mirror of
https://github.com/mimblewimble/grin.git
synced 2025-05-04 00:01:15 +03:00
Invert inputs and outputs commitment sums. Fixes #37.
This commit is contained in:
Ignotus Peverell
parent
39ddeb0a2a
commit
e71ae27f77
4 changed files with 19 additions and 17 deletions
core/src/core
|
|
@ -209,7 +209,7 @@ impl Committed for Block {
|
||||||
&self.outputs
|
&self.outputs
|
||||||
}
|
}
|
||||||
fn overage(&self) -> i64 {
|
fn overage(&self) -> i64 {
|
||||||
(REWARD as i64) - (self.total_fees() as i64)
|
(self.total_fees() as i64) - (REWARD as i64)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -449,7 +449,7 @@ impl Block {
|
||||||
|
|
||||||
let over_commit = try!(secp.commit_value(REWARD as u64));
|
let over_commit = try!(secp.commit_value(REWARD as u64));
|
||||||
let out_commit = output.commitment();
|
let out_commit = output.commitment();
|
||||||
let excess = try!(secp.commit_sum(vec![over_commit], vec![out_commit]));
|
let excess = try!(secp.commit_sum(vec![out_commit], vec![over_commit]));
|
||||||
|
|
||||||
let proof = TxKernel {
|
let proof = TxKernel {
|
||||||
features: COINBASE_KERNEL,
|
features: COINBASE_KERNEL,
|
||||||
|
|
|
||||||
|
|
@ -31,6 +31,7 @@ use secp::key::SecretKey;
|
||||||
use rand::os::OsRng;
|
use rand::os::OsRng;
|
||||||
|
|
||||||
use core::{Transaction, Input, Output, DEFAULT_OUTPUT};
|
use core::{Transaction, Input, Output, DEFAULT_OUTPUT};
|
||||||
|
use core::Committed;
|
||||||
|
|
||||||
/// Context information available to transaction combinators.
|
/// Context information available to transaction combinators.
|
||||||
pub struct Context {
|
pub struct Context {
|
||||||
|
|
@ -90,7 +91,7 @@ type Append = for<'a> Fn(&'a mut Context, (Transaction, BlindSum)) -> (Transacti
|
||||||
pub fn input(value: u64, blinding: SecretKey) -> Box<Append> {
|
pub fn input(value: u64, blinding: SecretKey) -> Box<Append> {
|
||||||
Box::new(move |build, (tx, sum)| -> (Transaction, BlindSum) {
|
Box::new(move |build, (tx, sum)| -> (Transaction, BlindSum) {
|
||||||
let commit = build.secp.commit(value, blinding).unwrap();
|
let commit = build.secp.commit(value, blinding).unwrap();
|
||||||
(tx.with_input(Input(commit)), sum.add(blinding))
|
(tx.with_input(Input(commit)), sum.sub(blinding))
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -101,7 +102,7 @@ pub fn input_rand(value: u64) -> Box<Append> {
|
||||||
Box::new(move |build, (tx, sum)| -> (Transaction, BlindSum) {
|
Box::new(move |build, (tx, sum)| -> (Transaction, BlindSum) {
|
||||||
let blinding = SecretKey::new(&build.secp, &mut build.rng);
|
let blinding = SecretKey::new(&build.secp, &mut build.rng);
|
||||||
let commit = build.secp.commit(value, blinding).unwrap();
|
let commit = build.secp.commit(value, blinding).unwrap();
|
||||||
(tx.with_input(Input(commit)), sum.add(blinding))
|
(tx.with_input(Input(commit)), sum.sub(blinding))
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -116,7 +117,7 @@ pub fn output(value: u64, blinding: SecretKey) -> Box<Append> {
|
||||||
commit: commit,
|
commit: commit,
|
||||||
proof: rproof,
|
proof: rproof,
|
||||||
}),
|
}),
|
||||||
sum.sub(blinding))
|
sum.add(blinding))
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -133,7 +134,7 @@ pub fn output_rand(value: u64) -> Box<Append> {
|
||||||
commit: commit,
|
commit: commit,
|
||||||
proof: rproof,
|
proof: rproof,
|
||||||
}),
|
}),
|
||||||
sum.sub(blinding))
|
sum.add(blinding))
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -173,8 +174,9 @@ pub fn transaction(elems: Vec<Box<Append>>) -> Result<(Transaction, SecretKey),
|
||||||
|acc, elem| elem(&mut ctx, acc));
|
|acc, elem| elem(&mut ctx, acc));
|
||||||
|
|
||||||
let blind_sum = sum.sum(&ctx.secp)?;
|
