Add HKDF_HMAC256_L32 and method to negate a private key#14047
Merged
laanwj merged 4 commits intobitcoin:masterfrom May 16, 2019
Merged
Add HKDF_HMAC256_L32 and method to negate a private key#14047laanwj merged 4 commits intobitcoin:masterfrom
laanwj merged 4 commits intobitcoin:masterfrom
Conversation
1 task
Contributor
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
sipa
reviewed
Aug 26, 2018
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
from
2130c88 to
dc02f90
Compare
jonasschnelli
added a commit
to jonasschnelli/bitcoin
that referenced
this pull request
Aug 29, 2018
Sjors
reviewed
Sep 2, 2018
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
2 times, most recently
from
75a15a3 to
a034ec2
Compare
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
from
a034ec2 to
32633ff
Compare
Contributor
Author
|
Rebased |
sipa
reviewed
Mar 25, 2019
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
from
32633ff to
acf3deb
Compare
Member
|
utACK acf3debc6a2f8b80a5de1e71bc658086c6de77b4 |
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
from
acf3deb to
65948ee
Compare
Contributor
Author
|
rebased |
sipa
reviewed
May 10, 2019
Member
sipa
left a comment
sipa
left a comment
There was a problem hiding this comment.
utACK 65948ee3d41c33cd442a6572ab9e9d071499022d, just some nits.
src/crypto/hkdf_sha256_32.cpp
Outdated
Member
There was a problem hiding this comment.
Style nit: we don't usually use the C++ cast operators for primitive types (just (const unsigned char*)salt.c_str() works).
src/crypto/hkdf_sha256_32.cpp
Outdated
jonasschnelli
force-pushed
the
2018/08/bip151_key_hkdf
branch
from
65948ee to
8794a4b
Compare
Contributor
Author
|
Thanks for the review. Fixed the C++ cast nit. |
Contributor
|
Restarted failed job. |
promag
reviewed
May 13, 2019
| @@ -0,0 +1,21 @@ | |||
| // Copyright (c) 2018 The Bitcoin Core developers | |||
| std::vector<unsigned char> salt = ParseHex(salt_hex); | ||
| std::vector<unsigned char> info = ParseHex(info_hex); | ||
|
|
||
|
|
Contributor
There was a problem hiding this comment.
nit, remove 2nd empty line.
| BOOST_CHECK(tag == tagres); | ||
| } | ||
|
|
||
| static void TestHKDF_SHA256_32(const std::string &ikm_hex, const std::string &salt_hex, const std::string &info_hex, const std::string &okm_check_hex) { |
Contributor
There was a problem hiding this comment.
nit, space after &, not before.
Member
|
utACK 8794a4b |
laanwj
added a commit
that referenced
this pull request
May 16, 2019
8794a4b QA: add test for HKDF HMAC_SHA256 L32 (Jonas Schnelli) 551d489 Add HKDF HMAC_SHA256 L=32 implementations (Jonas Schnelli) 3b64f85 QA: add test for CKey::Negate() (Jonas Schnelli) 463921b CKey: add method to negate the key (Jonas Schnelli) Pull request description: This adds a limited implementation of `HKDF` (defined by rfc5869) that supports only HMAC-SHA256 and length output of 32 bytes (will be required for v2 transport protocol). This PR also includes a method to negate a private key which is useful to enforce public keys starting with 0x02 (or 0x03) (a requirement for the v2 transport protocol). The new `CKey::Negate()` method is pretty much a wrapper around `secp256k1_ec_privkey_negate()`. Including tests. This is a subset of #14032 and a pre-requirement for the v2 transport protocol. ACKs for commit 8794a4: Tree-SHA512: 5341929dfa29f5da766ec3612784baec6a3ad69972f08b5a985a8aafdae4dae36f104a2b888d1f5d1f33561456bd111f960d7e32c2cc4fd18e48358468f26c1a
sidhujag
pushed a commit
to syscoin/syscoin
that referenced
this pull request
May 18, 2019
…ate key 8794a4b QA: add test for HKDF HMAC_SHA256 L32 (Jonas Schnelli) 551d489 Add HKDF HMAC_SHA256 L=32 implementations (Jonas Schnelli) 3b64f85 QA: add test for CKey::Negate() (Jonas Schnelli) 463921b CKey: add method to negate the key (Jonas Schnelli) Pull request description: This adds a limited implementation of `HKDF` (defined by rfc5869) that supports only HMAC-SHA256 and length output of 32 bytes (will be required for v2 transport protocol). This PR also includes a method to negate a private key which is useful to enforce public keys starting with 0x02 (or 0x03) (a requirement for the v2 transport protocol). The new `CKey::Negate()` method is pretty much a wrapper around `secp256k1_ec_privkey_negate()`. Including tests. This is a subset of bitcoin#14032 and a pre-requirement for the v2 transport protocol. ACKs for commit 8794a4: Tree-SHA512: 5341929dfa29f5da766ec3612784baec6a3ad69972f08b5a985a8aafdae4dae36f104a2b888d1f5d1f33561456bd111f960d7e32c2cc4fd18e48358468f26c1a
jasonbcox
pushed a commit
to Bitcoin-ABC/bitcoin-abc
that referenced
this pull request
Sep 9, 2020
Summary: bitcoin/bitcoin@463921b --- Partial backport of Core [[bitcoin/bitcoin#14047 | PR14047]] Test Plan: ninja Reviewers: #bitcoin_abc, deadalnix Reviewed By: #bitcoin_abc, deadalnix Differential Revision: https://reviews.bitcoinabc.org/D7393
jasonbcox
pushed a commit
to Bitcoin-ABC/bitcoin-abc
that referenced
this pull request
Sep 9, 2020
Summary: bitcoin/bitcoin@3b64f85 --- Depends on D7393 Partial backport of Core [[bitcoin/bitcoin#14047 | PR14047]] Test Plan: ninja check-bitcoin-key_tests Reviewers: #bitcoin_abc, deadalnix Reviewed By: #bitcoin_abc, deadalnix Subscribers: deadalnix Differential Revision: https://reviews.bitcoinabc.org/D7394
jasonbcox
pushed a commit
to Bitcoin-ABC/bitcoin-abc
that referenced
this pull request
Sep 9, 2020
Summary: bitcoin/bitcoin@551d489 --- Depends on D7394 Partial backport of Core [[bitcoin/bitcoin#14047 | PR14047]] Test Plan: ninja Reviewers: #bitcoin_abc, deadalnix Reviewed By: #bitcoin_abc, deadalnix Subscribers: deadalnix Differential Revision: https://reviews.bitcoinabc.org/D7395
jasonbcox
pushed a commit
to Bitcoin-ABC/bitcoin-abc
that referenced
this pull request
Sep 9, 2020
Summary: bitcoin/bitcoin@8794a4b --- Depends on D7395 Partial backport of Core [[bitcoin/bitcoin#14047 | PR14047]] Test Plan: ninja check-bitcoin-crypto_tests Reviewers: #bitcoin_abc, deadalnix Reviewed By: #bitcoin_abc, deadalnix Differential Revision: https://reviews.bitcoinabc.org/D7396
UdjinM6
pushed a commit
to UdjinM6/dash
that referenced
this pull request
Aug 10, 2021
…ate key 8794a4b QA: add test for HKDF HMAC_SHA256 L32 (Jonas Schnelli) 551d489 Add HKDF HMAC_SHA256 L=32 implementations (Jonas Schnelli) 3b64f85 QA: add test for CKey::Negate() (Jonas Schnelli) 463921b CKey: add method to negate the key (Jonas Schnelli) Pull request description: This adds a limited implementation of `HKDF` (defined by rfc5869) that supports only HMAC-SHA256 and length output of 32 bytes (will be required for v2 transport protocol). This PR also includes a method to negate a private key which is useful to enforce public keys starting with 0x02 (or 0x03) (a requirement for the v2 transport protocol). The new `CKey::Negate()` method is pretty much a wrapper around `secp256k1_ec_privkey_negate()`. Including tests. This is a subset of bitcoin#14032 and a pre-requirement for the v2 transport protocol. ACKs for commit 8794a4: Tree-SHA512: 5341929dfa29f5da766ec3612784baec6a3ad69972f08b5a985a8aafdae4dae36f104a2b888d1f5d1f33561456bd111f960d7e32c2cc4fd18e48358468f26c1a
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
9 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This adds a limited implementation of
HKDF(defined by rfc5869) that supports only HMAC-SHA256 and length output of 32 bytes (will be required for v2 transport protocol).This PR also includes a method to negate a private key which is useful to enforce public keys starting with 0x02 (or 0x03) (a requirement for the v2 transport protocol). The new
CKey::Negate()method is pretty much a wrapper aroundsecp256k1_ec_privkey_negate().Including tests.
This is a subset of #14032 and a pre-requirement for the v2 transport protocol.