Add Musig2 module #716
Add Musig2 module #716
Conversation
| // - Key agg cache is valid | ||
| // - extra input is 32 bytes | ||
| // This can only happen when the session id is all zeros | ||
| Err(MusigNonceGenError::ZeroSession) |
There was a problem hiding this comment.
IMO this should be just panic. It can only happen if someone passes wrong value to dangerous ID creation function.
jlest01
force-pushed
the
musig2-module
branch
6 times, most recently
from
447a94c
to
e730b8b
Compare
jlest01
force-pushed
the
musig2-module
branch
3 times, most recently
from
a91d293
to
8bbd0d2
Compare
|
This is a 10 thousand line diff, is something commited that shouldn't be? |
|
It updates the vendored library to bring in the upstream MuSig PR. |
Yes. For now, only the last three commits matter for review purposes. |
|
Cool, thanks. To clarify this is going to wait till upstream merges before being considered for merge, right? What sort of review are you chasing? |
|
@tcharding I will definitely not ack this until it's upstream is released. However I appreciate the experiment/demo. |
jlest01
force-pushed
the
musig2-module
branch
3 times, most recently
from
0a2361b
to
86e2b28
Compare
Yes, the idea is to wait for the upstream PR to be merged. |
| impl MusigSecNonce { | ||
| pub fn new() -> Self { | ||
| MusigSecNonce([0; MUSIG_SECNONCE_LEN]) | ||
| } |
There was a problem hiding this comment.
Isn't this highly misleading? If it's all-zeros it's not a nonce and thus broken. Where would one need it?
secp256k1-sys/src/lib.rs
Outdated
| MusigSecNonce([0; MUSIG_SECNONCE_LEN]) | ||
| } | ||
|
|
||
| /// Don't use this. Refer to the documentation of wrapper APIs in the crate. |
There was a problem hiding this comment.
The documentation of these methods is intended for the higher-level API implementors not for for end consumers so it should rather properly describe what's going on here.
| impl_raw_debug!(MusigPubNonce); | ||
|
|
||
| impl MusigPubNonce { | ||
| pub fn new() -> Self { |
| fn default() -> Self { | ||
| Self::new() | ||
| } | ||
| } |
There was a problem hiding this comment.
It looks to me that none of these Defaults should exist. People should just use arrays or MaybeUninit<T> to represent the uninitialized state.
There was a problem hiding this comment.
Are you suggesting something like this ?
let key_agg_cache = MaybeUninit::<ffi::MusigKeyAggCache>::uninit();
let mut key_agg_cache = key_agg_cache.assume_init();This will cause UB (without MaybeUninit::write).
The reason for pub fn new() is that the internal array is private (ex: pub struct MusigKeyAggCache([c_uchar; MUSIG_KEYAGG_LEN]);), which is consistent with the other structs in the code.
|
|
||
| #[repr(C)] | ||
| #[derive(Copy, Clone, PartialEq, Eq, PartialOrd, Ord, Hash)] | ||
| pub struct MusigPartialSignature([c_uchar; MUSIG_PART_SIG_LEN]); |
There was a problem hiding this comment.
FTR these struct declarations looked wrong but are indeed correct based on the current API.
There was a problem hiding this comment.
Do you think they should be changed?
src/musig.rs
Outdated
| #[derive(Debug, Clone, Copy, Eq, PartialEq, PartialOrd, Ord, Hash)] | ||
| pub enum ParseError { | ||
| /// Length mismatch | ||
| ArgLenMismatch { |
There was a problem hiding this comment.
We usually name these InvalidLength.
jlest01
force-pushed
the
musig2-module
branch
from
86e2b28
to
071ac15
Compare
|
Upstream was released yesterday |
|
Can you rebase and format each commit with the nightly formatter? That should fix CI. |
jlest01
force-pushed
the
musig2-module
branch
from
071ac15
to
7f76102
Compare
Yes, done. Thanks. |
|
Patch 1 can be removed now, right? Then your shellcheck CI fail should disappear. |
jlest01
force-pushed
the
musig2-module
branch
from
7f76102
to
6e2d803
Compare
|
@tcharding Thanks. But due to the difference in the upstream codebase, |
This PR adds a
musigmodule based on bitcoin-core/secp256k1#1479.The structure is based on @sanket1729's BlockstreamResearch/rust-secp256k1-zkp#48, but I removed the code related to adaptor signatures.
There is an example file in
examples/musig.rsand can be run withcargo run --example musig --features "rand std".The
ffifunctions were added tosecp256k1-sys/src/lib.rsand the API level functions to the newsrc/musig.rsfile.