docs/interpreter_8h_source.html

 // Copyright (c) 2009-2010 Satoshi Nakamoto
 // Copyright (c) 2009-2018 The Bitcoin Core developers
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.

 #ifndef BITCOIN_SCRIPT_INTERPRETER_H
 #define BITCOIN_SCRIPT_INTERPRETER_H

 #include <script/script_error.h>
 #include <primitives/transaction.h>

 #include <vector>
 #include <stdint.h>
 #include <string>

 class CPubKey;
 class CScript;
 class CTransaction;
 class uint256;

 enum
 {
     SIGHASH_ALL = 1,
     SIGHASH_NONE = 2,
     SIGHASH_SINGLE = 3,
     SIGHASH_ANYONECANPAY = 0x80,
 };

 enum
 {
     SCRIPT_VERIFY_NONE      = 0,

     // Evaluate P2SH subscripts (BIP16).
     SCRIPT_VERIFY_P2SH      = (1U << 0),

     // Passing a non-strict-DER signature or one with undefined hashtype to a checksig operation causes script failure.
     // Evaluating a pubkey that is not (0x04 + 64 bytes) or (0x02 or 0x03 + 32 bytes) by checksig causes script failure.
     // (not used or intended as a consensus rule).
     SCRIPT_VERIFY_STRICTENC = (1U << 1),

     // Passing a non-strict-DER signature to a checksig operation causes script failure (BIP62 rule 1)
     SCRIPT_VERIFY_DERSIG    = (1U << 2),

     // Passing a non-strict-DER signature or one with S > order/2 to a checksig operation causes script failure
     // (BIP62 rule 5).
     SCRIPT_VERIFY_LOW_S     = (1U << 3),

     // verify dummy stack item consumed by CHECKMULTISIG is of zero-length (BIP62 rule 7).
     SCRIPT_VERIFY_NULLDUMMY = (1U << 4),

     // Using a non-push operator in the scriptSig causes script failure (BIP62 rule 2).
     SCRIPT_VERIFY_SIGPUSHONLY = (1U << 5),

     // Require minimal encodings for all push operations (OP_0... OP_16, OP_1NEGATE where possible, direct
     // pushes up to 75 bytes, OP_PUSHDATA up to 255 bytes, OP_PUSHDATA2 for anything larger). Evaluating
     // any other push causes the script to fail (BIP62 rule 3).
     // In addition, whenever a stack element is interpreted as a number, it must be of minimal length (BIP62 rule 4).
     SCRIPT_VERIFY_MINIMALDATA = (1U << 6),

     // Discourage use of NOPs reserved for upgrades (NOP1-10)
     //
     // Provided so that nodes can avoid accepting or mining transactions
     // containing executed NOP's whose meaning may change after a soft-fork,
     // thus rendering the script invalid; with this flag set executing
     // discouraged NOPs fails the script. This verification flag will never be
     // a mandatory flag applied to scripts in a block. NOPs that are not
     // executed, e.g.  within an unexecuted IF ENDIF block, are *not* rejected.
     // NOPs that have associated forks to give them new meaning (CLTV, CSV)
     // are not subject to this rule.
     SCRIPT_VERIFY_DISCOURAGE_UPGRADABLE_NOPS  = (1U << 7),

     // Require that only a single stack element remains after evaluation. This changes the success criterion from
     // "At least one stack element must remain, and when interpreted as a boolean, it must be true" to
     // "Exactly one stack element must remain, and when interpreted as a boolean, it must be true".
     // (BIP62 rule 6)
     // Note: CLEANSTACK should never be used without P2SH or WITNESS.
     SCRIPT_VERIFY_CLEANSTACK = (1U << 8),

     // Verify CHECKLOCKTIMEVERIFY
     //
     // See BIP65 for details.
     SCRIPT_VERIFY_CHECKLOCKTIMEVERIFY = (1U << 9),

     // support CHECKSEQUENCEVERIFY opcode
     //
     // See BIP112 for details
     SCRIPT_VERIFY_CHECKSEQUENCEVERIFY = (1U << 10),

