pubkey_8h_source.html

 // Copyright (c) 2009-2010 Satoshi Nakamoto
 // Copyright (c) 2009-2020 The Bitcoin Core developers
 // Copyright (c) 2017 The Zcash developers
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.

 #ifndef BITCOIN_PUBKEY_H
 #define BITCOIN_PUBKEY_H

 #include <hash.h>
 #include <serialize.h>
 #include <span.h>
 #include <uint256.h>

 #include <stdexcept>
 #include <vector>

 const unsigned int BIP32_EXTKEY_SIZE = 74;

 class CKeyID : public uint160
 {
 public:
     CKeyID() : uint160() {}
     explicit CKeyID(const uint160& in) : uint160(in) {}
 };

 typedef uint256 ChainCode;

 class CPubKey
 {
 public:
     static constexpr unsigned int SIZE                   = 65;
     static constexpr unsigned int COMPRESSED_SIZE        = 33;
     static constexpr unsigned int SIGNATURE_SIZE         = 72;
     static constexpr unsigned int COMPACT_SIGNATURE_SIZE = 65;
     static_assert(
         SIZE >= COMPRESSED_SIZE,
         "COMPRESSED_SIZE is larger than SIZE");

 private:

     unsigned char vch[SIZE];

     unsigned int static GetLen(unsigned char chHeader)
     {
         if (chHeader == 2 || chHeader == 3)
             return COMPRESSED_SIZE;
         if (chHeader == 4 || chHeader == 6 || chHeader == 7)
             return SIZE;
         return 0;
     }

     void Invalidate()
     {
         vch[0] = 0xFF;
     }

 public:

     bool static ValidSize(const std::vector<unsigned char> &vch) {
       return vch.size() > 0 && GetLen(vch[0]) == vch.size();
     }

     CPubKey()
     {
         Invalidate();
     }

     template <typename T>
     void Set(const T pbegin, const T pend)
     {
         int len = pend == pbegin ? 0 : GetLen(pbegin[0]);
         if (len && len == (pend - pbegin))
             memcpy(vch, (unsigned char*)&pbegin[0], len);
         else
             Invalidate();
     }

     template <typename T>
     CPubKey(const T pbegin, const T pend)
     {
         Set(pbegin, pend);
     }

     explicit CPubKey(const std::vector<unsigned char>& _vch)
     {
         Set(_vch.begin(), _vch.end());
     }

     unsigned int size() const { return GetLen(vch[0]); }
     const unsigned char* data() const { return vch; }
     const unsigned char* begin() const { return vch; }
     const unsigned char* end() const { return vch + size(); }
     const unsigned char& operator[](unsigned int pos) const { return vch[pos]; }

     friend bool operator==(const CPubKey& a, const CPubKey& b)
     {
         return a.vch[0] == b.vch[0] &&
                memcmp(a.vch, b.vch, a.size()) == 0;
     }
     friend bool operator!=(const CPubKey& a, const CPubKey& b)
     {
         return !(a == b);
     }
     friend bool operator<(const CPubKey& a, const CPubKey& b)
     {
         return a.vch[0] < b.vch[0] ||
                (a.vch[0] == b.vch[0] && memcmp(a.vch, b.vch, a.size()) < 0);
     }

     template <typename Stream>
     void Serialize(Stream& s) const
     {
         unsigned int len = size();
         ::WriteCompactSize(s, len);
         s.write((char*)vch, len);
     }
     template <typename Stream>
     void Unserialize(Stream& s)
     {
         unsigned int len = ::ReadCompactSize(s);
         if (len <= SIZE) {
             s.read((char*)vch, len);
             if (len != size()) {
                 Invalidate();
             }
         } else {
             // invalid pubkey, skip available data
             char dummy;
             while (len--)
                 s.read(&dummy, 1);
             Invalidate();
         }
     }

     CKeyID GetID() const
     {
         return CKeyID(Hash160(MakeSpan(vch).first(size())));
     }

     uint256 GetHash() const
     {
         return Hash(MakeSpan(vch).first(size()));
     }

     /*
      * Check syntactic correctness.
      *
      * When setting a pubkey (Set()) or deserializing fails (its header bytes
      * don't match the length of the data), the size is set to 0. Thus,
      * by checking size, one can observe whether Set() or deserialization has
      * failed.
      *
      * This does not check for more than that. In particular, it does not verify
      * that the coordinates correspond to a point on the curve (see IsFullyValid()
      * for that instead).
      *
      * Note that this is consensus critical as CheckECDSASignature() calls it!
      */
     bool IsValid() const
     {
         return size() > 0;
     }

     bool IsFullyValid() const;

     bool IsCompressed() const
     {
         return size() == COMPRESSED_SIZE;
     }

     bool Verify(const uint256& hash, const std::vector<unsigned char>& vchSig) const;

     static bool CheckLowS(const std::vector<unsigned char>& vchSig);

     bool RecoverCompact(const uint256& hash, const std::vector<unsigned char>& vchSig);

     bool Decompress();

     bool Derive(CPubKey& pubkeyChild, ChainCode &ccChild, unsigned int nChild, const ChainCode& cc) const;
 };

 class XOnlyPubKey
 {
 private:
     uint256 m_keydata;

 public:
     explicit XOnlyPubKey(Span<const unsigned char> bytes);

     bool VerifySchnorr(const uint256& msg, Span<const unsigned char> sigbytes) const;
     bool CheckPayToContract(const XOnlyPubKey& base, const uint256& hash, bool parity) const;

     const unsigned char& operator[](int pos) const { return *(m_keydata.begin() + pos); }
     const unsigned char* data() const { return m_keydata.begin(); }
     size_t size() const { return m_keydata.size(); }
 };

 struct CExtPubKey {
     unsigned char nDepth;
     unsigned char vchFingerprint[4];
     unsigned int nChild;
     ChainCode chaincode;
     CPubKey pubkey;

     friend bool operator==(const CExtPubKey &a, const CExtPubKey &b)
     {
         return a.nDepth == b.nDepth &&
             memcmp(&a.vchFingerprint[0], &b.vchFingerprint[0], sizeof(vchFingerprint)) == 0 &&
             a.nChild == b.nChild &&
             a.chaincode == b.chaincode &&
             a.pubkey == b.pubkey;
     }

     friend bool operator!=(const CExtPubKey &a, const CExtPubKey &b)
     {
         return !(a == b);
     }

     void Encode(unsigned char code[BIP32_EXTKEY_SIZE]) const;
     void Decode(const unsigned char code[BIP32_EXTKEY_SIZE]);
     bool Derive(CExtPubKey& out, unsigned int nChild) const;
 };

 class ECCVerifyHandle
 {
     static int refcount;

 public:
     ECCVerifyHandle();
     ~ECCVerifyHandle();
 };

 #endif // BITCOIN_PUBKEY_H
XOnlyPubKey
Definition: pubkey.h:219

CExtPubKey::vchFingerprint
unsigned char vchFingerprint[4]
Definition: pubkey.h:242

CPubKey::GetLen
unsigned static int GetLen(unsigned char chHeader)
Compute the length of a pubkey with a given first byte.
Definition: pubkey.h:58

ChainCode
uint256 ChainCode
Definition: pubkey.h:28

CPubKey::operator<
friend bool operator<(const CPubKey &a, const CPubKey &b)
Definition: pubkey.h:126

span.h

CPubKey::vch
unsigned char vch[SIZE]
see www.keylength.com script supports up to 75 for single byte push
Definition: pubkey.h:47

ReadCompactSize
uint64_t ReadCompactSize(Stream &is, bool range_check=true)
Decode a CompactSize-encoded variable-length integer.
Definition: serialize.h:318

WriteCompactSize
void WriteCompactSize(CSizeComputer &os, uint64_t nSize)
Definition: serialize.h:1110

CKeyID::CKeyID
CKeyID(const uint160 &in)
Definition: pubkey.h:25

CPubKey::Invalidate
void Invalidate()
Set this key data to be invalid.
Definition: pubkey.h:68

CPubKey::Set
void Set(const T pbegin, const T pend)
Initialize a public key using begin/end iterators to byte data.
Definition: pubkey.h:87

ECCVerifyHandle::refcount
static int refcount
Definition: pubkey.h:270

CPubKey::GetHash
uint256 GetHash() const
Get the 256-bit hash of this public key.
Definition: pubkey.h:165

CExtPubKey::nDepth
unsigned char nDepth
Definition: pubkey.h:241

hash.h

CPubKey::operator[]
const unsigned char & operator[](unsigned int pos) const
Definition: pubkey.h:114

CPubKey::Unserialize
void Unserialize(Stream &s)
Definition: pubkey.h:141

CExtPubKey::chaincode
ChainCode chaincode
Definition: pubkey.h:244

base_blob::begin
unsigned char * begin()
Definition: uint256.h:58

CExtPubKey::nChild
unsigned int nChild
Definition: pubkey.h:243

CPubKey::operator==
friend bool operator==(const CPubKey &a, const CPubKey &b)
Comparator implementation.
Definition: pubkey.h:117

CPubKey::GetID
CKeyID GetID() const
Get the KeyID of this public key (hash of its serialization)
Definition: pubkey.h:159

CPubKey::begin
const unsigned char * begin() const
Definition: pubkey.h:112

CPubKey::Serialize
void Serialize(Stream &s) const
Implement serialization, as if this was a byte vector.
Definition: pubkey.h:134

CPubKey::ValidSize
static bool ValidSize(const std::vector< unsigned char > &vch)
Definition: pubkey.h:75

ECCVerifyHandle
Users of this module must hold an ECCVerifyHandle.
Definition: pubkey.h:268

CExtPubKey::operator==
friend bool operator==(const CExtPubKey &a, const CExtPubKey &b)
Definition: pubkey.h:247

CExtPubKey::operator!=
friend bool operator!=(const CExtPubKey &a, const CExtPubKey &b)
Definition: pubkey.h:256

serialize.h

XOnlyPubKey::size
size_t size() const
Definition: pubkey.h:237

CPubKey::end
const unsigned char * end() const
Definition: pubkey.h:113

CPubKey::CPubKey
CPubKey()
Construct an invalid public key.
Definition: pubkey.h:80

CPubKey::IsValid
bool IsValid() const
Definition: pubkey.h:184

CPubKey
An encapsulated public key.
Definition: pubkey.h:31

CPubKey::size
unsigned int size() const
Simple read-only vector-like interface to the pubkey data.
Definition: pubkey.h:110

base_blob< 160 >::size
unsigned int size() const
Definition: uint256.h:78

XOnlyPubKey::m_keydata
uint256 m_keydata
Definition: pubkey.h:222

bech32::Decode
std::pair< std::string, data > Decode(const std::string &str)
Decode a Bech32 string.
Definition: bech32.cpp:159

CPubKey::CPubKey
CPubKey(const std::vector< unsigned char > &_vch)
Construct a public key from a byte vector.
Definition: pubkey.h:104

Hash160
uint160 Hash160(const T1 &in1)
Compute the 160-bit hash an object.
Definition: hash.h:92

uint256
256-bit opaque blob.
Definition: uint256.h:124

CKeyID::CKeyID
CKeyID()
Definition: pubkey.h:24

uint256.h

memcpy
void * memcpy(void *a, const void *b, size_t c)
Definition: glibc_compat.cpp:14

BIP32_EXTKEY_SIZE
const unsigned int BIP32_EXTKEY_SIZE
Definition: pubkey.h:18

CPubKey::CPubKey
CPubKey(const T pbegin, const T pend)
Construct a public key using begin/end iterators to byte data.
Definition: pubkey.h:98

CKeyID
A reference to a CKey: the Hash160 of its serialized public key.
Definition: pubkey.h:21

uint160
160-bit opaque blob.
Definition: uint256.h:113

XOnlyPubKey::operator[]
const unsigned char & operator[](int pos) const
Definition: pubkey.h:235

CExtPubKey::pubkey
CPubKey pubkey
Definition: pubkey.h:245

CPubKey::data
const unsigned char * data() const
Definition: pubkey.h:111

Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition: span.h:92

CExtPubKey
Definition: pubkey.h:240

Hash
uint256 Hash(const T &in1)
Compute the 256-bit hash of an object.
Definition: hash.h:75

bech32::Encode
std::string Encode(const std::string &hrp, const data &values)
Encode a Bech32 string.
Definition: bech32.cpp:143

CPubKey::operator!=
friend bool operator!=(const CPubKey &a, const CPubKey &b)
Definition: pubkey.h:122

MakeSpan
Span< A > constexpr MakeSpan(A(&a)[N])
MakeSpan for arrays:
Definition: span.h:222

CPubKey::IsCompressed
bool IsCompressed() const
Check whether this is a compressed public key.
Definition: pubkey.h:193

XOnlyPubKey::data
const unsigned char * data() const
Definition: pubkey.h:236