str4d
commented
1 month ago I'm fine with adding this kind of API behind an unstable cfg option, but I think that this API is not what we will want in the final production release, because I suspect we will not want people to pass around aks on their own (that will lead to partial loss of necessary details, and sadness).
To figure out the production API, we need to first finish the Key Generation part of ZIP 312. I'd started sketching that out in https://github.com/zcash/zips/pull/662#discussion_r1465663928 which I will move into a separate PR; once we've figured that out, we can provide higher-level APIs in this crate that produce the actual types we need.
pacu
According to the FROST book the ASK is split using FROST and its verifying key is the ak that should be used to generate the Orchard Full Viewing Key.
Allow SpendValidatingKey to be constructed from bytes
closes #427
As we agreed with @daira at Z|ECC, this adds a FROST feature flag so that public interface of the crate is not altered in its meaning for non-FROST applications.
Key derivation is intended to be done on a specific way for usual applications. Interface changes introduce by FROST can pose a risk for the rest of the use cases that don't involve the assumptions of the FROST signature scheme protocol. we don't want non-FROST cases to make use the helper functions FROST needs to derive the needed key elements.
There are other changes pending to make FROST work with Orchard. Those changes will also be under this same feature flag