Issue with constructing a correct Schnorr Signature for a Taproot transaction

I'm experimenting with creating and sending Taproot transactions programmatically and encountered an issue with the Schnorr signature. I'm trying to send simple transaction with one V1_P2TR input and one V1_P2TR output, using what I understand to be a key path spend approach, without any scripts. However, when I attempt to send the transaction, my node rejects it with the error: mandatory-script-verify-flag-failed (Invalid Schnorr signature)

I'm using the following dependencies in my Rust project:

bitcoin = { version = "0.30.1", features = ["rand"] }
ord-bitcoincore-rpc = "0.17.1"   # (a forked version of bitcoincore-rpc, though I believe this detail is not crucial to the issue).

Here's the relevant part of my code:

fn create_and_send_tmp_tx(client: &Client, utxo: &ListUnspentResultEntry, fee_rate: f64, key_pair: &UntweakedKeyPair, address_to: &Address) -> Result<Txid> {

    let secp256k1 = Secp256k1::new();

    // Verifying that UTXO can be spent by provided key pair
    let (public_key, _parity) = XOnlyPublicKey::from_keypair(&key_pair);
    let address = Address::p2tr(&secp256k1, public_key, None, Network::Bitcoin);
    let address_script_pubkey = address.script_pubkey();
    let utxo_script_pubkey = utxo.script_pub_key.clone();
    if ! (address_script_pubkey == utxo_script_pubkey) {
        bail!("Can't spend utxo");
    }

    let mut tx = Transaction {
        input: vec![TxIn {
            previous_output: OutPoint {
                txid: utxo.txid,
                vout: utxo.vout,
            },
            script_sig: Builder::new().into_script(),
            witness: Witness::new(),
            sequence: Sequence::ENABLE_RBF_NO_LOCKTIME,
        }],
        output: vec![TxOut {
            script_pubkey: address_to.script_pubkey(),
            value: 0,   // tmp value for estimation
        }],
        lock_time: LockTime::ZERO,
        version: 2,
    };

    tx.input[0].witness.push(
        Signature::from_slice(&[0; SCHNORR_SIGNATURE_SIZE])
            .unwrap()
            .to_vec(),
    );

    let fee = Amount::from_sat((fee_rate * tx.vsize()).round() as u64);
    info!("Fee: {:?}", fee.to_sat());
    tx.output[0].value = utxo.amount.to_sat() - fee.to_sat();
    tx.input[0].witness.clear();

    let prevouts = vec![TxOut {script_pubkey: utxo.script_pub_key.clone(), value: utxo.amount.to_sat()}];

    let mut sighash_cache = SighashCache::new(&tx);
    let sighash = sighash_cache.taproot_key_spend_signature_hash(
        0,
        &Prevouts::All(&prevouts),
        TapSighashType::Default,
    ).expect("Failed to compute sighash");

    let msg = secp256k1::Message::from_slice(sighash.as_ref()).expect("should be cryptographically secure hash");
    let sig = secp256k1.sign_schnorr(&msg, &key_pair);

    tx.input[0].witness.push(
        Signature {
            sig,
            hash_ty: TapSighashType::Default,
        }
            .to_vec(),
    );

    let signed_tx_bytes = consensus::encode::serialize(&tx);
    // let signed_tx_bytes = client.sign_raw_transaction_with_wallet(&tx, None, None)?.hex;

    let txid = match client.send_raw_transaction(&signed_tx_bytes) {
        Ok(txid) => txid,
        Err(err) => {
            return Err(anyhow!("Failed to send transaction: {err}\n"))
        }
    };
    info!("Tx sent: {:?}", txid);
    Ok(txid)
}

The wallet I'm using is connected to my node. If I use the client.sign_raw_transaction_with_wallet(&tx, None, None)?.hex; function, which allows the node to replace my witness with a correct one, the transaction is accepted. This suggests that my inputs and outputs are constructed correctly, and the issue likely lies with how I'm generating the signature.

I've successfully sent transactions using a script path spend with a similar approach, using sighash_cache.taproot_script_spend_signature_hash, without the node's intervention in signing.

Could someone help me identify what I'm doing wrong?



from Recent Questions - Bitcoin Stack Exchange https://ift.tt/n3dHaje
via IFTTT

Comments

Post a Comment

Popular posts from this blog

Do Kwon’s Detention Prolonged Until 2024 As Montenegro Responds To Extradition Requests

Image
According to an International Business Times report , Montenegro’s Supreme Court decided to extend the detention of TerraForm Labs founder and CEO Do Kwon until February 2024, following extradition requests from the United States and South Korea. Closed-Door Discussions Reveal Montenegro’s Plan For Do Kwon Initially set to be extradited to the US on December 15, Do Kwon’s fate turned when the Montenegrin High Court ruled to prolong his stay until February 15, 2024. The decision stems from charges related to the collapse of the TerraUSD stablecoin, which led to significant financial losses. The High Court had previously ordered Kwon’s extradition by Friday, but his defense team appealed the decision in the appellate court in Podgorica, the capital of Montenegro. The Montenegrin Court of Appeal confirmed that Kwon contested the High Court’s ruling, vehemently stating, “I do not submit to the court’s decision.” Recent reports indicate that Montenegro’s Justice Minister, Andrej Mil
Read more

Sam Bankman-Fried Trial Begins Tomorrow: 3 Reasons Ex-SEC Official Foresees Conviction

Image
The trial of Sam Bankman-Fried, the founder of cryptocurrency exchange FTX and hedge fund Alameda Research, is set to commence in New York on Tuesday, October 3.  This comes almost a year after the collapse of both FTX and Alameda Research. The events leading up to the trial paint a picture of alleged fraudulent activities and money laundering that caused significant damage to the businesses involved. Ex-SEC Official’s Bleak Prediction As Sam Bankman-Fried Trial Commences In a nutshell, Alameda Research purportedly took customer deposits from FTX and invested them in fictitious crypto tokens, which derived their value from the confidence in FTX’s operations.  When this confidence waned, FTX and Alameda Research suffered substantial losses, which many argue contributed to a broader disillusionment in the cryptocurrency industry.  Following an investigation, federal authorities uncovered numerous alleged crimes, leading to seven federal fraud and money-laundering charges against B
Read more

Ethereum Price Plummets 9% As Fed Chair Passes Hawkish Remarks

The crypto community has witnessed another price plunge after the just concluded Federal Reserve annual meeting. Many investors already anticipated a new turn in asset prices after Jerome Powell spoke on the approach to combat inflation. But from the turn of events, Powell tipped the scale against investors’ expectations. As a result, many cryptocurrencies and equities have already started a downward price trend. Ethereum (ETH) and many other cryptocurrencies have lost some August 25 price gains. After the meeting, ETH’s price tanked 9% and stood at $1555. But the bears continued to push the price lower. Some hours later, in the evening, ETH plummeted lower to $1478 before climbing up gradually.  Related Reading: Avalanche (AVAX) Tries Comeback, Unfazed By $2-B Market Cap Loss In Last 2 Weeks As of the time of writing, ETH is still in the reds on August 27. The price fluctuates between $1499 and $1505. The coin struggled to climb a bit higher than the August 26 lowest point of $147
Read more