musig_8h_source.html

// Copyright (c) 2024-present The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or https://www.opensource.org/licenses/mit-license.php.


#ifndef BITCOIN_MUSIG_H

#define BITCOIN_MUSIG_H


#include <pubkey.h>


#include <optional>

#include <vector>


class CKey;

struct secp256k1_musig_keyagg_cache;

class MuSig2SecNonceImpl;

struct secp256k1_musig_secnonce;


constexpr size_t MUSIG2_PUBNONCE_SIZE{66};


std::optional<CPubKey> MuSig2AggregatePubkeys(const std::vector<CPubKey>& pubkeys, secp256k1_musig_keyagg_cache& keyagg_cache, const std::optional<CPubKey>& expected_aggregate);

std::optional<CPubKey> MuSig2AggregatePubkeys(const std::vector<CPubKey>& pubkeys);


CExtPubKey CreateMuSig2SyntheticXpub(const CPubKey& pubkey);


class MuSig2SecNonce

{

private:

    std::unique_ptr<MuSig2SecNonceImpl> m_impl;


public:

    MuSig2SecNonce();

    MuSig2SecNonce(MuSig2SecNonce&&) noexcept;

    MuSig2SecNonce& operator=(MuSig2SecNonce&&) noexcept;

    ~MuSig2SecNonce();


    // Delete copy constructors

    MuSig2SecNonce(const MuSig2SecNonce&) = delete;

    MuSig2SecNonce& operator=(const MuSig2SecNonce&) = delete;


    secp256k1_musig_secnonce* Get() const;

    void Invalidate();

    bool IsValid();

};


uint256 MuSig2SessionID(const CPubKey& script_pubkey, const CPubKey& part_pubkey, const uint256& sighash, const std::vector<uint8_t>& pubnonce);


std::vector<uint8_t> CreateMuSig2Nonce(MuSig2SecNonce& secnonce, const uint256& sighash, const CKey& our_seckey, const CPubKey& aggregate_pubkey, const std::vector<CPubKey>& pubkeys);

std::optional<uint256> CreateMuSig2PartialSig(const uint256& hash, const CKey& our_seckey, const CPubKey& aggregate_pubkey, const std::vector<CPubKey>& pubkeys, const std::map<CPubKey, std::vector<uint8_t>>& pubnonces, MuSig2SecNonce& secnonce, const std::vector<std::pair<uint256, bool>>& tweaks);

std::optional<std::vector<uint8_t>> CreateMuSig2AggregateSig(const std::vector<CPubKey>& participants, const CPubKey& aggregate_pubkey, const std::vector<std::pair<uint256, bool>>& tweaks, const uint256& sighash, const std::map<CPubKey, std::vector<uint8_t>>& pubnonces, const std::map<CPubKey, uint256>& partial_sigs);


#endif // BITCOIN_MUSIG_H

CKey
An encapsulated private key.
Definition: key.h:37

CPubKey
An encapsulated public key.
Definition: pubkey.h:32

MuSig2SecNonce
MuSig2SecNonce encapsulates a secret nonce in use in a MuSig2 signing session.
Definition: musig.h:41

MuSig2SecNonce::Invalidate
void Invalidate()
Definition: musig.cpp:115

MuSig2SecNonce::IsValid
bool IsValid()
Definition: musig.cpp:120

MuSig2SecNonce::MuSig2SecNonce
MuSig2SecNonce()
Definition: musig.cpp:103

MuSig2SecNonce::Get
secp256k1_musig_secnonce * Get() const
Definition: musig.cpp:110

MuSig2SecNonce::m_impl
std::unique_ptr< MuSig2SecNonceImpl > m_impl
Definition: musig.h:43

MuSig2SecNonce::MuSig2SecNonce
MuSig2SecNonce(MuSig2SecNonce &&) noexcept

MuSig2SecNonceImpl
Definition: musig.cpp:86

uint256
256-bit opaque blob.
Definition: uint256.h:196

CreateMuSig2Nonce
std::vector< uint8_t > CreateMuSig2Nonce(MuSig2SecNonce &secnonce, const uint256 &sighash, const CKey &our_seckey, const CPubKey &aggregate_pubkey, const std::vector< CPubKey > &pubkeys)
Definition: musig.cpp:132

MuSig2SessionID
uint256 MuSig2SessionID(const CPubKey &script_pubkey, const CPubKey &part_pubkey, const uint256 &sighash, const std::vector< uint8_t > &pubnonce)
Computes an arbitrary unique session ID to identify ongoing signing sessions.
Definition: musig.cpp:125

CreateMuSig2SyntheticXpub
CExtPubKey CreateMuSig2SyntheticXpub(const CPubKey &pubkey)
Construct the BIP 328 synthetic xpub for a pubkey.
Definition: musig.cpp:74

MUSIG2_PUBNONCE_SIZE
constexpr size_t MUSIG2_PUBNONCE_SIZE
Definition: musig.h:18

CreateMuSig2PartialSig
std::optional< uint256 > CreateMuSig2PartialSig(const uint256 &hash, const CKey &our_seckey, const CPubKey &aggregate_pubkey, const std::vector< CPubKey > &pubkeys, const std::map< CPubKey, std::vector< uint8_t > > &pubnonces, MuSig2SecNonce &secnonce, const std::vector< std::pair< uint256, bool > > &tweaks)
Definition: musig.cpp:165

CreateMuSig2AggregateSig
std::optional< std::vector< uint8_t > > CreateMuSig2AggregateSig(const std::vector< CPubKey > &participants, const CPubKey &aggregate_pubkey, const std::vector< std::pair< uint256, bool > > &tweaks, const uint256 &sighash, const std::map< CPubKey, std::vector< uint8_t > > &pubnonces, const std::map< CPubKey, uint256 > &partial_sigs)
Definition: musig.cpp:254

MuSig2AggregatePubkeys
std::optional< CPubKey > MuSig2AggregatePubkeys(const std::vector< CPubKey > &pubkeys, secp256k1_musig_keyagg_cache &keyagg_cache, const std::optional< CPubKey > &expected_aggregate)
Compute the full aggregate pubkey from the given participant pubkeys in their current order.
Definition: musig.cpp:57

std
Definition: transaction.h:406

pubkey.h

CExtPubKey
Definition: pubkey.h:334

secp256k1_musig_keyagg_cache
This module implements BIP 327 "MuSig2 for BIP340-compatible Multi-Signatures" (https://github....
Definition: secp256k1_musig.h:43

secp256k1_musig_secnonce
Opaque data structure that holds a signer's secret nonce.
Definition: secp256k1_musig.h:59