     // Support segregated witness
     //
     SCRIPT_VERIFY_WITNESS = (1U << 11),

     // Making v1-v16 witness program non-standard
     //
     SCRIPT_VERIFY_DISCOURAGE_UPGRADABLE_WITNESS_PROGRAM = (1U << 12),

     // Segwit script only: Require the argument of OP_IF/NOTIF to be exactly 0x01 or empty vector
     //
     SCRIPT_VERIFY_MINIMALIF = (1U << 13),

     // Signature(s) must be empty vector if a CHECK(MULTI)SIG operation failed
     //
     SCRIPT_VERIFY_NULLFAIL = (1U << 14),

     // Public keys in segregated witness scripts must be compressed
     //
     SCRIPT_VERIFY_WITNESS_PUBKEYTYPE = (1U << 15),

     // Making OP_CODESEPARATOR and FindAndDelete fail any non-segwit scripts
     //
     SCRIPT_VERIFY_CONST_SCRIPTCODE = (1U << 16),
 };

 bool CheckSignatureEncoding(const std::vector<unsigned char> &vchSig, unsigned int flags, ScriptError* serror);

 struct PrecomputedTransactionData
 {
     uint256 hashPrevouts, hashSequence, hashOutputs;
     bool ready = false;

     template <class T>
     explicit PrecomputedTransactionData(const T& tx);
 };

 enum class SigVersion
 {
     BASE = 0,
     WITNESS_V0 = 1,
 };

 static constexpr size_t WITNESS_V0_SCRIPTHASH_SIZE = 32;
 static constexpr size_t WITNESS_V0_KEYHASH_SIZE = 20;

 template <class T>
 uint256 SignatureHash(const CScript& scriptCode, const T& txTo, unsigned int nIn, int nHashType, const CAmount& amount, SigVersion sigversion, const PrecomputedTransactionData* cache = nullptr);

 class BaseSignatureChecker
 {
 public:
     virtual bool CheckSig(const std::vector<unsigned char>& scriptSig, const std::vector<unsigned char>& vchPubKey, const CScript& scriptCode, SigVersion sigversion) const
     {
         return false;
     }

     virtual bool CheckLockTime(const CScriptNum& nLockTime) const
     {
          return false;
     }

     virtual bool CheckSequence(const CScriptNum& nSequence) const
     {
          return false;
     }

     virtual ~BaseSignatureChecker() {}
 };

 template <class T>
 class GenericTransactionSignatureChecker : public BaseSignatureChecker
 {
 private:
     const T* txTo;
     unsigned int nIn;
     const CAmount amount;
     const PrecomputedTransactionData* txdata;

 protected:
     virtual bool VerifySignature(const std::vector<unsigned char>& vchSig, const CPubKey& vchPubKey, const uint256& sighash) const;

 public:
     GenericTransactionSignatureChecker(const T* txToIn, unsigned int nInIn, const CAmount& amountIn) : txTo(txToIn), nIn(nInIn), amount(amountIn), txdata(nullptr) {}
     GenericTransactionSignatureChecker(const T* txToIn, unsigned int nInIn, const CAmount& amountIn, const PrecomputedTransactionData& txdataIn) : txTo(txToIn), nIn(nInIn), amount(amountIn), txdata(&txdataIn) {}
     bool CheckSig(const std::vector<unsigned char>& scriptSig, const std::vector<unsigned char>& vchPubKey, const CScript& scriptCode, SigVersion sigversion) const override;
     bool CheckLockTime(const CScriptNum& nLockTime) const override;
     bool CheckSequence(const CScriptNum& nSequence) const override;
 };

 using TransactionSignatureChecker = GenericTransactionSignatureChecker<CTransaction>;
 using MutableTransactionSignatureChecker = GenericTransactionSignatureChecker<CMutableTransaction>;

 bool EvalScript(std::vector<std::vector<unsigned char> >& stack, const CScript& script, unsigned int flags, const BaseSignatureChecker& checker, SigVersion sigversion, ScriptError* error = nullptr);
 bool VerifyScript(const CScript& scriptSig, const CScript& scriptPubKey, const CScriptWitness* witness, unsigned int flags, const BaseSignatureChecker& checker, ScriptError* serror = nullptr);

 size_t CountWitnessSigOps(const CScript& scriptSig, const CScript& scriptPubKey, const CScriptWitness* witness, unsigned int flags);

 int FindAndDelete(CScript& script, const CScript& b);

 #endif // BITCOIN_SCRIPT_INTERPRETER_H
SigVersion::WITNESS_V0

BaseSignatureChecker::CheckLockTime
virtual bool CheckLockTime(const CScriptNum &nLockTime) const
Definition: interpreter.h:152

PrecomputedTransactionData::hashPrevouts
uint256 hashPrevouts
Definition: interpreter.h:124

BaseSignatureChecker::~BaseSignatureChecker
virtual ~BaseSignatureChecker()
Definition: interpreter.h:162

SCRIPT_VERIFY_NULLFAIL
Definition: interpreter.h:109

SCRIPT_VERIFY_MINIMALIF
Definition: interpreter.h:105

VerifyScript
bool VerifyScript(const CScript &scriptSig, const CScript &scriptPubKey, const CScriptWitness *witness, unsigned int flags, const BaseSignatureChecker &checker, ScriptError *serror=nullptr)
Definition: interpreter.cpp:1472

PrecomputedTransactionData::hashSequence
uint256 hashSequence
Definition: interpreter.h:124

SCRIPT_VERIFY_CLEANSTACK
Definition: interpreter.h:83

ScriptError
enum ScriptError_t ScriptError

GenericTransactionSignatureChecker::txTo
const T * txTo
Definition: interpreter.h:169

BaseSignatureChecker
Definition: interpreter.h:144

GenericTransactionSignatureChecker::GenericTransactionSignatureChecker
GenericTransactionSignatureChecker(const T *txToIn, unsigned int nInIn, const CAmount &amountIn, const PrecomputedTransactionData &txdataIn)
Definition: interpreter.h:179

PrecomputedTransactionData
Definition: interpreter.h:122

SignatureHash
uint256 SignatureHash(const CScript &scriptCode, const T &txTo, unsigned int nIn, int nHashType, const CAmount &amount, SigVersion sigversion, const PrecomputedTransactionData *cache=nullptr)
Definition: interpreter.cpp:1234

SCRIPT_VERIFY_CONST_SCRIPTCODE
Definition: interpreter.h:117

SCRIPT_VERIFY_NULLDUMMY
Definition: interpreter.h:55

GenericTransactionSignatureChecker::GenericTransactionSignatureChecker
GenericTransactionSignatureChecker(const T *txToIn, unsigned int nInIn, const CAmount &amountIn)
Definition: interpreter.h:178

CheckSignatureEncoding
bool CheckSignatureEncoding(const std::vector< unsigned char > &vchSig, unsigned int flags, ScriptError *serror)
Definition: interpreter.cpp:200

SigVersion::BASE

SIGHASH_ANYONECANPAY
Definition: interpreter.h:27

GenericTransactionSignatureChecker::amount
const CAmount amount
Definition: interpreter.h:171

SIGHASH_NONE
Definition: interpreter.h:25

SCRIPT_VERIFY_P2SH
Definition: interpreter.h:40

CScriptWitness
Definition: script.h:562

CAmount
int64_t CAmount
Amount in satoshis (Can be negative)
Definition: amount.h:12

SCRIPT_VERIFY_STRICTENC
Definition: interpreter.h:45

EvalScript
bool EvalScript(std::vector< std::vector< unsigned char > > &stack, const CScript &script, unsigned int flags, const BaseSignatureChecker &checker, SigVersion sigversion, ScriptError *error=nullptr)
Definition: interpreter.cpp:281

