Project Information
CATEGORY
Zero-Knowledge Virtual Machines (ZK-VM)
NETWORK
Solana
WEBSITE
https://risczero.com/
DESCRIPTION
From Sep. 4, 2024 to Sep. 6, 2024, RISC Zero engaged Veridise to review the security of their risc0-solana library. The review covered a library which provides functionality for utilizing and verifying RISC Zero proofs on the Solana blockchain. Veridise conducted the assessment over 9 person-days, with 3 engineers reviewing code over 3 days on commit 84a1929. The auditing strategy involved an extensive manual code review performed by Veridise engineers.
Audit Report
SCOPE
The scope of this audit is limited to the src\lib.rs file of the source code provided by the risc0-solana developers, which contains the Groth16 proof verifier of risc0-solana. The library also makes frequent use of the Solana alt_bn_128 library which the Veridise auditors noted was out of scope for this audit.