-
Notifications
You must be signed in to change notification settings - Fork 1k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge #1518: Add secp256k1_pubkey_sort
7d2591c Add secp256k1_pubkey_sort (Jonas Nick) Pull request description: This PR adds a `secp256k1_pubkey_sort` function the the public API which was originally part of the musig PR (#1479). However, I opened a separate PR because it adds internal functions that are also used by the WIP silent payments module. ACKs for top commit: sipa: ACK 7d2591c josibake: ACK 7d2591c real-or-random: ACK 7d2591c Tree-SHA512: d0e4464dc9cd4bdb35cc5d9bb4c37a7b71233328319165d49bc940d8d3394a2d74a43d2f73ee7bfe8f3f90a466ee8afcdca75cfbbf3969e218d76b89f4af55fb
- Loading branch information
Showing
7 changed files
with
437 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,33 @@ | ||
/*********************************************************************** | ||
* Copyright (c) 2021 Russell O'Connor, Jonas Nick * | ||
* Distributed under the MIT software license, see the accompanying * | ||
* file COPYING or https://www.opensource.org/licenses/mit-license.php.* | ||
***********************************************************************/ | ||
|
||
#ifndef SECP256K1_HSORT_H | ||
#define SECP256K1_HSORT_H | ||
|
||
#include <stddef.h> | ||
#include <string.h> | ||
|
||
/* In-place, iterative heapsort with an interface matching glibc's qsort_r. This | ||
* is preferred over standard library implementations because they generally | ||
* make no guarantee about being fast for malicious inputs. | ||
* Remember that heapsort is unstable. | ||
* | ||
* In/Out: ptr: pointer to the array to sort. The contents of the array are | ||
* sorted in ascending order according to the comparison function. | ||
* In: count: number of elements in the array. | ||
* size: size in bytes of each element. | ||
* cmp: pointer to a comparison function that is called with two | ||
* arguments that point to the objects being compared. The cmp_data | ||
* argument of secp256k1_hsort is passed as third argument. The | ||
* function must return an integer less than, equal to, or greater | ||
* than zero if the first argument is considered to be respectively | ||
* less than, equal to, or greater than the second. | ||
* cmp_data: pointer passed as third argument to cmp. | ||
*/ | ||
static void secp256k1_hsort(void *ptr, size_t count, size_t size, | ||
int (*cmp)(const void *, const void *, void *), | ||
void *cmp_data); | ||
#endif |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,125 @@ | ||
/*********************************************************************** | ||
* Copyright (c) 2021 Russell O'Connor, Jonas Nick * | ||
* Distributed under the MIT software license, see the accompanying * | ||
* file COPYING or https://www.opensource.org/licenses/mit-license.php.* | ||
***********************************************************************/ | ||
|
||
#ifndef SECP256K1_HSORT_IMPL_H | ||
#define SECP256K1_HSORT_IMPL_H | ||
|
||
#include "hsort.h" | ||
|
||
/* An array is a heap when, for all non-zero indexes i, the element at index i | ||
* compares as less than or equal to the element at index parent(i) = (i-1)/2. | ||
*/ | ||
|
||
static SECP256K1_INLINE size_t secp256k1_heap_child1(size_t i) { | ||
VERIFY_CHECK(i <= (SIZE_MAX - 1)/2); | ||
return 2*i + 1; | ||
} | ||
|
||
static SECP256K1_INLINE size_t secp256k1_heap_child2(size_t i) { | ||
VERIFY_CHECK(i <= SIZE_MAX/2 - 1); | ||
return secp256k1_heap_child1(i)+1; | ||
} | ||
|
||
static SECP256K1_INLINE void secp256k1_heap_swap64(unsigned char *a, unsigned char *b, size_t len) { | ||
unsigned char tmp[64]; | ||
