You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
328 lines
16 KiB
328 lines
16 KiB
#!/usr/bin/env python3
|
|
# Copyright (c) 2015-2020 The Bitcoin Core developers
|
|
# Distributed under the MIT software license, see the accompanying
|
|
# file COPYING or http://www.opensource.org/licenses/mit-license.php.
|
|
"""Test transaction signing using the signrawtransaction* RPCs."""
|
|
|
|
from test_framework.address import check_script, script_to_p2sh, script_to_p2wsh
|
|
from test_framework.key import ECKey
|
|
from test_framework.test_framework import BitcoinTestFramework
|
|
from test_framework.util import assert_equal, assert_raises_rpc_error, find_vout_for_address, hex_str_to_bytes
|
|
from test_framework.messages import sha256, CTransaction, CTxInWitness
|
|
from test_framework.script import CScript, OP_0, OP_CHECKSIG, OP_CHECKSEQUENCEVERIFY, OP_CHECKLOCKTIMEVERIFY, OP_DROP, OP_TRUE
|
|
from test_framework.script_util import key_to_p2pkh_script, script_to_p2sh_p2wsh_script, script_to_p2wsh_script
|
|
from test_framework.wallet_util import bytes_to_wif
|
|
|
|
from decimal import Decimal, getcontext
|
|
from io import BytesIO
|
|
|
|
class SignRawTransactionsTest(BitcoinTestFramework):
|
|
def set_test_params(self):
|
|
self.setup_clean_chain = True
|
|
self.num_nodes = 2
|
|
self.extra_args=[['-vbparams=mweb:-2:0'],['-vbparams=mweb:-2:0']]
|
|
|
|
def skip_test_if_missing_module(self):
|
|
self.skip_if_no_wallet()
|
|
|
|
def successful_signing_test(self):
|
|
"""Create and sign a valid raw transaction with one input.
|
|
|
|
Expected results:
|
|
|
|
1) The transaction has a complete set of signatures
|
|
2) No script verification error occurred"""
|
|
self.log.info("Test valid raw transaction with one input")
|
|
privKeys = ['cUeKHd5orzT3mz8P9pxyREHfsWtVfgsfDjiZZBcjUBAaGk1BTj7N', 'cVKpPfVKSJxKqVpE9awvXNWuLHCa5j5tiE7K6zbUSptFpTEtiFrA']
|
|
|
|
inputs = [
|
|
# Valid pay-to-pubkey scripts
|
|
{'txid': '9b907ef1e3c26fc71fe4a4b3580bc75264112f95050014157059c736f0202e71', 'vout': 0,
|
|
'scriptPubKey': '76a91460baa0f494b38ce3c940dea67f3804dc52d1fb9488ac'},
|
|
{'txid': '83a4f6a6b73660e13ee6cb3c6063fa3759c50c9b7521d0536022961898f4fb02', 'vout': 0,
|
|
'scriptPubKey': '76a914669b857c03a5ed269d5d85a1ffac9ed5d663072788ac'},
|
|
]
|
|
|
|
outputs = {'mpLQjfK79b7CCV4VMJWEWAj5Mpx8Up5zxB': 0.1}
|
|
|
|
rawTx = self.nodes[0].createrawtransaction(inputs, outputs)
|
|
rawTxSigned = self.nodes[0].signrawtransactionwithkey(rawTx, privKeys, inputs)
|
|
|
|
# 1) The transaction has a complete set of signatures
|
|
assert rawTxSigned['complete']
|
|
|
|
# 2) No script verification error occurred
|
|
assert 'errors' not in rawTxSigned
|
|
|
|
def test_with_lock_outputs(self):
|
|
self.log.info("Test correct error reporting when trying to sign a locked output")
|
|
self.nodes[0].encryptwallet("password")
|
|
|
|
rawTx = '020000000156b958f78e3f24e0b2f4e4db1255426b0902027cb37e3ddadb52e37c3557dddb0000000000ffffffff01c0a6b929010000001600149a2ee8c77140a053f36018ac8124a6ececc1668a00000000'
|
|
|
|
assert_raises_rpc_error(-13, "Please enter the wallet passphrase with walletpassphrase first", self.nodes[0].signrawtransactionwithwallet, rawTx)
|
|
|
|
def script_verification_error_test(self):
|
|
"""Create and sign a raw transaction with valid (vin 0), invalid (vin 1) and one missing (vin 2) input script.
|
|
|
|
Expected results:
|
|
|
|
3) The transaction has no complete set of signatures
|
|
4) Two script verification errors occurred
|
|
5) Script verification errors have certain properties ("txid", "vout", "scriptSig", "sequence", "error")
|
|
6) The verification errors refer to the invalid (vin 1) and missing input (vin 2)"""
|
|
self.log.info("Test script verification errors")
|
|
privKeys = ['cUeKHd5orzT3mz8P9pxyREHfsWtVfgsfDjiZZBcjUBAaGk1BTj7N']
|
|
|
|
inputs = [
|
|
# Valid pay-to-pubkey script
|
|
{'txid': '9b907ef1e3c26fc71fe4a4b3580bc75264112f95050014157059c736f0202e71', 'vout': 0},
|
|
# Invalid script
|
|
{'txid': '5b8673686910442c644b1f4993d8f7753c7c8fcb5c87ee40d56eaeef25204547', 'vout': 7},
|
|
# Missing scriptPubKey
|
|
{'txid': '9b907ef1e3c26fc71fe4a4b3580bc75264112f95050014157059c736f0202e71', 'vout': 1},
|
|
]
|
|
|
|
scripts = [
|
|
# Valid pay-to-pubkey script
|
|
{'txid': '9b907ef1e3c26fc71fe4a4b3580bc75264112f95050014157059c736f0202e71', 'vout': 0,
|
|
'scriptPubKey': '76a91460baa0f494b38ce3c940dea67f3804dc52d1fb9488ac'},
|
|
# Invalid script
|
|
{'txid': '5b8673686910442c644b1f4993d8f7753c7c8fcb5c87ee40d56eaeef25204547', 'vout': 7,
|
|
'scriptPubKey': 'badbadbadbad'}
|
|
]
|
|
|
|
outputs = {'mpLQjfK79b7CCV4VMJWEWAj5Mpx8Up5zxB': 0.1}
|
|
|
|
rawTx = self.nodes[0].createrawtransaction(inputs, outputs)
|
|
|
|
# Make sure decoderawtransaction is at least marginally sane
|
|
decodedRawTx = self.nodes[0].decoderawtransaction(rawTx)
|
|
for i, inp in enumerate(inputs):
|
|
assert_equal(decodedRawTx["vin"][i]["txid"], inp["txid"])
|
|
assert_equal(decodedRawTx["vin"][i]["vout"], inp["vout"])
|
|
|
|
# Make sure decoderawtransaction throws if there is extra data
|
|
assert_raises_rpc_error(-22, "TX decode failed", self.nodes[0].decoderawtransaction, rawTx + "00")
|
|
|
|
rawTxSigned = self.nodes[0].signrawtransactionwithkey(rawTx, privKeys, scripts)
|
|
|
|
# 3) The transaction has no complete set of signatures
|
|
assert not rawTxSigned['complete']
|
|
|
|
# 4) Two script verification errors occurred
|
|
assert 'errors' in rawTxSigned
|
|
assert_equal(len(rawTxSigned['errors']), 2)
|
|
|
|
# 5) Script verification errors have certain properties
|
|
assert 'txid' in rawTxSigned['errors'][0]
|
|
assert 'vout' in rawTxSigned['errors'][0]
|
|
assert 'witness' in rawTxSigned['errors'][0]
|
|
assert 'scriptSig' in rawTxSigned['errors'][0]
|
|
assert 'sequence' in rawTxSigned['errors'][0]
|
|
assert 'error' in rawTxSigned['errors'][0]
|
|
|
|
# 6) The verification errors refer to the invalid (vin 1) and missing input (vin 2)
|
|
assert_equal(rawTxSigned['errors'][0]['txid'], inputs[1]['txid'])
|
|
assert_equal(rawTxSigned['errors'][0]['vout'], inputs[1]['vout'])
|
|
assert_equal(rawTxSigned['errors'][1]['txid'], inputs[2]['txid'])
|
|
assert_equal(rawTxSigned['errors'][1]['vout'], inputs[2]['vout'])
|
|
assert not rawTxSigned['errors'][0]['witness']
|
|
|
|
# Now test signing failure for transaction with input witnesses
|
|
p2wpkh_raw_tx = "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"
|
|
|
|
rawTxSigned = self.nodes[0].signrawtransactionwithwallet(p2wpkh_raw_tx)
|
|
|
|
# 7) The transaction has no complete set of signatures
|
|
assert not rawTxSigned['complete']
|
|
|
|
# 8) Two script verification errors occurred
|
|
assert 'errors' in rawTxSigned
|
|
assert_equal(len(rawTxSigned['errors']), 2)
|
|
|
|
# 9) Script verification errors have certain properties
|
|
assert 'txid' in rawTxSigned['errors'][0]
|
|
assert 'vout' in rawTxSigned['errors'][0]
|
|
assert 'witness' in rawTxSigned['errors'][0]
|
|
assert 'scriptSig' in rawTxSigned['errors'][0]
|
|
assert 'sequence' in rawTxSigned['errors'][0]
|
|
assert 'error' in rawTxSigned['errors'][0]
|
|
|
|
# Non-empty witness checked here
|
|
assert_equal(rawTxSigned['errors'][1]['witness'], ["304402203609e17b84f6a7d30c80bfa610b5b4542f32a8a0d5447a12fb1366d7f01cc44a0220573a954c4518331561406f90300e8f3358f51928d43c212a8caed02de67eebee01", "025476c2e83188368da1ff3e292e7acafcdb3566bb0ad253f62fc70f07aeee6357"])
|
|
assert not rawTxSigned['errors'][0]['witness']
|
|
|
|
def test_fully_signed_tx(self):
|
|
self.log.info("Test signing a fully signed transaction does nothing")
|
|
self.nodes[0].walletpassphrase("password", 9999)
|
|
self.nodes[0].generate(101)
|
|
rawtx = self.nodes[0].createrawtransaction([], [{self.nodes[0].getnewaddress(): 10}])
|
|
fundedtx = self.nodes[0].fundrawtransaction(rawtx)
|
|
signedtx = self.nodes[0].signrawtransactionwithwallet(fundedtx["hex"])
|
|
assert_equal(signedtx["complete"], True)
|
|
signedtx2 = self.nodes[0].signrawtransactionwithwallet(signedtx["hex"])
|
|
assert_equal(signedtx2["complete"], True)
|
|
assert_equal(signedtx["hex"], signedtx2["hex"])
|
|
self.nodes[0].walletlock()
|
|
|
|
def witness_script_test(self):
|
|
self.log.info("Test signing transaction to P2SH-P2WSH addresses without wallet")
|
|
# Create a new P2SH-P2WSH 1-of-1 multisig address:
|
|
eckey = ECKey()
|
|
eckey.generate()
|
|
embedded_privkey = bytes_to_wif(eckey.get_bytes())
|
|
embedded_pubkey = eckey.get_pubkey().get_bytes().hex()
|
|
p2sh_p2wsh_address = self.nodes[1].createmultisig(1, [embedded_pubkey], "p2sh-segwit")
|
|
# send transaction to P2SH-P2WSH 1-of-1 multisig address
|
|
self.nodes[0].generate(101)
|
|
self.nodes[0].sendtoaddress(p2sh_p2wsh_address["address"], 49.999)
|
|
self.nodes[0].generate(1)
|
|
self.sync_all()
|
|
# Get the UTXO info from scantxoutset
|
|
unspent_output = self.nodes[1].scantxoutset('start', [p2sh_p2wsh_address['descriptor']])['unspents'][0]
|
|
spk = script_to_p2sh_p2wsh_script(p2sh_p2wsh_address['redeemScript']).hex()
|
|
unspent_output['witnessScript'] = p2sh_p2wsh_address['redeemScript']
|
|
unspent_output['redeemScript'] = script_to_p2wsh_script(unspent_output['witnessScript']).hex()
|
|
assert_equal(spk, unspent_output['scriptPubKey'])
|
|
# Now create and sign a transaction spending that output on node[0], which doesn't know the scripts or keys
|
|
spending_tx = self.nodes[0].createrawtransaction([unspent_output], {self.nodes[1].get_wallet_rpc(self.default_wallet_name).getnewaddress(): Decimal("49.998")})
|
|
spending_tx_signed = self.nodes[0].signrawtransactionwithkey(spending_tx, [embedded_privkey], [unspent_output])
|
|
# Check the signing completed successfully
|
|
assert 'complete' in spending_tx_signed
|
|
assert_equal(spending_tx_signed['complete'], True)
|
|
|
|
# Now test with P2PKH and P2PK scripts as the witnessScript
|
|
for tx_type in ['P2PKH', 'P2PK']: # these tests are order-independent
|
|
self.verify_txn_with_witness_script(tx_type)
|
|
|
|
def verify_txn_with_witness_script(self, tx_type):
|
|
self.log.info("Test with a {} script as the witnessScript".format(tx_type))
|
|
eckey = ECKey()
|
|
eckey.generate()
|
|
embedded_privkey = bytes_to_wif(eckey.get_bytes())
|
|
embedded_pubkey = eckey.get_pubkey().get_bytes().hex()
|
|
witness_script = {
|
|
'P2PKH': key_to_p2pkh_script(embedded_pubkey).hex(),
|
|
'P2PK': CScript([hex_str_to_bytes(embedded_pubkey), OP_CHECKSIG]).hex()
|
|
}.get(tx_type, "Invalid tx_type")
|
|
redeem_script = CScript([OP_0, sha256(check_script(witness_script))]).hex()
|
|
addr = script_to_p2sh(redeem_script)
|
|
script_pub_key = self.nodes[1].validateaddress(addr)['scriptPubKey']
|
|
# Fund that address
|
|
txid = self.nodes[0].sendtoaddress(addr, 10)
|
|
vout = find_vout_for_address(self.nodes[0], txid, addr)
|
|
self.nodes[0].generate(1)
|
|
# Now create and sign a transaction spending that output on node[0], which doesn't know the scripts or keys
|
|
spending_tx = self.nodes[0].createrawtransaction([{'txid': txid, 'vout': vout}], {self.nodes[1].getnewaddress(): Decimal("9.999")})
|
|
spending_tx_signed = self.nodes[0].signrawtransactionwithkey(spending_tx, [embedded_privkey], [{'txid': txid, 'vout': vout, 'scriptPubKey': script_pub_key, 'redeemScript': redeem_script, 'witnessScript': witness_script, 'amount': 10}])
|
|
# Check the signing completed successfully
|
|
assert 'complete' in spending_tx_signed
|
|
assert_equal(spending_tx_signed['complete'], True)
|
|
self.nodes[0].sendrawtransaction(spending_tx_signed['hex'])
|
|
|
|
def OP_1NEGATE_test(self):
|
|
self.log.info("Test OP_1NEGATE (0x4f) satisfies BIP62 minimal push standardness rule")
|
|
hex_str = (
|
|
"0200000001FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF"
|
|
"FFFFFFFF00000000044F024F9CFDFFFFFF01F0B9F5050000000023210277777777"
|
|
"77777777777777777777777777777777777777777777777777777777AC66030000"
|
|
)
|
|
prev_txs = [
|
|
{
|
|
"txid": "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF",
|
|
"vout": 0,
|
|
"scriptPubKey": "A914AE44AB6E9AA0B71F1CD2B453B69340E9BFBAEF6087",
|
|
"redeemScript": "4F9C",
|
|
"amount": 1,
|
|
}
|
|
]
|
|
txn = self.nodes[0].signrawtransactionwithwallet(hex_str, prev_txs)
|
|
assert txn["complete"]
|
|
|
|
def test_signing_with_csv(self):
|
|
self.log.info("Test signing a transaction containing a fully signed CSV input")
|
|
