Merge pull request #5224
f321d6b
Add key generation/verification to ECC sanity check (Pieter Wuille)d0c41a7
Add sanity check after key generation (Pieter Wuille)
This commit is contained in:
commit
6582f323f0
5 changed files with 53 additions and 5 deletions
29
src/key.cpp
29
src/key.cpp
|
@ -86,6 +86,20 @@ bool CKey::Sign(const uint256 &hash, std::vector<unsigned char>& vchSig) const {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
bool CKey::VerifyPubKey(const CPubKey& pubkey) const {
|
||||||
|
if (pubkey.IsCompressed() != fCompressed) {
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
unsigned char rnd[8];
|
||||||
|
std::string str = "Bitcoin key verification\n";
|
||||||
|
GetRandBytes(rnd, sizeof(rnd));
|
||||||
|
uint256 hash;
|
||||||
|
CHash256().Write((unsigned char*)str.data(), str.size()).Write(rnd, sizeof(rnd)).Finalize((unsigned char*)&hash);
|
||||||
|
std::vector<unsigned char> vchSig;
|
||||||
|
Sign(hash, vchSig);
|
||||||
|
return pubkey.Verify(hash, vchSig);
|
||||||
|
}
|
||||||
|
|
||||||
bool CKey::SignCompact(const uint256 &hash, std::vector<unsigned char>& vchSig) const {
|
bool CKey::SignCompact(const uint256 &hash, std::vector<unsigned char>& vchSig) const {
|
||||||
if (!fValid)
|
if (!fValid)
|
||||||
return false;
|
return false;
|
||||||
|
@ -111,10 +125,7 @@ bool CKey::Load(CPrivKey &privkey, CPubKey &vchPubKey, bool fSkipCheck=false) {
|
||||||
if (fSkipCheck)
|
if (fSkipCheck)
|
||||||
return true;
|
return true;
|
||||||
|
|
||||||
if (GetPubKey() != vchPubKey)
|
return VerifyPubKey(vchPubKey);
|
||||||
return false;
|
|
||||||
|
|
||||||
return true;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
bool CKey::Derive(CKey& keyChild, unsigned char ccChild[32], unsigned int nChild, const unsigned char cc[32]) const {
|
bool CKey::Derive(CKey& keyChild, unsigned char ccChild[32], unsigned int nChild, const unsigned char cc[32]) const {
|
||||||
|
@ -190,5 +201,13 @@ void CExtKey::Decode(const unsigned char code[74]) {
|
||||||
}
|
}
|
||||||
|
|
||||||
bool ECC_InitSanityCheck() {
|
bool ECC_InitSanityCheck() {
|
||||||
return CECKey::SanityCheck();
|
#if !defined(USE_SECP256K1)
|
||||||
|
if (!CECKey::SanityCheck()) {
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
#endif
|
||||||
|
CKey key;
|
||||||
|
key.MakeNewKey(true);
|
||||||
|
CPubKey pubkey = key.GetPubKey();
|
||||||
|
return key.VerifyPubKey(pubkey);
|
||||||
}
|
}
|
||||||
|
|
|
@ -137,6 +137,12 @@ public:
|
||||||
//! Derive BIP32 child key.
|
//! Derive BIP32 child key.
|
||||||
bool Derive(CKey& keyChild, unsigned char ccChild[32], unsigned int nChild, const unsigned char cc[32]) const;
|
bool Derive(CKey& keyChild, unsigned char ccChild[32], unsigned int nChild, const unsigned char cc[32]) const;
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Verify thoroughly whether a private key and a public key match.
|
||||||
|
* This is done using a different mechanism than just regenerating it.
|
||||||
|
*/
|
||||||
|
bool VerifyPubKey(const CPubKey& vchPubKey) const;
|
||||||
|
|
||||||
//! Load private key and check that public key matches.
|
//! Load private key and check that public key matches.
