[T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates #1501

yeastplume · 2018-09-10T16:56:32Z

This is ready now (but needs to be kept up-to-date until we're ready for a T4 merge)

Contains:

Aggsig enhancements for Add total public excess to Schnorr challenge #1423. Contained in rust-libsecp256k1 and Grin is now including the public-key sum total in e
Aggsig signature hash being computed incorrectly Aggsig signature hash being computed incorrectly #1358
rust-libsecp256k1 API provides ability to contain an optional extra key in the signature: Optional extra key in signature secp256k1-zkp#25 (this is not being used directly by Grin at present)
Modifications to Bulletproof API updates to support multi-party bulletproofs Multi-party bulletproof secp256k1-zkp#24 (note this is contained in the libsecp256k1 at present, but not exposed in rust-libsecp256k1)
Modification to Bulletproof API to support 16 bytes of arbitrary message (for BIP32 Compliance, below) mimblewimble/secp256k1-zkp@e6f1191

And updates the wallet to use BIP32 paths internally as per #1428. This includes:

The wallet supports multiple named accounts, with each 'account' being a mapping between a label
and a BIP32 'parent path'
BIP32 'parent paths' are set according to recommendations in the BIP32 spec. The 'default' account parent path is 'm/0/0' and outputs for this account are given IDs 'm/0/0/1', 'm/0/0/2' etc... the next created account will have parent 'm/1/0' with outputs at 'm/1/0/0', 'm/1/0/1' etc
Internal wallet identifiers are encoded 4-level deep BIP32 paths.
BIP32 path is encoded in an output's bulletproof on creation, so it can be recovered along with the amount by rewinding with the original nonce, which is blake2(commit|secret_key(m), (secret key of being the root path m generated by the wallet seed/password)
All outputs and transactions are created against the active wallet account, which defaults to an account called 'default' (so no change in usage if account functionality is ignored by the user)
Commands and switches to create and switch active account for wallet commands + Documentation
Wallet restore will restore all outputs as per the path stored in the bulletproof, and re-create accounts for any detected parent paths. Also no longer needs to grind to find keys, so should be much faster overall.

yeastplume · 2018-09-19T11:03:40Z

Done now. Modified top comment to reflect all of the changes contained in this PR.

yeastplume added 2 commits September 10, 2018 16:39

change keychain to use bip32 paths

496b160

convert keychain to use bip32

b234e8f

yeastplume added the consensus breaking label Sep 10, 2018

yeastplume added this to the Testnet4 milestone Sep 10, 2018

yeastplume added 20 commits September 11, 2018 10:04

Merge branch 'master' into bip-32-change

f5e93d6

change identifier to be serialisation of 4-level bip32 path

114fb94

wallet changes compiling, pass parent key into all wallet functions

e5a53e7

rustfmt

c312e74

Merge branch 'master' into bip-32-change

e9b8d8a

fix tests in chain

fb6fe58

rustfmt

02c5dac

core tests passing

6e0bffc

rustfmt

f60b1bd

pool tests

e3cc67d

rustfmt

6d1456a

fixing wallet tests

7eec5a6

rustfmt

41c975c

remove file wallet

2cf815c

wallet tests compiling

8af1a5f

rustfmt

667ad20

remove db_migrate

296ff30

successful tx exchange test using BIP32 paths

c85200b

rustfmt

6cbd4d4

fix wallet derivation paths to m/0/0/0

00a7eab

yeastplume mentioned this pull request Sep 12, 2018

BIP39 Support #1502

Merged

yeastplume added 5 commits September 12, 2018 15:58

wallet test fixed again, working with default path

90e1c1e

rustfmt

9bd3b74

fix server tests

5bd26ef

rustfmt

9816542

make parent_id a trait on walletbackend

fa7124a

yeastplume added 4 commits September 19, 2018 09:36

rustfmt

6cce0df

add wallet account commands

cb65dd1

rustfmt

688c0eb

update wallet documentation

b79ae56

yeastplume changed the title ~~[WIP, DNM] T4 BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates~~ [T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates Sep 19, 2018

yeastplume added 19 commits September 21, 2018 08:51

Merge branch 'master' into bip-32-change

066f818

merge from master

5221a79

rustfmt

983cc6b

merge from master

39c71d7

merge from master

ab6dc28

Merge branch 'master' into bip-32-change

bbd7a71

update libsecp tag

43f8ca3

Merge branch 'master' into bip-32-change

9058587

merge from upstream and fix server test

3ebaa36

update from master

b1b155b

rustfmt

41c844c

rebase from master

e5c2837

rustfmt

cde84e5

merge from master

8d611fd

merge from master

eece415

update latest libsecp merge

7fa4d4f

fix commitment to zero value generation

a7b1b28

Merge branch 'master' into bip-32-change

e50ffd0

Merge branch 'master' into bip-32-change

1067b3f

yeastplume changed the base branch from master to milestone/testnet4 October 10, 2018 09:10

yeastplume merged commit 6c8c483 into mimblewimble:milestone/testnet4 Oct 10, 2018

yeastplume deleted the bip-32-change branch October 10, 2018 09:11

This was referenced Oct 13, 2018

Aggsig signature hash being computed incorrectly #1358

Closed

Add total public excess to Schnorr challenge #1423

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates #1501

[T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates #1501

yeastplume commented Sep 10, 2018 •

edited

Loading

yeastplume commented Sep 19, 2018

[T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates #1501

[T4 ONLY] BIP32 Wallet Compliance - Aggsig Updates - Bulletproof Updates #1501

Conversation

yeastplume commented Sep 10, 2018 • edited Loading

yeastplume commented Sep 19, 2018

yeastplume commented Sep 10, 2018 •

edited

Loading