canopy; ZIPs 211 and 212 are now published.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-02 18:35:13 +01:00
d53ab5fcbc
Protocol spec: reference ZIP 173 instead of BIP 173.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-06-02 18:35:13 +01:00
e4d9d2cace
Regenerate PDFs. Note that nufour.pdf is now canopy.pdf.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-27 17:28:06 +01:00
66ba1aad3e
Network Upgrade 4 is now called Canopy.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-27 17:24:29 +01:00
092e6092ef
Remove the claim that Discrete Logarithm Independence is stronger than collision resistance of GroupHash.
...
(That's not clearly true, and it's irrelevant.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-27 17:20:27 +01:00
8d19a94716
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-27 17:18:41 +01:00
c8e08b0e96
Improve description of key structures taking into account ZIP 32. fixes #187
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-27 15:53:09 +01:00
456c899627
Protocol spec: improve LaTeX portability.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-05-12 17:58:42 +01:00
95240be273
protocol/README.rst updates.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-27 15:57:30 +01:00
f0ba5495d5
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-22 01:35:48 +01:00
ca802490a5
Correct a wording error transposing transparent inputs and transparent outputs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-22 01:32:26 +01:00
df126fb35b
Merge pull request #332 from daira/zip-0251
...
[ZIPs 207, 214, 251] Consensus ZIPs for Zcash Development Fund
2020-04-21 23:25:23 +01:00
604532cca1
Makefile: add dot to filename of .Makefile.uptodate
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-14 13:06:08 +01:00
5fa56e83bf
Protocol spec: add references for the NU4 upgrade.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-02 14:49:39 +01:00
edc43904c9
Protocol spec: clarify note about hashFinalSaplingRoot/hashLightClientRoot.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-04-02 14:49:39 +01:00
a8adb58654
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:32:29 +00:00
7fd9cc9f73
Protocol spec: add page break before appendices.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:28:41 +00:00
4b08221dd2
Protocol spec: wording clarification about motivations for Equihash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:30 +00:00
32cb319cc7
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:30 +00:00
a593018417
Protocol spec: fix the Ed25519 specification mess.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:30 +00:00
161c9d05f8
Protocol spec: \hexints and \hexarray macros.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:30 +00:00
9d7f700c35
Protocol spec: LaTeX cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:29 +00:00
2fefae9e47
Protocol spec: RFC references to www.rfc-editor.org, not tools.ietf.org.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:29 +00:00
32a0709ffc
Protocol spec: clarify that the transaction and header encodings should be read in the context of consensus rules in those sections.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:29 +00:00
0dc531d04c
Protocol spec: add Heartwood consensus rules.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:10:29 +00:00
731ddfd9f6
Protocol spec: colour-code transaction fields that were added in Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:06:52 +00:00
892bdfde1b
Protocol spec: colour-code "pre-X" consensus rule markers according to X (since that is when the rule changed).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:06:52 +00:00
ef78d9d94c
Protocol spec: make Heartwood colour a darker orange.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:06:52 +00:00
69562802cf
Protocol spec: add macro and Makefile support for NU4.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:06:52 +00:00
70cc1347f6
protocol/Makefile: make the Heartwood spec the default.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 16:06:52 +00:00
afae0efdb8
protocol/Makefile: silence noise about index entries.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 15:41:18 +00:00
37277c3ef7
protocol/Makefile: remove unneeded files for `make clean` that were only generated by pvc targets.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 15:41:18 +00:00
19bfc96a0c
protocol/Makefile: remove pvc* targets.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 15:41:18 +00:00
e87feda358
Protocol spec: add \Makefile macro.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-20 15:11:00 +00:00
ef987f67b2
Ensure that changing a Makefile rebuilds everything on the next run.
...
Also change the default target for protocol/Makefile to not build unconditionally.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-03-10 16:43:19 +00:00
2e5aad23a1
Regenerate PDFs for protocol spec.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-13 14:18:01 +00:00
2e26bb072d
Resolve conflicts in the specification of memo fields by deferring to ZIP 302.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-13 14:13:10 +00:00
7af527675b
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-07 10:56:58 +00:00
849d9435ae
Use the term monomorphism for an injective homomorphism, in the context of a "signature scheme with key monomorphism".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-06 23:03:58 +00:00
0d582758dd
Specify a retrospective soft fork implemented in zcashd v2.1.1-1 that limits the nTime field
...
of a block relative to its median-time-past.
