Merge pull request #1796 from evoskuil/master

Expand address parse for taproot, patterns for witness/taproot.

Author: evoskuil

builds/msvc/vs2022/libbitcoin-system-test/libbitcoin-system-test.vcxproj

@@ -53,6 +53,18 @@ enum class script_pattern
     /// Signature script: <sig>[sig][sig...] <redeemScript>
     pay_script_hash,
 
+    /// Pay to Witness Public Key Hash [BIP141]
+    /// Pubkey script: OP_0 <20-byte key hash>
+    pay_witness_key_hash,
+
+    /// Pay to Witness Script Hash [BIP141]
+    /// Pubkey script: OP_0 <32-byte script hash>
+    pay_witness_script_hash,
+
+    /// Pay to Taproot [BIP341]
+    /// Pubkey script: OP_1 <32-byte output key>
+    pay_witness_v1_taproot,
+
     /// Sign Multisig script [BIP11]
     sign_multisig,
 
@@ -71,6 +83,7 @@ enum class script_pattern
     /// The script may be valid but does not conform to the common templates.
     /// Such scripts are always accepted if they are mined into blocks, but
     /// transactions with uncommon scripts may not be forwarded by peers.
+    /// This is not a "standardness" concept, just an unrecognized pattern.
     non_standard
 };
 

builds/msvc/vs2022/libbitcoin-system-test/libbitcoin-system-test.vcxproj.filters

@@ -51,18 +51,19 @@ class BC_API script
     static constexpr bool is_anchor_program_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_null_data_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_op_return_pattern(const operations& ops) NOEXCEPT;
-    static constexpr bool is_pay_multisig_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_public_key_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_key_hash_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_script_hash_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_witness_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_witness_key_hash_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_pay_witness_script_hash_pattern(const operations& ops) NOEXCEPT;
+    static constexpr bool is_pay_witness_taproot_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_sign_multisig_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_sign_public_key_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_sign_key_hash_pattern(const operations& ops) NOEXCEPT;
     static constexpr bool is_sign_script_hash_pattern(const operations& ops) NOEXCEPT;
     static bool is_coinbase_pattern(const operations& ops, size_t height) NOEXCEPT;
+    static bool is_pay_multisig_pattern(const operations& ops) NOEXCEPT;
 
     static inline operations to_pay_null_data_pattern(
         const data_slice& data) NOEXCEPT;
@@ -84,6 +85,8 @@ class BC_API script
         const short_hash& hash) NOEXCEPT;
     static inline operations to_pay_witness_script_hash_pattern(
         const hash_digest& hash) NOEXCEPT;
+    static inline operations to_pay_witness_taproot_pattern(
+        const hash_digest& hash) NOEXCEPT;
 
     /// Pattern optimizations.
     inline bool is_pay_to_witness(uint32_t active_flags) const NOEXCEPT;
@@ -108,7 +111,7 @@ class BC_API script
     script(reader& source, bool prefix) NOEXCEPT;
 
     // TODO: move to config serialization wrapper.
-    script(const std::string_view& mnemonic) NOEXCEPT;
+    script(const std::string_view& mnemonic, bool bitcoind=false) NOEXCEPT;
 
     /// Operators.
     /// -----------------------------------------------------------------------
@@ -128,7 +131,8 @@ class BC_API script
     void to_data(writer& sink, bool prefix) const NOEXCEPT;
 
     // TODO: move to config serialization wrapper.
-    std::string to_string(uint32_t active_flags) const NOEXCEPT;
+    std::string to_string(uint32_t active_flags,
+        bool bitcoind=false) const NOEXCEPT;
 
     /// Reset mutable signature hashing op_codeseparator offset. 
     void clear_offset() const NOEXCEPT;
@@ -174,7 +178,8 @@ class BC_API script
     static inline size_t op_size(size_t total, const operation& op) NOEXCEPT;
     static script from_operations(operations&& ops) NOEXCEPT;
     static script from_operations(const operations& ops) NOEXCEPT;
-    static script from_string(const std::string_view& mnemonic) NOEXCEPT;
+    static script from_string(const std::string_view& mnemonic,
+        bool bitcoind=false) NOEXCEPT;
     static size_t op_count(reader& source) NOEXCEPT;
     static size_t serialized_size(const operations& ops) NOEXCEPT;
     void assign_data(reader& source, bool prefix) NOEXCEPT;

include/bitcoin/system/chain/enums/script_pattern.hpp

@@ -123,41 +123,6 @@ constexpr bool script::is_pay_op_return_pattern(const operations& ops) NOEXCEPT
         && ops[0].code() == opcode::op_return;
 }
 
-// The current 16 (or 20) limit does not affect server indexing because bare
-// multisig is not indexable and p2sh multisig is byte-limited to 15 sigs.
-// The satoshi client policy limit is 3 signatures for bare multisig.
-constexpr bool script::is_pay_multisig_pattern(const operations& ops) NOEXCEPT
-{
-    constexpr auto op_1 = static_cast<uint8_t>(opcode::push_positive_1);
-    constexpr auto op_16 = static_cast<uint8_t>(opcode::push_positive_16);
-
-    const auto op_count = ops.size();
-
-    if (op_count < 4 || ops[op_count - 1].code() != opcode::checkmultisig)
-        return false;
-
-    const auto op_m = static_cast<uint8_t>(ops[0].code());
-    const auto op_n = static_cast<uint8_t>(ops[op_count - 2].code());
-
-    if (op_m < op_1 || op_m > op_n || op_n < op_1 || op_n > op_16)
-        return false;
-
-    const auto number = op_n - op_1 + 1u;
-    const auto points = op_count - 3u;
-
-    if (number != points)
-        return false;
-
-    for (auto op = std::next(ops.begin());
-        op != std::prev(ops.end(), 2); ++op)
-    {
-        if (!is_public_key(op->data()))
-            return false;
-    }
-
-    return true;
-}
-
 // The satoshi client considers this non-standard for policy.
 constexpr bool script::is_pay_public_key_pattern(
     const operations& ops) NOEXCEPT
@@ -204,9 +169,6 @@ constexpr bool script::is_pay_witness_key_hash_pattern(
         && ops[1].code() == opcode::push_size_20;
 }
 
-// ****************************************************************************
-// CONSENSUS: this pattern is used to activate bip141 validation rules.
-// ****************************************************************************
 constexpr bool script::is_pay_witness_script_hash_pattern(
     const operations& ops) NOEXCEPT
 {
@@ -215,6 +177,14 @@ constexpr bool script::is_pay_witness_script_hash_pattern(
         && ops[1].code() == opcode::push_size_32;
 }
 
+constexpr bool script::is_pay_witness_taproot_pattern(
+    const operations& ops) NOEXCEPT
+{
+    return ops.size() == 2
+        && ops[0].code() == opcode::push_size_1
+        && ops[1].code() == opcode::push_size_32;
+}
+
 // The first push is based on wacky satoshi op_check_multisig behavior that
 // we must perpetuate, though this is not used in consensus validation.
 constexpr bool script::is_sign_multisig_pattern(const operations& ops) NOEXCEPT
@@ -389,6 +359,16 @@ inline operations script::to_pay_witness_script_hash_pattern(
     };
 }
 
+inline operations script::to_pay_witness_taproot_pattern(
+    const hash_digest& hash) NOEXCEPT
+{
+    return
+    {
+        { opcode::push_size_1 },
+        { to_chunk(hash), false }
+    };
+}
+
 // private
 inline size_t script::op_size(size_t total, const operation& op) NOEXCEPT
 {

include/bitcoin/system/chain/script.hpp

@@ -313,7 +313,7 @@ pop_ternary32(int32_t& upper, int32_t& lower,
 // This value is only used for stack indexing (key/sig counts & pick/roll).
 // The upper bound of int32_t always exceeds the possible stack size, which
 // is checked downstream. Similarly, a negative causes a downstream script
-// failure. As such it is sufficient to fail on non-idexability here,
+// failure. As such it is sufficient to fail on non-indexability here,
 // allowing the value to be returned as a valid and unsigned stack index.
 // ****************************************************************************
 TEMPLATE

include/bitcoin/system/impl/chain/script_patterns.ipp

@@ -70,6 +70,7 @@ class BC_API witness_address
     {
         version0_p2kh,
         version0_p2sh,
+        version1_taproot,
         unknown,
         invalid
     };
@@ -95,6 +96,7 @@ class BC_API witness_address
     static const size_t program_maximum_size;
     static const size_t version0_p2kh_program_size;
     static const size_t version0_p2sh_program_size;
+    static const size_t version1_taproot_program_size;
 
     // TODO: script address extraction, see payment_address.
 
@@ -110,8 +112,8 @@ class BC_API witness_address
     /// Constructors.
     witness_address() NOEXCEPT;
     witness_address(const std::string& address, bool strict=false) NOEXCEPT;
-    witness_address(const data_slice& program, const std::string& prefix,
-        uint8_t version) NOEXCEPT;
+    witness_address(const data_slice& program, uint8_t version,
+        const std::string& prefix=mainnet) NOEXCEPT;
 
     // version0_p2kh
     witness_address(const short_hash& public_key_hash,
@@ -158,7 +160,7 @@ class BC_API witness_address
     static witness_address from_address(const std::string& address,
         bool strict) NOEXCEPT;
     static witness_address from_parameters(const data_slice& program,
-        const std::string& prefix, uint8_t version) NOEXCEPT;
+        uint8_t version, const std::string& prefix) NOEXCEPT;
 
     // version0_p2kh
     static witness_address from_short(const short_hash& hash,

include/bitcoin/system/impl/machine/program.ipp

@@ -33,7 +33,7 @@ DEFINE_JSON_TO_TAG(script)
 
 DEFINE_JSON_FROM_TAG(script)
 {
-    // TODO: inject rules.
+    // TODO: how to inject rules.
     value = instance.to_string(flags::all_rules);
 }
 
