sigcache_8cpp_source.html

// Copyright (c) 2009-2010 Satoshi Nakamoto

// Copyright (c) 2009-2022 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <script/sigcache.h>


#include <crypto/sha256.h>

#include <logging.h>

#include <pubkey.h>

#include <random.h>

#include <script/interpreter.h>

#include <span.h>

#include <uint256.h>


#include <mutex>

#include <shared_mutex>

#include <vector>


SignatureCache::SignatureCache(const size_t max_size_bytes)

{

    uint256 nonce = GetRandHash();

    // We want the nonce to be 64 bytes long to force the hasher to process

    // this chunk, which makes later hash computations more efficient. We

    // just write our 32-byte entropy, and then pad with 'E' for ECDSA and

    // 'S' for Schnorr (followed by 0 bytes).

    static constexpr unsigned char PADDING_ECDSA[32] = {'E'};

    static constexpr unsigned char PADDING_SCHNORR[32] = {'S'};

    m_salted_hasher_ecdsa.Write(nonce.begin(), 32);

    m_salted_hasher_ecdsa.Write(PADDING_ECDSA, 32);

    m_salted_hasher_schnorr.Write(nonce.begin(), 32);

    m_salted_hasher_schnorr.Write(PADDING_SCHNORR, 32);


    const auto [num_elems, approx_size_bytes] = setValid.setup_bytes(max_size_bytes);

    LogPrintf("Using %zu MiB out of %zu MiB requested for signature cache, able to store %zu elements\n",

              approx_size_bytes >> 20, max_size_bytes >> 20, num_elems);

}


void SignatureCache::ComputeEntryECDSA(uint256& entry, const uint256& hash, const std::vector<unsigned char>& vchSig, const CPubKey& pubkey) const

{

    CSHA256 hasher = m_salted_hasher_ecdsa;

    hasher.Write(hash.begin(), 32).Write(pubkey.data(), pubkey.size()).Write(vchSig.data(), vchSig.size()).Finalize(entry.begin());

}


void SignatureCache::ComputeEntrySchnorr(uint256& entry, const uint256& hash, Span<const unsigned char> sig, const XOnlyPubKey& pubkey) const

{

    CSHA256 hasher = m_salted_hasher_schnorr;

    hasher.Write(hash.begin(), 32).Write(pubkey.data(), pubkey.size()).Write(sig.data(), sig.size()).Finalize(entry.begin());

}


bool SignatureCache::Get(const uint256& entry, const bool erase)

{

    std::shared_lock<std::shared_mutex> lock(cs_sigcache);

    return setValid.contains(entry, erase);

}


void SignatureCache::Set(const uint256& entry)

{

    std::unique_lock<std::shared_mutex> lock(cs_sigcache);

    setValid.insert(entry);

}


bool CachingTransactionSignatureChecker::VerifyECDSASignature(const std::vector<unsigned char>& vchSig, const CPubKey& pubkey, const uint256& sighash) const

{

    uint256 entry;

    m_signature_cache.ComputeEntryECDSA(entry, sighash, vchSig, pubkey);

    if (m_signature_cache.Get(entry, !store))

        return true;

    if (!TransactionSignatureChecker::VerifyECDSASignature(vchSig, pubkey, sighash))

        return false;

    if (store)

        m_signature_cache.Set(entry);

    return true;

}


bool CachingTransactionSignatureChecker::VerifySchnorrSignature(Span<const unsigned char> sig, const XOnlyPubKey& pubkey, const uint256& sighash) const

{

    uint256 entry;

    m_signature_cache.ComputeEntrySchnorr(entry, sighash, sig, pubkey);

    if (m_signature_cache.Get(entry, !store)) return true;

    if (!TransactionSignatureChecker::VerifySchnorrSignature(sig, pubkey, sighash)) return false;

    if (store) m_signature_cache.Set(entry);

    return true;

}

CPubKey
An encapsulated public key.
Definition: pubkey.h:34

CPubKey::data
const unsigned char * data() const
Definition: pubkey.h:113

CPubKey::size
unsigned int size() const
Simple read-only vector-like interface to the pubkey data.
Definition: pubkey.h:112

CSHA256
A hasher class for SHA-256.
Definition: sha256.h:14

CSHA256::Finalize
void Finalize(unsigned char hash[OUTPUT_SIZE])
Definition: sha256.cpp:727

CSHA256::Write
CSHA256 & Write(const unsigned char *data, size_t len)
Definition: sha256.cpp:701

CachingTransactionSignatureChecker::store
bool store
Definition: sigcache.h:66

CachingTransactionSignatureChecker::VerifySchnorrSignature
bool VerifySchnorrSignature(Span< const unsigned char > sig, const XOnlyPubKey &pubkey, const uint256 &sighash) const override
Definition: sigcache.cpp:76

CachingTransactionSignatureChecker::m_signature_cache
SignatureCache & m_signature_cache
Definition: sigcache.h:67

CachingTransactionSignatureChecker::VerifyECDSASignature
bool VerifyECDSASignature(const std::vector< unsigned char > &vchSig, const CPubKey &vchPubKey, const uint256 &sighash) const override
Definition: sigcache.cpp:63

CuckooCache::cache::setup_bytes
std::pair< uint32_t, size_t > setup_bytes(size_t bytes)
setup_bytes is a convenience function which accounts for internal memory usage when deciding how many...
Definition: cuckoocache.h:364

CuckooCache::cache::insert
void insert(Element e)
insert loops at most depth_limit times trying to insert a hash at various locations in the table via ...
Definition: cuckoocache.h:397

CuckooCache::cache::contains
bool contains(const Element &e, const bool erase) const
contains iterates through the hash locations for a given element and checks to see if it is present.
Definition: cuckoocache.h:474

GenericTransactionSignatureChecker::VerifySchnorrSignature
virtual bool VerifySchnorrSignature(Span< const unsigned char > sig, const XOnlyPubKey &pubkey, const uint256 &sighash) const
Definition: interpreter.cpp:1642

GenericTransactionSignatureChecker::VerifyECDSASignature
virtual bool VerifyECDSASignature(const std::vector< unsigned char > &vchSig, const CPubKey &vchPubKey, const uint256 &sighash) const
Definition: interpreter.cpp:1636

SignatureCache::SignatureCache
SignatureCache(size_t max_size_bytes)
Definition: sigcache.cpp:20

SignatureCache::m_salted_hasher_schnorr
CSHA256 m_salted_hasher_schnorr
Definition: sigcache.h:43

SignatureCache::ComputeEntrySchnorr
void ComputeEntrySchnorr(uint256 &entry, const uint256 &hash, Span< const unsigned char > sig, const XOnlyPubKey &pubkey) const
Definition: sigcache.cpp:45

SignatureCache::ComputeEntryECDSA
void ComputeEntryECDSA(uint256 &entry, const uint256 &hash, const std::vector< unsigned char > &vchSig, const CPubKey &pubkey) const
Definition: sigcache.cpp:39

SignatureCache::setValid
map_type setValid
Definition: sigcache.h:45

SignatureCache::cs_sigcache
std::shared_mutex cs_sigcache
Definition: sigcache.h:46

SignatureCache::m_salted_hasher_ecdsa
CSHA256 m_salted_hasher_ecdsa
Entries are SHA256(nonce || 'E' or 'S' || 31 zero bytes || signature hash || public key || signature)...
Definition: sigcache.h:42

SignatureCache::Get
bool Get(const uint256 &entry, const bool erase)
Definition: sigcache.cpp:51

SignatureCache::Set
void Set(const uint256 &entry)
Definition: sigcache.cpp:57

Span< const unsigned char >

Span::size
constexpr std::size_t size() const noexcept
Definition: span.h:187

Span::data
constexpr C * data() const noexcept
Definition: span.h:174

XOnlyPubKey
Definition: pubkey.h:231

XOnlyPubKey::size
static constexpr size_t size()
Definition: pubkey.h:293

XOnlyPubKey::data
const unsigned char * data() const
Definition: pubkey.h:294

base_blob::begin
constexpr unsigned char * begin()
Definition: uint256.h:104

uint256
256-bit opaque blob.
Definition: uint256.h:190

interpreter.h

LogPrintf
#define LogPrintf(...)
Definition: logging.h:266

nonce
unsigned int nonce
Definition: miner_tests.cpp:74

pubkey.h

GetRandHash
uint256 GetRandHash() noexcept
Generate a random uint256.
Definition: random.h:454

sha256.h

sigcache.h

span.h

uint256.h