Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP: bulletproofs: use one large ecmult_multi instead of two smaller ones #216

Draft
wants to merge 35 commits into
base: master
Choose a base branch
from
Draft

WIP: bulletproofs: use one large ecmult_multi instead of two smaller ones #216

wants to merge 35 commits into from

Conversation

jonasnick
Copy link
Contributor

Based on #207.

without this PR

> SECP256K1_BENCH_ITERS=256 ./bench_bulletproofs | grep verify
bulletproofs_uncompressed_verify_64bits_16base,   669.0       ,   670.0       ,   671.0

with this PR:

> SECP256K1_BENCH_ITERS=256 ./bench_bulletproofs | grep verify
bulletproofs_uncompressed_verify_64bits_16base,   642.0       ,   644.0       ,   653.0

TODO:

  • do the same for proving
  • cleanup

@apoelstra @sanket1729
MOVE ONLY: move Pedersen commitment stuff to generator module from ra…
87373f5 
…ngeproof module

You can verify this commit with `git diff --color-moved=zebra`
@apoelstra @sanket1729
Revert "Remove unused scalar_sqr"
0a60069 
This reverts commit 5437e7b.
@jonasnick jonasnick mentioned this pull request Feb 7, 2023
Open
apoelstra and others added 27 commits February 8, 2023 03:09
@apoelstra @sanket1729
generator: cleanups in Pedersen/generator code
6162d57 
Silence a compiler warning about an unitialized use of a scalar in case
the user tries to provide a 0-length list of commitments.

Also ensures that commitments have normalized field elements when they
are loaded into ges.
@apoelstra @sanket1729
bulletproofs: add new empty module
048f9f8
@apoelstra @sanket1729
bulletproofs: add API functionality to generate a large set of genera…
48563c8 
…tors
@sanket1729
Add utilities from uncompressed Bulletproofs PR
17417d4 
Add a transcript module for doing a generic Fiat Shamir
@sanket1729
Add utilities for log2
420353d
@sanket1729
Add utility functions required in norm argument
412f8f6
@sanket1729
Add internal BP++ commit API
8638f0e
@sanket1729
Add bulletproofs++ norm argument prove API
d914545
@sanket1729
Add norm argument verify API
d381748
@sanket1729
Add testcases for bulletproofs++ norm arugment
6e5932d
@jonasnick @sanket1729
ci: add bulletproofs
aac50de
@jonasnick @sanket1729
norm arg: add tests for zero length and zero vectors
aca625f
@jonasnick @sanket1729
norm arg: add verification vectors
a0cb1c6 
norm arg: add verify test vector with vector size > 1
@jonasnick @sanket1729
transcript: add tests
9504285
@sanket1729
Rename buletproof_pp* to bppp*
94f77ff
@sanket1729
Prepare of bulletproofs++ rangeproof implementation
9c76877
@sanket1729
Add transcript module
20b6b26 
This makes it easy to use Fiat Shamir in when invoking child protocols.
@sanket1729
Use generic FS transcrpit in norm argument
d293ae0 
This commit also updates norm argument to use asset_gen instead of G for
storing the inner product
@sanket1729
Update generator serialization to have h0 = G
34d641b 
For compatibility with exisiting Pedersen commitments data structures,
it is necessary to have commitments be of the G_a*v + G*gamma where G_a
is asset gen and gamma is blinding factors.

However, in BP++ design, the blinding values are along H_vec. In order
make these compatible with BP++, we make h0 = G
@sanket1729
Add BP++ round 1
6d46f87 
Commit to digits and multiplicities
@sanket1729
BP++ prover round 2
f8d775c 
Commit to reciprocals of digits as 1/(e + d_i)
@sanket1729
BP++ prover round 3
1e1fc2e 
Commit to S. Compute l's adaptive to create a zero polynomial
@sanket1729
Prover round 4: Norm proof argument
e6ca68b 
Run the run norm proof argument on the computed C
@sanket1729
BP++ verifier
ec9a56e
@sanket1729
Expose BP++ Apis
326978c
@sanket1729
Add benchmarks
60a448c
@sanket1729
Add rangeproof unit tests
da6288c
@jonasnick jonasnick marked this pull request as draft March 2, 2023 15:05
@dr-orlovsky dr-orlovsky mentioned this pull request Mar 5, 2023
Open
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jonasnick @apoelstra @sanket1729