Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use FCMP implementation of BP+ in monero-serai #344

Merged
merged 27 commits into from
Aug 27, 2023
Merged

Use FCMP implementation of BP+ in monero-serai #344

merged 27 commits into from
Aug 27, 2023

Conversation

kayabaNerve
Copy link
Member

The implementation of BP+ from my work on FCMPs for Monero (https://github.com/kayabaNerve/full-chain-membership-proofs) is written to be extremely close to the paper and exceptionally clear. It's also had a good amount of effort spent on optimizations. While those optimizations were mainly for the arithmetic circuit code, this implementation still appears decently faster than the prior impl.

This adds a BP+ impl not descended from Monero's own, and can much more easily be used to verify Monero's impl matches the paper (as it was an effectively clean-room impl successfully modified to match, without any notable changes).

@kayabaNerve kayabaNerve added improvement This could be better monero An issue with the Monero library/integration cryptography An issue involving cryptography/a cryptographic library labels Aug 16, 2023
@kayabaNerve
Add in an implementation of BP+ based off the paper, intended for cla…
aa188c0 
…rity and review

This was done as part of my work on FCMPs from Monero, and is copied from https://github.com/kayabaNerve/full-chain-membership-proofs
@kayabaNerve
Remove crate structure of BP+
bf737d4
@kayabaNerve
Remove arithmetic circuit code
2929f3f
@kayabaNerve
Remove AC/VC generators code
68437e9
@kayabaNerve
Remove generator transcript
7de4dda 
Monero uses non-transcripted static generators.
@kayabaNerve
Further trimming of generators
b9b2ab6
@kayabaNerve
Remove the single range proof
5b309ff 
It's unused by Monero and accordingly unhelpful.
@kayabaNerve
Work on getting BP+ to compile in its new env
dfc44d0
@kayabaNerve
Correct BP+ folder name
780d637
@kayabaNerve
Further tweaks to get closer to compiling
f2970c7
@kayabaNerve
Remove the ScalarMatrix file
a73d70f 
It's only used for AC proofs
@kayabaNerve
Compiles, with tests passing
25505e8
@kayabaNerve
Lock BP+ to Ed25519 instead of the generic Ciphersuite
5cb1d4a
@kayabaNerve
Resolve most warnings in BP+
f576f33
@kayabaNerve
Make existing bulletproofs test easier to read
942c8ca
@kayabaNerve
Further strip generators
370cc71
@kayabaNerve
Swap G/H as Monero did
03f7f2c
@kayabaNerve
Replace RangeCommitment with Commitment
505dc60
@kayabaNerve
Hard-code BP+ h to Ed25519's generator
693cb47
@kayabaNerve
Use pub(crate) for BP+, not pub
ca29fc3
@kayabaNerve
Replace initial_transcript with hash_plus
44ce82f
@kayabaNerve
Rename hash_plus to initial_transcript
baa221e
@kayabaNerve
Finish integrating the FCMP BP+ impl
01b01e9
@kayabaNerve
Move BP+ folder
ab295a2
@kayabaNerve
Correct no-std support
713f6f3
@kayabaNerve
Rename "long_n" to eta
a262fa3
@kayabaNerve kayabaNerve merged commit a66994a into develop Aug 27, 2023
13 checks passed
@kayabaNerve kayabaNerve deleted the academic-bp-plus branch August 27, 2023 19:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
cryptography An issue involving cryptography/a cryptographic library improvement This could be better monero An issue with the Monero library/integration
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kayabaNerve