zcash-test-vectors/zcash_test_vectors/orchard/note.py

78 lines
2.2 KiB
Python
Raw Normal View History

2021-05-14 02:21:43 -07:00
import struct
from .commitments import note_commit
from .key_components import diversify_hash, prf_expand, derive_nullifier, FullViewingKey, SpendingKey
from .pallas import Point, Scalar
from .utils import to_base, to_scalar
2021-05-14 02:21:43 -07:00
from ..utils import leos2bsp
2021-05-14 02:21:43 -07:00
class OrchardNote(object):
def __init__(self, d, pk_d, v, rho, rseed):
assert isinstance(v, int)
2021-05-14 02:21:43 -07:00
self.d = d
self.pk_d = pk_d
self.v = v
self.rho = rho
self.rseed = rseed
self.rcm = self.rcm()
self.psi = self.psi()
2021-05-14 02:21:43 -07:00
def __eq__(self, other):
if other is None:
return False
2021-05-14 04:26:00 -07:00
return (
self.d == other.d and
self.pk_d == other.pk_d and
self.v == other.v and
self.rho == other.rho and
self.rcm == other.rcm and
self.psi == other.psi
2021-05-14 04:26:00 -07:00
)
def rcm(self):
return to_scalar(prf_expand(self.rseed, b'\x05' + bytes(self.rho)))
2021-05-14 02:21:43 -07:00
def psi(self):
return to_base(prf_expand(self.rseed, b'\x09' + bytes(self.rho)))
2021-05-14 02:21:43 -07:00
2021-05-14 04:26:00 -07:00
def note_commitment(self):
g_d = diversify_hash(self.d)
return note_commit(self.rcm, leos2bsp(bytes(g_d)), leos2bsp(bytes(self.pk_d)), self.v, self.rho, self.psi)
2021-05-14 04:26:00 -07:00
2021-05-14 02:21:43 -07:00
def note_plaintext(self, memo):
return OrchardNotePlaintext(self.d, self.v, self.rseed, memo)
# https://zips.z.cash/protocol/nu5.pdf#notept
class OrchardNotePlaintext(object):
def __init__(self, d, v, rseed, memo):
2021-05-14 04:26:00 -07:00
self.leadbyte = bytes.fromhex('02')
2021-05-14 02:21:43 -07:00
self.d = d
self.v = v
self.rseed = rseed
self.memo = memo
def __bytes__(self):
return (
self.leadbyte +
self.d +
struct.pack('<Q', self.v) +
self.rseed +
2021-05-14 02:21:43 -07:00
self.memo
)
def dummy_nullifier(self, rand):
sk = SpendingKey(rand.b(32))
fvk = FullViewingKey.from_spending_key(sk)
2021-05-14 02:21:43 -07:00
pk_d = fvk.default_pkd()
d = fvk.default_d()
2021-05-14 02:21:43 -07:00
v = 0
2021-05-14 02:21:43 -07:00
rseed = rand.b(32)
rho = Point.rand(rand).extract()
2021-05-14 02:21:43 -07:00
note = OrchardNote(d, pk_d, v, rho, rseed)
cm = note.note_commitment()
return derive_nullifier(fvk.nk, rho, note.psi, cm)