Merge branch 'main' of https://github.com/IntensiveCoLearning/ZK

IntensiveCoLearning · Aug 15, 2024 · 1d7d1e4 · 1d7d1e4
2 parents f2209bb + 49bf120
commit 1d7d1e4
Show file tree

Hide file tree

Showing 12 changed files with 482 additions and 17 deletions.
diff --git a/Draculabo_ZICL1st.md b/Draculabo_ZICL1st.md
@@ -164,8 +164,15 @@ timezone: Asia/Shanghai
 - 学习主题：Plonk 核心实现 [](https://github1s.com/dusk-network/plonk)
 - 学习内容小结：
 1. 研究 Plonk 代码实现
+
 ### 2024.08.14
 
+- 学习主题：Plonk 核心实现 [](https://github1s.com/dusk-network/plonk)
+- 学习内容小结：
+1. 研究 Plonk 代码实现
+
+### 2024.08.15
+
 - 学习主题：Plonk 核心实现 [](https://github1s.com/dusk-network/plonk)
 - 学习内容小结：
 1. 研究 Plonk 代码实现

diff --git a/Dust_ZICL1st.md b/Dust_ZICL1st.md
@@ -238,5 +238,23 @@ https://learnblockchain.cn/article/6188
 2. 索引用来标注节点顺序
 3. 排序需要用到条件swap
 
+### 2024.08.12
+
+- 学习主题: circom 实用电路学习
+- 学习内容：约束类型
+1. 约束分成常量、线性表达式、二次表达式、非二次表达式
+2. <==相当于 <-- 及 ===
+3. <--会分配一个二次表达式，但不会添加任何约束
+
+### 2024.08.13
+
+- 学习主题: circom 实用电路学习
+- 学习内容：约束简化
+1. 约束简化参数分成三类 -o0 不简化 -o1 弱简化 -o2 完全简化
+2. 约束简化可以移除线性约束，将其约束到其它二次约束中（因为无成本的加法）
+3. 约束简化不能移除公共输入和输出
+4. 实际测试中，对于a(pub input), b(input), c(output)，对于 c <== a; 存在1个线性约束,对于 c <== b; 不存在线性约束；
+
+
 <!-- Content_END -->
 
diff --git a/HazelGong_ZICL1st.md b/HazelGong_ZICL1st.md
@@ -251,4 +251,9 @@ Naive 协议：
 
