Concept ACK

I am not sure about name of this argument: rejectreturn

Concept ACK

Concept ACK

I agree on @1440000bytes about the name of the argument rejectreturn, I think this name is not so intuitive about what it does.

@1440000bytes @brunoerg You are right about the name, I am not sure if the name should be something like dontburn or something like reject_nonzero_returns. I've pushed no_burning as something in between. Some of the rpc parameters have very concise names like finalize, replaceable, or extract, and others have names like include_immature_coinbase and subtractfeefromamount.

Concept ACK

I have some questions:

1. Should the max_burn_amount parameter also be added to the testmempoolaccept call? I am not 100% sure about the use case for this call, in particular why it has the maxfeerate parameter. Is the maxfeerate parameter present because this call is a more general "would sendrawtransaction work on this tx" than "will the mempool accept this"?
2. I am still trying to understand the BTC transaction language, so I am unsure about whether or not it is possible for OP_RETURN to appear somewhere other than at the top of the scriptPubKey in a valid tx. And if it can, then does the presence of OP_RETURN anywhere in the scriptPubKey guarantee that the value of that output is unspendable? If both are true, then we would need to check every non-data byte of the scriptPubKey for an OP_RETURN. If the former is true and the latter is false, something more complicated might have to happen.
3. This may be outside of the scope of this pull request, and based on a foolish misunderstanding, but is there any way that we validate that the default parameter promised in the RPC description is actually the default value?

Also, I apologize for the obscene number of force pushes when my first edit fails CI because of a silly mistake, I realize this makes review more of a pain, going forward I'll run the test suite locally before force pushing.

I am still trying to understand the BTC transaction language, so I am unsure about whether or not it is possible for OP_RETURN to appear somewhere other than at the top of the scriptPubKey in a valid tx. And if it can, then does the presence of OP_RETURN anywhere in the scriptPubKey guarantee that the value of that output is unspendable? If both are true, then we would need to check every non-data byte of the scriptPubKey for an OP_RETURN. If the former is true and the latter is false, something more complicated might have to happen.

I think you can just use the solver to check for NULL_DATA outputs. Everything else with an OP_RETURN is nonstandard and is thus rejected anyway (regardless of amount), unless the user modified the settings or the source code.

I have changed the OP_RETURN check to use Solver and I have added the tests, so I'm removing '[WIP]' from the PR title.

As a side note: would it make sense to have an overloaded Solver with no Solutions vector parameter for when we only need the TxoutType? I count that 5 of the 15 existing calls to Solver don't use the solutions vector data that gets returned:
AreInputsStandard in policy.cpp, CBloomFilter::IsRelevantAndUpdate in bloom.cpp, ScriptToUniv in core_write.cpp, AvailableCoins in spend.cpp, and CWallet::TransactionChangeType in wallet.cpp

The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Reviews

See the guideline for information on the review process.

If your review is incorrectly listed, please react with 👎 to this comment and the bot will ignore it on the next update.

Conflicts

No conflicts as of last run.

It may also check for HasValidOps, but I think all of this can be done in a follow-up.

Rebased, I have adjusted the language to indicate that the check is for provable unspendability, instead of just datacarrier txn's and changed the check to use both IsUnspendable as suggested by @achow101 and HasValidOps as suggested by @MarcoFalke. I have added new functional tests that check that transactions containing invalid opcodes, or exceeding maximum script size are rejected. Since this change exposes a new RPC option, I have added a release note as suggested by @glozow.

It seems to me that care should be taken that there are never any previously spendable and legitimate transactions that sendrawtransaction refuses to send as a result of this check. If needed, what should be done to better ensure this change will not cause any transactions that are expected to be spendable to be rejected?

ACK ab8c380a7370e29dfedce1399ad1b2a2d234915e

It seems to me that care should be taken that there are never any previously spendable and legitimate transactions that sendrawtransaction refuses to send as a result of this check. If needed, what should be done to better ensure this change will not cause any transactions that are expected to be spendable to be rejected?

Even if there are, a suitable workaround is to just set maxburnamount to a high value. However I believe the check is specific enough that we won't have any issues other than with people who are explicitly trying to burn money. IsUnspendable is used by mempool policy and validation, and HasValidOps is used by the transaction hex parser (so actually it might be redundant here). These are things that, if they were not working correctly, would cause issues in other parts of the codebase.

Force-pushed to address @glozow review.

reACK 7013da0

re-ACK 7013da0