main_impl.h File Reference

#include "../../../include/secp256k1_recovery.h"

Include dependency graph for main_impl.h:

This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Functions
int	secp256k1_ecdsa_recoverable_signature_parse_compact (const secp256k1_context *ctx, secp256k1_ecdsa_recoverable_signature *sig, const unsigned char *input64, int recid)
int	secp256k1_ecdsa_recoverable_signature_serialize_compact (const secp256k1_context *ctx, unsigned char *output64, int *recid, const secp256k1_ecdsa_recoverable_signature *sig)
int	secp256k1_ecdsa_recoverable_signature_convert (const secp256k1_context *ctx, secp256k1_ecdsa_signature *sig, const secp256k1_ecdsa_recoverable_signature *sigin)
int	secp256k1_ecdsa_sign_recoverable (const secp256k1_context *ctx, secp256k1_ecdsa_recoverable_signature *signature, const unsigned char *msghash32, const unsigned char *seckey, secp256k1_nonce_function noncefp, const void *noncedata)
int	secp256k1_ecdsa_recover (const secp256k1_context *ctx, secp256k1_pubkey *pubkey, const secp256k1_ecdsa_recoverable_signature *signature, const unsigned char *msghash32)

Function Documentation

secp256k1_ecdsa_recover()

int secp256k1_ecdsa_recover	(	const secp256k1_context *	ctx,
		secp256k1_pubkey *	pubkey,
		const secp256k1_ecdsa_recoverable_signature *	sig,
		const unsigned char *	msghash32 )

Recover an ECDSA public key from a signature.

Returns: 1: public key successfully recovered (which guarantees a correct signature). 0: otherwise. Args: ctx: pointer to a context object, initialized for verification. Out: pubkey: pointer to the recovered public key. In: sig: pointer to initialized signature that supports pubkey recovery. msghash32: the 32-byte message hash assumed to be signed.

Definition at line 137 of file main_impl.h.

                                                                                                                                                                            {
    secp256k1_ge q;
    secp256k1_scalar r, s;
    secp256k1_scalar m;
    int recid;
    VERIFY_CHECK(ctx != NULL);
    ARG_CHECK(msghash32 != NULL);
    ARG_CHECK(signature != NULL);
    ARG_CHECK(pubkey != NULL);
 
    secp256k1_ecdsa_recoverable_signature_load(ctx, &r, &s, &recid, signature);
    VERIFY_CHECK(recid >= 0 && recid < 4);  /* should have been caught in parse_compact */
    secp256k1_scalar_set_b32(&m, msghash32, NULL);
    if (secp256k1_ecdsa_sig_recover(&r, &s, &q, &m, recid)) {
        secp256k1_pubkey_save(pubkey, &q);
        return 1;
    } else {
        memset(pubkey, 0, sizeof(*pubkey));
        return 0;
    }
}

Here is the call graph for this function:

Here is the caller graph for this function:

secp256k1_ecdsa_recoverable_signature_convert()

int secp256k1_ecdsa_recoverable_signature_convert	(	const secp256k1_context *	ctx,
		secp256k1_ecdsa_signature *	sig,
		const secp256k1_ecdsa_recoverable_signature *	sigin )

Convert a recoverable signature into a normal signature.

Returns: 1 Args: ctx: a secp256k1 context object. Out: sig: a pointer to a normal signature. In: sigin: a pointer to a recoverable signature.

Definition at line 74 of file main_impl.h.

                                                                                                                                                                    {
    secp256k1_scalar r, s;
    int recid;
 
    VERIFY_CHECK(ctx != NULL);
    ARG_CHECK(sig != NULL);
    ARG_CHECK(sigin != NULL);
 
    secp256k1_ecdsa_recoverable_signature_load(ctx, &r, &s, &recid, sigin);
    secp256k1_ecdsa_signature_save(sig, &r, &s);
    return 1;
}

Here is the caller graph for this function:

secp256k1_ecdsa_recoverable_signature_parse_compact()

int secp256k1_ecdsa_recoverable_signature_parse_compact	(	const secp256k1_context *	ctx,
		secp256k1_ecdsa_recoverable_signature *	sig,
		const unsigned char *	input64,
		int	recid )

Parse a compact ECDSA signature (64 bytes + recovery id).

