kevacoin/src/pubkey.h

// Copyright (c) 2009-2010 Satoshi Nakamoto
// Copyright (c) 2009-2016 The Bitcoin Core developers
// Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#ifndef BITCOIN_PUBKEY_H
#define BITCOIN_PUBKEY_H

#include "hash.h"
#include "serialize.h"
#include "uint256.h"

#include <stdexcept>
#include <vector>

/**
 * secp256k1:
 * const unsigned int PRIVATE_KEY_SIZE = 279;
 * const unsigned int PUBLIC_KEY_SIZE  = 65;
 * const unsigned int SIGNATURE_SIZE   = 72;
 *
 * see www.keylength.com
 * script supports up to 75 for single byte push
 */

const unsigned int BIP32_EXTKEY_SIZE = 74;

/** A reference to a CKey: the Hash160 of its serialized public key */
class CKeyID : public uint160
{
public:
    CKeyID() : uint160() {}
    CKeyID(const uint160& in) : uint160(in) {}
};

typedef uint256 ChainCode;

/** An encapsulated public key. */
class CPubKey
{
private:

    /**
     * Just store the serialized data.
     * Its length can very cheaply be computed from the first byte.
     */
    unsigned char vch[65];

    //! Compute the length of a pubkey with a given first byte.
    unsigned int static GetLen(unsigned char chHeader)
    {
        if (chHeader == 2 || chHeader == 3)
            return 33;
        if (chHeader == 4 || chHeader == 6 || chHeader == 7)
            return 65;
        return 0;
    }

    //! Set this key data to be invalid
    void Invalidate()
    {
        vch[0] = 0xFF;
    }

public:
    //! Construct an invalid public key.
    CPubKey()
    {
        Invalidate();
    }

    //! Initialize a public key using begin/end iterators to byte data.
    template <typename T>
    void Set(const T pbegin, const T pend)
    {
        int len = pend == pbegin ? 0 : GetLen(pbegin[0]);
        if (len && len == (pend - pbegin))
            memcpy(vch, (unsigned char*)&pbegin[0], len);
        else
            Invalidate();
    }

    //! Construct a public key using begin/end iterators to byte data.
    template <typename T>
    CPubKey(const T pbegin, const T pend)
    {
        Set(pbegin, pend);
    }

    //! Construct a public key from a byte vector.
    CPubKey(const std::vector<unsigned char>& _vch)
    {
        Set(_vch.begin(), _vch.end());
    }

    //! Simple read-only vector-like interface to the pubkey data.
    unsigned int size() const { return GetLen(vch[0]); }
    const unsigned char* begin() const { return vch; }
    const unsigned char* end() const { return vch + size(); }
    const unsigned char& operator[](unsigned int pos) const { return vch[pos]; }

    //! Comparator implementation.
    friend bool operator==(const CPubKey& a, const CPubKey& b)
    {
        return a.vch[0] == b.vch[0] &&
               memcmp(a.vch, b.vch, a.size()) == 0;
    }
    friend bool operator!=(const CPubKey& a, const CPubKey& b)
    {
        return !(a == b);
    }
    friend bool operator<(const CPubKey& a, const CPubKey& b)
    {
        return a.vch[0] < b.vch[0] ||
               (a.vch[0] == b.vch[0] && memcmp(a.vch, b.vch, a.size()) < 0);
    }

    //! Implement serialization, as if this was a byte vector.
    template <typename Stream>
    void Serialize(Stream& s) const
    {
        unsigned int len = size();
        ::WriteCompactSize(s, len);
        s.write((char*)vch, len);
    }
    template <typename Stream>
    void Unserialize(Stream& s)
    {
        unsigned int len = ::ReadCompactSize(s);
        if (len <= 65) {
            s.read((char*)vch, len);
        } else {
            // invalid pubkey, skip available data
            char dummy;
            while (len--)
                s.read(&dummy, 1);
            Invalidate();
        }
    }

    //! Get the KeyID of this public key (hash of its serialization)
    CKeyID GetID() const
    {
        return CKeyID(Hash160(vch, vch + size()));
    }

    //! Get the 256-bit hash of this public key.
    uint256 GetHash() const
    {
        return Hash(vch, vch + size());
    }

    /*
     * Check syntactic correctness.
     *
     * Note that this is consensus critical as CheckSig() calls it!
     */
    bool IsValid() const
    {
        return size() > 0;
    }

    //! fully validate whether this is a valid public key (more expensive than IsValid())
    bool IsFullyValid() const;

    //! Check whether this is a compressed public key.
    bool IsCompressed() const
    {
        return size() == 33;
    }

    /**
     * Verify a DER signature (~72 bytes).
     * If this public key is not fully valid, the return value will be false.
     */
    bool Verify(const uint256& hash, const std::vector<unsigned char>& vchSig) const;

    /**
     * Check whether a signature is normalized (lower-S).
     */
    static bool CheckLowS(const std::vector<unsigned char>& vchSig);

    //! Recover a public key from a compact signature.
    bool RecoverCompact(const uint256& hash, const std::vector<unsigned char>& vchSig);

    //! Turn this public key into an uncompressed public key.
    bool Decompress();

    //! Derive BIP32 child pubkey.
    bool Derive(CPubKey& pubkeyChild, ChainCode &ccChild, unsigned int nChild, const ChainCode& cc) const;
};

struct CExtPubKey {
    unsigned char nDepth;
    unsigned char vchFingerprint[4];
    unsigned int nChild;
    ChainCode chaincode;
    CPubKey pubkey;

    friend bool operator==(const CExtPubKey &a, const CExtPubKey &b)
    {
        return a.nDepth == b.nDepth &&
            memcmp(&a.vchFingerprint[0], &b.vchFingerprint[0], sizeof(vchFingerprint)) == 0 &&
            a.nChild == b.nChild &&
            a.chaincode == b.chaincode &&
            a.pubkey == b.pubkey;
    }

    void Encode(unsigned char code[BIP32_EXTKEY_SIZE]) const;
    void Decode(const unsigned char code[BIP32_EXTKEY_SIZE]);
    bool Derive(CExtPubKey& out, unsigned int nChild) const;

    void Serialize(CSizeComputer& s) const
    {
        // Optimized implementation for ::GetSerializeSize that avoids copying.
        s.seek(BIP32_EXTKEY_SIZE + 1); // add one byte for the size (compact int)
    }
    template <typename Stream>
    void Serialize(Stream& s) const
    {
        unsigned int len = BIP32_EXTKEY_SIZE;
        ::WriteCompactSize(s, len);
        unsigned char code[BIP32_EXTKEY_SIZE];
        Encode(code);
        s.write((const char *)&code[0], len);
    }
    template <typename Stream>
    void Unserialize(Stream& s)
    {
        unsigned int len = ::ReadCompactSize(s);
        unsigned char code[BIP32_EXTKEY_SIZE];
        if (len != BIP32_EXTKEY_SIZE)
            throw std::runtime_error("Invalid extended key size\n");
        s.read((char *)&code[0], len);
        Decode(code);
    }
};

/** Users of this module must hold an ECCVerifyHandle. The constructor and
 *  destructor of these are not allowed to run in parallel, though. */
class ECCVerifyHandle
{
    static int refcount;

public:
    ECCVerifyHandle();
    ~ECCVerifyHandle();
};

#endif // BITCOIN_PUBKEY_H
boost: moveonly: split CPubKey and friends to new files 10 years ago			`// Copyright (c) 2009-2010 Satoshi Nakamoto`
Increment MIT Licence copyright header year on files modified in 2016 Edited via: $ contrib/devtools/copyright_header.py update . 8 years ago			`// Copyright (c) 2009-2016 The Bitcoin Core developers`
minor code style cleanup after recent merges - add a missing license header - correct some header orderings etc. 10 years ago			`// Distributed under the MIT software license, see the accompanying`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`// file COPYING or http://www.opensource.org/licenses/mit-license.php.`

