cryptoquick
diff --git a/‎bip-0360/ref-impl/.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎bip-0360/ref-impl/.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎bip-0360/ref-impl/rust/docs/p2qrh-end-to-end.adoc‎
Lines changed: 45 additions & 25 deletions b/‎bip-0360/ref-impl/rust/docs/p2qrh-end-to-end.adoc‎
Lines changed: 45 additions & 25 deletions
diff --git a/‎bip-0360/ref-impl/rust/docs/quantum_root_tap_tree.txt‎
Lines changed: 36 additions & 0 deletions b/‎bip-0360/ref-impl/rust/docs/quantum_root_tap_tree.txt‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎bip-0360/ref-impl/rust/examples/p2qrh_construction.rs‎
Lines changed: 27 additions & 7 deletions b/‎bip-0360/ref-impl/rust/examples/p2qrh_construction.rs‎
Lines changed: 27 additions & 7 deletions
diff --git a/‎bip-0360/ref-impl/rust/examples/p2qrh_spend.rs‎
Lines changed: 33 additions & 15 deletions b/‎bip-0360/ref-impl/rust/examples/p2qrh_spend.rs‎
Lines changed: 33 additions & 15 deletions
diff --git a/‎bip-0360/ref-impl/rust/examples/p2tr_spend.rs‎
Lines changed: 8 additions & 2 deletions b/‎bip-0360/ref-impl/rust/examples/p2tr_spend.rs‎
Lines changed: 8 additions & 2 deletions
diff --git a/‎bip-0360/ref-impl/rust/examples/schnorr_example.rs‎
Lines changed: 41 additions & 0 deletions b/‎bip-0360/ref-impl/rust/examples/schnorr_example.rs‎
Lines changed: 41 additions & 0 deletions
@@ -2,3 +2,4 @@ rust-bitcoin
 rust-miniscript
 target
 .btcdeb_history
+*.swp
@@ -45,17 +45,16 @@ $ b-reg -named createwallet \
 
 == Fund P2QRH UTXO
 
-. View (hard-coded) tapscript used in single leaf taptree:
+. OPTIONAL: Define number of leaves in tap tree as well as the tap leaf to later use as the unlocking script:
 +
 -----
-$ b-reg decodescript 206d4ddc0e47d2e8f82cbe2fc2d0d749e7bd3338112cecdc76d8f831ae6620dbe0ac | jq -r '.asm'
-
-6d4ddc0e47d2e8f82cbe2fc2d0d749e7bd3338112cecdc76d8f831ae6620dbe0 OP_CHECKSIG
+$ export TOTAL_LEAF_COUNT=5 \
+    && export LEAF_OF_INTEREST=4
 -----
 +
-NOTE:  Notice that this script commits to a Schnorr 32-byte x-only public key.
+NOTE: Defaults are 4 leaves with the first leaf (leaf 0 ) as the script to later use as the unlocking script. 
 
-. Generate a P2QRH scripPubKey and address given a taptree as defined in link:https://learnmeabitcoin.com/technical/upgrades/taproot/#example-3-script-path-spend-signature[learnmeabitcoin tutorial] :
+. Generate a P2QRH scripPubKey with multi-leaf taptree:
 +
 -----
 $ export BITCOIN_NETWORK=regtest \
@@ -67,13 +66,25 @@ NOTE:  In `regtest`, you can expect a P2QRH address that starts with: `bcrt1r` .
 +
 NOTE: In the context of P2QRH, the _tree_root_hex_ from the response is in reference to the _quantum_root_ used in this tutorial.
 
