-
Notifications
You must be signed in to change notification settings - Fork 4.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[zk-token-sdk] Restrict range proof generator length and prevent 0-bit range proof #34166
[zk-token-sdk] Restrict range proof generator length and prevent 0-bit range proof #34166
Conversation
Codecov Report
Additional details and impacted files@@ Coverage Diff @@
## master #34166 +/- ##
=========================================
- Coverage 81.9% 81.9% -0.1%
=========================================
Files 819 819
Lines 220122 220172 +50
=========================================
+ Hits 180386 180394 +8
- Misses 39736 39778 +42 |
Backports to the beta branch are to be avoided unless absolutely necessary for fixing bugs, security issues, and perf regressions. Changes intended for backport should be structured such that a minimum effective diff can be committed separately from any refactoring, plumbing, cleanup, etc that are not strictly necessary to achieve the goal. Any of the latter should go only into master and ride the normal stabilization schedule. Exceptions include CI/metrics changes, CLI improvements and documentation updates on a case by case basis. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Great, thanks for factoring these out!
…nt 0-bit range proof (backport of #34166) (#34183) * [zk-token-sdk] Restrict range proof generator length and prevent 0-bit range proof (#34166) * limit range proof generator length * forbid 0-bit range proof verification (cherry picked from commit 0e6dd54) # Conflicts: # zk-token-sdk/src/range_proof/errors.rs # zk-token-sdk/src/range_proof/generators.rs # zk-token-sdk/src/range_proof/mod.rs * resolve conflict --------- Co-authored-by: samkim-crypto <skim13@cs.stanford.edu>
Problem
When the input to the range proof generator become very large, then this could lead to expected behavior (#33509).
Summary of Changes
Added a cap of
2^32
, which should be plenty for all practical use cases.Fixes #