libbitcoin
diff --git a/‎Makefile.am‎
Lines changed: 1 addition & 0 deletions b/‎Makefile.am‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎builds/cmake/CMakeLists.txt‎
Lines changed: 1 addition & 0 deletions b/‎builds/cmake/CMakeLists.txt‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎builds/msvc/vs2022/libbitcoin-system/libbitcoin-system.vcxproj‎
Lines changed: 1 addition & 0 deletions b/‎builds/msvc/vs2022/libbitcoin-system/libbitcoin-system.vcxproj‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎builds/msvc/vs2022/libbitcoin-system/libbitcoin-system.vcxproj.filters‎
Lines changed: 3 additions & 0 deletions b/‎builds/msvc/vs2022/libbitcoin-system/libbitcoin-system.vcxproj.filters‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎include/bitcoin/system/chain/enums/coverage.hpp‎
Lines changed: 4 additions & 0 deletions b/‎include/bitcoin/system/chain/enums/coverage.hpp‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎include/bitcoin/system/chain/transaction.hpp‎
Lines changed: 24 additions & 15 deletions b/‎include/bitcoin/system/chain/transaction.hpp‎
Lines changed: 24 additions & 15 deletions
diff --git a/‎include/bitcoin/system/crypto/secp256k1.hpp‎
Lines changed: 22 additions & 16 deletions b/‎include/bitcoin/system/crypto/secp256k1.hpp‎
Lines changed: 22 additions & 16 deletions
diff --git a/‎include/bitcoin/system/error/op_error_t.hpp‎
Lines changed: 1 addition & 0 deletions b/‎include/bitcoin/system/error/op_error_t.hpp‎
Lines changed: 1 addition & 0 deletions
@@ -50,6 +50,7 @@ src_libbitcoin_system_la_SOURCES = \
     src/chain/point.cpp \
     src/chain/script.cpp \
     src/chain/transaction.cpp \
+    src/chain/transaction_sign.cpp \
     src/chain/witness.cpp \
     src/chain/enums/opcode.cpp \
     src/config/base16.cpp \
 
@@ -491,6 +491,7 @@ add_library( ${CANONICAL_LIB_NAME}
     "../../src/chain/point.cpp"
     "../../src/chain/script.cpp"
     "../../src/chain/transaction.cpp"
+    "../../src/chain/transaction_sign.cpp"
     "../../src/chain/witness.cpp"
     "../../src/chain/enums/opcode.cpp"
     "../../src/config/base16.cpp"
 
@@ -102,6 +102,7 @@
     <ClCompile Include="..\..\..\..\src\chain\transaction.cpp">
       <ObjectFileName>$(IntDir)src_chain_transaction.obj</ObjectFileName>
     </ClCompile>
+    <ClCompile Include="..\..\..\..\src\chain\transaction_sign.cpp" />
     <ClCompile Include="..\..\..\..\src\chain\witness.cpp" />
     <ClCompile Include="..\..\..\..\src\config\base16.cpp" />
     <ClCompile Include="..\..\..\..\src\config\base2.cpp" />
 
@@ -279,6 +279,9 @@
     <ClCompile Include="..\..\..\..\src\chain\transaction.cpp">
       <Filter>src\chain</Filter>
     </ClCompile>
+    <ClCompile Include="..\..\..\..\src\chain\transaction_sign.cpp">
+      <Filter>src\chain</Filter>
+    </ClCompile>
     <ClCompile Include="..\..\..\..\src\chain\witness.cpp">
       <Filter>src\chain</Filter>
     </ClCompile>
 
@@ -30,6 +30,10 @@ namespace chain {
 /// Comments from: bitcoin.org/en/developer-guide#standard-transactions
 enum coverage : uint8_t
 {
+    /// BIP341: We define a new hashtype SIGHASH_DEFAULT (value 0x00) which
+    /// results in signing over the whole transaction just as for SIGHASH_ALL.
+    hash_default = 0,
+
     /// The default, signs all the inputs and outputs, protecting everything
     /// except the signature scripts against modification.
     hash_all = bit_right<uint8_t>(0),
 
@@ -138,16 +138,18 @@ class BC_API transaction
     /// Assumes coinbase if prevout not populated (returns only legacy sigops).
     size_t signature_operations(bool bip16, bool bip141) const NOEXCEPT;
 
-    // signature_hash exposed for op_check_multisig caching.
+    /// signature_hash exposed for op_check_multisig caching.
     hash_digest signature_hash(const input_iterator& input, const script& sub,
         uint64_t value, uint8_t sighash_flags, script_version version,
         bool bip143) const NOEXCEPT;
 
+    /// Not used internally.
     bool check_signature(const ec_signature& signature,
         const data_slice& public_key, const script& sub, uint32_t index,
         uint64_t value, uint8_t sighash_flags, script_version version,
         bool bip143) const NOEXCEPT;
 
+    /// Not used internally.
     bool create_endorsement(endorsement& out, const ec_secret& secret,
         const script& sub, uint32_t index, uint64_t value,
         uint8_t sighash_flags, script_version version,
@@ -233,43 +235,50 @@ class BC_API transaction
 
 private:
     typedef struct { size_t nominal; size_t witnessed; } sizes;
+
+    static bool segregated(const chain::inputs& inputs) NOEXCEPT;
+    static bool segregated(const input_cptrs& inputs) NOEXCEPT;
+    static sizes serialized_size(const input_cptrs& inputs,
+        const output_cptrs& outputs, bool segregated) NOEXCEPT;
+
+    void assign_data(reader& source, bool witness) NOEXCEPT;
+    chain::points points() const NOEXCEPT;
+
+    // Signing.
+    // ------------------------------------------------------------------------
+
     typedef struct
     {
         hash_digest outputs;
         hash_digest points;
         hash_digest sequences;
     } sighash_cache;
 
-    static bool segregated(const chain::inputs& inputs) NOEXCEPT;
-    static bool segregated(const input_cptrs& inputs) NOEXCEPT;
-    static sizes serialized_size(const input_cptrs& inputs,
-        const output_cptrs& outputs, bool segregated) NOEXCEPT;
+    static inline coverage mask_sighash(uint8_t sighash_flags) NOEXCEPT;
+    static inline bool is_sighash_valid(uint8_t sighash_flags) NOEXCEPT;
 
-    void assign_data(reader& source, bool witness) NOEXCEPT;
+    hash_digest outputs_hash() const NOEXCEPT;
+    hash_digest points_hash() const NOEXCEPT;
+    hash_digest sequences_hash() const NOEXCEPT;
+    void initialize_sighash_cache() const NOEXCEPT;
 
-    // signature hash
-    hash_digest output_hash(const input_iterator& input) const NOEXCEPT;
     input_iterator input_at(uint32_t index) const NOEXCEPT;
     uint32_t input_index(const input_iterator& input) const NOEXCEPT;
+    hash_digest output_hash(const input_iterator& input) const NOEXCEPT;
+
     void signature_hash_single(writer& sink, const input_iterator& input,
         const script& sub, uint8_t sighash_flags) const NOEXCEPT;
     void signature_hash_none(writer& sink, const input_iterator& input,
         const script& sub, uint8_t sighash_flags) const NOEXCEPT;
     void signature_hash_all(writer& sink, const input_iterator& input,
         const script& sub, uint8_t sighash_flags) const NOEXCEPT;
+
     hash_digest unversioned_signature_hash(const input_iterator& input,
         const script& sub, uint8_t sighash_flags) const NOEXCEPT;
     hash_digest version_0_signature_hash(const input_iterator& input,
         const script& sub, uint64_t value, uint8_t sighash_flags,
         bool bip143) const NOEXCEPT;
 
-    // Caching.
-    chain::points points() const NOEXCEPT;
-    hash_digest outputs_hash() const NOEXCEPT;
-    hash_digest points_hash() const NOEXCEPT;
-    hash_digest sequences_hash() const NOEXCEPT;
-    void initialize_sighash_cache() const NOEXCEPT;
-
     // Transaction should be stored as shared (adds 16 bytes).
     // copy: 5 * 64 + 2 = 41 bytes (vs. 16 when shared).
     uint32_t version_;
 
@@ -201,22 +201,6 @@ BC_API bool sign(ec_signature& out, const ec_secret& secret,
 BC_API bool verify_signature(const data_slice& point, const hash_digest& hash,
     const ec_signature& signature) NOEXCEPT;
 
-/// Schnorr parse/sign/verify
-/// ---------------------------------------------------------------------------
-/// It is recommended to verify a signature after signing.
-
-/// Parse Schnorr endorsement into signature hash type and Schnorr signature.
-BC_API bool parse_schnorr(uint8_t& sighash_flags, ec_signature& signature,
-    const endorsement& endorsement) NOEXCEPT;
-
-/// Create a Schnorr signature using a private key (simple version, no tweaks).
-BC_API bool sign_schnorr(ec_signature& out, const ec_secret& secret,
-    const hash_digest& hash, const hash_digest& auxiliary) NOEXCEPT;
-
-/// Verify an Schnorr signature using a potential x-only point.
-BC_API bool verify_schnorr(const data_slice& x_point, const hash_digest& hash,
-    const ec_signature& signature) NOEXCEPT;
-
 /// ECDSA recoverable sign/recover
 /// ---------------------------------------------------------------------------
 /// It is recommended to verify a signature after signing.
@@ -235,6 +219,28 @@ BC_API bool recover_public(ec_uncompressed& out,
     const recoverable_signature& recoverable,
     const hash_digest& hash) NOEXCEPT;
 
+namespace schnorr {
+
+static constexpr size_t signature_size = 64;
+static constexpr size_t public_key_size = 32;
+
+/// Schnorr parse/sign/verify
+/// ---------------------------------------------------------------------------
+/// It is recommended to verify a signature after signing.
+
+/// Parse Schnorr endorsement into signature hash type and Schnorr signature.
+BC_API bool parse(uint8_t& sighash_flags, ec_signature& signature,
+    const endorsement& endorsement) NOEXCEPT;
+
+/// Create a Schnorr signature using a private key (simple version, no tweaks).
+BC_API bool sign(ec_signature& out, const ec_secret& secret,
+    const hash_digest& hash, const hash_digest& auxiliary) NOEXCEPT;
+
+/// Verify an Schnorr signature using a potential x-only point.
+BC_API bool verify_signature(const data_slice& x_point,
+    const hash_digest& hash, const ec_signature& signature) NOEXCEPT;
+
+} // namespace schnorr
 } // namespace system
 } // namespace libbitcoin
 
 
@@ -102,6 +102,7 @@ enum op_error_t : uint8_t
     op_check_sig_verify2,
     op_check_sig_verify3,
     op_check_sig_verify4,
+    op_check_sig_verify5,
     op_check_sig_verify_parse,
     op_check_multisig_verify1,
     op_check_multisig_verify2,