add psetview, fix tests

2021-08-12 14:03:36 +02:00 · 2021-08-12 14:03:36 +02:00 · a057422d82
commit a057422d82
parent a9036c1168
6 changed files with 291 additions and 12 deletions
--- a/src/embit/bip39.py
+++ b/src/embit/bip39.py
@ -102,17 +102,17 @@ def _extract_index(bits, b, n):


 def mnemonic_from_bytes(entropy, wordlist=WORDLIST):
-    if len(b) % 4 != 0:
+    if len(entropy) % 4 != 0:
        raise ValueError("Byte array should be multiple of 4 long (16, 20, ..., 32)")
-    total_bits = len(b) * 8
+    total_bits = len(entropy) * 8
    checksum_bits = total_bits // 32
    total_mnemonics = (total_bits + checksum_bits) // 11
    # no need to truncate checksum - we already know total_mnemonics
-    checksum = bytearray(hashlib.sha256(b).digest())
-    b += checksum
+    checksum = bytearray(hashlib.sha256(entropy).digest())
+    entropy += checksum
    mnemonic = []
    for i in range(0, total_mnemonics):
-        idx = _extract_index(11, b, i)
+        idx = _extract_index(11, entropy, i)
        mnemonic.append(wordlist[idx])
    return " ".join(mnemonic)

