zcash / sapling-crypto

Zcash "Sapling" cryptography

zcash/sapling-crypto Issues

Create specific types for batch-verifying Spend and Output proofs separately
Updated a month ago
Can't use parsed params for verification in bellman
Updated 3 months ago1
Release 0.1.1
Closed 4 months ago
Fix regression in output padding behaviour
Closed 4 months ago
Consider padding to 1 Sapling spend in non-coinbase bundles
Updated 4 months ago
Refactor `sapling_crypto::keys` API to be more like `orchard::keys`
Updated 5 months ago
zcash_proofs: Extract separate verifiers for proofs, spendAuthSigs, and bindingSig from SaplingVerificationContext
Updated 5 months ago2
raspberry arm64 error could not compile `fil-sapling-crypto`.
Closed 6 months ago3
Change ask -> ak derivation to use an explicit method rather than From
Updated 6 months ago
Optimize fixed-base scalar multiplication in the circuit
Closed 3 years ago1
Change x/y notation for EdwardsPoint coordinates to u/v notation
Closed 4 years ago2
Remove params.montgomery_2a
Closed 4 years ago1
PrimeOrder marker type should be renamed to PrimeSubgroup
Closed 4 years ago3
Implement public key prefixing in RedJubjub itself, not in its clients
Closed 5 years ago1
Relocate `uncommitted` value to JubjubEngine
Updated 5 years ago
Use batched inversion ("Montgomery's trick") to compute inverses during proving
Updated 5 years ago1
Edwards point interpretation uses unnecessary constraint
Updated 5 years ago
conditionally_reverse can be achieved in one constraint, but currently uses two
Updated 5 years ago
Remove 'Assignment' trait
Updated 5 years ago
Improve boolean witnessing tests
Updated 5 years ago
Add test for AllocatedBit::alloc_conditionally
Updated 5 years ago
Add test for AllocatedBit::get_value/lc
Updated 5 years ago
Test vectors for group hash
Updated 5 years ago
Test vectors for pedersen_hash
Updated 5 years ago1
Add tests for inputization
Updated 5 years ago
Add tests for Num
Updated 5 years ago
Add tests for EdwardsPoint::assert_not_small_order
Updated 5 years ago
Use `Unknown`/`PrimeOrder` marker types inside circuit
Updated 5 years ago2
Test dummy inputs
Updated 5 years ago
Move hstar personalization to constants
Updated 5 years ago
Improve performance of Redjubjub batch_verify
Updated 5 years ago
test_uint32_shr fails
Closed 5 years ago3
Optimize variable-base scalar multiplication in the circuit
Updated 5 years ago
Stale comments about bit order in circuit/sapling/mod.rs
Updated 5 years ago1
Improve subgroup enforcements
Updated 5 years ago6
Abstract NoteCommit, MerkleCRH and MixingPedersenHash in the Spend circuit to match the spec
Updated 5 years ago
Pedersen hash circuit implementation can not calculate inputs larger than 63*3*4
Closed 5 years ago1
Consider whether more code can be shared between TestConstraintSystem and ProvingAssignment
Updated 5 years ago
Explicitly define `edwards_a`?
Updated 5 years ago
Add tests from QED-it report
Updated 5 years ago
Publish new version to crates.io
Closed 5 years ago4
Ticket to keep track of Daira's review
Updated 6 years ago1
Represent RedJubjub signatures as byte sequences
Closed 6 years ago2
Ensure generators (including for Pedersen hashes) match specification
Closed 6 years ago
Ensure BLAKE2s personalization match the spec
Closed 6 years ago11
Switch to 512-bit re-randomization of nullifier
Closed 6 years ago
Implement the requested change for depth 32 commitments.
Closed 6 years ago4
Value of notes is encoded in big-endian
Closed 6 years ago
Output of CRH^ivk is interpreted in big-endian
Closed 6 years ago
Edwards point doubling can be achieved in 5 constraints
Closed 6 years ago