coins/monero/src/wallet/mod.rs

use curve25519_dalek::{scalar::Scalar, edwards::EdwardsPoint};

use crate::{hash, hash_to_scalar, serialize::write_varint, transaction::Input};

pub mod address;

mod scan;
pub use scan::SpendableOutput;

pub(crate) mod decoys;
pub(crate) use decoys::Decoys;

mod send;
pub use send::{Fee, TransactionError, SignableTransaction};
#[cfg(feature = "multisig")]
pub use send::TransactionMachine;

fn key_image_sort(x: &EdwardsPoint, y: &EdwardsPoint) -> std::cmp::Ordering {
  x.compress().to_bytes().cmp(&y.compress().to_bytes()).reverse()
}

// https://gist.github.com/kayabaNerve/8066c13f1fe1573286ba7a2fd79f6100
pub(crate) fn uniqueness(inputs: &[Input]) -> [u8; 32] {
  let mut u = b"uniqueness".to_vec();
  for input in inputs {
    match input {
      // If Gen, this should be the only input, making this loop somewhat pointless
      // This works and even if there were somehow multiple inputs, it'd be a false negative
      Input::Gen(height) => {
        write_varint(height, &mut u).unwrap();
      }
      Input::ToKey { key_image, .. } => u.extend(key_image.compress().to_bytes()),
    }
  }
  hash(&u)
}

// Hs(8Ra || o) with https://github.com/monero-project/research-lab/issues/103 as an option
#[allow(non_snake_case)]
pub(crate) fn shared_key(
  uniqueness: Option<[u8; 32]>,
  s: Scalar,
  P: &EdwardsPoint,
  o: usize,
) -> Scalar {
  // uniqueness
  let mut shared = uniqueness.map_or(vec![], |uniqueness| uniqueness.to_vec());
  // || 8Ra
  shared.extend((s * P).mul_by_cofactor().compress().to_bytes().to_vec());
  // || o
  write_varint(&o.try_into().unwrap(), &mut shared).unwrap();
  // Hs()
  hash_to_scalar(&shared)
}

pub(crate) fn amount_encryption(amount: u64, key: Scalar) -> [u8; 8] {
  let mut amount_mask = b"amount".to_vec();
  amount_mask.extend(key.to_bytes());
  (amount ^ u64::from_le_bytes(hash(&amount_mask)[0 .. 8].try_into().unwrap())).to_le_bytes()
}

fn amount_decryption(amount: [u8; 8], key: Scalar) -> u64 {
  u64::from_le_bytes(amount_encryption(u64::from_le_bytes(amount), key))
}

pub(crate) fn commitment_mask(shared_key: Scalar) -> Scalar {
  let mut mask = b"commitment_mask".to_vec();
  mask.extend(shared_key.to_bytes());
  hash_to_scalar(&mask)
}

#[derive(Clone, Copy)]
pub struct ViewPair {
  pub spend: EdwardsPoint,
  pub view: Scalar,
}
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`use curve25519_dalek::{scalar::Scalar, edwards::EdwardsPoint};`

Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`use crate::{hash, hash_to_scalar, serialize::write_varint, transaction::Input};`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00
Implement Guaranteed Addresses Closes https://github.com/serai-dex/serai/issues/27. monero-rs is now solely used for Extra encoding. 2022-06-28 00:01:20 -04:00			`pub mod address;`

Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`mod scan;`
			`pub use scan::SpendableOutput;`

			`pub(crate) mod decoys;`
			`pub(crate) use decoys::Decoys;`

			`mod send;`
Add fee handling code to Monero Updates how change outputs are handled, with a far more logical construction offering greater flexibility. prepare_outputs can not longer error. SignaableTransaction::new will. 2022-06-19 12:03:01 -04:00			`pub use send::{Fee, TransactionError, SignableTransaction};`
Route networking through Wallet, not Coin 2022-06-10 09:36:07 -04:00			`#[cfg(feature = "multisig")]`
			`pub use send::TransactionMachine;`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00
Override Monero's random function with a Rust-seedable random Closes https://github.com/serai-dex/serai/issues/2. Also finishes the implementation of https://github.com/monero-project/research-lab/issues/103. 2022-05-22 01:56:17 -04:00			`fn key_image_sort(x: &EdwardsPoint, y: &EdwardsPoint) -> std::cmp::Ordering {`
			`x.compress().to_bytes().cmp(&y.compress().to_bytes()).reverse()`
			`}`

