bug of leading zeros public keys #601
Comments
|
This smells like the same (non-)issue as in #565. Please have a look. |
|
Ok! I read in /src/field.h |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I got a problem when I wrote code for sequentially calculating public keys (for the vanity generator). Verification fails when I tried to verify a bundle (created by a fast algorithm) using another function of the standard algorithm. I am attaching a simple demo C code and its output so that you can reproduce the problem.
If you look at the output, you will see that all coordinates have leading zeros. This is very similar to the sequel of "bug of leading zeros privkey" bitpay / bitcore-lib # 47 (github.com/iancoleman/bip39/issues/58).
Only now - for public keys.
If I'm right, we have a big hidden problem for a long time.
About once every 10,000, a public key with leading zeros occurs and it has a chance to calculate it incorrectly.
Only secp256k1_gej_add_ge() yields correct results.
Incorrect calculations for secp256k1_ecmult(), secp256k1_gej_add_ge_var(), secp256k1_gej_add_var().
I check the "correctness" of the result on the brainwalletx.github.io, (but there are no guarantees that it is also not verified by this bug).
Debian 4.13.0 amd64 SMP x86_64
I use the library from 02.2019 (tried 2018, 2017 too).
Library compiled as standard
./configure
or deployed for my system as
./configure --enable-ecmult-static-precomputation --with-bignum=gmp --with-scalar=64bit --with-field=64bit --with-asm=x86_64
Experiments have revealed that the situation is very acute if
./configure --with-field=32bit
There is clearly something broken - public keys with leading zeros lose half of the digits.
The rest of the keys do not affect.
Dear developer(s), please fix it!
compare.c.txt
compare_output_tests.log
The text was updated successfully, but these errors were encountered: