partial bitcoin#17938: Disallow automatic conversion between disparate hash types

kwvg · PastaPastaPasta · commit 00802bb21d88 · 2023-04-15T12:12:30.000-05:00
includes: - 0a5ea32 - 3fcc468 - 2c54217 - 966a22d - 4d73691
diff --git a/src/evo/deterministicmns.cpp b/src/evo/deterministicmns.cpp
@@ -1416,7 +1416,7 @@ template <typename ProTx>
 static bool CheckHashSig(const ProTx& proTx, const PKHash& pkhash, CValidationState& state)
 {
     std::string strError;
-    if (!CHashSigner::VerifyHash(::SerializeHash(proTx), CKeyID(pkhash), proTx.vchSig, strError)) {
+    if (!CHashSigner::VerifyHash(::SerializeHash(proTx), ToKeyID(pkhash), proTx.vchSig, strError)) {
         return state.Invalid(ValidationInvalidReason::CONSENSUS, false, REJECT_INVALID, "bad-protx-sig");
     }
     return true;
@@ -1426,7 +1426,7 @@ template <typename ProTx>
 static bool CheckStringSig(const ProTx& proTx, const PKHash& pkhash, CValidationState& state)
 {
     std::string strError;
-    if (!CMessageSigner::VerifyMessage(CKeyID(pkhash), proTx.vchSig, proTx.MakeSignString(), strError)) {
+    if (!CMessageSigner::VerifyMessage(ToKeyID(pkhash), proTx.vchSig, proTx.MakeSignString(), strError)) {
         return state.Invalid(ValidationInvalidReason::CONSENSUS, false, REJECT_INVALID, "bad-protx-sig");
     }
     return true;
diff --git a/src/qt/coincontroldialog.cpp b/src/qt/coincontroldialog.cpp
@@ -512,7 +512,7 @@ void CoinControlDialog::updateLabels(CCoinControl& m_coin_control, WalletModel *
         {
             CPubKey pubkey;
             PKHash *pkhash = std::get_if<PKHash>(&address);
-            if (pkhash && model->wallet().getPubKey(out.txout.scriptPubKey, CKeyID(*pkhash), pubkey))
+            if (pkhash && model->wallet().getPubKey(out.txout.scriptPubKey, ToKeyID(*pkhash), pubkey))
             {
                 nBytesInputs += (pubkey.IsCompressed() ? 148 : 180);
             }
diff --git a/src/rpc/evo.cpp b/src/rpc/evo.cpp
@@ -178,7 +178,7 @@ static CKeyID ParsePubKeyIDFromAddress(const std::string& strAddress, const std:
     if (!pkhash) {
         throw JSONRPCError(RPC_INVALID_PARAMETER, strprintf("%s must be a valid P2PKH address, not %s", paramName, strAddress));
     }
-    return CKeyID(*pkhash);
+    return ToKeyID(*pkhash);
 }
 
 static CBLSPublicKey ParseBLSPubKey(const std::string& hexKey, const std::string& paramName, bool specific_legacy_bls_scheme = false)
@@ -773,7 +773,7 @@ static UniValue protx_register_common_wrapper(const JSONRPCRequest& request,
             }
 
             CKey key;
-            if (!spk_man->GetKey(CKeyID(*pkhash), key)) {
+            if (!spk_man->GetKey(ToKeyID(*pkhash), key)) {
                 throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("collateral key not in wallet: %s", EncodeDestination(txDest)));
             }
             SignSpecialTxPayloadByString(tx, ptx, key);
@@ -1235,7 +1235,7 @@ static bool CheckWalletOwnsScript(CWallet* pwallet, const CScript& script) {
 
     CTxDestination dest;
     if (ExtractDestination(script, dest)) {
-        if ((std::get_if<PKHash>(&dest) && spk_man->HaveKey(CKeyID(*std::get_if<PKHash>(&dest)))) || (std::get_if<ScriptHash>(&dest) && spk_man->HaveCScript(ScriptHash(*std::get_if<ScriptHash>(&dest))))) {
+        if ((std::get_if<PKHash>(&dest) && spk_man->HaveKey(ToKeyID(*std::get_if<PKHash>(&dest)))) || (std::get_if<ScriptHash>(&dest) && spk_man->HaveCScript(CScriptID{ScriptHash(*std::get_if<ScriptHash>(&dest))}))) {
             return true;
         }
     }
diff --git a/src/rpc/util.cpp b/src/rpc/util.cpp
@@ -197,7 +197,7 @@ CPubKey AddrToPubKey(const FillableSigningProvider& keystore, const std::string&
         throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("%s does not refer to a key", addr_in));
     }
     CPubKey vchPubKey;
-    if (!keystore.GetPubKey(CKeyID(*pkhash), vchPubKey)) {
+    if (!keystore.GetPubKey(ToKeyID(*pkhash), vchPubKey)) {
         throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("no full public key for address %s", addr_in));
     }
     if (!vchPubKey.IsFullyValid()) {
diff --git a/src/script/sign.cpp b/src/script/sign.cpp
@@ -123,7 +123,7 @@ static bool SignStep(const SigningProvider& provider, const BaseSignatureCreator
     }
     case TxoutType::SCRIPTHASH:
         h160 = uint160(vSolutions[0]);
-        if (GetCScript(provider, sigdata, h160, scriptRet)) {
+        if (GetCScript(provider, sigdata, CScriptID{h160}, scriptRet)) {
             ret.push_back(std::vector<unsigned char>(scriptRet.begin(), scriptRet.end()));
             return true;
         }
diff --git a/src/script/standard.cpp b/src/script/standard.cpp
@@ -13,11 +13,19 @@ typedef std::vector<unsigned char> valtype;
 bool fAcceptDatacarrier = DEFAULT_ACCEPT_DATACARRIER;
 unsigned nMaxDatacarrierBytes = MAX_OP_RETURN_RELAY;
 
-CScriptID::CScriptID(const CScript& in) : uint160(Hash160(in.begin(), in.end())) {}
+CScriptID::CScriptID(const CScript& in) : BaseHash(Hash160(in.begin(), in.end())) {}
+CScriptID::CScriptID(const ScriptHash& in) : BaseHash(static_cast<uint160>(in)) {}
 
-ScriptHash::ScriptHash(const CScript& in) : uint160(Hash160(in.begin(), in.end())) {}
+ScriptHash::ScriptHash(const CScript& in) : BaseHash(Hash160(in.begin(), in.end())) {}
+ScriptHash::ScriptHash(const CScriptID& in) : BaseHash(static_cast<uint160>(in)) {}
 
-PKHash::PKHash(const CPubKey& pubkey) : uint160(pubkey.GetID()) {}
+PKHash::PKHash(const CPubKey& pubkey) : BaseHash(pubkey.GetID()) {}
+PKHash::PKHash(const CKeyID& pubkey_id) : BaseHash(pubkey_id) {}
+
+CKeyID ToKeyID(const PKHash& key_hash)
+{
+    return CKeyID{static_cast<uint160>(key_hash)};
+}
 
 const char* GetTxnOutputType(TxoutType t)
 {
diff --git a/src/script/standard.h b/src/script/standard.h
@@ -15,14 +15,77 @@ static const bool DEFAULT_ACCEPT_DATACARRIER = true;
 
