Tags → #solana

Fitting F_RP in 656 bytes on Solana

10 May 2026

Concrete F_RP instantiation on Solana. Groth16 over BN254, Poseidon Merkle, indexed nullifier tree, BN254 Pedersen, transaction in 656 of 1,232 bytes, 235K of 1.4M CU.
SPST: a self-paying shielded transaction model

30 Apr 2026

First construction in F_RP. The SPST relation, balance conservation under DLOG, double-spend resistance under collision-resistant PRF, unlinkability under DDH, simulation-extractable non-malleability.
Merkle inclusion proofs over compressed account state on Solana

29 Apr 2026

How a 32-byte hash and a logarithmic path replace a multi-kilobyte account. Walk the tree-height math, the Light Protocol compressed-account model, and an inclusion-proof construction you can run in Node.
Relayerless privacy on a Turing-complete L1: an intro to F_RP

26 Apr 2026

A series-opening map of the relayerless full-privacy framework I've been writing up. Five cryptographic games, four constructions (SPST, PPST, TAB, UPEE), one main theorem — and why it matters that the target chain is Solana.
Stuck Sell, Post-Graduation: Fixing a Trapped-Funds Bug Without a Redeploy

19 Apr 2026

A graduated launchpad token left users unable to sell. Fix shipped without redeploying the program: a frontend conversion path that withdraws SPL, compresses, then sells through the AMM.
Nullifiers without the witchcraft

2 Apr 2026

Nullifier Generation is on the ZERA front page next to Pedersen Commitments and Zero-Knowledge Proofs. The Rust + TypeScript implementations are six lines apiece. Here is what they actually do, and why the design borrows from Zcash.
144 Tests and a Surfpool Devnet

1 Apr 2026

How the Zera SDK got from "scaffolded" to "trustable" — a 144-test Vitest suite, a Surfpool-forked devnet running on a Latitude box, and a quickstart that actually works.
x402 Vector 2: partial-signing instruction injection

23 Mar 2026

The x402 client builds and partially signs the entire VersionedTransaction. A facilitator that validates structure but not bytes can co-sign a tx with extra clawback / drain instructions appended after the legitimate transfer.
x402 Vector 1: settlement race condition

22 Mar 2026

Coinbase x402's verify→settle pipeline isn't atomic. A client can submit the same PAYMENT-SIGNATURE to multiple facilitators in parallel, or race the facilitator with a direct on-chain submission. Double-spend within blockhash validity (~60s).
x402 Vector 3: facilitator gas drain

21 Mar 2026

x402 facilitators pay all transaction fees and the spec defines no per-client rate limit. A flood of valid-looking transactions that fail at maximum compute-unit consumption is a per-request economic attack on the facilitator.

Tags → #solana

# Fitting F_RP in 656 bytes on Solana

# SPST: a self-paying shielded transaction model

# Merkle inclusion proofs over compressed account state on Solana

# Relayerless privacy on a Turing-complete L1: an intro to F_RP

# Stuck Sell, Post-Graduation: Fixing a Trapped-Funds Bug Without a Redeploy

# Nullifiers without the witchcraft

# 144 Tests and a Surfpool Devnet

# x402 Vector 2: partial-signing instruction injection

# x402 Vector 1: settlement race condition

# x402 Vector 3: facilitator gas drain

Fitting F_RP in 656 bytes on Solana

SPST: a self-paying shielded transaction model

Merkle inclusion proofs over compressed account state on Solana

Relayerless privacy on a Turing-complete L1: an intro to F_RP

Stuck Sell, Post-Graduation: Fixing a Trapped-Funds Bug Without a Redeploy

Nullifiers without the witchcraft

144 Tests and a Surfpool Devnet

x402 Vector 2: partial-signing instruction injection

x402 Vector 1: settlement race condition

x402 Vector 3: facilitator gas drain