Strip name prefix for IsWitnessProgram.

domob1812 · domob1812 · commit 3c8e3a62ea40 · 2018-12-17T12:52:03.000+01:00
When the segwit-code was originally integrated with Namecoin, we did not update CScript::IsWitnessProgram to be aware of name prefixes. This has the effect that names sent to a pure segwit script (e.g. a bech32 address) can be updated by anyone even after segwit is activated for Namecoin. P2SH-Segwit addresses are working already as expected. In this change, we fix that bug. With the fix, IsWitnessProgram strips a name prefix if it exists before extracting the witness program, so that pure segwit scripts can safely hold not only coins but also names after segwit activates. Note that this is in theory a consensus change, but it can be safely committed to Namecoin as segwit is not yet activated and thus such scripts are considered anyone-can-spend with and without this change at the moment. This also includes new regression and unit tests for names and segwit, including (but not limited to) those suggested by Jeremy in namecoin/namecoin-core#258.
diff --git a/src/policy/policy.cpp b/src/policy/policy.cpp
@@ -38,7 +38,7 @@ CAmount GetDustThreshold(const CTxOut& txout, const CFeeRate& dustRelayFeeIn)
     int witnessversion = 0;
     std::vector<unsigned char> witnessprogram;
 
-    if (txout.scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {
+    if (txout.scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram)) {
         // sum the sizes of the parts of a transaction input
         // with 75% segwit discount applied to the script size.
         nSize += (32 + 4 + 1 + (107 / WITNESS_SCALE_FACTOR) + 4);
@@ -222,7 +222,7 @@ bool IsWitnessStandard(const CTransaction& tx, const CCoinsViewCache& mapInputs)
         std::vector<unsigned char> witnessprogram;
 
         // Non-witness program must not be associated with any witness
-        if (!prevScript.IsWitnessProgram(witnessversion, witnessprogram))
+        if (!prevScript.IsWitnessProgram(true, witnessversion, witnessprogram))
             return false;
 
         // Check P2WSH standard limits
diff --git a/src/qt/coincontroldialog.cpp b/src/qt/coincontroldialog.cpp
@@ -463,7 +463,7 @@ void CoinControlDialog::updateLabels(WalletModel *model, QDialog* dialog)
         CTxDestination address;
         int witnessversion = 0;
         std::vector<unsigned char> witnessprogram;
-        if (out.txout.scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram))
+        if (out.txout.scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram))
         {
             nBytesInputs += (32 + 4 + 1 + (107 / WITNESS_SCALE_FACTOR) + 4);
             fWitness = true;
diff --git a/src/script/interpreter.cpp b/src/script/interpreter.cpp
@@ -1499,7 +1499,7 @@ bool VerifyScript(const CScript& scriptSig, const CScript& scriptPubKey, const C
     int witnessversion;
     std::vector<unsigned char> witnessprogram;
     if (flags & SCRIPT_VERIFY_WITNESS) {
-        if (scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {
+        if (scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram)) {
             hadWitness = true;
             if (scriptSig.size() != 0) {
                 // The scriptSig must be _exactly_ CScript(), otherwise we reintroduce malleability.
@@ -1543,7 +1543,7 @@ bool VerifyScript(const CScript& scriptSig, const CScript& scriptPubKey, const C
 
         // P2SH witness program
         if (flags & SCRIPT_VERIFY_WITNESS) {
-            if (pubKey2.IsWitnessProgram(witnessversion, witnessprogram)) {
+            if (pubKey2.IsWitnessProgram(true, witnessversion, witnessprogram)) {
                 hadWitness = true;
                 if (scriptSig != CScript() << std::vector<unsigned char>(pubKey2.begin(), pubKey2.end())) {
                     // The scriptSig must be _exactly_ a single push of the redeemScript. Otherwise we
@@ -1613,7 +1613,7 @@ size_t CountWitnessSigOps(const CScript& scriptSig, const CScript& scriptPubKey,
 
     int witnessversion;
     std::vector<unsigned char> witnessprogram;
-    if (scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {
+    if (scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram)) {
         return WitnessSigOps(witnessversion, witnessprogram, witness ? *witness : witnessEmpty);
     }
 
@@ -1625,7 +1625,7 @@ size_t CountWitnessSigOps(const CScript& scriptSig, const CScript& scriptPubKey,
             scriptSig.GetOp(pc, opcode, data);
         }
         CScript subscript(data.begin(), data.end());
-        if (subscript.IsWitnessProgram(witnessversion, witnessprogram)) {
+        if (subscript.IsWitnessProgram(true, witnessversion, witnessprogram)) {
             return WitnessSigOps(witnessversion, witnessprogram, witness ? *witness : witnessEmpty);
         }
     }
diff --git a/src/script/script.cpp b/src/script/script.cpp
@@ -224,8 +224,16 @@ bool CScript::IsPayToWitnessScriptHash(bool allowNames) const
 
