Load G1 and G2 points from a file rather than relying on the setup function #111
Comments
|
This would be very helpful |
|
In general for most schemes in this repo the setup function is meant for convenient setup (e.g. for testing) and not for production use - instead, you should supply your own universal parameters and pass them to the trim function to obtain the committer/verifier keys. Alternatively, you can supply CK/VK directly, but I think it's more convenient. The universal parameters implement |
|
I don't work on the project anymore, but the way we accomplished things in the recent PR was by ditching Arkworks functions and computing stuff in our way (e.g., commitment is a sum of G1 points from the trusted setup file multiplied by polynomial coefficients) and then converting the result to Arkworks data types ( But by doing this we miss out on Arkworks optimizations and perhaps compatibility with projects that already use Arkworks. |
Summary
We're using Arkworks at sifraitech/rust-kzg and are currently undergoing a migration to EIP-4844 by using ethereum/c-kzg-4844 as a reference. The said implementation loads trusted setups from files, e.g., trusted_setup.txt, that hold the following information:
On the contrary, Arkworks invokes the method
kzg10::setupand feeds it aRngCoreobject to generate the setup, which is not as secure as loading the precomputedG1andG2points from a file.Problem Definition
As far as I'm understanding,
powers_of_gandpowers_of_gamma_gare responsible for holdingG1andG2points, respectively. But as you can see, the type ofpowers_of_gamma_gisBTreeMap::<usize, G1Affine>, which by definition cannot holdG2points. We attempted to replace the values ofpowers_of_gwithG1points loaded from a setup file, but we are unsure of where to put theG2points.Proposal
Allow us to load
G1andG2points from a file rather than relying on the setup function.For Admin Use
The text was updated successfully, but these errors were encountered: