mirror of
https://github.com/kaspanet/kaspad.git
synced 2025-06-05 13:46:42 +00:00
3ace16ad23
* [DEV-134] Implement Continuous Integration Squashed commit: [5e41d830] Dev 223 fix txindex (#100) * [DEV-201] In handleGetBlockDAGInfo calculate difficulty by the tip with the lowest bits * [DEV-202] Move VirtualBlock.GetUTXOEntry to BlockDAG * [DEV-203] Move VirtualBlock.SelectedTip() to BlockDAG * [DEV-203] Move VirtualBlock.SelectedTip() to BlockDAG * [DEV-204] Unexport VirtualBlock() and add CalcMedianTime method for DAG * [DEV-204] add explanation about difficulty in CurrentBits() comment * [DEV-204] unexport VirtualBlock type * [DEV-223] make applyUTXOChanges return pastUTXOResults * [DEV-223] add bluestxdata for current block as well * [DEV-223] re-design tx index * [DEV-223] edit txindex comments * [DEV-223] rename BluesTxData -> AcceptedTxData, and return from applyUTXOChanges only transactions that got accepted * [DEV-223] add unit test for txindex * [DEV-223] fix comments and unite blueTransaction and AcceptedTxData to one type * [DEV-223] use bucket cursor for dbFetchFirstTxRegion * [DEV-223] use the same cursor instance for dbFetchFirstTxRegion * [DEV-223] write in dbFetchFirstTxRegion's comment that it returns the first block region * [DEV-223] rename type BlueBlockTransaction to TxWithBlockHash * [DEV-223] add named returned value for applyUTXOChanges [4c95e293] [DEV-134] Made golint ignore the vendor directory. [21736dbc] [DEV-134] Renamed ExampleBlockChain_ProcessBlock to ExampleBlockDAG_ProcessBlock to satisfy go vet. [beea6486] [DEV-134] Removed pushing the built docker to a remove repository. That's unnecessary at this stage. [bee911ed] [DEV-134] Made all precompilation checks run on everything instead of only the root dir. [585f92ae] [DEV-134] Added "github.com/pkg/errors" to dep. [5f02f570] [DEV-134] -vendor-only is written with only one hyphen. [3eee7f95] [DEV-134] go vet instead of go tool vet. [0c2d4343] [DEV-134] Split all the pre-compile checks to separate lines to be able to tell which of them is failing. [780519c8] [DEV-134] Ran gofmt on everything. [8247146b] Dev 223 fix txindex (#100) * [DEV-201] In handleGetBlockDAGInfo calculate difficulty by the tip with the lowest bits * [DEV-202] Move VirtualBlock.GetUTXOEntry to BlockDAG * [DEV-203] Move VirtualBlock.SelectedTip() to BlockDAG * [DEV-203] Move VirtualBlock.SelectedTip() to BlockDAG * [DEV-204] Unexport VirtualBlock() and add CalcMedianTime method for DAG * [DEV-204] add explanation about difficulty in CurrentBits() comment * [DEV-204] unexport VirtualBlock type * [DEV-223] make applyUTXOChanges return pastUTXOResults * [DEV-223] add bluestxdata for current block as well * [DEV-223] re-design tx index * [DEV-223] edit txindex comments * [DEV-223] rename BluesTxData -> AcceptedTxData, and return from applyUTXOChanges only transactions that got accepted * [DEV-223] add unit test for txindex * [DEV-223] fix comments and unite blueTransaction and AcceptedTxData to one type * [DEV-223] use bucket cursor for dbFetchFirstTxRegion * [DEV-223] use the same cursor instance for dbFetchFirstTxRegion * [DEV-223] write in dbFetchFirstTxRegion's comment that it returns the first block region * [DEV-223] rename type BlueBlockTransaction to TxWithBlockHash * [DEV-223] add named returned value for applyUTXOChanges [bff68aa3] [DEV-134] Gave executable permission to deploy.sh [638a99d9] [DEV-134] Added jenkinsfile and deploy script. * [DEV-134] Added a robust testing script. * [DEV-134] Fixed a bash-ism. * [DEV-134] Disabled testing with coverage for now. * [DEV-134] Disabled golint and removed removing debug symbols. * [DEV-134] Disabled aligncheck. * [DEV-134] Disabled structcheck and varcheck. * [DEV-134] Added "don't inline functions" to compiler flags for testing. * [DEV-134] Made build fail if gofmt prints out anything. * [DEV-134] Fixed misleading comment. * [DEV-134] Added comments to test.sh. * [DEV-134] Renamed tm to measure_runtime and removed do_ prefixes from functions. * [DEV-134] Fixed gofmt line in build script. * [DEV-134] Fixed gofmt some more. * [DEV-134] Fixed gofmt not actually failing due to logical or.
1128 lines
40 KiB
Go
1128 lines
40 KiB
Go
// Copyright (c) 2013-2017 The btcsuite developers
|
|
// Use of this source code is governed by an ISC
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package blockdag
|
|
|
|
import (
|
|
"encoding/binary"
|
|
"fmt"
|
|
"math"
|
|
"math/big"
|
|
"sort"
|
|
"time"
|
|
|
|
"github.com/daglabs/btcd/dagconfig"
|
|
"github.com/daglabs/btcd/dagconfig/daghash"
|
|
"github.com/daglabs/btcd/txscript"
|
|
"github.com/daglabs/btcd/util"
|
|
"github.com/daglabs/btcd/wire"
|
|
)
|
|
|
|
const (
|
|
// MaxSigOpsPerBlock is the maximum number of signature operations
|
|
// allowed for a block. It is a fraction of the max block payload size.
|
|
MaxSigOpsPerBlock = wire.MaxBlockPayload / 50
|
|
|
|
// MaxTimeOffsetSeconds is the maximum number of seconds a block time
|
|
// is allowed to be ahead of the current time. This is currently 2
|
|
// hours.
|
|
MaxTimeOffsetSeconds = 2 * 60 * 60
|
|
|
|
// MinCoinbaseScriptLen is the minimum length a coinbase script can be.
|
|
MinCoinbaseScriptLen = 2
|
|
|
|
// MaxCoinbaseScriptLen is the maximum length a coinbase script can be.
|
|
MaxCoinbaseScriptLen = 100
|
|
|
|
// medianTimeBlocks is the number of previous blocks which should be
|
|
// used to calculate the median time used to validate block timestamps.
|
|
medianTimeBlocks = 51
|
|
|
|
// baseSubsidy is the starting subsidy amount for mined blocks. This
|
|
// value is halved every SubsidyHalvingInterval blocks.
|
|
baseSubsidy = 50 * util.SatoshiPerBitcoin
|
|
|
|
// MaxOutputsPerBlock is the maximum number of transaction outputs there
|
|
// can be in a block of max size.
|
|
MaxOutputsPerBlock = wire.MaxBlockPayload / wire.MinTxOutPayload
|
|
)
|
|
|
|
var (
|
|
// zeroHash is the zero value for a daghash.Hash and is defined as
|
|
// a package level variable to avoid the need to create a new instance
|
|
// every time a check is needed.
|
|
zeroHash daghash.Hash
|
|
)
|
|
|
|
// isNullOutpoint determines whether or not a previous transaction output point
|
|
// is set.
|
|
func isNullOutpoint(outpoint *wire.OutPoint) bool {
|
|
if outpoint.Index == math.MaxUint32 && outpoint.Hash == zeroHash {
|
|
return true
|
|
}
|
|
return false
|
|
}
|
|
|
|
// IsCoinBaseTx determines whether or not a transaction is a coinbase. A coinbase
|
|
// is a special transaction created by miners that has no inputs. This is
|
|
// represented in the block chain by a transaction with a single input that has
|
|
// a previous output transaction index set to the maximum value along with a
|
|
// zero hash.
|
|
//
|
|
// This function only differs from IsCoinBase in that it works with a raw wire
|
|
// transaction as opposed to a higher level util transaction.
|
|
func IsCoinBaseTx(msgTx *wire.MsgTx) bool {
|
|
// A coin base must only have one transaction input.
|
|
if len(msgTx.TxIn) != 1 {
|
|
return false
|
|
}
|
|
|
|
// The previous output of a coin base must have a max value index and
|
|
// a zero hash.
|
|
prevOut := &msgTx.TxIn[0].PreviousOutPoint
|
|
if prevOut.Index != math.MaxUint32 || prevOut.Hash != zeroHash {
|
|
return false
|
|
}
|
|
|
|
return true
|
|
}
|
|
|
|
// IsCoinBase determines whether or not a transaction is a coinbase. A coinbase
|
|
// is a special transaction created by miners that has no inputs. This is
|
|
// represented in the block chain by a transaction with a single input that has
|
|
// a previous output transaction index set to the maximum value along with a
|
|
// zero hash.
|
|
//
|
|
// This function only differs from IsCoinBaseTx in that it works with a higher
|
|
// level util transaction as opposed to a raw wire transaction.
|
|
func IsCoinBase(tx *util.Tx) bool {
|
|
return IsCoinBaseTx(tx.MsgTx())
|
|
}
|
|
|
|
// SequenceLockActive determines if a transaction's sequence locks have been
|
|
// met, meaning that all the inputs of a given transaction have reached a
|
|
// height or time sufficient for their relative lock-time maturity.
|
|
func SequenceLockActive(sequenceLock *SequenceLock, blockHeight int32,
|
|
medianTimePast time.Time) bool {
|
|
|
|
// If either the seconds, or height relative-lock time has not yet
|
|
// reached, then the transaction is not yet mature according to its
|
|
// sequence locks.
|
|
if sequenceLock.Seconds >= medianTimePast.Unix() ||
|
|
sequenceLock.BlockHeight >= blockHeight {
|
|
return false
|
|
}
|
|
|
|
return true
|
|
}
|
|
|
|
// IsFinalizedTransaction determines whether or not a transaction is finalized.
|
|
func IsFinalizedTransaction(tx *util.Tx, blockHeight int32, blockTime time.Time) bool {
|
|
msgTx := tx.MsgTx()
|
|
|
|
// Lock time of zero means the transaction is finalized.
|
|
lockTime := msgTx.LockTime
|
|
if lockTime == 0 {
|
|
return true
|
|
}
|
|
|
|
// The lock time field of a transaction is either a block height at
|
|
// which the transaction is finalized or a timestamp depending on if the
|
|
// value is before the txscript.LockTimeThreshold. When it is under the
|
|
// threshold it is a block height.
|
|
blockTimeOrHeight := int64(0)
|
|
if lockTime < txscript.LockTimeThreshold {
|
|
blockTimeOrHeight = int64(blockHeight)
|
|
} else {
|
|
blockTimeOrHeight = blockTime.Unix()
|
|
}
|
|
if int64(lockTime) < blockTimeOrHeight {
|
|
return true
|
|
}
|
|
|
|
// At this point, the transaction's lock time hasn't occurred yet, but
|
|
// the transaction might still be finalized if the sequence number
|
|
// for all transaction inputs is maxed out.
|
|
for _, txIn := range msgTx.TxIn {
|
|
if txIn.Sequence != math.MaxUint64 {
|
|
return false
|
|
}
|
|
}
|
|
return true
|
|
}
|
|
|
|
// CalcBlockSubsidy returns the subsidy amount a block at the provided height
|
|
// should have. This is mainly used for determining how much the coinbase for
|
|
// newly generated blocks awards as well as validating the coinbase for blocks
|
|
// has the expected value.
|
|
//
|
|
// The subsidy is halved every SubsidyReductionInterval blocks. Mathematically
|
|
// this is: baseSubsidy / 2^(height/SubsidyReductionInterval)
|
|
//
|
|
// At the target block generation rate for the main network, this is
|
|
// approximately every 4 years.
|
|
func CalcBlockSubsidy(height int32, dagParams *dagconfig.Params) uint64 {
|
|
if dagParams.SubsidyReductionInterval == 0 {
|
|
return baseSubsidy
|
|
}
|
|
|
|
// Equivalent to: baseSubsidy / 2^(height/subsidyHalvingInterval)
|
|
return baseSubsidy >> uint(height/dagParams.SubsidyReductionInterval)
|
|
}
|
|
|
|
// CheckTransactionSanity performs some preliminary checks on a transaction to
|
|
// ensure it is sane. These checks are context free.
|
|
func CheckTransactionSanity(tx *util.Tx) error {
|
|
// A transaction must have at least one input.
|
|
msgTx := tx.MsgTx()
|
|
if len(msgTx.TxIn) == 0 {
|
|
return ruleError(ErrNoTxInputs, "transaction has no inputs")
|
|
}
|
|
|
|
// A transaction must have at least one output.
|
|
if len(msgTx.TxOut) == 0 {
|
|
return ruleError(ErrNoTxOutputs, "transaction has no outputs")
|
|
}
|
|
|
|
// A transaction must not exceed the maximum allowed block payload when
|
|
// serialized.