-. Set some env vars (for use in later steps in this tutorial)  based on previous result:
+. Set some env vars (for use in later steps in this tutorial) based on previous result:
++
+-----
+$ export QUANTUM_ROOT=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.taptree_return.tree_root_hex' ) \
+    && export LEAF_SCRIPT_PRIV_KEY_HEX=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.taptree_return.leaf_script_priv_key_hex' ) \
+    && export LEAF_SCRIPT_HEX=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.taptree_return.leaf_script_hex' ) \
+    && export CONTROL_BLOCK_HEX=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.taptree_return.control_block_hex' ) \
+    && export FUNDING_SCRIPT_PUBKEY=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.utxo_return.script_pubkey_hex' ) \
+    && export P2QRH_ADDR=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.utxo_return.bech32m_address' )
+-----
+
+. View tapscript used in target leaf of taptree:
 +
 -----
-$ export QUANTUM_ROOT=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.tree_root_hex' ) \
-    && export FUNDING_SCRIPT_PUBKEY=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.script_pubkey_hex' ) \
-    && export P2QRH_ADDR=$( echo $BITCOIN_ADDRESS_INFO | jq -r '.bech32m_address' )
+$ b-reg decodescript $LEAF_SCRIPT_HEX | jq -r '.asm'
 -----
++
+NOTE:  Notice that this script commits to a Schnorr 32-byte x-only public key.
+
 
 . fund this P2QRH address with the coinbase reward of a newly generated block:
 +
@@ -122,34 +133,43 @@ $ export FUNDING_UTXO_AMOUNT_SATS=$(echo $FUNDING_UTXO | jq -r '.value' | awk '{
     && echo $FUNDING_UTXO_AMOUNT_SATS
 -----
 
-. Referencing the funding tx (via $FUNDING_TX_ID and $FUNDING_UTXO_INDEX), create the spending tx:
+. Generate additional blocks.
++
+This is necessary if you have only previously generated less than 100 blocks.
 +
 -----
-$ export RAW_P2QRH_SPEND_TX=$( cargo run --example p2qrh_spend | jq -r '.tx_hex' ) \
-    && echo $RAW_P2QRH_SPEND_TX
+$ b-reg -generate 110
 -----
++
+Otherwise, you may see an error from bitcoin core such as the following when attempting to spend:
++
+_bad-txns-premature-spend-of-coinbase, tried to spend coinbase at depth 1_
 
-. Inspect the spending tx:
+
+. Referencing the funding tx (via $FUNDING_TX_ID and $FUNDING_UTXO_INDEX), create the spending tx:
 +
 -----
-$ b-reg decoderawtransaction $RAW_P2QRH_SPEND_TX
------
+$ export SPEND_DETAILS=$( cargo run --example p2qrh_spend )
 
-. Test standardness of the spending tx by sending to local mempool of p2qrh enabled Bitcoin Core:
+$ export RAW_P2QRH_SPEND_TX=$( echo $SPEND_DETAILS | jq -r '.tx_hex' ) \
+        && echo "RAW_P2QRH_SPEND_TX = $RAW_P2QRH_SPEND_TX" \
+    && export SIG_HASH=$( echo $SPEND_DETAILS | jq -r '.sighash' ) \
+        && echo "SIG_HASH = $SIG_HASH" \
+    && export SIG_BYTES=$( echo $SPEND_DETAILS | jq -r '.sig_bytes' ) \
+        && echo "SIG_BYTES = $SIG_BYTES"
+-----
 
-.. Generate additional blocks.
-+
-This is necessary if you have only previously generated 1 block.
+. Inspect the spending tx:
 +
 -----
-$ b-reg -generate 110
+$ b-reg decoderawtransaction $RAW_P2QRH_SPEND_TX
 -----
 +
-Otherwise, you may see an error from bitcoin core such as the following:
-+
-_bad-txns-premature-spend-of-coinbase, tried to spend coinbase at depth 1_
+Pay particular attention to the `vin.txinwitness` field.
+Do the three elements (script input, script and control block) of the witness stack for this script path spend make sense ?
+What do you observe as the first byte of the `control block` element ?
 
-.. Execute:
+. Test standardness of the spending tx by sending to local mempool of p2qrh enabled Bitcoin Core:
 +
 -----
 $ b-reg testmempoolaccept '["'''$RAW_P2QRH_SPEND_TX'''"]'
 
