Layer2 结构

Untitled

Prover的作用

exector(oldRoot, txs, newRoot) → proof

因为是trace → proof 所以exector中的函数定义和调用更像是:

一般函数形式:
div(10, 3) = 3,1
zk函数的形式:
div(10, 3, 3, 1)

PIL vs zkASM

Untitled

Vulnerability

Polygon zkEVM: Missing Remainder Constraint

Polygon zkEVM: Missing constraint in PIL leading to execution flow hijak

Polygon zkEVM: Missing constraint in PIL leading to proving fake inclusion in the SMT

Polygon zkEVM: Incorrect CTX assignation leading to addition of random amount of ether to the sequencer balance

Zendoo: Missing Polynomial Normalization after Arithmetic Operations

Ref

PIL https://github.com/0xPolygonHermez/pilcom

PIL 入门教程

PIL语法 官方Docs

hexens 审计polygonzkevm 时的blog

zkASM 语法 路人中文版