Redesign Sapling data model for V5 shared anchor and spends #2021
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
teor2345
added
C-design
2 tasks
teor2345
commented
Apr 17, 2021
teor2345
commented
Apr 17, 2021
|
I think we should go ahead with this redesign. It is more clear than what we have now and matches better what we need to implement. |
This was referenced Apr 18, 2021
The shared anchor is only present if there are any spends. As part of this change, delete the manual PartialEq impl and its tests, because we can derive PartialEq now.
Interactive rename using the following commands: ```sh fastmod Spends SpendsAndMaybeOutputs fastmod NoSpends JustOutputs ```
This vector wrapper ensures that it always contains at least one element.
teor2345
force-pushed
the
redesign-shared-anchor-spend
branch
from
dd6b0a3
to
673b95d
Compare
Also update the RFC to use AtLeastOne for Orchard.
teor2345
force-pushed
the
redesign-shared-anchor-spend
branch
from
5536af6
to
cc8292f
Compare
teor2345
changed the title
What do you think of the |
dconnolly
reviewed
Apr 20, 2021
| @@ -128,11 +128,11 @@ struct FieldNotPresent; | |||
|
|
|||
| impl AnchorVariant for PerSpendAnchor { | |||
| type Shared = FieldNotPresent; | |||
| type PerSpend = tree::Root; | |||
| type PerSpend = sapling::tree::Root; | |||
dconnolly
reviewed
Apr 20, 2021
| } | ||
|
|
||
| impl AnchorVariant for SharedAnchor { | ||
| type Shared = tree::Root; | ||
| type Shared = sapling::tree::Root; |
|
Everyone has read through this, so I'm going to merge it, so we can get on with the work that it's blocking. |
dconnolly
reviewed
Apr 20, 2021
| If there are no spends and no outputs: | ||
| * in v4, the value_balance is fixed to zero | ||
| * in v5, the value balance field is not present | ||
| * in both versions, the binding_sig field is not present |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+178
to
+179
| /// If there are no spends, there must not be a shared | ||
| /// anchor. |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+170
to
+171
| /// In Transaction::V5, if there are any spends, | ||
| /// there must also be a shared spend anchor. |
dconnolly
reviewed
Apr 20, 2021
| pub rest_outputs: Vec<Output>, | ||
| /// In V5 transactions, also contains a shared anchor, if there are any | ||
| /// spends. | ||
| pub transfers: TransferData<AnchorV>, |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+125
to
+128
| /// The anchor is the root of the Sapling note commitment tree in a previous | ||
| /// block. This root should be in the best chain for a transaction to be | ||
| /// mined, and it must be in the relevant chain for a transaction to be | ||
| /// valid. |
dconnolly
reviewed
Apr 20, 2021
|
|
||
| /// Maybe some outputs (can be empty). | ||
| /// | ||
| /// Use the [`ShieldedData::outputs`] method to get an iterator over the |
dconnolly
reviewed
Apr 20, 2021
|
|
||
| /// At least one spend. | ||
| /// | ||
| /// Use the [`ShieldedData::spends`] method to get an iterator over the |
dconnolly
reviewed
Apr 20, 2021
| } | ||
| .into_iter() | ||
| .chain(self.rest_spends.iter()) | ||
| self.transfers.spends() |
dconnolly
reviewed
Apr 20, 2021
| } | ||
| .into_iter() | ||
| .chain(self.rest_outputs.iter()) | ||
| self.transfers.outputs() |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+206
to
+212
| /// Provide the shared anchor for this transaction, if present. | ||
| /// | ||
| /// The shared anchor is only present if: | ||
| /// * there is at least one spend, and | ||
| /// * this is a `V5` transaction. | ||
| pub fn shared_anchor(&self) -> Option<AnchorV::Shared> { | ||
| self.transfers.shared_anchor() |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
74
to
+82
| /// The Sapling `value_balance` field is optional in `Transaction::V5`, but | ||
| /// required in `Transaction::V4`. In both cases, if there is no `ShieldedData`, | ||
| /// then the field value must be zero. Therefore, only need to store | ||
| /// then the field value must be zero. Therefore, we only need to store | ||
| /// `value_balance` when there is some Sapling `ShieldedData`. | ||
| /// | ||
| /// In `Transaction::V4`, each `Spend` has its own anchor. In `Transaction::V5`, | ||
| /// there is a single `shared_anchor` for the entire transaction. This | ||
| /// structural difference is modeled using the `AnchorVariant` type trait. | ||
| #[derive(Clone, Debug, Serialize, Deserialize)] | ||
| /// there is a single `shared_anchor` for the entire transaction, which is only | ||
| /// present when there is at least one spend. These structural differences are | ||
| /// modeled using the `AnchorVariant` type trait and `TransferData` enum. |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+274
to
+275
| // this awkward construction avoids returning a newtype struct or | ||
| // type-erased boxed iterator |
dconnolly
reviewed
Apr 20, 2021
|
|
||
| /// Iterate over the [`Output`]s for this transaction. | ||
| pub fn outputs(&self) -> impl Iterator<Item = &Output> { | ||
| use TransferData::*; |
There was a problem hiding this comment.
If we're importing this inside several methods, should we just import it at the top of the module?
There was a problem hiding this comment.
So this is a bit of a weird one, because TransferData is an enum.
Sometimes you want the fully qualified name, if it's not obvious from the context.
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+283
to
+287
| match self { | ||
| SpendsAndMaybeOutputs { maybe_outputs, .. } => maybe_outputs, | ||
| JustOutputs { outputs, .. } => outputs.as_vec(), | ||
| } | ||
| .iter() |
There was a problem hiding this comment.
Yeah it's much nicer to have an inner checked Vec<T> impl rather than (T, Vec<T>).
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+298
to
+301
| match self { | ||
| SpendsAndMaybeOutputs { shared_anchor, .. } => Some(shared_anchor.clone()), | ||
| JustOutputs { .. } => None, | ||
| } |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+77
to
+80
| // CORRECTNESS | ||
| // | ||
| // All conversions to `AtLeastOne<T>` must go through `TryFrom<Vec<T>>`, | ||
| // so that the type constraint is satisfied. |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+35
to
+42
| /// Deserialize an `AtLeastOne` vector, where the number of items is set by a | ||
| /// compactsize prefix in the data. This is the most common format in Zcash. | ||
| impl<T: ZcashDeserialize + TrustedPreallocate> ZcashDeserialize for AtLeastOne<T> { | ||
| fn zcash_deserialize<R: io::Read>(mut reader: R) -> Result<Self, SerializationError> { | ||
| let v: Vec<T> = (&mut reader).zcash_deserialize_into()?; | ||
| v.try_into() | ||
| } | ||
| } |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+43
to
+49
| /// Serialize an `AtLeastOne` vector as a compactsize number of items, then the | ||
| /// items. This is the most common format in Zcash. | ||
| impl<T: ZcashSerialize> ZcashSerialize for AtLeastOne<T> { | ||
| fn zcash_serialize<W: io::Write>(&self, mut writer: W) -> Result<(), io::Error> { | ||
| self.as_vec().zcash_serialize(&mut writer) | ||
| } | ||
| } |
dconnolly
reviewed
Apr 20, 2021
| type Parameters = (); | ||
|
|
||
| fn arbitrary_with(_args: Self::Parameters) -> Self::Strategy { | ||
| // TODO: add an extra spend or output using Either, and stop using filter_map |
dconnolly
reviewed
Apr 20, 2021
| @@ -48,4 +48,10 @@ impl<P: ZkSnarkProof> JoinSplitData<P> { | |||
| pub fn joinsplits(&self) -> impl Iterator<Item = &JoinSplit<P>> { | |||
| std::iter::once(&self.first).chain(self.rest.iter()) | |||
| } | |||
|
|
|||
| /// Iterate over the [`Nullifier`]s in `self`. | |||
| pub fn nullifiers(&self) -> impl Iterator<Item = &Nullifier> { | |||
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+123
to
+124
| // `TransferData` ensures this field is only present when there is at | ||
| // least one spend. |
dconnolly
reviewed
Apr 20, 2021
Comment on lines
+167
to
+171
| let shared_anchor = if spends_count > 0 { | ||
| Some(reader.read_32_bytes()?.into()) | ||
| } else { | ||
| None | ||
| }; |
This was referenced Apr 20, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation
In V5 transactions, the shared anchor is only present if there are any spends.
This requires an extra
TransferDatatype to model correctly.(This change was made after the NU5 spec audit.)
Solution
Update the design and tests to include:
TransferDatatype which makes sure that the shared anchor is only present when there are spendsAtLeastOnevector wrapper, which makes sure its inner vector always contains at least one elementAs part of this change, delete the manual PartialEq impl and its tests, because we can derive PartialEq now.
The code in this pull request has:
Review
Both @oxarbitrage and @dconnolly should have a look at the new design, these changes are pretty major.
Related Issues
#1829 implement V5 transaction for sapling
#2020 PR for V5 serialization for sapling
Follow Up Work
#2028 use
AtLeastOnefor other types, likeJoinSplitData,Block.transaction, and some network messages