VERIFY_CHECK(len <= 64); | ||
memcpy(tmp, a, len); | ||
memmove(a, b, len); | ||
memcpy(b, tmp, len); | ||
} | ||
|
||
static SECP256K1_INLINE void secp256k1_heap_swap(unsigned char *arr, size_t i, size_t j, size_t stride) { | ||
unsigned char *a = arr + i*stride; | ||
unsigned char *b = arr + j*stride; | ||
size_t len = stride; | ||
while (64 < len) { | ||
secp256k1_heap_swap64(a + (len - 64), b + (len - 64), 64); | ||
len -= 64; | ||
} | ||
secp256k1_heap_swap64(a, b, len); | ||
} | ||
|
||
/* This function accepts an array arr containing heap_size elements, each of | ||
* size stride. The elements in the array at indices >i satisfy the max-heap | ||
* property, i.e., for any element at index j (where j > i), all of its children | ||
* are smaller than the element itself. The purpose of the function is to update | ||
* the array so that all elements at indices >=i satisfy the max-heap | ||
* property. */ | ||
static SECP256K1_INLINE void secp256k1_heap_down(unsigned char *arr, size_t i, size_t heap_size, size_t stride, | ||
int (*cmp)(const void *, const void *, void *), void *cmp_data) { | ||
while (i < heap_size/2) { | ||
VERIFY_CHECK(i <= SIZE_MAX/2 - 1); | ||
/* Proof: | ||
* i < heap_size/2 | ||
* i + 1 <= heap_size/2 | ||
* 2*i + 2 <= heap_size <= SIZE_MAX | ||
* 2*i <= SIZE_MAX - 2 | ||
*/ | ||
|
||
VERIFY_CHECK(secp256k1_heap_child1(i) < heap_size); | ||
/* Proof: | ||
* i < heap_size/2 | ||
* i + 1 <= heap_size/2 | ||
* 2*i + 2 <= heap_size | ||
* 2*i + 1 < heap_size | ||
* child1(i) < heap_size | ||
*/ | ||
|
||
/* Let [x] be notation for the contents at arr[x*stride]. | ||
* | ||
* If [child1(i)] > [i] and [child2(i)] > [i], | ||
* swap [i] with the larger child to ensure the new parent is larger | ||
* than both children. When [child1(i)] == [child2(i)], swap [i] with | ||
* [child2(i)]. | ||
* Else if [child1(i)] > [i], swap [i] with [child1(i)]. | ||
* Else if [child2(i)] > [i], swap [i] with [child2(i)]. | ||
*/ | ||
if (secp256k1_heap_child2(i) < heap_size | ||
&& 0 <= cmp(arr + secp256k1_heap_child2(i)*stride, arr + secp256k1_heap_child1(i)*stride, cmp_data)) { | ||
if (0 < cmp(arr + secp256k1_heap_child2(i)*stride, arr + i*stride, cmp_data)) { | ||
secp256k1_heap_swap(arr, i, secp256k1_heap_child2(i), stride); | ||
i = secp256k1_heap_child2(i); | ||
} else { | ||
/* At this point we have [child2(i)] >= [child1(i)] and we have | ||
* [child2(i)] <= [i], and thus [child1(i)] <= [i] which means | ||
* that the next comparison can be skipped. */ | ||
return; | ||
} | ||
} else if (0 < cmp(arr + secp256k1_heap_child1(i)*stride, arr + i*stride, cmp_data)) { | ||
secp256k1_heap_swap(arr, i, secp256k1_heap_child1(i), stride); | ||
i = secp256k1_heap_child1(i); | ||
} else { | ||
return; | ||
} | ||
} | ||
/* heap_size/2 <= i | ||
* heap_size/2 < i + 1 | ||
* heap_size < 2*i + 2 | ||
* heap_size <= 2*i + 1 | ||
* heap_size <= child1(i) | ||
* Thus child1(i) and child2(i) are now out of bounds and we are at a leaf. | ||
*/ | ||
} | ||
|
||
/* In-place heap sort. */ | ||
static void secp256k1_hsort(void *ptr, size_t count, size_t size, | ||
int (*cmp)(const void *, const void *, void *), | ||
void *cmp_data) { | ||
size_t i; | ||
|
||
for (i = count/2; 0 < i; --i) { | ||
secp256k1_heap_down(ptr, i-1, count, size, cmp, cmp_data); | ||
} | ||
for (i = count; 1 < i; --i) { | ||
/* Extract the largest value from the heap */ | ||
secp256k1_heap_swap(ptr, 0, i-1, size); | ||
|
||
/* Repair the heap condition */ | ||
secp256k1_heap_down(ptr, 0, i-1, size, cmp, cmp_data); | ||
} | ||
} | ||
|
||
#endif |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.