New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[ZIP 32] Shielded Hierarchical Deterministic Wallets #157
Commits on Jul 24, 2018
-
-
-
-
-
Define I2LEOSP_l(k) and use it to encode the child key indices
Note that this means they are encoded in little-endian order, which is the opposite of BIP 32.
-
-
ZIP 32: use FF1-AES256 as the PRP.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Remove hardening from example public-key HD path
Hardened derivation is undefined for an extended FVK
-
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Reference version 2018.0-beta-21 or later of the Sapling protocol spec.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Update another reference to the Sapling spec version.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Say that ZIP 32 does not supplant the use of BIPs 32 & 44 for transpa…
…rent addresses. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Specify the range of j when generating diversifiers.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Add specifications of key fingerprints, tags, and encodings.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Put human-readable parts in monospace.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Another formatting improvement.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Clarify the relation to existing use of BIPs 32 & 44.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Specify that the seed MUST be at least 32 bytes.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Explain that some diversifiers are invalid, and correct the definitio…
…n of default diversifier. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Clarify the interpretation of I_L in Sprout key derivation.
This also fixes a cut-and-paste error (a child chain code is c_i, not c_m). Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Define depth, parent tag, and i for master keys.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Clarify the encoding of a_sk in a Sprout extended spending key. Also …
…exclude lead bytes, and swap ASK and c for consistency with Sapling formats and BIP 32. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Remove unintended addition of a reference to the non-existant (yet) Z…
…IP 173. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Correct the derivation of a Sapling child full viewing key's nk, and …
…define the bases G and H. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Factor out the encoding of extended {spending key, full viewing key} …
…parts and make it more precise. Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Correct the encoding of a_sk,par for Sprout child derivation.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Factor out Sprout a_sk encoding/decoding into helper functions.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
-
Seeds for Sprout master keys must also be at least 32 bytes.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
Commits on Jul 25, 2018
-
Rename EncodeFVKParts to EncodeXFVKParts, since its input includes dk…
… which is only part of an extended full viewing key. Signed-off-by: Daira Hopwood <daira@jacaranda.org>