Bitcoin Core 29.99.0
P2P Digital Currency
script_sign.cpp
Go to the documentation of this file.
1// Copyright (c) 2020-2021 The Bitcoin Core developers
2// Distributed under the MIT software license, see the accompanying
3// file COPYING or http://www.opensource.org/licenses/mit-license.php.
4
5#include <chainparams.h>
6#include <key.h>
7#include <psbt.h>
8#include <pubkey.h>
9#include <script/keyorigin.h>
10#include <script/sign.h>
11#include <script/signingprovider.h>
12#include <streams.h>
13#include <test/fuzz/FuzzedDataProvider.h>
14#include <test/fuzz/fuzz.h>
15#include <test/fuzz/util.h>
16#include <test/util/transaction_utils.h>
17#include <util/chaintype.h>
18#include <util/translation.h>
19
20#include <cassert>
21#include <cstdint>
22#include <iostream>
23#include <map>
24#include <optional>
25#include <string>
26#include <vector>
27
28void initialize_script_sign()
29{
30 static ECC_Context ecc_context{};
31 SelectParams(ChainType::REGTEST);
32}
33
34FUZZ_TARGET(script_sign, .init = initialize_script_sign)
35{
36 FuzzedDataProvider fuzzed_data_provider(buffer.data(), buffer.size());
37 const std::vector<uint8_t> key = ConsumeRandomLengthByteVector(fuzzed_data_provider, 128);
38
39 {
40 DataStream random_data_stream{ConsumeDataStream(fuzzed_data_provider)};
41 std::map<CPubKey, KeyOriginInfo> hd_keypaths;
42 try {
43 DeserializeHDKeypaths(random_data_stream, key, hd_keypaths);
44 } catch (const std::ios_base::failure&) {
45 }
46 DataStream serialized{};
47 SerializeHDKeypaths(serialized, hd_keypaths, CompactSizeWriter(fuzzed_data_provider.ConsumeIntegral<uint8_t>()));
48 }
49
50 {
51 std::map<CPubKey, KeyOriginInfo> hd_keypaths;
52 LIMITED_WHILE(fuzzed_data_provider.ConsumeBool(), 10000) {
53 const std::optional<CPubKey> pub_key = ConsumeDeserializable<CPubKey>(fuzzed_data_provider);
54 if (!pub_key) {
55 break;
56 }
57 const std::optional<KeyOriginInfo> key_origin_info = ConsumeDeserializable<KeyOriginInfo>(fuzzed_data_provider);
58 if (!key_origin_info) {
59 break;
60 }
61 hd_keypaths[*pub_key] = *key_origin_info;
62 }
63 DataStream serialized{};
64 try {
65 SerializeHDKeypaths(serialized, hd_keypaths, CompactSizeWriter(fuzzed_data_provider.ConsumeIntegral<uint8_t>()));
66 } catch (const std::ios_base::failure&) {
67 }
68 std::map<CPubKey, KeyOriginInfo> deserialized_hd_keypaths;
69 try {
70 DeserializeHDKeypaths(serialized, key, hd_keypaths);
71 } catch (const std::ios_base::failure&) {
72 }
73 assert(hd_keypaths.size() >= deserialized_hd_keypaths.size());
74 }
75
76 {
77 SignatureData signature_data_1{ConsumeScript(fuzzed_data_provider)};
78 SignatureData signature_data_2{ConsumeScript(fuzzed_data_provider)};
79 signature_data_1.MergeSignatureData(signature_data_2);
80 }
81
82 FillableSigningProvider provider;
83 CKey k = ConsumePrivateKey(fuzzed_data_provider);
84 if (k.IsValid()) {
85 provider.AddKey(k);
86 }
87
88 {
89 const std::optional<CMutableTransaction> mutable_transaction = ConsumeDeserializable<CMutableTransaction>(fuzzed_data_provider, TX_WITH_WITNESS);
90 const std::optional<CTxOut> tx_out = ConsumeDeserializable<CTxOut>(fuzzed_data_provider);
91 const unsigned int n_in = fuzzed_data_provider.ConsumeIntegral<unsigned int>();
92 if (mutable_transaction && tx_out && mutable_transaction->vin.size() > n_in) {
93 SignatureData signature_data_1 = DataFromTransaction(*mutable_transaction, n_in, *tx_out);
94 CTxIn input;
95 UpdateInput(input, signature_data_1);
96 const CScript script = ConsumeScript(fuzzed_data_provider);
97 SignatureData signature_data_2{script};
98 signature_data_1.MergeSignatureData(signature_data_2);
99 }
100 if (mutable_transaction) {
101 CTransaction tx_from{*mutable_transaction};
102 CMutableTransaction tx_to;
103 const std::optional<CMutableTransaction> opt_tx_to = ConsumeDeserializable<CMutableTransaction>(fuzzed_data_provider, TX_WITH_WITNESS);
104 if (opt_tx_to) {
105 tx_to = *opt_tx_to;
106 }
107 CMutableTransaction script_tx_to = tx_to;
108 CMutableTransaction sign_transaction_tx_to = tx_to;
109 if (n_in < tx_to.vin.size() && tx_to.vin[n_in].prevout.n < tx_from.vout.size()) {
110 SignatureData empty;
111 (void)SignSignature(provider, tx_from, tx_to, n_in, fuzzed_data_provider.ConsumeIntegral<int>(), empty);
112 }
113 if (n_in < script_tx_to.vin.size()) {
114 SignatureData empty;
115 auto from_pub_key = ConsumeScript(fuzzed_data_provider);
116 auto amount = ConsumeMoney(fuzzed_data_provider);
117 auto n_hash_type = fuzzed_data_provider.ConsumeIntegral<int>();
118 (void)SignSignature(provider, from_pub_key, script_tx_to, n_in, amount, n_hash_type, empty);
119 MutableTransactionSignatureCreator signature_creator{tx_to, n_in, ConsumeMoney(fuzzed_data_provider), fuzzed_data_provider.ConsumeIntegral<int>()};
120 std::vector<unsigned char> vch_sig;
121 CKeyID address;
122 if (fuzzed_data_provider.ConsumeBool()) {
123 if (k.IsValid()) {
124 address = k.GetPubKey().GetID();
125 }
126 } else {
127 address = CKeyID{ConsumeUInt160(fuzzed_data_provider)};
128 }
129 auto script_code = ConsumeScript(fuzzed_data_provider);
130 auto sigversion = fuzzed_data_provider.PickValueInArray({SigVersion::BASE, SigVersion::WITNESS_V0});
131 (void)signature_creator.CreateSig(provider, vch_sig, address, script_code, sigversion);
132 }
133 std::map<COutPoint, Coin> coins{ConsumeCoins(fuzzed_data_provider)};
134 std::map<int, bilingual_str> input_errors;
135 (void)SignTransaction(sign_transaction_tx_to, &provider, coins, fuzzed_data_provider.ConsumeIntegral<int>(), input_errors);
136 }
137 }
138
139 {
140 SignatureData signature_data_1;
141 (void)ProduceSignature(provider, DUMMY_SIGNATURE_CREATOR, ConsumeScript(fuzzed_data_provider), signature_data_1);
142 SignatureData signature_data_2;
143 (void)ProduceSignature(provider, DUMMY_MAXIMUM_SIGNATURE_CREATOR, ConsumeScript(fuzzed_data_provider), signature_data_2);
144 }
145}
ecc_context
ECC_Context ecc_context
Definition: bitcoin-wallet.cpp:130
SelectParams
void SelectParams(const ChainType chain)
Sets the params returned by Params() to those for the given chain type.
Definition: chainparams.cpp:139
CKey
An encapsulated private key.
Definition: key.h:35
CKeyID
A reference to a CKey: the Hash160 of its serialized public key.
Definition: pubkey.h:24
CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:415
CTransaction
The basic transaction that is broadcasted on the network and contained in blocks.
Definition: transaction.h:296
CTxIn
An input of a transaction.
Definition: transaction.h:67
DataStream
Double ended buffer combining vector and stream-like interfaces.
Definition: streams.h:148
ECC_Context
RAII class initializing and deinitializing global state for elliptic curve support.
Definition: key.h:322
FillableSigningProvider
Fillable signing provider that keeps keys in an address->secret map.
Definition: signingprovider.h:230
FillableSigningProvider::AddKey
virtual bool AddKey(const CKey &key)
Definition: signingprovider.h:290
FuzzedDataProvider::PickValueInArray
T PickValueInArray(const T(&array)[size])
Definition: FuzzedDataProvider.h:304
MutableTransactionSignatureCreator
A signature creator for transactions.
Definition: sign.h:40
LIMITED_WHILE
#define LIMITED_WHILE(condition, limit)
Can be used to limit a theoretically unbounded loop.
Definition: fuzz.h:22
SigVersion::BASE
@ BASE
Bare scripts and BIP16 P2SH-wrapped redeemscripts.
SigVersion::WITNESS_V0
@ WITNESS_V0
Witness v0 (P2WPKH and P2WSH); see BIP 141.
TX_WITH_WITNESS
static constexpr TransactionSerParams TX_WITH_WITNESS
Definition: transaction.h:195
SerializeHDKeypaths
void SerializeHDKeypaths(Stream &s, const std::map< CPubKey, KeyOriginInfo > &hd_keypaths, CompactSizeWriter type)
Definition: psbt.h:192
DeserializeHDKeypaths
void DeserializeHDKeypaths(Stream &s, const std::vector< unsigned char > &key, std::map< CPubKey, KeyOriginInfo > &hd_keypaths)
Definition: psbt.h:150
SignTransaction
void SignTransaction(CMutableTransaction &mtx, const SigningProvider *keystore, const std::map< COutPoint, Coin > &coins, const UniValue &hashType, UniValue &result)
Sign a transaction with the given keystore and previous transactions.
Definition: rawtransaction_util.cpp:305
FUZZ_TARGET
FUZZ_TARGET(script_sign,.init=initialize_script_sign)
Definition: script_sign.cpp:34
initialize_script_sign
void initialize_script_sign()
Definition: script_sign.cpp:28
ProduceSignature
bool ProduceSignature(const SigningProvider &provider, const BaseSignatureCreator &creator, const CScript &fromPubKey, SignatureData &sigdata)
Produce a script signature using a generic signature creator.
Definition: sign.cpp:502
UpdateInput
void UpdateInput(CTxIn &input, const SignatureData &data)
Definition: sign.cpp:675
DUMMY_MAXIMUM_SIGNATURE_CREATOR
const BaseSignatureCreator & DUMMY_MAXIMUM_SIGNATURE_CREATOR
A signature creator that just produces 72-byte empty signatures.
Definition: sign.cpp:745
DataFromTransaction
SignatureData DataFromTransaction(const CMutableTransaction &tx, unsigned int nIn, const CTxOut &txout)
Extract signature data from a transaction input, and insert it.
Definition: sign.cpp:610
DUMMY_SIGNATURE_CREATOR
const BaseSignatureCreator & DUMMY_SIGNATURE_CREATOR
A signature creator that just produces 71-byte empty signatures.
Definition: sign.cpp:744
CMutableTransaction
A mutable version of CTransaction.
Definition: transaction.h:378
CMutableTransaction::vin
std::vector< CTxIn > vin
Definition: transaction.h:379
SignatureData::MergeSignatureData
void MergeSignatureData(SignatureData sigdata)
Definition: sign.cpp:681
ConsumeScript
CScript ConsumeScript(FuzzedDataProvider &fuzzed_data_provider, const bool maybe_p2wsh) noexcept
Definition: util.cpp:93
ConsumePrivateKey
CKey ConsumePrivateKey(FuzzedDataProvider &fuzzed_data_provider, std::optional< bool > compressed) noexcept
Definition: util.cpp:230
ConsumeMoney
CAmount ConsumeMoney(FuzzedDataProvider &fuzzed_data_provider, const std::optional< CAmount > &max) noexcept
Definition: util.cpp:29
ConsumeCoins
std::map< COutPoint, Coin > ConsumeCoins(FuzzedDataProvider &fuzzed_data_provider) noexcept
Definition: util.cpp:166
ConsumeDataStream
DataStream ConsumeDataStream(FuzzedDataProvider &fuzzed_data_provider, const std::optional< size_t > &max_length=std::nullopt) noexcept
Definition: util.h:73
ConsumeRandomLengthByteVector
std::vector< B > ConsumeRandomLengthByteVector(FuzzedDataProvider &fuzzed_data_provider, const std::optional< size_t > &max_length=std::nullopt) noexcept
Definition: util.h:57
ConsumeUInt160
uint160 ConsumeUInt160(FuzzedDataProvider &fuzzed_data_provider) noexcept
Definition: util.h:162
SignSignature
bool SignSignature(const SigningProvider &provider, const CScript &fromPubKey, CMutableTransaction &txTo, unsigned int nIn, const CAmount &amount, int nHashType, SignatureData &sig_data)
Produce a satisfying script (scriptSig or witness).
Definition: transaction_utils.cpp:94
transaction_utils.h
assert
assert(!tx.IsCoinBase())
Generated on Thu Jun 26 2025 20:00:13 for Bitcoin Core by doxygen 1.9.4