|
|
serializedTxSize := tx.MsgTx().SerializeSize()
|
|
if serializedTxSize > wire.MaxBlockPayload {
|
|
str := fmt.Sprintf("serialized transaction is too big - got "+
|
|
"%d, max %d", serializedTxSize, wire.MaxBlockPayload)
|
|
return ruleError(ErrTxTooBig, str)
|
|
}
|
|
|
|
// Ensure the transaction amounts are in range. Each transaction
|
|
// output must not be negative or more than the max allowed per
|
|
// transaction. Also, the total of all outputs must abide by the same
|
|
// restrictions. All amounts in a transaction are in a unit value known
|
|
// as a satoshi. One bitcoin is a quantity of satoshi as defined by the
|
|
// SatoshiPerBitcoin constant.
|
|
var totalSatoshi uint64
|
|
for _, txOut := range msgTx.TxOut {
|
|
satoshi := txOut.Value
|
|
if satoshi < 0 {
|
|
str := fmt.Sprintf("transaction output has negative "+
|
|
"value of %v", satoshi)
|
|
return ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
if satoshi > util.MaxSatoshi {
|
|
str := fmt.Sprintf("transaction output value of %v is "+
|
|
"higher than max allowed value of %v", satoshi,
|
|
util.MaxSatoshi)
|
|
return ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
|
|
// Binary arithmetic guarantees that any overflow is detected and reported.
|
|
// This is impossible for Bitcoin, but perhaps possible if an alt increases
|
|
// the total money supply.
|
|
newTotalSatoshi := totalSatoshi + satoshi
|
|
if newTotalSatoshi < totalSatoshi {
|
|
str := fmt.Sprintf("total value of all transaction "+
|
|
"outputs exceeds max allowed value of %v",
|
|
util.MaxSatoshi)
|
|
return ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
totalSatoshi = newTotalSatoshi
|
|
if totalSatoshi > util.MaxSatoshi {
|
|
str := fmt.Sprintf("total value of all transaction "+
|
|
"outputs is %v which is higher than max "+
|
|
"allowed value of %v", totalSatoshi,
|
|
util.MaxSatoshi)
|
|
return ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
}
|
|
|
|
// Check for duplicate transaction inputs.
|
|
existingTxOut := make(map[wire.OutPoint]struct{})
|
|
for _, txIn := range msgTx.TxIn {
|
|
if _, exists := existingTxOut[txIn.PreviousOutPoint]; exists {
|
|
return ruleError(ErrDuplicateTxInputs, "transaction "+
|
|
"contains duplicate inputs")
|
|
}
|
|
existingTxOut[txIn.PreviousOutPoint] = struct{}{}
|
|
}
|
|
|
|
// Coinbase script length must be between min and max length.
|
|
if IsCoinBase(tx) {
|
|
slen := len(msgTx.TxIn[0].SignatureScript)
|
|
if slen < MinCoinbaseScriptLen || slen > MaxCoinbaseScriptLen {
|
|
str := fmt.Sprintf("coinbase transaction script length "+
|
|
"of %d is out of range (min: %d, max: %d)",
|
|
slen, MinCoinbaseScriptLen, MaxCoinbaseScriptLen)
|
|
return ruleError(ErrBadCoinbaseScriptLen, str)
|
|
}
|
|
} else {
|
|
// Previous transaction outputs referenced by the inputs to this
|
|
// transaction must not be null.
|
|
for _, txIn := range msgTx.TxIn {
|
|
if isNullOutpoint(&txIn.PreviousOutPoint) {
|
|
return ruleError(ErrBadTxInput, "transaction "+
|
|
"input refers to previous output that "+
|
|
"is null")
|
|
}
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// checkProofOfWork ensures the block header bits which indicate the target
|
|
// difficulty is in min/max range and that the block hash is less than the
|
|
// target difficulty as claimed.
|
|
//
|
|
// The flags modify the behavior of this function as follows:
|
|
// - BFNoPoWCheck: The check to ensure the block hash is less than the target
|
|
// difficulty is not performed.
|
|
func checkProofOfWork(header *wire.BlockHeader, powLimit *big.Int, flags BehaviorFlags) error {
|
|
// The target difficulty must be larger than zero.
|
|
target := CompactToBig(header.Bits)
|
|
if target.Sign() <= 0 {
|
|
str := fmt.Sprintf("block target difficulty of %064x is too low",
|
|
target)
|
|
return ruleError(ErrUnexpectedDifficulty, str)
|
|
}
|
|
|
|
// The target difficulty must be less than the maximum allowed.
|
|
if target.Cmp(powLimit) > 0 {
|
|
str := fmt.Sprintf("block target difficulty of %064x is "+
|
|
"higher than max of %064x", target, powLimit)
|
|
return ruleError(ErrUnexpectedDifficulty, str)
|
|
}
|
|
|
|
// The block hash must be less than the claimed target unless the flag
|
|
// to avoid proof of work checks is set.
|
|
if flags&BFNoPoWCheck != BFNoPoWCheck {
|
|
// The block hash must be less than the claimed target.
|
|
hash := header.BlockHash()
|
|
hashNum := daghash.HashToBig(&hash)
|
|
if hashNum.Cmp(target) > 0 {
|
|
str := fmt.Sprintf("block hash of %064x is higher than "+
|
|
"expected max of %064x", hashNum, target)
|
|
return ruleError(ErrHighHash, str)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// CountSigOps returns the number of signature operations for all transaction
|
|
// input and output scripts in the provided transaction. This uses the
|
|
// quicker, but imprecise, signature operation counting mechanism from
|
|
// txscript.
|
|
func CountSigOps(tx *util.Tx) int {
|
|
msgTx := tx.MsgTx()
|
|
|
|
// Accumulate the number of signature operations in all transaction
|
|
// inputs.
|
|
totalSigOps := 0
|
|
for _, txIn := range msgTx.TxIn {
|
|
numSigOps := txscript.GetSigOpCount(txIn.SignatureScript)
|
|
totalSigOps += numSigOps
|
|
}
|
|
|
|
// Accumulate the number of signature operations in all transaction
|
|
// outputs.
|
|
for _, txOut := range msgTx.TxOut {
|
|
numSigOps := txscript.GetSigOpCount(txOut.PkScript)
|
|
totalSigOps += numSigOps
|
|
}
|
|
|
|
return totalSigOps
|
|
}
|
|
|
|
// CountP2SHSigOps returns the number of signature operations for all input
|
|
// transactions which are of the pay-to-script-hash type. This uses the
|
|
// precise, signature operation counting mechanism from the script engine which
|
|
// requires access to the input transaction scripts.
|
|
func CountP2SHSigOps(tx *util.Tx, isCoinBaseTx bool, utxoSet UTXOSet) (int, error) {
|
|
// Coinbase transactions have no interesting inputs.
|
|
if isCoinBaseTx {
|
|
return 0, nil
|
|
}
|
|
|
|
// Accumulate the number of signature operations in all transaction
|
|
// inputs.
|
|
msgTx := tx.MsgTx()
|
|
totalSigOps := 0
|
|
for txInIndex, txIn := range msgTx.TxIn {
|
|
// Ensure the referenced input transaction is available.
|
|
entry, ok := utxoSet.Get(txIn.PreviousOutPoint)
|
|
if !ok {
|
|
str := fmt.Sprintf("output %v referenced from "+
|
|
"transaction %s:%d either does not exist or "+
|
|
"has already been spent", txIn.PreviousOutPoint,
|
|
tx.Hash(), txInIndex)
|
|
return 0, ruleError(ErrMissingTxOut, str)
|
|
}
|
|
|
|
// We're only interested in pay-to-script-hash types, so skip
|
|
// this input if it's not one.
|
|
pkScript := entry.PkScript()
|
|
if !txscript.IsPayToScriptHash(pkScript) {
|
|
continue
|
|
}
|
|
|
|
// Count the precise number of signature operations in the
|
|
// referenced public key script.
|
|
sigScript := txIn.SignatureScript
|
|
numSigOps := txscript.GetPreciseSigOpCount(sigScript, pkScript,
|
|
true)
|
|
|
|
// We could potentially overflow the accumulator so check for
|
|
// overflow.
|
|
lastSigOps := totalSigOps
|
|
totalSigOps += numSigOps
|
|
if totalSigOps < lastSigOps {
|
|
str := fmt.Sprintf("the public key script from output "+
|
|
"%v contains too many signature operations - "+
|
|
"overflow", txIn.PreviousOutPoint)
|
|
return 0, ruleError(ErrTooManySigOps, str)
|
|
}
|
|
}
|
|
|
|
return totalSigOps, nil
|
|
}
|
|
|
|
// checkBlockHeaderSanity performs some preliminary checks on a block header to
|
|
// ensure it is sane before continuing with processing. These checks are
|
|
// context free.
|
|
//
|
|
// The flags do not modify the behavior of this function directly, however they
|
|
// are needed to pass along to checkProofOfWork.
|
|
func checkBlockHeaderSanity(header *wire.BlockHeader, powLimit *big.Int, timeSource MedianTimeSource, flags BehaviorFlags) error {
|
|
// Ensure the proof of work bits in the block header is in min/max range
|
|
// and the block hash is less than the target value described by the
|
|
// bits.
|
|
err := checkProofOfWork(header, powLimit, flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = checkBlockParentsOrder(header)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// A block timestamp must not have a greater precision than one second.
|
|
// This check is necessary because Go time.Time values support
|
|
// nanosecond precision whereas the consensus rules only apply to
|
|
// seconds and it's much nicer to deal with standard Go time values
|
|
// instead of converting to seconds everywhere.
|
|
if !header.Timestamp.Equal(time.Unix(header.Timestamp.Unix(), 0)) {
|
|
str := fmt.Sprintf("block timestamp of %v has a higher "+
|
|
"precision than one second", header.Timestamp)
|
|
return ruleError(ErrInvalidTime, str)
|
|
}
|
|
|
|
// Ensure the block time is not too far in the future.
|
|
maxTimestamp := timeSource.AdjustedTime().Add(time.Second *
|
|
MaxTimeOffsetSeconds)
|
|
if header.Timestamp.After(maxTimestamp) {
|
|
str := fmt.Sprintf("block timestamp of %v is too far in the "+
|
|
"future", header.Timestamp)
|
|
return ruleError(ErrTimeTooNew, str)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
//checkBlockParentsOrder ensures that the block's parents are ordered by hash
|
|
func checkBlockParentsOrder(header *wire.BlockHeader) error {
|
|
sortedHashes := make([]daghash.Hash, 0, len(header.PrevBlocks))
|
|
for _, hash := range header.PrevBlocks {
|
|
sortedHashes = append(sortedHashes, hash)
|
|
}
|
|
sort.Slice(sortedHashes, func(i, j int) bool {
|
|
return daghash.Less(&sortedHashes[i], &sortedHashes[j])
|
|
})
|
|
if !daghash.AreEqual(header.PrevBlocks, sortedHashes) {
|
|
return ruleError(ErrWrongParentsOrder, "block parents are not ordered by hash")
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// checkBlockSanity performs some preliminary checks on a block to ensure it is
|
|
// sane before continuing with block processing. These checks are context free.
|
|
//
|
|
// The flags do not modify the behavior of this function directly, however they
|
|
// are needed to pass along to checkBlockHeaderSanity.
|
|
func checkBlockSanity(block *util.Block, powLimit *big.Int, timeSource MedianTimeSource, flags BehaviorFlags) error {
|
|
msgBlock := block.MsgBlock()
|
|
header := &msgBlock.Header
|
|
err := checkBlockHeaderSanity(header, powLimit, timeSource, flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// A block must have at least one transaction.
|
|
numTx := len(msgBlock.Transactions)
|
|
if numTx == 0 {
|
|
return ruleError(ErrNoTransactions, "block does not contain "+
|
|
"any transactions")
|
|
}
|
|
|
|
// A block must not have more transactions than the max block payload or
|
|
// else it is certainly over the block size limit.
|
|
if numTx > wire.MaxBlockPayload {
|
|
str := fmt.Sprintf("block contains too many transactions - "+
|
|
"got %d, max %d", numTx, wire.MaxBlockPayload)
|
|
return ruleError(ErrBlockTooBig, str)
|
|
}
|
|
|
|
// A block must not exceed the maximum allowed block payload when
|
|
// serialized.
|
|
serializedSize := msgBlock.SerializeSize()
|
|
if serializedSize > wire.MaxBlockPayload {
|
|
str := fmt.Sprintf("serialized block is too big - got %d, "+
|
|
"max %d", serializedSize, wire.MaxBlockPayload)
|
|
return ruleError(ErrBlockTooBig, str)
|
|
}
|
|
|
|
// The first transaction in a block must be a coinbase.
|
|
transactions := block.Transactions()
|
|
if !IsCoinBase(transactions[0]) {
|
|
return ruleError(ErrFirstTxNotCoinbase, "first transaction in "+
|
|
"block is not a coinbase")
|
|
}
|
|
|
|
// A block must not have more than one coinbase.
|
|
for i, tx := range transactions[1:] {
|
|
if IsCoinBase(tx) {
|
|
str := fmt.Sprintf("block contains second coinbase at "+
|
|
"index %d", i+1)
|
|
return ruleError(ErrMultipleCoinbases, str)
|
|
}
|
|
}
|
|
|
|
// Do some preliminary checks on each transaction to ensure they are
|
|
// sane before continuing.
