Skip to content

[Feat] Introduces Record Versioning (V1), Sender Ciphertext, & Fixes Record Commitment #2793

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 54 commits into from
Jul 7, 2025
Merged

[Feat] Introduces Record Versioning (V1), Sender Ciphertext, & Fixes Record Commitment #2793

merged 54 commits into from
Jul 7, 2025

Conversation

@raychu86
Copy link
Collaborator

@raychu86 raychu86 commented Jul 4, 2025

Changelog

This PR includes the following major changes:

  • Introduces Record::version with Version 0 (old) and Version 1 (new)
  • Introduces Record::is_hiding which is true on Version 1 and false on Version 0
  • Updates Record::to_bits serialization to support record versioning
  • Fixes Record::to_commitment to use BHP commitments on Version 1
  • Adds a sender_ciphertext which encrypts the signer address under the recipient's address
    • See Sender Ciphertext section below
  • Adds Output::decrypt_sender_ciphertext to decrypt the sender_ciphertext

Sender Ciphertext

This PR introduces a sender_ciphertext which allows the recipient to decrypt the sender address using their account view key.

The encryption scheme is as follows (where vk is the recipient's account view key, and G^r is the record nonce):

record_view_key := (G^vk) * r == (G^r) * vk
randomizer := Hash_PSD4( ENCRYPTION_DOMAIN || record_view_key || 1field )
sender_ciphertext := ToXCoordinate(signer_address) + randomizer

To perform decryption of the sender ciphertext, call Output::decrypt_sender_ciphertext with your account_view_key. If the given account view key does not belong to the given output record's owner, the function will return an error.

API Changes

The following APIs are impacted by this PR:

  • Request::InputID now includes for record inputs a { "record_view_key": record_view_key } entry
  • Transition::Output now includes for record outputs a { "sender_ciphertext": sender_ciphertext } entry

Parameter changes

This PR also adds support for credits parameters and v0 credits parameters. The circuit changes will break the existing credits.aleo VKs for functions that create or consume records.

When a VM is loaded, it determines which credits verifying keys to use:

  • V0 if the VM height is behind ConsensusVersion::V8
  • V1 if the VM height is on or after ConsensusVersion::V8
  • V0 if the environment is a test or the test features is enabled.

Once the VM passes the ConsensusVersion::V8 height, it will automatically swap the credits.aleo VKs to the latest one.

