Skip to content
This repository has been archived by the owner on Jan 22, 2025. It is now read-only.

zk-token-sdk: use constant-time msm for inner product proof generation #27355

Merged
merged 1 commit into from
Aug 24, 2022
Merged

zk-token-sdk: use constant-time msm for inner product proof generation #27355

merged 1 commit into from
Aug 24, 2022

Conversation

samkim-crypto
Copy link
Contributor

Problem

Currently, non-constant time multiscalar multiplication VartimeMultiscalarMul is used for inner product proof generation/verification for range proof. This is fine for range proof verification since verification is public, but this could theoretically result in a security vulnerability for proof generation.

Summary of Changes

Use MultiscalarMul as opposed to VartimeMultiscalarMul for inner product proof generation.

@samkim-crypto samkim-crypto merged commit 19fc4fc into solana-labs:master Aug 24, 2022
mergify bot pushed a commit that referenced this pull request Aug 31, 2022
@samkim-crypto @mergify
zk-token-sdk: use constant-time msm for inner product proof generation (
08ec343 
#27355)

(cherry picked from commit 19fc4fc)
@mergify mergify bot mentioned this pull request Aug 31, 2022
Merged
mergify bot added a commit that referenced this pull request Aug 31, 2022
@mergify @samkim-crypto
zk-token-sdk: use constant-time msm for inner product proof generatio…
d1b51f7 
…n (backport #27355) (#27489)

zk-token-sdk: use constant-time msm for inner product proof generation (#27355)

(cherry picked from commit 19fc4fc)

Co-authored-by: samkim-crypto <[email protected]>
@samkim-crypto samkim-crypto deleted the zk-token-sdk/inner-product-proof-constant-time branch December 1, 2022 00:34
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@samkim-crypto