 class CKeyID;
 class CScript;
+struct ScriptHash;
+
+template<typename HashType>
+class BaseHash
+{
+protected:
+    HashType m_hash;
+
+public:
+    BaseHash() : m_hash() {}
+    BaseHash(const HashType& in) : m_hash(in) {}
+
+    unsigned char* begin()
+    {
+        return m_hash.begin();
+    }
+
+    const unsigned char* begin() const
+    {
+        return m_hash.begin();
+    }
+
+    unsigned char* end()
+    {
+        return m_hash.end();
+    }
+
+    const unsigned char* end() const
+    {
+        return m_hash.end();
+    }
+
+    operator std::vector<unsigned char>() const
+    {
+        return std::vector<unsigned char>{m_hash.begin(), m_hash.end()};
+    }
+
+    std::string ToString() const
+    {
+        return m_hash.ToString();
+    }
+
+    bool operator==(const BaseHash<HashType>& other) const noexcept
+    {
+        return m_hash == other.m_hash;
+    }
+
+    bool operator!=(const BaseHash<HashType>& other) const noexcept
+    {
+        return !(m_hash == other.m_hash);
+    }
+
+    bool operator<(const BaseHash<HashType>& other) const noexcept
+    {
+        return m_hash < other.m_hash;
+    }
+
+    size_t size() const
+    {
+        return m_hash.size();
+    }
+};
 
 /** A reference to a CScript: the Hash160 of its serialization (see script.h) */
-class CScriptID : public uint160
+class CScriptID : public BaseHash<uint160>
 {
 public:
-    CScriptID() : uint160() {}
+    CScriptID() : BaseHash() {}
     explicit CScriptID(const CScript& in);
-    CScriptID(const uint160& in) : uint160(in) {}
+    explicit CScriptID(const uint160& in) : BaseHash(in) {}
+    explicit CScriptID(const ScriptHash& in);
 };
 
 /**
@@ -67,20 +130,21 @@ class CNoDestination {
     friend bool operator<(const CNoDestination &a, const CNoDestination &b) { return true; }
 };
 
-struct PKHash : public uint160
+struct PKHash : public BaseHash<uint160>
 {
-    PKHash() : uint160() {}
-    explicit PKHash(const uint160& hash) : uint160(hash) {}
+    PKHash() : BaseHash() {}
+    explicit PKHash(const uint160& hash) : BaseHash(hash) {}
     explicit PKHash(const CPubKey& pubkey);
-    using uint160::uint160;
+    explicit PKHash(const CKeyID& pubkey_id);
 };
+CKeyID ToKeyID(const PKHash& key_hash);
 
-struct ScriptHash : public uint160
+struct ScriptHash : public BaseHash<uint160>
 {
-    ScriptHash() : uint160() {}
-    explicit ScriptHash(const uint160& hash) : uint160(hash) {}
+    ScriptHash() : BaseHash() {}
+    explicit ScriptHash(const uint160& hash) : BaseHash(hash) {}
     explicit ScriptHash(const CScript& script);
-    using uint160::uint160;
+    explicit ScriptHash(const CScriptID& script);
 };
 
 /**
diff --git a/src/spork.cpp b/src/spork.cpp
@@ -286,7 +286,7 @@ bool CSporkManager::SetSporkAddress(const std::string& strAddress)
         LogPrintf("CSporkManager::SetSporkAddress -- Failed to parse spork address\n");
         return false;
     }
-    setSporkPubKeyIDs.insert(CKeyID(*pkhash));
+    setSporkPubKeyIDs.insert(ToKeyID(*pkhash));
     return true;
 }
 
diff --git a/src/wallet/rpcdump.cpp b/src/wallet/rpcdump.cpp
@@ -145,7 +145,7 @@ UniValue importprivkey(const JSONRPCRequest& request)
             }
 
             // Use timestamp of 1 to scan the whole chain
-            if (!pwallet->ImportPrivKeys({{CKeyID(vchAddress), key}}, 1)) {
+            if (!pwallet->ImportPrivKeys({{ToKeyID(vchAddress), key}}, 1)) {
                 throw JSONRPCError(RPC_WALLET_ERROR, "Error adding key to wallet");
             }
         }
@@ -829,7 +829,7 @@ UniValue dumpprivkey(const JSONRPCRequest& request)
         throw JSONRPCError(RPC_TYPE_ERROR, "Address does not refer to a key");
     }
     CKey vchSecret;
-    if (!spk_man.GetKey(CKeyID(*pkhash), vchSecret)) {
+    if (!spk_man.GetKey(ToKeyID(*pkhash), vchSecret)) {
         throw JSONRPCError(RPC_WALLET_ERROR, "Private key for address " + strAddress + " is not known");
     }
     return EncodeSecret(vchSecret);
diff --git a/src/wallet/rpcwallet.cpp b/src/wallet/rpcwallet.cpp
@@ -3564,7 +3564,7 @@ class DescribeWalletAddressVisitor
     UniValue operator()(const CNoDestination &dest) const { return UniValue(UniValue::VOBJ); }
 
     UniValue operator()(const PKHash& pkhash) const {
-        CKeyID keyID(pkhash);
+        CKeyID keyID{ToKeyID(pkhash)};
         UniValue obj(UniValue::VOBJ);
         CPubKey vchPubKey;
         if (provider && provider->GetPubKey(keyID, vchPubKey)) {
@@ -3727,7 +3727,7 @@ UniValue getaddressinfo(const JSONRPCRequest& request)
             CHDChain hdChainCurrent;
             LegacyScriptPubKeyMan* legacy_spk_man = pwallet->GetLegacyScriptPubKeyMan();
             if (legacy_spk_man != nullptr) {
-                if (pkhash && legacy_spk_man->HaveHDKey(CKeyID(*pkhash), hdChainCurrent)) {
+                if (pkhash && legacy_spk_man->HaveHDKey(ToKeyID(*pkhash), hdChainCurrent)) {
                     ret.pushKV("hdchainid", hdChainCurrent.GetID().GetHex());
                 }
             }
diff --git a/src/wallet/scriptpubkeyman.cpp b/src/wallet/scriptpubkeyman.cpp
@@ -685,7 +685,7 @@ bool LegacyScriptPubKeyMan::SignTransaction(CMutableTransaction& tx, const std::
 
 SigningResult LegacyScriptPubKeyMan::SignMessage(const std::string& message, const PKHash& pkhash, std::string& str_sig) const
 {
-    CKeyID key_id(pkhash);
+    CKeyID key_id(ToKeyID(pkhash));
     CKey key;
     if (!GetKey(key_id, key)) {
         return SigningResult::PRIVATE_KEY_NOT_AVAILABLE;
@@ -744,8 +744,8 @@ const CKeyMetadata* LegacyScriptPubKeyMan::GetMetadata(const CTxDestination& des
     LOCK(cs_KeyStore);
 
     const PKHash *pkhash = std::get_if<PKHash>(&dest);
-    if (pkhash != nullptr && !pkhash->IsNull()) {
-        auto it = mapKeyMetadata.find(CKeyID(*pkhash));
+    if (pkhash != nullptr && !ToKeyID(*pkhash).IsNull()) {
+        auto it = mapKeyMetadata.find(ToKeyID(*pkhash));
         if (it != mapKeyMetadata.end()) {
             return &it->second;
         }

