Fix: GenerateNonce(ECPubKey) wasn't random as expected

NBitcoin.Tests/Secp256k1Tests.cs

@@ -3985,6 +3985,13 @@ public void musig_tweaked_test()
 			// Add the scripts there
 			var treeInfo = builder.Finalize(new TaprootInternalPubKey(aggregatedKey.ToXOnlyPubKey().ToBytes()));
 			musig = new MusigContext(ecPubKeys, msg32);
+
+			// Sanity check that GenerateNonce do not reuse nonces
+			var n1 = musig.GenerateNonce(ecPubKeys[0]);
+			var n2 = musig.GenerateNonce(ecPubKeys[0]);
+			Assert.NotEqual(Encoders.Hex.EncodeData(n1.CreatePubNonce().ToBytes()), Encoders.Hex.EncodeData(n2.CreatePubNonce().ToBytes()));
+			//
+
 			nonces = ecPubKeys.Select(c => musig.GenerateNonce(c)).ToArray();
 			musig.Tweak(treeInfo.OutputPubKey.Tweak.Span);
 			musig.ProcessNonces(nonces.Select(n => n.CreatePubNonce()).ToArray());

NBitcoin/Secp256k1/Musig/MusigContext.cs

@@ -467,7 +467,7 @@ public ECPrivKey Extract(SecpSchnorrSignature signature, MusigPartialSignature[]
 		/// <returns>A private nonce whose public part intended to be sent to other signers</returns>
 		public MusigPrivNonce GenerateNonce(ECPubKey signingPubKey)
 		{
-			return GenerateNonce(signingPubKey, Array.Empty<byte>());
+			return GenerateNonce(signingPubKey, null);
 		}
 		/// <summary>
 		/// This function derives a secret nonce that will be required for signing and