d20080c2c3
Add automatic git versioning. fixes #37
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
802534ef2d
Merge pull request #46 from zcash/zips44.keys-are-not-public.0
Key terminology changes. Also remove some unused macros. fixes #44
8 years ago
465ce90631
Try rerendering the key_components diagram with "Convert text to paths", to
work around a github PDF renderer issue.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
2a322f8647
Key terminology changes. Also remove some unused macros. fixes #44
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
a137505404
Additions to .gitignore.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
859059fb9d
Add note about Merkle tree validity.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
db6607a3de
Merge pull request #39 from zcash/zips14.specify-merkle-tree.0
Specify Merkle tree. fixes #14
8 years ago
4c062451d3
Minor refinements. refs #14
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
c478fa1299
Specify Merkle tree. fixes #14
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
dcdb0fb3dc
Cosmetics: BLAKE2b-256 macros.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
cdae617357
BLAKE2b/256 -> BLAKE2b-256.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
75b8750d59
Require PRF^addr to be collision-resistant. refs ticket:zcash/zcash/836
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
e2dbad2448
Cosmetic changes to conformance macros.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
83ae851aad
Show Daira as lead author and add "as intended for the Zcash release of summer 2016".
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
7826c99919
Minor correction to what sighashes cover.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
015b607650
Cosmetics: fix spacing in section references.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
9f37a0d3c8
Cosmetics: change font of ASCII strings to bold tt.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
389ae76bdb
Change to BLAKE2b/256, and add pubKeyHash indirection. fixes #26
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
76d87e6995
Revert addition of Eli's comments -- moved to eli-comments.0 branch.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
fb15dd2396
comments through section 5
8 years ago
62f615e459
Clarification of endianness, and that uses of BLAKE2b are unkeyed.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
ecba0f9e5d
Cosmetics.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
d4d095b33d
Update version to 2.0-alpha-1.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
0bc03313bf
Changes to signatures.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
c19f1d1523
Change bit ordering.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
e95fee5ce7
Add lead byte to note plaintext.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
5b0c01d6d0
Clarify that we're using the IETF definition of AEAD_CHACHA20_POLY1305,
and that hSig is an input to the KDF.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
fb2492d7e5
Switch to Blake2b for KDF and hSig.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
674c5614f2
\serialNumber -> \nullifier and related macro changes.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
6897bebfe6
Reserve non-UTF-8 lead bytes in memo field.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
9397a606b9
Change memos from 64 to 128 bytes.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
6f0f88c9de
Change r from 192 to 256 bits.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
3dffb0d9c7
Pour/Xfer -> JoinSplit.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
263122966a
coin -> note in macro names.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
819eb1dac9
transaction -> \transaction
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
4036a5d6e4
Make t 8 bits.
(This is not a protocol change, it's just simpler because it avoids endianness issues.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
fedfc3c315
Fix an endianness bug.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
6f049a2c8d
Add restriction that either vpubOld or vpubNew is zero.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
c338fd141b
Pour descriptions go in transactions, and only indirectly in blocks. fixes #20
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
5bf271d993
ephemeralKey is a change from Zerocash.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
31ce718464
Fix endianness bug in an example.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
8b5c20cd38
Change i to be the first argument to KDF for consistency with other functions.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
d4e95b73f6
Change KDF to SHA-512 and add hSig input.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
8b9851a431
Remove a_pk from note plaintexts. This also fixes a bug where the recipient
would incorrectly use the decrypted a_pk to check the coin commitment, rather
than its own a_pk.
(The length of encCiphertexts was already computed assuming this change.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
5bbbb0bde6
Use standard AEAD_CHACHA20_POLY1305.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
d98c941429
Switch to little-endian encoding, consistent with Bitcoin serialization.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
350c5ae598
DecryptCoin -> DecryptNote.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
c55489fa2d
Fix some macro uses, and rename rn to nf.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
5e408580c1
Remove "map" terminology; the spent nullifiers are a set at this level of abstraction.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
d60fda0e3d
Rename remnant (serial number) -> nullifier.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
8 years ago
Daira Hopwood