Original file line number	Diff line number	Diff line change
`@@ -1416,7 +1416,7 @@ template <typename ProTx>`
`1416`	`1416`	`static bool CheckHashSig(const ProTx& proTx, const PKHash& pkhash, CValidationState& state)`
`1417`	`1417`	`{`
`1418`	`1418`	`std::string strError;`
`1419`		`- if (!CHashSigner::VerifyHash(::SerializeHash(proTx), CKeyID(pkhash), proTx.vchSig, strError)) {`
	`1419`	`+ if (!CHashSigner::VerifyHash(::SerializeHash(proTx), ToKeyID(pkhash), proTx.vchSig, strError)) {`
`1420`	`1420`	`return state.Invalid(ValidationInvalidReason::CONSENSUS, false, REJECT_INVALID, "bad-protx-sig");`
`1421`	`1421`	`}`
`1422`	`1422`	`return true;`
`@@ -1426,7 +1426,7 @@ template <typename ProTx>`
`1426`	`1426`	`static bool CheckStringSig(const ProTx& proTx, const PKHash& pkhash, CValidationState& state)`
`1427`	`1427`	`{`
`1428`	`1428`	`std::string strError;`
`1429`		`- if (!CMessageSigner::VerifyMessage(CKeyID(pkhash), proTx.vchSig, proTx.MakeSignString(), strError)) {`
	`1429`	`+ if (!CMessageSigner::VerifyMessage(ToKeyID(pkhash), proTx.vchSig, proTx.MakeSignString(), strError)) {`
`1430`	`1430`	`return state.Invalid(ValidationInvalidReason::CONSENSUS, false, REJECT_INVALID, "bad-protx-sig");`
`1431`	`1431`	`}`
`1432`	`1432`	`return true;`
Original file line number	Diff line number	Diff line change
`@@ -512,7 +512,7 @@ void CoinControlDialog::updateLabels(CCoinControl& m_coin_control, WalletModel *`
`512`	`512`	`{`
`513`	`513`	`CPubKey pubkey;`
`514`	`514`	`PKHash *pkhash = std::get_if<PKHash>(&address);`
`515`		`- if (pkhash && model->wallet().getPubKey(out.txout.scriptPubKey, CKeyID(*pkhash), pubkey))`
	`515`	`+ if (pkhash && model->wallet().getPubKey(out.txout.scriptPubKey, ToKeyID(*pkhash), pubkey))`
`516`	`516`	`{`
`517`	`517`	`nBytesInputs += (pubkey.IsCompressed() ? 148 : 180);`
`518`	`518`	`}`
Original file line number	Diff line number	Diff line change
`@@ -178,7 +178,7 @@ static CKeyID ParsePubKeyIDFromAddress(const std::string& strAddress, const std:`
`178`	`178`	`if (!pkhash) {`
`179`	`179`	`throw JSONRPCError(RPC_INVALID_PARAMETER, strprintf("%s must be a valid P2PKH address, not %s", paramName, strAddress));`
`180`	`180`	`}`
`181`		`- return CKeyID(*pkhash);`
	`181`	`+ return ToKeyID(*pkhash);`
`182`	`182`	`}`
`183`	`183`
`184`	`184`	`static CBLSPublicKey ParseBLSPubKey(const std::string& hexKey, const std::string& paramName, bool specific_legacy_bls_scheme = false)`
`@@ -773,7 +773,7 @@ static UniValue protx_register_common_wrapper(const JSONRPCRequest& request,`
`773`	`773`	`}`
`774`	`774`
`775`	`775`	`CKey key;`
`776`		`- if (!spk_man->GetKey(CKeyID(*pkhash), key)) {`
	`776`	`+ if (!spk_man->GetKey(ToKeyID(*pkhash), key)) {`
`777`	`777`	`throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("collateral key not in wallet: %s", EncodeDestination(txDest)));`
`778`	`778`	`}`
`779`	`779`	`SignSpecialTxPayloadByString(tx, ptx, key);`
`@@ -1235,7 +1235,7 @@ static bool CheckWalletOwnsScript(CWallet* pwallet, const CScript& script) {`
`1235`	`1235`
`1236`	`1236`	`CTxDestination dest;`
`1237`	`1237`	`if (ExtractDestination(script, dest)) {`
`1238`		`- if ((std::get_if<PKHash>(&dest) && spk_man->HaveKey(CKeyID(std::get_if<PKHash>(&dest)))) \|\| (std::get_if<ScriptHash>(&dest) && spk_man->HaveCScript(ScriptHash(std::get_if<ScriptHash>(&dest))))) {`
	`1238`	`+ if ((std::get_if<PKHash>(&dest) && spk_man->HaveKey(ToKeyID(std::get_if<PKHash>(&dest)))) \|\| (std::get_if<ScriptHash>(&dest) && spk_man->HaveCScript(CScriptID{ScriptHash(std::get_if<ScriptHash>(&dest))}))) {`
`1239`	`1239`	`return true;`
`1240`	`1240`	`}`
`1241`	`1241`	`}`
Original file line number	Diff line number	Diff line change
`@@ -197,7 +197,7 @@ CPubKey AddrToPubKey(const FillableSigningProvider& keystore, const std::string&`
`197`	`197`	`throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("%s does not refer to a key", addr_in));`
`198`	`198`	`}`
`199`	`199`	`CPubKey vchPubKey;`
`200`		`- if (!keystore.GetPubKey(CKeyID(*pkhash), vchPubKey)) {`
	`200`	`+ if (!keystore.GetPubKey(ToKeyID(*pkhash), vchPubKey)) {`
`201`	`201`	`throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, strprintf("no full public key for address %s", addr_in));`
`202`	`202`	`}`
`203`	`203`	`if (!vchPubKey.IsFullyValid()) {`
Original file line number	Diff line number	Diff line change
`@@ -123,7 +123,7 @@ static bool SignStep(const SigningProvider& provider, const BaseSignatureCreator`
`123`	`123`	`}`
`124`	`124`	`case TxoutType::SCRIPTHASH:`
`125`	`125`	`h160 = uint160(vSolutions[0]);`
`126`		`- if (GetCScript(provider, sigdata, h160, scriptRet)) {`
	`126`	`+ if (GetCScript(provider, sigdata, CScriptID{h160}, scriptRet)) {`
`127`	`127`	`ret.push_back(std::vector<unsigned char>(scriptRet.begin(), scriptRet.end()));`
`128`	`128`	`return true;`
`129`	`129`	`}`
Original file line number	Diff line number	Diff line change
`@@ -286,7 +286,7 @@ bool CSporkManager::SetSporkAddress(const std::string& strAddress)`
`286`	`286`	`LogPrintf("CSporkManager::SetSporkAddress -- Failed to parse spork address\n");`
`287`	`287`	`return false;`
`288`	`288`	`}`
`289`		`- setSporkPubKeyIDs.insert(CKeyID(*pkhash));`
	`289`	`+ setSporkPubKeyIDs.insert(ToKeyID(*pkhash));`
`290`	`290`	`return true;`
`291`	`291`	`}`
`292`	`292`
Original file line number	Diff line number	Diff line change
`@@ -145,7 +145,7 @@ UniValue importprivkey(const JSONRPCRequest& request)`
`145`	`145`	`}`
`146`	`146`
`147`	`147`	`// Use timestamp of 1 to scan the whole chain`
`148`		`- if (!pwallet->ImportPrivKeys({{CKeyID(vchAddress), key}}, 1)) {`
	`148`	`+ if (!pwallet->ImportPrivKeys({{ToKeyID(vchAddress), key}}, 1)) {`
`149`	`149`	`throw JSONRPCError(RPC_WALLET_ERROR, "Error adding key to wallet");`
`150`	`150`	`}`
`151`	`151`	`}`
`@@ -829,7 +829,7 @@ UniValue dumpprivkey(const JSONRPCRequest& request)`
`829`	`829`	`throw JSONRPCError(RPC_TYPE_ERROR, "Address does not refer to a key");`
`830`	`830`	`}`
`831`	`831`	`CKey vchSecret;`
`832`		`- if (!spk_man.GetKey(CKeyID(*pkhash), vchSecret)) {`
	`832`	`+ if (!spk_man.GetKey(ToKeyID(*pkhash), vchSecret)) {`
`833`	`833`	`throw JSONRPCError(RPC_WALLET_ERROR, "Private key for address " + strAddress + " is not known");`
`834`	`834`	`}`
`835`	`835`	`return EncodeSecret(vchSecret);`