Relax DKG ceremony constraints

[piotr-roslaniec]

Type of PR:

• Feature

Required reviews:

• 1

What this does:

• DKG now operates under relaxed ceremony constraints, where instead of n-of-m we allow for n-of-[m, validators.len()] to be considered a successful ceremony
• In this new regime, the old shares_num is effectively replaced by validators.len(), and from now on shares_num denotes the minimum number of shares (or validators) that the DKG ceremony accommodates

Issues fixed/closed:

• Fixes: Relax DKG ceremony constraints #170

Notes for reviewers:

• Based on Validator ordering changes #172 - Please review it first
• CI fails because of unrelated MSRV issue with CI dependencies
• Remaining comments will be addressed in a follow-up PR, including newly created Precomputed variant should work with a threshold number of shares and not need all of them #184

[codecov-commenter]

Codecov Report

Attention: 51 lines in your changes are missing coverage. Please review.

Comparison is base (72b8484) 78.28% compared to head (6b90715) 78.17%.
Report is 1 commits behind head on main.

Files	Patch %	Lines
ferveo/src/bindings_python.rs	65.11%	45 Missing ⚠️
ferveo/src/bindings_wasm.rs	0.00%	5 Missing ⚠️
ferveo/src/dkg.rs	98.21%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #173      +/-   ##
==========================================
- Coverage   78.28%   78.17%   -0.11%     
==========================================
  Files          24       24              
  Lines        5066     5224     +158     
==========================================
+ Hits         3966     4084     +118     
- Misses       1100     1140      +40     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[cygnusv]

Suggested change

	shares_to_use=validators_num - 1,
	shares_to_use=threshold - 1,

[cygnusv]

It should be possible to verify any subset of size shares_num, but I guess you still need the original number of validators to get the proper evaluation domain, so it seems both parameters are needed?

[cygnusv]

Precomputed variant comment, definitely not for this PR. Opened #184

[cygnusv]

I'm not sure this should fail only because the number of transcripts is insufficient. This test is probably expecting a failure due to an unrelated issue.

[piotr-roslaniec]

I rewrote assertions in these tests to provide more clarity on what is being checked.

[cygnusv]

@piotr-roslaniec and I decided to move forward for the moment, but my comments in the review are still outstanding. Some of them only require light touches to tests (mainly those related to #179), while others require a bit more of work. Comments related to the precomputed variant are also outstanding (see #184) but are not a priority.