summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2020-01-14Address jonas' commentsPieter Wuille
2020-01-13Abstract out common signature message calculationPieter Wuille
2020-01-13Delete precompiled filePieter Wuille
2020-01-13Merge pull request #185 from sipa/202001_shifted_leaf_vPieter Wuille
Rewrite leaf versions rationale
2020-01-11go back to leaf_version but different rationaleAnthony Towns
2020-01-08Redefine leaf versions to be incrementally increasing from 0Pieter Wuille
2020-01-05Merge pull request #184 from real-or-random/patch-15Pieter Wuille
clarify nonce generation
2020-01-03Clarify nonce generationTim Ruffing
- Separate nonce generation into getting a random byte string and converting it to a suitable scalar ... - ... to make clear that the byte string can be generated differently. - Make the warning a little bit more prominent and improve writing
2019-12-19Merge pull request #183 from sipa/201912_authorsPieter Wuille
Update authors
2019-12-19Merge pull request #167 from stefanwouldgo/patch-4Pieter Wuille
more precise wording: limits on tx+block size -> block weight limit
2019-12-19more precise wording on limitsstefanwouldgo
there are no tx or block size limits (post-Segwit), just block weight limit better wording
2019-12-17Update Post-History field for taproot/tapscriptPieter Wuille
2019-12-17Update authorsPieter Wuille
2019-12-17Merge pull request #181 from sipa/201912_reorder_motivationPieter Wuille
Restructure motivation/design and add informal summary
2019-12-17Merge pull request #182 from pinheadmz/example1Pieter Wuille
bip-taproot: Explain example from script-tree diagram
2019-12-16Add rationale on security assumptionsPieter Wuille
2019-12-16bip-taproot: example from diagramMatthew Zipkin
2019-12-15Add an informal summary of the designPieter Wuille
2019-12-15Improve and restructure motivation and designPieter Wuille
2019-12-14Merge pull request #176 from sipa/201912_linear_is_easyPieter Wuille
Linearity makes sign-for-sum-of-keys easier, not possible entirely.
2019-12-14Merge pull request #179 from real-or-random/patch-14Pieter Wuille
Mention that we don't change the hash function
2019-12-14Merge pull request #178 from sipa/201912_schnorr_consensus_exactPieter Wuille
Consistent validity
2019-12-14Update bip-schnorr.mediawikiTim Ruffing
2019-12-13Update bip-schnorr.mediawikiPieter Wuille
Co-Authored-By: Tim Ruffing <crypto@timruffing.de>
2019-12-13Linearity makes sign-for-sum-of-keys easier, not possible entirely.Pieter Wuille
I'm sure it's possible to construct a complex MPC that can sign for the sum of keys under ECDSA as well.
2019-12-13Merge pull request #177 from sipa/201912_lows_ecdsa_nonmalleablePieter Wuille
Low-S ECDSA is non-malleable under nonstandard assumptions
2019-12-13Completely specifiedPieter Wuille
2019-12-13Merge pull request #180 from jonasnick/secret-keyPieter Wuille
Replace private key with secret key
2019-12-13Replace private key with secret keyJonas Nick
2019-12-13Mention that we don't change the hash functionTim Ruffing
2019-12-12Low-S ECDSA is non-malleable under nonstandard assumptionsPieter Wuille
2019-12-12Merge pull request #175 from real-or-random/patch-13Pieter Wuille
Clarify why we don't want short hashes
2019-12-12Clarify why we don't want short hashesTim Ruffing
This is supposed to supersede https://github.com/sipa/bips/pull/158. I tried to say this carefully. I don't think that multiparty signing is in general broken with short hashes. For example the attack in #158 could be avoided by letting everybody not only commit to the nonce but also to the message. It's just that using a collision-resistant hash just eliminates the problem entirely...
2019-12-11Merge pull request #174 from hebasto/patch-1Pieter Wuille
Fix reference formatting
2019-12-11Merge pull request #161 from OrfeasLitos/max-sig-unhashed-bytesPieter Wuille
Typo: max bytes hashed for sig is 210
2019-12-11Merge pull request #154 from OrfeasLitos/replace-66-with-146Pieter Wuille
Replace BIP66 link with BIP146
2019-12-11Merge pull request #166 from stefanwouldgo/patch-3Pieter Wuille
fix singular/plural ambiguity
2019-12-11Merge pull request #162 from OrfeasLitos/signing-validationPieter Wuille
Replace signing with signature before validation
2019-12-11Fix reference formattingHennadii Stepanov
2019-12-11fix singular/plural ambiguitystefanwouldgo
2019-12-10Merge pull request #148 from OrfeasLitos/link-implicit-y-proof-sketchPieter Wuille
Link to proof sketch of security of implicit Y
2019-12-10Merge pull request #165 from OrfeasLitos/wtxid-malleabilityPieter Wuille
Mention hash_type malleability would change wtxid
2019-12-10Merge pull request #171 from jonasnick/footnote16Pieter Wuille
Clarify bip-taproot digest difference to bip143 regarding sub-hashes
2019-12-10Merge pull request #172 from jonasnick/footnote9Pieter Wuille
Improve clarity of footnotes for lift_x
2019-12-10Merge pull request #170 from jonasnick/footnote7Pieter Wuille
Fix footnote 7 and remove references to Euler's criterion
2019-12-10Merge pull request #173 from kallerosenbaum/bip-schnorrPieter Wuille
Nits
2019-12-10Fix @jonasnick's commentKalle Rosenbaum
2019-12-09NitsKalle Rosenbaum
2019-12-04Improve clarity of footnotes for lift_xJonas Nick
2019-11-29Clarify bip-taproot digest difference to bip143 regarding sub-hashesJonas Nick
generated by cgit v1.2.3 (git 2.26.2) at 2024-11-09 21:16:26 +0000