			`#ifndef BITCOIN_PUBKEY_H`
			`#define BITCOIN_PUBKEY_H`

			`#include "hash.h"`
			`#include "serialize.h"`
			`#include "uint256.h"`

			`#include <stdexcept>`
			`#include <vector>`

[trivial] Switched constants to sizeof() 8 years ago			`/**`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`* secp256k1:`
			`* const unsigned int PRIVATE_KEY_SIZE = 279;`
			`* const unsigned int PUBLIC_KEY_SIZE = 65;`
			`* const unsigned int SIGNATURE_SIZE = 72;`
			`*`
			`* see www.keylength.com`
			`* script supports up to 75 for single byte push`
			`*/`

add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago			`const unsigned int BIP32_EXTKEY_SIZE = 74;`

boost: moveonly: split CPubKey and friends to new files 10 years ago			`/** A reference to a CKey: the Hash160 of its serialized public key */`
			`class CKeyID : public uint160`
			`{`
			`public:`
Replace direct use of 0 with SetNull and IsNull Replace x=0 with .SetNull(), x==0 with IsNull(), x!=0 with !IsNull(). Replace uses of uint256(0) with uint256(). 10 years ago			`CKeyID() : uint160() {}`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`CKeyID(const uint160& in) : uint160(in) {}`
			`};`

chaincodes: abstract away more chaincode behavior [squashme] replace struct CCainCode with a typedef uint256 ChainCode 10 years ago			`typedef uint256 ChainCode;`
Abstract chaincodes into CChainCode # Conflicts: # src/key.cpp # src/key.h 11 years ago
boost: moveonly: split CPubKey and friends to new files 10 years ago			`/** An encapsulated public key. */`
			`class CPubKey`
			`{`
			`private:`

			`/**`
			`* Just store the serialized data.`
			`* Its length can very cheaply be computed from the first byte.`
			`*/`
			`unsigned char vch[65];`

			`//! Compute the length of a pubkey with a given first byte.`
			`unsigned int static GetLen(unsigned char chHeader)`
			`{`
			`if (chHeader == 2 \|\| chHeader == 3)`
			`return 33;`
			`if (chHeader == 4 \|\| chHeader == 6 \|\| chHeader == 7)`
			`return 65;`
			`return 0;`
			`}`

			`//! Set this key data to be invalid`
			`void Invalidate()`
			`{`
			`vch[0] = 0xFF;`
			`}`

			`public:`
			`//! Construct an invalid public key.`
			`CPubKey()`
			`{`
			`Invalidate();`
			`}`

			`//! Initialize a public key using begin/end iterators to byte data.`
			`template <typename T>`
			`void Set(const T pbegin, const T pend)`
			`{`
			`int len = pend == pbegin ? 0 : GetLen(pbegin[0]);`
			`if (len && len == (pend - pbegin))`
			`memcpy(vch, (unsigned char*)&pbegin[0], len);`
			`else`
			`Invalidate();`
			`}`

			`//! Construct a public key using begin/end iterators to byte data.`
			`template <typename T>`
			`CPubKey(const T pbegin, const T pend)`
			`{`
			`Set(pbegin, pend);`
			`}`

			`//! Construct a public key from a byte vector.`
Do not shadow variables 8 years ago			`CPubKey(const std::vector<unsigned char>& _vch)`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`{`
Do not shadow variables 8 years ago			`Set(_vch.begin(), _vch.end());`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`}`

			`//! Simple read-only vector-like interface to the pubkey data.`
			`unsigned int size() const { return GetLen(vch[0]); }`
			`const unsigned char* begin() const { return vch; }`
			`const unsigned char* end() const { return vch + size(); }`
			`const unsigned char& operator[](unsigned int pos) const { return vch[pos]; }`

			`//! Comparator implementation.`
			`friend bool operator==(const CPubKey& a, const CPubKey& b)`
			`{`
			`return a.vch[0] == b.vch[0] &&`
			`memcmp(a.vch, b.vch, a.size()) == 0;`
			`}`
			`friend bool operator!=(const CPubKey& a, const CPubKey& b)`
			`{`
			`return !(a == b);`
			`}`
			`friend bool operator<(const CPubKey& a, const CPubKey& b)`
			`{`
			`return a.vch[0] < b.vch[0] \|\|`
			`(a.vch[0] == b.vch[0] && memcmp(a.vch, b.vch, a.size()) < 0);`
			`}`

			`//! Implement serialization, as if this was a byte vector.`
			`template <typename Stream>`
Get rid of nType and nVersion Remove the nType and nVersion as parameters to all serialization methods and functions. There is only one place where it's read and has an impact (in CAddress), and even there it does not impact any of the recursively invoked serializers. Instead, the few places that need nType or nVersion are changed to read it directly from the stream object, through GetType() and GetVersion() methods which are added to all stream classes. 8 years ago			`void Serialize(Stream& s) const`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`{`
			`unsigned int len = size();`
			`::WriteCompactSize(s, len);`
			`s.write((char*)vch, len);`
			`}`
			`template <typename Stream>`
Get rid of nType and nVersion Remove the nType and nVersion as parameters to all serialization methods and functions. There is only one place where it's read and has an impact (in CAddress), and even there it does not impact any of the recursively invoked serializers. Instead, the few places that need nType or nVersion are changed to read it directly from the stream object, through GetType() and GetVersion() methods which are added to all stream classes. 8 years ago			`void Unserialize(Stream& s)`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`{`
			`unsigned int len = ::ReadCompactSize(s);`
			`if (len <= 65) {`
			`s.read((char*)vch, len);`
			`} else {`
			`// invalid pubkey, skip available data`
			`char dummy;`
			`while (len--)`
			`s.read(&dummy, 1);`
			`Invalidate();`
			`}`
			`}`

			`//! Get the KeyID of this public key (hash of its serialization)`
			`CKeyID GetID() const`
			`{`
			`return CKeyID(Hash160(vch, vch + size()));`
			`}`

			`//! Get the 256-bit hash of this public key.`
			`uint256 GetHash() const`
			`{`
			`return Hash(vch, vch + size());`
			`}`

			`/*`
			`* Check syntactic correctness.`
[trivial] Switched constants to sizeof() 8 years ago			`*`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`* Note that this is consensus critical as CheckSig() calls it!`
			`*/`
			`bool IsValid() const`
			`{`
			`return size() > 0;`
			`}`

			`//! fully validate whether this is a valid public key (more expensive than IsValid())`
			`bool IsFullyValid() const;`

			`//! Check whether this is a compressed public key.`
			`bool IsCompressed() const`
			`{`
			`return size() == 33;`
			`}`

			`/**`
			`* Verify a DER signature (~72 bytes).`
			`* If this public key is not fully valid, the return value will be false.`
			`*/`
			`bool Verify(const uint256& hash, const std::vector<unsigned char>& vchSig) const;`

Switch to libsecp256k1-based validation for ECDSA 9 years ago			`/**`
			`* Check whether a signature is normalized (lower-S).`
			`*/`
			`static bool CheckLowS(const std::vector<unsigned char>& vchSig);`

boost: moveonly: split CPubKey and friends to new files 10 years ago			`//! Recover a public key from a compact signature.`
			`bool RecoverCompact(const uint256& hash, const std::vector<unsigned char>& vchSig);`

			`//! Turn this public key into an uncompressed public key.`
			`bool Decompress();`

			`//! Derive BIP32 child pubkey.`
chaincodes: abstract away more chaincode behavior [squashme] replace struct CCainCode with a typedef uint256 ChainCode 10 years ago			`bool Derive(CPubKey& pubkeyChild, ChainCode &ccChild, unsigned int nChild, const ChainCode& cc) const;`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`};`