--- a/src/embit/liquid/psetview.py
+++ b/src/embit/liquid/psetview.py
@ -0,0 +1,212 @@
+from ..psbtview import *
+from .pset import *
+import hashlib
+
+def skip_commitment(stream):
+    c = stream.read(1)
+    assert len(c) == 1
+    if c == b"\x00": # None
+        return 1
+    if c == b"\x01": # unconfidential
+        r = stream.seek(8, 1)
+        return 9
+    # confidential
+    r = stream.seek(32, 1)
+    return 33
+
+class GlobalLTransactionView(GlobalTransactionView):
+    """
+    Global liquid transaction in PSET is
+    - unsigned (with empty scriptsigs)
+    - doesn't have witness
+    """
+    NUM_VIN_OFFSET = 5 # version + marker
+
+    def __init__(self, *args, **kwargs):
+        self._num_vout_offset = None
+        super().__init__(*args, **kwargs)
+
+    @property
+    def num_vout_offset(self):
+        if self._num_vout_offset is None:
+            off = self.vin0_offset
+            self.stream.seek(off)
+            # skip vins
+            for i in range(self.num_vin):
+                off += self._skip_input()
+            self._num_vout_offset = off
+        return self._num_vout_offset
+
+    @property
+    def num_vout(self):
+        if self._num_vout is None:
+            self.stream.seek(self.num_vout_offset)
+            self._num_vout = compact.read_from(self.stream)
+        return self._num_vout
+
+    @property
+    def vout0_offset(self):
+        if self._vout0_offset is None:
+            self._vout0_offset = self.num_vout_offset + len(compact.to_bytes(self.num_vout))
+        return self._vout0_offset
+
+    def vin(self, i):
+        if i < 0 or i >= self.num_vin:
+            raise PSBTError("Invalid input index")
+        self.stream.seek(self.vin0_offset)
+        for j in range(i):
+            self._skip_input()
+        return LTransactionInput.read_from(self.stream)
+
+    def _skip_input(self):
+        off = 32 + 4 + 5
+        self.stream.seek(32, 1) # txid
+        vout = int.from_bytes(self.stream.read(4), "little")
+        self.stream.seek(5, 1) # scriptsig, sequence
+        is_pegin = False
+        if vout != 0xFFFFFFFF:
+            is_pegin = vout & (1 << 30) != 0
+            has_issuance = vout & (1 << 31) != 0
+            if has_issuance:
+                self.stream.seek(32+32, 1) # nonce, entropy
+                off += 64
+                off += skip_commitment(self.stream) # amount commitment
+                off += skip_commitment(self.stream) # token commitment
+        return off
+
+    def _skip_output(self):
+        """Seeks over one output"""
+        self.stream.seek(33, 1) # asset
+        c = self.stream.read(1)
+        if c != b"\x01":
+            self.stream.seek(32, 1) # confidential
+        else:
+            self.stream.seek(8, 1) # unconfidential
+        c = self.stream.read(1)
+        if c != b"\x00":
+            self.stream.seek(32, 1) # ecdh_pubkey
+        l = compact.read_from(self.stream)
+        self.stream.seek(l, 1) # scriptpubkey
+
+    def vout(self, i):
+        if i < 0 or i >= self.num_vout:
+            raise PSBTError("Invalid input index")
+        self.stream.seek(self.vout0_offset)
+        n = i
+        while n:
+            self._skip_output()
+            n -= 1
+        return LTransactionOutput.read_from(self.stream)
+
+class PSETView(PSBTView):
+    """
+    Constructor shouldn't be used directly. PSBTView.view_from(stream) should be used instead.
+    Either version should be 2 or tx_offset should be int, otherwise you get an error
+    """
+    MAGIC = b"pset\xff"
+    PSBTIN_CLS = LInputScope
+    PSBTOUT_CLS = LOutputScope
+    TX_CLS = GlobalLTransactionView
+
+    def clear_cache(self):
+        # cache for digests
+        super().clear_cache()
+        self._hash_rangeproofs = None
+        self._hash_issuances = None
+
+    def vin(self, i):
+        if i < 0 or i >= self.num_inputs:
+            raise PSBTError("Invalid input index")
+        if self.tx:
+            return self.tx.vin(i)
+
+        self.seek_to_scope(i)
+        v = self._get_value(b"\x0e", from_current=True)
+        txid = bytes(reversed(v))
+
+        self.seek_to_scope(i)
+        v = self._get_value(b"\x0f", from_current=True)
+        vout = int.from_bytes(v, 'little')
+
+        self.seek_to_scope(i)
+        v = self._get_value(b"\x10", from_current=True) or b"\xFF\xFF\xFF\xFF"
+        sequence = int.from_bytes(v, 'little')
+
+        return LTransactionInput(txid, vout, sequence=sequence)
+
+    def vout(self, i):
+        return self.output(i).vout
+
+    def blinded_vout(self, i):
+        return self.output(i).blinded_vout
+
+    def hash_issuances(self):
+        if self._hash_issuances is None:
+        # hash issuance ( b"\x00" per input without issuance )
+            self._hash_issuances = hashlib.sha256(b"\x00"*self.num_inputs).digest()
+        return self._hash_issuances
+
+    def hash_rangeproofs(self):
+        if self._hash_rangeproofs is None:
+            h = hashlib.sha256()
+            for i in range(self.num_outputs):
+                out = self.blinded_vout(i)
+                h.update(out.witness.range_proof.serialize())
+                h.update(out.witness.surjection_proof.serialize())
+            self._hash_rangeproofs = h.digest()
+        return self._hash_rangeproofs
+
+    def hash_outputs(self):
+        if self._hash_outputs is None:
+            h = hashlib.sha256()
+            for i in range(self.num_outputs):
+                out = self.blinded_vout(i)
+                h.update(out.serialize())
+            self._hash_outputs = h.digest()
+        return self._hash_outputs
+
+    def sighash_segwit(self, input_index, script_pubkey, value, sighash=(LSIGHASH.ALL | LSIGHASH.RANGEPROOF)):
+        if input_index < 0 or input_index >= self.num_inputs:
+            raise PSBTError("Invalid input index")
+        sh, anyonecanpay, hash_rangeproofs = LSIGHASH.check(sighash)
+        inp = self.vin(input_index)
+        zero = b"\x00"*32 # for sighashes
+        h = hashlib.sha256()
+        h.update(self.tx_version.to_bytes(4, "little"))
+        if anyonecanpay:
+            h.update(zero)
+        else:
+            h.update(hashlib.sha256(self.hash_prevouts()).digest())
+        if anyonecanpay or sh in [SIGHASH.NONE, SIGHASH.SINGLE]:
+            h.update(zero)
+        else:
+            h.update(hashlib.sha256(self.hash_sequence()).digest())
+        h.update(hashlib.sha256(self.hash_issuances()).digest())
+        h.update(bytes(reversed(inp.txid)))
+        h.update(inp.vout.to_bytes(4, "little"))
+        h.update(script_pubkey.serialize())
+        if isinstance(value, int):
+            h.update(b"\x01"+value.to_bytes(8, 'big'))
+        else:
+            h.update(value)
+        h.update(inp.sequence.to_bytes(4, "little"))
+        if not (sh in [SIGHASH.NONE, SIGHASH.SINGLE]):
+            h.update(hashlib.sha256(self.hash_outputs()).digest())
+            if hash_rangeproofs:
+                h.update(hashlib.sha256(self.hash_rangeproofs()).digest())
+        elif sh == SIGHASH.SINGLE and input_index < self.num_outputs:
+            h.update(hashlib.sha256(hashlib.sha256(self.blinded_vout(input_index).serialize()).digest()).digest())
+            if hash_rangeproofs:
+                h.update(hashlib.sha256(hashlib.sha256(self.blinded_vout(input_index).witness.serialize()).digest()).digest())
+        else:
+            h.update(zero)
+        h.update(self.locktime.to_bytes(4, "little"))
+        h.update(sighash.to_bytes(4, "little"))
+        return hashlib.sha256(h.digest()).digest()
+
+    def sighash_legacy(self, input_index, script_pubkey, sighash=SIGHASH.ALL):
+        raise NotImplementedError()
+
+    def sighash_taproot(self, input_index, script_pubkeys, values, sighash=SIGHASH.DEFAULT):
+        """check out bip-341"""
+        raise NotImplementedError()
--- a/src/embit/liquid/transaction.py
+++ b/src/embit/liquid/transaction.py
@ -143,7 +143,7 @@ class LTransaction(Transaction):

    def __init__(self, *args, **kwargs):
        super().__init__(*args, **kwargs)
-        self._hash_outputs_rangeproofs = None
+        self._hash_rangeproofs = None
        self._hash_issuance = None

    @property
@ -251,13 +251,13 @@ class LTransaction(Transaction):
        return hashlib.sha256(b"\x00"*len(self.vin)).digest()

    def hash_rangeproofs(self):
-        if self._hash_outputs_rangeproofs is None:
+        if self._hash_rangeproofs is None:
            h = hashlib.sha256()
            for out in self.vout:
                h.update(out.witness.range_proof.serialize())
                h.update(out.witness.surjection_proof.serialize())
-            self._hash_outputs_rangeproofs = h.digest()
-        return self._hash_outputs_rangeproofs
+            self._hash_rangeproofs = h.digest()
+        return self._hash_rangeproofs

    def hash_outputs(self):
        if self._hash_outputs is None:
--- a/src/embit/psbtview.py
+++ b/src/embit/psbtview.py
@ -43,9 +43,10 @@ class GlobalTransactionView:
    """
    Global transaction in PSBT is
    - unsigned (with empty scriptsigs)
-    - doesn't have witness 
+    - doesn't have witness
    """
    LEN_VIN = 32 + 4 + 1 + 4 # txid, vout, scriptsig, sequence
+    NUM_VIN_OFFSET = 4 # version
    def __init__(self, stream, offset):
        self.stream = stream
        self.offset = offset
@ -66,7 +67,7 @@ class GlobalTransactionView:
    @property
    def num_vin(self):
        if self._num_vin is None:
-            self.stream.seek(self.offset + 4)
+            self.stream.seek(self.offset + self.NUM_VIN_OFFSET)
            self._num_vin = compact.read_from(self.stream)
        return self._num_vin

@ -81,7 +82,7 @@ class GlobalTransactionView:
    @property
    def vin0_offset(self):
        if self._vin0_offset is None:
-            self._vin0_offset = self.offset + 4 + len(compact.to_bytes(self.num_vin))
+            self._vin0_offset = self.offset + self.NUM_VIN_OFFSET + len(compact.to_bytes(self.num_vin))
        return self._vin0_offset

    @property
--- a/tests/tests/init.py
+++ b/tests/tests/init.py
@ -9,6 +9,7 @@ from .test_slip39 import *
 from .test_descriptor import *
 from .test_liquid import *
 from .test_psbtview import *
+from .test_psetview import *
 from .test_taproot import *

 if sys.implementation.name != "micropython":
--- a/tests/tests/test_psetview.py
+++ b/tests/tests/test_psetview.py