Bitcoin Core  21.99.0
P2P Digital Currency
standard.cpp
Go to the documentation of this file.
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2020 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
5 
6 #include <script/standard.h>
7 
8 #include <crypto/sha256.h>
9 #include <pubkey.h>
10 #include <script/script.h>
11 
12 #include <string>
13 
14 typedef std::vector<unsigned char> valtype;
15 
16 bool fAcceptDatacarrier = DEFAULT_ACCEPT_DATACARRIER;
17 unsigned nMaxDatacarrierBytes = MAX_OP_RETURN_RELAY;
18 
19 CScriptID::CScriptID(const CScript& in) : BaseHash(Hash160(in)) {}
20 CScriptID::CScriptID(const ScriptHash& in) : BaseHash(static_cast<uint160>(in)) {}
21 
22 ScriptHash::ScriptHash(const CScript& in) : BaseHash(Hash160(in)) {}
23 ScriptHash::ScriptHash(const CScriptID& in) : BaseHash(static_cast<uint160>(in)) {}
24 
25 PKHash::PKHash(const CPubKey& pubkey) : BaseHash(pubkey.GetID()) {}
26 PKHash::PKHash(const CKeyID& pubkey_id) : BaseHash(pubkey_id) {}
27 
28 WitnessV0KeyHash::WitnessV0KeyHash(const CPubKey& pubkey) : BaseHash(pubkey.GetID()) {}
29 WitnessV0KeyHash::WitnessV0KeyHash(const PKHash& pubkey_hash) : BaseHash(static_cast<uint160>(pubkey_hash)) {}
30 
31 CKeyID ToKeyID(const PKHash& key_hash)
32 {
33  return CKeyID{static_cast<uint160>(key_hash)};
34 }
35 
36 CKeyID ToKeyID(const WitnessV0KeyHash& key_hash)
37 {
38  return CKeyID{static_cast<uint160>(key_hash)};
39 }
40 
41 WitnessV0ScriptHash::WitnessV0ScriptHash(const CScript& in)
42 {
43  CSHA256().Write(in.data(), in.size()).Finalize(begin());
44 }
45 
46 std::string GetTxnOutputType(TxoutType t)
47 {
48  switch (t)
49  {
50  case TxoutType::NONSTANDARD: return "nonstandard";
51  case TxoutType::PUBKEY: return "pubkey";
52  case TxoutType::PUBKEYHASH: return "pubkeyhash";
53  case TxoutType::SCRIPTHASH: return "scripthash";
54  case TxoutType::MULTISIG: return "multisig";
55  case TxoutType::NULL_DATA: return "nulldata";
56  case TxoutType::WITNESS_V0_KEYHASH: return "witness_v0_keyhash";
57  case TxoutType::WITNESS_V0_SCRIPTHASH: return "witness_v0_scripthash";
58  case TxoutType::WITNESS_V1_TAPROOT: return "witness_v1_taproot";
59  case TxoutType::WITNESS_UNKNOWN: return "witness_unknown";
60  } // no default case, so the compiler can warn about missing cases
61  assert(false);
62 }
63 
64 static bool MatchPayToPubkey(const CScript& script, valtype& pubkey)
65 {
66  if (script.size() == CPubKey::SIZE + 2 && script[0] == CPubKey::SIZE && script.back() == OP_CHECKSIG) {
67  pubkey = valtype(script.begin() + 1, script.begin() + CPubKey::SIZE + 1);
68  return CPubKey::ValidSize(pubkey);
69  }
70  if (script.size() == CPubKey::COMPRESSED_SIZE + 2 && script[0] == CPubKey::COMPRESSED_SIZE && script.back() == OP_CHECKSIG) {
71  pubkey = valtype(script.begin() + 1, script.begin() + CPubKey::COMPRESSED_SIZE + 1);
72  return CPubKey::ValidSize(pubkey);
73  }
74  return false;
75 }
76 
77 static bool MatchPayToPubkeyHash(const CScript& script, valtype& pubkeyhash)
78 {
79  if (script.size() == 25 && script[0] == OP_DUP && script[1] == OP_HASH160 && script[2] == 20 && script[23] == OP_EQUALVERIFY && script[24] == OP_CHECKSIG) {
80  pubkeyhash = valtype(script.begin () + 3, script.begin() + 23);
81  return true;
82  }
83  return false;
84 }
85 
87 static constexpr bool IsSmallInteger(opcodetype opcode)
88 {
89  return opcode >= OP_1 && opcode <= OP_16;
90 }
91 
92 static bool MatchMultisig(const CScript& script, unsigned int& required, std::vector<valtype>& pubkeys)
93 {
94  opcodetype opcode;
95  valtype data;
96  CScript::const_iterator it = script.begin();
97  if (script.size() < 1 || script.back() != OP_CHECKMULTISIG) return false;
98 
99  if (!script.GetOp(it, opcode, data) || !IsSmallInteger(opcode)) return false;
100  required = CScript::DecodeOP_N(opcode);
101  while (script.GetOp(it, opcode, data) && CPubKey::ValidSize(data)) {
102  pubkeys.emplace_back(std::move(data));
103  }
104  if (!IsSmallInteger(opcode)) return false;
105  unsigned int keys = CScript::DecodeOP_N(opcode);
106  if (pubkeys.size() != keys || keys < required) return false;
107  return (it + 1 == script.end());
108 }
109 
110 TxoutType Solver(const CScript& scriptPubKey, std::vector<std::vector<unsigned char>>& vSolutionsRet)
111 {
112  vSolutionsRet.clear();
113 
114  // Shortcut for pay-to-script-hash, which are more constrained than the other types:
115  // it is always OP_HASH160 20 [20 byte hash] OP_EQUAL
116  if (scriptPubKey.IsPayToScriptHash())
117  {
118  std::vector<unsigned char> hashBytes(scriptPubKey.begin()+2, scriptPubKey.begin()+22);
119  vSolutionsRet.push_back(hashBytes);
120  return TxoutType::SCRIPTHASH;
121  }
122 
123  int witnessversion;
124  std::vector<unsigned char> witnessprogram;
125  if (scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {
126  if (witnessversion == 0 && witnessprogram.size() == WITNESS_V0_KEYHASH_SIZE) {
127  vSolutionsRet.push_back(witnessprogram);
128  return TxoutType::WITNESS_V0_KEYHASH;
129  }
130  if (witnessversion == 0 && witnessprogram.size() == WITNESS_V0_SCRIPTHASH_SIZE) {
131  vSolutionsRet.push_back(witnessprogram);
132  return TxoutType::WITNESS_V0_SCRIPTHASH;
133  }
134  if (witnessversion == 1 && witnessprogram.size() == WITNESS_V1_TAPROOT_SIZE) {
135  vSolutionsRet.push_back(std::vector<unsigned char>{(unsigned char)witnessversion});
136  vSolutionsRet.push_back(std::move(witnessprogram));
137  return TxoutType::WITNESS_V1_TAPROOT;
138  }
139  if (witnessversion != 0) {
140  vSolutionsRet.push_back(std::vector<unsigned char>{(unsigned char)witnessversion});
141  vSolutionsRet.push_back(std::move(witnessprogram));
142  return TxoutType::WITNESS_UNKNOWN;
143  }
144  return TxoutType::NONSTANDARD;
145  }
146 
147  // Provably prunable, data-carrying output
148  //
149  // So long as script passes the IsUnspendable() test and all but the first
150  // byte passes the IsPushOnly() test we don't care what exactly is in the
151  // script.