 // A witness program is any valid CScript that consists of a 1-byte push opcode
 // followed by a data push between 2 and 40 bytes.
-bool CScript::IsWitnessProgram(int& version, std::vector<unsigned char>& program) const
+bool CScript::IsWitnessProgram(const bool allowNames, int& version, std::vector<unsigned char>& program) const
 {
+    // Strip off a name prefix if present.
+    if (allowNames)
+      {
+        const CNameScript nameOp(*this);
+        return nameOp.getAddress().IsWitnessProgram(false, version, program);
+      }
+
+    // Handle the case without name prefix.
     if (this->size() < 4 || this->size() > 42) {
         return false;
     }
diff --git a/src/script/script.h b/src/script/script.h
@@ -548,7 +548,7 @@ class CScript : public CScriptBase
      */
     bool IsPayToScriptHash(bool allowNames) const;
     bool IsPayToWitnessScriptHash(bool allowNames) const;
-    bool IsWitnessProgram(int& version, std::vector<unsigned char>& program) const;
+    bool IsWitnessProgram(bool allowNames, int& version, std::vector<unsigned char>& program) const;
 
     /** Called by IsStandardTx and P2SH/BIP62 VerifyScript (which makes it consensus-critical). */
     bool IsPushOnly(const_iterator pc) const;
diff --git a/src/script/standard.cpp b/src/script/standard.cpp
@@ -105,7 +105,7 @@ txnouttype Solver(const CScript& scriptPubKey, std::vector<std::vector<unsigned
 
     int witnessversion;
     std::vector<unsigned char> witnessprogram;
-    if (script.IsWitnessProgram(witnessversion, witnessprogram)) {
+    if (script.IsWitnessProgram(false, witnessversion, witnessprogram)) {
         if (witnessversion == 0 && witnessprogram.size() == WITNESS_V0_KEYHASH_SIZE) {
             vSolutionsRet.push_back(witnessprogram);
             return TX_WITNESS_V0_KEYHASH;
diff --git a/src/test/script_segwit_tests.cpp b/src/test/script_segwit_tests.cpp
@@ -2,6 +2,7 @@
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
 
+#include <script/names.h>
 #include <script/script.h>
 #include <test/test_bitcoin.h>
 
@@ -14,78 +15,95 @@ BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Valid)
     uint256 dummy;
     CScript p2wsh;
     p2wsh << OP_0 << ToByteVector(dummy);
-    BOOST_CHECK(p2wsh.IsPayToWitnessScriptHash());
+    BOOST_CHECK(p2wsh.IsPayToWitnessScriptHash(false));
 
     std::vector<unsigned char> bytes = {OP_0, 32};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash());
+    BOOST_CHECK(CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash(false));
 }
 
 BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Invalid_NotOp0)
 {
     uint256 dummy;
     CScript notp2wsh;
     notp2wsh << OP_1 << ToByteVector(dummy);
-    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash ());
+    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash (false));
 }
 
 BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Invalid_Size)
 {
     uint160 dummy;
     CScript notp2wsh;
     notp2wsh << OP_0 << ToByteVector(dummy);
-    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash ());
+    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash (false));
 }
 
 BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Invalid_Nop)
 {
     uint256 dummy;
     CScript notp2wsh;
     notp2wsh << OP_0 << OP_NOP << ToByteVector(dummy);
-    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash ());
+    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash (false));
 }
 
 BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Invalid_EmptyScript)
 {
     CScript notp2wsh;
-    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash ());
+    BOOST_CHECK(!notp2wsh.IsPayToWitnessScriptHash (false));
 }
 
 BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_Invalid_Pushdata)
 {
     // A script is not P2WSH if OP_PUSHDATA is used to push the hash.
     std::vector<unsigned char> bytes = {OP_0, OP_PUSHDATA1, 32};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash());
+    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash(false));
 
     bytes = {OP_0, OP_PUSHDATA2, 32, 0};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash());
+    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash(false));
 
     bytes = {OP_0, OP_PUSHDATA4, 32, 0, 0, 0};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash());
+    BOOST_CHECK(!CScript(bytes.begin(), bytes.end()).IsPayToWitnessScriptHash(false));
+}
+
+BOOST_AUTO_TEST_CASE(IsPayToWitnessScriptHash_NamePrefix)
+{
+    uint256 dummy;
+    CScript p2wsh;
+    p2wsh << OP_0 << ToByteVector(dummy);
+
+    BOOST_CHECK(p2wsh.IsPayToWitnessScriptHash(true));
+    BOOST_CHECK(p2wsh.IsPayToWitnessScriptHash(false));
+
+    const valtype name(10, 'a');
+    const valtype value(20, 'b');
+    const CScript nameP2WSH = CNameScript::buildNameUpdate(p2wsh, name, value);
+
+    BOOST_CHECK(nameP2WSH.IsPayToWitnessScriptHash(true));
+    BOOST_CHECK(!nameP2WSH.IsPayToWitnessScriptHash(false));
 }
 
 namespace {
 
-bool IsExpectedWitnessProgram(const CScript& script, const int expectedVersion, const std::vector<unsigned char>& expectedProgram)
+bool IsExpectedWitnessProgram(const bool allowNames, const CScript& script, const int expectedVersion, const std::vector<unsigned char>& expectedProgram)
 {
     int actualVersion;
     std::vector<unsigned char> actualProgram;
-    if (!script.IsWitnessProgram(actualVersion, actualProgram)) {
+    if (!script.IsWitnessProgram(allowNames, actualVersion, actualProgram)) {
         return false;
     }
     BOOST_CHECK_EQUAL(actualVersion, expectedVersion);
     BOOST_CHECK(actualProgram == expectedProgram);
     return true;
 }
 
-bool IsNoWitnessProgram(const CScript& script)
+bool IsNoWitnessProgram(const bool allowNames, const CScript& script)
 {
     int dummyVersion;
     std::vector<unsigned char> dummyProgram;
-    return !script.IsWitnessProgram(dummyVersion, dummyProgram);
+    return !script.IsWitnessProgram(allowNames, dummyVersion, dummyProgram);
 }
 
 } // anonymous namespace
@@ -95,68 +113,106 @@ BOOST_AUTO_TEST_CASE(IsWitnessProgram_Valid)
     std::vector<unsigned char> program = {42, 18};
     CScript wit;
     wit << OP_0 << program;
-    BOOST_CHECK(IsExpectedWitnessProgram(wit, 0, program));
+    BOOST_CHECK(IsExpectedWitnessProgram(false, wit, 0, program));
 
     wit.clear();
     program.resize(40);
     wit << OP_16 << program;
-    BOOST_CHECK(IsExpectedWitnessProgram(wit, 16, program));
+    BOOST_CHECK(IsExpectedWitnessProgram(false, wit, 16, program));
 
     program.resize(32);
     std::vector<unsigned char> bytes = {OP_5, static_cast<unsigned char>(program.size())};
     bytes.insert(bytes.end(), program.begin(), program.end());
-    BOOST_CHECK(IsExpectedWitnessProgram(CScript(bytes.begin(), bytes.end()), 5, program));
+    BOOST_CHECK(IsExpectedWitnessProgram(false, CScript(bytes.begin(), bytes.end()), 5, program));
 }
 
 BOOST_AUTO_TEST_CASE(IsWitnessProgram_Invalid_Version)
 {
     std::vector<unsigned char> program(10);
     CScript nowit;
     nowit << OP_1NEGATE << program;
-    BOOST_CHECK(IsNoWitnessProgram(nowit));
+    BOOST_CHECK(IsNoWitnessProgram(false, nowit));
 }
 
 BOOST_AUTO_TEST_CASE(IsWitnessProgram_Invalid_Size)
 {
     std::vector<unsigned char> program(1);
     CScript nowit;
     nowit << OP_0 << program;
-    BOOST_CHECK(IsNoWitnessProgram(nowit));
+    BOOST_CHECK(IsNoWitnessProgram(false, nowit));
 
     nowit.clear();
     program.resize(41);
     nowit << OP_0 << program;
-    BOOST_CHECK(IsNoWitnessProgram(nowit));
+    BOOST_CHECK(IsNoWitnessProgram(false, nowit));
 }
 
 BOOST_AUTO_TEST_CASE(IsWitnessProgram_Invalid_Nop)
 {
     std::vector<unsigned char> program(10);
     CScript nowit;
     nowit << OP_0 << OP_NOP << program;
-    BOOST_CHECK(IsNoWitnessProgram(nowit));
+    BOOST_CHECK(IsNoWitnessProgram(false, nowit));
 }
 
 BOOST_AUTO_TEST_CASE(IsWitnessProgram_Invalid_EmptyScript)
 {
     CScript nowit;
-    BOOST_CHECK(IsNoWitnessProgram(nowit));
+    BOOST_CHECK(IsNoWitnessProgram(false, nowit));
 }
 
