chore: add audit comments #163
Conversation
| /* | ||
| If I understand correctly, the function `dispatch_proof_of_address_ownership` returns a `Result<(), Box<dyn Error>>`. | ||
| When we call unwrap on the result, it will panic if the result is an error. | ||
| Is that correct? |
There was a problem hiding this comment.
Yes, It is correct. I will modify all error propagation in the async functions.
| @@ -38,13 +38,24 @@ async fn main() -> Result<(), Box<dyn Error>> { | |||
| ) | |||
| .unwrap(); | |||
|
|
|||
| /* | |||
| I think that this part related to `address_hashes` can be safely removed. | |||
| The example should be as simple as possible. | |||
There was a problem hiding this comment.
That makes sense. There isn't any check procedure for the Submit solvency proof too.
FYI, The only reason for adding this checking step is due to the require term in the contract:
summa-solvency/contracts/src/Summa.sol
Lines 107 to 110 in ffd8259
| @@ -140,6 +169,15 @@ async fn main() -> Result<(), Box<dyn Error>> { | |||
|
|
|||
| let public_inputs = downloaded_inclusion_proof.get_public_inputs(); | |||
|
|
|||
| /* | |||
| Why leaf_hash is public_inputs[0][0] while mst_root is public_inputs[1]? | |||
| Shouldn't public_inputs be a vector with 2 elements? | |||
There was a problem hiding this comment.
I've overridden public_inputs to be a one-dimensional vector for simplicity.
However, the reason public_inputs was initially structured as a two-dimensional vector was due to the way the full_verifier function receives and processes it.
summa-solvency/zk_prover/src/circuits/utils.rs
Lines 114 to 119 in ffd8259
| @@ -29,6 +32,11 @@ impl AddressOwnership { | |||
| &self.address_ownership_proofs | |||
| } | |||
|
|
|||
| /* | |||
| If I understand correctly, an error in submit_proof_of_address_ownership is propagated to the caller. | |||
| Is that correct? | |||
There was a problem hiding this comment.
Yes, the try operator, "?", returns an Error when one occurs.
| /* | ||
| Since we are now using the `MstInclusionProof` only for on-chain verification, | ||
| why don't we replace the data type with something that can be directly consumed by the contract? | ||
| Similar to `SolvencyProof`. |
There was a problem hiding this comment.
We still support off-chain verification using the full_verifier method.
That's why I haven't changed the public_inputs type.
There was a problem hiding this comment.
I think we can set the on-chain verifcation (via the smart contract interface) as standard way to perform the proof of inclusion verification. This is because of the nice UX that it provides + full transparency on the code being executed compared to the other available solutions.
Therefore I suggest to remove every dependency that relates to off-chain verification and foucs on the on-chain path.
| @@ -78,6 +86,9 @@ where | |||
| [usize; N_ASSETS + 1]: Sized, | |||
| [usize; 2 * (1 + N_ASSETS)]: Sized, | |||
| { | |||
| /* | |||
| Build signer outside of the constructor and pass it in as a parameter. | |||
| */ | |||
There was a problem hiding this comment.
I will handle this at #155 Refactor signers
| @@ -104,6 +115,10 @@ where | |||
| self.timestamp | |||
| } | |||
|
|
|||
| /* | |||
| If I understand correctly, an error in submit_proof_of_solvency is propagated to the caller. | |||
| Is that correct? | |||
There was a problem hiding this comment.
Yes, the try operator, "?", returns an Error when one occurs.
| @@ -202,6 +217,10 @@ where | |||
| let circuit = | |||
| MstInclusionCircuit::<LEVELS, N_ASSETS, N_BYTES>::init(self.mst.clone(), user_index); | |||
|
|
|||
| /* | |||
| Why can't we get the `calldata` using `gen_proof_solidity_calldata` similar to `generate_proof_of_solvency`? | |||
| */ | |||
There was a problem hiding this comment.
We can use gen_proof_solidity_calldata similar to generate_proof_of_solvency.
However, as I mentioned earlier, the type of public_inputs is closely related to the full_verifier, which is why I've kept it as is.
There was a problem hiding this comment.
See comments above
| @@ -41,6 +41,9 @@ impl SummaSigner { | |||
| } | |||
| } | |||
|
|
|||
| /* | |||
| This method is never used. Can it be removed? | |||
| */ | |||
No description provided.