152  if (scriptPubKey.size() >= 1 && scriptPubKey[0] == OP_RETURN && scriptPubKey.IsPushOnly(scriptPubKey.begin()+1)) {
153  return TxoutType::NULL_DATA;
154  }
155 
156  std::vector<unsigned char> data;
157  if (MatchPayToPubkey(scriptPubKey, data)) {
158  vSolutionsRet.push_back(std::move(data));
159  return TxoutType::PUBKEY;
160  }
161 
162  if (MatchPayToPubkeyHash(scriptPubKey, data)) {
163  vSolutionsRet.push_back(std::move(data));
164  return TxoutType::PUBKEYHASH;
165  }
166 
167  unsigned int required;
168  std::vector<std::vector<unsigned char>> keys;
169  if (MatchMultisig(scriptPubKey, required, keys)) {
170  vSolutionsRet.push_back({static_cast<unsigned char>(required)}); // safe as required is in range 1..16
171  vSolutionsRet.insert(vSolutionsRet.end(), keys.begin(), keys.end());
172  vSolutionsRet.push_back({static_cast<unsigned char>(keys.size())}); // safe as size is in range 1..16
173  return TxoutType::MULTISIG;
174  }
175 
176  vSolutionsRet.clear();
177  return TxoutType::NONSTANDARD;
178 }
179 
180 bool ExtractDestination(const CScript& scriptPubKey, CTxDestination& addressRet)
181 {
182  std::vector<valtype> vSolutions;
183  TxoutType whichType = Solver(scriptPubKey, vSolutions);
184 
185  if (whichType == TxoutType::PUBKEY) {
186  CPubKey pubKey(vSolutions[0]);
187  if (!pubKey.IsValid())
188  return false;
189 
190  addressRet = PKHash(pubKey);
191  return true;
192  }
193  else if (whichType == TxoutType::PUBKEYHASH)
194  {
195  addressRet = PKHash(uint160(vSolutions[0]));
196  return true;
197  }
198  else if (whichType == TxoutType::SCRIPTHASH)
199  {
200  addressRet = ScriptHash(uint160(vSolutions[0]));
201  return true;
202  } else if (whichType == TxoutType::WITNESS_V0_KEYHASH) {
203  WitnessV0KeyHash hash;
204  std::copy(vSolutions[0].begin(), vSolutions[0].end(), hash.begin());
205  addressRet = hash;
206  return true;
207  } else if (whichType == TxoutType::WITNESS_V0_SCRIPTHASH) {
208  WitnessV0ScriptHash hash;
209  std::copy(vSolutions[0].begin(), vSolutions[0].end(), hash.begin());
210  addressRet = hash;
211  return true;
212  } else if (whichType == TxoutType::WITNESS_UNKNOWN || whichType == TxoutType::WITNESS_V1_TAPROOT) {
213  WitnessUnknown unk;
214  unk.version = vSolutions[0][0];
215  std::copy(vSolutions[1].begin(), vSolutions[1].end(), unk.program);
216  unk.length = vSolutions[1].size();
217  addressRet = unk;
218  return true;
219  }
220  // Multisig txns have more than one address...
221  return false;
222 }
223 
224 bool ExtractDestinations(const CScript& scriptPubKey, TxoutType& typeRet, std::vector<CTxDestination>& addressRet, int& nRequiredRet)
225 {
226  addressRet.clear();
227  std::vector<valtype> vSolutions;
228  typeRet = Solver(scriptPubKey, vSolutions);
229  if (typeRet == TxoutType::NONSTANDARD) {
230  return false;
231  } else if (typeRet == TxoutType::NULL_DATA) {
232  // This is data, not addresses
233  return false;
234  }
235 
236  if (typeRet == TxoutType::MULTISIG)
237  {
238  nRequiredRet = vSolutions.front()[0];
239  for (unsigned int i = 1; i < vSolutions.size()-1; i++)
240  {
241  CPubKey pubKey(vSolutions[i]);
242  if (!pubKey.IsValid())
243  continue;
244 
245  CTxDestination address = PKHash(pubKey);
246  addressRet.push_back(address);
247  }
248 
249  if (addressRet.empty())
250  return false;
251  }
252  else
253  {
254  nRequiredRet = 1;
255  CTxDestination address;
256  if (!ExtractDestination(scriptPubKey, address))
257  return false;
258  addressRet.push_back(address);
259  }
260 
261  return true;
262 }
263 
264 namespace {
265 class CScriptVisitor
266 {
267 public:
268  CScript operator()(const CNoDestination& dest) const
269  {
270  return CScript();
271  }
272 
273  CScript operator()(const PKHash& keyID) const
274  {
275  return CScript() << OP_DUP << OP_HASH160 << ToByteVector(keyID) << OP_EQUALVERIFY << OP_CHECKSIG;
276  }
277 
278  CScript operator()(const ScriptHash& scriptID) const
279  {
280  return CScript() << OP_HASH160 << ToByteVector(scriptID) << OP_EQUAL;
281  }
282 
283  CScript operator()(const WitnessV0KeyHash& id) const
284  {
285  return CScript() << OP_0 << ToByteVector(id);
286  }
287 
288  CScript operator()(const WitnessV0ScriptHash& id) const
289  {
290  return CScript() << OP_0 << ToByteVector(id);
291  }
292 
293  CScript operator()(const WitnessUnknown& id) const
294  {
295  return CScript() << CScript::EncodeOP_N(id.version) << std::vector<unsigned char>(id.program, id.program + id.length);
296  }
297 };
298 } // namespace
299 
300 CScript GetScriptForDestination(const CTxDestination& dest)
301 {
302  return std::visit(CScriptVisitor(), dest);
303 }
304 
305 CScript GetScriptForRawPubKey(const CPubKey& pubKey)
306 {
307  return CScript() << std::vector<unsigned char>(pubKey.begin(), pubKey.end()) << OP_CHECKSIG;
308 }
309 
310 CScript GetScriptForMultisig(int nRequired, const std::vector<CPubKey>& keys)
311 {
312  CScript script;
313 
314  script << CScript::EncodeOP_N(nRequired);
315  for (const CPubKey& key : keys)
316  script << ToByteVector(key);
317  script << CScript::EncodeOP_N(keys.size()) << OP_CHECKMULTISIG;
318  return script;
319 }
320 
321 bool IsValidDestination(const CTxDestination& dest) {
322  return dest.index() != 0;
323 }
CSHA256::Write
CSHA256 & Write(const unsigned char *data, size_t len)
Definition: sha256.cpp:637
BaseHash< uint160 >::begin
unsigned char * begin()
Definition: standard.h:31
CPubKey::SIZE
static constexpr unsigned int SIZE
secp256k1:
Definition: pubkey.h:37
it
std::deque< CInv >::iterator it
Definition: net_processing.cpp:1859
CScript::DecodeOP_N
static int DecodeOP_N(opcodetype opcode)
Encode/decode small integers:
Definition: script.h:497
ExtractDestination
bool ExtractDestination(const CScript &scriptPubKey, CTxDestination &addressRet)
Parse a standard scriptPubKey for the destination address.
Definition: standard.cpp:180
prevector::back
T & back()
Definition: prevector.h:453
assert
assert(!tx.IsCoinBase())
BaseHash< uint160 >::data
unsigned char * data()
Definition: standard.h:81
WitnessUnknown::program
unsigned char program[40]
Definition: standard.h:184
MAX_OP_RETURN_RELAY
static const unsigned int MAX_OP_RETURN_RELAY
Default setting for nMaxDatacarrierBytes.
Definition: standard.h:99
WITNESS_V1_TAPROOT_SIZE
static constexpr size_t WITNESS_V1_TAPROOT_SIZE
Definition: interpreter.h:212
CScript::GetOp
bool GetOp(const_iterator &pc, opcodetype &opcodeRet, std::vector< unsigned char > &vchRet) const
Definition: script.h:486
ScriptHash::ScriptHash
ScriptHash()
Definition: standard.h:152
CScript::IsPayToScriptHash
bool IsPayToScriptHash() const
Definition: script.cpp:201
DEFAULT_ACCEPT_DATACARRIER
static const bool DEFAULT_ACCEPT_DATACARRIER
Definition: standard.h:15
IsValidDestination
bool IsValidDestination(const CTxDestination &dest)
Check whether a CTxDestination is a CNoDestination.
Definition: standard.cpp:321
fAcceptDatacarrier
bool fAcceptDatacarrier
A data carrying output is an unspendable output containing data.
Definition: standard.cpp:16
GetScriptForRawPubKey
CScript GetScriptForRawPubKey(const CPubKey &pubKey)
Generate a P2PK script for the given pubkey.
Definition: standard.cpp:305
CScript::IsWitnessProgram
bool IsWitnessProgram(int &version, std::vector< unsigned char > &program) const
Definition: script.cpp:220
prevector::const_iterator
Definition: prevector.h:98
WitnessUnknown::version
unsigned int version
Definition: standard.h:182
CTxDestination
std::variant< CNoDestination, PKHash, ScriptHash, WitnessV0ScriptHash, WitnessV0KeyHash, WitnessUnknown > CTxDestination
A txout script template with a specific destination.
Definition: standard.h:212
CScriptID::CScriptID
CScriptID()
Definition: standard.h:89
WitnessUnknown::length
unsigned int length
Definition: standard.h:183
TxoutType::NULL_DATA
unspendable OP_RETURN script that carries data
CPubKey::begin
const unsigned char * begin() const
Definition: pubkey.h:112
OP_16
Definition: script.h:91
prevector::data
value_type * data()
Definition: prevector.h:528
CPubKey::ValidSize
static bool ValidSize(const std::vector< unsigned char > &vch)
Definition: pubkey.h:75
prevector::end
iterator end()
Definition: prevector.h:292
opcodetype
opcodetype
Script opcodes.