 BOOST_AUTO_TEST_CASE(IsWitnessProgram_Invalid_Pushdata)
 {
     // A script is no witness program if OP_PUSHDATA is used to push the hash.
     std::vector<unsigned char> bytes = {OP_0, OP_PUSHDATA1, 32};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(IsNoWitnessProgram(CScript(bytes.begin(), bytes.end())));
+    BOOST_CHECK(IsNoWitnessProgram(false, CScript(bytes.begin(), bytes.end())));
 
     bytes = {OP_0, OP_PUSHDATA2, 32, 0};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(IsNoWitnessProgram(CScript(bytes.begin(), bytes.end())));
+    BOOST_CHECK(IsNoWitnessProgram(false, CScript(bytes.begin(), bytes.end())));
 
     bytes = {OP_0, OP_PUSHDATA4, 32, 0, 0, 0};
     bytes.insert(bytes.end(), 32, 0);
-    BOOST_CHECK(IsNoWitnessProgram(CScript(bytes.begin(), bytes.end())));
+    BOOST_CHECK(IsNoWitnessProgram(false, CScript(bytes.begin(), bytes.end())));
+}
+
+BOOST_AUTO_TEST_CASE(IsWitnessProgram_WithNamePrefix)
+{
+    const std::vector<unsigned char> program(20, 42);
+    CScript wit;
+    wit << OP_0 << program;
+
+    BOOST_CHECK(IsExpectedWitnessProgram(true, wit, 0, program));
+    BOOST_CHECK(IsExpectedWitnessProgram(false, wit, 0, program));
+
+    const valtype name(10, 'a');
+    const valtype value(20, 'b');
+    const CScript nameWit = CNameScript::buildNameUpdate(wit, name, value);
+
+    BOOST_CHECK(IsExpectedWitnessProgram(true, nameWit, 0, program));
+    BOOST_CHECK(!IsExpectedWitnessProgram(false, nameWit, 0, program));
+}
+
+BOOST_AUTO_TEST_CASE(IsWitnessProgram_NamePrefixNotMisinterpreted)
+{
+    /* Name prefixes themselves start with OP_1 to OP_3, which is also
+       a valid start for a witness program.  Make sure that they are not
+       misinterpreted as witness programs.  */
+
+    const valtype name(10, 'a');
+    const valtype value(20, 'b');
+    const valtype rand(15, 'x');
+
+    const CScript nameNew = CNameScript::buildNameNew(CScript(), name, rand);
+    const CScript nameFirst = CNameScript::buildNameFirstupdate(CScript(), name, value, rand);
+    const CScript nameUpdate = CNameScript::buildNameUpdate(CScript(), name, value);
+
+    for (const auto& scr : {nameNew, nameFirst, nameUpdate})
+    {
+        BOOST_CHECK(IsNoWitnessProgram(true, scr));
+        BOOST_CHECK(IsNoWitnessProgram(false, scr));
+    }
 }
 
 BOOST_AUTO_TEST_SUITE_END()
diff --git a/src/wallet/wallet.cpp b/src/wallet/wallet.cpp
@@ -2608,7 +2608,7 @@ OutputType CWallet::TransactionChangeType(OutputType change_type, const std::vec
         // Check if any destination contains a witness program:
         int witnessversion = 0;
         std::vector<unsigned char> witnessprogram;
-        if (recipient.scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {
+        if (recipient.scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram)) {
             return OutputType::BECH32;
         }
     }
diff --git a/test/functional/name_segwit.py b/test/functional/name_segwit.py
diff --git a/test/functional/run_name_tests.sh b/test/functional/run_name_tests.sh
diff --git a/test/functional/test_runner.py b/test/functional/test_runner.py

Original file line number	Diff line number	Diff line change
`@@ -463,7 +463,7 @@ void CoinControlDialog::updateLabels(WalletModel model, QDialog dialog)`
`463`	`463`	`CTxDestination address;`
`464`	`464`	`int witnessversion = 0;`
`465`	`465`	`std::vector<unsigned char> witnessprogram;`
`466`		`- if (out.txout.scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram))`
	`466`	`+ if (out.txout.scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram))`
`467`	`467`	`{`
`468`	`468`	`nBytesInputs += (32 + 4 + 1 + (107 / WITNESS_SCALE_FACTOR) + 4);`
`469`	`469`	`fWitness = true;`
Original file line number	Diff line number	Diff line change
`@@ -2608,7 +2608,7 @@ OutputType CWallet::TransactionChangeType(OutputType change_type, const std::vec`
`2608`	`2608`	`// Check if any destination contains a witness program:`
`2609`	`2609`	`int witnessversion = 0;`
`2610`	`2610`	`std::vector<unsigned char> witnessprogram;`
`2611`		`- if (recipient.scriptPubKey.IsWitnessProgram(witnessversion, witnessprogram)) {`
	`2611`	`+ if (recipient.scriptPubKey.IsWitnessProgram(true, witnessversion, witnessprogram)) {`
`2612`	`2612`	`return OutputType::BECH32;`
`2613`	`2613`	`}`
`2614`	`2614`	`}`