raychu86 and others added 30 commits June 12, 2025 14:59
@raychu86
Implement new record commitment
c3e9575
@raychu86
Commitment version selection
a08ae1a
@raychu86
Add support for old and new commitment versions in circuit execution
0ba282a
@raychu86
Use proper commitment derivation for outputs
82781c3
@raychu86
Switch sn derivation to use record digest
907a7e3
@raychu86
WIP Record versioning
817c105
@howardwu
Removes ToBits and ToBytes from Owner in console and circuit
0014a5b
@howardwu
Always write the version bits when ToBits-ing the Record (circuit)
cb282a0
@howardwu
Add hiding indicator and update commitment scheme
a2a21e5
@howardwu
Add comment
cafd926
@howardwu
Fix the hiding variant
363c519
@d0cd
Fix Record<N, Plaintext<N>>::parse
ff96178
@howardwu
Switch from digest back to commitment, need to implement to_commitmen…
91d9361 
…t logic
@howardwu
Implements to_commitment usage throughout, sets record version to 1, …
aadcae4 
…fixes tag to use commitment
@howardwu
Fix usage of record owner
5b2dcb3
@howardwu
Improve the to_commitment scheme efficiency
fbc3293
@howardwu
Rename digest to commitment in sn and tag
f7ac358
@howardwu
Reduce by one exponentiation, removes redundant record view key compu…
b487bf2 
…tation
@howardwu
Fixes Record::to_bits to be backwards-compatible
0751280
@howardwu
Fix typo in comment
4559524
@howardwu
Introduces a sender_ciphertext for each output record
1f72119
@raychu86
Add credits and credits_v0
9713474
@raychu86
Add credits_v0 access to Network
9d4f46b
@raychu86
cargo fmt
d7c0de0
@howardwu
Allow the sender ciphertext feature to be optional or deactivated in …
4644318 
…the future
@howardwu
Removes ConsensusVersion
8813b1f
@howardwu
Removes unnecessary comment
50c9fec
@howardwu
All circuit and console crate tests pass
539738b
@raychu86
Merge branch 'feat/new-inclusion' into feat/record-v1
53edfee 
Signed-off-by: Raymond Chu <[email protected]>
@raychu86
Merge branch 'feat/new-inclusion' into feat/record-v1
8d72bf3
raychu86 and others added 23 commits June 22, 2025 11:06
@raychu86
Fix compilation - query usage
d3370d2
@raychu86
Merge branch 'feat/record-v1' into feat/credits-parameters
fb0ad16
@raychu86
Resample mainnet credits params and update test expectations
ca2e7a9
@raychu86
Update expected constraint counts
de75cc0
@raychu86
Resample canary and testnet credits parameters
5c673aa
@raychu86
Add credits vk selection logic
e2fd12e
@howardwu
Adds correct enforcement of record version, nit clean up match on con…
4c6f3f8 
…sensus version
@raychu86
nits
18a21b7
@raychu86
cleanup
8e21787
@raychu86
Merge branch 'feat/record-v1' into feat/credits-parameters
5d2ba73
@howardwu
Adds Output::decrypt_sender_ciphertext along with a unit test
2cc4220
@howardwu
Fix tests which use record version
a43bc5b
@raychu86
Merge branch 'feat/record-v1' into feat/credits-parameters
1bedfad 
Signed-off-by: Raymond Chu <[email protected]>
@raychu86
Enable test
170afb3
@raychu86
Update 'upgrade' config and parameters
b8b6c37
@raychu86
Fix test features
11dc2dd
@raychu86
Regenerate expectations
83f4d66
@raychu86
Add backwards compatible output verification
fc3a90c
@raychu86
Add record version checks to fee verification
05a5667
@raychu86
Merge branch 'feat/record-v1' into feat/credits-parameters
97266b4
@raychu86
nit
1f1a680
@raychu86
Merge pull request #39 from ProvableHQ/feat/credits-parameters
51f5343 
Add V0 credits support to parameters
@raychu86
Merge branch 'feat/new-inclusion' into feat/record-v1
17456cd
@raychu86 raychu86 requested a review from vicsn July 4, 2025 18:12
@raychu86 raychu86 added the 4.0.0 label Jul 4, 2025
@raychu86 raychu86 mentioned this pull request Jul 4, 2025
Merged
Base automatically changed from feat/new-inclusion to staging July 7, 2025 12:15
vicsn
vicsn approved these changes Jul 7, 2025
View reviewed changes
Copy link
Collaborator

@vicsn vicsn left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just two comments to improve my understanding, can be tackled in a future PR if needed

synthesizer/src/vm/mod.rs
let consensus_version = N::CONSENSUS_VERSION(latest_block_height)?; // TODO (raychu86): Record Commitment - Select the proper consensus version.
// Initialize a new process based on the consensus version.
if (ConsensusVersion::V1..=ConsensusVersion::V7).contains(&consensus_version) {
Process::load_v0()?
Copy link
Collaborator

@vicsn vicsn Jul 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'll just note that it seems a bit odd that we make process loading during startup dependent on the current consensus version. Are we also updating whenever we reach that consensus version as we're progressing at tip?

@vicsn vicsn merged commit d9ba009 into staging Jul 7, 2025
2 checks passed
@vicsn vicsn deleted the feat/record-v1 branch July 7, 2025 12:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vicsn vicsn vicsn approved these changes

Assignees

No one assigned

Labels

4.0.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@raychu86 @vicsn @howardwu @d0cd