Update the reference link for Guaranteed Addresses Also lints Cargo.toml. 2022-06-30 03:16:51 -04:00			`// https://gist.github.com/kayabaNerve/8066c13f1fe1573286ba7a2fd79f6100`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`pub(crate) fn uniqueness(inputs: &[Input]) -> [u8; 32] {`
Implement Guaranteed Addresses Closes https://github.com/serai-dex/serai/issues/27. monero-rs is now solely used for Extra encoding. 2022-06-28 00:01:20 -04:00			`let mut u = b"uniqueness".to_vec();`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`for input in inputs {`
			`match input {`
			`// If Gen, this should be the only input, making this loop somewhat pointless`
			`// This works and even if there were somehow multiple inputs, it'd be a false negative`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`Input::Gen(height) => {`
Correct clippy warnings Currently intended to be done with: cargo clippy --features "recommended merlin batch serialize experimental ed25519 ristretto p256 secp256k1 multisig" -- -A clippy::type_complexity -A dead_code 2022-07-22 02:34:36 -04:00			`write_varint(height, &mut u).unwrap();`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`}`
			`Input::ToKey { key_image, .. } => u.extend(key_image.compress().to_bytes()),`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`}`
			`}`
			`hash(&u)`
			`}`

			`// Hs(8Ra \|\| o) with https://github.com/monero-project/research-lab/issues/103 as an option`
			`#[allow(non_snake_case)]`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`pub(crate) fn shared_key(`
			`uniqueness: Option<[u8; 32]>,`
			`s: Scalar,`
			`P: &EdwardsPoint,`
			`o: usize,`
			`) -> Scalar {`
Remove monero-rs types Still missing an updated RPC file. Restructures the library as it makes sense 2022-05-21 15:33:35 -04:00			`// uniqueness`
			`let mut shared = uniqueness.map_or(vec![], \|uniqueness\| uniqueness.to_vec());`
			`// \|\| 8Ra`
			`shared.extend((s * P).mul_by_cofactor().compress().to_bytes().to_vec());`
			`// \|\| o`
			`write_varint(&o.try_into().unwrap(), &mut shared).unwrap();`
			`// Hs()`
			`hash_to_scalar(&shared)`
			`}`

			`pub(crate) fn amount_encryption(amount: u64, key: Scalar) -> [u8; 8] {`
			`let mut amount_mask = b"amount".to_vec();`
			`amount_mask.extend(key.to_bytes());`
			`(amount ^ u64::from_le_bytes(hash(&amount_mask)[0 .. 8].try_into().unwrap())).to_le_bytes()`
			`}`

			`fn amount_decryption(amount: [u8; 8], key: Scalar) -> u64 {`
			`u64::from_le_bytes(amount_encryption(u64::from_le_bytes(amount), key))`
			`}`

			`pub(crate) fn commitment_mask(shared_key: Scalar) -> Scalar {`
			`let mut mask = b"commitment_mask".to_vec();`
			`mask.extend(shared_key.to_bytes());`
			`hash_to_scalar(&mask)`
			`}`
Implement Guaranteed Addresses Closes https://github.com/serai-dex/serai/issues/27. monero-rs is now solely used for Extra encoding. 2022-06-28 00:01:20 -04:00
			`#[derive(Clone, Copy)]`
			`pub struct ViewPair {`
			`pub spend: EdwardsPoint,`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`pub view: Scalar,`
Implement Guaranteed Addresses Closes https://github.com/serai-dex/serai/issues/27. monero-rs is now solely used for Extra encoding. 2022-06-28 00:01:20 -04:00			`}`