sapling-crypto issues

These are used outside the circuit a lot, but it seems they would be very handy inside the circuit. Then, you could have a "compress" method defined only for prime...

ebfull

code improvement

to librustzcash repo

Test dummy inputs

`Spend` circuit can have "dummy" inputs that bypass the authentication path check, let's test that these constraints work correctly.

ebfull

tests wanted

to librustzcash repo

Move hstar personalization to constants

ebfull

code improvement

to librustzcash repo

Improve performance of Redjubjub batch_verify

Right now it's just naive, but we can use multiexp.

ebfull

code optimization

to librustzcash repo

Optimize variable-base scalar multiplication in the circuit

Consider a 251-bit multiplication [x] P. Edwards double-and-add requires 3252 constraints: 2 to select P or the zero point initially; 250 doublings at 5 constraints each; 250 conditional additions at...

daira

to librustzcash repo

sapling-crypto
sapling-crypto copied to clipboard

Metadata

Test vectors for group hash

Test vectors for pedersen_hash

Add tests for inputization

Add tests for Num

Add tests for EdwardsPoint::assert_not_small_order

Use `Unknown`/`PrimeOrder` marker types inside circuit

Test dummy inputs

Move hstar personalization to constants

Improve performance of Redjubjub batch_verify

Optimize variable-base scalar multiplication in the circuit

← Metadata

Owner

Metadata

sapling-crypto sapling-crypto copied to clipboard

Metadata

← Metadata

Owner

Metadata

sapling-crypto
sapling-crypto copied to clipboard