Bitcoin Core  29.1.0
P2P Digital Currency
script.cpp
Go to the documentation of this file.
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-present The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
5 
6 #include <script/script.h>
7 
8 #include <crypto/common.h>
9 #include <crypto/hex_base.h>
10 #include <hash.h>
11 #include <uint256.h>
12 #include <util/hash_type.h>
13 
14 #include <string>
15 
16 CScriptID::CScriptID(const CScript& in) : BaseHash(Hash160(in)) {}
17 
18 std::string GetOpName(opcodetype opcode)
19 {
20  switch (opcode)
21  {
22  // push value
23  case OP_0 : return "0";
24  case OP_PUSHDATA1 : return "OP_PUSHDATA1";
25  case OP_PUSHDATA2 : return "OP_PUSHDATA2";
26  case OP_PUSHDATA4 : return "OP_PUSHDATA4";
27  case OP_1NEGATE : return "-1";
28  case OP_RESERVED : return "OP_RESERVED";
29  case OP_1 : return "1";
30  case OP_2 : return "2";
31  case OP_3 : return "3";
32  case OP_4 : return "4";
33  case OP_5 : return "5";
34  case OP_6 : return "6";
35  case OP_7 : return "7";
36  case OP_8 : return "8";
37  case OP_9 : return "9";
38  case OP_10 : return "10";
39  case OP_11 : return "11";
40  case OP_12 : return "12";
41  case OP_13 : return "13";
42  case OP_14 : return "14";
43  case OP_15 : return "15";
44  case OP_16 : return "16";
45 
46  // control
47  case OP_NOP : return "OP_NOP";
48  case OP_VER : return "OP_VER";
49  case OP_IF : return "OP_IF";
50  case OP_NOTIF : return "OP_NOTIF";
51  case OP_VERIF : return "OP_VERIF";
52  case OP_VERNOTIF : return "OP_VERNOTIF";
53  case OP_ELSE : return "OP_ELSE";
54  case OP_ENDIF : return "OP_ENDIF";
55  case OP_VERIFY : return "OP_VERIFY";
56  case OP_RETURN : return "OP_RETURN";
57 
58  // stack ops
59  case OP_TOALTSTACK : return "OP_TOALTSTACK";
60  case OP_FROMALTSTACK : return "OP_FROMALTSTACK";
61  case OP_2DROP : return "OP_2DROP";
62  case OP_2DUP : return "OP_2DUP";
63  case OP_3DUP : return "OP_3DUP";
64  case OP_2OVER : return "OP_2OVER";
65  case OP_2ROT : return "OP_2ROT";
66  case OP_2SWAP : return "OP_2SWAP";
67  case OP_IFDUP : return "OP_IFDUP";
68  case OP_DEPTH : return "OP_DEPTH";
69  case OP_DROP : return "OP_DROP";
70  case OP_DUP : return "OP_DUP";
71  case OP_NIP : return "OP_NIP";
72  case OP_OVER : return "OP_OVER";
73  case OP_PICK : return "OP_PICK";
74  case OP_ROLL : return "OP_ROLL";
75  case OP_ROT : return "OP_ROT";
76  case OP_SWAP : return "OP_SWAP";
77  case OP_TUCK : return "OP_TUCK";
78 
79  // splice ops
80  case OP_CAT : return "OP_CAT";
81  case OP_SUBSTR : return "OP_SUBSTR";
82  case OP_LEFT : return "OP_LEFT";
83  case OP_RIGHT : return "OP_RIGHT";
84  case OP_SIZE : return "OP_SIZE";
85 
86  // bit logic
87  case OP_INVERT : return "OP_INVERT";
88  case OP_AND : return "OP_AND";
89  case OP_OR : return "OP_OR";
90  case OP_XOR : return "OP_XOR";
91  case OP_EQUAL : return "OP_EQUAL";
92  case OP_EQUALVERIFY : return "OP_EQUALVERIFY";
93  case OP_RESERVED1 : return "OP_RESERVED1";
94  case OP_RESERVED2 : return "OP_RESERVED2";
95 
96  // numeric
97  case OP_1ADD : return "OP_1ADD";
98  case OP_1SUB : return "OP_1SUB";
99  case OP_2MUL : return "OP_2MUL";
100  case OP_2DIV : return "OP_2DIV";
101  case OP_NEGATE : return "OP_NEGATE";
102  case OP_ABS : return "OP_ABS";
103  case OP_NOT : return "OP_NOT";
104  case OP_0NOTEQUAL : return "OP_0NOTEQUAL";
105  case OP_ADD : return "OP_ADD";
106  case OP_SUB : return "OP_SUB";
107  case OP_MUL : return "OP_MUL";
108  case OP_DIV : return "OP_DIV";
109  case OP_MOD : return "OP_MOD";
110  case OP_LSHIFT : return "OP_LSHIFT";
111  case OP_RSHIFT : return "OP_RSHIFT";
112  case OP_BOOLAND : return "OP_BOOLAND";
113  case OP_BOOLOR : return "OP_BOOLOR";
114  case OP_NUMEQUAL : return "OP_NUMEQUAL";
115  case OP_NUMEQUALVERIFY : return "OP_NUMEQUALVERIFY";
116  case OP_NUMNOTEQUAL : return "OP_NUMNOTEQUAL";
117  case OP_LESSTHAN : return "OP_LESSTHAN";
118  case OP_GREATERTHAN : return "OP_GREATERTHAN";
119  case OP_LESSTHANOREQUAL : return "OP_LESSTHANOREQUAL";
120  case OP_GREATERTHANOREQUAL : return "OP_GREATERTHANOREQUAL";
121  case OP_MIN : return "OP_MIN";
122  case OP_MAX : return "OP_MAX";
123  case OP_WITHIN : return "OP_WITHIN";
124 
125  // crypto
126  case OP_RIPEMD160 : return "OP_RIPEMD160";
127  case OP_SHA1 : return "OP_SHA1";
128  case OP_SHA256 : return "OP_SHA256";
129  case OP_HASH160 : return "OP_HASH160";
130  case OP_HASH256 : return "OP_HASH256";
131  case OP_CODESEPARATOR : return "OP_CODESEPARATOR";
132  case OP_CHECKSIG : return "OP_CHECKSIG";
133  case OP_CHECKSIGVERIFY : return "OP_CHECKSIGVERIFY";
134  case OP_CHECKMULTISIG : return "OP_CHECKMULTISIG";
135  case OP_CHECKMULTISIGVERIFY : return "OP_CHECKMULTISIGVERIFY";
136 
137  // expansion
138  case OP_NOP1 : return "OP_NOP1";
139  case OP_CHECKLOCKTIMEVERIFY : return "OP_CHECKLOCKTIMEVERIFY";
140  case OP_CHECKSEQUENCEVERIFY : return "OP_CHECKSEQUENCEVERIFY";
141  case OP_NOP4 : return "OP_NOP4";
142  case OP_NOP5 : return "OP_NOP5";
143  case OP_NOP6 : return "OP_NOP6";
144  case OP_NOP7 : return "OP_NOP7";
145  case OP_NOP8 : return "OP_NOP8";
146  case OP_NOP9 : return "OP_NOP9";
147  case OP_NOP10 : return "OP_NOP10";
148 
149  // Opcode added by BIP 342 (Tapscript)
150  case OP_CHECKSIGADD : return "OP_CHECKSIGADD";
151 
152  case OP_INVALIDOPCODE : return "OP_INVALIDOPCODE";
153 
154  default:
155  return "OP_UNKNOWN";
156  }
157 }
158 
159 unsigned int CScript::GetSigOpCount(bool fAccurate) const
160 {
161  unsigned int n = 0;
162  const_iterator pc = begin();
163  opcodetype lastOpcode = OP_INVALIDOPCODE;
164  while (pc < end())
165  {
166  opcodetype opcode;
167  if (!GetOp(pc, opcode))
168  break;
169  if (opcode == OP_CHECKSIG || opcode == OP_CHECKSIGVERIFY)
170  n++;
171  else if (opcode == OP_CHECKMULTISIG || opcode == OP_CHECKMULTISIGVERIFY)
172  {
173  if (fAccurate && lastOpcode >= OP_1 && lastOpcode <= OP_16)
174  n += DecodeOP_N(lastOpcode);
175  else
176  n += MAX_PUBKEYS_PER_MULTISIG;
177  }
178  lastOpcode = opcode;
179  }
180  return n;
181 }
182 
183 unsigned int CScript::GetSigOpCount(const CScript& scriptSig) const
184 {
185  if (!IsPayToScriptHash())
186  return GetSigOpCount(true);
187 
188  // This is a pay-to-script-hash scriptPubKey;
189  // get the last item that the scriptSig
190  // pushes onto the stack:
191  const_iterator pc = scriptSig.begin();
192  std::vector<unsigned char> vData;
193  while (pc < scriptSig.end())
194  {
195  opcodetype opcode;
196  if (!scriptSig.GetOp(pc, opcode, vData))
197  return 0;
198  if (opcode > OP_16)
199  return 0;
200  }
201 
203  CScript subscript(vData.begin(), vData.end());
204  return subscript.GetSigOpCount(true);
205 }
206 
207 bool CScript::IsPayToAnchor() const
208 {
209  return (this->size() == 4 &&
210  (*this)[0] == OP_1 &&
211  (*this)[1] == 0x02 &&
212  (*this)[2] == 0x4e &&
213  (*this)[3] == 0x73);
214 }
215 
216 bool CScript::IsPayToAnchor(int version, const std::vector<unsigned char>& program)
217 {
218  return version == 1 &&
219  program.size() == 2 &&
220  program[0] == 0x4e &&
221  program[1] == 0x73;
222 }
223 
224 bool CScript::IsPayToScriptHash() const
225 {
226  // Extra-fast test for pay-to-script-hash CScripts:
227  return (this->size() == 23 &&
228  (*this)[0] == OP_HASH160 &&
229  (*this)[1] == 0x14 &&
230  (*this)[22] == OP_EQUAL);
231 }
232 
233 bool CScript::IsPayToWitnessScriptHash() const
234 {
235  // Extra-fast test for pay-to-witness-script-hash CScripts:
236  return (this->size() == 34 &&
237  (*this)[0] == OP_0 &&
238  (*this)[1] == 0x20);
239 }
240 
241 // A witness program is any valid CScript that consists of a 1-byte push opcode
242 // followed by a data push between 2 and 40 bytes.
243 bool CScript::IsWitnessProgram(int& version, std::vector<unsigned char>& program) const
244 {
245  if (this->size() < 4 || this->size() > 42) {
246  return false;
247  }
248  if ((*this)[0] != OP_0 && ((*this)[0] < OP_1 || (*this)[0] > OP_16)) {
249  return false;
250  }
251  if ((size_t)((*this)[1] + 2) == this->size()) {
252  version = DecodeOP_N((opcodetype)(*this)[0]);
253  program = std::vector<unsigned char>(this->begin() + 2, this->end());
254  return true;
255  }
256  return false;
257 }
258 
259 bool CScript::IsPushOnly(const_iterator pc) const
260 {
261  while (pc < end())
262  {
263  opcodetype opcode;
264  if (!GetOp(pc, opcode))
265  return false;
266  // Note that IsPushOnly() *does* consider OP_RESERVED to be a
267  // push-type opcode, however execution of OP_RESERVED fails, so
268  // it's not relevant to P2SH/BIP62 as the scriptSig would fail prior to
269  // the P2SH special validation code being executed.
270  if (opcode > OP_16)
271  return false;
272  }
273  return true;
274 }
275 
276 bool CScript::IsPushOnly() const
277 {
278  return this->IsPushOnly(begin());
279 }
280 
281 std::string CScriptWitness::ToString() const
282 {
283  std::string ret = "CScriptWitness(";
284  for (unsigned int i = 0; i < stack.size(); i++) {
285  if (i) {
286  ret += ", ";
287  }
288  ret += HexStr(stack[i]);
289  }
290  return ret + ")";
291 }
292 
293 bool CScript::HasValidOps() const
294 {
295  CScript::const_iterator it = begin();
296  while (it < end()) {
297  opcodetype opcode;
298  std::vector<unsigned char> item;
299  if (!GetOp(it, opcode, item) || opcode > MAX_OPCODE || item.size() > MAX_SCRIPT_ELEMENT_SIZE) {
300  return false;
301  }
302  }
303  return true;
304 }
305 
306 bool GetScriptOp(CScriptBase::const_iterator& pc, CScriptBase::const_iterator end, opcodetype& opcodeRet, std::vector<unsigned char>* pvchRet)
307 {
308  opcodeRet = OP_INVALIDOPCODE;
309  if (pvchRet)
310  pvchRet->clear();
311  if (pc >= end)
312  return false;
313 
314  // Read instruction
315  if (end - pc < 1)
316  return false;
317  unsigned int opcode = *pc++;
318 
319  // Immediate operand
320  if (opcode <= OP_PUSHDATA4)
321  {
322  unsigned int nSize = 0;
323  if (opcode < OP_PUSHDATA1)
324  {
325  nSize = opcode;
326  }
327  else if (opcode == OP_PUSHDATA1)
328  {
329  if (end - pc < 1)
330  return false;
331  nSize = *pc++;
332  }
333  else if (opcode == OP_PUSHDATA2)
334  {
335  if (end - pc < 2)
336  return false;
337  nSize = ReadLE16(&pc[0]);
338  pc += 2;
339  }
340  else if (opcode == OP_PUSHDATA4)
341  {
342  if (end - pc < 4)
343  return false;
344  nSize = ReadLE32(&pc[0]);
345  pc += 4;
346  }
347  if (end - pc < 0 || (unsigned int)(end - pc) < nSize)
348  return false;
349  if (pvchRet)
350  pvchRet->assign(pc, pc + nSize);
351  pc += nSize;
352  }
353 
354  opcodeRet = static_cast<opcodetype>(opcode);
355  return true;
356 }
357 
358 bool IsOpSuccess(const opcodetype& opcode)
359 {
360  return opcode == 80 || opcode == 98 || (opcode >= 126 && opcode <= 129) ||
361  (opcode >= 131 && opcode <= 134) || (opcode >= 137 && opcode <= 138) ||
362  (opcode >= 141 && opcode <= 142) || (opcode >= 149 && opcode <= 153) ||
363  (opcode >= 187 && opcode <= 254);
364 }
365 
366 bool CheckMinimalPush(const std::vector<unsigned char>& data, opcodetype opcode) {
367  // Excludes OP_1NEGATE, OP_1-16 since they are by definition minimal
368  assert(0 <= opcode && opcode <= OP_PUSHDATA4);
369  if (data.size() == 0) {
370  // Should have used OP_0.
371  return opcode == OP_0;
372  } else if (data.size() == 1 && data[0] >= 1 && data[0] <= 16) {
373  // Should have used OP_1 .. OP_16.
374  return false;
375  } else if (data.size() == 1 && data[0] == 0x81) {
376  // Should have used OP_1NEGATE.
377  return false;
378  } else if (data.size() <= 75) {
379  // Must have used a direct push (opcode indicating number of bytes pushed + those bytes).
380  return opcode == data.size();
381  } else if (data.size() <= 255) {
382  // Must have used OP_PUSHDATA.
383  return opcode == OP_PUSHDATA1;
384  } else if (data.size() <= 65535) {
385  // Must have used OP_PUSHDATA2.
386  return opcode == OP_PUSHDATA2;
387  }
388  return true;
389 }
CScript::GetSigOpCount
unsigned int GetSigOpCount(bool fAccurate) const
Pre-version-0.6, Bitcoin always counted CHECKMULTISIGs as 20 sigops.
Definition: script.cpp:159
OP_ABS
Definition: script.h:157
OP_XOR
Definition: script.h:145
ret
int ret
Definition: bitcoin-cli.cpp:1358
CScript::DecodeOP_N
static int DecodeOP_N(opcodetype opcode)
Encode/decode small integers:
Definition: script.h:517
CheckMinimalPush
bool CheckMinimalPush(const std::vector< unsigned char > &data, opcodetype opcode)
Definition: script.cpp:366
assert
assert(!tx.IsCoinBase())
CScript::GetOp
bool GetOp(const_iterator &pc, opcodetype &opcodeRet, std::vector< unsigned char > &vchRet) const
Definition: script.h:506
OP_NIP
Definition: script.h:126
OP_DUP
Definition: script.h:125
CScript::IsPayToScriptHash
bool IsPayToScriptHash() const
Definition: script.cpp:224
test_vectors_musig2_generate.data
data
Definition: test_vectors_musig2_generate.py:98
GetScriptOp
bool GetScriptOp(CScriptBase::const_iterator &pc, CScriptBase::const_iterator end, opcodetype &opcodeRet, std::vector< unsigned char > *pvchRet)
Definition: script.cpp:306
OP_ADD
Definition: script.h:161
CScript::IsPushOnly
bool IsPushOnly() const
Definition: script.cpp:276
CScriptWitness::stack
std::vector< std::vector< unsigned char > > stack
Definition: script.h:588
OP_OR
Definition: script.h:144
CScript::HasValidOps
bool HasValidOps() const
Check if the script contains valid OP_CODES.
Definition: script.cpp:293
OP_SUB
Definition: script.h:162
CScript::IsWitnessProgram
bool IsWitnessProgram(int &version, std::vector< unsigned char > &program) const
Definition: script.cpp:243
prevector::const_iterator
Definition: prevector.h:100
OP_CAT
Definition: script.h:135
OP_0
Definition: script.h:76
CScriptID::CScriptID
CScriptID()
Definition: script.h:604
OP_NOP
Definition: script.h:102
MAX_PUBKEYS_PER_MULTISIG
static const int MAX_PUBKEYS_PER_MULTISIG
Definition: script.h:34
OP_VER
Definition: script.h:103
hex_base.h
OP_5
Definition: script.h:88
OP_1
Definition: script.h:83
OP_DIV
Definition: script.h:164
ReadLE32
uint32_t ReadLE32(const B *ptr)
Definition: common.h:27
OP_10
Definition: script.h:93
OP_IF
Definition: script.h:104
prevector::end
iterator end()
Definition: prevector.h:304
OP_11
Definition: script.h:94
OP_MIN
Definition: script.h:178
ReadLE16
uint16_t ReadLE16(const B *ptr)
Definition: common.h:19
opcodetype
opcodetype
Script opcodes.
Definition: script.h:73
OP_ROT
Definition: script.h:130
OP_MOD
Definition: script.h:165
OP_MAX
Definition: script.h:179
hash_type.h
CScript::IsPayToAnchor
bool IsPayToAnchor() const
Definition: script.cpp:207
Hash160
uint160 Hash160(const T1 &in1)
Compute the 160-bit hash an object.
Definition: hash.h:92
OP_7
Definition: script.h:90
OP_13
Definition: script.h:96
OP_9
Definition: script.h:92
GetOpName
std::string GetOpName(opcodetype opcode)
Definition: script.cpp:18
CScript
Serialized script, used inside transaction inputs and outputs.
Definition: script.h:414
OP_3
Definition: script.h:86
OP_15
Definition: script.h:98
MAX_SCRIPT_ELEMENT_SIZE
static const unsigned int MAX_SCRIPT_ELEMENT_SIZE
Definition: script.h:28
OP_14
Definition: script.h:97
HexStr
std::string HexStr(const Span< const uint8_t > s)
Convert a span of bytes to a lower-case hexadecimal string.
Definition: hex_base.cpp:29
OP_8
Definition: script.h:91
OP_MUL
Definition: script.h:163
prevector::begin
iterator begin()
Definition: prevector.h:302
prevector::size
size_type size() const
Definition: prevector.h:294
OP_2
Definition: script.h:85
OP_16
Definition: script.h:99
MAX_OPCODE
static const unsigned int MAX_OPCODE
Definition: script.h:216
CScriptWitness::ToString
std::string ToString() const
Definition: script.cpp:281
OP_NOT
Definition: script.h:158
OP_AND
Definition: script.h:143
OP_6
Definition: script.h:89
IsOpSuccess
bool IsOpSuccess(const opcodetype &opcode)
Test for OP_SUCCESSx opcodes as defined by BIP342.
Definition: script.cpp:358
CScript::IsPayToWitnessScriptHash
bool IsPayToWitnessScriptHash() const
Definition: script.cpp:233
OP_4
Definition: script.h:87
OP_12
Definition: script.h:95
Generated on Wed Sep 3 2025 12:00:00 for Bitcoin Core by   doxygen 1.8.14