Definition: script.h:65
CPubKey::COMPRESSED_SIZE
static constexpr unsigned int COMPRESSED_SIZE
Definition: pubkey.h:38
CPubKey::end
const unsigned char * end() const
Definition: pubkey.h:113
GetTxnOutputType
std::string GetTxnOutputType(TxoutType t)
Get the name of a TxoutType as a string.
Definition: standard.cpp:46
WitnessUnknown
CTxDestination subtype to encode any future Witness version.
Definition: standard.h:180
CScript::IsPushOnly
bool IsPushOnly(const_iterator pc) const
Called by IsStandardTx and P2SH/BIP62 VerifyScript (which makes it consensus-critical).
Definition: script.cpp:236
TxoutType
TxoutType
Definition: standard.h:120
CPubKey::IsValid
bool IsValid() const
Definition: pubkey.h:184
CPubKey
An encapsulated public key.
Definition: pubkey.h:31
OP_1
Definition: script.h:75
valtype
std::vector< unsigned char > valtype
Definition: standard.cpp:14
WITNESS_V0_SCRIPTHASH_SIZE
static constexpr size_t WITNESS_V0_SCRIPTHASH_SIZE
Signature hash sizes.
Definition: interpreter.h:210
GetScriptForDestination
CScript GetScriptForDestination(const CTxDestination &dest)
Generate a Bitcoin scriptPubKey for the given CTxDestination.
Definition: standard.cpp:300
MatchPayToPubkeyHash
static bool MatchPayToPubkeyHash(const CScript &script, valtype &pubkeyhash)
Definition: standard.cpp:77
Hash160
uint160 Hash160(const T1 &in1)
Compute the 160-bit hash an object.
Definition: hash.h:92
CScript::EncodeOP_N
static opcodetype EncodeOP_N(int n)
Definition: script.h:504
ExtractDestinations
bool ExtractDestinations(const CScript &scriptPubKey, TxoutType &typeRet, std::vector< CTxDestination > &addressRet, int &nRequiredRet)
Parse a standard scriptPubKey with one or more destination addresses.
Definition: standard.cpp:224
CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:404
WITNESS_V0_KEYHASH_SIZE
static constexpr size_t WITNESS_V0_KEYHASH_SIZE
Definition: interpreter.h:211
MatchPayToPubkey
static bool MatchPayToPubkey(const CScript &script, valtype &pubkey)
Definition: standard.cpp:64
CKeyID
A reference to a CKey: the Hash160 of its serialized public key.
Definition: pubkey.h:21
Solver
TxoutType Solver(const CScript &scriptPubKey, std::vector< std::vector< unsigned char >> &vSolutionsRet)
Parse a scriptPubKey and identify script type for standard scripts.
Definition: standard.cpp:110
TxoutType::WITNESS_UNKNOWN
Only for Witness versions not already defined above.
uint160
160-bit opaque blob.
Definition: uint256.h:113
valtype
std::vector< unsigned char > valtype
Definition: interpreter.cpp:15
prevector::begin
iterator begin()
Definition: prevector.h:290
CScriptID
A reference to a CScript: the Hash160 of its serialization (see script.h)
Definition: standard.h:86
prevector::size
size_type size() const
Definition: prevector.h:282
GetScriptForMultisig
CScript GetScriptForMultisig(int nRequired, const std::vector< CPubKey > &keys)
Generate a multisig script.
Definition: standard.cpp:310
CSHA256
A hasher class for SHA-256.
Definition: sha256.h:13
MatchMultisig
static bool MatchMultisig(const CScript &script, unsigned int &required, std::vector< valtype > &pubkeys)
Definition: standard.cpp:92
OP_0
Definition: script.h:68
nMaxDatacarrierBytes
unsigned nMaxDatacarrierBytes
Maximum size of TxoutType::NULL_DATA scripts that this node considers standard.
Definition: standard.cpp:17
ToKeyID
CKeyID ToKeyID(const PKHash &key_hash)
Definition: standard.cpp:31
OP_DUP
Definition: script.h:117
ToByteVector
std::vector< unsigned char > ToByteVector(const T &in)
Definition: script.h:59
PKHash::PKHash
PKHash()
Definition: standard.h:142
BaseHash< uint160 >::end
unsigned char * end()
Definition: standard.h:41
IsSmallInteger
static constexpr bool IsSmallInteger(opcodetype opcode)
Test for "small positive integer" script opcodes - OP_1 through OP_16.
Definition: standard.cpp:87
Generated on Wed Jan 20 2021 20:03:22 for Bitcoin Core by   doxygen 1.8.13