diff options
| author | Justus Ranvier <justus@stashcrypto.com> | 2017-09-28 08:47:50 -0500 |
|---|---|---|
| committer | Justus Ranvier <justus@openbitcoinprivacyproject.org> | 2021-02-15 06:09:04 -0900 |
| commit | 5ec9df085ebc2adfef5ab667662a8aba967f06cd (patch) | |
| tree | 0b267fdc93555cc6c4c42cacfa57ca7844a674ac /bip-0047.mediawiki | |
| parent | 3a7585365ff3280a4fc9d34ea6a1e43c39cfa7be (diff) | |
BIP-0047: Adjust text to match test vectors
The original implementation of BIP-47 in Samourai Wallet reversed
the parameters in the calculation of the HMAC-SHA512 step of
notification transaction blinding.
This change adjusts the text to match the as-implementend behavior
in deployed BIP-47 wallets and the test vectors.
Diffstat (limited to 'bip-0047.mediawiki')
| -rw-r--r-- | bip-0047.mediawiki | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/bip-0047.mediawiki b/bip-0047.mediawiki index af801f9..ada9deb 100644 --- a/bip-0047.mediawiki +++ b/bip-0047.mediawiki @@ -1,7 +1,7 @@ RECENT CHANGES: +* (28 Sep 2017) Adjust text to match test vectors * (19 Apr 2016) Define version 2 payment codes * (17 Apr 2016) Clarify usage of outpoints in notification transactions -* (18 Dec 2015) Update explanations to resolve FAQs <pre> BIP: 47 @@ -158,7 +158,7 @@ Note: this procedure is used if Bob uses a version 1 payment code (regardless of ## Alice selects the private key corresponding to the designated pubkey: <pre>a</pre> ## Alice selects the public key associated with Bob's notification address: <pre>B, where B = bG</pre> ## Alice calculates a secret point: <pre>S = aB</pre> -## Alice calculates a 64 byte blinding factor: <pre>s = HMAC-SHA512(x, o)</pre> +## Alice calculates a 64 byte blinding factor: <pre>s = HMAC-SHA512(o, x)</pre> ### "x" is the x value of the secret point ### "o" is the outpoint being spent by the designated input # Alice serializes her payment code in binary form. |