19 Commits

Author	SHA1	Message	Date
Sean Bowe	2668a1bc13	Remove the rest of libzerocash.	2016-07-10 20:25:02 -06:00
Sean Bowe	83e018b160	Remove redundant constraints.	2016-06-03 20:27:51 -06:00
Sean Bowe	defe37a6d4	Enforce first four bits are zero for all spending keys and phi.	2016-05-24 11:07:09 -06:00
Sean Bowe	1bcdec40a4	Refactor PRF_gadget to hand responsibility to PRF_addr_a_pk_gadget for creating the '0' argument to the PRF.	2016-05-23 10:43:25 -06:00
Sean Bowe	81469bbb83	Note values should be little-endian byte order.	2016-05-12 16:45:12 -06:00
Sean Bowe	032164d5d5	Rename hmac -> mac in circuit.	2016-05-12 16:45:12 -06:00
Sean Bowe	53ab7c06ba	Use inheritance for PRF gadgets.	2016-05-12 16:44:49 -06:00
Daira Hopwood	dbab243725	zkSNARK: Add constraint that the total value in a JoinSplit is a 64-bit integer.	2016-05-12 16:44:30 -06:00
Sean Bowe	59c3d926c6	zkSNARK: Enforce merkle authentication path from nonzero-valued public inputs to root.	2016-05-12 16:44:30 -06:00
Sean Bowe	fcece37f00	zkSNARK: Witness commitments to input notes.	2016-05-12 16:44:30 -06:00
Sean Bowe	e5f7c49d55	zkSNARK: Ensure that values balance correctly.	2016-05-12 16:44:30 -06:00
Sean Bowe	5e61a78fec	zkSNARK: Enforce disclosure of commitments to output notes.	2016-05-12 16:44:30 -06:00
Sean Bowe	6b010d9bfd	zkSNARK: Enforce that new output notes have unique rho to prevent faerie gold attack.	2016-05-12 16:44:30 -06:00
Sean Bowe	e52f40e839	zkSNARK: Authenticate h_sig with a_sk	2016-05-12 16:44:30 -06:00
Sean Bowe	2a2f3fb80f	zkSNARK: Enforce disclosure of input note nullifiers	2016-05-12 16:44:30 -06:00
Sean Bowe	ca8d6c9347	zkSNARK: Enforce spend-authority of input notes.	2016-05-12 16:44:30 -06:00
Sean Bowe	53d2ade7c2	zkSNARK: Add "zero" constant variable.	2016-05-12 16:44:30 -06:00
Sean Bowe	074eb3a2cf	zkSNARK: Foundations of circuit design and verification logic.	2016-05-12 16:44:30 -06:00
Sean Bowe	369df06583	Introduce new libzcash Zcash protocol API and crypto constructions surrounding the zkSNARK circuit.	2016-05-12 16:44:27 -06:00