Shared ZK implementation #1013
Shared ZK implementation #1013
Conversation
|
@cjpatton Would love if you could take a look at this, thank you! |
There was a problem hiding this comment.
I noticed that you rebased or cherry-picked main onto this feature branch. This doesn't work well because each new change from main increases the diff between the feature branch and the last common ancestor commit, which means more chances for conflicts. Ideally, the diff should only have the new src/szk.rs file, and two lines in src/lib.rs declaring the new module.
There are a few ways to get out of this loop. Merging main into this feature branch would give you a new last common ancestor commit, thus simplifying the diff, though leaving the branch with a complicated history. Rebasing in the other direction, i.e. rebasing the feature branch onto the latest commit from main, would provide the cleanest end result history, though it may take some care. The commits that already appear on main would need to be dropped: rebasing can often do this automatically, but if not this can be manually controlled in an interactive rebase. There may be conflicts to resolve along the way as well, particularly for fixup commits touching existing parts of the library. I think you could alternatively squash the whole feature branch into one commit by first doing a soft reset, cleaning up the changes in the index by unstaging changes from cherry-picked main commits, and then creating a new commit from the index's contents.
hannahdaviscrypto
force-pushed
the
mastic-dev
branch
from
85aa8d0
to
e91d2ba
Compare
There was a problem hiding this comment.
👏 LGTM. Before merging:
- Let's make sure @divergentdave is happy
- We need to squash this into a single commit.
Szk wraps an FLP proof system and uses an Xof to derive joint random coins using a method inspired by Prio3. However, unlike Prio3, Szk is designed to prove validity of an input that is already secret-shared between two parties. This is necessary for Mastic, where the input will be shared via a VIDPF instead of linearly.
hannahdaviscrypto
force-pushed
the
mastic-dev
branch
from
40c05d4
to
dd9e807
Compare
|
Squashed and ready to merge, pending CI checks! @cjpatton |
Partially addresses #947.
A module for computing fully linear proofs on data that is already secret shared, using the Prio3 method to derive joint randomness from the input shares via an XOF.