|
|
for _, tx := range transactions {
|
|
err := CheckTransactionSanity(tx)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
// Build merkle tree and ensure the calculated merkle root matches the
|
|
// entry in the block header. This also has the effect of caching all
|
|
// of the transaction hashes in the block to speed up future hash
|
|
// checks. Bitcoind builds the tree here and checks the merkle root
|
|
// after the following checks, but there is no reason not to check the
|
|
// merkle root matches here.
|
|
merkles := BuildMerkleTreeStore(block.Transactions())
|
|
calculatedMerkleRoot := merkles[len(merkles)-1]
|
|
if !header.MerkleRoot.IsEqual(calculatedMerkleRoot) {
|
|
str := fmt.Sprintf("block merkle root is invalid - block "+
|
|
"header indicates %v, but calculated value is %v",
|
|
header.MerkleRoot, calculatedMerkleRoot)
|
|
return ruleError(ErrBadMerkleRoot, str)
|
|
}
|
|
|
|
// Check for duplicate transactions. This check will be fairly quick
|
|
// since the transaction hashes are already cached due to building the
|
|
// merkle tree above.
|
|
existingTxHashes := make(map[daghash.Hash]struct{})
|
|
for _, tx := range transactions {
|
|
hash := tx.Hash()
|
|
if _, exists := existingTxHashes[*hash]; exists {
|
|
str := fmt.Sprintf("block contains duplicate "+
|
|
"transaction %v", hash)
|
|
return ruleError(ErrDuplicateTx, str)
|
|
}
|
|
existingTxHashes[*hash] = struct{}{}
|
|
}
|
|
|
|
// The number of signature operations must be less than the maximum
|
|
// allowed per block.
|
|
totalSigOps := 0
|
|
for _, tx := range transactions {
|
|
// We could potentially overflow the accumulator so check for
|
|
// overflow.
|
|
lastSigOps := totalSigOps
|
|
totalSigOps += CountSigOps(tx)
|
|
if totalSigOps < lastSigOps || totalSigOps > MaxSigOpsPerBlock {
|
|
str := fmt.Sprintf("block contains too many signature "+
|
|
"operations - got %v, max %v", totalSigOps,
|
|
MaxSigOpsPerBlock)
|
|
return ruleError(ErrTooManySigOps, str)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// CheckBlockSanity performs some preliminary checks on a block to ensure it is
|
|
// sane before continuing with block processing. These checks are context free.
|
|
func CheckBlockSanity(block *util.Block, powLimit *big.Int, timeSource MedianTimeSource) error {
|
|
return checkBlockSanity(block, powLimit, timeSource, BFNone)
|
|
}
|
|
|
|
// ExtractCoinbaseHeight attempts to extract the height of the block from the
|
|
// scriptSig of a coinbase transaction.
|
|
func ExtractCoinbaseHeight(coinbaseTx *util.Tx) (int32, error) {
|
|
sigScript := coinbaseTx.MsgTx().TxIn[0].SignatureScript
|
|
if len(sigScript) < 1 {
|
|
str := "the coinbase signature script" +
|
|
"must start with the " +
|
|
"length of the serialized block height"
|
|
str = fmt.Sprintf(str)
|
|
return 0, ruleError(ErrMissingCoinbaseHeight, str)
|
|
}
|
|
|
|
// Detect the case when the block height is a small integer encoded with
|
|
// a single byte.
|
|
opcode := int(sigScript[0])
|
|
if opcode == txscript.Op0 {
|
|
return 0, nil
|
|
}
|
|
if opcode >= txscript.Op1 && opcode <= txscript.Op16 {
|
|
return int32(opcode - (txscript.Op1 - 1)), nil
|
|
}
|
|
|
|
// Otherwise, the opcode is the length of the following bytes which
|
|
// encode in the block height.
|
|
serializedLen := int(sigScript[0])
|
|
if len(sigScript[1:]) < serializedLen {
|
|
str := "the coinbase signature script " +
|
|
"must start with the " +
|
|
"serialized block height"
|
|
str = fmt.Sprintf(str, serializedLen)
|
|
return 0, ruleError(ErrMissingCoinbaseHeight, str)
|
|
}
|
|
|
|
serializedHeightBytes := make([]byte, 8)
|
|
copy(serializedHeightBytes, sigScript[1:serializedLen+1])
|
|
serializedHeight := binary.LittleEndian.Uint64(serializedHeightBytes)
|
|
|
|
return int32(serializedHeight), nil
|
|
}
|
|
|
|
// checkSerializedHeight checks if the signature script in the passed
|
|
// transaction starts with the serialized block height of wantHeight.
|
|
func checkSerializedHeight(coinbaseTx *util.Tx, wantHeight int32) error {
|
|
serializedHeight, err := ExtractCoinbaseHeight(coinbaseTx)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if serializedHeight != wantHeight {
|
|
str := fmt.Sprintf("the coinbase signature script serialized "+
|
|
"block height is %d when %d was expected",
|
|
serializedHeight, wantHeight)
|
|
return ruleError(ErrBadCoinbaseHeight, str)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// checkBlockHeaderContext performs several validation checks on the block header
|
|
// which depend on its position within the block chain.
|
|
//
|
|
// The flags modify the behavior of this function as follows:
|
|
// - BFFastAdd: All checks except those involving comparing the header against
|
|
// the checkpoints are not performed.
|
|
//
|
|
// This function MUST be called with the chain state lock held (for writes).
|
|
func (dag *BlockDAG) checkBlockHeaderContext(header *wire.BlockHeader, bluestParent *blockNode, blockHeight int32, flags BehaviorFlags) error {
|
|
fastAdd := flags&BFFastAdd == BFFastAdd
|
|
if !fastAdd {
|
|
// Ensure the difficulty specified in the block header matches
|
|
// the calculated difficulty based on the previous block and
|
|
// difficulty retarget rules.
|
|
expectedDifficulty, err := dag.calcNextRequiredDifficulty(bluestParent,
|
|
header.Timestamp)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
blockDifficulty := header.Bits
|
|
if blockDifficulty != expectedDifficulty {
|
|
str := "block difficulty of %d is not the expected value of %d"
|
|
str = fmt.Sprintf(str, blockDifficulty, expectedDifficulty)
|
|
return ruleError(ErrUnexpectedDifficulty, str)
|
|
}
|
|
|
|
// Ensure the timestamp for the block header is not before the
|
|
// median time of the last several blocks (medianTimeBlocks).
|
|
medianTime := bluestParent.CalcPastMedianTime()
|
|
if header.Timestamp.Before(medianTime) {
|
|
str := "block timestamp of %v is not after expected %v"
|
|
str = fmt.Sprintf(str, header.Timestamp, medianTime)
|
|
return ruleError(ErrTimeTooOld, str)
|
|
}
|
|
}
|
|
|
|
// Ensure chain matches up to predetermined checkpoints.
