egvm-script/extension/bch.go

package extension

import (
	"bytes"
	"encoding/hex"
	"fmt"

	"github.com/dop251/goja"
	"github.com/gcash/bchd/bchec"
	"github.com/gcash/bchd/chaincfg/chainhash"
	"github.com/gcash/bchd/txscript"
	"github.com/gcash/bchd/wire"
	"github.com/gcash/bchutil"
	"github.com/gcash/bchutil/merkleblock"

	"github.com/smartbch/egvm/egvm-script/utils"
)

type BchTx struct {
	HexTxID  string
	Version  int32
	TxIn     []TxIn
	TxOut    []TxOut
	LockTime uint32
}

type TxIn struct {
	PreviousOutPoint OutPoint
	HexPubkey        string
	Sequence         uint32
	Value            int64
}

type OutPoint struct {
	HexTxID string
	Index   uint32
}

type TxOut struct {
	Value           int64
	HexPubkeyHash   string   // for P2PKH
	HexDataElements []string // the pushed data in OP_RETURN, empty when it's P2PKH
}

func ParseTxInHex(hexStr string) BchTx {
	tx, err := parseTxInHex(hexStr)
	if err != nil {
		panic(goja.NewSymbol("Error in ParseTxInHex: " + err.Error()))
	}
	return *tx
}

func parseTxInHex(hexStr string) (*BchTx, error) {
	data, err := hex.DecodeString(hexStr)
	if err != nil {
		return nil, fmt.Errorf("failed to decode hex string: %w", err)
	}

	msgTx := &wire.MsgTx{}
	err = msgTx.Deserialize(bytes.NewReader(data))
	if err != nil {
		return nil, fmt.Errorf("failed to deserialize tx: %w", err)
	}

	txIn := make([]TxIn, len(msgTx.TxIn))
	for i, msgTxIn := range msgTx.TxIn {
		pubkey, err := getPubkeyFromSigScript(msgTxIn.SignatureScript)
		if err != nil {
			return nil, fmt.Errorf("failed to get pubkey from unlocking script of input#%d, %w", i, err)
		}

		txIn[i] = TxIn{
			PreviousOutPoint: OutPoint{
				HexTxID: msgTxIn.PreviousOutPoint.Hash.String(),
				Index:   msgTxIn.PreviousOutPoint.Index,
			},
			HexPubkey: pubkey,
			Sequence:  msgTxIn.Sequence,
		}
	}

	txOut := make([]TxOut, len(msgTx.TxOut))
	for i, msgTxOut := range msgTx.TxOut {
		txOut[i] = TxOut{
			Value:           msgTxOut.Value,
			HexPubkeyHash:   getPubkeyHashFromPkScript(msgTxOut.PkScript),
			HexDataElements: getOpRetData(msgTxOut.PkScript),
		}
	}

	return &BchTx{
		HexTxID:  msgTx.TxHash().String(),
		Version:  msgTx.Version,
		TxIn:     txIn,
		TxOut:    txOut,
		LockTime: msgTx.LockTime,
	}, nil
}

func SignTxAndSerialize(tx BchTx, privateKeys ...PrivateKey) string {
	hexStr, err := signTxAndSerialize(tx, privateKeys...)
	if err != nil {
		panic(goja.NewSymbol("Error in SignTxAndSerialize: " + err.Error()))
	}
	return hexStr
}

func signTxAndSerialize(tx BchTx, privateKeys ...PrivateKey) (string, error) {
	if len(tx.TxIn) != len(privateKeys) {
		return "", fmt.Errorf("length of tx inputs and private keys mismatch")
	}

	msgTx := wire.NewMsgTx(tx.Version)
	msgTx.LockTime = tx.LockTime
	for idx, in := range tx.TxIn {
		prevTxHash, err := chainhash.NewHashFromStr(in.PreviousOutPoint.HexTxID)
		if err != nil {
			return "", fmt.Errorf("failed to decode prevTxHash of input#%d: %w", idx, err)
		}
		msgTx.AddTxIn(&wire.TxIn{
			PreviousOutPoint: wire.OutPoint{
				Hash:  *prevTxHash,
				Index: in.PreviousOutPoint.Index,
			},
		})
	}
	for idx, out := range tx.TxOut {
		var pkScript []byte
		if out.HexPubkeyHash != "" {
			pubkeyHash, err := hex.DecodeString(out.HexPubkeyHash)
			if err != nil {
				return "", fmt.Errorf("failed to decode pubkeyHash of output#%d, %w", idx, err)
			}
			pkScript, err = payToPubKeyHashPkScript(pubkeyHash)
			if err != nil {
				return "", fmt.Errorf("failed to create pkScript of output#%d, %w", idx, err)
			}
		} else if len(out.HexDataElements) > 0 {
			var err error
			pkScript, err = opRetPkScript(out.HexDataElements)
			if err != nil {
				return "", fmt.Errorf("failed to create pkScript of output#%d, %w", idx, err)
			}
		} else {
			return "", fmt.Errorf("output#%d has no HexPubkeyHash or HexDataElements field", idx)
		}
		msgTx.AddTxOut(&wire.TxOut{
			Value:    out.Value,
			PkScript: pkScript,
		})
	}

	keyMap := make(map[string]*bchec.PrivateKey, len(privateKeys))
	for _, k := range privateKeys {
		privKey := (*bchec.PrivateKey)(k.toECDSA())
		pubKeyBytes := privKey.PubKey().SerializeCompressed()
		keyMap[hex.EncodeToString(pubKeyBytes)] = privKey
	}
	sigHashes := txscript.NewTxSigHashes(msgTx)
	hashType := txscript.SigHashAll | txscript.SigHashForkID
	for idx, in := range msgTx.TxIn {
		// privKey := (*bchec.PrivateKey)(privateKeys[idx].toECDSA())
		privKey, ok := keyMap[tx.TxIn[idx].HexPubkey]
		if !ok {
			return "", fmt.Errorf("no corresponding private key for %s", tx.TxIn[idx].HexPubkey)
		}
		pubKeyBytes, _ := hex.DecodeString(tx.TxIn[idx].HexPubkey)
		pubkeyHash := bchutil.Hash160(pubKeyBytes)

