Merge pull request #119 from sanket1729/psbt_fixes

apoelstra · web-flow · commit eae1634417c4 · 2020-10-01T20:22:53.000Z
Psbt: Add finalizer and extractor
diff --git a/Cargo.toml b/Cargo.toml
@@ -32,3 +32,6 @@ name = "sign_multisig"
 
 [[example]]
 name = "verify_tx"
+
+[[example]]
+name = "psbt"
diff --git a/contrib/test.sh b/contrib/test.sh
@@ -41,10 +41,8 @@ done
 
 # Also build and run each example to catch regressions
 cargo build --examples
-./target/debug/examples/htlc
-./target/debug/examples/parse
-./target/debug/examples/sign_multisig
-./target/debug/examples/verify_tx
+# run all examples
+run-parts ./target/debug/examples
 
 # Miri Checks if told to
 # Only supported in nightly
diff --git a/examples/psbt.rs b/examples/psbt.rs
@@ -0,0 +1,30 @@
+extern crate bitcoin;
+extern crate miniscript;
+
+use bitcoin::consensus::encode::deserialize;
+use bitcoin::hashes::hex::FromHex;
+
+use miniscript::psbt::{extract, finalize};
+
+fn main() {
+    // Test vectors from BIP 174
+
+    let mut psbt: bitcoin::util::psbt::PartiallySignedTransaction = deserialize(&Vec::<u8>::from_hex("70736274ff01009a020000000258e87a21b56daf0c23be8e7070456c336f7cbaa5c8757924f545887bb2abdd750000000000ffffffff838d0427d0ec650a68aa46bb0b098aea4422c071b2ca78352a077959d07cea1d0100000000ffffffff0270aaf00800000000160014d85c2b71d0060b09c9886aeb815e50991dda124d00e1f5050000000016001400aea9a2e5f0f876a588df5546e8742d1d87008f00000000000100bb0200000001aad73931018bd25f84ae400b68848be09db706eac2ac18298babee71ab656f8b0000000048473044022058f6fc7c6a33e1b31548d481c826c015bd30135aad42cd67790dab66d2ad243b02204a1ced2604c6735b6393e5b41691dd78b00f0c5942fb9f751856faa938157dba01feffffff0280f0fa020000000017a9140fb9463421696b82c833af241c78c17ddbde493487d0f20a270100000017a91429ca74f8a08f81999428185c97b5d852e4063f6187650000002202029583bf39ae0a609747ad199addd634fa6108559d6c5cd39b4c2183f1ab96e07f473044022074018ad4180097b873323c0015720b3684cc8123891048e7dbcd9b55ad679c99022073d369b740e3eb53dcefa33823c8070514ca55a7dd9544f157c167913261118c01220202dab61ff49a14db6a7d02b0cd1fbb78fc4b18312b5b4e54dae4dba2fbfef536d7483045022100f61038b308dc1da865a34852746f015772934208c6d24454393cd99bdf2217770220056e675a675a6d0a02b85b14e5e29074d8a25a9b5760bea2816f661910a006ea01010304010000000104475221029583bf39ae0a609747ad199addd634fa6108559d6c5cd39b4c2183f1ab96e07f2102dab61ff49a14db6a7d02b0cd1fbb78fc4b18312b5b4e54dae4dba2fbfef536d752ae2206029583bf39ae0a609747ad199addd634fa6108559d6c5cd39b4c2183f1ab96e07f10d90c6a4f000000800000008000000080220602dab61ff49a14db6a7d02b0cd1fbb78fc4b18312b5b4e54dae4dba2fbfef536d710d90c6a4f0000008000000080010000800001012000c2eb0b0000000017a914b7f5faf40e3d40a5a459b1db3535f2b72fa921e887220203089dc10c7ac6db54f91329af617333db388cead0c231f723379d1b99030b02dc473044022062eb7a556107a7c73f45ac4ab5a1dddf6f7075fb1275969a7f383efff784bcb202200c05dbb7470dbf2f08557dd356c7325c1ed30913e996cd3840945db12228da5f012202023add904f3d6dcf59ddb906b0dee23529b7ffb9ed50e5e86151926860221f0e73473044022065f45ba5998b59a27ffe1a7bed016af1f1f90d54b3aa8f7450aa5f56a25103bd02207f724703ad1edb96680b284b56d4ffcb88f7fb759eabbe08aa30f29b851383d2010103040100000001042200208c2353173743b595dfb4a07b72ba8e42e3797da74e87fe7d9d7497e3b2028903010547522103089dc10c7ac6db54f91329af617333db388cead0c231f723379d1b99030b02dc21023add904f3d6dcf59ddb906b0dee23529b7ffb9ed50e5e86151926860221f0e7352ae2206023add904f3d6dcf59ddb906b0dee23529b7ffb9ed50e5e86151926860221f0e7310d90c6a4f000000800000008003000080220603089dc10c7ac6db54f91329af617333db388cead0c231f723379d1b99030b02dc10d90c6a4f00000080000000800200008000220203a9a4c37f5996d3aa25dbac6b570af0650394492942460b354753ed9eeca5877110d90c6a4f000000800000008004000080002202027f6399757d2eff55a136ad02c684b1838b6556e5f1b6b34282a94b6b5005109610d90c6a4f00000080000000800500008000").unwrap()).unwrap();
+    // println!("{:?}", psbt);
+
+    let expected_finalized_psbt: bitcoin::util::psbt::PartiallySignedTransaction = deserialize(&Vec::<u8>::from_hex("70736274ff01009a020000000258e87a21b56daf0c23be8e7070456c336f7cbaa5c8757924f545887bb2abdd750000000000ffffffff838d0427d0ec650a68aa46bb0b098aea4422c071b2ca78352a077959d07cea1d0100000000ffffffff0270aaf00800000000160014d85c2b71d0060b09c9886aeb815e50991dda124d00e1f5050000000016001400aea9a2e5f0f876a588df5546e8742d1d87008f00000000000100bb0200000001aad73931018bd25f84ae400b68848be09db706eac2ac18298babee71ab656f8b0000000048473044022058f6fc7c6a33e1b31548d481c826c015bd30135aad42cd67790dab66d2ad243b02204a1ced2604c6735b6393e5b41691dd78b00f0c5942fb9f751856faa938157dba01feffffff0280f0fa020000000017a9140fb9463421696b82c833af241c78c17ddbde493487d0f20a270100000017a91429ca74f8a08f81999428185c97b5d852e4063f6187650000000107da00473044022074018ad4180097b873323c0015720b3684cc8123891048e7dbcd9b55ad679c99022073d369b740e3eb53dcefa33823c8070514ca55a7dd9544f157c167913261118c01483045022100f61038b308dc1da865a34852746f015772934208c6d24454393cd99bdf2217770220056e675a675a6d0a02b85b14e5e29074d8a25a9b5760bea2816f661910a006ea01475221029583bf39ae0a609747ad199addd634fa6108559d6c5cd39b4c2183f1ab96e07f2102dab61ff49a14db6a7d02b0cd1fbb78fc4b18312b5b4e54dae4dba2fbfef536d752ae0001012000c2eb0b0000000017a914b7f5faf40e3d40a5a459b1db3535f2b72fa921e8870107232200208c2353173743b595dfb4a07b72ba8e42e3797da74e87fe7d9d7497e3b20289030108da0400473044022062eb7a556107a7c73f45ac4ab5a1dddf6f7075fb1275969a7f383efff784bcb202200c05dbb7470dbf2f08557dd356c7325c1ed30913e996cd3840945db12228da5f01473044022065f45ba5998b59a27ffe1a7bed016af1f1f90d54b3aa8f7450aa5f56a25103bd02207f724703ad1edb96680b284b56d4ffcb88f7fb759eabbe08aa30f29b851383d20147522103089dc10c7ac6db54f91329af617333db388cead0c231f723379d1b99030b02dc21023add904f3d6dcf59ddb906b0dee23529b7ffb9ed50e5e86151926860221f0e7352ae00220203a9a4c37f5996d3aa25dbac6b570af0650394492942460b354753ed9eeca5877110d90c6a4f000000800000008004000080002202027f6399757d2eff55a136ad02c684b1838b6556e5f1b6b34282a94b6b5005109610d90c6a4f00000080000000800500008000").unwrap()).unwrap();
+
+    // Assuming all partial sigs are filled in.
+    // Construct a generic finalizer
+    finalize(&mut psbt).unwrap();
+    // println!("{:?}", psbt);
+
+    assert_eq!(psbt, expected_finalized_psbt);
+
+    // Extract the transaction from the psbt
+    let tx = extract(&psbt).unwrap();
+
+    let expected: bitcoin::Transaction = deserialize(&Vec::<u8>::from_hex("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").unwrap()).unwrap();
+    // println!("{:?}", tx);
+    assert_eq!(tx, expected);
+}
diff --git a/src/descriptor/mod.rs b/src/descriptor/mod.rs
@@ -482,14 +482,13 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
         }
     }
 
-    /// Attempts to produce a satisfying witness and scriptSig to spend an
-    /// output controlled by the given descriptor; add the data to a given
-    /// `TxIn` output.
-    pub fn satisfy<S: Satisfier<Pk>>(
+    /// Returns satisfying witness and scriptSig to spend an
+    /// output controlled by the given descriptor if it possible to
+    /// construct one using the satisfier.
+    pub fn get_satisfication<S: Satisfier<Pk>>(
         &self,
-        txin: &mut bitcoin::TxIn,
         satisfier: S,
-    ) -> Result<(), Error> {
+    ) -> Result<(Vec<Vec<u8>>, Script), Error> {
         fn witness_to_scriptsig(witness: &[Vec<u8>]) -> Script {
             let mut b = script::Builder::new();
             for wit in witness {
@@ -508,19 +507,19 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
                     Some(wit) => wit,
                     None => return Err(Error::CouldNotSatisfy),
                 };
-                txin.script_sig = witness_to_scriptsig(&wit);
-                txin.witness = vec![];
-                Ok(())
+                let script_sig = witness_to_scriptsig(&wit);
+                let witness = vec![];
+                Ok((witness, script_sig))
             }
             Descriptor::Pk(ref pk) => {
                 if let Some(sig) = satisfier.lookup_sig(pk) {
                     let mut sig_vec = sig.0.serialize_der().to_vec();
                     sig_vec.push(sig.1.as_u32() as u8);
-                    txin.script_sig = script::Builder::new()
+                    let script_sig = script::Builder::new()
                         .push_slice(&sig_vec[..])
                         .into_script();
-                    txin.witness = vec![];
-                    Ok(())
+                    let witness = vec![];
+                    Ok((witness, script_sig))
                 } else {
                     Err(Error::MissingSig(pk.to_public_key()))
                 }
@@ -529,12 +528,12 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
                 if let Some(sig) = satisfier.lookup_sig(pk) {
                     let mut sig_vec = sig.0.serialize_der().to_vec();
                     sig_vec.push(sig.1.as_u32() as u8);
-                    txin.script_sig = script::Builder::new()
+                    let script_sig = script::Builder::new()
                         .push_slice(&sig_vec[..])
                         .push_key(&pk.to_public_key())
                         .into_script();
-                    txin.witness = vec![];
-                    Ok(())
+                    let witness = vec![];
+                    Ok((witness, script_sig))
                 } else {
                     Err(Error::MissingSig(pk.to_public_key()))
                 }
@@ -543,9 +542,9 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
                 if let Some(sig) = satisfier.lookup_sig(pk) {
                     let mut sig_vec = sig.0.serialize_der().to_vec();
                     sig_vec.push(sig.1.as_u32() as u8);
-                    txin.script_sig = Script::new();
-                    txin.witness = vec![sig_vec, pk.to_public_key().to_bytes()];
-                    Ok(())
+                    let script_sig = Script::new();
+                    let witness = vec![sig_vec, pk.to_public_key().to_bytes()];
+                    Ok((witness, script_sig))
                 } else {
                     Err(Error::MissingSig(pk.to_public_key()))
                 }
@@ -559,38 +558,37 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
                             .expect("wpkh descriptors have compressed keys");
                     let redeem_script = addr.script_pubkey();
 
-                    txin.script_sig = script::Builder::new()
+                    let script_sig = script::Builder::new()
                         .push_slice(&redeem_script[..])
                         .into_script();
-                    txin.witness = vec![sig_vec, pk.to_public_key().to_bytes()];
-                    Ok(())
+                    let witness = vec![sig_vec, pk.to_public_key().to_bytes()];
+                    Ok((witness, script_sig))
                 } else {
                     Err(Error::MissingSig(pk.to_public_key()))
                 }
             }
             Descriptor::Sh(ref d) => {
-                let mut witness = match d.satisfy(satisfier) {
+                let mut script_witness = match d.satisfy(satisfier) {
                     Some(wit) => wit,
                     None => return Err(Error::CouldNotSatisfy),
                 };
-                witness.push(d.encode().into_bytes());
-                txin.script_sig = witness_to_scriptsig(&witness);
-                txin.witness = vec![];
-                Ok(())
+                script_witness.push(d.encode().into_bytes());
+                let script_sig = witness_to_scriptsig(&script_witness);
+                let witness = vec![];
+                Ok((witness, script_sig))
             }
             Descriptor::Wsh(ref d) => {
                 let mut witness = match d.satisfy(satisfier) {
                     Some(wit) => wit,
                     None => return Err(Error::CouldNotSatisfy),
                 };
                 witness.push(d.encode().into_bytes());
-                txin.script_sig = Script::new();
-                txin.witness = witness;
-                Ok(())
+                let script_sig = Script::new();
+                Ok((witness, script_sig))
             }
             Descriptor::ShWsh(ref d) => {
                 let witness_script = d.encode();
-                txin.script_sig = script::Builder::new()
+                let script_sig = script::Builder::new()
                     .push_slice(&witness_script.to_v0_p2wsh()[..])
                     .into_script();
 
@@ -599,11 +597,23 @@ impl<Pk: MiniscriptKey + ToPublicKey> Descriptor<Pk> {
                     None => return Err(Error::CouldNotSatisfy),
                 };
                 witness.push(witness_script.into_bytes());
-                txin.witness = witness;
-                Ok(())
+                Ok((witness, script_sig))
             }
         }
     }
+    /// Attempts to produce a satisfying witness and scriptSig to spend an
+    /// output controlled by the given descriptor; add the data to a given
+    /// `TxIn` output.
+    pub fn satisfy<S: Satisfier<Pk>>(
+        &self,
+        txin: &mut bitcoin::TxIn,
+        satisfier: S,
+    ) -> Result<(), Error> {
+        let (witness, script_sig) = self.get_satisfication(satisfier)?;
+        txin.witness = witness;
+        txin.script_sig = script_sig;
+        Ok(())
+    }
 
     /// Computes an upper bound on the weight of a satisfying witness to the
     /// transaction. Assumes all signatures are 73 bytes, including push opcode
diff --git a/src/lib.rs b/src/lib.rs
@@ -269,8 +269,6 @@ pub enum Error {
     NonMinimalVerify(miniscript::lex::Token),
     /// Push was illegal in some context
     InvalidPush(Vec<u8>),
-    /// PSBT-related error
-    Psbt(psbt::Error),
     /// rust-bitcoin script error
     Script(script::Error),
     /// A `CHECKMULTISIG` opcode was preceded by a number > 20
@@ -369,6 +367,13 @@ impl From<miniscript::context::ScriptContextError> for Error {
     }
 }
 