|
||||||
bool Load(CPrivKey& privkey, CPubKey& vchPubKey, bool fSkipCheck);
|
bool Load(CPrivKey& privkey, CPubKey& vchPubKey, bool fSkipCheck);
|
||||||
|
|
||||||
|
|
|
@ -112,6 +112,7 @@ Value importprivkey(const Array& params, bool fHelp)
|
||||||
if (!key.IsValid()) throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, "Private key outside allowed range");
|
if (!key.IsValid()) throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, "Private key outside allowed range");
|
||||||
|
|
||||||
CPubKey pubkey = key.GetPubKey();
|
CPubKey pubkey = key.GetPubKey();
|
||||||
|
assert(key.VerifyPubKey(pubkey));
|
||||||
CKeyID vchAddress = pubkey.GetID();
|
CKeyID vchAddress = pubkey.GetID();
|
||||||
{
|
{
|
||||||
pwalletMain->MarkDirty();
|
pwalletMain->MarkDirty();
|
||||||
|
@ -253,6 +254,7 @@ Value importwallet(const Array& params, bool fHelp)
|
||||||
continue;
|
continue;
|
||||||
CKey key = vchSecret.GetKey();
|
CKey key = vchSecret.GetKey();
|
||||||
CPubKey pubkey = key.GetPubKey();
|
CPubKey pubkey = key.GetPubKey();
|
||||||
|
assert(key.VerifyPubKey(pubkey));
|
||||||
CKeyID keyid = pubkey.GetID();
|
CKeyID keyid = pubkey.GetID();
|
||||||
if (pwalletMain->HaveKey(keyid)) {
|
if (pwalletMain->HaveKey(keyid)) {
|
||||||
LogPrintf("Skipping import of %s (key already present)\n", CBitcoinAddress(keyid).ToString());
|
LogPrintf("Skipping import of %s (key already present)\n", CBitcoinAddress(keyid).ToString());
|
||||||
|
|
|
@ -82,6 +82,26 @@ BOOST_AUTO_TEST_CASE(key_test1)
|
||||||
CPubKey pubkey1C = key1C.GetPubKey();
|
CPubKey pubkey1C = key1C.GetPubKey();
|
||||||
CPubKey pubkey2C = key2C.GetPubKey();
|
CPubKey pubkey2C = key2C.GetPubKey();
|
||||||
|
|
||||||
|
BOOST_CHECK(key1.VerifyPubKey(pubkey1));
|
||||||
|
BOOST_CHECK(!key1.VerifyPubKey(pubkey1C));
|
||||||
|
BOOST_CHECK(!key1.VerifyPubKey(pubkey2));
|
||||||
|
BOOST_CHECK(!key1.VerifyPubKey(pubkey2C));
|
||||||
|
|
||||||
|
BOOST_CHECK(!key1C.VerifyPubKey(pubkey1));
|
||||||
|
BOOST_CHECK(key1C.VerifyPubKey(pubkey1C));
|
||||||
|
BOOST_CHECK(!key1C.VerifyPubKey(pubkey2));
|
||||||
|
BOOST_CHECK(!key1C.VerifyPubKey(pubkey2C));
|
||||||
|
|
||||||
|
BOOST_CHECK(!key2.VerifyPubKey(pubkey1));
|
||||||
|
BOOST_CHECK(!key2.VerifyPubKey(pubkey1C));
|
||||||
|
BOOST_CHECK(key2.VerifyPubKey(pubkey2));
|
||||||
|
BOOST_CHECK(!key2.VerifyPubKey(pubkey2C));
|
||||||
|
|
||||||
|
BOOST_CHECK(!key2C.VerifyPubKey(pubkey1));
|
||||||
|
BOOST_CHECK(!key2C.VerifyPubKey(pubkey1C));
|
||||||
|
BOOST_CHECK(!key2C.VerifyPubKey(pubkey2));
|
||||||
|
BOOST_CHECK(key2C.VerifyPubKey(pubkey2C));
|
||||||
|
|
||||||
BOOST_CHECK(addr1.Get() == CTxDestination(pubkey1.GetID()));
|
BOOST_CHECK(addr1.Get() == CTxDestination(pubkey1.GetID()));
|
||||||
BOOST_CHECK(addr2.Get() == CTxDestination(pubkey2.GetID()));
|
BOOST_CHECK(addr2.Get() == CTxDestination(pubkey2.GetID()));
|
||||||
BOOST_CHECK(addr1C.Get() == CTxDestination(pubkey1C.GetID()));
|
BOOST_CHECK(addr1C.Get() == CTxDestination(pubkey1C.GetID()));
|
||||||
|
|
|
@ -79,6 +79,7 @@ CPubKey CWallet::GenerateNewKey()
|
||||||
SetMinVersion(FEATURE_COMPRPUBKEY);
|
SetMinVersion(FEATURE_COMPRPUBKEY);
|
||||||
|
|
||||||
CPubKey pubkey = secret.GetPubKey();
|
CPubKey pubkey = secret.GetPubKey();
|
||||||
|
assert(secret.VerifyPubKey(pubkey));
|
||||||
|
|
||||||
// Create new metadata
|
// Create new metadata
|
||||||
int64_t nCreationTime = GetTime();
|
int64_t nCreationTime = GetTime();
|
||||||
|
|
Loading…
Add table
Reference in a new issue