			`struct CExtPubKey {`
			`unsigned char nDepth;`
			`unsigned char vchFingerprint[4];`
			`unsigned int nChild;`
chaincodes: abstract away more chaincode behavior [squashme] replace struct CCainCode with a typedef uint256 ChainCode 10 years ago			`ChainCode chaincode;`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`CPubKey pubkey;`

Abstract chaincodes into CChainCode # Conflicts: # src/key.cpp # src/key.h 11 years ago			`friend bool operator==(const CExtPubKey &a, const CExtPubKey &b)`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`{`
[trivial] Switched constants to sizeof() 8 years ago			`return a.nDepth == b.nDepth &&`
			`memcmp(&a.vchFingerprint[0], &b.vchFingerprint[0], sizeof(vchFingerprint)) == 0 &&`
			`a.nChild == b.nChild &&`
			`a.chaincode == b.chaincode &&`
			`a.pubkey == b.pubkey;`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`}`

add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago			`void Encode(unsigned char code[BIP32_EXTKEY_SIZE]) const;`
			`void Decode(const unsigned char code[BIP32_EXTKEY_SIZE]);`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`bool Derive(CExtPubKey& out, unsigned int nChild) const;`
add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago
Add optimized CSizeComputer serializers To get the advantages of faster GetSerializeSize() implementations back that were removed in "Make GetSerializeSize a wrapper on top of CSizeComputer", reintroduce them in the few places in the form of a specialized Serialize() implementation. This actually gets us in a better state than before, as these even get used when they're invoked indirectly in the serialization of another object. 8 years ago			`void Serialize(CSizeComputer& s) const`
			`{`
			`// Optimized implementation for ::GetSerializeSize that avoids copying.`
			`s.seek(BIP32_EXTKEY_SIZE + 1); // add one byte for the size (compact int)`
			`}`
add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago			`template <typename Stream>`
Get rid of nType and nVersion Remove the nType and nVersion as parameters to all serialization methods and functions. There is only one place where it's read and has an impact (in CAddress), and even there it does not impact any of the recursively invoked serializers. Instead, the few places that need nType or nVersion are changed to read it directly from the stream object, through GetType() and GetVersion() methods which are added to all stream classes. 8 years ago			`void Serialize(Stream& s) const`
add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago			`{`
			`unsigned int len = BIP32_EXTKEY_SIZE;`
			`::WriteCompactSize(s, len);`
			`unsigned char code[BIP32_EXTKEY_SIZE];`
			`Encode(code);`
			`s.write((const char *)&code[0], len);`
			`}`
			`template <typename Stream>`
Get rid of nType and nVersion Remove the nType and nVersion as parameters to all serialization methods and functions. There is only one place where it's read and has an impact (in CAddress), and even there it does not impact any of the recursively invoked serializers. Instead, the few places that need nType or nVersion are changed to read it directly from the stream object, through GetType() and GetVersion() methods which are added to all stream classes. 8 years ago			`void Unserialize(Stream& s)`
add bip32 pubkey serialization CExtPubKey should be serializable like CPubKey 10 years ago			`{`
			`unsigned int len = ::ReadCompactSize(s);`
			`unsigned char code[BIP32_EXTKEY_SIZE];`
			`if (len != BIP32_EXTKEY_SIZE)`
			`throw std::runtime_error("Invalid extended key size\n");`
			`s.read((char *)&code[0], len);`
			`Decode(code);`
			`}`
boost: moveonly: split CPubKey and friends to new files 10 years ago			`};`

Switch to libsecp256k1-based validation for ECDSA 9 years ago			`/** Users of this module must hold an ECCVerifyHandle. The constructor and`
			`* destructor of these are not allowed to run in parallel, though. */`
			`class ECCVerifyHandle`
			`{`
			`static int refcount;`

			`public:`
			`ECCVerifyHandle();`
			`~ECCVerifyHandle();`
			`};`

boost: moveonly: split CPubKey and friends to new files 10 years ago			`#endif // BITCOIN_PUBKEY_H`