@@ -55,8 +55,8 @@ DEFINE_JSON_FROM_TAGGED(bitcoind_tag, script)
     const auto& script = instance.value;
     value =
     {
-        // TODO: this is native encoding (and how does bitcoind handle forks).
-        { "asm", script.to_string(flags::all_rules) },
+        // TODO: how to inject rules.
+        { "asm", script.to_string(flags::all_rules, true) },
         { "hex", encode_base16(script.to_data(false)) }
     };
 }

include/bitcoin/system/wallet/addresses/witness_address.hpp

@@ -39,7 +39,7 @@ BC_PUSH_WARNING(NO_THROW_IN_NOEXCEPT)
 BC_PUSH_WARNING(NO_ARRAY_INDEXING)
 
 // static
-// TODO: would be inlined but machine is a circular include.
+// This would be inlined but machine is a circular include.
 //*****************************************************************************
 // CONSENSUS: BIP34 requires coinbase input script to begin with one byte
 // that indicates height size. This is inconsistent with an extreme future
@@ -54,6 +54,40 @@ bool script::is_coinbase_pattern(const operations& ops, size_t height) NOEXCEPT
         && ops[0].data() == chunk::from_integer(to_signed(height));
 }
 
+// static
+// This would be constexpr but machine is a circular include.
+// op_check_multisig is limited to 20 signatures (max_script_public_keys).
+bool script::is_pay_multisig_pattern(const operations& ops) NOEXCEPT
+{
+    if (ops.size() < 4u || ops.back().code() != opcode::checkmultisig)
+        return false;
+
+    const auto signatures = [](const operation& op) NOEXCEPT
+    {
+        using namespace machine::number;
+        if (op.is_positive())
+            return operation::opcode_to_positive(op.code());
+
+        int32_t count{};
+        if (op.is_payload() && integer<4>::from_chunk(count, op.data()) &&
+            !is_limited(count, one, max_script_public_keys))
+            return narrow_sign_cast<uint8_t>(count);
+
+        return 0_u8;
+    };
+
+    const auto m = signatures(ops.front());
+    const auto n = signatures(ops[ops.size() - 2u]);
+    if (is_zero(m) || is_zero(n) || (m > n) || (n != ops.size() - 3u))
+        return false;
+
+    for (auto op = std::next(ops.begin()); op != std::prev(ops.end(), 2); ++op)
+        if (!is_public_key(op->data()))
+            return false;
+
+    return true;
+}
+
 // Constructors.
 // ----------------------------------------------------------------------------
 
@@ -131,8 +165,8 @@ script::script(reader& source, bool prefix) NOEXCEPT
     assign_data(source, prefix);
 }
 
-script::script(const std::string_view& mnemonic) NOEXCEPT
-  : script(from_string(mnemonic))
+script::script(const std::string_view& mnemonic, bool bitcoind) NOEXCEPT
+  : script(from_string(mnemonic, bitcoind))
 {
 }
 
@@ -286,8 +320,11 @@ void script::assign_data(reader& source, bool prefix) NOEXCEPT
 }
 
 // static/private
-script script::from_string(const std::string_view& mnemonic) NOEXCEPT
+script script::from_string(const std::string_view& mnemonic,
+    bool /* bitcoind */) NOEXCEPT
 {
+    // TODO: incorporate bitcoind option.
+
     constexpr auto valid = true;
     auto easier = false;
     auto failer = false;
@@ -303,8 +340,6 @@ script script::from_string(const std::string_view& mnemonic) NOEXCEPT
 
     operations ops{};
     ops.reserve(tokens.size());
-
-    // Create an op list from the split tokens.
     for (const auto& token: tokens)
     {
         ops.emplace_back(std::string_view{ token });
@@ -351,14 +386,16 @@ void script::to_data(writer& sink, bool prefix) const NOEXCEPT
         op->to_data(sink);
 }
 
-std::string script::to_string(uint32_t active_flags) const NOEXCEPT
+std::string script::to_string(uint32_t active_flags,
+    bool /* bitcoind */) const NOEXCEPT
 {
+    // TODO: incorporate bitcoind option.
+
     auto first = true;
     std::ostringstream text{};
-
-    // Throwing stream aborts.
     for (const auto& op: ops())
     {
+        // Throwing stream aborts.
         text << (first ? "" : " ") << op.to_string(active_flags);
         first = false;
     }

src/chain/json/script.cpp

@@ -79,10 +79,18 @@ script_pattern script::output_pattern() const NOEXCEPT
     if (is_pay_public_key_pattern(ops()))
         return script_pattern::pay_public_key;
 
-    // Limited to 16 signatures though op_check_multisig allows 20.
     if (is_pay_multisig_pattern(ops()))
         return script_pattern::pay_multisig;
 
+    if (is_pay_witness_key_hash_pattern(ops()))
+        return script_pattern::pay_witness_key_hash;
+
+    if (is_pay_witness_script_hash_pattern(ops()))
+        return script_pattern::pay_witness_script_hash;
+
+    if (is_pay_witness_taproot_pattern(ops()))
+        return script_pattern::pay_witness_v1_taproot;
+
     return script_pattern::non_standard;
 }