|
|
blockHash := header.BlockHash()
|
|
if !dag.verifyCheckpoint(blockHeight, &blockHash) {
|
|
str := fmt.Sprintf("block at height %d does not match "+
|
|
"checkpoint hash", blockHeight)
|
|
return ruleError(ErrBadCheckpoint, str)
|
|
}
|
|
|
|
// Find the previous checkpoint and prevent blocks which fork the main
|
|
// chain before it. This prevents storage of new, otherwise valid,
|
|
// blocks which build off of old blocks that are likely at a much easier
|
|
// difficulty and therefore could be used to waste cache and disk space.
|
|
checkpointNode, err := dag.findPreviousCheckpoint()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if checkpointNode != nil && blockHeight < checkpointNode.height {
|
|
str := fmt.Sprintf("block at height %d forks the main chain "+
|
|
"before the previous checkpoint at height %d",
|
|
blockHeight, checkpointNode.height)
|
|
return ruleError(ErrForkTooOld, str)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// validateParents validates that no parent is an ancestor of another parent
|
|
func validateParents(blockHeader *wire.BlockHeader, parents blockSet) error {
|
|
minHeight := int32(math.MaxInt32)
|
|
queue := NewHeap()
|
|
visited := newSet()
|
|
for _, parent := range parents {
|
|
if parent.height < minHeight {
|
|
minHeight = parent.height
|
|
}
|
|
for _, grandParent := range parent.parents {
|
|
if !visited.contains(grandParent) {
|
|
queue.Push(grandParent)
|
|
visited.add(grandParent)
|
|
}
|
|
}
|
|
}
|
|
for queue.Len() > 0 {
|
|
current := queue.pop()
|
|
if parents.contains(current) {
|
|
return fmt.Errorf("Block %s is both a parent of %s and an"+
|
|
" ancestor of another parent",
|
|
current.hash,
|
|
blockHeader.BlockHash())
|
|
}
|
|
if current.height > minHeight {
|
|
for _, parent := range current.parents {
|
|
if !visited.contains(parent) {
|
|
queue.Push(parent)
|
|
visited.add(parent)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// checkBlockContext peforms several validation checks on the block which depend
|
|
// on its position within the block chain.
|
|
//
|
|
// The flags modify the behavior of this function as follows:
|
|
// - BFFastAdd: The transaction are not checked to see if they are finalized
|
|
// and the somewhat expensive BIP0034 validation is not performed.
|
|
//
|
|
// The flags are also passed to checkBlockHeaderContext. See its documentation
|
|
// for how the flags modify its behavior.
|
|
//
|
|
// This function MUST be called with the chain state lock held (for writes).
|
|
func (dag *BlockDAG) checkBlockContext(block *util.Block, parents blockSet, bluestParent *blockNode, flags BehaviorFlags) error {
|
|
err := validateParents(&block.MsgBlock().Header, parents)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Perform all block header related validation checks.
|
|
header := &block.MsgBlock().Header
|
|
err = dag.checkBlockHeaderContext(header, bluestParent, block.Height(), flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
fastAdd := flags&BFFastAdd == BFFastAdd
|
|
if !fastAdd {
|
|
blockTime := bluestParent.CalcPastMedianTime()
|
|
|
|
// Ensure all transactions in the block are finalized.
|
|
for _, tx := range block.Transactions() {
|
|
if !IsFinalizedTransaction(tx, block.Height(),
|
|
blockTime) {
|
|
|
|
str := fmt.Sprintf("block contains unfinalized "+
|
|
"transaction %v", tx.Hash())
|
|
return ruleError(ErrUnfinalizedTx, str)
|
|
}
|
|
}
|
|
|
|
// Ensure coinbase starts with serialized block heights
|
|
|
|
coinbaseTx := block.Transactions()[0]
|
|
err := checkSerializedHeight(coinbaseTx, block.Height())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// ensureNoDuplicateTx ensures blocks do not contain duplicate transactions which
|
|
// 'overwrite' older transactions that are not fully spent. This prevents an
|
|
// attack where a coinbase and all of its dependent transactions could be
|
|
// duplicated to effectively revert the overwritten transactions to a single
|
|
// confirmation thereby making them vulnerable to a double spend.
|
|
//
|
|
// For more details, see
|
|
// https://github.com/bitcoin/bips/blob/master/bip-0030.mediawiki and
|
|
// http://r6.ca/blog/20120206T005236Z.html.
|
|
//
|
|
// This function MUST be called with the chain state lock held (for reads).
|
|
func (dag *BlockDAG) ensureNoDuplicateTx(node *blockNode, block *util.Block) error {
|
|
// Fetch utxos for all of the transaction ouputs in this block.
|
|
// Typically, there will not be any utxos for any of the outputs.
|
|
fetchSet := make(map[wire.OutPoint]struct{})
|
|
for _, tx := range block.Transactions() {
|
|
prevOut := wire.OutPoint{Hash: *tx.Hash()}
|
|
for txOutIdx := range tx.MsgTx().TxOut {
|
|
prevOut.Index = uint32(txOutIdx)
|
|
fetchSet[prevOut] = struct{}{}
|
|
}
|
|
}
|
|
|
|
// Duplicate transactions are only allowed if the previous transaction
|
|
// is fully spent.
|
|
for outpoint := range fetchSet {
|
|
utxo, ok := dag.GetUTXOEntry(outpoint)
|
|
if ok {
|
|
str := fmt.Sprintf("tried to overwrite transaction %v "+
|
|
"at block height %d that is not fully spent",
|
|
outpoint.Hash, utxo.BlockHeight())
|
|
return ruleError(ErrOverwriteTx, str)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// CheckTransactionInputs performs a series of checks on the inputs to a
|
|
// transaction to ensure they are valid. An example of some of the checks
|
|
// include verifying all inputs exist, ensuring the coinbase seasoning
|
|
// requirements are met, detecting double spends, validating all values and fees
|
|
// are in the legal range and the total output amount doesn't exceed the input
|
|
// amount, and verifying the signatures to prove the spender was the owner of
|
|
// the bitcoins and therefore allowed to spend them. As it checks the inputs,
|
|
// it also calculates the total fees for the transaction and returns that value.
|
|
//
|
|
// NOTE: The transaction MUST have already been sanity checked with the
|
|
// CheckTransactionSanity function prior to calling this function.
|
|
func CheckTransactionInputs(tx *util.Tx, txHeight int32, utxoSet UTXOSet, dagParams *dagconfig.Params) (uint64, error) {
|
|
// Coinbase transactions have no inputs.
|
|
if IsCoinBase(tx) {
|
|
return 0, nil
|
|
}
|
|
|
|
txHash := tx.Hash()
|
|
var totalSatoshiIn uint64
|
|
for txInIndex, txIn := range tx.MsgTx().TxIn {
|
|
// Ensure the referenced input transaction is available.
|
|
entry, ok := utxoSet.Get(txIn.PreviousOutPoint)
|
|
if !ok {
|
|
str := fmt.Sprintf("output %v referenced from "+
|
|
"transaction %s:%d either does not exist or "+
|
|
"has already been spent", txIn.PreviousOutPoint,
|
|
tx.Hash(), txInIndex)
|
|
return 0, ruleError(ErrMissingTxOut, str)
|
|
}
|
|
|
|
// Ensure the transaction is not spending coins which have not
|
|
// yet reached the required coinbase maturity.
|
|
if entry.IsCoinBase() {
|
|
originHeight := entry.BlockHeight()
|
|
blocksSincePrev := txHeight - originHeight
|
|
coinbaseMaturity := int32(dagParams.CoinbaseMaturity)
|
|
if blocksSincePrev < coinbaseMaturity {
|
|
str := fmt.Sprintf("tried to spend coinbase "+
|
|
"transaction output %v from height %v "+
|
|
"at height %v before required maturity "+
|
|
"of %v blocks", txIn.PreviousOutPoint,
|
|
originHeight, txHeight,
|
|
coinbaseMaturity)
|
|
return 0, ruleError(ErrImmatureSpend, str)
|
|
}
|
|
}
|
|
|
|
// Ensure the transaction amounts are in range. Each of the
|
|
// output values of the input transactions must not be negative
|
|
// or more than the max allowed per transaction. All amounts in
|
|
// a transaction are in a unit value known as a satoshi. One
|
|
// bitcoin is a quantity of satoshi as defined by the
|
|
// SatoshiPerBitcoin constant.
|
|
originTxSatoshi := entry.Amount()
|
|
if originTxSatoshi > util.MaxSatoshi {
|
|
str := fmt.Sprintf("transaction output value of %v is "+
|
|
"higher than max allowed value of %v",
|
|
util.Amount(originTxSatoshi),
|
|
util.MaxSatoshi)
|
|
return 0, ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
|
|
// The total of all outputs must not be more than the max
|
|
// allowed per transaction. Also, we could potentially overflow
|
|
// the accumulator so check for overflow.
|
|
lastSatoshiIn := totalSatoshiIn
|
|
totalSatoshiIn += originTxSatoshi
|
|
if totalSatoshiIn < lastSatoshiIn ||
|
|
totalSatoshiIn > util.MaxSatoshi {
|
|
str := fmt.Sprintf("total value of all transaction "+
|
|
"inputs is %v which is higher than max "+
|
|
"allowed value of %v", totalSatoshiIn,
|
|
util.MaxSatoshi)
|
|
return 0, ruleError(ErrBadTxOutValue, str)
|
|
}
|
|
}
|
|
|
|
// Calculate the total output amount for this transaction. It is safe
|
|
// to ignore overflow and out of range errors here because those error
|
|
// conditions would have already been caught by checkTransactionSanity.
|
|
var totalSatoshiOut uint64
|
|
for _, txOut := range tx.MsgTx().TxOut {
|
|
totalSatoshiOut += txOut.Value
|
|
}
|
|
|
|
// Ensure the transaction does not spend more than its inputs.
|
|
if totalSatoshiIn < totalSatoshiOut {
|
|
str := fmt.Sprintf("total value of all transaction inputs for "+
|
|
"transaction %v is %v which is less than the amount "+
|
|
"spent of %v", txHash, totalSatoshiIn, totalSatoshiOut)
|
|
return 0, ruleError(ErrSpendTooHigh, str)
|
|
}
|
|
|
|
// NOTE: bitcoind checks if the transaction fees are < 0 here, but that
|
|
// is an impossible condition because of the check above that ensures
|
|
// the inputs are >= the outputs.
|
|
txFeeInSatoshi := totalSatoshiIn - totalSatoshiOut
|
|
return txFeeInSatoshi, nil
|
|
}
|
|
|
|
// checkConnectBlock performs several checks to confirm connecting the passed
|
|
// block to the chain represented by the passed view does not violate any rules.
|
|
// In addition, the passed view is updated to spend all of the referenced
|
|
// outputs and add all of the new utxos created by block. Thus, the view will
|
|
// represent the state of the chain as if the block were actually connected and
|
|
// consequently the best hash for the view is also updated to passed block.
|
|
//
|
|
// An example of some of the checks performed are ensuring connecting the block
|
|
// would not cause any duplicate transaction hashes for old transactions that
|
|
// aren't already fully spent, double spends, exceeding the maximum allowed
|
|
// signature operations per block, invalid values in relation to the expected
|
|
// block subsidy, or fail transaction script validation.
|
|
//
|
|
// The CheckConnectBlockTemplate function makes use of this function to perform
|
|
// the bulk of its work. The only difference is this function accepts a node
|
|
// which may or may not require reorganization to connect it to the main chain
|
|
// whereas CheckConnectBlockTemplate creates a new node which specifically
|
|
// connects to the end of the current main chain and then calls this function
|
|
// with that node.
|
|
//
|
|
// This function MUST be called with the chain state lock held (for writes).
|
|
func (dag *BlockDAG) checkConnectBlock(node *blockNode, block *util.Block) error {
|
|
// If the side chain blocks end up in the database, a call to
|
|
// CheckBlockSanity should be done here in case a previous version
|
|
// allowed a block that is no longer valid. However, since the
|
|
// implementation only currently uses memory for the side chain blocks,
|
|
// it isn't currently necessary.
|
|
|
|
// The coinbase for the Genesis block is not spendable, so just return
|
|
// an error now.
|
|
if node.hash.IsEqual(dag.dagParams.GenesisHash) {
|
|
str := "the coinbase for the genesis block is not spendable"
|
|
return ruleError(ErrMissingTxOut, str)
|
|
}
|
|
|
|
err := dag.ensureNoDuplicateTx(node, block)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// The number of signature operations must be less than the maximum
|
|
// allowed per block. Note that the preliminary sanity checks on a
|
|
// block also include a check similar to this one, but this check
|
|
// expands the count to include a precise count of pay-to-script-hash
|
|
// signature operations in each of the input transaction public key
|
|
// scripts.
|
|
transactions := block.Transactions()
|
|
totalSigOps := 0
|
|
for i, tx := range transactions {
|
|
numsigOps := CountSigOps(tx)
|
|
// Since the first (and only the first) transaction has
|
|
// already been verified to be a coinbase transaction,
|
|
// use i == 0 as an optimization for the flag to
|
|
// countP2SHSigOps for whether or not the transaction is
|
|
// a coinbase transaction rather than having to do a
|
|
// full coinbase check again.