		pubkeyScript, err := payToPubKeyHashPkScript(pubkeyHash)
		if err != nil {
			return "", fmt.Errorf("failed to create locaking script of input#%d, %w", idx, err)
		}

		sigHash, err := txscript.CalcSignatureHash(pubkeyScript, sigHashes, hashType, msgTx,
			idx, tx.TxIn[idx].Value, true)
		if err != nil {
			return "", fmt.Errorf("failed to calc signature hash of input#%d, %w", idx, err)
		}

		sig, err := signTxSigHashECDSA(privKey, sigHash, hashType)
		if err != nil {
			return "", fmt.Errorf("failed to sign sigHash of input#%d, %w", idx, err)
		}

		sigScript, err := txscript.NewScriptBuilder().AddData(sig).AddData(pubKeyBytes).Script()
		if err != nil {
			return "", fmt.Errorf("failed to create unlocking script of input#%d, %w", idx, err)
		}
		in.SignatureScript = sigScript
	}

	return hex.EncodeToString(msgTxToBytes(msgTx)), nil
}

// <sig> <pubkey>
func getPubkeyFromSigScript(sigScript []byte) (string, error) {
	pushes, err := txscript.PushedData(sigScript)
	if err != nil {
		return "", fmt.Errorf("failed to parse sigScript: %w", err)
	}
	if len(pushes) != 2 {
		return "", fmt.Errorf("invalid sigScript")
	}
	//if len(pushes[1]) != 65 {
	//	return "", fmt.Errorf("invalid pubkey")
	//}
	return hex.EncodeToString(pushes[1]), nil
}

// OP_DUP OP_HASH160 <pkh> OP_EQUALVERIFY OP_CHECKSIG
func getPubkeyHashFromPkScript(pkScript []byte) string {
	if len(pkScript) == 25 &&
		pkScript[0] == txscript.OP_DUP &&
		pkScript[1] == txscript.OP_HASH160 &&
		pkScript[23] == txscript.OP_EQUALVERIFY &&
		pkScript[24] == txscript.OP_CHECKSIG {

		return hex.EncodeToString(pkScript[3:23])
	}
	return ""
}

// OP_RETURN <data1> <data2> ...
func getOpRetData(pkScript []byte) (hexData []string) {
	if len(pkScript) > 1 && pkScript[0] == txscript.OP_RETURN {
		data, _ := txscript.PushedData(pkScript)
		hexData = make([]string, len(data))
		for i, item := range data {
			hexData[i] = hex.EncodeToString(item)
		}
	}
	return
}

func payToPubKeyHashPkScript(pubKeyHash []byte) ([]byte, error) {
	return txscript.NewScriptBuilder().
		AddOp(txscript.OP_DUP).
		AddOp(txscript.OP_HASH160).
		AddData(pubKeyHash).
		AddOp(txscript.OP_EQUALVERIFY).
		AddOp(txscript.OP_CHECKSIG).
		Script()
}

func opRetPkScript(hexDataElements []string) ([]byte, error) {
	builder := txscript.NewScriptBuilder().AddOp(txscript.OP_RETURN)
	for i, dataHex := range hexDataElements {
		data, err := hex.DecodeString(dataHex)
		if err != nil {
			return nil, fmt.Errorf("failed to decode data#%d, %w", i, err)
		}
		builder.AddData(data)
	}
	return builder.Script()
}

func signTxSigHashECDSA(privKey *bchec.PrivateKey,
	hash []byte, hashType txscript.SigHashType) ([]byte, error) {

	signature, err := privKey.SignECDSA(hash)
	if err != nil {
		return nil, fmt.Errorf("cannot sign tx input: %s", err)
	}

	return append(signature.Serialize(), byte(hashType)), nil
}

func msgTxToBytes(tx *wire.MsgTx) []byte {
	var buf bytes.Buffer
	_ = tx.Serialize(&buf)
	return buf.Bytes()
}

func MerkleProofToRootAndMatches(f goja.FunctionCall, vm *goja.Runtime) goja.Value {
	proof := utils.GetOneArrayBuffer(f)
	rbuf := bytes.NewReader(proof)
	msg := wire.MsgMerkleBlock{}
	err := msg.BchDecode(rbuf, wire.ProtocolVersion, wire.LatestEncoding)
	if err != nil {
		panic(goja.NewSymbol("Error in MerkleProofToRootAndMatches: " + err.Error()))
	}
	// create partial merkle block from wire message and extract transaction
	// matches
	mBlock := merkleblock.NewMerkleBlockFromMsg(msg)
	merkleRoot := mBlock.ExtractMatches()
	// check if tree traversal was bad or extraction failed
	matches := mBlock.GetMatches()
	if merkleRoot == nil || mBlock.BadTree() || len(matches) == 0 {
		panic(goja.NewSymbol("Error extracting txn matches from merkle tree traversal"))
	}

	result := make([]goja.ArrayBuffer, 1, len(matches)+1)
	hash := bytesReverse(merkleRoot.CloneBytes())
	result[0] = vm.NewArrayBuffer(hash)
	for _, tx := range matches {
		result = append(result, vm.NewArrayBuffer(bytesReverse(tx.CloneBytes())))
	}

	return vm.ToValue(result)
}