let blind_sum = sum.sum(&ctx.secp)?;
|
||||||
let msg = try!(secp::Message::from_slice(&u64_to_32bytes(tx.fee)));
|
let pubkey = secp::key::PublicKey::from_secret_key(&ctx.secp, &blind_sum)?;
|
||||||
let sig = try!(ctx.secp.sign(&msg, &blind_sum));
|
let msg = secp::Message::from_slice(&u64_to_32bytes(tx.fee))?;
|
||||||
|
let sig = ctx.secp.sign(&msg, &blind_sum)?;
|
||||||
tx.excess_sig = sig.serialize_der(&ctx.secp);
|
tx.excess_sig = sig.serialize_der(&ctx.secp);
|
||||||
|
|
||||||
Ok((tx, blind_sum))
|
Ok((tx, blind_sum))
|
||||||
|
|
|
||||||
|
|
@ -50,12 +50,12 @@ pub trait Committed {
|
||||||
let mut input_commits = map_vec!(self.inputs_committed(), |inp| inp.commitment());
|
let mut input_commits = map_vec!(self.inputs_committed(), |inp| inp.commitment());
|
||||||
let mut output_commits = map_vec!(self.outputs_committed(), |out| out.commitment());
|
let mut output_commits = map_vec!(self.outputs_committed(), |out| out.commitment());
|
||||||
|
|
||||||
// add the overage as input commitment if positive, as an output commitment if
|
// add the overage as output commitment if positive, as an input commitment if
|
||||||
// negative
|
// negative
|
||||||
let overage = self.overage();
|
let overage = self.overage();
|
||||||
if overage != 0 {
|
if overage != 0 {
|
||||||
let over_commit = secp.commit_value(overage.abs() as u64).unwrap();
|
let over_commit = secp.commit_value(overage.abs() as u64).unwrap();
|
||||||
if overage > 0 {
|
if overage < 0 {
|
||||||
input_commits.push(over_commit);
|
input_commits.push(over_commit);
|
||||||
} else {
|
} else {
|
||||||
output_commits.push(over_commit);
|
output_commits.push(over_commit);
|
||||||
|
|
@ -63,7 +63,7 @@ pub trait Committed {
|
||||||
}
|
}
|
||||||
|
|
||||||
// sum all that stuff
|
// sum all that stuff
|
||||||
secp.commit_sum(input_commits, output_commits)
|
secp.commit_sum(output_commits, input_commits)
|
||||||
}
|
}
|
||||||
|
|
||||||
/// Vector of committed inputs to verify
|
/// Vector of committed inputs to verify
|
||||||
|
|
|
||||||
|
|
@ -149,7 +149,7 @@ impl Committed for Transaction {
|
||||||
&self.outputs
|
&self.outputs
|
||||||
}
|
}
|
||||||
fn overage(&self) -> i64 {
|
fn overage(&self) -> i64 {
|
||||||
-(self.fee as i64)
|
(self.fee as i64)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -209,14 +209,14 @@ impl Transaction {
|
||||||
/// of the sum of r.G should be left. And r.G is the definition of a
|
/// of the sum of r.G should be left. And r.G is the definition of a
|
||||||
/// public key generated using r as a private key.
|
/// public key generated using r as a private key.
|
||||||
pub fn verify_sig(&self, secp: &Secp256k1) -> Result<TxKernel, secp::Error> {
|
pub fn verify_sig(&self, secp: &Secp256k1) -> Result<TxKernel, secp::Error> {
|
||||||
let rsum = try!(self.sum_commitments(secp));
|
let rsum = self.sum_commitments(secp)?;
|
||||||
|
|
||||||
// pretend the sum is a public key (which it is, being of the form r.G) and
|
// pretend the sum is a public key (which it is, being of the form r.G) and
|
||||||
// verify the transaction sig with it
|
// verify the transaction sig with it
|
||||||
let pubk = try!(rsum.to_pubkey(secp));
|
let pubk = rsum.to_pubkey(secp)?;
|
||||||
let msg = try!(Message::from_slice(&u64_to_32bytes(self.fee)));
|
let msg = Message::from_slice(&u64_to_32bytes(self.fee))?;
|
||||||
let sig = try!(Signature::from_der(secp, &self.excess_sig));
|
let sig = Signature::from_der(secp, &self.excess_sig)?;
|
||||||
try!(secp.verify(&msg, &sig, &pubk));
|
secp.verify(&msg, &sig, &pubk)?;
|
||||||
|
|
||||||
Ok(TxKernel {
|
Ok(TxKernel {
|
||||||
features: DEFAULT_KERNEL,
|
features: DEFAULT_KERNEL,
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue