f rename is_positive in xonly_pubkey api to has_square_y

jonasnick · jonasnick · commit affa6e87e972 · 2019-11-05T12:55:43.000Z
diff --git a/include/secp256k1.h b/include/secp256k1.h
@@ -714,9 +714,9 @@ SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_ec_pubkey_combine(
 ) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3);
 
 /** Opaque data structure that holds a parsed and valid "x-only" public key.
- *  An x-only pubkey encodes a positive point. That is a point whose Y
- *  coordinate is square. It is serialized using only its X coordinate (32
- *  bytes).
+ *  An x-only pubkey encodes a point whose Y coordinate is square. It is
+ *  serialized using only its X coordinate (32 bytes). See bip-schnorr for more
+ *  information about x-only pubkeys.
  *
  *  The exact representation of data inside is implementation defined and not
  *  guaranteed to be portable between different platforms or versions. It is
@@ -777,27 +777,24 @@ SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_create(
     const unsigned char *seckey
 ) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3);
 
-/** Converts a secp256k1_pubkey into a secp256k1_xonly_pubkey. This
- *  function optionally outputs a sign bit that can be used to convert
- *  the secp256k1_xonly_pubkey back into the same secp256k1_pubkey.
- *  The sign bit is 0 if the input pubkey encodes a positive point (has a Y
- *  coordinate that is square), otherwise it is 1.
+/** Converts a secp256k1_pubkey into a secp256k1_xonly_pubkey.
  *
  *  Returns: 1 if the public key was successfully converted
  *           0 otherwise
  *
  *  Args:         ctx: pointer to a context object
  *  Out: xonly_pubkey: pointer to an x-only public key object for placing the
  *                     converted public key (cannot be NULL)
- *              sign: sign bit of the pubkey. Can be used to reconstruct a
- *                    public key from x-only public key (can be NULL)
+ *      has_square_y: pointer to an integer that will be set to 1 if the pubkey
+ *                    encodes a point with a square Y coordinate, and set to 0
+ *                    otherwise. (can be NULL)
  *  In:       pubkey: pointer to a public key that is converted (cannot be
  *                    NULL)
  */
 SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_from_pubkey(
     const secp256k1_context* ctx,
     secp256k1_xonly_pubkey *xonly_pubkey,
-    int *is_positive,
+    int *has_square_y,
     const secp256k1_pubkey *pubkey
 ) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(4);
 
@@ -806,10 +803,9 @@ SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_from_pubke
  *  secp256k1_xonly_pubkey_tweak_add called with the same tweak and corresponding
  *  input public key.
  *
- *  If the public key corresponds to a positive point, tweak32 is added to the
- *  seckey (modulo the group order). If the public key corresponds to a
- *  negative point, tweak32 is added to the negation of the seckey (modulo the
- *  group order).
+ *  If the public key corresponds to a point with square Y, tweak32 is added to
+ *  the seckey (modulo the group order). Otherwise, tweak32 is added to the
+ *  negation of the seckey (modulo the group order).
  *
  *  Returns: 1 if the tweak was successfully added to seckey
  *           0 if the tweak was out of range or the resulting private key would be
@@ -836,21 +832,22 @@ SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_privkey_tweak_add
  *  Args:           ctx: pointer to a context object initialized for validation
  *                       (cannot be NULL)
  *  Out:  output_pubkey: pointer to a public key object (cannot be NULL)
- *          is_positive: pointer to an integer that will be set to 1 if the
- *                       output_pubkey is positive, and 0 otherwise (cannot be NULL)
+ *         has_square_y: pointer to an integer that will be set to 1 if the
+ *                       output_pubkey has a square Y coordinate, and set to 0
+ *                       otherwise (cannot be NULL)
  *  In: internal_pubkey: pointer to an x-only public key object to apply the
  *                       tweak to (cannot be NULL)
  *              tweak32: pointer to a 32-byte tweak (cannot be NULL)
  */
 SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_tweak_add(
     const secp256k1_context* ctx,
     secp256k1_xonly_pubkey *output_pubkey,
-    int *is_positive,
+    int *has_square_y,
     const secp256k1_xonly_pubkey *internal_pubkey,
     const unsigned char *tweak32
 ) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3) SECP256K1_ARG_NONNULL(4) SECP256K1_ARG_NONNULL(5);
 
-/** Verifies that output_pubkey and is_positive is the result of calling
+/** Verifies that output_pubkey and has_square_y is the result of calling
  *  secp256k1_xonly_pubkey_tweak_add with internal_pubkey and tweak32.
  *
  *  Returns: 1 if output_pubkey is the result of tweaking the internal_pubkey with
@@ -860,15 +857,15 @@ SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_tweak_add(
  *  Args:           ctx: pointer to a context object initialized for validation
  *                       (cannot be NULL)
  *  In:   output_pubkey: pointer to a public key object (cannot be NULL)
- *          is_positive: 1 if output_pubkey is positive and 0 otherwise
+ *         has_square_y: 1 if output_pubkey has a square Y coordinate and 0 otherwise.
  *      internal_pubkey: pointer to an x-only public key object to apply the
  *                       tweak to (cannot be NULL)
  *              tweak32: pointer to a 32-byte tweak (cannot be NULL)
  */
 SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_xonly_pubkey_tweak_verify(
     const secp256k1_context* ctx,
     const secp256k1_xonly_pubkey *output_pubkey,
-    int is_positive,
+    int has_square_y,
     const secp256k1_xonly_pubkey *internal_pubkey,
     const unsigned char *tweak32
 ) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(4) SECP256K1_ARG_NONNULL(5);
diff --git a/src/secp256k1.c b/src/secp256k1.c
@@ -730,19 +730,19 @@ int secp256k1_ec_pubkey_combine(const secp256k1_context* ctx, secp256k1_pubkey *
     return 1;
 }
 
-/* Converts the point encoded by a secp256k1_pubkey into its absolute value,
- * i.e. keeps it as is if it is positive and otherwise negates it. Sign is set
- * to 1 if the input point was negative and set to 0 otherwise. */
-static void secp256k1_ec_pubkey_absolute(const secp256k1_context* ctx, secp256k1_pubkey *pubkey, int *sign) {
+/* Converts the point encoded by a secp256k1_pubkey into its "absolute" value,
+ * i.e. keeps it as is if it is has a square Y and otherwise negates it.
+ * has_square_y is set to 1 in the former case and to 0 in the latter case. */
+static void secp256k1_ec_pubkey_absolute(const secp256k1_context* ctx, secp256k1_pubkey *pubkey, int *has_square_y) {
    secp256k1_ge ge;
     secp256k1_pubkey_load(ctx, &ge, pubkey);
-    if (sign != NULL) {
-        *sign = 0;
+    if (has_square_y != NULL) {
+        *has_square_y = 1;
     }
     if (!secp256k1_fe_is_quad_var(&ge.y)) {
         secp256k1_ge_neg(&ge, &ge);
-        if (sign != NULL) {
-            *sign = 1;
+        if (has_square_y != NULL) {
+            *has_square_y = 0;
         }
     }
     secp256k1_pubkey_save(pubkey, &ge);
@@ -792,14 +792,14 @@ int secp256k1_xonly_pubkey_serialize(const secp256k1_context* ctx, unsigned char
     return 1;
 }
 
-int secp256k1_xonly_pubkey_from_pubkey(const secp256k1_context* ctx, secp256k1_xonly_pubkey *xonly_pubkey, int *sign, const secp256k1_pubkey *pubkey) {
+int secp256k1_xonly_pubkey_from_pubkey(const secp256k1_context* ctx, secp256k1_xonly_pubkey *xonly_pubkey, int *has_square_y, const secp256k1_pubkey *pubkey) {
     VERIFY_CHECK(ctx != NULL);
     ARG_CHECK(xonly_pubkey != NULL);
     ARG_CHECK(pubkey != NULL);
 
     *xonly_pubkey = *(const secp256k1_xonly_pubkey *) pubkey;
 
-    secp256k1_ec_pubkey_absolute(ctx, (secp256k1_pubkey *) xonly_pubkey, sign);
+    secp256k1_ec_pubkey_absolute(ctx, (secp256k1_pubkey *) xonly_pubkey, has_square_y);
     return 1;
 }
 
@@ -824,35 +824,35 @@ int secp256k1_xonly_privkey_tweak_add(const secp256k1_context* ctx, unsigned cha
     return secp256k1_ec_privkey_tweak_add(ctx, seckey32, tweak32);
 }
 
-int secp256k1_xonly_pubkey_tweak_add(const secp256k1_context* ctx, secp256k1_xonly_pubkey *output_pubkey, int *is_positive, const secp256k1_xonly_pubkey *internal_pubkey, const unsigned char *tweak32) {
+int secp256k1_xonly_pubkey_tweak_add(const secp256k1_context* ctx, secp256k1_xonly_pubkey *output_pubkey, int *has_square_y, const secp256k1_xonly_pubkey *internal_pubkey, const unsigned char *tweak32) {
     secp256k1_pubkey pubkey_tmp;
     VERIFY_CHECK(ctx != NULL);
     ARG_CHECK(output_pubkey != NULL);
-    ARG_CHECK(is_positive != NULL);
+    ARG_CHECK(has_square_y != NULL);
     ARG_CHECK(internal_pubkey != NULL);
     ARG_CHECK(tweak32 != NULL);
 
     pubkey_tmp = *(secp256k1_pubkey *)internal_pubkey;
     if(!secp256k1_ec_pubkey_tweak_add(ctx, &pubkey_tmp, tweak32)) {
         return 0;
     }
-    return secp256k1_xonly_pubkey_from_pubkey(ctx, output_pubkey, is_positive, &pubkey_tmp);
+    return secp256k1_xonly_pubkey_from_pubkey(ctx, output_pubkey, has_square_y, &pubkey_tmp);
 }
 
-int secp256k1_xonly_pubkey_tweak_verify(const secp256k1_context* ctx, const secp256k1_xonly_pubkey *output_pubkey, int is_positive, const secp256k1_xonly_pubkey *internal_pubkey, const unsigned char *tweak32) {
+int secp256k1_xonly_pubkey_tweak_verify(const secp256k1_context* ctx, const secp256k1_xonly_pubkey *output_pubkey, int has_square_y, const secp256k1_xonly_pubkey *internal_pubkey, const unsigned char *tweak32) {
     secp256k1_xonly_pubkey pk_expected;
-    int is_positive_expected;
+    int has_square_y_expected;
     VERIFY_CHECK(ctx != NULL);
     ARG_CHECK(secp256k1_ecmult_context_is_built(&ctx->ecmult_ctx));
     ARG_CHECK(internal_pubkey != NULL);
     ARG_CHECK(output_pubkey != NULL);
     ARG_CHECK(tweak32 != NULL);
 
-    if (!secp256k1_xonly_pubkey_tweak_add(ctx, &pk_expected, &is_positive_expected, internal_pubkey, tweak32)) {
+    if (!secp256k1_xonly_pubkey_tweak_add(ctx, &pk_expected, &has_square_y_expected, internal_pubkey, tweak32)) {
         return 0;
     }
     return memcmp(&pk_expected, output_pubkey, sizeof(pk_expected)) == 0
-            && is_positive_expected == is_positive;
+            && has_square_y_expected == has_square_y;
 }
 
 #ifdef ENABLE_MODULE_ECDH
diff --git a/src/tests.c b/src/tests.c
@@ -4278,7 +4278,7 @@ void test_xonly_pubkey(void) {
     secp256k1_ge pk1;
     secp256k1_ge pk2;
     secp256k1_fe y;
-    int is_positive;
+    int has_square_y;
     unsigned char buf32[32];
 
     /* sk = 0 should fail */
@@ -4297,9 +4297,9 @@ void test_xonly_pubkey(void) {
     CHECK(secp256k1_fe_equal(&pk1.y, &y) == 1);
 
     /* Test from_pubkey */
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(ctx, &xonly_pk_tmp, &is_positive, &xy_pk) == 1);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(ctx, &xonly_pk_tmp, &has_square_y, &xy_pk) == 1);
     CHECK(memcmp(&xonly_pk_tmp, &xonly_pk, sizeof(xonly_pk)) == 0);
-    CHECK(is_positive == 1);
+    CHECK(has_square_y == 0);
 
     /* Serialization and parse roundtrip */
     CHECK(secp256k1_xonly_pubkey_create(ctx, &xonly_pk, sk) == 1);
@@ -4321,7 +4321,7 @@ void test_xonly_pubkey_api(void) {
     unsigned char xy_sk[32];
     unsigned char buf32[32];
     unsigned char tweak[32];
-    int pk_is_positive;
+    int has_square_y;
 
     /** setup **/
     secp256k1_context *none = secp256k1_context_create(SECP256K1_CONTEXT_NONE);
@@ -4379,46 +4379,46 @@ void test_xonly_pubkey_api(void) {
     CHECK(ecount == 4);
 
     ecount = 0;
-    CHECK(secp256k1_xonly_pubkey_tweak_add(none, &pk, &pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(none, &pk, &has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(sign, &pk, &pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(sign, &pk, &has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 2);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &pk_is_positive, &pk, tweak) == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, NULL, &pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &has_square_y, &pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, NULL, &has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 3);
     CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, NULL, &pk, tweak) == 0);
     CHECK(ecount == 4);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &pk_is_positive, NULL, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &has_square_y, NULL, tweak) == 0);
     CHECK(ecount == 5);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &pk_is_positive, &pk, NULL) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk, &has_square_y, &pk, NULL) == 0);
     CHECK(ecount == 6);
 
     ecount = 0;
-    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk_tweaked, &pk_is_positive, &pk, tweak) == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(none, &pk_tweaked, pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(vrfy, &pk_tweaked, &has_square_y, &pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(none, &pk_tweaked, has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(sign, &pk_tweaked, pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(sign, &pk_tweaked, has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 2);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, pk_is_positive, &pk, tweak) == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, NULL, pk_is_positive, &pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, has_square_y, &pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, NULL, has_square_y, &pk, tweak) == 0);
     CHECK(ecount == 3);
-    /* invalid is_positive value */
+    /* invalid has_square_y value */
     CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, 2, &pk, tweak) == 0);
     CHECK(ecount == 3);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, pk_is_positive, NULL, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, has_square_y, NULL, tweak) == 0);
     CHECK(ecount == 4);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, pk_is_positive, &pk, NULL) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(vrfy, &pk_tweaked, has_square_y, &pk, NULL) == 0);
     CHECK(ecount == 5);
 
 
     ecount = 0;
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, &pk, &pk_is_positive, &xy_pk) == 1);
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(sign, &pk, &pk_is_positive, &xy_pk) == 1);
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(vrfy, &pk, &pk_is_positive, &xy_pk) == 1);
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, NULL, &pk_is_positive, &xy_pk) == 0);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, &pk, &has_square_y, &xy_pk) == 1);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(sign, &pk, &has_square_y, &xy_pk) == 1);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(vrfy, &pk, &has_square_y, &xy_pk) == 1);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, NULL, &has_square_y, &xy_pk) == 0);
     CHECK(ecount == 1);
     CHECK(secp256k1_xonly_pubkey_from_pubkey(none, &pk, NULL, &xy_pk) == 1);
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, &pk, &pk_is_positive, NULL) == 0);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(none, &pk, &has_square_y, NULL) == 0);
     CHECK(ecount == 2);
 