SCRIPT_VERIFY_WITNESS_PUBKEYTYPE
Definition: interpreter.h:113

PrecomputedTransactionData::PrecomputedTransactionData
PrecomputedTransactionData(const T &tx)
Definition: interpreter.cpp:1218

SIGHASH_ALL
Definition: interpreter.h:24

CScriptNum
Definition: script.h:198

GenericTransactionSignatureChecker::txdata
const PrecomputedTransactionData * txdata
Definition: interpreter.h:172

GenericTransactionSignatureChecker::VerifySignature
virtual bool VerifySignature(const std::vector< unsigned char > &vchSig, const CPubKey &vchPubKey, const uint256 &sighash) const
Definition: interpreter.cpp:1304

SCRIPT_VERIFY_LOW_S
Definition: interpreter.h:52

CPubKey
An encapsulated public key.
Definition: pubkey.h:30

SCRIPT_VERIFY_SIGPUSHONLY
Definition: interpreter.h:58

GenericTransactionSignatureChecker::CheckLockTime
bool CheckLockTime(const CScriptNum &nLockTime) const override
Definition: interpreter.cpp:1332

PrecomputedTransactionData::hashOutputs
uint256 hashOutputs
Definition: interpreter.h:124

SCRIPT_VERIFY_CHECKLOCKTIMEVERIFY
Definition: interpreter.h:88

script_error.h

SCRIPT_VERIFY_CHECKSEQUENCEVERIFY
Definition: interpreter.h:93

GenericTransactionSignatureChecker::CheckSig
bool CheckSig(const std::vector< unsigned char > &scriptSig, const std::vector< unsigned char > &vchPubKey, const CScript &scriptCode, SigVersion sigversion) const override
Definition: interpreter.cpp:1310

SCRIPT_VERIFY_WITNESS
Definition: interpreter.h:97

GenericTransactionSignatureChecker::nIn
unsigned int nIn
Definition: interpreter.h:170

SCRIPT_VERIFY_MINIMALDATA
Definition: interpreter.h:64

uint256
256-bit opaque blob.
Definition: uint256.h:122

CountWitnessSigOps
size_t CountWitnessSigOps(const CScript &scriptSig, const CScript &scriptPubKey, const CScriptWitness *witness, unsigned int flags)
Definition: interpreter.cpp:1607

CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:384

SCRIPT_VERIFY_DERSIG
Definition: interpreter.h:48

SIGHASH_SINGLE
Definition: interpreter.h:26

SCRIPT_VERIFY_NONE
Definition: interpreter.h:37

SCRIPT_VERIFY_DISCOURAGE_UPGRADABLE_WITNESS_PROGRAM
Definition: interpreter.h:101

BaseSignatureChecker::CheckSig
virtual bool CheckSig(const std::vector< unsigned char > &scriptSig, const std::vector< unsigned char > &vchPubKey, const CScript &scriptCode, SigVersion sigversion) const
Definition: interpreter.h:147

GenericTransactionSignatureChecker
Definition: interpreter.h:166

BaseSignatureChecker::CheckSequence
virtual bool CheckSequence(const CScriptNum &nSequence) const
Definition: interpreter.h:157

error
bool error(const char *fmt, const Args &... args)
Definition: util.h:59

SCRIPT_VERIFY_DISCOURAGE_UPGRADABLE_NOPS
Definition: interpreter.h:76

FindAndDelete
int FindAndDelete(CScript &script, const CScript &b)
Definition: interpreter.cpp:253

flags
int flags
Definition: bsha3-tx.cpp:509

CTransaction
The basic transaction that is broadcasted on the network and contained in blocks. ...
Definition: transaction.h:264

GenericTransactionSignatureChecker::CheckSequence
bool CheckSequence(const CScriptNum &nSequence) const override
Definition: interpreter.cpp:1369

transaction.h

PrecomputedTransactionData::ready
bool ready
Definition: interpreter.h:125

SigVersion
SigVersion
Definition: interpreter.h:131