diff --git a/src/ristretto/bulletproofs_plus.rs b/src/ristretto/bulletproofs_plus.rs index 5c5d71e5..721252da 100644 --- a/src/ristretto/bulletproofs_plus.rs +++ b/src/ristretto/bulletproofs_plus.rs @@ -611,7 +611,7 @@ mod test { } /// The 'BulletproofsPlusService' interface 'construct_proof' should only accept Pedersen generators of - /// 'ExtensionDegree::Zero' with 'aggregation_size == 1' and values proportional to the bit length + /// 'ExtensionDegree::Zero' with values that do not overflow the bit length #[test] fn test_construct_verify_proof_no_recovery() { let mut rng = rand::thread_rng(); @@ -619,14 +619,13 @@ mod test { let factory = ExtendedPedersenCommitmentFactory::new_with_extension_degree(extension_degree).unwrap(); // bit length and aggregation size are chosen so that 'BulletProofsPlusService::init' will always succeed for bit_length in [4, 64] { - for aggregation_size in [1, 16] { + for aggregation_size in [1, 2] { let bulletproofs_plus_service = BulletproofsPlusService::init(bit_length, aggregation_size, factory.clone()).unwrap(); for value in [0, 1, u64::MAX] { let key = RistrettoSecretKey(Scalar::random_not_zero(&mut rng)); let proof = bulletproofs_plus_service.construct_proof(&key, value); if extension_degree == CommitmentExtensionDegree::DefaultPedersen && - aggregation_size == 1 && value >> (bit_length - 1) <= 1 { assert!(proof.is_ok());