util_2message_8cpp_source.html

// Copyright (c) 2009-2010 Satoshi Nakamoto

// Copyright (c) 2009-2020 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <hash.h>            // For CHashWriter

#include <key.h>             // For CKey

#include <key_io.h>          // For DecodeDestination()

#include <pubkey.h>          // For CPubKey

#include <script/standard.h> // For CTxDestination, IsValidDestination(), PKHash

#include <serialize.h>       // For SER_GETHASH

#include <util/message.h>

#include <util/strencodings.h> // For DecodeBase64()


#include <string>

#include <vector>


const std::string MESSAGE_MAGIC = "Bitcoin Signed Message:\n";


MessageVerificationResult MessageVerify(

    const std::string& address,

    const std::string& signature,

    const std::string& message)

{

    CTxDestination destination = DecodeDestination(address);

    if (!IsValidDestination(destination)) {

        return MessageVerificationResult::ERR_INVALID_ADDRESS;

    }


    if (std::get_if<PKHash>(&destination) == nullptr) {

        return MessageVerificationResult::ERR_ADDRESS_NO_KEY;

    }


    bool invalid = false;

    std::vector<unsigned char> signature_bytes = DecodeBase64(signature.c_str(), &invalid);

    if (invalid) {

        return MessageVerificationResult::ERR_MALFORMED_SIGNATURE;

    }


    CPubKey pubkey;

    if (!pubkey.RecoverCompact(MessageHash(message), signature_bytes)) {

        return MessageVerificationResult::ERR_PUBKEY_NOT_RECOVERED;

    }


    if (!(CTxDestination(PKHash(pubkey)) == destination)) {

        return MessageVerificationResult::ERR_NOT_SIGNED;

    }


    return MessageVerificationResult::OK;

}


bool MessageSign(

    const CKey& privkey,

    const std::string& message,

    std::string& signature)

{

    std::vector<unsigned char> signature_bytes;


    if (!privkey.SignCompact(MessageHash(message), signature_bytes)) {

        return false;

    }


    signature = EncodeBase64(signature_bytes);


    return true;

}


uint256 MessageHash(const std::string& message)

{

    CHashWriter hasher(SER_GETHASH, 0);

    hasher << MESSAGE_MAGIC << message;


    return hasher.GetHash();

}


std::string SigningResultString(const SigningResult res)

{

    switch (res) {

        case SigningResult::OK:

            return "No error";

        case SigningResult::PRIVATE_KEY_NOT_AVAILABLE:

            return "Private key not available";

        case SigningResult::SIGNING_FAILED:

            return "Sign failed";

        // no default case, so the compiler can warn about missing cases

    }

    assert(false);

}

CHashWriter
A writer stream (for serialization) that computes a 256-bit hash.
Definition: hash.h:101

CHashWriter::GetHash
uint256 GetHash()
Compute the double-SHA256 hash of all data written to this object.
Definition: hash.h:122

CKey
An encapsulated private key.
Definition: key.h:27

CKey::SignCompact
bool SignCompact(const uint256 &hash, std::vector< unsigned char > &vchSig) const
Create a compact signature (65 bytes), which allows reconstructing the used public key.
Definition: key.cpp:249

CPubKey
An encapsulated public key.
Definition: pubkey.h:33

CPubKey::RecoverCompact
bool RecoverCompact(const uint256 &hash, const std::vector< unsigned char > &vchSig)
Recover a public key from a compact signature.
Definition: pubkey.cpp:271

uint256
256-bit opaque blob.
Definition: uint256.h:124

key.h

DecodeDestination
CTxDestination DecodeDestination(const std::string &str, std::string &error_msg)
Definition: key_io.cpp:261

key_io.h

message.h

SigningResult
SigningResult
Definition: message.h:42

SigningResult::PRIVATE_KEY_NOT_AVAILABLE
@ PRIVATE_KEY_NOT_AVAILABLE

SigningResult::SIGNING_FAILED
@ SIGNING_FAILED

SigningResult::OK
@ OK
No error.

MessageVerificationResult
MessageVerificationResult
The result of a signed message verification.
Definition: message.h:22

MessageVerificationResult::ERR_MALFORMED_SIGNATURE
@ ERR_MALFORMED_SIGNATURE
The provided signature couldn't be parsed (maybe invalid base64).

MessageVerificationResult::ERR_INVALID_ADDRESS
@ ERR_INVALID_ADDRESS
The provided address is invalid.

MessageVerificationResult::ERR_ADDRESS_NO_KEY
@ ERR_ADDRESS_NO_KEY
The provided address is valid but does not refer to a public key.

MessageVerificationResult::ERR_NOT_SIGNED
@ ERR_NOT_SIGNED
The message was not signed with the private key of the provided address.

MessageVerificationResult::OK
@ OK
The message verification was successful.

MessageVerificationResult::ERR_PUBKEY_NOT_RECOVERED
@ ERR_PUBKEY_NOT_RECOVERED
A public key could not be recovered from the provided signature and message.

pubkey.h

serialize.h

SER_GETHASH
@ SER_GETHASH
Definition: serialize.h:140

IsValidDestination
bool IsValidDestination(const CTxDestination &dest)
Check whether a CTxDestination is a CNoDestination.
Definition: standard.cpp:332

standard.h

CTxDestination
std::variant< CNoDestination, PKHash, ScriptHash, WitnessV0ScriptHash, WitnessV0KeyHash, WitnessV1Taproot, WitnessUnknown > CTxDestination
A txout script template with a specific destination.
Definition: standard.h:157

DecodeBase64
std::vector< unsigned char > DecodeBase64(const char *p, bool *pf_invalid)
Definition: strencodings.cpp:146

EncodeBase64
std::string EncodeBase64(Span< const unsigned char > input)
Definition: strencodings.cpp:130

strencodings.h

PKHash
Definition: standard.h:80

MessageHash
uint256 MessageHash(const std::string &message)
Hashes a message for signing and verification in a manner that prevents inadvertently signing a trans...
Definition: message.cpp:72

MessageSign
bool MessageSign(const CKey &privkey, const std::string &message, std::string &signature)
Sign a message.
Definition: message.cpp:56

MESSAGE_MAGIC
const std::string MESSAGE_MAGIC
Text used to signify that a signed message follows and to prevent inadvertently signing a transaction...
Definition: message.cpp:22

SigningResultString
std::string SigningResultString(const SigningResult res)
Definition: message.cpp:80

MessageVerify
MessageVerificationResult MessageVerify(const std::string &address, const std::string &signature, const std::string &message)
Verify a signed message.
Definition: message.cpp:24

assert
assert(!tx.IsCoinBase())