@@ -0,0 +1,36 @@
+                                                              ┌───────────────────────┐                                                  
+                                                              │  tapleaf Merkle root  │                                                  
+                                                              │                       │                                                  
+                                                              └───────────────────────┘                                                  
+                                                                          |                                                              
+                                                              ┌───────────────────────┐                                                  
+                                                              │  5  tagged_hash       │                                                  
+                                                              │     QuantumRoot       │                                                  
+                                                              └───────────|───────────┘                                                  
+                                                              ┌───────────|───────────┐                                                  
+                             ┌───────────────────────────────►│   4  tagged_hash      ◄─────────────────────┐                            
+                             │                                │       TapBranch       │                     │                            
+                             │                                └───────────────────────┘                     │                            
+                             │                                                                              │                            
+                             │                                                                              │                            
+                             │                                                                              │                            
+                             │                                                                              │                            
+                             │                                                                              │                            
+                             │                                                                ┌─────────────┼───────────┐                
+                             │                                                                │  3    tagged_hash       │                
+                             │                                                            ┌──►│        TapBranch        ◄───────┐        
+                             │                                                            │   └─────────────────────────┘       │        
+                             │                                                            │                                     │        
+                             │                                                            │                                     │        
+                 ┌───────────┼────────────┐                                       ┌───────┼────────┐                            │        
+          ┌─────►│   2   tagged_hash      ◄────┐                           ┌─────►│ 2 tagged_hash  ◄────┐                       │        
+          │      │        TapBranch       │    │                           │      │    TapBranch   │    │                       │        
+          │      └────────────────────────┘    │                           │      └────────────────┘    │                       │        
+          │                                    │                           │                            │                       │        
+          │                                    │                     ┌─────┼────────┐           ┌───────|───-─┐          ┌──────┴──────┐ 
+      ┌───┼──────────┐              ┌──────────┼──┐                  │ 1 tagged_hash│           │1 tagged_hash│          │1 tagged_hash│ 
+      │1 tagged_hash │              │1 tagged_hash│                  │    Tapleaf   │           │   Tapleaf   │          │   Tapleaf   │ 
+      │   Tapleaf    │              │    Tapleaf  │                  └──────────────┘           └─────────────┘          └─────────────┘ 
+      └──▲───────────┘              └──────▲──────┘                          ▲                       ▲                          ▲        
+            │                              │                                 │                       │                          │        
+    version | A script             version | B script                version | C script      version | D script          version|E script
@@ -1,11 +1,31 @@
-use p2qrh_ref::{create_p2qrh_utxo, tagged_hash};
-use p2qrh_ref::data_structures::UtxoReturn;
+use p2qrh_ref::{create_p2qrh_utxo, create_multi_leaf_taptree};
+use p2qrh_ref::data_structures::{UtxoReturn, TaptreeReturn, ConstructionReturn};
+use std::env;
 
 // Inspired by:  https://learnmeabitcoin.com/technical/upgrades/taproot/#example-3-script-path-spend-signature
-fn main() -> UtxoReturn {
+fn main() -> ConstructionReturn {
+
+    let _ = env_logger::try_init(); // Use try_init to avoid reinitialization error
+
+    let mut total_leaf_count: u32 = 1;
+    if let Ok(env_value) = env::var("TOTAL_LEAF_COUNT") {
+        if let Ok(parsed_value) = env_value.parse::<u32>() {
+            total_leaf_count = parsed_value;
+        }
+    }
 
-    let merkle_root_hex = hex::decode("858dfe26a3dd48a2c1fcee1d631f0aadf6a61135fc51f75758e945bca534ef16").unwrap();
-    let quantum_root_hex = tagged_hash("QuantumRoot", &merkle_root_hex);
-    let p2qrh_utxo_return: UtxoReturn = create_p2qrh_utxo(quantum_root_hex);
-    p2qrh_utxo_return
+    let mut leaf_of_interest: u32 = 0;
+    if let Ok(env_value) = env::var("LEAF_OF_INTEREST") {
+        if let Ok(parsed_value) = env_value.parse::<u32>() {
+            leaf_of_interest = parsed_value;
+        }
+    }
+
+    let taptree_return: TaptreeReturn = create_multi_leaf_taptree(total_leaf_count, leaf_of_interest);
+    let p2qrh_utxo_return: UtxoReturn = create_p2qrh_utxo(taptree_return.clone().tree_root_hex);
+
+    return ConstructionReturn {
+        taptree_return: taptree_return,
+        utxo_return: p2qrh_utxo_return,
+    };
 }
@@ -1,4 +1,4 @@
-use p2qrh_ref::{ pay_to_p2wpkh_tx };
+use p2qrh_ref::{ pay_to_p2wpkh_tx, verify_schnorr_signature_via_bytes };
 
 use p2qrh_ref::data_structures::SpendDetails;
 use std::env;
@@ -15,6 +15,7 @@ fn main() -> SpendDetails {
             error!("FUNDING_TX_ID environment variable is required but not set");
             std::process::exit(1);
         });
+    let funding_tx_id_bytes: Vec<u8> = hex::decode(funding_tx_id.clone()).unwrap();
 
     // FUNDING_UTXO_AMOUNT_SATS environment variable is required
     let funding_utxo_amount_sats: u64 = env::var("FUNDING_UTXO_AMOUNT_SATS")
@@ -28,7 +29,6 @@ fn main() -> SpendDetails {
             std::process::exit(1);
         });
 
-    let funding_tx_id_bytes: Vec<u8> = hex::decode(funding_tx_id.clone()).unwrap();
 
     // The input index of the funding tx
     // Allow override via FUNDING_UTXO_INDEX environment variable
@@ -47,22 +47,31 @@ fn main() -> SpendDetails {
             std::process::exit(1);
         });
 
-    // P2QRH control block does not include internal pubkey.
-    // (P2TR internal pubkey is used to verify that the pub key and merkle root can be combined to match the tweaked pub key in ScriptPubKey).
-    // P2QRH leaf version will always be c1: The parity bit of the control byte is always 1 since P2QRH does not have a key-spend path.
-    // In this tutorial, there is only a single leaf in the taptree; thus no script path.
-    let p2qrh_control_block_bytes: Vec<u8> =
-        hex::decode("c1").unwrap();
+    let p2qrh_control_block_bytes: Vec<u8> = env::var("CONTROL_BLOCK_HEX")
+        .map(|s| hex::decode(s).unwrap())
+        .unwrap_or_else(|_| {
+            error!("CONTROL_BLOCK_HEX environment variable is required but not set");
+            std::process::exit(1);
+        });
     info!("P2QRH control block size: {}", p2qrh_control_block_bytes.len());
 
-    let leaf_script_priv_key_bytes: Vec<u8> = hex::decode("9b8de5d7f20a8ebb026a82babac3aa47a008debbfde5348962b2c46520bd5189").unwrap();
+    let leaf_script_priv_key_bytes: Vec<u8> = env::var("LEAF_SCRIPT_PRIV_KEY_HEX")
+        .map(|s| hex::decode(s).unwrap())
+        .unwrap_or_else(|_| {
+            error!("LEAF_SCRIPT_PRIV_KEY_HEX environment variable is required but not set");
+            std::process::exit(1);
+        });
 
-    // OP_PUSHBYTES_32 6d4ddc0e47d2e8f82cbe2fc2d0d749e7bd3338112cecdc76d8f831ae6620dbe0 OP_CHECKSIG
-    let leaf_script_bytes: Vec<u8> =
-        hex::decode("206d4ddc0e47d2e8f82cbe2fc2d0d749e7bd3338112cecdc76d8f831ae6620dbe0ac").unwrap();
+    // ie: OP_PUSHBYTES_32 6d4ddc0e47d2e8f82cbe2fc2d0d749e7bd3338112cecdc76d8f831ae6620dbe0 OP_CHECKSIG
+    let leaf_script_bytes: Vec<u8> = env::var("LEAF_SCRIPT_HEX")
+        .map(|s| hex::decode(s).unwrap())
+        .unwrap_or_else(|_| {
+            error!("LEAF_SCRIPT_HEX environment variable is required but not set");
+            std::process::exit(1);
+        });
 
     // https://learnmeabitcoin.com/explorer/tx/797505b104b5fb840931c115ea35d445eb1f64c9279bf23aa5bb4c3d779da0c2#outputs
-    let spend_output_pubkey_bytes: Vec<u8> = hex::decode("0de745dc58d8e62e6f47bde30cd5804a82016f9e").unwrap();
+    let spend_output_pubkey_hash_bytes: Vec<u8> = hex::decode("0de745dc58d8e62e6f47bde30cd5804a82016f9e").unwrap();
 
     // OUTPUT_AMOUNT_SATS env var is optional. Default is FUNDING_UTXO_AMOUNT_SATS - 5000 sats
     let spend_output_amount_sats: u64 = env::var("OUTPUT_AMOUNT_SATS")
@@ -77,11 +86,20 @@ fn main() -> SpendDetails {
         funding_utxo_amount_sats,
         funding_script_pubkey_bytes,
         p2qrh_control_block_bytes,
-        leaf_script_bytes,
+        leaf_script_bytes.clone(),
         leaf_script_priv_key_bytes,
-        spend_output_pubkey_bytes,
+        spend_output_pubkey_hash_bytes,
         spend_output_amount_sats
     );
 
+    // Remove first and last byte from leaf_script_bytes to get tapleaf_pubkey_bytes
+    let tapleaf_pubkey_bytes: Vec<u8> = leaf_script_bytes[1..leaf_script_bytes.len()-1].to_vec();
+    
+    let is_valid: bool = verify_schnorr_signature_via_bytes(
+        &result.sig_bytes,
+        &result.sighash,
+        &tapleaf_pubkey_bytes);
+    info!("is_valid: {}", is_valid);
+
     return result;
 }
@@ -1,4 +1,4 @@
-use p2qrh_ref::{ pay_to_p2wpkh_tx };
+use p2qrh_ref::{ pay_to_p2wpkh_tx , verify_schnorr_signature_via_bytes};
 
 use p2qrh_ref::data_structures::SpendDetails;
 use std::env;
@@ -76,9 +76,15 @@ fn main() -> SpendDetails {
         control_block_bytes,
         leaf_script_bytes,
         leaf_script_priv_key_bytes,
-        spend_output_pubkey_bytes,
+        spend_output_pubkey_bytes.clone(),
         spend_output_amount_sats
     );
 
+    let is_valid: bool = verify_schnorr_signature_via_bytes(
+            &result.sig_bytes,
+            &result.sighash,
+            &spend_output_pubkey_bytes);
+    info!("is_valid: {}", is_valid);
+
     return result;
 }
@@ -0,0 +1,41 @@
+use std::env;
+use log::info;
+use once_cell::sync::Lazy;
+use bitcoin::key::{Secp256k1};
+use bitcoin::hashes::{sha256::Hash, Hash as HashTrait};
+use bitcoin::secp256k1::{Message};
+
+use p2qrh_ref::{ acquire_schnorr_keypair, verify_schnorr_signature };
+
+/* Secp256k1 implements the Signing trait when it's initialized in signing mode.
+   It's important to note that Secp256k1 has different capabilities depending on how it's constructed:
+      * Secp256k1::new() creates a context capable of both signing and verification
+      * Secp256k1::signing_only() creates a context that can only sign
+      * Secp256k1::verification_only() creates a context that can only verify
+*/
+static SECP: Lazy<Secp256k1<bitcoin::secp256k1::All>> = Lazy::new(Secp256k1::new);
+
+fn main() {
+    let _ = env_logger::try_init();
+    let keypair = acquire_schnorr_keypair();
+    let message_bytes = b"hello";
+    
+    // Hash the message first to get a 32-byte digest
+    let message_hash = Hash::hash(message_bytes);
+    let message = Message::from_digest_slice(&message_hash.to_byte_array()).unwrap();
+    let pubkey = keypair.1;
+
+    let signature: bitcoin::secp256k1::schnorr::Signature = SECP.sign_schnorr(&message, &keypair.0.keypair(&SECP));
+
+    let signature_aux_rand: bitcoin::secp256k1::schnorr::Signature = SECP.sign_schnorr_with_aux_rand(
+        &message,
+        &keypair.0.keypair(&SECP),
+        &[0u8; 32] // 32 zero bytes of auxiliary random data
+    );
+
+    let schnorr_valid = verify_schnorr_signature(signature, message, pubkey);
+    info!("schnorr_valid: {}", schnorr_valid);
+
+    let schnorr_valid_aux_rand = verify_schnorr_signature(signature_aux_rand, message, pubkey);
+    info!("schnorr_valid_aux_rand: {}", schnorr_valid_aux_rand);
+}