/root/bitcoin/src/script/miniscript.cpp

Source
// Copyright (c) 2019-present The Bitcoin Core developers
// Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#include <limits>
#include <vector>

#include <primitives/transaction.h>
#include <script/miniscript.h>
#include <script/script.h>
#include <script/solver.h>
#include <span.h>
#include <util/check.h>
#include <util/vector.h>

namespace miniscript {
namespace internal {

Type SanitizeType(Type e) {
    int num_types = (e << "K"_mst) + (e << "V"_mst) + (e << "B"_mst) + (e << "W"_mst);
    if (num_types == 0) return ""_mst; // No valid type, don't care about the rest
    CHECK_NONFATAL(num_types == 1); // K, V, B, W all conflict with each other
    CHECK_NONFATAL(!(e << "z"_mst) || !(e << "o"_mst)); // z conflicts with o
    CHECK_NONFATAL(!(e << "n"_mst) || !(e << "z"_mst)); // n conflicts with z
    CHECK_NONFATAL(!(e << "n"_mst) || !(e << "W"_mst)); // n conflicts with W
    CHECK_NONFATAL(!(e << "V"_mst) || !(e << "d"_mst)); // V conflicts with d
    CHECK_NONFATAL(!(e << "K"_mst) ||  (e << "u"_mst)); // K implies u
    CHECK_NONFATAL(!(e << "V"_mst) || !(e << "u"_mst)); // V conflicts with u
    CHECK_NONFATAL(!(e << "e"_mst) || !(e << "f"_mst)); // e conflicts with f
    CHECK_NONFATAL(!(e << "e"_mst) ||  (e << "d"_mst)); // e implies d
    CHECK_NONFATAL(!(e << "V"_mst) || !(e << "e"_mst)); // V conflicts with e
    CHECK_NONFATAL(!(e << "d"_mst) || !(e << "f"_mst)); // d conflicts with f
    CHECK_NONFATAL(!(e << "V"_mst) ||  (e << "f"_mst)); // V implies f
    CHECK_NONFATAL(!(e << "K"_mst) ||  (e << "s"_mst)); // K implies s
    CHECK_NONFATAL(!(e << "z"_mst) ||  (e << "m"_mst)); // z implies m
    return e;
}

Type ComputeType(Fragment fragment, Type x, Type y, Type z, const std::vector<Type>& sub_types, uint32_t k,
                 size_t data_size, size_t n_subs, size_t n_keys, MiniscriptContext ms_ctx) {
    // Sanity check on data
    if (fragment == Fragment::SHA256 || fragment == Fragment::HASH256) {
        CHECK_NONFATAL(data_size == 32);
    } else if (fragment == Fragment::RIPEMD160 || fragment == Fragment::HASH160) {
        CHECK_NONFATAL(data_size == 20);
    } else {
        CHECK_NONFATAL(data_size == 0);
    }
    // Sanity check on k
    if (fragment == Fragment::OLDER || fragment == Fragment::AFTER) {
        CHECK_NONFATAL(k >= 1 && k < 0x80000000UL);
    } else if (fragment == Fragment::MULTI || fragment == Fragment::MULTI_A) {
        CHECK_NONFATAL(k >= 1 && k <= n_keys);
    } else if (fragment == Fragment::THRESH) {
        CHECK_NONFATAL(k >= 1 && k <= n_subs);
    } else {
        CHECK_NONFATAL(k == 0);
    }
    // Sanity check on subs
    if (fragment == Fragment::AND_V || fragment == Fragment::AND_B || fragment == Fragment::OR_B ||
        fragment == Fragment::OR_C || fragment == Fragment::OR_I || fragment == Fragment::OR_D) {
        CHECK_NONFATAL(n_subs == 2);
    } else if (fragment == Fragment::ANDOR) {
        CHECK_NONFATAL(n_subs == 3);
    } else if (fragment == Fragment::WRAP_A || fragment == Fragment::WRAP_S || fragment == Fragment::WRAP_C ||
               fragment == Fragment::WRAP_D || fragment == Fragment::WRAP_V || fragment == Fragment::WRAP_J ||
               fragment == Fragment::WRAP_N) {
        CHECK_NONFATAL(n_subs == 1);
    } else if (fragment != Fragment::THRESH) {
        CHECK_NONFATAL(n_subs == 0);
    }
    // Sanity check on keys
    if (fragment == Fragment::PK_K || fragment == Fragment::PK_H) {
        CHECK_NONFATAL(n_keys == 1);
    } else if (fragment == Fragment::MULTI) {
        CHECK_NONFATAL(n_keys >= 1 && n_keys <= MAX_PUBKEYS_PER_MULTISIG);
        CHECK_NONFATAL(!IsTapscript(ms_ctx));
    } else if (fragment == Fragment::MULTI_A) {
        CHECK_NONFATAL(n_keys >= 1 && n_keys <= MAX_PUBKEYS_PER_MULTI_A);
        CHECK_NONFATAL(IsTapscript(ms_ctx));
    } else {
        CHECK_NONFATAL(n_keys == 0);
    }