+#[doc(hidden)]
+impl From<bitcoin::secp256k1::Error> for Error {
+    fn from(e: bitcoin::secp256k1::Error) -> Error {
+        Error::Secp(e)
+    }
+}
+
 fn errstr(s: &str) -> Error {
     Error::Unexpected(s.to_owned())
 }
@@ -377,7 +382,6 @@ impl error::Error for Error {
     fn cause(&self) -> Option<&error::Error> {
         match *self {
             Error::BadPubkey(ref e) => Some(e),
-            Error::Psbt(ref e) => Some(e),
             _ => None,
         }
     }
@@ -398,7 +402,6 @@ impl fmt::Display for Error {
             Error::InvalidOpcode(op) => write!(f, "invalid opcode {}", op),
             Error::NonMinimalVerify(tok) => write!(f, "{} VERIFY", tok),
             Error::InvalidPush(ref push) => write!(f, "invalid push {:?}", push), // TODO hexify this
-            Error::Psbt(ref e) => fmt::Display::fmt(e, f),
             Error::Script(ref e) => fmt::Display::fmt(e, f),
             Error::CmsTooManyKeys(n) => write!(f, "checkmultisig with {} keys", n),
             Error::Unprintable(x) => write!(f, "unprintable character 0x{:02x}", x),
@@ -459,13 +462,6 @@ impl fmt::Display for Error {
     }
 }
 
-#[doc(hidden)]
-impl From<psbt::Error> for Error {
-    fn from(e: psbt::Error) -> Error {
-        Error::Psbt(e)
-    }
-}
-
 #[doc(hidden)]
 #[cfg(feature = "compiler")]
 impl From<policy::compiler::CompilerError> for Error {
@@ -481,6 +477,13 @@ impl From<policy::concrete::PolicyError> for Error {
     }
 }
 
+#[doc(hidden)]
+impl From<descriptor::InterpreterError> for Error {
+    fn from(e: descriptor::InterpreterError) -> Error {
+        Error::InterpreterError(e)
+    }
+}
+
 /// The size of an encoding of a number in Script
 pub fn script_num_size(n: usize) -> usize {
     match n {
diff --git a/src/miniscript/satisfy.rs b/src/miniscript/satisfy.rs
@@ -26,12 +26,22 @@ use bitcoin::{self, secp256k1};
 use {MiniscriptKey, ToPublicKey};
 
 use miniscript::types::extra_props::HEIGHT_TIME_THRESHOLD;
+use Error;
 use ScriptContext;
 use Terminal;
 
 /// Type alias for a signature/hashtype pair
 pub type BitcoinSig = (secp256k1::Signature, bitcoin::SigHashType);
 
+/// Helper function to create BitcoinSig from Rawsig
+/// Useful for downstream when implementing Satisfier.
+/// Returns underlying secp if the Signature is not of correct formart
+pub fn bitcoinsig_from_rawsig(rawsig: &[u8]) -> Result<BitcoinSig, Error> {
+    let (flag, sig) = rawsig.split_last().unwrap();
+    let flag = bitcoin::SigHashType::from_u32(*flag as u32);
+    let sig = secp256k1::Signature::from_der(sig)?;
+    Ok((sig, flag))
+}
 /// Trait describing a lookup table for signatures, hash preimages, etc.
 /// Every method has a default implementation that simply returns `None`
 /// on every query. Users are expected to override the methods that they
diff --git a/src/psbt/finalizer.rs b/src/psbt/finalizer.rs
diff --git a/src/psbt/mod.rs b/src/psbt/mod.rs
