sigcache_8cpp_source.html

// Copyright (c) 2009-2010 Satoshi Nakamoto

// Copyright (c) 2009-2020 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <script/sigcache.h>


#include <pubkey.h>

#include <random.h>

#include <uint256.h>

#include <util/system.h>


#include <cuckoocache.h>


#include <algorithm>

#include <mutex>

#include <shared_mutex>

#include <vector>


namespace {

class CSignatureCache

{

private:

    CSHA256 m_salted_hasher_ecdsa;

    CSHA256 m_salted_hasher_schnorr;

    typedef CuckooCache::cache<uint256, SignatureCacheHasher> map_type;

    map_type setValid;

    std::shared_mutex cs_sigcache;


public:

    CSignatureCache()

    {

        uint256 nonce = GetRandHash();

        // We want the nonce to be 64 bytes long to force the hasher to process

        // this chunk, which makes later hash computations more efficient. We

        // just write our 32-byte entropy, and then pad with 'E' for ECDSA and

        // 'S' for Schnorr (followed by 0 bytes).

        static constexpr unsigned char PADDING_ECDSA[32] = {'E'};

        static constexpr unsigned char PADDING_SCHNORR[32] = {'S'};

        m_salted_hasher_ecdsa.Write(nonce.begin(), 32);

        m_salted_hasher_ecdsa.Write(PADDING_ECDSA, 32);

        m_salted_hasher_schnorr.Write(nonce.begin(), 32);

        m_salted_hasher_schnorr.Write(PADDING_SCHNORR, 32);

    }


    void

    ComputeEntryECDSA(uint256& entry, const uint256 &hash, const std::vector<unsigned char>& vchSig, const CPubKey& pubkey) const

    {

        CSHA256 hasher = m_salted_hasher_ecdsa;

        hasher.Write(hash.begin(), 32).Write(pubkey.data(), pubkey.size()).Write(vchSig.data(), vchSig.size()).Finalize(entry.begin());

    }


    void

    ComputeEntrySchnorr(uint256& entry, const uint256 &hash, Span<const unsigned char> sig, const XOnlyPubKey& pubkey) const

    {

        CSHA256 hasher = m_salted_hasher_schnorr;

        hasher.Write(hash.begin(), 32).Write(pubkey.data(), pubkey.size()).Write(sig.data(), sig.size()).Finalize(entry.begin());

    }


    bool

    Get(const uint256& entry, const bool erase)

    {

        std::shared_lock<std::shared_mutex> lock(cs_sigcache);

        return setValid.contains(entry, erase);

    }


    void Set(const uint256& entry)

    {

        std::unique_lock<std::shared_mutex> lock(cs_sigcache);

        setValid.insert(entry);

    }

    uint32_t setup_bytes(size_t n)

    {

        return setValid.setup_bytes(n);

    }

};


/* In previous versions of this code, signatureCache was a local static variable

 * in CachingTransactionSignatureChecker::VerifySignature.  We initialize

 * signatureCache outside of VerifySignature to avoid the atomic operation per

 * call overhead associated with local static variables even though

 * signatureCache could be made local to VerifySignature.

*/

static CSignatureCache signatureCache;

} // namespace


// To be called once in AppInitMain/BasicTestingSetup to initialize the

// signatureCache.

void InitSignatureCache()

{

    // nMaxCacheSize is unsigned. If -maxsigcachesize is set to zero,

    // setup_bytes creates the minimum possible cache (2 elements).

    size_t nMaxCacheSize = std::min(std::max((int64_t)0, gArgs.GetIntArg("-maxsigcachesize", DEFAULT_MAX_SIG_CACHE_SIZE) / 2), MAX_MAX_SIG_CACHE_SIZE) * ((size_t) 1 << 20);

    size_t nElems = signatureCache.setup_bytes(nMaxCacheSize);

    LogPrintf("Using %zu MiB out of %zu/2 requested for signature cache, able to store %zu elements\n",

            (nElems*sizeof(uint256)) >>20, (nMaxCacheSize*2)>>20, nElems);

}


bool CachingTransactionSignatureChecker::VerifyECDSASignature(const std::vector<unsigned char>& vchSig, const CPubKey& pubkey, const uint256& sighash) const