    // Below is the per-fragment logic for computing the expression types.
    // It heavily relies on Type's << operator (where "X << a_mst" means
    // "X has all properties listed in a").
    switch (fragment) {
        case Fragment::PK_K: return "Konudemsxk"_mst;
        case Fragment::PK_H: return "Knudemsxk"_mst;
        case Fragment::OLDER: return
            "g"_mst.If(k & CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG) |
            "h"_mst.If(!(k & CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG)) |
            "Bzfmxk"_mst;
        case Fragment::AFTER: return
            "i"_mst.If(k >= LOCKTIME_THRESHOLD) |
            "j"_mst.If(k < LOCKTIME_THRESHOLD) |
            "Bzfmxk"_mst;
        case Fragment::SHA256: return "Bonudmk"_mst;
        case Fragment::RIPEMD160: return "Bonudmk"_mst;
        case Fragment::HASH256: return "Bonudmk"_mst;
        case Fragment::HASH160: return "Bonudmk"_mst;
        case Fragment::JUST_1: return "Bzufmxk"_mst;
        case Fragment::JUST_0: return "Bzudemsxk"_mst;
        case Fragment::WRAP_A: return
            "W"_mst.If(x << "B"_mst) | // W=B_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "udfems"_mst) | // u=u_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x
            "x"_mst; // x
        case Fragment::WRAP_S: return
            "W"_mst.If(x << "Bo"_mst) | // W=B_x*o_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "udfemsx"_mst); // u=u_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x, x=x_x
        case Fragment::WRAP_C: return
            "B"_mst.If(x << "K"_mst) | // B=K_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "ondfem"_mst) | // o=o_x, n=n_x, d=d_x, f=f_x, e=e_x, m=m_x
            "us"_mst; // u, s
        case Fragment::WRAP_D: return
            "B"_mst.If(x << "Vz"_mst) | // B=V_x*z_x
            "o"_mst.If(x << "z"_mst) | // o=z_x
            "e"_mst.If(x << "f"_mst) | // e=f_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "ms"_mst) | // m=m_x, s=s_x
            // NOTE: 'd:' is 'u' under Tapscript but not P2WSH as MINIMALIF is only a policy rule there.
            "u"_mst.If(IsTapscript(ms_ctx)) |
            "ndx"_mst; // n, d, x
        case Fragment::WRAP_V: return
            "V"_mst.If(x << "B"_mst) | // V=B_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "zonms"_mst) | // z=z_x, o=o_x, n=n_x, m=m_x, s=s_x
            "fx"_mst; // f, x
        case Fragment::WRAP_J: return
            "B"_mst.If(x << "Bn"_mst) | // B=B_x*n_x
            "e"_mst.If(x << "f"_mst) | // e=f_x
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "oums"_mst) | // o=o_x, u=u_x, m=m_x, s=s_x
            "ndx"_mst; // n, d, x
        case Fragment::WRAP_N: return
            (x & "ghijk"_mst) | // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
            (x & "Bzondfems"_mst) | // B=B_x, z=z_x, o=o_x, n=n_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x
            "ux"_mst; // u, x
        case Fragment::AND_V: return
            (y & "KVB"_mst).If(x << "V"_mst) | // B=V_x*B_y, V=V_x*V_y, K=V_x*K_y
            (x & "n"_mst) | (y & "n"_mst).If(x << "z"_mst) | // n=n_x+z_x*n_y
            ((x | y) & "o"_mst).If((x | y) << "z"_mst) | // o=o_x*z_y+z_x*o_y
            (x & y & "dmz"_mst) | // d=d_x*d_y, m=m_x*m_y, z=z_x*z_y
            ((x | y) & "s"_mst) | // s=s_x+s_y
            "f"_mst.If((y << "f"_mst) || (x << "s"_mst)) | // f=f_y+s_x
            (y & "ux"_mst) | // u=u_y, x=x_y
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            "k"_mst.If(((x & y) << "k"_mst) &&
                !(((x << "g"_mst) && (y << "h"_mst)) ||
                ((x << "h"_mst) && (y << "g"_mst)) ||
                ((x << "i"_mst) && (y << "j"_mst)) ||
                ((x << "j"_mst) && (y << "i"_mst)))); // k=k_x*k_y*!(g_x*h_y + h_x*g_y + i_x*j_y + j_x*i_y)
        case Fragment::AND_B: return
            (x & "B"_mst).If(y << "W"_mst) | // B=B_x*W_y
            ((x | y) & "o"_mst).If((x | y) << "z"_mst) | // o=o_x*z_y+z_x*o_y
            (x & "n"_mst) | (y & "n"_mst).If(x << "z"_mst) | // n=n_x+z_x*n_y
            (x & y & "e"_mst).If((x & y) << "s"_mst) | // e=e_x*e_y*s_x*s_y
            (x & y & "dzm"_mst) | // d=d_x*d_y, z=z_x*z_y, m=m_x*m_y
            "f"_mst.If(((x & y) << "f"_mst) || (x << "sf"_mst) || (y << "sf"_mst)) | // f=f_x*f_y + f_x*s_x + f_y*s_y
            ((x | y) & "s"_mst) | // s=s_x+s_y
            "ux"_mst | // u, x
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            "k"_mst.If(((x & y) << "k"_mst) &&
                !(((x << "g"_mst) && (y << "h"_mst)) ||
                ((x << "h"_mst) && (y << "g"_mst)) ||
                ((x << "i"_mst) && (y << "j"_mst)) ||
                ((x << "j"_mst) && (y << "i"_mst)))); // k=k_x*k_y*!(g_x*h_y + h_x*g_y + i_x*j_y + j_x*i_y)
        case Fragment::OR_B: return
            "B"_mst.If(x << "Bd"_mst && y << "Wd"_mst) | // B=B_x*d_x*W_x*d_y
            ((x | y) & "o"_mst).If((x | y) << "z"_mst) | // o=o_x*z_y+z_x*o_y
            (x & y & "m"_mst).If((x | y) << "s"_mst && (x & y) << "e"_mst) | // m=m_x*m_y*e_x*e_y*(s_x+s_y)
            (x & y & "zse"_mst) | // z=z_x*z_y, s=s_x*s_y, e=e_x*e_y
            "dux"_mst | // d, u, x
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            (x & y & "k"_mst); // k=k_x*k_y
        case Fragment::OR_D: return
            (y & "B"_mst).If(x << "Bdu"_mst) | // B=B_y*B_x*d_x*u_x
            (x & "o"_mst).If(y << "z"_mst) | // o=o_x*z_y
            (x & y & "m"_mst).If(x << "e"_mst && (x | y) << "s"_mst) | // m=m_x*m_y*e_x*(s_x+s_y)
            (x & y & "zs"_mst) | // z=z_x*z_y, s=s_x*s_y
            (y & "ufde"_mst) | // u=u_y, f=f_y, d=d_y, e=e_y
            "x"_mst | // x
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            (x & y & "k"_mst); // k=k_x*k_y
        case Fragment::OR_C: return
            (y & "V"_mst).If(x << "Bdu"_mst) | // V=V_y*B_x*u_x*d_x
            (x & "o"_mst).If(y << "z"_mst) | // o=o_x*z_y
            (x & y & "m"_mst).If(x << "e"_mst && (x | y) << "s"_mst) | // m=m_x*m_y*e_x*(s_x+s_y)
            (x & y & "zs"_mst) | // z=z_x*z_y, s=s_x*s_y
            "fx"_mst | // f, x
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            (x & y & "k"_mst); // k=k_x*k_y
        case Fragment::OR_I: return
            (x & y & "VBKufs"_mst) | // V=V_x*V_y, B=B_x*B_y, K=K_x*K_y, u=u_x*u_y, f=f_x*f_y, s=s_x*s_y
            "o"_mst.If((x & y) << "z"_mst) | // o=z_x*z_y
            ((x | y) & "e"_mst).If((x | y) << "f"_mst) | // e=e_x*f_y+f_x*e_y
            (x & y & "m"_mst).If((x | y) << "s"_mst) | // m=m_x*m_y*(s_x+s_y)
            ((x | y) & "d"_mst) | // d=d_x+d_y
            "x"_mst | // x
            ((x | y) & "ghij"_mst) | // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
            (x & y & "k"_mst); // k=k_x*k_y
        case Fragment::ANDOR: return
            (y & z & "BKV"_mst).If(x << "Bdu"_mst) | // B=B_x*d_x*u_x*B_y*B_z, K=B_x*d_x*u_x*K_y*K_z, V=B_x*d_x*u_x*V_y*V_z
            (x & y & z & "z"_mst) | // z=z_x*z_y*z_z
            ((x | (y & z)) & "o"_mst).If((x | (y & z)) << "z"_mst) | // o=o_x*z_y*z_z+z_x*o_y*o_z
            (y & z & "u"_mst) | // u=u_y*u_z
            (z & "f"_mst).If((x << "s"_mst) || (y << "f"_mst)) | // f=(s_x+f_y)*f_z
            (z & "d"_mst) | // d=d_z
            (z & "e"_mst).If(x << "s"_mst || y << "f"_mst) | // e=e_z*(s_x+f_y)
            (x & y & z & "m"_mst).If(x << "e"_mst && (x | y | z) << "s"_mst) | // m=m_x*m_y*m_z*e_x*(s_x+s_y+s_z)
            (z & (x | y) & "s"_mst) | // s=s_z*(s_x+s_y)
            "x"_mst | // x
            ((x | y | z) & "ghij"_mst) | // g=g_x+g_y+g_z, h=h_x+h_y+h_z, i=i_x+i_y+i_z, j=j_x+j_y_j_z
            "k"_mst.If(((x & y & z) << "k"_mst) &&
                !(((x << "g"_mst) && (y << "h"_mst)) ||
                ((x << "h"_mst) && (y << "g"_mst)) ||
                ((x << "i"_mst) && (y << "j"_mst)) ||
                ((x << "j"_mst) && (y << "i"_mst)))); // k=k_x*k_y*k_z* !(g_x*h_y + h_x*g_y + i_x*j_y + j_x*i_y)
        case Fragment::MULTI: {
            return "Bnudemsk"_mst;
        }
        case Fragment::MULTI_A: {
            return "Budemsk"_mst;
        }
        case Fragment::THRESH: {
            bool all_e = true;
            bool all_m = true;
            uint32_t args = 0;
            uint32_t num_s = 0;
            Type acc_tl = "k"_mst;
            for (size_t i = 0; i < sub_types.size(); ++i) {
                Type t = sub_types[i];
                if (!(t << (i ? "Wdu"_mst : "Bdu"_mst))) return ""_mst; // Require Bdu, Wdu, Wdu, ...
                if (!(t << "e"_mst)) all_e = false;
                if (!(t << "m"_mst)) all_m = false;
                if (t << "s"_mst) num_s += 1;
                args += (t << "z"_mst) ? 0 : (t << "o"_mst) ? 1 : 2;
                acc_tl = ((acc_tl | t) & "ghij"_mst) |
                    // Thresh contains a combination of timelocks if it has threshold > 1 and
                    // it contains two different children that have different types of timelocks
                    // Note how if any of the children don't have "k", the parent also does not have "k"
                    "k"_mst.If(((acc_tl & t) << "k"_mst) && ((k <= 1) ||
                        ((k > 1) && !(((acc_tl << "g"_mst) && (t << "h"_mst)) ||
                        ((acc_tl << "h"_mst) && (t << "g"_mst)) ||
                        ((acc_tl << "i"_mst) && (t << "j"_mst)) ||
                        ((acc_tl << "j"_mst) && (t << "i"_mst))))));
            }
            return "Bdu"_mst |
                   "z"_mst.If(args == 0) | // z=all z
                   "o"_mst.If(args == 1) | // o=all z except one o
                   "e"_mst.If(all_e && num_s == n_subs) | // e=all e and all s
                   "m"_mst.If(all_e && all_m && num_s >= n_subs - k) | // m=all e, >=(n-k) s
                   "s"_mst.If(num_s >= n_subs - k + 1) |  // s= >=(n-k+1) s
                   acc_tl; // timelock info
            }
    }
    assert(false);
}

size_t ComputeScriptLen(Fragment fragment, Type sub0typ, size_t subsize, uint32_t k, size_t n_subs,
                        size_t n_keys, MiniscriptContext ms_ctx) {
    switch (fragment) {
        case Fragment::JUST_1:
        case Fragment::JUST_0: return 1;
        case Fragment::PK_K: return IsTapscript(ms_ctx) ? 33 : 34;
        case Fragment::PK_H: return 3 + 21;
        case Fragment::OLDER:
        case Fragment::AFTER: return 1 + BuildScript(k).size();
        case Fragment::HASH256:
        case Fragment::SHA256: return 4 + 2 + 33;
        case Fragment::HASH160:
        case Fragment::RIPEMD160: return 4 + 2 + 21;
        case Fragment::MULTI: return 1 + BuildScript(n_keys).size() + BuildScript(k).size() + 34 * n_keys;
        case Fragment::MULTI_A: return (1 + 32 + 1) * n_keys + BuildScript(k).size() + 1;
        case Fragment::AND_V: return subsize;
        case Fragment::WRAP_V: return subsize + (sub0typ << "x"_mst);
        case Fragment::WRAP_S:
        case Fragment::WRAP_C:
        case Fragment::WRAP_N:
        case Fragment::AND_B:
        case Fragment::OR_B: return subsize + 1;
        case Fragment::WRAP_A:
        case Fragment::OR_C: return subsize + 2;
        case Fragment::WRAP_D:
        case Fragment::OR_D:
        case Fragment::OR_I:
        case Fragment::ANDOR: return subsize + 3;
        case Fragment::WRAP_J: return subsize + 4;
        case Fragment::THRESH: return subsize + n_subs + BuildScript(k).size();
    }
    assert(false);
}

InputStack& InputStack::SetAvailable(Availability avail) {
    available = avail;
    if (avail == Availability::NO) {
        stack.clear();
        size = std::numeric_limits<size_t>::max();
        has_sig = false;
        malleable = false;
        non_canon = false;
    }
    return *this;
}

InputStack& InputStack::SetWithSig() {
    has_sig = true;
    return *this;
}

InputStack& InputStack::SetNonCanon() {
    non_canon = true;
    return *this;
}

InputStack& InputStack::SetMalleable(bool x) {
    malleable = x;
    return *this;
}

InputStack operator+(InputStack a, InputStack b) {
    a.stack = Cat(std::move(a.stack), std::move(b.stack));
    if (a.available != Availability::NO && b.available != Availability::NO) a.size += b.size;
    a.has_sig |= b.has_sig;
    a.malleable |= b.malleable;
    a.non_canon |= b.non_canon;
    if (a.available == Availability::NO || b.available == Availability::NO) {
        a.SetAvailable(Availability::NO);
    } else if (a.available == Availability::MAYBE || b.available == Availability::MAYBE) {
        a.SetAvailable(Availability::MAYBE);
    }
    return a;
}

InputStack operator|(InputStack a, InputStack b) {
    // If only one is invalid, pick the other one. If both are invalid, pick an arbitrary one.
    if (a.available == Availability::NO) return b;
    if (b.available == Availability::NO) return a;
    // If only one of the solutions has a signature, we must pick the other one.
    if (!a.has_sig && b.has_sig) return a;
    if (!b.has_sig && a.has_sig) return b;
    if (!a.has_sig && !b.has_sig) {
        // If neither solution requires a signature, the result is inevitably malleable.
        a.malleable = true;
        b.malleable = true;
    } else {
        // If both options require a signature, prefer the non-malleable one.
        if (b.malleable && !a.malleable) return a;
        if (a.malleable && !b.malleable) return b;
    }
    // Between two malleable or two non-malleable solutions, pick the smaller one between
    // YESes, and the bigger ones between MAYBEs. Prefer YES over MAYBE.
    if (a.available == Availability::YES && b.available == Availability::YES) {
        return std::move(a.size <= b.size ? a : b);
    } else if (a.available == Availability::MAYBE && b.available == Availability::MAYBE) {
        return std::move(a.size >= b.size ? a : b);
    } else if (a.available == Availability::YES) {
        return a;
    } else {
        return b;
    }
}

std::optional<std::vector<Opcode>> DecomposeScript(const CScript& script)
{
    std::vector<Opcode> out;
    CScript::const_iterator it = script.begin(), itend = script.end();
    while (it != itend) {
        std::vector<unsigned char> push_data;
        opcodetype opcode;
        if (!script.GetOp(it, opcode, push_data)) {
            return {};
        } else if (opcode >= OP_1 && opcode <= OP_16) {
            // Deal with OP_n (GetOp does not turn them into pushes).
            push_data.assign(1, CScript::DecodeOP_N(opcode));
        } else if (opcode == OP_CHECKSIGVERIFY) {
            // Decompose OP_CHECKSIGVERIFY into OP_CHECKSIG OP_VERIFY
            out.emplace_back(OP_CHECKSIG, std::vector<unsigned char>());
            opcode = OP_VERIFY;
        } else if (opcode == OP_CHECKMULTISIGVERIFY) {
            // Decompose OP_CHECKMULTISIGVERIFY into OP_CHECKMULTISIG OP_VERIFY
            out.emplace_back(OP_CHECKMULTISIG, std::vector<unsigned char>());
            opcode = OP_VERIFY;
        } else if (opcode == OP_EQUALVERIFY) {
            // Decompose OP_EQUALVERIFY into OP_EQUAL OP_VERIFY
            out.emplace_back(OP_EQUAL, std::vector<unsigned char>());
            opcode = OP_VERIFY;
        } else if (opcode == OP_NUMEQUALVERIFY) {
            // Decompose OP_NUMEQUALVERIFY into OP_NUMEQUAL OP_VERIFY
            out.emplace_back(OP_NUMEQUAL, std::vector<unsigned char>());
            opcode = OP_VERIFY;
        } else if (IsPushdataOp(opcode)) {
            if (!CheckMinimalPush(push_data, opcode)) return {};
        } else if (it != itend && (opcode == OP_CHECKSIG || opcode == OP_CHECKMULTISIG || opcode == OP_EQUAL || opcode == OP_NUMEQUAL) && (*it == OP_VERIFY)) {
            // Rule out non minimal VERIFY sequences
            return {};
        }
        out.emplace_back(opcode, std::move(push_data));
    }
    std::reverse(out.begin(), out.end());
    return out;
}

std::optional<int64_t> ParseScriptNumber(const Opcode& in) {
    if (in.first == OP_0) {
        return 0;
    }
    if (!in.second.empty()) {
        if (IsPushdataOp(in.first) && !CheckMinimalPush(in.second, in.first)) return {};
        try {
            return CScriptNum(in.second, true).GetInt64();
        } catch(const scriptnum_error&) {}
    }
    return {};
}

int FindNextChar(std::span<const char> sp, const char m)
{
    for (int i = 0; i < (int)sp.size(); ++i) {
        if (sp[i] == m) return i;
        // We only search within the current parentheses
        if (sp[i] == ')') break;
    }
    return -1;
}

} // namespace internal
} // namespace miniscript

Coverage Report

Created: 2025-09-19 18:20

Line	Count	Source
1		// Copyright (c) 2019-present The Bitcoin Core developers
2		// Distributed under the MIT software license, see the accompanying
3		// file COPYING or http://www.opensource.org/licenses/mit-license.php.
4
5		#include <limits>
6		#include <vector>
7
8		#include <primitives/transaction.h>
9		#include <script/miniscript.h>
10		#include <script/script.h>
11		#include <script/solver.h>
12		#include <span.h>
13		#include <util/check.h>
14		#include <util/vector.h>
15
16		namespace miniscript {
17		namespace internal {
18
19	0	Type SanitizeType(Type e) {
20	0	int num_types = (e << "K"_mst) + (e << "V"_mst) + (e << "B"_mst) + (e << "W"_mst);
21	0	if (num_types == 0) return ""_mst; // No valid type, don't care about the rest
22	0	CHECK_NONFATAL(num_types == 1); // K, V, B, W all conflict with each other
23	0	CHECK_NONFATAL(!(e << "z"_mst) \|\| !(e << "o"_mst)); // z conflicts with o
24	0	CHECK_NONFATAL(!(e << "n"_mst) \|\| !(e << "z"_mst)); // n conflicts with z
25	0	CHECK_NONFATAL(!(e << "n"_mst) \|\| !(e << "W"_mst)); // n conflicts with W
26	0	CHECK_NONFATAL(!(e << "V"_mst) \|\| !(e << "d"_mst)); // V conflicts with d
27	0	CHECK_NONFATAL(!(e << "K"_mst) \|\| (e << "u"_mst)); // K implies u
28	0	CHECK_NONFATAL(!(e << "V"_mst) \|\| !(e << "u"_mst)); // V conflicts with u
29	0	CHECK_NONFATAL(!(e << "e"_mst) \|\| !(e << "f"_mst)); // e conflicts with f
30	0	CHECK_NONFATAL(!(e << "e"_mst) \|\| (e << "d"_mst)); // e implies d
31	0	CHECK_NONFATAL(!(e << "V"_mst) \|\| !(e << "e"_mst)); // V conflicts with e
32	0	CHECK_NONFATAL(!(e << "d"_mst) \|\| !(e << "f"_mst)); // d conflicts with f
33	0	CHECK_NONFATAL(!(e << "V"_mst) \|\| (e << "f"_mst)); // V implies f
34	0	CHECK_NONFATAL(!(e << "K"_mst) \|\| (e << "s"_mst)); // K implies s
35	0	CHECK_NONFATAL(!(e << "z"_mst) \|\| (e << "m"_mst)); // z implies m
36	0	return e;
37	0	}
38
39		Type ComputeType(Fragment fragment, Type x, Type y, Type z, const std::vector<Type>& sub_types, uint32_t k,
40	0	size_t data_size, size_t n_subs, size_t n_keys, MiniscriptContext ms_ctx) {
41		// Sanity check on data
42	0	if (fragment == Fragment::SHA256 \|\| fragment == Fragment::HASH256) {
43	0	CHECK_NONFATAL(data_size == 32);
44	0	} else if (fragment == Fragment::RIPEMD160 \|\| fragment == Fragment::HASH160) {
45	0	CHECK_NONFATAL(data_size == 20);
46	0	} else {
47	0	CHECK_NONFATAL(data_size == 0);
48	0	}
49		// Sanity check on k
50	0	if (fragment == Fragment::OLDER \|\| fragment == Fragment::AFTER) {
51	0	CHECK_NONFATAL(k >= 1 && k < 0x80000000UL);
52	0	} else if (fragment == Fragment::MULTI \|\| fragment == Fragment::MULTI_A) {
53	0	CHECK_NONFATAL(k >= 1 && k <= n_keys);
54	0	} else if (fragment == Fragment::THRESH) {
55	0	CHECK_NONFATAL(k >= 1 && k <= n_subs);
56	0	} else {
57	0	CHECK_NONFATAL(k == 0);
58	0	}
59		// Sanity check on subs
60	0	if (fragment == Fragment::AND_V \|\| fragment == Fragment::AND_B \|\| fragment == Fragment::OR_B \|\|
61	0	fragment == Fragment::OR_C \|\| fragment == Fragment::OR_I \|\| fragment == Fragment::OR_D) {
62	0	CHECK_NONFATAL(n_subs == 2);
63	0	} else if (fragment == Fragment::ANDOR) {
64	0	CHECK_NONFATAL(n_subs == 3);
65	0	} else if (fragment == Fragment::WRAP_A \|\| fragment == Fragment::WRAP_S \|\| fragment == Fragment::WRAP_C \|\|
66	0	fragment == Fragment::WRAP_D \|\| fragment == Fragment::WRAP_V \|\| fragment == Fragment::WRAP_J \|\|
67	0	fragment == Fragment::WRAP_N) {
68	0	CHECK_NONFATAL(n_subs == 1);
69	0	} else if (fragment != Fragment::THRESH) {
70	0	CHECK_NONFATAL(n_subs == 0);
71	0	}
72		// Sanity check on keys
73	0	if (fragment == Fragment::PK_K \|\| fragment == Fragment::PK_H) {
74	0	CHECK_NONFATAL(n_keys == 1);
75	0	} else if (fragment == Fragment::MULTI) {
76	0	CHECK_NONFATAL(n_keys >= 1 && n_keys <= MAX_PUBKEYS_PER_MULTISIG);
77	0	CHECK_NONFATAL(!IsTapscript(ms_ctx));
78	0	} else if (fragment == Fragment::MULTI_A) {
79	0	CHECK_NONFATAL(n_keys >= 1 && n_keys <= MAX_PUBKEYS_PER_MULTI_A);
80	0	CHECK_NONFATAL(IsTapscript(ms_ctx));
81	0	} else {
82	0	CHECK_NONFATAL(n_keys == 0);
83	0	}
84
85		// Below is the per-fragment logic for computing the expression types.
86		// It heavily relies on Type's << operator (where "X << a_mst" means
87		// "X has all properties listed in a").
88	0	switch (fragment) {
89	0	case Fragment::PK_K: return "Konudemsxk"_mst;
90	0	case Fragment::PK_H: return "Knudemsxk"_mst;
91	0	case Fragment::OLDER: return
92	0	"g"_mst.If(k & CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG) \|
93	0	"h"_mst.If(!(k & CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG)) \|
94	0	"Bzfmxk"_mst;
95	0	case Fragment::AFTER: return
96	0	"i"_mst.If(k >= LOCKTIME_THRESHOLD) \|
97	0	"j"_mst.If(k < LOCKTIME_THRESHOLD) \|
98	0	"Bzfmxk"_mst;
99	0	case Fragment::SHA256: return "Bonudmk"_mst;
100	0	case Fragment::RIPEMD160: return "Bonudmk"_mst;
101	0	case Fragment::HASH256: return "Bonudmk"_mst;
102	0	case Fragment::HASH160: return "Bonudmk"_mst;
103	0	case Fragment::JUST_1: return "Bzufmxk"_mst;
104	0	case Fragment::JUST_0: return "Bzudemsxk"_mst;
105	0	case Fragment::WRAP_A: return
106	0	"W"_mst.If(x << "B"_mst) \| // W=B_x
107	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
108	0	(x & "udfems"_mst) \| // u=u_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x
109	0	"x"_mst; // x
110	0	case Fragment::WRAP_S: return
111	0	"W"_mst.If(x << "Bo"_mst) \| // W=B_x*o_x
112	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
113	0	(x & "udfemsx"_mst); // u=u_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x, x=x_x
114	0	case Fragment::WRAP_C: return
115	0	"B"_mst.If(x << "K"_mst) \| // B=K_x
116	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
117	0	(x & "ondfem"_mst) \| // o=o_x, n=n_x, d=d_x, f=f_x, e=e_x, m=m_x
118	0	"us"_mst; // u, s
119	0	case Fragment::WRAP_D: return
120	0	"B"_mst.If(x << "Vz"_mst) \| // B=V_x*z_x
121	0	"o"_mst.If(x << "z"_mst) \| // o=z_x
122	0	"e"_mst.If(x << "f"_mst) \| // e=f_x
123	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
124	0	(x & "ms"_mst) \| // m=m_x, s=s_x
125		// NOTE: 'd:' is 'u' under Tapscript but not P2WSH as MINIMALIF is only a policy rule there.
126	0	"u"_mst.If(IsTapscript(ms_ctx)) \|
127	0	"ndx"_mst; // n, d, x
128	0	case Fragment::WRAP_V: return
129	0	"V"_mst.If(x << "B"_mst) \| // V=B_x
130	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
131	0	(x & "zonms"_mst) \| // z=z_x, o=o_x, n=n_x, m=m_x, s=s_x
132	0	"fx"_mst; // f, x
133	0	case Fragment::WRAP_J: return
134	0	"B"_mst.If(x << "Bn"_mst) \| // B=B_x*n_x
135	0	"e"_mst.If(x << "f"_mst) \| // e=f_x
136	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
137	0	(x & "oums"_mst) \| // o=o_x, u=u_x, m=m_x, s=s_x
138	0	"ndx"_mst; // n, d, x
139	0	case Fragment::WRAP_N: return
140	0	(x & "ghijk"_mst) \| // g=g_x, h=h_x, i=i_x, j=j_x, k=k_x
141	0	(x & "Bzondfems"_mst) \| // B=B_x, z=z_x, o=o_x, n=n_x, d=d_x, f=f_x, e=e_x, m=m_x, s=s_x
142	0	"ux"_mst; // u, x
143	0	case Fragment::AND_V: return
144	0	(y & "KVB"_mst).If(x << "V"_mst) \| // B=V_xB_y, V=V_xV_y, K=V_x*K_y
145	0	(x & "n"_mst) \| (y & "n"_mst).If(x << "z"_mst) \| // n=n_x+z_x*n_y
146	0	((x \| y) & "o"_mst).If((x \| y) << "z"_mst) \| // o=o_xz_y+z_xo_y
147	0	(x & y & "dmz"_mst) \| // d=d_xd_y, m=m_xm_y, z=z_x*z_y
148	0	((x \| y) & "s"_mst) \| // s=s_x+s_y
149	0	"f"_mst.If((y << "f"_mst) \|\| (x << "s"_mst)) \| // f=f_y+s_x
150	0	(y & "ux"_mst) \| // u=u_y, x=x_y
151	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
152	0	"k"_mst.If(((x & y) << "k"_mst) &&
153	0	!(((x << "g"_mst) && (y << "h"_mst)) \|\|
154	0	((x << "h"_mst) && (y << "g"_mst)) \|\|
155	0	((x << "i"_mst) && (y << "j"_mst)) \|\|
156	0	((x << "j"_mst) && (y << "i"_mst)))); // k=k_xk_y!(g_xh_y + h_xg_y + i_xj_y + j_xi_y)
157	0	case Fragment::AND_B: return
158	0	(x & "B"_mst).If(y << "W"_mst) \| // B=B_x*W_y
159	0	((x \| y) & "o"_mst).If((x \| y) << "z"_mst) \| // o=o_xz_y+z_xo_y
160	0	(x & "n"_mst) \| (y & "n"_mst).If(x << "z"_mst) \| // n=n_x+z_x*n_y
161	0	(x & y & "e"_mst).If((x & y) << "s"_mst) \| // e=e_xe_ys_x*s_y
162	0	(x & y & "dzm"_mst) \| // d=d_xd_y, z=z_xz_y, m=m_x*m_y
163	0	"f"_mst.If(((x & y) << "f"_mst) \|\| (x << "sf"_mst) \|\| (y << "sf"_mst)) \| // f=f_xf_y + f_xs_x + f_y*s_y
164	0	((x \| y) & "s"_mst) \| // s=s_x+s_y
165	0	"ux"_mst \| // u, x
166	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
167	0	"k"_mst.If(((x & y) << "k"_mst) &&
168	0	!(((x << "g"_mst) && (y << "h"_mst)) \|\|
169	0	((x << "h"_mst) && (y << "g"_mst)) \|\|
170	0	((x << "i"_mst) && (y << "j"_mst)) \|\|
171	0	((x << "j"_mst) && (y << "i"_mst)))); // k=k_xk_y!(g_xh_y + h_xg_y + i_xj_y + j_xi_y)
172	0	case Fragment::OR_B: return
173	0	"B"_mst.If(x << "Bd"_mst && y << "Wd"_mst) \| // B=B_xd_xW_x*d_y
174	0	((x \| y) & "o"_mst).If((x \| y) << "z"_mst) \| // o=o_xz_y+z_xo_y
175	0	(x & y & "m"_mst).If((x \| y) << "s"_mst && (x & y) << "e"_mst) \| // m=m_xm_ye_xe_y(s_x+s_y)
176	0	(x & y & "zse"_mst) \| // z=z_xz_y, s=s_xs_y, e=e_x*e_y
177	0	"dux"_mst \| // d, u, x
178	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
179	0	(x & y & "k"_mst); // k=k_x*k_y
180	0	case Fragment::OR_D: return
181	0	(y & "B"_mst).If(x << "Bdu"_mst) \| // B=B_yB_xd_x*u_x
182	0	(x & "o"_mst).If(y << "z"_mst) \| // o=o_x*z_y
183	0	(x & y & "m"_mst).If(x << "e"_mst && (x \| y) << "s"_mst) \| // m=m_xm_ye_x*(s_x+s_y)
184	0	(x & y & "zs"_mst) \| // z=z_xz_y, s=s_xs_y
185	0	(y & "ufde"_mst) \| // u=u_y, f=f_y, d=d_y, e=e_y
186	0	"x"_mst \| // x
187	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
188	0	(x & y & "k"_mst); // k=k_x*k_y
189	0	case Fragment::OR_C: return
190	0	(y & "V"_mst).If(x << "Bdu"_mst) \| // V=V_yB_xu_x*d_x
191	0	(x & "o"_mst).If(y << "z"_mst) \| // o=o_x*z_y
192	0	(x & y & "m"_mst).If(x << "e"_mst && (x \| y) << "s"_mst) \| // m=m_xm_ye_x*(s_x+s_y)
193	0	(x & y & "zs"_mst) \| // z=z_xz_y, s=s_xs_y
194	0	"fx"_mst \| // f, x
195	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
196	0	(x & y & "k"_mst); // k=k_x*k_y
197	0	case Fragment::OR_I: return
198	0	(x & y & "VBKufs"_mst) \| // V=V_xV_y, B=B_xB_y, K=K_xK_y, u=u_xu_y, f=f_xf_y, s=s_xs_y
199	0	"o"_mst.If((x & y) << "z"_mst) \| // o=z_x*z_y
200	0	((x \| y) & "e"_mst).If((x \| y) << "f"_mst) \| // e=e_xf_y+f_xe_y
201	0	(x & y & "m"_mst).If((x \| y) << "s"_mst) \| // m=m_xm_y(s_x+s_y)
202	0	((x \| y) & "d"_mst) \| // d=d_x+d_y
203	0	"x"_mst \| // x
204	0	((x \| y) & "ghij"_mst) \| // g=g_x+g_y, h=h_x+h_y, i=i_x+i_y, j=j_x+j_y
205	0	(x & y & "k"_mst); // k=k_x*k_y
206	0	case Fragment::ANDOR: return
207	0	(y & z & "BKV"_mst).If(x << "Bdu"_mst) \| // B=B_xd_xu_xB_yB_z, K=B_xd_xu_xK_yK_z, V=B_xd_xu_xV_yV_z
208	0	(x & y & z & "z"_mst) \| // z=z_xz_yz_z
209	0	((x \| (y & z)) & "o"_mst).If((x \| (y & z)) << "z"_mst) \| // o=o_xz_yz_z+z_xo_yo_z
210	0	(y & z & "u"_mst) \| // u=u_y*u_z
211	0	(z & "f"_mst).If((x << "s"_mst) \|\| (y << "f"_mst)) \| // f=(s_x+f_y)*f_z
212	0	(z & "d"_mst) \| // d=d_z
213	0	(z & "e"_mst).If(x << "s"_mst \|\| y << "f"_mst) \| // e=e_z*(s_x+f_y)
214	0	(x & y & z & "m"_mst).If(x << "e"_mst && (x \| y \| z) << "s"_mst) \| // m=m_xm_ym_ze_x(s_x+s_y+s_z)
215	0	(z & (x \| y) & "s"_mst) \| // s=s_z*(s_x+s_y)
216	0	"x"_mst \| // x
217	0	((x \| y \| z) & "ghij"_mst) \| // g=g_x+g_y+g_z, h=h_x+h_y+h_z, i=i_x+i_y+i_z, j=j_x+j_y_j_z
218	0	"k"_mst.If(((x & y & z) << "k"_mst) &&
219	0	!(((x << "g"_mst) && (y << "h"_mst)) \|\|
220	0	((x << "h"_mst) && (y << "g"_mst)) \|\|
221	0	((x << "i"_mst) && (y << "j"_mst)) \|\|
222	0	((x << "j"_mst) && (y << "i"_mst)))); // k=k_xk_yk_z* !(g_xh_y + h_xg_y + i_xj_y + j_xi_y)
223	0	case Fragment::MULTI: {
224	0	return "Bnudemsk"_mst;
225	0	}
226	0	case Fragment::MULTI_A: {
227	0	return "Budemsk"_mst;
228	0	}
229	0	case Fragment::THRESH: {
230	0	bool all_e = true;
231	0	bool all_m = true;
232	0	uint32_t args = 0;
233	0	uint32_t num_s = 0;
234	0	Type acc_tl = "k"_mst;
235	0	for (size_t i = 0; i < sub_types.size(); ++i) {
236	0	Type t = sub_types[i];
237	0	if (!(t << (i ? "Wdu"_mst : "Bdu"_mst))) return ""_mst; // Require Bdu, Wdu, Wdu, ...
238	0	if (!(t << "e"_mst)) all_e = false;
239	0	if (!(t << "m"_mst)) all_m = false;
240	0	if (t << "s"_mst) num_s += 1;
241	0	args += (t << "z"_mst) ? 0 : (t << "o"_mst) ? 1 : 2;
242	0	acc_tl = ((acc_tl \| t) & "ghij"_mst) \|
243		// Thresh contains a combination of timelocks if it has threshold > 1 and
244		// it contains two different children that have different types of timelocks
245		// Note how if any of the children don't have "k", the parent also does not have "k"
246	0	"k"_mst.If(((acc_tl & t) << "k"_mst) && ((k <= 1) \|\|
247	0	((k > 1) && !(((acc_tl << "g"_mst) && (t << "h"_mst)) \|\|
248	0	((acc_tl << "h"_mst) && (t << "g"_mst)) \|\|
249	0	((acc_tl << "i"_mst) && (t << "j"_mst)) \|\|
250	0	((acc_tl << "j"_mst) && (t << "i"_mst))))));
251	0	}
252	0	return "Bdu"_mst \|
253	0	"z"_mst.If(args == 0) \| // z=all z
254	0	"o"_mst.If(args == 1) \| // o=all z except one o
255	0	"e"_mst.If(all_e && num_s == n_subs) \| // e=all e and all s
256	0	"m"_mst.If(all_e && all_m && num_s >= n_subs - k) \| // m=all e, >=(n-k) s
257	0	"s"_mst.If(num_s >= n_subs - k + 1) \| // s= >=(n-k+1) s
258	0	acc_tl; // timelock info
259	0	}
260	0	}
261	0	assert(false);
262	0	}
263
264		size_t ComputeScriptLen(Fragment fragment, Type sub0typ, size_t subsize, uint32_t k, size_t n_subs,
265	0	size_t n_keys, MiniscriptContext ms_ctx) {
266	0	switch (fragment) {
267	0	case Fragment::JUST_1:
268	0	case Fragment::JUST_0: return 1;
269	0	case Fragment::PK_K: return IsTapscript(ms_ctx) ? 33 : 34;
270	0	case Fragment::PK_H: return 3 + 21;
271	0	case Fragment::OLDER:
272	0	case Fragment::AFTER: return 1 + BuildScript(k).size();
273	0	case Fragment::HASH256:
274	0	case Fragment::SHA256: return 4 + 2 + 33;
275	0	case Fragment::HASH160:
276	0	case Fragment::RIPEMD160: return 4 + 2 + 21;
277	0	case Fragment::MULTI: return 1 + BuildScript(n_keys).size() + BuildScript(k).size() + 34 * n_keys;
278	0	case Fragment::MULTI_A: return (1 + 32 + 1) * n_keys + BuildScript(k).size() + 1;
279	0	case Fragment::AND_V: return subsize;
280	0	case Fragment::WRAP_V: return subsize + (sub0typ << "x"_mst);
281	0	case Fragment::WRAP_S:
282	0	case Fragment::WRAP_C:
283	0	case Fragment::WRAP_N:
284	0	case Fragment::AND_B:
285	0	case Fragment::OR_B: return subsize + 1;
286	0	case Fragment::WRAP_A:
287	0	case Fragment::OR_C: return subsize + 2;
288	0	case Fragment::WRAP_D:
289	0	case Fragment::OR_D:
290	0	case Fragment::OR_I:
291	0	case Fragment::ANDOR: return subsize + 3;
292	0	case Fragment::WRAP_J: return subsize + 4;
293	0	case Fragment::THRESH: return subsize + n_subs + BuildScript(k).size();
294	0	}
295	0	assert(false);
296	0	}
297
298	0	InputStack& InputStack::SetAvailable(Availability avail) {
299	0	available = avail;
300	0	if (avail == Availability::NO) {
301	0	stack.clear();
302	0	size = std::numeric_limits<size_t>::max();
303	0	has_sig = false;
304	0	malleable = false;
305	0	non_canon = false;
306	0	}
307	0	return *this;
308	0	}
309
310	0	InputStack& InputStack::SetWithSig() {
311	0	has_sig = true;
312	0	return *this;
313	0	}
314
315	0	InputStack& InputStack::SetNonCanon() {
316	0	non_canon = true;
317	0	return *this;
318	0	}
319
320	0	InputStack& InputStack::SetMalleable(bool x) {
321	0	malleable = x;
322	0	return *this;
323	0	}
324
325	0	InputStack operator+(InputStack a, InputStack b) {
326	0	a.stack = Cat(std::move(a.stack), std::move(b.stack));
327	0	if (a.available != Availability::NO && b.available != Availability::NO) a.size += b.size;
328	0	a.has_sig \|= b.has_sig;
329	0	a.malleable \|= b.malleable;
330	0	a.non_canon \|= b.non_canon;
331	0	if (a.available == Availability::NO \|\| b.available == Availability::NO) {
332	0	a.SetAvailable(Availability::NO);
333	0	} else if (a.available == Availability::MAYBE \|\| b.available == Availability::MAYBE) {
334	0	a.SetAvailable(Availability::MAYBE);
335	0	}
336	0	return a;
337	0	}
338
339	0	InputStack operator\|(InputStack a, InputStack b) {
340		// If only one is invalid, pick the other one. If both are invalid, pick an arbitrary one.
341	0	if (a.available == Availability::NO) return b;
342	0	if (b.available == Availability::NO) return a;
343		// If only one of the solutions has a signature, we must pick the other one.
344	0	if (!a.has_sig && b.has_sig) return a;
345	0	if (!b.has_sig && a.has_sig) return b;
346	0	if (!a.has_sig && !b.has_sig) {
347		// If neither solution requires a signature, the result is inevitably malleable.
348	0	a.malleable = true;
349	0	b.malleable = true;
350	0	} else {
351		// If both options require a signature, prefer the non-malleable one.
352	0	if (b.malleable && !a.malleable) return a;
353	0	if (a.malleable && !b.malleable) return b;
354	0	}
355		// Between two malleable or two non-malleable solutions, pick the smaller one between
356		// YESes, and the bigger ones between MAYBEs. Prefer YES over MAYBE.
357	0	if (a.available == Availability::YES && b.available == Availability::YES) {
358	0	return std::move(a.size <= b.size ? a : b);
359	0	} else if (a.available == Availability::MAYBE && b.available == Availability::MAYBE) {
360	0	return std::move(a.size >= b.size ? a : b);
361	0	} else if (a.available == Availability::YES) {
362	0	return a;
363	0	} else {
364	0	return b;
365	0	}
366	0	}
367
368		std::optional<std::vector<Opcode>> DecomposeScript(const CScript& script)
369	0	{
370	0	std::vector<Opcode> out;
371	0	CScript::const_iterator it = script.begin(), itend = script.end();
372	0	while (it != itend) {
373	0	std::vector<unsigned char> push_data;
374	0	opcodetype opcode;
375	0	if (!script.GetOp(it, opcode, push_data)) {
376	0	return {};
377	0	} else if (opcode >= OP_1 && opcode <= OP_16) {
378		// Deal with OP_n (GetOp does not turn them into pushes).
379	0	push_data.assign(1, CScript::DecodeOP_N(opcode));
380	0	} else if (opcode == OP_CHECKSIGVERIFY) {
381		// Decompose OP_CHECKSIGVERIFY into OP_CHECKSIG OP_VERIFY
382	0	out.emplace_back(OP_CHECKSIG, std::vector<unsigned char>());
383	0	opcode = OP_VERIFY;
384	0	} else if (opcode == OP_CHECKMULTISIGVERIFY) {
385		// Decompose OP_CHECKMULTISIGVERIFY into OP_CHECKMULTISIG OP_VERIFY
386	0	out.emplace_back(OP_CHECKMULTISIG, std::vector<unsigned char>());
387	0	opcode = OP_VERIFY;
388	0	} else if (opcode == OP_EQUALVERIFY) {
389		// Decompose OP_EQUALVERIFY into OP_EQUAL OP_VERIFY
390	0	out.emplace_back(OP_EQUAL, std::vector<unsigned char>());
391	0	opcode = OP_VERIFY;
392	0	} else if (opcode == OP_NUMEQUALVERIFY) {
393		// Decompose OP_NUMEQUALVERIFY into OP_NUMEQUAL OP_VERIFY
394	0	out.emplace_back(OP_NUMEQUAL, std::vector<unsigned char>());
395	0	opcode = OP_VERIFY;
396	0	} else if (IsPushdataOp(opcode)) {
397	0	if (!CheckMinimalPush(push_data, opcode)) return {};
398	0	} else if (it != itend && (opcode == OP_CHECKSIG \|\| opcode == OP_CHECKMULTISIG \|\| opcode == OP_EQUAL \|\| opcode == OP_NUMEQUAL) && (*it == OP_VERIFY)) {
399		// Rule out non minimal VERIFY sequences
400	0	return {};
401	0	}
402	0	out.emplace_back(opcode, std::move(push_data));
403	0	}
404	0	std::reverse(out.begin(), out.end());
405	0	return out;
406	0	}
407
408	0	std::optional<int64_t> ParseScriptNumber(const Opcode& in) {
409	0	if (in.first == OP_0) {
410	0	return 0;
411	0	}
412	0	if (!in.second.empty()) {
413	0	if (IsPushdataOp(in.first) && !CheckMinimalPush(in.second, in.first)) return {};
414	0	try {
415	0	return CScriptNum(in.second, true).GetInt64();
416	0	} catch(const scriptnum_error&) {}
417	0	}
418	0	return {};
419	0	}
420
421		int FindNextChar(std::span<const char> sp, const char m)
422	0	{
423	0	for (int i = 0; i < (int)sp.size(); ++i) {
424	0	if (sp[i] == m) return i;
425		// We only search within the current parentheses
426	0	if (sp[i] == ')') break;
427	0	}
428	0	return -1;
429	0	}
430
431		} // namespace internal
432		} // namespace miniscript