Sapling Implementation Refactor #41
Labels
Comments
This was referenced Jan 15, 2019
Closed
This was referenced Apr 11, 2019
|
Any chance you can put those module diagrams up here? @ebfull |
This was referenced Nov 21, 2019
Closed
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Goals:
Strategy:
Different components will be built and cleaned up independently and then brought together as git subtrees in this librustzcash repository as code matures.
Primitive crates (not Zcash specific, generally useful):
zkcrypto/jubjubimplements the Jubjub elliptic curve, the scalar field Fr, and the base field Fq, as defined in the Zcash protocol specification.zkcrypto/ffimplements traits for finite fields. We will not be bringing inff_deriveor any other macros, to reduce dependency trees.jubjubwill bring this in as a dependency.zkcrypto/groupimplements traits and generic group tools such as multi-exponentiation and FFTs. (TODO: multi-threaded variants of these algorithms; enabled by crate feature, or built outside this crate by exposing primitives?)zkcrypto/bellmanimplements circuit traits and primitive structures, as well as basic gadget implementations such as booleans, number abstractions, etc. Unlike now, bellman will be generic usingffand won't be pairing-specific.zkcrypto/pairingimplements basic traits for pairing-friendly elliptic curve constructions.zkcrypto/bls12_381implements BLS12-381, which brings injubjubas a dependency (to use its Fq implementation).zkcrypto/groth16implements the Groth16 proving system as used in Zcash. This brings inpairingandbellmanas dependencies.Zcash-specific crates:
zcash_primitivescontains implementations of crypto components in Zcash, such as keys and their derivations (ZIP32), addresses, notes, and any other structures or algorithms specific to Zcash, such as transactions.zcash_proofscontains an implementation of the prover and verifier for Sapling proofs. This brings inbls12-381,groth16as dependencies and contains the implementation of the Spend/Output circuits.zcash_client_backendcontains tools for maintaining a Zcash wallet (something which can send and receive payments, maintain keys, etc.)librustzcashis a C FFI for consensus-rule verification of Sapling transactions, interacting with the prover from C++, etc.Task list (as of 2019-08-14):
zip32crate intozcash_primitives.sapling-cryptoacrossbellman,zcash_primitives, andzcash_proofs.jubjubcrate.jubjubinto workspace.fftraits to matchjubjubAPI.impl ff::* for jubjubgrouptraits to matchjubjubAPI.bellmanintogroup.impl group::* for jubjubbls12_381crate.bls12_381into workspace.impl ff::* for bls12_381impl group::* for bls12_381pairingtraits to matchbls12_381API.impl pairing::* for bls12_381zcash_primitives::jubjubwith the new crate.pairing::bls12_381with the new crate.groth16frombellman.The text was updated successfully, but these errors were encountered: