mirror of
https://github.com/trezor/trezor-firmware.git
synced 2025-02-15 17:12:04 +00:00
181 lines
5.5 KiB
Python
181 lines
5.5 KiB
Python
from apps.wallet.sign_tx.multisig import *
|
|
from apps.wallet.sign_tx.writers import *
|
|
from apps.common.hash_writer import HashWriter
|
|
|
|
from trezor.crypto.hashlib import sha256, ripemd160
|
|
|
|
# TX Scripts
|
|
# ===
|
|
|
|
# -------------------------- First gen --------------------------
|
|
|
|
# =============== P2PK ===============
|
|
# obsolete
|
|
|
|
|
|
# =============== P2PKH ===============
|
|
|
|
def input_script_p2pkh_or_p2sh(pubkey: bytes, signature: bytes, sighash: int) -> bytearray:
|
|
w = bytearray_with_cap(5 + len(signature) + 1 + 5 + len(pubkey))
|
|
append_signature(w, signature, sighash)
|
|
append_pubkey(w, pubkey)
|
|
return w
|
|
|
|
|
|
def output_script_p2pkh(pubkeyhash: bytes) -> bytearray:
|
|
s = bytearray(25)
|
|
s[0] = 0x76 # OP_DUP
|
|
s[1] = 0xA9 # OP_HASH_160
|
|
s[2] = 0x14 # pushing 20 bytes
|
|
s[3:23] = pubkeyhash
|
|
s[23] = 0x88 # OP_EQUALVERIFY
|
|
s[24] = 0xAC # OP_CHECKSIG
|
|
return s
|
|
|
|
|
|
# =============== P2SH ===============
|
|
# see https://github.com/bitcoin/bips/blob/master/bip-0016.mediawiki
|
|
|
|
# input script (scriptSig) is the same as input_script_p2pkh_or_p2sh
|
|
|
|
# output script (scriptPubKey) is A9 14 <scripthash> 87
|
|
def output_script_p2sh(scripthash: bytes) -> bytearray:
|
|
s = bytearray(23)
|
|
s[0] = 0xA9 # OP_HASH_160
|
|
s[1] = 0x14 # pushing 20 bytes
|
|
s[2:22] = scripthash
|
|
s[22] = 0x87 # OP_EQUAL
|
|
return s
|
|
|
|
|
|
# -------------------------- SegWit --------------------------
|
|
|
|
# =============== Native P2WPKH ===============
|
|
# see https://github.com/bitcoin/bips/blob/master/bip-0141.mediawiki#p2wpkh
|
|
# P2WPKH (Pay-to-Witness-Public-Key-Hash) is the segwit native P2PKH
|
|
# not backwards compatible
|
|
|
|
# input script is completely replaced by the witness and therefore empty
|
|
def input_script_native_p2wpkh_or_p2wsh() -> bytearray:
|
|
return bytearray(0)
|
|
|
|
|
|
# output script is either:
|
|
# 00 14 <20-byte-key-hash>
|
|
# 00 20 <32-byte-script-hash>
|
|
def output_script_native_p2wpkh_or_p2wsh(witprog: bytes) -> bytearray:
|
|
w = bytearray_with_cap(3 + len(witprog))
|
|
w.append(0x00) # witness version byte
|
|
w.append(len(witprog)) # pub key hash length is 20 (P2WPKH) or 32 (P2WSH) bytes
|
|
write_bytes(w, witprog) # pub key hash
|
|
return w
|
|
|
|
|
|
# =============== Native P2WPKH nested in P2SH ===============
|
|
# P2WPKH is nested in P2SH to be backwards compatible
|
|
# see https://github.com/bitcoin/bips/blob/master/bip-0141.mediawiki#witness-program
|
|
|
|
# input script (scriptSig) is 16 00 14 <pubkeyhash>
|
|
# signature is moved to the witness
|
|
def input_script_p2wpkh_in_p2sh(pubkeyhash: bytes) -> bytearray:
|
|
w = bytearray_with_cap(3 + len(pubkeyhash))
|
|
w.append(0x16) # 0x16 - length of the redeemScript
|
|
w.append(0x00) # witness version byte
|
|