Correct the definition of median-time-past for the first PoWMedianBlockSpan blocks in a chain.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-06 22:40:00 +00:00
ed6baf0fef
Change History entry.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-06 22:38:15 +00:00
0a3ef33991
Update incremental Merkle tree diagram.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-02 16:46:34 +00:00
62251dc54f
Change 'Payment address' to 'Shielded payment address' in key components diagrams.
...
Also remove obsolete key_components.{odg,pdf} files.
Co-Authored-By: Za Wilcox <zancas@protonmail.com>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-02 16:45:47 +00:00
20d506168b
Add Acknowledgements to Henry de Valance, Deirdre Connolly, Chelsea Komlo, and Trail of Bits.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-02 15:10:19 +00:00
8a6dc9c9fe
Wording tweak: replace "it" with "the note".
...
I was able to read this "it" as a reference to "the transaction".
closes #174
Author: Za Wilgustus <zancas@protonmail.com>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2020-02-02 15:10:03 +00:00
f1230509d8
Regenerate PDFs (and add heartwood.pdf).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:21 +00:00
b2c58d414c
Blossom clarifications.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:20 +00:00
54624a8a6f
Specify the height at which Blossom activated.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:20 +00:00
de0d60efff
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:20 +00:00
149dfcdb53
Add Makefile changes and macros for Heartwood spec.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:20 +00:00
624aa9eaa1
Improve formatting of appendix cross-references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-12-27 11:57:20 +00:00
62e61fd1ac
This relabeling brings the figures into closer agreement with the surrounding text.
2019-11-01 13:47:45 -06:00
89de83447a
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 01:34:27 +01:00
59aabd6fb5
Fix a typo in the generator for S_1 found by magrady.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 01:32:02 +01:00
a5eef5d9fc
Clarify the type of v^new when sending a Sapling note. fixes #262
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 01:17:48 +01:00
746bcca4b3
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 00:53:05 +01:00
a4c521a96c
Explain the discrepancy in the number of constraints for BLAKE2s found by QED-it.
...
Co-authored-by: Taylor Hornby <taylor@defuse.ca>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 00:50:12 +01:00
4326655e59
Merge branch 'can' of github.com:nvesely/zips into spec-updates
2019-09-24 00:36:58 +01:00
07417709da
Set date for change entry.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 00:31:52 +01:00
080cfb00bf
Fix an error in the expression for Δ in Pedersen hashing, and add acknowledgement to Kobi Gurkan.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 00:30:41 +01:00
3b111df058
fix a small typo in 4.8 Merkle path validity
...
Similarly, let MerkleCRH be MerkleCRH^{Sprout} for Sprout, or **MerkleDepth^{Sapling}** for Sapling.
becomes
Similarly, let MerkleCRH be MerkleCRH^{Sprout} for Sprout, or **MerkleCRH^{Sapling}** for Sapling.
Co-authored-by: Weikeng Chen <w.k@berkeley.edu>
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-24 00:28:12 +01:00
d69d5e1a0c
Protocol spec Makefile: 'all' is now the default target.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-03 20:51:01 +01:00
8c6eb6c741
Protocol spec Makefile improvements to suppress unneeded output.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-03 20:51:01 +01:00
e0ddb5ed54
Remove ZIP 207 as a reference.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-03 20:51:01 +01:00
9dfa6a981b
Fix a missing reference warning for the Sprout spec.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-03 20:51:01 +01:00
81767ac18f
Update references to ZIPs and to the Electric Coin Company blog.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-09-03 20:51:01 +01:00
485942ecdf
Regenerate PDFs. Also remove protocol.ver and adjust .gitignore .
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 20:05:43 +01:00
b7e6c187d4
Replace dummy Blossom activation height with the testnet height, and a reference to ZIP 206.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 20:02:00 +01:00
a7ea92955a
Regenerate PDFs, and delete blossom.pdf since Blossom is now included in protocol.pdf.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 15:29:52 +01:00
0c060a7a4e
Add Change History date.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 15:25:48 +01:00
6a92b3459e
Make the Blossom spec the default.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 15:25:37 +01:00
c62ebaa504
Note that zcashd uses ZIP 32 extended spending keys instead of sk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 15:24:57 +01:00
ae16d11150
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-23 15:14:48 +01:00
f21cd8eb1b
Generalize the definition of c for the Pedersen hash so that people can apply it to other curves (if they're careful!)
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-22 19:16:27 +01:00
1c7a9abee6
Correct the packing of nf^old into input elements in the Sapling Spend circuit. fixes #264
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-22 18:20:08 +01:00
1cea0d7786
Remove unneeded \textbnx macro.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-22 18:17:20 +01:00
8253c352b2
Add epigraph from Hunting of the Snark.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-22 18:16:33 +01:00
8e21be9a73
Suppress insignificant "Overfull vbox" warnings.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-08 16:38:48 +01:00
1147fe4eff
Make the label boxes link to the correct URL.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-08 16:37:46 +01:00
588bc39a77
Protocol spec: note the change to the minimum-difficulty threshold time on the test network for Blossom.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
ccac68b60f
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
7ea6510a05
Protocol spec: index improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
fbacfdc358
Protocol spec: remove HTML Makefile targets.
...
The original intent was to allow external linking into the spec, but that never worked for
HTML, and is now possible with PDF. Also, the HTML output was very large, and typographically
unsatisfactory.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
7985249119
Protocol spec: remove "optimized" Makefile targets (which actually produced a larger PDF, with TeXLive 2019).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
cad4baf2e1
Protocol spec: silence overfull/underfull hbox warnings from the theorem list.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
6dc1d7fff0
Protocol spec: silence a spurious warning from imakeidx.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-08-07 11:18:57 +01:00
fa484ecbeb
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 15:07:29 +01:00
8d14678190
Protocol spec: set date of Change History entry. Also fix a typo.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 15:04:31 +01:00
7e8ff18f82
Protocol spec: more vertical spacing fixes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 14:58:28 +01:00
70e920e1c8
Protocol spec: minor wording changes, added cross-references, and better "changed" marking.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 14:14:01 +01:00
b684ce88e2
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 13:48:42 +01:00
9ac2beeed8
Protocol spec: add some index macros.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-23 13:48:42 +01:00
8e52e03761
Protocol spec: vertical spacing cosmetics.
...
(The new macro definitions for notes, consensus rules, etc. generally require fewer
and/or smaller spacing adjustments.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-22 22:34:46 +01:00
4379eaf89c
Add support for showing labels, by clicking on any title.
...
This will not work in all PDF readers, but it works in enough readers to be useful.
Also add a list of theorems and lemmata.
This required switching to the ntheorem package rather than amsthm.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-22 22:19:23 +01:00
8579893230
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-11 17:57:39 +01:00
4eed11f925
Changes needed to support TeXLive 2019.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-11 17:57:22 +01:00
234e0faf0b
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-09 00:06:35 +01:00
0ab4949653
Protocol spec: set date of Change History entry.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:59:16 +01:00
8570f6f5a6
Protocol spec: use microtype package.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:58:17 +01:00
7656d39204
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:57:50 +01:00
76bfab70a1
Protocol spec: correct an omission in the Change History.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:56:55 +01:00
fe92918c87
Protocol spec: add labels to all sections (for external referencing).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:56:19 +01:00
77ebb8614a
Protocol spec: improvements to indexing.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:53:39 +01:00
6e2b8f0ebf
Protocol spec: Initial index support.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:42:16 +01:00
a5e5f3e307
Protocol spec: Makefile fixes for nolatexmk targets.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:14:28 +01:00
8adfcb5ce0
Protocol spec: Experimental LuaLaTeX and XeLaTeX support. refs #249
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 22:12:54 +01:00
fca48cf94f
Protocol spec: README corrections.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-08 21:44:00 +01:00
3e027d2126
Fix typos in comments about the (no longer used) newtxmath package.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-07-05 13:46:26 +01:00
7b7eb100b4
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-19 00:00:41 +01:00
ecc92df195
Correct a misstatement in the security argument for balance / binding signatures.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 23:53:35 +01:00
8fddbe438c