self.nodes[0].walletpassphrase("password", 9999)
|
|
getcontext().prec = 8
|
|
|
|
# Make sure CSV is active
|
|
self.nodes[0].generate(500)
|
|
|
|
# Create a P2WSH script with CSV
|
|
script = CScript([1, OP_CHECKSEQUENCEVERIFY, OP_DROP])
|
|
address = script_to_p2wsh(script)
|
|
|
|
# Fund that address and make the spend
|
|
txid = self.nodes[0].sendtoaddress(address, 1)
|
|
vout = find_vout_for_address(self.nodes[0], txid, address)
|
|
self.nodes[0].generate(1)
|
|
utxo = self.nodes[0].listunspent()[0]
|
|
amt = Decimal(1) + utxo["amount"] - Decimal(0.00001)
|
|
tx = self.nodes[0].createrawtransaction(
|
|
[{"txid": txid, "vout": vout, "sequence": 1},{"txid": utxo["txid"], "vout": utxo["vout"]}],
|
|
[{self.nodes[0].getnewaddress(): amt}],
|
|
self.nodes[0].getblockcount()
|
|
)
|
|
|
|
# Set the witness script
|
|
ctx = CTransaction()
|
|
ctx.deserialize(BytesIO(hex_str_to_bytes(tx)))
|
|
ctx.wit.vtxinwit.append(CTxInWitness())
|
|
ctx.wit.vtxinwit[0].scriptWitness.stack = [CScript([OP_TRUE]), script]
|
|
tx = ctx.serialize_with_witness().hex()
|
|
|
|
# Sign and send the transaction
|
|
signed = self.nodes[0].signrawtransactionwithwallet(tx)
|
|
assert_equal(signed["complete"], True)
|
|
self.nodes[0].sendrawtransaction(signed["hex"])
|
|
|
|
def test_signing_with_cltv(self):
|
|
self.log.info("Test signing a transaction containing a fully signed CLTV input")
|
|
self.nodes[0].walletpassphrase("password", 9999)
|
|
getcontext().prec = 8
|
|
|
|
# Make sure CSV is active
|
|
self.nodes[0].generate(1500)
|
|
|
|
# Create a P2WSH script with CLTV
|
|
script = CScript([1000, OP_CHECKLOCKTIMEVERIFY, OP_DROP])
|
|
address = script_to_p2wsh(script)
|
|
|
|
# Fund that address and make the spend
|
|
txid = self.nodes[0].sendtoaddress(address, 1)
|
|
vout = find_vout_for_address(self.nodes[0], txid, address)
|
|
self.nodes[0].generate(1)
|
|
utxo = self.nodes[0].listunspent()[0]
|
|
amt = Decimal(1) + utxo["amount"] - Decimal(0.00001)
|
|
tx = self.nodes[0].createrawtransaction(
|
|
[{"txid": txid, "vout": vout},{"txid": utxo["txid"], "vout": utxo["vout"]}],
|
|
[{self.nodes[0].getnewaddress(): amt}],
|
|
self.nodes[0].getblockcount()
|
|
)
|
|
|
|
# Set the witness script
|
|
ctx = CTransaction()
|
|
ctx.deserialize(BytesIO(hex_str_to_bytes(tx)))
|
|
ctx.wit.vtxinwit.append(CTxInWitness())
|
|
ctx.wit.vtxinwit[0].scriptWitness.stack = [CScript([OP_TRUE]), script]
|
|
tx = ctx.serialize_with_witness().hex()
|
|
|
|
# Sign and send the transaction
|
|
signed = self.nodes[0].signrawtransactionwithwallet(tx)
|
|
assert_equal(signed["complete"], True)
|
|
self.nodes[0].sendrawtransaction(signed["hex"])
|
|
|
|
def run_test(self):
|
|
self.successful_signing_test()
|
|
self.script_verification_error_test()
|
|
self.witness_script_test()
|
|
self.OP_1NEGATE_test()
|
|
self.test_with_lock_outputs()
|
|
self.test_fully_signed_tx()
|
|
self.test_signing_with_csv()
|
|
self.test_signing_with_cltv()
|
|
|
|
|
|
if __name__ == '__main__':
|
|
SignRawTransactionsTest().main()
|