Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Correct BIP-32 derivation issue #182

Merged
merged 1 commit into from
Nov 4, 2020
Merged

Correct BIP-32 derivation issue #182

merged 1 commit into from
Nov 4, 2020

Conversation

devrandom
Copy link
Contributor

Fixes issue #172.

This issue affects 1 in 256 hardened key derivations. For standard BIP-44 accounts, this affects the coin and account derivations, so 1 in 128 accounts will not be compatible with other BIP-44 implementations.

The intention is that wallet implementations using btcutil can use the IsAffectedByIssue172 call to check if they are affected, and potentially migrate (or ask the user to create a new wallet).

@silencer-Tsai
Copy link

Well done!

@devrandom devrandom mentioned this pull request Sep 1, 2020
Open
Roasbeef
Roasbeef requested changes Oct 16, 2020
View reviewed changes
Copy link
Member

@Roasbeef Roasbeef left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for this set of changes! Picking this over the older one assuming that we can get this one in sooner. Also the commit message should have the package/folder prefix as specified in the contribution guidelines.

hdkeychain/extendedkey.go
copy(data[1:], k.key)
// Additionally, right align it if it's shorter than 32 bytes.
offset := 33 - len(k.key)
copy(data[offset:], k.key)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rather than silently changing the behavior of this method, which can cause issues for any wallet that relies on this quirk as is (say when rescanning), I think we should instead break this method, and force callers to choose one or the other.

In other words: add a new variable to this method, and/or a helper func that assumes a new default value for this variable.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

renamed ChildNonStandard to DeriveNonStandard and Child to Derive. added a usage note

hdkeychain/extendedkey_test.go Show resolved Hide resolved
hdkeychain/extendedkey_test.go Show resolved Hide resolved
@Roasbeef Roasbeef mentioned this pull request Oct 16, 2020
Closed
Roasbeef
Roasbeef approved these changes Oct 28, 2020
View reviewed changes
Copy link
Member

@Roasbeef Roasbeef left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🏆

@Roasbeef
Copy link
Member

cc @guggero

guggero
guggero approved these changes Oct 28, 2020
View reviewed changes
Copy link
Contributor

@guggero guggero left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@Roasbeef Roasbeef merged commit a21f014 into btcsuite:master Nov 4, 2020
@silencer-Tsai silencer-Tsai mentioned this pull request Nov 4, 2020
Merged
@LasTshaMAN LasTshaMAN mentioned this pull request Feb 23, 2021
Closed
@witoff witoff mentioned this pull request Mar 2, 2021
Closed
@silencer-Tsai silencer-Tsai mentioned this pull request Nov 18, 2021
Closed
@chappjc chappjc mentioned this pull request Dec 8, 2021
Closed
@ksedgwic ksedgwic mentioned this pull request Nov 15, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Roasbeef Roasbeef Roasbeef approved these changes

@guggero guggero guggero approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@devrandom @silencer-Tsai @Roasbeef @guggero