Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use secp256k1 musig2 #405

Merged
merged 42 commits into from
Jan 17, 2025
Merged

Use secp256k1 musig2 #405

merged 42 commits into from
Jan 17, 2025

Conversation

ceyhunsen
Copy link
Member

@ceyhunsen ceyhunsen commented Jan 10, 2025
edited
Loading

Description

Use the active secp256k1 branch for musig2 while replacing the musig2 crate.

Key changes:

  • Converted every secp256k1::* to bitcoin::secp256k1::* because secp256k1 library upgraded to a breaking version and we are sticking with the older bitcoin version
  • utils::SECP needs to return because bitcoin::secp256k1 doesn't feature global secp context
  • Secret nonces are not saved to database because of the security

Linked Issues

ceyhunsen and others added 22 commits January 10, 2025 10:59
@ceyhunsen
cargo: Add secp256k1 patch for musig.
14c208c
@ceyhunsen
Merge branch 'dev' into ceyhun/secp256k1_musig2
d8b2a52
@ceyhunsen
cargo: Revert secp to 0.29 and apply chainway patch.
44ef595
@ceyhunsen
cargo: Remove musig2.
e27c567
@ceyhunsen
musig2: Update functions with new secp types.
d390581
@ceyhunsen
errors: Remove old musig errors and add new ones.
5abd966
@ceyhunsen
secp_musig: Switch to the new types wherever possible.
78c570f
@ceyhunsen
database: Add MusigPubNonceDB type.
cce29a7
@ceyhunsen
database: Add new wrapper for MusigAggNonceDB and fix rest.
8cb65e9
@ceyhunsen @ekrembal
verifier-musig2: Fix copying error for nonces in deposit_sign.
b53c607 
Co-authored-by: Ekrem BAL <[email protected]>
@ceyhunsen
musig2: Fix compilation errors caused by the switch.
9fba2c6
@ceyhunsen
database: Add Message wrapper.
9dbe1a1
@ceyhunsen
core: Fix rest of the compilation errors caused by the switch.
8f72aea
@ceyhunsen
tests-musig: Fix compilation errors.
8551c4a
@ceyhunsen
clippy: Apply suggestions.
8233b19
@ceyhunsen
musig: Convert from_digest_slices to from_digest.
657bdc6
@ceyhunsen
secp: Convert secp types into bitcoin::secp.
7db716b
@ceyhunsen
musig2: Convert secp types into bitcoin::secp types.
ca1b016
@ceyhunsen
musig2: Remove tweak_flag from from_musig2_pks.
d0ccc06
@ceyhunsen
cargo: Delete config generator.
7ff92f3
@ceyhunsen
Revert "musig2: Remove tweak_flag from from_musig2_pks."
f16a977 
This reverts commit d0ccc06.
@ceyhunsen
musig2: Add initial tweak support.
1355110
@ceyhunsen ceyhunsen mentioned this pull request Jan 15, 2025
Closed
@mmtftr mmtftr mentioned this pull request Jan 16, 2025
Closed
ceyhunsen and others added 9 commits January 16, 2025 14:54
@ceyhunsen
tests: Fix musig2 test by changing musig2 tweak modes.
c115abd
@ceyhunsen
musig2: Remove xonly field from Musig2Mode.
7c5da16
@atacann @ceyhunsen
watchtower pk's for watchtower challenge page tx (#404)
d1859c1 
* Add watchtower xonly_pk to get_params and save to db

* fix clippy error

* add db helper to get single xonly_pk, remove unwrap

* Adjust sighash.rs and transaction.rs to remove nofn sigs from challenge page tx

* Incorporate Ceyhun's feedback
@ozankaymak @ceyhunsen
Ozan/change anchor (#407)
08c700a 
* Update risc0-to-bitvm2, change anchor output

* Renaming fix from circuits to header-chain
@ozankaymak @ceyhunsen
Use global context for secp256k1 (#408)
960d8fd 
* Use global context for secp256k1

* Lint

* Delete comment
@ozankaymak @ceyhunsen
Implement kickoff timeout tx (#413)
78600f7 
* Implement kickoff_timeoout_tx

* Clippy

* Add kickoff_timeout_tx to sighash_stream

* Change num_required_sigs
@ozankaymak @ceyhunsen
Remove time_tx from the inputs of operator_challenge_nack_tx (#414)
ea7ddaa
@ceyhunsen
Merge branch 'dev' into ceyhun/secp256k1_musig2
64f9c29
@ceyhunsen
merge: Fix compilation errors caused by the merge.
b0905d4
@ceyhunsen ceyhunsen marked this pull request as ready for review January 16, 2025 12:54
@ekrembal
Copy link
Member

Are there any performance improvements?

@ekrembal ekrembal changed the base branch from dev to atacan/new_design January 16, 2025 13:33
@ekrembal ekrembal changed the base branch from atacan/new_design to dev January 16, 2025 13:33
@ceyhunsen
Copy link
Member Author

ceyhunsen commented Jan 16, 2025
edited
Loading

Are there any performance improvements?

Looks like there isn't any noticable difference for rpc::aggregator::tests::aggregator_setup_and_deposit test. Because most of time is not spent on aggregation, signing etc.; It is spent on transferring this datas. It can be clearly seen on a regular OS system monitor (CPU usage).

ozankaymak
ozankaymak reviewed Jan 16, 2025
View reviewed changes
Copy link
Contributor

@ozankaymak ozankaymak left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please consider my comments before merging.

Cargo.toml Show resolved Hide resolved
core/src/musig2.rs
secp256k1::Message::from_digest(*msg.as_ref())
}

/// Possible Musig2 modes.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Needs more documentation. A comprehensive documentation issue should be fine.

core/src/musig2.rs
// Verify the signature fails with the untweaked aggregate public key
assert!(SECP
.verify_schnorr(&final_sig, &message, &agg_pk_no_tweak)
.is_err());
}
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As I have said before, we need a test for both KeySpend and ScriptSpend for musig2 belonging to the same Taproot address. Please open a new issue if this PR will be merged directly.

@mmtftr
Copy link

mmtftr commented Jan 16, 2025

I agree with @ozankaymak on the dependency documentation issue. We should document and track how to update when upstream is released.

I've looked into rust-bitcoin, and they use 0.29.1 of secp. I upgraded it to 0.30 and opened this PR. The PR should also allow us to remove the compatibility layer when merged.

For the time being, I believe we can do something like this including the comments for future reference (haven't checked syntax/validity of toml):

[dependencies]
bitcoin = "0.33.0-alpha.0" # TODO: this is a major version upgrade, look into whether anything breaks on our side
secp256k1 = "0.30.0"

[patch.crates-io]
bitcoin = { git = "https://github.com/mmtftr/rust-bitcoin.git", branch = "update-secp256k1-0.30.0" } # change to rust-bitcoin/rust-bitcoin when https://github.com/rust-bitcoin/rust-bitcoin/pull/3913 is merged
# remove when a new release is made
secp256k1 = { git = "https://github.com/jlest01/rust-secp256k1", branch = "musig2-module" } # change to rust-bitcoin/rust-secp256k1 when https://github.com/rust-bitcoin/rust-secp256k1/pull/716 is merged
# remove when a new release is made

For more info on patching, check the docs.

@ceyhunsen
Copy link
Member Author

Hold merge a bit; I am addressing the issues.

@ceyhunsen ceyhunsen mentioned this pull request Jan 17, 2025
Open
4 tasks
@ekrembal ekrembal merged commit a562f4d into dev Jan 17, 2025
9 checks passed
@ekrembal ekrembal deleted the ceyhun/secp256k1_musig2 branch January 17, 2025 10:50
@ekrembal ekrembal mentioned this pull request Jan 17, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ozankaymak ozankaymak ozankaymak left review comments

@ekrembal ekrembal ekrembal approved these changes

@mmtftr mmtftr Awaiting requested review from mmtftr

@atacann atacann Awaiting requested review from atacann

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@ceyhunsen @ekrembal @mmtftr @ozankaymak @atacann