 blog 2 - 5: 用 blog 1 的 proof 构建通用 zk-SNARK 的协议。没有完全理解。待梳理。
 
+### 2024.08.14
+
+看 [ZKP Lecture 2: Overview of Modern SNARK Constructions](https://www.youtube.com/watch?v=bGEXYpt3sj0)。
+
+
 <!-- Content_END -->
diff --git a/Lu_ZICL1st.md b/Lu_ZICL1st.md
@@ -227,4 +227,7 @@ GPT解释：同态加密的解谜过程固定。难度是受解密密钥和算
 - 3) 乘法可以看成是 group of stretching/squishing actions，aka multiplicative group of positive real numbers -> multiplicative group of complex numbers
  `GPT解释number的各种分类：在等式x²+1 = 0中，无real numbers解，因为实数不可能是负数，可是可以有复数解，解是个虚数imaginary unit。还有，5+0i是pure real numbers，0+2i是pure imaginary numbers，3+4i是general complex numbers`
 - 剩10分钟幂函数这块明天在看。
+
+### 2024.08.13
+- 幂函数对于群论的作用？Adding inputs = multiply outputs
 <!-- Content_END -->
diff --git a/README.md b/README.md
@@ -106,51 +106,51 @@ ZK 的原理是什么？为什么能实现隐私保护？ZK 技术为什么被
 | Ache | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | Rayerleier | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | |
 | Lambert | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
-| Draculabo | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | | | | |
+| Draculabo | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | | | |
 | Suweet | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
-| Leo | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ |   | | | | |
+| Leo | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | |
 | Iyi | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
 | cin | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | Cora | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | |
-| Tim0 | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ⭕️ |   | | | | |
+| Tim0 | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ⭕️ | ❌ | | | | |
 | YuanboXie | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | |
 | AricRedemption | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | Derick | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
 | Stone | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
 | Xiongyi | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | |
-| Oscar | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | | | | |
+| Oscar | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | | | |
 | Alex | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | |
 | ChloeZhu | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ❌ | | | | | | | | | | | | | | | |
 | Ziicu2019 | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | |
 | Hansen | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | |
-| xiaodongQ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ |   | | | | |
-| Ray | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | | |
+| xiaodongQ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | |
+| Ray | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | |
 | monnaliya | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | |
 | tom_jerry | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | barry | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | |
-| Dust | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ |   | | | | |
+| Dust | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ |   | | | |
 | Transnature | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
 | Antigone4224 | ✅ | ✅ | ⭕️ | ✅ | ✅ | ⭕️ | ❌ | | | | | | | | | | | | | | |
 | Alvan | ✅ | ⭕️ | ✅ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
-| Yiyanwannian | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | | |
+| Yiyanwannian | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | |
 | GINAYY | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | Coooder | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | |
-| liujianyu2022 | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ |   | | | | |
-| Capybara | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ |   | | | | |
+| liujianyu2022 | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ |   | | | |
+| Capybara | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ |   | | | |
 | billchen-818 | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | |
 | hython | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | |
-| spn | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | | |
-| HazelGong | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ |   | | | | |
-| Punkcan | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ |   | | | | |
-| Zemmer | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ |   | | | | |
-| Lu | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ |   | | | | |
+| spn | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ |   | | | |
+| HazelGong | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ |   | | | |
+| Punkcan | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ |   | | | |
+| Zemmer | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | |
+| Lu | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ⭕️ |   | | | |
 | Zedz | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | |
 | jidalii | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | 0xhardman | ✅ | ⭕️ | ✅ | ✅ | ⭕️ | ❌ | | | | | | | | | | | | | | | |
 | Kero | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | Warmzhang | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
 | treesirop | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | | | | | | | |
-| btou | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | | |
+| btou | ✅ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |   | | | |
 | ocean | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | |
 | maxwell | ✅ | ⭕️ | ✅ | ✅ | ✅ | ⭕️ | ✅ | ⭕️ | ⭕️ | ❌ | | | | | | | | | | | |
 <!-- END_COMMIT_TABLE -->
@@ -346,6 +346,20 @@ ZK 的原理是什么？为什么能实现隐私保护？ZK 技术为什么被
 
 
 
+
+
+
+
+
+
+
+
+
+
+
+
+
+
 
 
 

diff --git a/Ray_ZICL1st.md b/Ray_ZICL1st.md
@@ -288,5 +288,15 @@ timezone: Pacific/Auckland # 新西兰标准时间 (UTC+12)
         - Bob 验证 p = t*h，如果多项式相等，就意味着 t(x) 是 p(x) 的因式
     - 这种校验方式要求多项式系数也是整数，对协议产生了很大的限制（这里比较难理解，需要消化一下）
 
+### 2024.08.14
+- 学习主题：zk-SNARK 学习
+- 学习内容小结：
+    - 如果 Alice 不知道真正的 p(x)，那么就可以会使用一个假的 p(x)，其中并不包括必须的因式，所以就会产生一个余数，导致最后算出的结果不是整数，那么 Bob 就会发现 Alice 并不真正知道这个结果，然后就会拒绝这个证明，但是这样同样也要求多项式的系数必须是证书，这样就对协议产生了很大的限制，需要让这个余数不被整除（即使这个原始值可以被整除）
+    - 利用因式构造证明协议的缺陷：
+        - 一旦 Alice 知道了 t(r)，就可以反过来构造一个可以整除 t(r) 的 p(r)
+        - Alice 知道了点(r, t(r)*h(r))，就可以构造经过这一点的任意（高次）多项式来满足校验条件
+        - 协议并没有对 prover 的多项式阶数进行约束
+    - 所以关键是 r 这个值能不能隐藏起来不可见，这里可以通过模运算来解决这个问题
+
 
 <!-- Content_END -->
diff --git a/Yiyanwannian_ZICL1st.md b/Yiyanwannian_ZICL1st.md
@@ -347,5 +347,12 @@ timezone: Pacific/Auckland # 新西兰标准时间 (UTC+12)
   - snarkjs 代码转电路的js库
   - Semaphore 一种zk协议，可以用来构建zk应用：私人投票、举报、匿名去中心化自治组织和混合器等
 
+### 2024.08.14
+
+- 学习主题：
+  - circom本地环境搭建
+- 学习内容小结：
+  - circom本地环境搭建
+
 
 <!-- Content_END -->