def test_p2wsh_signaturehash2(self):
unsigned_tx = x(
'0100000002e9b542c5176808107ff1df906f46bb1f2583b16112b95ee5380665ba7fcfc0010000000000ffffffff80e68831516392fcd100d186b3c2c7b95c80b53c77e77c35ba03a66b429a2a1b0000000000ffffffff0280969800000000001976a914de4b231626ef508c9a74a8517e6783c0546d6b2888ac80969800000000001976a9146648a8cd4531e1ec47f35916de8e259237294d1e88ac00000000'
)
value1 = coins_to_satoshi(0.16777215)
scriptcode1 = CScript(
x('0063ab68210392972e2eb617b2388771abe27235fd5ac44af8e61693261550447a4c3e39da98ac'
))
value2 = coins_to_satoshi(0.16777215)
scriptcode2 = CScript(
x('68210392972e2eb617b2388771abe27235fd5ac44af8e61693261550447a4c3e39da98ac'
))
self.assertEqual(
SignatureHash(scriptcode1, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_SINGLE | SIGHASH_ANYONECANPAY, value1,
SIGVERSION_WITNESS_V0),
x('e9071e75e25b8a1e298a72f0d2e9f4f95a0f5cdf86a533cda597eb402ed13b3a'
))
self.assertEqual(
SignatureHash(scriptcode2, CTransaction.deserialize(unsigned_tx),
1, SIGHASH_SINGLE | SIGHASH_ANYONECANPAY, value2,
SIGVERSION_WITNESS_V0),
x('cd72f1f1a433ee9df816857fad88d8ebd97e09a75cd481583eb841c330275e54'
))
def check_sign(self, blinded_tx: CTransaction, signed_tx: CTransaction,
bundle: Dict[str, Any]) -> None:
tx_to_sign = blinded_tx.to_mutable()
for n, vin in enumerate(tx_to_sign.vin):
utxo = bundle['vin_utxo'][n]
amount = -1 if utxo['amount'] == -1 else coins_to_satoshi(
utxo['amount'])
scriptPubKey = CScript(x(utxo['scriptPubKey']))
a = CCoinAddress(utxo['address'])
if 'privkey' in utxo:
privkey = CCoinKey(utxo['privkey'])
assert isinstance(a, P2PKHCoinAddress),\
"only P2PKH is supported for single-sig"
assert a == P2PKHElementsAddress.from_pubkey(privkey.pub)
assert scriptPubKey == a.to_scriptPubKey()
sighash = SignatureHash(scriptPubKey,
tx_to_sign,
n,
SIGHASH_ALL,
amount=amount,
sigversion=SIGVERSION_BASE)
sig = privkey.sign(sighash) + bytes([SIGHASH_ALL])
tx_to_sign.vin[n].scriptSig = CScript(
[CScript(sig), CScript(privkey.pub)])
else:
pk_list = [CCoinKey(pk) for pk in utxo['privkey_list']]
redeem_script_data = [utxo['num_p2sh_participants']]
redeem_script_data.extend([pk.pub for pk in pk_list])
redeem_script_data.extend([len(pk_list), OP_CHECKMULTISIG])
redeem_script = CScript(redeem_script_data)
assert isinstance(a, P2SHCoinAddress),\
"only P2SH is supported for multi-sig."
assert scriptPubKey == redeem_script.to_p2sh_scriptPubKey()
assert a == P2SHElementsAddress.from_scriptPubKey(
redeem_script.to_p2sh_scriptPubKey())
sighash = SignatureHash(redeem_script,
tx_to_sign,
n,
SIGHASH_ALL,
amount=amount,
sigversion=SIGVERSION_BASE)
sigs = [
pk.sign(sighash) + bytes([SIGHASH_ALL]) for pk in pk_list
]
tx_to_sign.vin[n].scriptSig = CScript([b''] + sigs +
[redeem_script])
VerifyScript(tx_to_sign.vin[n].scriptSig,
scriptPubKey,
tx_to_sign,
n,
amount=amount)
self.assertEqual(tx_to_sign.serialize(), signed_tx.serialize())
def _sign(self, script, tx, in_idx, amount, key, script_type="p2pkh"):
if self.chain == "bch":
sighash = SignatureHash(script,
tx,
in_idx,
SIGHASH_ALL | 0x40,
amount=amount,
sigversion=SIGVERSION_WITNESS_V0)
sig = key.sign(sighash) + bytes([SIGHASH_ALL | 0x40])
else:
if script_type == 'p2wpkh' or script_type == 'p2wsh':
sighash = SignatureHash(script,
tx,
in_idx,
SIGHASH_ALL,
amount=amount,
sigversion=SIGVERSION_WITNESS_V0)
else:
sighash = SignatureHash(script, tx, in_idx, SIGHASH_ALL)
sig = key.sign(sighash) + bytes([SIGHASH_ALL])
return sig
def test_p2wsh_signaturehash1(self):
unsigned_tx = x(
'0100000002fe3dc9208094f3ffd12645477b3dc56f60ec4fa8e6f5d67c565d1c6b9216b36e0000000000ffffffff0815cf020f013ed6cf91d29f4202e8a58726b1ac6c79da47c23d1bee0a6925f80000000000ffffffff0100f2052a010000001976a914a30741f8145e5acadf23f751864167f32e0963f788ac00000000'
)
value2 = coins_to_satoshi(49)
scriptcode1 = CScript(
x('21026dccc749adc2a9d0d89497ac511f760f45c47dc5ed9cf352a58ac706453880aeadab210255a9626aebf5e29c0e6538428ba0d1dcf6ca98ffdf086aa8ced5e0d0215ea465ac'
))
# This is the same script with everything up to the last executed OP_CODESEPARATOR, including that
# OP_CODESEPARATOR removed
scriptcode2 = CScript(
x('210255a9626aebf5e29c0e6538428ba0d1dcf6ca98ffdf086aa8ced5e0d0215ea465ac'
))
self.assertEqual(
SignatureHash(scriptcode1, CTransaction.deserialize(unsigned_tx),
1, SIGHASH_SINGLE, value2, SIGVERSION_WITNESS_V0),
x('82dde6e4f1e94d02c2b7ad03d2115d691f48d064e9d52f58194a6637e4194391'
))
self.assertEqual(
SignatureHash(scriptcode2, CTransaction.deserialize(unsigned_tx),
1, SIGHASH_SINGLE, value2, SIGVERSION_WITNESS_V0),
x('fef7bd749cce710c5c052bd796df1af0d935e59cea63736268bcbe2d2134fc47'
))
def test_p2sh_p2wpkh_signaturehash(self):
unsigned_tx = x(
'0100000001db6b1b20aa0fd7b23880be2ecbd4a98130974cf4748fb66092ac4d3ceb1a54770100000000feffffff02b8b4eb0b000000001976a914a457b684d7f0d539a46a45bbc043f35b59d0d96388ac0008af2f000000001976a914fd270b1ee6abcaea97fea7ad0402e8bd8ad6d77c88ac92040000'
)
scriptpubkey = CScript(
x('001479091972186c449eb1ded22b78e40d009bdf0089'))
value = coins_to_satoshi(10)
address = CCoinAddress.from_scriptPubKey(scriptpubkey)
self.assertEqual(
SignatureHash(address.to_redeemScript(),
CTransaction.deserialize(unsigned_tx), 0,
SIGHASH_ALL, value, SIGVERSION_WITNESS_V0),
x('64f3b0f4dd2bb3aa1ce8566d220cc74dda9df97d8490cc81d89d735c92e59fb6'
))
def test_p2wpkh_signaturehash(self):
unsigned_tx = x(
'0100000002fff7f7881a8099afa6940d42d1e7f6362bec38171ea3edf433541db4e4ad969f0000000000eeffffffef51e1b804cc89d182d279655c3aa89e815b1b309fe287d9b2b55d57b90ec68a0100000000ffffffff02202cb206000000001976a9148280b37df378db99f66f85c95a783a76ac7a6d5988ac9093510d000000001976a9143bde42dbee7e4dbe6a21b2d50ce2f0167faa815988ac11000000'
)
scriptpubkey = CScript(
x('00141d0f172a0ecb48aee1be1f2687d2963ae33f71a1'))
value = coins_to_satoshi(6)
address = CBech32BitcoinAddress.from_scriptPubKey(scriptpubkey)
self.assertEqual(
SignatureHash(address.to_redeemScript(),
CTransaction.deserialize(unsigned_tx), 1,
SIGHASH_ALL, value, SIGVERSION_WITNESS_V0),
x('c37af31116d1b27caf68aae9e3ac82f1477929014d5b917657d0eb49478cb670'
))
def sign_transaction(tx, privkeys):
witness_list = list(tx.witness.vtxinwit[0].scriptWitness.stack)
sighash = SignatureHash(tx.witness, tx, 0, SIGHASH_ALL)
signatures = []
for privkey in privkeys:
privkey = CBitcoinSecret.from_bytes(privkey)
for privkey in privkeys:
signatures.append(privkey.sign(sighash) + bytes([SIGHASH_ALL]))
counter = 0
for signature in signatures:
witness_list.insert(counter, signature)
counter = counter + 1
witness_script = CScriptWitness(tuple(witness_list))
tx.witness = CTxWitness(tuple([CTxInWitness(witness_script)]))
return tx.serialize()
def test_p2sh_p2wsh_signaturehash(self):
unsigned_tx = x(
'010000000136641869ca081e70f394c6948e8af409e18b619df2ed74aa106c1ca29787b96e0100000000ffffffff0200e9a435000000001976a914389ffce9cd9ae88dcc0631e88a821ffdbe9bfe2688acc0832f05000000001976a9147480a33f950689af511e6e84c138dbbd3c3ee41588ac00000000'
)
value = coins_to_satoshi(9.87654321)
witnessscript = CScript(
x('56210307b8ae49ac90a048e9b53357a2354b3334e9c8bee813ecb98e99a7e07e8c3ba32103b28f0c28bfab54554ae8c658ac5c3e0ce6e79ad336331f78c428dd43eea8449b21034b8113d703413d57761b8b9781957b8c0ac1dfe69f492580ca4195f50376ba4a21033400f6afecb833092a9a21cfdf1ed1376e58c5d1f47de74683123987e967a8f42103a6d48b1131e94ba04d9737d61acdaa1322008af9602b3b14862c07a1789aac162102d8b661b0b3302ee2f162b09e07a55ad5dfbe673a9f01d9f0c19617681024306b56ae'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_ALL, value, SIGVERSION_WITNESS_V0),
x('185c0be5263dce5b4bb50a047973c1b6272bfbd0103a89444597dc40b248ee7c'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_NONE, value, SIGVERSION_WITNESS_V0),
x('e9733bc60ea13c95c6527066bb975a2ff29a925e80aa14c213f686cbae5d2f36'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_SINGLE, value, SIGVERSION_WITNESS_V0),
x('1e1f1c303dc025bd664acb72e583e933fae4cff9148bf78c157d1e8f78530aea'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_ALL | SIGHASH_ANYONECANPAY, value,
SIGVERSION_WITNESS_V0),
x('2a67f03e63a6a422125878b40b82da593be8d4efaafe88ee528af6e5a9955c6e'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_NONE | SIGHASH_ANYONECANPAY, value,
SIGVERSION_WITNESS_V0),
x('781ba15f3779d5542ce8ecb5c18716733a5ee42a6f51488ec96154934e2c890a'
))
self.assertEqual(
SignatureHash(witnessscript, CTransaction.deserialize(unsigned_tx),
0, SIGHASH_SINGLE | SIGHASH_ANYONECANPAY, value,
SIGVERSION_WITNESS_V0),
x('511e8e52ed574121fc1b654970395502128263f62662e076dc6baf05c2e6a99b'
))
# Here we'll create that scriptPubKey from scratch using the pubkey that
# corresponds to the secret key we generated above.
txin_scriptPubKey = \
P2PKHBitcoinAddress.from_pubkey(seckey.pub).to_scriptPubKey()
# Create the txout. This time we create the scriptPubKey from a Bitcoin
# address.
txout = CMutableTxOut(
0.001 * COIN,
CBitcoinAddress('1C7zdTfnkzmr13HfA2vNm5SJYRK6nEKyq8').to_scriptPubKey())
# Create the unsigned transaction.
tx = CMutableTransaction([txin], [txout])
# Calculate the signature hash for that transaction.
sighash = SignatureHash(txin_scriptPubKey, tx, 0, SIGHASH_ALL)
# Now sign it. We have to append the type of signature we want to the end, in
# this case the usual SIGHASH_ALL.
sig = seckey.sign(sighash) + bytes([SIGHASH_ALL])
# Set the scriptSig of our transaction input appropriately.
txin.scriptSig = CScript([sig, seckey.pub])
# Verify the signature worked. This calls EvalScript() and actually executes
# the opcodes in the scripts to see if everything worked out. If it doesn't an
# exception will be raised.
VerifyScript(txin.scriptSig, txin_scriptPubKey, tx, 0)
# Done! Print the transaction to standard output with the bytes-to-hex
# function.
# address.
txout = CMutableTxOut(0.0005*COIN,
CBitcoinAddress(
'323uf9MgLaSn9T7vDaK1cGAZ2qpvYUuqSp'
).to_scriptPubKey())
# Create the unsigned transaction.
tx = CMutableTransaction([txin], [txout])
# Calculate the signature hash for that transaction. Note how the script we use
# is the redeemScript, not the scriptPubKey. That's because when the CHECKSIG
# operation happens EvalScript() will be evaluating the redeemScript, so the
# corresponding SignatureHash() function will use that same script when it
# replaces the scriptSig in the transaction being hashed with the script being
# executed.
sighash = SignatureHash(txin_redeemScript, tx, 0, SIGHASH_ALL)
# Now sign it. We have to append the type of signature we want to the end, in
# this case the usual SIGHASH_ALL.
sig = seckey.sign(sighash) + bytes([SIGHASH_ALL])
# Set the scriptSig of our transaction input appropriately.
txin.scriptSig = CScript([sig, txin_redeemScript])
# Verify the signature worked. This calls EvalScript() and actually executes
# the opcodes in the scripts to see if everything worked out. If it doesn't an
# exception will be raised.
VerifyScript(txin.scriptSig, txin_scriptPubKey, tx, 0)
# Done! Print the transaction to standard output with the bytes-to-hex
# function.