Protocol spec: specify which changes in this version are for Sapling, and LaTeX comment nits.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 23:52:43 +01:00
847a002eff
Clarify that Theorem 5.4.2 depends on the parameters of the Jubjub curve.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 23:52:43 +01:00
f4f4682d57
Give a definition for complete twisted Edwards elliptic curves.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 23:52:43 +01:00
2379ba88d7
Protocol spec: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 23:52:43 +01:00
2766855113
Protocol spec: silence useless warnings on first latex run.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 22:34:04 +01:00
6e3ff4364e
Protocol spec: resolve bibliography warnings.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 22:33:10 +01:00
a1cb36a19a
Protocol spec: fix optimization and links.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 22:32:14 +01:00
af95317ce7
Protocol spec: fix incompatibility with recent TeXLive.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-06-18 22:29:50 +01:00
d39ed004f6
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-20 11:12:00 +01:00
7152d677c8
Use IsBlossomActivated in the definition of FounderAddressAdjustedHeight for consistency.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-20 11:09:19 +01:00
c699bd4ba1
Minor fix to the list of integer constants in the Notation section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-20 11:08:53 +01:00
40e609444d
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 11:21:21 +01:00
6e32abdfaa
Adjust revision date and version. (No longer beta! Wooo! :3 )
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 11:02:42 +01:00
07334dad30
Correction to FounderAddressAdjustedHeight.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:59:21 +01:00
1a00b68e7e
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:59:21 +01:00
ea346eaca8
Add type declarations for height in difficulty adjustment functions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:59:21 +01:00
65d43bfac4
Correct an error pointed out in NCC's Blossom audit affecting the first 10 blocks of the chain.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:59:07 +01:00
1258385ab5
Add reference to [SVPBABW2012] for the idea of using multiplicative inverses for nonzero constraints.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:57:45 +01:00
feae1e7e12
Fix a spec error in Founders' Reward calculation during slow start period.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:57:31 +01:00
5e5413f536
Adjust Founders' Reward payment.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-05-01 10:43:05 +01:00
b934946949
Revert "ZIP 207 changes"
...
This reverts commit d6ed011d5e
2019-05-01 10:43:05 +01:00
7f17eaaab1
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:28:39 +01:00
395af7f309
Cosmetics and Change History date.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:24:36 +01:00
18184803f4
The block time is not 2.5 minutes after Blossom activation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:24:16 +01:00
6d714ee508
Add acknowledgement to Mary Maller for the observation that
...
diversified address unlinkability can be proven in the same
way as key privacy for ElGamal.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:23:54 +01:00
81b9eaf515
Zerocoin Electric Coin Company -> Electric Coin Company.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:22:46 +01:00
4faaf8d305
Use "ctEdwards" to refer to complete twisted Edwards curves.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:21:22 +01:00
b4e384cb22
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:17:05 +01:00
e47ed372d4
Add Change History entries for protocol spec README and Makefile.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:06:41 +01:00
3c0fd3f56c
Update protocol/README.rst for Blossom changes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:04:35 +01:00
03e3e19a4f
Update git commits for sam2p and pdfsizeopt.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:03:40 +01:00
cca702c505
Fix Makefile bugs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-04-18 17:03:25 +01:00
9c65d64012
Merge pull request #209 from str4d/zips-207-208
...
Update protocol spec with ZIPs 207 and 208
2019-03-08 17:59:17 +13:00
ce803ea0b4
Correct generators for BLS12-381.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-24 05:59:14 +00:00
86319cfe89
Address Daira's review comments.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-24 02:06:23 +00:00
5cf59663d9
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-24 02:05:58 +00:00
4284a49a20
Add bibliography entries for ZIPs 207 and 208.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-24 02:02:54 +00:00
fa41eae110
Fix a Makefile bug.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-24 02:02:16 +00:00
d6ed011d5e
ZIP 207 changes
2019-02-23 19:21:19 +00:00
2fc1b8cc9c
ZIP 208 changes
...
Includes additional changes to constants in sections 7.7 and 7.8 which
are needed to compile, and not part of ZIP 208, but will be altered by
ZIP 207.
2019-02-23 19:21:17 +00:00
1fa1a91f32
Regenerate PDFs (including the new blossom.pdf).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:54:50 +00:00
5097fc7c4e
Add macros and Makefile support for building the Blossom specification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:49:08 +00:00
7f435cd37d
Fix a typo in appendix B.2 and clarify the costs of Groth16 batch verification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:49:08 +00:00
f3c5ed99e2
Remove the rule that miners SHOULD NOT mine blocks that chain to other blocks with version number > 4.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:49:08 +00:00
06725e94b9
Correct the rule about when a transaction is permitted to have no transparent inputs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:34:25 +00:00
95d95bc4c4
Clarify which transaction fields are added by Overwinter and Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:33:39 +00:00
8e9171d512
Clarify that Equihash is based on a *variation* of the GBP, and cite [AR2017].
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 13:17:07 +00:00
c57d51d7a0
More references and corrected description of Groth16.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-22 12:49:22 +00:00
0b626b087a
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-10 03:30:26 +00:00
ba949107ab
Correct isis agora lovecruft's name.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-10 03:20:47 +00:00
2dc3a10bfe
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 01:02:01 +00:00
64c268fdd7
Add Eirik Ogilvie-Wigley and Benjamin Winston to acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 01:00:03 +00:00
fb9faa3835
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 00:37:00 +00:00
0988966fdc
Remaining fixes and clarifications for BCTV14 vulnerability.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 00:37:00 +00:00
e17905a0a3
Specify the difficulty adjustment change on testnet.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 00:37:00 +00:00
d4a9158323
Say when Sapling activated, and reference ZIP 205.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-09 00:37:00 +00:00
d18edb4abc
Rename zk-SNARK Parameters sections according to the proving system.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-08 22:59:38 +00:00
0d8430799c
Correct [SBB2019] to [SWB2019], and note that the BCTV14 vulnerability affected Soundness.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-05 19:29:31 +00:00
36eeeba15e
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-05 16:55:42 +00:00
9a7ebd326e
Disclose BCTV14 vulnerability.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2019-02-05 16:45:09 +00:00
9515d73aac
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-14 02:05:26 +00:00
680af418cf
Fill in another constraint cost.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-14 02:02:17 +00:00
af17ba2485
Adjust the notation used for scalar multiplication in Appendix A to allow bit sequences as scalars.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-14 02:01:59 +00:00
9aba6af281
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-14 02:01:01 +00:00
538d1f1eb0
Add a description of the Sapling output circuit.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-14 01:05:39 +00:00
79b3d81e42
Complete the description of the Sapling spend circuit.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 23:15:54 +00:00
5531006f08
Fix or complete various calculations of constraint costs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 23:11:53 +00:00
7419c0a366
Describe 2-bit window lookup with conditional negation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 23:09:34 +00:00
39b498fed9
Remove a todo.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:07:18 +00:00
0835c3837e
Modify the description of fixed-base scalar multiplication to match sapling-crypto.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:06:36 +00:00
2f868aca8d
Add LEBStoIP.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-11-13 22:00:41 +00:00
43e83effb4
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:18:39 +01:00
e24f7cede5
Clarify the description of the Merkle path check in Appendix A.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:14:28 +01:00
066d424d3a
Correct the input to H⊛ used to derive the nonce r in RedDSA.Sign, from T || M to T || _vk_ || M.
...
This matches the sapling-crypto implementation; the spec was unintentionally changed in 2018.0-beta-20.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-24 16:14:28 +01:00
34c6a5c0d6
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 16:47:28 +01:00
c04c0542e8
Cosmetics (pagination in Appendix A).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 16:44:31 +01:00
bb52ce246c
Clarify notation in the proof of A.3.3.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 15:44:11 +01:00
223b8db3a7
Minor tweak to the statement of Theorem A.3.4 to make the contradiction clearer.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:22:49 +01:00
da7c6fe190
Correct the statement and proof of Theorem A.3.2.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:21:02 +01:00
25b64382e4
Clarify the notes concerning domain separation of prefixes for MerkleCRH^Sapling and NoteCommit^Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 11:00:45 +01:00
2a7002a010
Add the QED-it report to the acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:45:19 +01:00
bc48ebe898
Improved cross-referencing in Pedersen hash section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:43:48 +01:00
74c39f073d
Correct a use of \GroupJ that should have been \MontCurve.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:34:56 +01:00
691922ebd1
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
dc81e21c2b
Correct uses of LEOS2IP_l in RedDSAVerify and RedDSABatchVerify to ensure l is a multiple of 8.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
5524822ed5
Correct some uses of r_J that should have been r_S or q.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
dc41de37f3
Avoid clashing notation. Refer to the Montgomery form of Jubjub as \mathbb{M}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-10-01 10:27:34 +01:00
ace2fbe622
Add missing 'can'
2018-09-10 16:19:53 -07:00
88e255b63f
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
3ecbe6b903
The rest for beta-30 (sorry, I have a flight to catch).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
b909f2a482
Add dates to Change History.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
a1f90a56cf
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
bfc9ba5b21
Add security argument about DiversifyHash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
5fd898adea
Makefile fixes and improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
5361fc591e
Cosmetics (pagination in Appendix A).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
2cf4dfacef
Correct the description of the N-ary AND optimization (not used in Sapling):
...
a run of N-1 one bits in c yields an N-ary AND.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-09-02 09:06:22 +01:00
58a12371d1
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:42:35 +01:00
3049a53843
Remove a resolved TODO.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:40:35 +01:00
4d1cb63baf
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:38:15 +01:00
8364aff29c
Change the description of BLAKE2s to correct the constraint count and to describe batched equality checks performed by the sapling-crypto implementation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 15:07:23 +01:00
ad0479ac77
Finish the description of range checks in Appendix A.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-15 14:52:50 +01:00
bc6a430edc
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-14 10:45:52 +01:00
0351335662
Minor corrections to affine Edwards variable-base multiplication in Appendix A.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-14 10:43:05 +01:00
3b16c62958
Finish the Appendix A description of BLAKE2s.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-14 10:41:40 +01:00
5d8fe05d37
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 17:21:08 +01:00
10019825e9
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:57:38 +01:00
324d634a29
Define "represented subgroup".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:57:23 +01:00
36bcc8f3f0
Correct the Change History entry of this version for Sprout.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:57:07 +01:00
745da1e36d
Minor improvement to the type of z_j used in RedDSA batch verification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:35:58 +01:00
a902df4c5c
Correct the description of Groth16 batch verification
...
to explicitly take account of how verification depends on primary inputs.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:35:26 +01:00
f90012ce5e
Clarify order checking for proof elements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:33:03 +01:00
05d72a4b71
Add Charles Rackoff, Rafail Ostrovsky, and Amit Sahai to the acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:30:21 +01:00
998cb2ff95
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:28:59 +01:00
81598de991
Notational changes:
...
- Use a superscript (r) to mark the subgroup order, instead of a subscript.
- Use G^{(r)∗} for the set of r_G-order points in G.
(r)
- Mark the subgroup order in pairing groups, e.g. use G_1^{(r)} instead of G_1.
- Make the bit-representation indicator (five-pointed star) an affix instead of a superscript.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-12 16:24:15 +01:00
b605fe1061
Cosmetics and minor wording improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-11 21:09:53 +01:00
b2f42d987c
Macro simplifications.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-11 21:05:19 +01:00
0a1a01513f
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 17:31:42 +01:00
ade889eef7
Add an appendix on Groth16 batch verification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 17:30:04 +01:00
2e74200366
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 17:29:44 +01:00
ef1cee8dcf
Regenerate PDFs. Also fix a Makefile problem: protocol.pdf can't be a symlink
...
because GitHub doesn't follow symlinks, so links to protocol.pdf would break.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 16:05:40 +01:00
34cf757891
Add the hashes of parameter files for Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 10:06:52 +01:00
af90f0c4af
Add cross references for RedDSA batch verification appendix.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 10:06:26 +01:00
7450495335
Cosmetics: fix a warning about Unicode in headings.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 10:03:46 +01:00
996045013e
Makefile: name the Sprout version as sprout.pdf and link protocol.pdf to the Sapling verison.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 10:02:24 +01:00
d5c79e2592
Put the change history back in the correct order (beta-23 and -24 were reversed).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-08-05 08:54:03 +01:00
ff397a6aff
Add a missing consensus rule for v4 transactions: if there are no Sapling spends or outputs, valueBalance MUST be 0.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-31 03:47:26 +01:00
854f6eddcc
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-27 22:05:29 +01:00
2f0c68b616
Add an appendix on RedDSA batch verification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-27 22:05:29 +01:00
90692541aa
Update RedDSA verification to use cofactor multiplication.