w.append(0x14) # P2WPKH witness program (pub key hash length)
|
|
write_bytes(w, pubkeyhash) # pub key hash
|
|
return w
|
|
|
|
# output script (scriptPubKey) is A9 14 <scripthash> 87
|
|
# which is same as the output_script_p2sh
|
|
|
|
|
|
# =============== Native P2WSH ===============
|
|
# see https://github.com/bitcoin/bips/blob/master/bip-0141.mediawiki#p2wsh
|
|
# P2WSH (Pay-to-Witness-Script-Hash) is segwit native P2SH
|
|
# not backwards compatible
|
|
|
|
# input script is completely replaced by the witness and therefore empty
|
|
# same as input_script_native_p2wpkh_or_p2wsh
|
|
|
|
# output script consists of 00 20 <32-byte-key-hash>
|
|
# same as output_script_native_p2wpkh_or_p2wsh (only different length)
|
|
|
|
# =============== Multisig ===============
|
|
|
|
def input_script_multisig(current_signature, other_signatures, pubkeys, m: int):
|
|
w = bytearray()
|
|
# starts with OP_FALSE because of an old OP_CHECKMULTISIG bug,
|
|
# which consumes one additional item on the stack
|
|
# see https://bitcoin.org/en/developer-guide#standard-transactions
|
|
w.append(0x00)
|
|
for s in other_signatures:
|
|
if len(s):
|
|
append_signature(w, s)
|
|
|
|
append_signature(w, current_signature)
|
|
|
|
# redeem script
|
|
redeem_script = script_multisig(pubkeys, m)
|
|
write_op_push(w, len(redeem_script))
|
|
write_bytes(w, script_multisig(pubkeys, m))
|
|
return w
|
|
|
|
|
|
# returns a ripedm(sha256()) hash of a multisig script used in P2SH
|
|
def output_script_multisig_p2sh(pubkeys, m) -> bytes:
|
|
script = script_multisig(pubkeys, m)
|
|
h = sha256(script).digest()
|
|
return ripemd160(h).digest()
|
|
|
|
|
|
# returns a sha256() hash of a multisig script used in native P2WSH
|
|
def output_script_multisig_p2wsh(pubkeys, m) -> bytes:
|
|
for pubkey in pubkeys:
|
|
if len(pubkey) != 33:
|
|
raise Exception # only compressed public keys are allowed for P2WSH
|
|
script = script_multisig(pubkeys, m)
|
|
return sha256(script).digest()
|
|
|
|
|
|
def script_multisig(pubkeys, m) -> bytearray:
|
|
n = len(pubkeys)
|
|
if n < 1 or n > 15:
|
|
raise Exception
|
|
if m < 1 or m > 15:
|
|
raise Exception
|
|
|
|
w = bytearray()
|
|
w.append(0x50 + m) # numbers 1 to 16 are pushed as 0x50 + value
|
|
for p in pubkeys:
|
|
append_pubkey(w, p)
|
|
w.append(0x50 + n)
|
|
w.append(0xAE) # OP_CHECKMULTISIG
|
|
return w
|
|
|
|
|
|
# -------------------------- Others --------------------------
|
|
|
|
# === OP_RETURN script
|
|
|
|
def output_script_paytoopreturn(data: bytes) -> bytearray:
|
|
w = bytearray_with_cap(1 + 5 + len(data))
|
|
w.append(0x6A) # OP_RETURN
|
|
write_op_push(w, len(data))
|
|
w.extend(data)
|
|
return w
|
|
|
|
|
|
# === helpers
|
|
|
|
def append_signature(w: bytearray, signature: bytes, sighash: int) -> bytearray:
|
|
write_op_push(w, len(signature) + 1)
|
|
write_bytes(w, signature)
|
|
w.append(sighash)
|
|
return w
|
|
|
|
|
|
def append_pubkey(w: bytearray, pubkey: bytes) -> bytearray:
|
|
write_op_push(w, len(pubkey))
|
|
write_bytes(w, pubkey)
|
|
return w
|