doc/html/key_8h_source.html

 // Copyright (c) 2009-2010 Satoshi Nakamoto
 // Copyright (c) 2009-2022 The Bitcoin Core developers
 // Copyright (c) 2017 The Zcash developers
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.

 #ifndef BITCOIN_KEY_H
 #define BITCOIN_KEY_H

 #include <pubkey.h>
 #include <serialize.h>
 #include <support/allocators/secure.h>
 #include <uint256.h>

 #include <stdexcept>
 #include <vector>


 typedef std::vector<unsigned char, secure_allocator<unsigned char> > CPrivKey;

 constexpr static size_t ECDH_SECRET_SIZE = CSHA256::OUTPUT_SIZE;

 // Used to represent ECDH shared secret (ECDH_SECRET_SIZE bytes)
 using ECDHSecret = std::array<std::byte, ECDH_SECRET_SIZE>;

 class CKey
 {
 public:
     static const unsigned int SIZE            = 279;
     static const unsigned int COMPRESSED_SIZE = 214;
     static_assert(
         SIZE >= COMPRESSED_SIZE,
         "COMPRESSED_SIZE is larger than SIZE");

 private:
     using KeyType = std::array<unsigned char, 32>;

     bool fCompressed{false};

     secure_unique_ptr<KeyType> keydata;

     bool static Check(const unsigned char* vch);

     void MakeKeyData()
     {
         if (!keydata) keydata = make_secure_unique<KeyType>();
     }

     void ClearKeyData()
     {
         keydata.reset();
     }

 public:
     CKey() noexcept = default;
     CKey(CKey&&) noexcept = default;
     CKey& operator=(CKey&&) noexcept = default;

     CKey& operator=(const CKey& other)
     {
         if (other.keydata) {
             MakeKeyData();
             *keydata = *other.keydata;
         } else {
             ClearKeyData();
         }
         fCompressed = other.fCompressed;
         return *this;
     }

     CKey(const CKey& other) { *this = other; }

     friend bool operator==(const CKey& a, const CKey& b)
     {
         return a.fCompressed == b.fCompressed &&
             a.size() == b.size() &&
             memcmp(a.data(), b.data(), a.size()) == 0;
     }

     template <typename T>
     void Set(const T pbegin, const T pend, bool fCompressedIn)
     {
         if (size_t(pend - pbegin) != std::tuple_size_v<KeyType>) {
             ClearKeyData();
         } else if (Check(&pbegin[0])) {
             MakeKeyData();
             memcpy(keydata->data(), (unsigned char*)&pbegin[0], keydata->size());
             fCompressed = fCompressedIn;
         } else {
             ClearKeyData();
         }
     }

     unsigned int size() const { return keydata ? keydata->size() : 0; }
     const std::byte* data() const { return keydata ? reinterpret_cast<const std::byte*>(keydata->data()) : nullptr; }
     const unsigned char* begin() const { return keydata ? keydata->data() : nullptr; }
     const unsigned char* end() const { return begin() + size(); }

     bool IsValid() const { return !!keydata; }

     bool IsCompressed() const { return fCompressed; }

     void MakeNewKey(bool fCompressed);

     bool Negate();

     CPrivKey GetPrivKey() const;

     CPubKey GetPubKey() const;

     bool Sign(const uint256& hash, std::vector<unsigned char>& vchSig, bool grind = true, uint32_t test_case = 0) const;

     bool SignCompact(const uint256& hash, std::vector<unsigned char>& vchSig) const;

     bool SignSchnorr(const uint256& hash, Span<unsigned char> sig, const uint256* merkle_root, const uint256& aux) const;

     [[nodiscard]] bool Derive(CKey& keyChild, ChainCode &ccChild, unsigned int nChild, const ChainCode& cc) const;

     bool VerifyPubKey(const CPubKey& vchPubKey) const;

     bool Load(const CPrivKey& privkey, const CPubKey& vchPubKey, bool fSkipCheck);

     EllSwiftPubKey EllSwiftCreate(Span<const std::byte> entropy) const;

     ECDHSecret ComputeBIP324ECDHSecret(const EllSwiftPubKey& their_ellswift,
                                        const EllSwiftPubKey& our_ellswift,
                                        bool initiating) const;
 };

 struct CExtKey {
     unsigned char nDepth;
     unsigned char vchFingerprint[4];
     unsigned int nChild;
     ChainCode chaincode;
     CKey key;

     friend bool operator==(const CExtKey& a, const CExtKey& b)
     {
         return a.nDepth == b.nDepth &&
             memcmp(a.vchFingerprint, b.vchFingerprint, sizeof(vchFingerprint)) == 0 &&
             a.nChild == b.nChild &&
             a.chaincode == b.chaincode &&
             a.key == b.key;
     }

     void Encode(unsigned char code[BIP32_EXTKEY_SIZE]) const;
     void Decode(const unsigned char code[BIP32_EXTKEY_SIZE]);
     [[nodiscard]] bool Derive(CExtKey& out, unsigned int nChild) const;
     CExtPubKey Neuter() const;
     void SetSeed(Span<const std::byte> seed);
 };

 void ECC_Start();

 void ECC_Stop();

 bool ECC_InitSanityCheck();

 #endif // BITCOIN_KEY_H
CKey::GetPrivKey
CPrivKey GetPrivKey() const
Convert the private key to a CPrivKey (serialized OpenSSL private key data).
Definition: key.cpp:175

CKey::KeyType
std::array< unsigned char, 32 > KeyType
see www.keylength.com script supports up to 75 for single byte push
Definition: key.h:50

CExtKey::key
CKey key
Definition: key.h:213

CKey::Negate
bool Negate()
Negate private key.
Definition: key.cpp:169

CKey::EllSwiftCreate
EllSwiftPubKey EllSwiftCreate(Span< const std::byte > entropy) const
Create an ellswift-encoded public key for this key, with specified entropy.
Definition: key.cpp:336

CExtKey::Derive
bool Derive(CExtKey &out, unsigned int nChild) const
Definition: key.cpp:372

ECC_Stop
void ECC_Stop()
Deinitialize the elliptic curve support.
Definition: key.cpp:446

pubkey.h

CKey::VerifyPubKey
bool VerifyPubKey(const CPubKey &vchPubKey) const
Verify thoroughly whether a private key and a public key match.
Definition: key.cpp:242

CKey::GetPubKey
CPubKey GetPubKey() const
Compute the public key from a private key.
Definition: key.cpp:188

CExtKey
Definition: key.h:208

CExtKey::Encode
void Encode(unsigned char code[BIP32_EXTKEY_SIZE]) const
Definition: key.cpp:403

CKey::keydata
secure_unique_ptr< KeyType > keydata
The actual byte data. nullptr for invalid keys.
Definition: key.h:56

CKey::CKey
CKey(const CKey &other)
Definition: key.h:88

CExtKey::vchFingerprint
unsigned char vchFingerprint[4]
Definition: key.h:210

CKey::SIZE
static const unsigned int SIZE
secp256k1:
Definition: key.h:38

CKey::SignSchnorr
bool SignSchnorr(const uint256 &hash, Span< unsigned char > sig, const uint256 *merkle_root, const uint256 &aux) const
Create a BIP-340 Schnorr signature, for the xonly-pubkey corresponding to *this, optionally tweaked b...
Definition: key.cpp:278

CKey::begin
const unsigned char * begin() const
Definition: key.h:115

CKey::ComputeBIP324ECDHSecret
ECDHSecret ComputeBIP324ECDHSecret(const EllSwiftPubKey &their_ellswift, const EllSwiftPubKey &our_ellswift, bool initiating) const
Compute a BIP324-style ECDH shared secret.
Definition: key.cpp:352

CKey::ClearKeyData
void ClearKeyData()
Definition: key.h:66

secure_unique_ptr
std::unique_ptr< T, SecureUniqueDeleter< T > > secure_unique_ptr
Definition: secure.h:68

CKey::SignCompact
bool SignCompact(const uint256 &hash, std::vector< unsigned char > &vchSig) const
Create a compact signature (65 bytes), which allows reconstructing the used public key...
Definition: key.cpp:255

CPrivKey
std::vector< unsigned char, secure_allocator< unsigned char > > CPrivKey
CPrivKey is a serialized private key, with all parameters included (SIZE bytes)
Definition: key.h:23

CKey::Sign
bool Sign(const uint256 &hash, std::vector< unsigned char > &vchSig, bool grind=true, uint32_t test_case=0) const
Create a DER-serialized signature.
Definition: key.cpp:214

CKey::COMPRESSED_SIZE
static const unsigned int COMPRESSED_SIZE
Definition: key.h:39

serialize.h

ByteUnit::T

CKey::data
const std::byte * data() const
Definition: key.h:114

CExtKey::nDepth
unsigned char nDepth
Definition: key.h:209

CExtKey::operator==
friend bool operator==(const CExtKey &a, const CExtKey &b)
Definition: key.h:215

CPubKey
An encapsulated public key.
Definition: pubkey.h:33

tests_wycheproof_generate.out
string out
Definition: tests_wycheproof_generate.py:28

CKey::MakeNewKey
void MakeNewKey(bool fCompressed)
Generate a new private key using a cryptographic PRNG.
Definition: key.cpp:161

CExtKey::nChild
unsigned int nChild
Definition: key.h:211

EllSwiftPubKey
An ElligatorSwift-encoded public key.
Definition: pubkey.h:303

CKey::size
unsigned int size() const
Simple read-only vector-like interface.
Definition: key.h:113

CKey::IsCompressed
bool IsCompressed() const
Check whether the public key corresponding to this private key is (to be) compressed.
Definition: key.h:122

CExtKey::chaincode
ChainCode chaincode
Definition: key.h:212

CKey::Set
void Set(const T pbegin, const T pend, bool fCompressedIn)
Initialize using begin and end iterators to byte data.
Definition: key.h:99

CExtKey::Decode
void Decode(const unsigned char code[BIP32_EXTKEY_SIZE])
Definition: key.cpp:413

uint256
256-bit opaque blob.
Definition: uint256.h:106

ECDHSecret
std::array< std::byte, ECDH_SECRET_SIZE > ECDHSecret
Definition: key.h:29

CExtKey::SetSeed
void SetSeed(Span< const std::byte > seed)
Definition: key.cpp:381

CExtKey::Neuter
CExtPubKey Neuter() const
Definition: key.cpp:393

ECDH_SECRET_SIZE
static constexpr size_t ECDH_SECRET_SIZE
Size of ECDH shared secrets.
Definition: key.h:26

CKey::Derive
bool Derive(CKey &keyChild, ChainCode &ccChild, unsigned int nChild, const ChainCode &cc) const
Derive BIP32 child key.
Definition: key.cpp:317

uint256.h

CKey::end
const unsigned char * end() const
Definition: key.h:116

BIP32_EXTKEY_SIZE
const unsigned int BIP32_EXTKEY_SIZE
Definition: pubkey.h:19

CKey::fCompressed
bool fCompressed
Whether the public key corresponding to this private key is (to be) compressed.
Definition: key.h:53

CSHA256::OUTPUT_SIZE
static const size_t OUTPUT_SIZE
Definition: sha256.h:21

ECC_InitSanityCheck
bool ECC_InitSanityCheck()
Check that required EC support is available at runtime.
Definition: key.cpp:422

CKey::Check
static bool Check(const unsigned char *vch)
Check whether the 32-byte array pointed to by vch is valid keydata.
Definition: key.cpp:157

CKey
An encapsulated private key.
Definition: key.h:32

Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition: solver.h:20

CExtPubKey
Definition: pubkey.h:336

CKey::MakeKeyData
void MakeKeyData()
Definition: key.h:61

CKey::CKey
CKey() noexcept=default

secure.h

CKey::Load
bool Load(const CPrivKey &privkey, const CPubKey &vchPubKey, bool fSkipCheck)
Load private key and check that public key matches.
Definition: key.cpp:303

CKey::operator==
friend bool operator==(const CKey &a, const CKey &b)
Definition: key.h:90

CKey::IsValid
bool IsValid() const
Check whether this private key is valid.
Definition: key.h:119

ECC_Start
void ECC_Start()
Initialize the elliptic curve support.
Definition: key.cpp:429