multisig__tests_8cpp_source.html

// Copyright (c) 2011-2020 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <key.h>

#include <policy/policy.h>

#include <script/interpreter.h>

#include <script/script.h>

#include <script/script_error.h>

#include <script/sign.h>

#include <script/signingprovider.h>

#include <test/util/setup_common.h>

#include <tinyformat.h>

#include <uint256.h>


#include <boost/test/unit_test.hpp>


BOOST_FIXTURE_TEST_SUITE(multisig_tests, BasicTestingSetup)


static CScript

sign_multisig(const CScript& scriptPubKey, const std::vector<CKey>& keys, const CTransaction& transaction, int whichIn)

{

    uint256 hash = SignatureHash(scriptPubKey, transaction, whichIn, SIGHASH_ALL, 0, SigVersion::BASE);


    CScript result;

    result << OP_0; // CHECKMULTISIG bug workaround

    for (const CKey &key : keys)

    {

        std::vector<unsigned char> vchSig;

        BOOST_CHECK(key.Sign(hash, vchSig));

        vchSig.push_back((unsigned char)SIGHASH_ALL);

        result << vchSig;

    }

    return result;

}


BOOST_AUTO_TEST_CASE(multisig_verify)

{

    unsigned int flags = SCRIPT_VERIFY_P2SH | SCRIPT_VERIFY_STRICTENC;


    ScriptError err;

    CKey key[4];

    CAmount amount = 0;

    for (int i = 0; i < 4; i++)

        key[i].MakeNewKey(true);


    CScript a_and_b;

    a_and_b << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;


    CScript a_or_b;

    a_or_b << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;


    CScript escrow;

    escrow << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << ToByteVector(key[2].GetPubKey()) << OP_3 << OP_CHECKMULTISIG;


    CMutableTransaction txFrom;  // Funding transaction

    txFrom.vout.resize(3);

    txFrom.vout[0].scriptPubKey = a_and_b;

    txFrom.vout[1].scriptPubKey = a_or_b;

    txFrom.vout[2].scriptPubKey = escrow;


    CMutableTransaction txTo[3]; // Spending transaction

    for (int i = 0; i < 3; i++)

    {

        txTo[i].vin.resize(1);

        txTo[i].vout.resize(1);

        txTo[i].vin[0].prevout.n = i;

        txTo[i].vin[0].prevout.hash = txFrom.GetHash();

        txTo[i].vout[0].nValue = 1;

    }


    std::vector<CKey> keys;

    CScript s;


    // Test a AND b:

    keys.assign(1,key[0]);

    keys.push_back(key[1]);

    s = sign_multisig(a_and_b, keys, CTransaction(txTo[0]), 0);

    BOOST_CHECK(VerifyScript(s, a_and_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[0], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err));

    BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_OK, ScriptErrorString(err));


    for (int i = 0; i < 4; i++)

    {

        keys.assign(1,key[i]);

        s = sign_multisig(a_and_b, keys, CTransaction(txTo[0]), 0);

        BOOST_CHECK_MESSAGE(!VerifyScript(s, a_and_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[0], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("a&b 1: %d", i));

        BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_INVALID_STACK_OPERATION, ScriptErrorString(err));


        keys.assign(1,key[1]);

        keys.push_back(key[i]);

        s = sign_multisig(a_and_b, keys, CTransaction(txTo[0]), 0);

        BOOST_CHECK_MESSAGE(!VerifyScript(s, a_and_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[0], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("a&b 2: %d", i));

        BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_EVAL_FALSE, ScriptErrorString(err));

    }


    // Test a OR b:

    for (int i = 0; i < 4; i++)

    {

        keys.assign(1,key[i]);

        s = sign_multisig(a_or_b, keys, CTransaction(txTo[1]), 0);

        if (i == 0 || i == 1)

        {

            BOOST_CHECK_MESSAGE(VerifyScript(s, a_or_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[1], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("a|b: %d", i));

            BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_OK, ScriptErrorString(err));

        }

        else

        {

            BOOST_CHECK_MESSAGE(!VerifyScript(s, a_or_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[1], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("a|b: %d", i));

            BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_EVAL_FALSE, ScriptErrorString(err));

        }

    }

    s.clear();

    s << OP_0 << OP_1;

    BOOST_CHECK(!VerifyScript(s, a_or_b, nullptr, flags, MutableTransactionSignatureChecker(&txTo[1], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err));

    BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_SIG_DER, ScriptErrorString(err));


    for (int i = 0; i < 4; i++)

        for (int j = 0; j < 4; j++)

        {

            keys.assign(1,key[i]);

            keys.push_back(key[j]);

            s = sign_multisig(escrow, keys, CTransaction(txTo[2]), 0);

            if (i < j && i < 3 && j < 3)

            {

                BOOST_CHECK_MESSAGE(VerifyScript(s, escrow, nullptr, flags, MutableTransactionSignatureChecker(&txTo[2], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("escrow 1: %d %d", i, j));

                BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_OK, ScriptErrorString(err));

            }

            else

            {

                BOOST_CHECK_MESSAGE(!VerifyScript(s, escrow, nullptr, flags, MutableTransactionSignatureChecker(&txTo[2], 0, amount, MissingDataBehavior::ASSERT_FAIL), &err), strprintf("escrow 2: %d %d", i, j));

                BOOST_CHECK_MESSAGE(err == SCRIPT_ERR_EVAL_FALSE, ScriptErrorString(err));

            }

        }

}


BOOST_AUTO_TEST_CASE(multisig_IsStandard)

{

    CKey key[4];

    for (int i = 0; i < 4; i++)

        key[i].MakeNewKey(true);


    TxoutType whichType;


    CScript a_and_b;

    a_and_b << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;

    BOOST_CHECK(::IsStandard(a_and_b, whichType));


    CScript a_or_b;

    a_or_b  << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;

    BOOST_CHECK(::IsStandard(a_or_b, whichType));


    CScript escrow;

    escrow << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << ToByteVector(key[2].GetPubKey()) << OP_3 << OP_CHECKMULTISIG;

    BOOST_CHECK(::IsStandard(escrow, whichType));


    CScript one_of_four;

    one_of_four << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << ToByteVector(key[2].GetPubKey()) << ToByteVector(key[3].GetPubKey()) << OP_4 << OP_CHECKMULTISIG;

    BOOST_CHECK(!::IsStandard(one_of_four, whichType));


    CScript malformed[6];

    malformed[0] << OP_3 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;

    malformed[1] << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_3 << OP_CHECKMULTISIG;

    malformed[2] << OP_0 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;

    malformed[3] << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_0 << OP_CHECKMULTISIG;

    malformed[4] << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_CHECKMULTISIG;

    malformed[5] << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey());


    for (int i = 0; i < 6; i++)

        BOOST_CHECK(!::IsStandard(malformed[i], whichType));

}


BOOST_AUTO_TEST_CASE(multisig_Sign)

{

    // Test SignSignature() (and therefore the version of Solver() that signs transactions)

    FillableSigningProvider keystore;

    CKey key[4];

    for (int i = 0; i < 4; i++)

    {

        key[i].MakeNewKey(true);

        BOOST_CHECK(keystore.AddKey(key[i]));

    }


    CScript a_and_b;

    a_and_b << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;


    CScript a_or_b;

    a_or_b  << OP_1 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << OP_2 << OP_CHECKMULTISIG;


    CScript escrow;

    escrow << OP_2 << ToByteVector(key[0].GetPubKey()) << ToByteVector(key[1].GetPubKey()) << ToByteVector(key[2].GetPubKey()) << OP_3 << OP_CHECKMULTISIG;


    CMutableTransaction txFrom;  // Funding transaction

    txFrom.vout.resize(3);

    txFrom.vout[0].scriptPubKey = a_and_b;

    txFrom.vout[1].scriptPubKey = a_or_b;

    txFrom.vout[2].scriptPubKey = escrow;


    CMutableTransaction txTo[3]; // Spending transaction

    for (int i = 0; i < 3; i++)

    {

        txTo[i].vin.resize(1);

        txTo[i].vout.resize(1);

        txTo[i].vin[0].prevout.n = i;

        txTo[i].vin[0].prevout.hash = txFrom.GetHash();

        txTo[i].vout[0].nValue = 1;

    }


    for (int i = 0; i < 3; i++)

    {

        BOOST_CHECK_MESSAGE(SignSignature(keystore, CTransaction(txFrom), txTo[i], 0, SIGHASH_ALL), strprintf("SignSignature %d", i));

    }

}


BOOST_AUTO_TEST_SUITE_END()

CAmount
int64_t CAmount
Amount in satoshis (Can be negative)
Definition: amount.h:12

flags
int flags
Definition: bitcoin-tx.cpp:525

CKey
An encapsulated private key.
Definition: key.h:27

CKey::MakeNewKey
void MakeNewKey(bool fCompressed)
Generate a new private key using a cryptographic PRNG.
Definition: key.cpp:160

CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:406

CScript::clear
void clear()
Definition: script.h:549

CTransaction
The basic transaction that is broadcasted on the network and contained in blocks.
Definition: transaction.h:260

FillableSigningProvider
Fillable signing provider that keeps keys in an address->secret map.
Definition: signingprovider.h:92

FillableSigningProvider::AddKey
virtual bool AddKey(const CKey &key)
Definition: signingprovider.h:152

prevector::assign
void assign(size_type n, const T &val)
Definition: prevector.h:218

uint256
256-bit opaque blob.
Definition: uint256.h:124

BOOST_AUTO_TEST_SUITE_END
BOOST_AUTO_TEST_SUITE_END()

SignatureHash
uint256 SignatureHash(const CScript &scriptCode, const T &txTo, unsigned int nIn, int nHashType, const CAmount &amount, SigVersion sigversion, const PrecomputedTransactionData *cache)
Definition: interpreter.cpp:1590

VerifyScript
bool VerifyScript(const CScript &scriptSig, const CScript &scriptPubKey, const CScriptWitness *witness, unsigned int flags, const BaseSignatureChecker &checker, ScriptError *serror)
Definition: interpreter.cpp:1969

interpreter.h

SigVersion::BASE
@ BASE
Bare scripts and BIP16 P2SH-wrapped redeemscripts.

SCRIPT_VERIFY_P2SH
@ SCRIPT_VERIFY_P2SH
Definition: interpreter.h:46

SCRIPT_VERIFY_STRICTENC
@ SCRIPT_VERIFY_STRICTENC
Definition: interpreter.h:51

MutableTransactionSignatureChecker
GenericTransactionSignatureChecker< CMutableTransaction > MutableTransactionSignatureChecker
Definition: interpreter.h:300

SIGHASH_ALL
@ SIGHASH_ALL
Definition: interpreter.h:27

MissingDataBehavior::ASSERT_FAIL
@ ASSERT_FAIL
Abort execution through assertion failure (for consensus code)

key.h

BOOST_AUTO_TEST_CASE
BOOST_AUTO_TEST_CASE(multisig_verify)
Definition: multisig_tests.cpp:38

sign_multisig
static CScript sign_multisig(const CScript &scriptPubKey, const std::vector< CKey > &keys, const CTransaction &transaction, int whichIn)
Definition: multisig_tests.cpp:22

BOOST_FIXTURE_TEST_SUITE
#define BOOST_FIXTURE_TEST_SUITE(a, b)
Definition: object.cpp:14

BOOST_CHECK
#define BOOST_CHECK(expr)
Definition: object.cpp:17

IsStandard
bool IsStandard(const CScript &scriptPubKey, TxoutType &whichType)
Definition: policy.cpp:58

policy.h

script.h

OP_2
@ OP_2
Definition: script.h:78

OP_CHECKMULTISIG
@ OP_CHECKMULTISIG
Definition: script.h:185

OP_4
@ OP_4
Definition: script.h:80

OP_1
@ OP_1
Definition: script.h:76

OP_3
@ OP_3
Definition: script.h:79

OP_0
@ OP_0
Definition: script.h:69

ToByteVector
std::vector< unsigned char > ToByteVector(const T &in)
Definition: script.h:60

ScriptErrorString
std::string ScriptErrorString(const ScriptError serror)
Definition: script_error.cpp:10

script_error.h

ScriptError
enum ScriptError_t ScriptError

SCRIPT_ERR_EVAL_FALSE
@ SCRIPT_ERR_EVAL_FALSE
Definition: script_error.h:15

SCRIPT_ERR_INVALID_STACK_OPERATION
@ SCRIPT_ERR_INVALID_STACK_OPERATION
Definition: script_error.h:36

SCRIPT_ERR_SIG_DER
@ SCRIPT_ERR_SIG_DER
Definition: script_error.h:46

SCRIPT_ERR_OK
@ SCRIPT_ERR_OK
Definition: script_error.h:13

setup_common.h

SignSignature
bool SignSignature(const SigningProvider &provider, const CScript &fromPubKey, CMutableTransaction &txTo, unsigned int nIn, const CAmount &amount, int nHashType)
Produce a script signature for a transaction.
Definition: sign.cpp:514

GetPubKey
static bool GetPubKey(const SigningProvider &provider, const SignatureData &sigdata, const CKeyID &address, CPubKey &pubkey)
Definition: sign.cpp:105

sign.h

signingprovider.h

TxoutType
TxoutType
Definition: standard.h:59

BasicTestingSetup
Basic testing setup.
Definition: setup_common.h:76

CMutableTransaction
A mutable version of CTransaction.
Definition: transaction.h:345

CMutableTransaction::GetHash
uint256 GetHash() const
Compute the hash of this CMutableTransaction.
Definition: transaction.cpp:63

CMutableTransaction::vout
std::vector< CTxOut > vout
Definition: transaction.h:347

CMutableTransaction::vin
std::vector< CTxIn > vin
Definition: transaction.h:346

tinyformat.h

strprintf
#define strprintf
Format arguments and return the string or write to given std::ostream (see tinyformat::format doc for...
Definition: tinyformat.h:1164

uint256.h