{

    uint256 entry;

    signatureCache.ComputeEntryECDSA(entry, sighash, vchSig, pubkey);

    if (signatureCache.Get(entry, !store))

        return true;

    if (!TransactionSignatureChecker::VerifyECDSASignature(vchSig, pubkey, sighash))

        return false;

    if (store)

        signatureCache.Set(entry);

    return true;

}


bool CachingTransactionSignatureChecker::VerifySchnorrSignature(Span<const unsigned char> sig, const XOnlyPubKey& pubkey, const uint256& sighash) const

{

    uint256 entry;

    signatureCache.ComputeEntrySchnorr(entry, sighash, sig, pubkey);

    if (signatureCache.Get(entry, !store)) return true;

    if (!TransactionSignatureChecker::VerifySchnorrSignature(sig, pubkey, sighash)) return false;

    if (store) signatureCache.Set(entry);

    return true;

}

ArgsManager::GetIntArg
int64_t GetIntArg(const std::string &strArg, int64_t nDefault) const
Return integer argument or default value.
Definition: system.cpp:596

CPubKey
An encapsulated public key.
Definition: pubkey.h:33

CPubKey::data
const unsigned char * data() const
Definition: pubkey.h:112

CPubKey::size
unsigned int size() const
Simple read-only vector-like interface to the pubkey data.
Definition: pubkey.h:111

CSHA256
A hasher class for SHA-256.
Definition: sha256.h:14

CSHA256::Finalize
void Finalize(unsigned char hash[OUTPUT_SIZE])
Definition: sha256.cpp:663

CSHA256::Write
CSHA256 & Write(const unsigned char *data, size_t len)
Definition: sha256.cpp:637

CachingTransactionSignatureChecker::store
bool store
Definition: sigcache.h:27

CachingTransactionSignatureChecker::VerifySchnorrSignature
bool VerifySchnorrSignature(Span< const unsigned char > sig, const XOnlyPubKey &pubkey, const uint256 &sighash) const override
Definition: sigcache.cpp:118

CachingTransactionSignatureChecker::VerifyECDSASignature
bool VerifyECDSASignature(const std::vector< unsigned char > &vchSig, const CPubKey &vchPubKey, const uint256 &sighash) const override
Definition: sigcache.cpp:105

CuckooCache::cache
cache implements a cache with properties similar to a cuckoo-set.
Definition: cuckoocache.h:159

GenericTransactionSignatureChecker::VerifySchnorrSignature
virtual bool VerifySchnorrSignature(Span< const unsigned char > sig, const XOnlyPubKey &pubkey, const uint256 &sighash) const
Definition: interpreter.cpp:1664

GenericTransactionSignatureChecker::VerifyECDSASignature
virtual bool VerifyECDSASignature(const std::vector< unsigned char > &vchSig, const CPubKey &vchPubKey, const uint256 &sighash) const
Definition: interpreter.cpp:1658

Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition: span.h:93

Span::size
constexpr std::size_t size() const noexcept
Definition: span.h:182

Span::data
constexpr C * data() const noexcept
Definition: span.h:169

XOnlyPubKey
Definition: pubkey.h:221

XOnlyPubKey::size
static constexpr size_t size()
Definition: pubkey.h:277

XOnlyPubKey::data
const unsigned char * data() const
Definition: pubkey.h:276

base_blob::begin
unsigned char * begin()
Definition: uint256.h:58

uint256
256-bit opaque blob.
Definition: uint256.h:124

cuckoocache.h

LogPrintf
#define LogPrintf(...)
Definition: logging.h:187

nonce
unsigned int nonce
Definition: miner_tests.cpp:54

json_tests::sighash
static unsigned const char sighash[]
Definition: sighash.json.h:2

pubkey.h

GetRandHash
uint256 GetRandHash() noexcept
Definition: random.cpp:601

random.h

InitSignatureCache
void InitSignatureCache()
Definition: sigcache.cpp:95

sigcache.h

DEFAULT_MAX_SIG_CACHE_SIZE
static const unsigned int DEFAULT_MAX_SIG_CACHE_SIZE
Definition: sigcache.h:18

MAX_MAX_SIG_CACHE_SIZE
static const int64_t MAX_MAX_SIG_CACHE_SIZE
Definition: sigcache.h:20

system.h

uint256.h

gArgs
ArgsManager gArgs
Definition: system.cpp:85