diff --git a/electrum/tests/test_transaction.py b/electrum/tests/test_transaction.py index 7b8a9a136..c14ef61d1 100644 --- a/electrum/tests/test_transaction.py +++ b/electrum/tests/test_transaction.py @@ -3,11 +3,12 @@ from typing import NamedTuple, Union from electrum import transaction, bitcoin from electrum.transaction import (convert_raw_tx_to_hex, tx_from_any, Transaction, PartialTransaction, TxOutpoint, PartialTxInput, - PartialTxOutput) + PartialTxOutput, Sighash) from electrum.util import bh2u, bfh from electrum.bitcoin import (deserialize_privkey, opcodes, construct_script, construct_witness) from electrum.ecc import ECPrivkey +from .test_bitcoin import disable_ecdsa_r_value_grinding from . import ElectrumTestCase, TestCaseForTestnet @@ -917,3 +918,74 @@ class TestTransactionTestnet(TestCaseForTestnet): tx.txid()) self.assertEqual('020000000001019ad573c69e60c209e0ff36f281ae4f700a8d59f846e7ff5c020352fd1e97808600000000000000000001fa840100000000001600145a209b202bc19b3d345a75cf8ab51cb471913a790247304402207b191c1e3ff1a2d3541770b496c9f871406114746b3aa7347ec4ef0423d3a975022043d3a746fa7a794d97e95d74b6d17d618dfc4cd7644476813e08006f271e51bd012a046c4f855fb1752102aec53aa5f347219a7378b13006eb16ce48125f9cf14f04a5509a565ad5e51507ac6c4f855f', tx.serialize()) + +class TestSighashTypes(ElectrumTestCase): + #These tests are taken from bip143, https://github.com/bitcoin/bips/blob/master/bip-0143.mediawiki + #Input of transaction + locktime=0 + prevout = TxOutpoint(txid=bfh('6eb98797a21c6c10aa74edf29d618be109f48a8e94c694f3701e08ca69186436'), out_idx=1) + txin = PartialTxInput(prevout=prevout) + txin.nsequence=0xffffffff + txin.script_type='p2sh-p2wsh' + txin.witness_script = bfh('56210307b8ae49ac90a048e9b53357a2354b3334e9c8bee813ecb98e99a7e07e8c3ba32103b28f0c28bfab54554ae8c658ac5c3e0ce6e79ad336331f78c428dd43eea8449b21034b8113d703413d57761b8b9781957b8c0ac1dfe69f492580ca4195f50376ba4a21033400f6afecb833092a9a21cfdf1ed1376e58c5d1f47de74683123987e967a8f42103a6d48b1131e94ba04d9737d61acdaa1322008af9602b3b14862c07a1789aac162102d8b661b0b3302ee2f162b09e07a55ad5dfbe673a9f01d9f0c19617681024306b56ae') + txin.redeem_script = bfh('0020a16b5755f7f6f96dbd65f5f0d6ab9418b89af4b1f14a1bb8a09062c35f0dcb54') + txin._trusted_value_sats = 987654321 + #Output of Transaction + txout1 = PartialTxOutput(scriptpubkey=bfh('76a914389ffce9cd9ae88dcc0631e88a821ffdbe9bfe2688ac'), value=900000000) + txout2 = PartialTxOutput(scriptpubkey=bfh('76a9147480a33f950689af511e6e84c138dbbd3c3ee41588ac'), value=87000000) + + def test_check_sighash_types_sighash_all(self): + self.txin.sighash=Sighash.ALL + self.txin.pubkeys = [bfh('0307b8ae49ac90a048e9b53357a2354b3334e9c8bee813ecb98e99a7e07e8c3ba3')] + privkey = bfh('730fff80e1413068a05b57d6a58261f07551163369787f349438ea38ca80fac6') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('304402206ac44d672dac41f9b00e28f4df20c52eeb087207e8d758d76d92c6fab3b73e2b0220367750dbbe19290069cba53d096f44530e4f98acaa594810388cf7409a1870ce01', + sig) + + def test_check_sighash_types_sighash_none(self): + self.txin.sighash=Sighash.NONE + self.txin.pubkeys = [bfh('03b28f0c28bfab54554ae8c658ac5c3e0ce6e79ad336331f78c428dd43eea8449b')] + privkey = bfh('11fa3d25a17cbc22b29c44a484ba552b5a53149d106d3d853e22fdd05a2d8bb3') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('3044022068c7946a43232757cbdf9176f009a928e1cd9a1a8c212f15c1e11ac9f2925d9002205b75f937ff2f9f3c1246e547e54f62e027f64eefa2695578cc6432cdabce271502', + sig) + + def test_check_sighash_types_sighash_single(self): + self.txin.sighash=Sighash.SINGLE + self.txin.pubkeys = [bfh('034b8113d703413d57761b8b9781957b8c0ac1dfe69f492580ca4195f50376ba4a')] + privkey = bfh('77bf4141a87d55bdd7f3cd0bdccf6e9e642935fec45f2f30047be7b799120661') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('3044022059ebf56d98010a932cf8ecfec54c48e6139ed6adb0728c09cbe1e4fa0915302e022007cd986c8fa870ff5d2b3a89139c9fe7e499259875357e20fcbb15571c76795403', + sig) + + @disable_ecdsa_r_value_grinding + def test_check_sighash_types_sighash_all_anyonecanpay(self): + self.txin.sighash=Sighash.ALL|Sighash.ANYONECANPAY + self.txin.pubkeys = [bfh('033400f6afecb833092a9a21cfdf1ed1376e58c5d1f47de74683123987e967a8f4')] + privkey = bfh('14af36970f5025ea3e8b5542c0f8ebe7763e674838d08808896b63c3351ffe49') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('3045022100fbefd94bd0a488d50b79102b5dad4ab6ced30c4069f1eaa69a4b5a763414067e02203156c6a5c9cf88f91265f5a942e96213afae16d83321c8b31bb342142a14d16381', + sig) + + @disable_ecdsa_r_value_grinding + def test_check_sighash_types_sighash_none_anyonecanpay(self): + self.txin.sighash=Sighash.NONE|Sighash.ANYONECANPAY + self.txin.pubkeys = [bfh('03a6d48b1131e94ba04d9737d61acdaa1322008af9602b3b14862c07a1789aac16')] + privkey = bfh('fe9a95c19eef81dde2b95c1284ef39be497d128e2aa46916fb02d552485e0323') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('3045022100a5263ea0553ba89221984bd7f0b13613db16e7a70c549a86de0cc0444141a407022005c360ef0ae5a5d4f9f2f87a56c1546cc8268cab08c73501d6b3be2e1e1a8a0882', + sig) + + def test_check_sighash_types_sighash_single_anyonecanpay(self): + self.txin.sighash=Sighash.SINGLE|Sighash.ANYONECANPAY + self.txin.pubkeys = [bfh('02d8b661b0b3302ee2f162b09e07a55ad5dfbe673a9f01d9f0c19617681024306b')] + privkey = bfh('428a7aee9f0c2af0cd19af3cf1c78149951ea528726989b2e83e4778d2c3f890') + tx = PartialTransaction.from_io(inputs=[self.txin], outputs=[self.txout1,self.txout2], locktime=self.locktime, version=1, BIP69_sort=False) + sig = tx.sign_txin(0,privkey) + self.assertEqual('30440220525406a1482936d5a21888260dc165497a90a15669636d8edca6b9fe490d309c022032af0c646a34a44d1f4576bf6a4a74b67940f8faa84c7df9abe12a01a11e2b4783', + sig) diff --git a/electrum/transaction.py b/electrum/transaction.py index b38a553c8..d4c977367 100644 --- a/electrum/transaction.py +++ b/electrum/transaction.py @@ -88,7 +88,19 @@ class MissingTxInputAmount(Exception): pass -SIGHASH_ALL = 1 +class Sighash(IntEnum): + ALL = 1 + NONE = 2 + SINGLE = 3 + ANYONECANPAY = 0x80 + + @classmethod + def is_valid(cls, sighash) -> bool: + for flag in Sighash: + for base_flag in [Sighash.ALL, Sighash.NONE, Sighash.SINGLE]: + if (flag & ~0x1f | base_flag) == sighash: + return True + return False class TxOutput: @@ -1724,7 +1736,7 @@ class PartialTransaction(Transaction): @classmethod def from_io(cls, inputs: Sequence[PartialTxInput], outputs: Sequence[PartialTxOutput], *, - locktime: int = None, version: int = None): + locktime: int = None, version: int = None, BIP69_sort: bool = True): self = cls() self._inputs = list(inputs) self._outputs = list(outputs) @@ -1732,7 +1744,8 @@ class PartialTransaction(Transaction): self.locktime = locktime if version is not None: self.version = version - self.BIP69_sort() + if BIP69_sort: + self.BIP69_sort() return self def _serialize_psbt(self, fd) -> None: @@ -1851,17 +1864,28 @@ class PartialTransaction(Transaction): inputs = self.inputs() outputs = self.outputs() txin = inputs[txin_index] - sighash = txin.sighash if txin.sighash is not None else SIGHASH_ALL - if sighash != SIGHASH_ALL: - raise Exception("only SIGHASH_ALL signing is supported!") + sighash = txin.sighash if txin.sighash is not None else Sighash.ALL + if not Sighash.is_valid(sighash): + raise Exception("SIGHASH_FLAG not supported!") nHashType = int_to_hex(sighash, 4) preimage_script = self.get_preimage_script(txin) if txin.is_segwit(): if bip143_shared_txdigest_fields is None: bip143_shared_txdigest_fields = self._calc_bip143_shared_txdigest_fields() - hashPrevouts = bip143_shared_txdigest_fields.hashPrevouts - hashSequence = bip143_shared_txdigest_fields.hashSequence - hashOutputs = bip143_shared_txdigest_fields.hashOutputs + if not(sighash & Sighash.ANYONECANPAY): + hashPrevouts = bip143_shared_txdigest_fields.hashPrevouts + else: + hashPrevouts = '00' * 32 + if (not(sighash & Sighash.ANYONECANPAY) and (sighash & 0x1f) != Sighash.SINGLE and (sighash & 0x1f) != Sighash.NONE): + hashSequence = bip143_shared_txdigest_fields.hashSequence + else: + hashSequence = '00' * 32 + if ((sighash & 0x1f) != Sighash.SINGLE and (sighash & 0x1f) != Sighash.NONE): + hashOutputs = bip143_shared_txdigest_fields.hashOutputs + elif ((sighash & 0x1f) == Sighash.SINGLE and txin_index < len(outputs)): + hashOutputs = bh2u(sha256d(outputs[txin_index].serialize_to_network())) + else: + hashOutputs = '00' * 32 outpoint = txin.prevout.serialize_to_network().hex() scriptCode = var_int(len(preimage_script) // 2) + preimage_script amount = int_to_hex(txin.value_sats(), 8) @@ -1895,11 +1919,13 @@ class PartialTransaction(Transaction): def sign_txin(self, txin_index, privkey_bytes, *, bip143_shared_txdigest_fields=None) -> str: txin = self.inputs()[txin_index] txin.validate_data(for_signing=True) + sighash = txin.sighash if txin.sighash is not None else Sighash.ALL + sighash_type = sighash.to_bytes(length=1, byteorder="big").hex() pre_hash = sha256d(bfh(self.serialize_preimage(txin_index, bip143_shared_txdigest_fields=bip143_shared_txdigest_fields))) privkey = ecc.ECPrivkey(privkey_bytes) sig = privkey.sign_transaction(pre_hash) - sig = bh2u(sig) + '01' # SIGHASH_ALL + sig = bh2u(sig) + sighash_type return sig def is_complete(self) -> bool: