Make script interpreter independent from storage type CScript

[sipa]

This introduces versions of GetScriptOp, EvalScript, and VerifyScript that operate on scripts represented by Span<const unsigned char>. This makes it possible to use different representation types for scripts, as Spans can be used to refer to scripts stored in any continuous fashion in memory, regardless of the container.

This is also a step towards reducing the consensus-criticalness of CScript, but not entirely. The interpreter code still uses CScript internally for a few purposes (notably DecodeOP_N, and operator<<).

Longer term, the goal is removing the need for all scripts to share the same representation. Currently CScript is a prevector with 28 preallocated bytes - a choice we need because it's favorable for scriptPubKeys in the UTXO cache, but it's pretty terrible for storing scriptSigs. With this change, separate (or even custom) data structures can be used for UTXO scriptPubKeys, and scriptPubKeys/scriptSigs in transactions. One possibility for the latter is storing all scripts in a transaction concatenated in a single allocated area, rather than using separate allocations for each.

[promag]

Looks good, will look more closely later.

[promag]

Note, equivalent to count = std::dynamic_extent in std::span.

[sipa]

Which is the default, so I think it's fine. Generally all methods here mimic a subset of the behaviour of std::span, but sometimes with optional arguments/types omitted.

[laanwj]

Makes interpreter.cpp more self-contained, that's good.
Verified that:

• Consensus IsPayToScriptHash matches CScript::IsPayToScriptHash: copy-only apart from variable names
• Consensus IsWitnessProgram matches CScript::IsWitnessProgram:
  • a size_t becomes ptr_diff_t: not an issue as only positive values are possible (unsigned char + 2)
  • std::vector<unsigned char>(this->begin() + 2, this->end()) becomes script.subspan(2): should be ok, it's defined as Span(m_data + offset, m_size - offset)
• Consensus IsPushOnly matches CScript::IsPushOnly:
  • pc becomes Span instead of a const_iterator: effective behavior is the same
  • GetOp becomes GetScriptOp: GetOp is already defined in that way, so should be fine

Other changes look straightforward.

utACK 91c12000dd97d7b9b9c82d1bbc92c7bbadd3d6ed

[TheBlueMatt]

This seems to be lacking a bunch of motivation. Can you clarify why you want to run a script stored in a span?

[sipa]

@TheBlueMatt They're not stored in a Span; a Span is just a way to refer to a script stored anywhere (vector, array, prevector, whatever custom structure that can hold a continuous sequence of bytes).

I'll add some more motivation.

[TheBlueMatt]

Suresure, I was asking for motivation of where we want to do this in the immediate future (do you have any branches that run scripts in non-prevector form?). The only place I can think of it being useful is in libbitcoinconsensus.

[sipa]

@TheBlueMatt No code to show, but I added some thoughts to the PR description.

[TheBlueMatt]

Ah, the scriptPubKey/scriptSig distinction seems like a reasonable idea. Would love to see a branch with that implemented to see the feasibility of using this in the short-term after a merge.

[ryanofsky]

Related discussion in IRC: https://botbot.me/freenode/bitcoin-core-dev/msg/99929791/

[sipa]

Rebased.

[achow101]

utACK 6ae8a5d

[jb55]

utACK ae8df82ad34a6baaf883411308255e6c6d093c53

[promag]

utACK ae8df82.

[achow101]

re-utACK ae8df82ad34a6baaf883411308255e6c6d093c53

[sipa]

Rebased.

[sipa]

Rebased.

[w0xlt]

Code Review ACK f5ad705

[DrahtBot]

🐙 This pull request conflicts with the target branch and needs rebase.

_{Want to unsubscribe from rebase notifications on this pull request? Just convert this pull request to a "draft".}

[ajtowns]

I think rebasing this to current master only requires:

+++ src/script/interpreter.cpp
-+    return (CHashWriter(HASHER_TAPLEAF) << leaf_version << COMPACTSIZE(script.size()) << script).GetSHA256();
++    return (HashWriter(HASHER_TAPLEAF) << leaf_version << COMPACTSIZE(script.size()) << script).GetSHA256();

+++ src/psbt.h
@@ -889,7 +889,7 @@ struct PSBTOutput
                     } else if (key.size() != 33) {
                         throw std::ios_base::failure("Output Taproot BIP32 keypath key is not at 33 bytes");
                     }
-                    XOnlyPubKey xonly(uint256({key.begin() + 1, key.begin() + 33}));
+                    XOnlyPubKey xonly(Span<const unsigned char>(key).subspan(1, 32));

[achow101]

Closing this as it has not had any activity in a while. If you are interested in continuing work on this, please leave a comment so that it can be reopened.