     secp256k1_context_destroy(none);
@@ -4433,7 +4433,7 @@ void test_xonly_pubkey_tweak(void) {
     secp256k1_xonly_pubkey internal_pk;
     secp256k1_xonly_pubkey output_pk;
     secp256k1_pubkey xy_pk;
-    int is_positive;
+    int has_square_y;
     unsigned char tweak[32];
 
     memset(zeros, 0, sizeof(zeros));
@@ -4442,23 +4442,23 @@ void test_xonly_pubkey_tweak(void) {
     CHECK(secp256k1_xonly_pubkey_create(ctx, &internal_pk, sk) == 1);
 
     memset(tweak, 1, sizeof(tweak));
-    CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &output_pk, &is_positive, &internal_pk, tweak) == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, is_positive, &internal_pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &output_pk, &has_square_y, &internal_pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, has_square_y, &internal_pk, tweak) == 1);
     /* Using privkey_tweak_add gives the same result */
     CHECK(secp256k1_xonly_privkey_tweak_add(ctx, sk, tweak) == 1);
     CHECK(secp256k1_ec_pubkey_create(ctx, &xy_pk, sk) == 1);
-    CHECK(secp256k1_xonly_pubkey_from_pubkey(ctx, &output_pk, &is_positive, &xy_pk) == 1);
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, is_positive, &internal_pk, tweak) == 1);
+    CHECK(secp256k1_xonly_pubkey_from_pubkey(ctx, &output_pk, &has_square_y, &xy_pk) == 1);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, has_square_y, &internal_pk, tweak) == 1);
 
-    /* Wrong is_positive */
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, !is_positive, &internal_pk, tweak) == 0);
+    /* Wrong has_square_y */
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, !has_square_y, &internal_pk, tweak) == 0);
     /* Wrong public key */
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &internal_pk, is_positive, &internal_pk, tweak) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &internal_pk, has_square_y, &internal_pk, tweak) == 0);
 
     /* Overflowing tweak not allowed */
-    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, is_positive, &internal_pk, overflows) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &output_pk, has_square_y, &internal_pk, overflows) == 0);
     CHECK(secp256k1_xonly_privkey_tweak_add(ctx, sk, overflows) == 0);
-    CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &output_pk, &is_positive, &internal_pk, overflows) == 0);
+    CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &output_pk, &has_square_y, &internal_pk, overflows) == 0);
 }
 
 /* Starts with an initial pubkey and recursively creates N_PUBKEYS - 1
@@ -4468,7 +4468,7 @@ void test_xonly_pubkey_tweak(void) {
 void test_xonly_pubkey_tweak_recursive(void) {
     unsigned char sk[32];
     secp256k1_xonly_pubkey pk[N_PUBKEYS];
-    int is_positive[N_PUBKEYS];
+    int has_square_y[N_PUBKEYS];
     unsigned char tweak[N_PUBKEYS - 1][32];
     int i;
 
@@ -4477,12 +4477,12 @@ void test_xonly_pubkey_tweak_recursive(void) {
     /* Add tweaks */
     for (i = 0; i < N_PUBKEYS - 1; i++) {
         memset(tweak[i], i + 1, sizeof(tweak[i]));
-        CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &pk[i + 1], &is_positive[i +  1], &pk[i], tweak[i]) == 1);
+        CHECK(secp256k1_xonly_pubkey_tweak_add(ctx, &pk[i + 1], &has_square_y[i +  1], &pk[i], tweak[i]) == 1);
     }
 
     /* Verify tweaks */
     for (i = N_PUBKEYS - 1; i > 0; i--) {
-        CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &pk[i], is_positive[i], &pk[i - 1], tweak[i - 1]) == 1);
+        CHECK(secp256k1_xonly_pubkey_tweak_verify(ctx, &pk[i], has_square_y[i], &pk[i - 1], tweak[i - 1]) == 1);
     }
 }
 #undef N_PUBKEYS