...
This is necessary in order for the output of batch verification to match unbatched verification in all cases.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-27 22:05:29 +01:00
ea61325c25
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
4d8031f659
Make the Sprout version of the spec say [Sprout] in the version.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
e1ee4e615e
Updates to take account that Overwinter has activated.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
89c05c0303
The recommendation for transactions without JoinSplit descriptions to be v1
...
applies only before Overwinter, not before Sapling.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
71617341c9
Wording improvements for the effect of upgrades on sighash.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
c2b8ba2052
Rename nuzero macro names to overwinter.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
45f9005714
Add TODO to check whether the circuit sometimes omits curve checks.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
f11a24afc3
Delete or clarify unused optimizations in Appendix A.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
6e4a9455df
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
128a4fc862
Cross-reference PRF^ock for Sapling encryption.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
53e6f29d18
Clarify the selection of ovk in sending Sapling notes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
699a78e749
Clarify the use of cv^new and cm^new in sending Sapling notes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
b0b1f60cc2
Reword the conclusion from theorem A.3.4 for precision.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
0200f63ace
Complete the proof of theorem A.3.4.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
dcd929291a
Add note about the nonsmall-order check on rk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
db3ea270c5
The \difference macro was not used consistently; use \setminus instead.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-07-18 11:20:32 +01:00
45b7cc8047
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:57:30 +01:00
92eb6c5751
Correct the conformance requirement for fOverwintered.
...
This addresses a Least Authority issue.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
f3ba658772
Note which conformance requirements of BIP 173 (Bech32) apply.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
da5909bff5
Improve acknowledgements section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
911bc3a9ed
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
52428befa7
Correct an error in RedDSA.Verify: vk is given, not computed from sk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
432e39ee4c
Correct the argument that the sum of value commitments is in range.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
001474760a
Corrections related to outgoing viewing keys and ciphertexts.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
398cc64619
Add section on signature hashing, and a note on malleability of proofs.
...
Also describe the changes in sighash computation relative to Bitcoin.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
be632b4a21
P2PKH addresses use a hash of a compressed, not an uncompressed ECDSA key representation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
d1a6e2809d
Say that Sprout interstitial treestates form a tree.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:49 +01:00
e083d27e82
Add a consensus rule that valueBalance is in the range {-MAX_MONEY..MAX_MONEY}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:48 +01:00
4525a1fffd
Refine the caveat about the claimed security of shielded transactions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:48 +01:00
7aa8765dc0
Enforce stronger constraints on the types of pk_d, ak, nk, cv, epk, and rk, and ensure esk is not zero when encrypting.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:49:43 +01:00
0617ca2aae
Instantiate PRF^ock, and correct some types. Also enforce that esk is canonical.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:48:25 +01:00
eb6a8c7d62
Type changes for cmu in an Output description.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:14:27 +01:00
57f16ea6da
Refactoring/type changes for commitment randomness and outputs.
...
This also affects the type of Sapling note plaintexts.
Includes potential consensus changes (which *should* match the implementation)!
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:14:16 +01:00
cb730f241e
Wording, cross-referencing, and minor type improvements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:11:46 +01:00
8dd6074164
More cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:11:46 +01:00
1f02902d6e
Clarify that the square root notation refers to the positive square root.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:11:46 +01:00
8c80decd3b
Group Hash and DiversifyHash refactoring. Also fix an error in the definition of set difference.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:11:30 +01:00
f480f351b7
Generalize PRF^expand to accept an arbitrary-length input.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
0334dde7a2
Resolve a potential ambiguity in use of the ?: notation by adding parentheses.
...
This addresses a Least Authority comment.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
a35f4275a1
Clarify the wording of the abstract.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
da298474ea
Add Jubjub bird image to the title page and cite Carroll references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
4a144dec07
Change the background for the Overwinter and Sapling spec to white, indicating that it is no longer a draft.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
c9f6d7ae07
Change the notation for a multiplication constraint to avoid potential confusion with cartesian product.
...
This addresses a Least Authority comment.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
51c84b7556
Cosmetics, mainly spacing.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
6199179685
Bibliography cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
8abebf4296
Type corrections and precision improvements. Also add more cross-references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
4035e4c5e0
Correct a reference.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
11163742b7
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
ce35640ec0
Remove the consensus rule "If nJoinSplit > 0, the transaction MUST NOT use SIGHASH types other than SIGHASH_ALL.",
...
which was never implemented.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
32b696b875
Makefile refinements (have LaTeX halt immediately on error).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-06-22 22:08:45 +01:00
948c910987
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:30:47 +01:00
ae491d4a4b
cm in an Output description encodes only the u-coordinate of the note commitment, not the full curve point.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:28:08 +01:00
48d9fcbc79
Change the notation H^\star to H^\circledast in the description of RedDSA, to avoid confusion with the ^\star convention for representations of group elements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:20 +01:00
1c61ec5cf9
Correct a reference to RedDSA.RandomizePrivate that was intended to be RedDSA.RandomizePublic.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:20 +01:00
30f4dfc545
Correct an error in the computation of generators for Pedersen hashes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:20 +01:00
62f0c6a49b
Correct the statement about FindGroupHash^J never returning \bot.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:20 +01:00
b59e8d45b5
Minor improvements to cross-references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:20 +01:00
d236700a8d
Ensure \AuthSignBase (\mathcal{G}) is defined where used.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:26:13 +01:00
df02fcf9ac
Make the public key prefix part of the input to the hash function in RedDSA, not part of the message.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:14:07 +01:00
0517e2dc3a
Change terminology describing constraint systems.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:14:07 +01:00
05094f8641
Correct a type error in RedDSA.Sign.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:14:07 +01:00
3c0198fb99
Correct a type error in the definition of GroupHash^J.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:14:06 +01:00
5dce44d0a0
Fix the description of the Sapling balancing value.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-22 23:14:06 +01:00
7b6df9f623
Correct the order of arguments to RedDSA.Randomize{Private,Public}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-18 21:21:41 +01:00
f4facef8c8
Add Michael Dixon and Andrew Poelstra to acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-05-18 21:18:40 +01:00
7e0b51011a
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 13:30:20 +01:00
275aee328b
Minor clarifications.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 13:28:34 +01:00
b6bf914478
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:54:04 +01:00
76e1213c8b
Remove redundant crossref.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:52:08 +01:00
0481da1724
Minor corrections.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:14 +01:00
fdfd9a6760
Cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
a7eda35419
Clarify the security argument for balance in \Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
06b0a6e79f
Correct a subtle problem with the type of the value input to ValueCommit.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
b11064a39c
Fix the loss of tightness in the use of PRF^nfSapling by specifying the keyspace more precisely.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
62429657d0
Be more careful about which notes are normative.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
1ad35c6a59
Correct type ambiguities for rho in Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 03:43:13 +01:00
df2f80f13b
Specify the representation of i in group G_2 of BLS-381.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-23 01:42:16 +01:00
8f445e4309
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 12:00:33 +01:00
b5effeea70
Cosmetics (pagination).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 11:57:38 +01:00
f41b95b72f
Fix a bug in the definition of DefaultDiversifier.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 11:57:00 +01:00
2e2200a0bc
Add \maybe macro.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 11:56:12 +01:00
97b3a9be51
Regenerate PDFs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 08:21:46 +01:00
8ca0f473f5
Type clarification.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 08:19:56 +01:00
80ec1b52ce
Clarify the authority obtained by a delegated prover.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 08:19:35 +01:00
ab4e2c2f7a
[BLS2002] shouldn't be cited only for the Change History in Sprout version of the spec.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 07:37:53 +01:00
bf03ab51fc
Specify KA^Sapling.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 07:29:14 +01:00
7481181d43
Complete the algorithm for generating dummy Sapling input notes.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 07:29:14 +01:00
8c0e7b85f4
8 -> h_J for Jubjub cofactor.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2018-04-21 07:29:07 +01:00
Daira Hopwood
Daira Hopwood
Za Wilcox
Taylor Hornby
Weikeng Chen
str4d
Jack Grigg
Noah Vesely