kzg: Document kzg code further

protolambda · Mar 2, 2022 · b78632f · b78632f
1 parent 0080bf4
commit b78632f
Show file tree

Hide file tree

Showing 3 changed files with 14 additions and 17 deletions.
diff --git a/core/types/data_blob.go b/core/types/data_blob.go
@@ -324,10 +324,11 @@ func (b *BlobTxWrapData) checkWrapping(inner TxData) error {
 		}
 	}
 
-	// Extract cryptographic material out of our types and pass them to the crypto layer
+	// Time to verify that the KZG commitments match the included blobs:
+	// first extract crypto material out of our types and pass them to the crypto layer
 	commitments, err := b.BlobKzgs.Commitments()
 	if err != nil {
-		return fmt.Errorf("internal commitment error")
+		return fmt.Errorf("internal commitments error")
 	}
 	blobs, err := b.Blobs.Blobs()
 	if err != nil {

diff --git a/crypto/kzg/kzg.go b/crypto/kzg/kzg.go
@@ -36,24 +36,19 @@ func VerifyKzgProof(commitment *bls.G1Point, x *bls.Fr, y *bls.Fr, proof *bls.G1
 	var commitmentMinusY bls.G1Point
 	bls.SubG1(&commitmentMinusY, commitment, &yG1)
 
-	// This trick may be applied in the BLS-lib specific code:
-	//
-	// e([commitment - y], [1]) = e([proof],  [s - x])
-	//    equivalent to
-	// e([commitment - y]^(-1), [1]) * e([proof],  [s - x]) = 1_T
-	//
 	return bls.PairingsVerify(&commitmentMinusY, &bls.GenG2, proof, &sMinuxX)
 }
 
+// Return versioned hash that corresponds to KZG commitment
 func KzgToVersionedHash(commitment *bls.G1Point) [32]byte {
 	h := crypto.Keccak256Hash(bls.ToCompressedG1(commitment))
 	h[0] = byte(params.BlobCommitmentVersionKZG)
 	return h
 }
 
-// Verify that the list of `blobs` map to the list of `commitments`
+// Verify that the list of `commitments` maps to the list of `blobs`
 //
-// This is an optimization over the naive approach (written in the EIP) of iteratively checking each blob against each
+// This is an optimization over the naive approach (found in the EIP) of iteratively checking each blob against each
 // commitment.  The naive approach requires n*l scalar multiplications where `n` is the number of blobs and `l` is
 // FIELD_ELEMENTS_PER_BLOB to compute the commitments for all blobs.
 //
@@ -66,8 +61,8 @@ func KzgToVersionedHash(commitment *bls.G1Point) [32]byte {
 // In the above, `r` are the random scalars of the linear combination, `b0` is the zero blob, `L` are the elements
 // of the KZG_SETUP_LAGRANGE and `C` are the commitments provided.
 //
-// By re-grouping the above equation around the `L` points we can reduce the amount of scalar multiplications further
-// (down to just `n` scalar multiplications) by making the MSM look like this:
+// By regrouping the above equation around the `L` points we can reduce the length of the MSM further
+// (down to just `n` scalar multiplications) by making it look like this:
 //     (r_0*b0_0 + r_1*b1_0 + r_2*b2_0) * L_0 + (r_0*b0_1 + r_1*b1_1 + r_2*b2_1) * L_1
 func VerifyBlobs(commitments []*bls.G1Point, blobs [][]bls.Fr) error {
 	// Prepare objects to hold our two MSMs

diff --git a/tests/sharding_test.go b/tests/sharding_test.go
@@ -76,10 +76,9 @@ func ComputeProof(poly []bls.Fr, x uint64, crsG1 []bls.G1Point) *bls.G1Point {
 	return bls.LinCombG1(crsG1[:len(quotientPolynomial)], quotientPolynomial)
 }
 
+// Test the go-kzg library for correctness
+// Do the trusted setup, generate a polynomial, commit to it, make proof, verify proof.
 func TestGoKzg(t *testing.T) {
-	/// Test the go-kzg library for correctness
-	/// Do the trusted setup, generate a polynomial, commit to it, make proof, verify proof.
-
 	// Generate roots of unity
 	fs := gokzg.NewFFTSettings(uint8(math.Log2(params.FieldElementsPerBlob)))
 
@@ -131,9 +130,8 @@ func TestGoKzg(t *testing.T) {
 	}
 }
 
+// Test the geth KZG module (use our trusted setup instead of creating a new one)
 func TestKzg(t *testing.T) {
-	/// Test the geth KZG module (use our trusted setup instead of creating a new one)
-
 	// First let's do some go-kzg preparations to be able to convert polynomial between coefficient and evaluation form
 	fs := gokzg.NewFFTSettings(uint8(math.Log2(params.FieldElementsPerBlob)))
 
@@ -175,6 +173,7 @@ type JSONTestdataBlobs struct {
 	KzgBlob2 string
 }
 
+// Test the optimized VerifyBlobs function
 func TestVerifyBlobs(t *testing.T) {
 	data, err := ioutil.ReadFile("kzg_testdata/kzg_blobs.json")
 	if err != nil {
@@ -242,6 +241,7 @@ func TestVerifyBlobs(t *testing.T) {
 	}
 }
 
+// Helper: Create test vector for the BlobVerification precompile
 func TestBlobVerificationTestVector(t *testing.T) {
 	data := []byte(strings.Repeat("HELPMELOVEME ", 10083))[:params.FieldElementsPerBlob*32]
 
@@ -261,6 +261,7 @@ func TestBlobVerificationTestVector(t *testing.T) {
 	fmt.Printf("%d\n", len(testVector))
 }
 
+// Helper: Create test vector for the PointEvaluation precompile
 func TestPointEvaluationTestVector(t *testing.T) {
 	fs := gokzg.NewFFTSettings(uint8(math.Log2(params.FieldElementsPerBlob)))