|
|
numP2SHSigOps, err := CountP2SHSigOps(tx, i == 0, dag.virtual.utxoSet)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
numsigOps += numP2SHSigOps
|
|
|
|
// Check for overflow or going over the limits. We have to do
|
|
// this on every loop iteration to avoid overflow.
|
|
lastSigops := totalSigOps
|
|
totalSigOps += numsigOps
|
|
if totalSigOps < lastSigops || totalSigOps > MaxSigOpsPerBlock {
|
|
str := fmt.Sprintf("block contains too many "+
|
|
"signature operations - got %v, max %v",
|
|
totalSigOps, MaxSigOpsPerBlock)
|
|
return ruleError(ErrTooManySigOps, str)
|
|
}
|
|
}
|
|
|
|
// Perform several checks on the inputs for each transaction. Also
|
|
// accumulate the total fees. This could technically be combined with
|
|
// the loop above instead of running another loop over the transactions,
|
|
// but by separating it we can avoid running the more expensive (though
|
|
// still relatively cheap as compared to running the scripts) checks
|
|
// against all the inputs when the signature operations are out of
|
|
// bounds.
|
|
var totalFees uint64
|
|
for _, tx := range transactions {
|
|
txFee, err := CheckTransactionInputs(tx, node.height, dag.virtual.utxoSet,
|
|
dag.dagParams)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Sum the total fees and ensure we don't overflow the
|
|
// accumulator.
|
|
lastTotalFees := totalFees
|
|
totalFees += txFee
|
|
if totalFees < lastTotalFees {
|
|
return ruleError(ErrBadFees, "total fees for block "+
|
|
"overflows accumulator")
|
|
}
|
|
}
|
|
|
|
// The total output values of the coinbase transaction must not exceed
|
|
// the expected subsidy value plus total transaction fees gained from
|
|
// mining the block. It is safe to ignore overflow and out of range
|
|
// errors here because those error conditions would have already been
|
|
// caught by checkTransactionSanity.
|
|
var totalSatoshiOut uint64
|
|
for _, txOut := range transactions[0].MsgTx().TxOut {
|
|
totalSatoshiOut += txOut.Value
|
|
}
|
|
expectedSatoshiOut := CalcBlockSubsidy(node.height, dag.dagParams) +
|
|
totalFees
|
|
if totalSatoshiOut > expectedSatoshiOut {
|
|
str := fmt.Sprintf("coinbase transaction for block pays %v "+
|
|
"which is more than expected value of %v",
|
|
totalSatoshiOut, expectedSatoshiOut)
|
|
return ruleError(ErrBadCoinbaseValue, str)
|
|
}
|
|
|
|
// Don't run scripts if this node is before the latest known good
|
|
// checkpoint since the validity is verified via the checkpoints (all
|
|
// transactions are included in the merkle root hash and any changes
|
|
// will therefore be detected by the next checkpoint). This is a huge
|
|
// optimization because running the scripts is the most time consuming
|
|
// portion of block handling.
|
|
checkpoint := dag.LatestCheckpoint()
|
|
runScripts := true
|
|
if checkpoint != nil && node.height <= checkpoint.Height {
|
|
runScripts = false
|
|
}
|
|
|
|
scriptFlags := txscript.ScriptNoFlags
|
|
|
|
// We obtain the MTP of the *previous* block in order to
|
|
// determine if transactions in the current block are final.
|
|
medianTime := node.selectedParent.CalcPastMedianTime()
|
|
|
|
// We also enforce the relative sequence number based
|
|
// lock-times within the inputs of all transactions in this
|
|
// candidate block.
|
|
for _, tx := range block.Transactions() {
|
|
// A transaction can only be included within a block
|
|
// once the sequence locks of *all* its inputs are
|
|
// active.
|
|
sequenceLock, err := dag.calcSequenceLock(node, dag.virtual.utxoSet, tx, false)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if !SequenceLockActive(sequenceLock, node.height,
|
|
medianTime) {
|
|
str := fmt.Sprintf("block contains " +
|
|
"transaction whose input sequence " +
|
|
"locks are not met")
|
|
return ruleError(ErrUnfinalizedTx, str)
|
|
}
|
|
}
|
|
|
|
// Now that the inexpensive checks are done and have passed, verify the
|
|
// transactions are actually allowed to spend the coins by running the
|
|
// expensive ECDSA signature check scripts. Doing this last helps
|
|
// prevent CPU exhaustion attacks.
|
|
if runScripts {
|
|
err := checkBlockScripts(block, dag.virtual.utxoSet, scriptFlags, dag.sigCache)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// countSpentOutputs returns the number of utxos the passed block spends.
|
|
func countSpentOutputs(block *util.Block) int {
|
|
// Exclude the coinbase transaction since it can't spend anything.
|
|
var numSpent int
|
|
for _, tx := range block.Transactions()[1:] {
|
|
numSpent += len(tx.MsgTx().TxIn)
|
|
}
|
|
return numSpent
|
|
}
|
|
|
|
// CheckConnectBlockTemplate fully validates that connecting the passed block to
|
|
// the main chain does not violate any consensus rules, aside from the proof of
|
|
// work requirement. The block must connect to the current tip of the main chain.
|
|
//
|
|
// This function is safe for concurrent access.
|
|
func (dag *BlockDAG) CheckConnectBlockTemplate(block *util.Block) error {
|
|
dag.dagLock.Lock()
|
|
defer dag.dagLock.Unlock()
|
|
|
|
// Skip the proof of work check as this is just a block template.
|
|
flags := BFNoPoWCheck
|
|
|
|
// This only checks whether the block can be connected to the tip of the
|
|
// current chain.
|
|
tips := dag.virtual.tips()
|
|
header := block.MsgBlock().Header
|
|
prevHashes := header.PrevBlocks
|
|
if !tips.hashesEqual(prevHashes) {
|
|
str := fmt.Sprintf("previous blocks must be the currents tips %v, "+
|
|
"instead got %v", tips, prevHashes)
|
|
return ruleError(ErrPrevBlockNotBest, str)
|
|
}
|
|
|
|
err := checkBlockSanity(block, dag.dagParams.PowLimit, dag.timeSource, flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
parents, err := lookupPreviousNodes(block, dag)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = dag.checkBlockContext(block, parents, dag.SelectedTip(), flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
newNode := newBlockNode(&header, dag.virtual.tips(), dag.dagParams.K)
|
|
return dag.checkConnectBlock(newNode, block)
|
|
}
|