Add ellswift usage example #1551

pull theStack wants to merge 2 commits into bitcoin-core:master from theStack:add_ellswift_example changing 9 files +146 −3
  1. theStack commented at 2:17 PM on June 25, 2024: contributor

    This should hopefully be useful as orientation for users implementing the shared secret derivation part of BIP324. Conceptually the example is not very different to the ECDH one, so a lot of code/comments are just copied (e.g. context creation, secret key generation, shared secret comparison, console output, cleanup with secret key clearing).

  2. in CHANGELOG.md:11 in 78fe9f495f outdated 
       6 | @@ -7,6 +7,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
   7 |  
   8 |  ## [Unreleased]
   9 |  
  10 | +#### Added
  11 | + - Added usage example for a ElligatorSwift key exchange.
    real-or-random commented at 2:43 PM on June 25, 2024: 
     - Added usage example for an ElligatorSwift key exchange.
  3. in examples/ellswift.c:81 in 78fe9f495f outdated 
      76 | +    /*** Create the shared secret on each side ***/
  77 | +
  78 | +    /* Perform x-only ECDH with seckey1 and ellswift_pubkey2. Should never fail
  79 | +     * with a verified seckey and valid pubkey. Note that both parties pass both
  80 | +     * EllSwift pubkeys in the same order; the pubkey to be actually used for the
  81 | +     * shared secret derivation is determined by the "party" boolean (sixth parameter). */
    real-or-random commented at 2:46 PM on June 25, 2024: 
         * EllSwift pubkeys in the same order; the pubkey of the calling party
     * is determined by the "party" boolean (sixth parameter). */

    I think this is a bit cleaner (still need to reformat the paragraph)

  4. in examples/ellswift.c:112 in 78fe9f495f outdated 
     107 | +    /* This will clear everything from the context and free the memory */
 108 | +    secp256k1_context_destroy(ctx);
 109 | +
 110 | +    /* It's best practice to try to clear secrets from memory after using them.
 111 | +     * This is done because some bugs can allow an attacker to leak memory, for
 112 | +     * example through "out of bounds" array access (see Heartbleed), Or the OS
    real-or-random commented at 2:47 PM on June 25, 2024: 
         * example through "out of bounds" array access (see Heartbleed), or the OS

    is this copied from the other example? Then fix it there too.

  5. real-or-random commented at 2:47 PM on June 25, 2024: contributor

    Concept ACK

  6. real-or-random added the label user-documentation on Jun 25, 2024
  7. examples: fix case typos in secret clearing paragraphs (s/, Or/, or/) fe4fbaa7f3
  8. Add ellswift usage example
    This should hopefully be useful as orientation for users implementing
the key exchange part of BIP324. Conceptually the example is not very
different to the ECDH one, so a lot of code/comments are just copied
(e.g. context creation, secret key generation, shared secret comparison,
console output, cleanup with secret key clearing).
    31f84595c4
  9. theStack force-pushed on Jun 25, 2024
  10. theStack commented at 3:24 PM on June 25, 2024: contributor

    @real-or-random: Thanks for the quick review, force-pushed with all the suggestions taken.

  11. in .gitignore:13 in 31f84595c4 
       9 | @@ -10,6 +10,7 @@ ctime_tests
  10 |  ecdh_example
  11 |  ecdsa_example
  12 |  schnorr_example
  13 | +ellswift_example
    hebasto commented at 10:12 PM on June 25, 2024:

    nit: I understand that this doesn’t adhere to the surrounding code, but, strictly speaking, it should be

    /ellswift_example
    real-or-random commented at 9:32 AM on June 26, 2024:

    Yeah, feel free to adjust this for the binaries, but I guess either variant is fine (we also have the pattern *.exe, which may in rare cases a bit too coarse`...)

  12. hebasto commented at 10:12 PM on June 25, 2024: member

    31f84595c4fa8fcc89021790257b85416aae44f6

    I have reviewed both build systems changes and they look OK.

  13. real-or-random approved
  14. real-or-random commented at 9:30 AM on June 26, 2024: contributor

    utACK 31f84595c4fa8fcc89021790257b85416aae44f6

  15. jonasnick approved
  16. jonasnick commented at 6:15 PM on July 10, 2024: contributor

    ACK 31f84595c4fa8fcc89021790257b85416aae44f6

  17. jonasnick merged this on Jul 10, 2024
  18. jonasnick closed this on Jul 10, 2024
  19. theStack deleted the branch on Jul 10, 2024
  20. fanquake referenced this in commit 41797f8ab9 on Aug 2, 2024
  21. fanquake referenced this in commit d928f4c47f on Aug 6, 2024
  22. vmta referenced this in commit f2a8540eae on Sep 3, 2024
  23. vmta referenced this in commit 8c2166b973 on Sep 6, 2024
  24. real-or-random referenced this in commit e59158b6eb on Oct 15, 2024
  25. vmta referenced this in commit 4d1f6d5635 on Oct 29, 2024
  26. janus referenced this in commit 1fed89422a on Jan 6, 2025
  27. div72 referenced this in commit af627d47c3 on Apr 12, 2025
  28. oskarszoon referenced this in commit 0d5c9260f4 on Jul 1, 2025
  29. real-or-random referenced this in commit 4ae7cb4f71 on Feb 11, 2026
  30. github-actions[bot] referenced this in commit 758d4e90b4 on Mar 1, 2026
  31. github-actions[bot] referenced this in commit 68a2178f22 on Mar 1, 2026
  32. github-actions[bot] referenced this in commit a8bc1a0b2b on Mar 1, 2026
  33. 0x000000000019d6689c085ae165831e934ff76 referenced this in commit 3b9450150d on Mar 2, 2026
  34. csjones referenced this in commit a4d92824ae on Mar 2, 2026
Contributors
theStackreal-or-randomhebastojonasnick
Labels
user-documentation
Linked (view graph)
#1553 cmake: Set top-level target output locations
github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin-core/secp256k1. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2026-05-19 06:52 UTC