Returns: 1 when the signature could be parsed, 0 otherwise Args: ctx: a secp256k1 context object Out: sig: a pointer to a signature object In: input64: a pointer to a 64-byte compact signature recid: the recovery id (0, 1, 2 or 3)

Definition at line 38 of file main_impl.h.

                                                                                                                                                                           {
    secp256k1_scalar r, s;
    int ret = 1;
    int overflow = 0;
 
    VERIFY_CHECK(ctx != NULL);
    ARG_CHECK(sig != NULL);
    ARG_CHECK(input64 != NULL);
    ARG_CHECK(recid >= 0 && recid <= 3);
 
    secp256k1_scalar_set_b32(&r, &input64[0], &overflow);
    ret &= !overflow;
    secp256k1_scalar_set_b32(&s, &input64[32], &overflow);
    ret &= !overflow;
    if (ret) {
        secp256k1_ecdsa_recoverable_signature_save(sig, &r, &s, recid);
    } else {
        memset(sig, 0, sizeof(*sig));
    }
    return ret;
}

Here is the call graph for this function:

Here is the caller graph for this function:

secp256k1_ecdsa_recoverable_signature_serialize_compact()

int secp256k1_ecdsa_recoverable_signature_serialize_compact	(	const secp256k1_context *	ctx,
		unsigned char *	output64,
		int *	recid,
		const secp256k1_ecdsa_recoverable_signature *	sig )

Serialize an ECDSA signature in compact format (64 bytes + recovery id).

Returns: 1 Args: ctx: a secp256k1 context object. Out: output64: a pointer to a 64-byte array of the compact signature. recid: a pointer to an integer to hold the recovery id. In: sig: a pointer to an initialized signature object.

Definition at line 60 of file main_impl.h.

                                                                                                                                                                                 {
    secp256k1_scalar r, s;
 
    VERIFY_CHECK(ctx != NULL);
    ARG_CHECK(output64 != NULL);
    ARG_CHECK(sig != NULL);
    ARG_CHECK(recid != NULL);
 
    secp256k1_ecdsa_recoverable_signature_load(ctx, &r, &s, recid, sig);
    secp256k1_scalar_get_b32(&output64[0], &r);
    secp256k1_scalar_get_b32(&output64[32], &s);
    return 1;
}

Here is the caller graph for this function:

secp256k1_ecdsa_sign_recoverable()

int secp256k1_ecdsa_sign_recoverable	(	const secp256k1_context *	ctx,
		secp256k1_ecdsa_recoverable_signature *	sig,
		const unsigned char *	msghash32,
		const unsigned char *	seckey,
		secp256k1_nonce_function	noncefp,
		const void *	ndata )

Create a recoverable ECDSA signature.

Returns: 1: signature created 0: the nonce generation function failed, or the secret key was invalid. Args: ctx: pointer to a context object, initialized for signing. Out: sig: pointer to an array where the signature will be placed. In: msghash32: the 32-byte message hash being signed. seckey: pointer to a 32-byte secret key. noncefp: pointer to a nonce generation function. If NULL, secp256k1_nonce_function_default is used. ndata: pointer to arbitrary data used by the nonce generation function (can be NULL for secp256k1_nonce_function_default).

Definition at line 123 of file main_impl.h.

                                                                                                                                                                                                                                           {
    secp256k1_scalar r, s;
    int ret, recid;
    VERIFY_CHECK(ctx != NULL);
    ARG_CHECK(secp256k1_ecmult_gen_context_is_built(&ctx->ecmult_gen_ctx));
    ARG_CHECK(msghash32 != NULL);
    ARG_CHECK(signature != NULL);
    ARG_CHECK(seckey != NULL);
 
    ret = secp256k1_ecdsa_sign_inner(ctx, &r, &s, &recid, msghash32, seckey, noncefp, noncedata);
    secp256k1_ecdsa_recoverable_signature_save(signature, &r, &s, recid);
    return ret;
}

Here is the caller graph for this function: