Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/final additional tweak #2

Open
wants to merge 13 commits into
base: frost-upstream-main
Choose a base branch
from
Open

Feature/final additional tweak #2

wants to merge 13 commits into from

Conversation

0xBEEFCAF3
Copy link
Owner

TODO:

  • unit tests for the correctness of the doubly tweaked key
  • Should we be tweaking the plain key? or x only key?
  • Should there be a context string hashed in to the additional tweak?

mergify bot and others added 4 commits December 10, 2024 13:55
@mergify
ci(mergify): upgrade configuration to current format (ZcashFoundation…
7685ff3 
…#794)

Co-authored-by: Mergify <37929162+mergify[bot]@users.noreply.github.com>
@conradoplg @mergify
core: prevent creating a zero identifier with deserialization (ZcashF…
d6c9f73 
…oundation#797)

* core: prevent creating a zero identifier with deserialization

* move test to file which is not copied to other ciphersuites

---------

Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
@natalieesk
Refresh Shares with DKG (ZcashFoundation#766)
dee685d 
* Refresh shares with DKG (ZcashFoundation#663)

* Add verification step for round2_packages for refreshing shares with DKG (ZcashFoundation#663)

* Clean up clippy issues for correct indexing with refreshing shares with DKG (ZcashFoundation#663)

* Import refresh tests for all ciphersuites (ZcashFoundation#663)

* Fix formatting (ZcashFoundation#663)
@StackOverflowExcept1on
fix(frost-secp256k1-tr): add missing pub mod refresh and missing te…
061d1cb 
…st (ZcashFoundation#806)
@0xBEEFCAF3 0xBEEFCAF3 mentioned this pull request Dec 13, 2024
Closed
@0xBEEFCAF3 0xBEEFCAF3 force-pushed the feature/final-additional-tweak branch 2 times, most recently from 3122186 to fe6dad1 Compare December 20, 2024 19:59
rex4539 and others added 6 commits December 26, 2024 18:43
@rex4539
Fix typos (ZcashFoundation#819)
db78886
@conradoplg
ci: fail on doc warnings (ZcashFoundation#809)
fa5c842
@0xBEEFCAF3
fix(frost-secp256k1-tr): empty merkle root tweak should still hash th…
39b61ec 
…e x-only pk (ZcashFoundation#815)

Per BIP-341 if there is no script paths the internal key should still be
tapTweak'd by tG where t = TaggedHash(P_x). Before this commit the
internal key and the taproot output key are the same if no script paths
are used. This is because the tweak is the 0 scalar value so Q = P + tG
= P.

It is worth noting that Bitcoin's consensus would still accept a
non-taptweak'd internal key as it verifies a signature against whatever
pk is used in the witness program. So the outputs are still spendable, however it deviates from the spec.
@0xBEEFCAF3
feature: introduce signing params
fa3664b
@0xBEEFCAF3
WIP
702e2b6
@0xBEEFCAF3
additional tweak can be optional
1b87811
@0xBEEFCAF3 0xBEEFCAF3 force-pushed the feature/final-additional-tweak branch from fe6dad1 to be21f86 Compare December 30, 2024 14:17
@0xBEEFCAF3 0xBEEFCAF3 force-pushed the feature/final-additional-tweak branch from be21f86 to c018ae3 Compare January 8, 2025 18:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@0xBEEFCAF3 @conradoplg @natalieesk @StackOverflowExcept1on @rex4539