Skip to content

Circuit: Update note_commit to take into account asset#56

Merged
ConstanceBeguier merged 28 commits intozsa1from
circuit_note_commitment
May 23, 2023
Merged

Circuit: Update note_commit to take into account asset#56
ConstanceBeguier merged 28 commits intozsa1from
circuit_note_commitment

Conversation

@ConstanceBeguier
Copy link
Collaborator

@ConstanceBeguier ConstanceBeguier commented Apr 26, 2023
edited by PaulLaux
Loading

In the circuit, we update note_commit to take into account asset.
Previously, note_commit returns cm = hash(Q_ZEC, msg) + [rcm]R.
Now, note_commit returns

  • cm = hash(Q_ZEC, msg) + [rcm]R for ZEC note
  • cm = hash(Q_ZSA, msg || asset) + [rcm]R for ZSA note

We now evaluate note_commit with the following steps

  1. evaluate hash_zec = hash(Q_ZEC, msg)
  2. evaluate hash_zsa = hash(Q_ZSA, msg || asset)
  3. select hash = hash_zec if is_native_asset
    = hash_zsa otherwise
  4. evaluate cm = hash + [rcm]R
  5. check some constraints on msg and asset and their decompositions
  6. return cm

The following modifications are required to update note_commit:

  • add a is_native_asset witness (and check that it is a boolean and its value is correct according to asset)
  • add a MUX chip to evaluate a multiplexer on Pallas points

Warning: we increased the size of the Orchard circuit !

@ConstanceBeguier ConstanceBeguier force-pushed the circuit_note_commitment branch from addc182 to f3217ed Compare April 27, 2023 07:55
@ConstanceBeguier ConstanceBeguier force-pushed the circuit_note_commitment branch from 34a4b71 to 004881d Compare May 4, 2023 13:25
@QED-it QED-it deleted a comment from what-the-diff bot May 9, 2023
PaulLaux
PaulLaux reviewed May 10, 2023
View reviewed changes
@ConstanceBeguier ConstanceBeguier force-pushed the circuit_note_commitment branch from 6a6eaf1 to b24de51 Compare May 11, 2023 07:49
@ConstanceBeguier
Copy link
Collaborator Author

ConstanceBeguier commented May 11, 2023

I just rebased on zsa1 branch

@PaulLaux PaulLaux mentioned this pull request May 16, 2023
Closed
PaulLaux
PaulLaux reviewed May 16, 2023
View reviewed changes
Copy link
Collaborator

@PaulLaux PaulLaux left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

added some minor comments. As discussed, let's wait for today's meeting before the final approve.

src/circuit/gadget/mux_chip.rs

region.assign_advice(|| "out y", self.config.out, 0, || out_val)
},
)?;
Copy link
Collaborator

@PaulLaux PaulLaux May 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't like the duplication between x_cell and y_cell but don't see an easy way to remove it.

@ConstanceBeguier
Simplify circuit note commiment test
2bf081f
@ConstanceBeguier
Update Cargo.toml
d7faec1
@ConstanceBeguier
Add ZSA note commitment constants
ab1cdff
@ConstanceBeguier
Split note commitment into hash and blind
b19f012
@ConstanceBeguier
Add Mux chip
adfbadd
@ConstanceBeguier
Add is_native_asset
bc34b39
@ConstanceBeguier
Use R_ZEC for ZSA note commitment
ba70c15
@ConstanceBeguier
Use is_native_asset to evaluate the note commitment with the correct …
3a1b71c 
…personalization
@ConstanceBeguier
Add asset into hash for ZSA note commitment
8cb0950
@ConstanceBeguier
Add test on ZSA note commitment
da0e076
@ConstanceBeguier
Update constraints for note commitment
90e5e00
@ConstanceBeguier
Check that is_native_asset is boolean
e809f7f
@ConstanceBeguier
Update some comments
7cb5250
@ConstanceBeguier
Fix constraint is_native_asset * (asset - native_asset) = 0
b71430a
@ConstanceBeguier
Update comments
201b049
@ConstanceBeguier
Set verify_proof to true in tests/zsa.rs
87112af
@ConstanceBeguier
Add a comment on a possible optimization
4ed6c64
@ConstanceBeguier
Update some comments in the MUX chip
add2023
@ConstanceBeguier
update comments
289213d
@ConstanceBeguier
Fix constraints on is_native_asset
e2addc6
@ConstanceBeguier
Fix is_native_asset constraints
8cad322
@ConstanceBeguier ConstanceBeguier force-pushed the circuit_note_commitment branch from b24de51 to 4dda8eb Compare May 16, 2023 14:08
@ConstanceBeguier
Copy link
Collaborator Author

ConstanceBeguier commented May 16, 2023

I just rebased on zsa1

PaulLaux
PaulLaux approved these changes May 23, 2023
View reviewed changes
Copy link
Collaborator

@PaulLaux PaulLaux left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's merge it.

This was referenced May 23, 2023
Closed
Closed
@ConstanceBeguier ConstanceBeguier merged commit aeb9934 into zsa1 May 23, 2023
@PaulLaux PaulLaux mentioned this pull request May 14, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@PaulLaux PaulLaux PaulLaux approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ConstanceBeguier @PaulLaux