bitcoinjs-lib/src/transaction.js

455 lines
13 KiB
JavaScript
Raw Normal View History

var BigInteger = require('./jsbn/jsbn');
var Script = require('./script');
var util = require('./util');
var convert = require('./convert');
var ECKey = require('./eckey').ECKey;
2013-10-08 12:45:13 +02:00
var ECDSA = require('./ecdsa');
var Address = require('./address');
var SHA256 = require('crypto-js/sha256');
var Transaction = function (doc) {
2014-01-10 21:17:53 +01:00
if (!(this instanceof Transaction)) { return new Transaction(doc); }
2013-11-02 11:20:09 +01:00
this.version = 1;
this.locktime = 0;
2013-11-02 11:20:09 +01:00
this.ins = [];
this.outs = [];
2014-03-23 20:01:33 +01:00
this.defaultSequence = [255, 255, 255, 255]; // 0xFFFFFFFF
2013-11-02 11:20:09 +01:00
if (doc) {
2014-03-03 04:27:19 +01:00
if (typeof doc == "string" || Array.isArray(doc)) {
2014-03-23 20:01:33 +01:00
doc = Transaction.deserialize(doc);
2013-11-02 11:20:09 +01:00
}
2014-03-23 20:01:33 +01:00
2013-11-02 11:20:09 +01:00
if (doc.hash) this.hash = doc.hash;
if (doc.version) this.version = doc.version;
if (doc.locktime) this.locktime = doc.locktime;
2013-11-02 11:20:09 +01:00
if (doc.ins && doc.ins.length) {
doc.ins.forEach(function(input) {
this.addInput(new TransactionIn(input));
}, this);
2013-11-02 11:20:09 +01:00
}
2014-03-23 20:01:33 +01:00
2013-11-02 11:20:09 +01:00
if (doc.outs && doc.outs.length) {
doc.outs.forEach(function(output) {
this.addOutput(new TransactionOut(output));
}, this);
2013-11-02 11:20:09 +01:00
}
2014-03-23 20:01:33 +01:00
this.hash = this.hash || this.getHash();
2012-01-11 02:40:45 +01:00
}
};
/**
* Create a new txin.
*
2013-10-21 20:07:38 +02:00
* Can be called with any of:
*
2014-03-17 10:49:37 +01:00
* - An existing TransactionIn object
2013-10-21 20:07:38 +02:00
* - A transaction and an index
* - A transaction hash and an index
* - A single string argument of the form txhash:index
*
* Note that this method does not sign the created input.
*/
Transaction.prototype.addInput = function (tx, outIndex) {
2013-10-21 20:07:38 +02:00
if (arguments[0] instanceof TransactionIn) {
this.ins.push(arguments[0]);
}
2013-10-21 20:07:38 +02:00
else if (arguments[0].length > 65) {
var args = arguments[0].split(':');
return this.addInput(args[0], args[1]);
}
2013-10-21 20:07:38 +02:00
else {
2014-03-23 20:02:31 +01:00
var hash = typeof tx === "string" ? tx : tx.hash;
hash = Array.isArray(hash) ? convert.bytesToHex(hash) : hash;
2013-10-21 20:07:38 +02:00
this.ins.push(new TransactionIn({
outpoint: {
2014-03-17 10:49:37 +01:00
hash: hash,
2013-10-21 20:07:38 +02:00
index: outIndex
},
script: new Script(),
sequence: this.defaultSequence
2013-10-21 20:07:38 +02:00
}));
}
};
/**
* Create a new txout.
*
* Can be called with:
*
* i) An existing TransactionOut object
* ii) An address object or an address and a value
* iii) An address:value string
*
*/
Transaction.prototype.addOutput = function (address, value) {
if (arguments[0] instanceof TransactionOut) {
this.outs.push(arguments[0]);
return;
2012-01-11 02:40:45 +01:00
}
2014-03-23 20:01:33 +01:00
if (arguments[0].indexOf(':') >= 0) {
var args = arguments[0].split(':');
address = args[0];
value = parseInt(args[1]);
}
2014-03-23 20:01:33 +01:00
this.outs.push(new TransactionOut({
value: value,
script: Script.createOutputScript(address)
}));
};
/**
* Serialize this transaction.
*
* Returns the transaction as a byte array in the standard Bitcoin binary
* format. This method is byte-perfect, i.e. the resulting byte array can
* be hashed to get the transaction's standard Bitcoin hash.
*/
Transaction.prototype.serialize = function () {
var buffer = [];
2014-03-23 20:01:33 +01:00
buffer = buffer.concat(convert.numToBytes(parseInt(this.version), 4));
buffer = buffer.concat(convert.numToVarInt(this.ins.length));
2013-03-02 18:00:14 +01:00
this.ins.forEach(function(txin) {
// Why do blockchain.info, blockexplorer.com, sx and just about everybody
// else use little-endian hashes? No idea...
buffer = buffer.concat(convert.hexToBytes(txin.outpoint.hash).reverse());
2013-03-02 18:00:14 +01:00
2014-03-23 20:01:33 +01:00
buffer = buffer.concat(convert.numToBytes(parseInt(txin.outpoint.index), 4));
var scriptBytes = txin.script.buffer;
buffer = buffer.concat(convert.numToVarInt(scriptBytes.length));
buffer = buffer.concat(scriptBytes);
buffer = buffer.concat(txin.sequence);
});
buffer = buffer.concat(convert.numToVarInt(this.outs.length));
this.outs.forEach(function(txout) {
buffer = buffer.concat(convert.numToBytes(txout.value,8));
2014-03-23 20:01:33 +01:00
var scriptBytes = txout.script.buffer;
buffer = buffer.concat(convert.numToVarInt(scriptBytes.length));
buffer = buffer.concat(scriptBytes);
2014-03-23 20:01:33 +01:00
});
buffer = buffer.concat(convert.numToBytes(parseInt(this.locktime), 4));
return buffer;
};
Transaction.prototype.serializeHex = function() {
return convert.bytesToHex(this.serialize());
}
2014-03-23 20:00:16 +01:00
//var OP_CODESEPARATOR = 171;
var SIGHASH_ALL = 1;
var SIGHASH_NONE = 2;
var SIGHASH_SINGLE = 3;
var SIGHASH_ANYONECANPAY = 80;
/**
* Hash transaction for signing a specific input.
*
* Bitcoin uses a different hash for each signed transaction input. This
* method copies the transaction, makes the necessary changes based on the
* hashType, serializes and finally hashes the result. This hash can then be
* used to sign the transaction input in question.
*/
Transaction.prototype.hashTransactionForSignature =
function (connectedScript, inIndex, hashType)
{
var txTmp = this.clone();
// In case concatenating two scripts ends up with two codeseparators,
// or an extra one at the end, this prevents all those possible
// incompatibilities.
/*scriptCode = scriptCode.filter(function (val) {
return val !== OP_CODESEPARATOR;
});*/
// Blank out other inputs' signatures
txTmp.ins.forEach(function(txin) {
txin.script = new Script();
});
txTmp.ins[inIndex].script = connectedScript;
2014-03-21 03:15:15 +01:00
// Blank out some of the outputs
if ((hashType & 0x1f) == SIGHASH_NONE) {
txTmp.outs = [];
// Let the others update at will
txTmp.ins.forEach(function(txin, i) {
if (i != inIndex) {
2014-03-21 03:15:15 +01:00
txTmp.ins[i].sequence = 0;
}
});
2014-03-21 03:15:15 +01:00
} else if ((hashType & 0x1f) == SIGHASH_SINGLE) {
// TODO: Implement
}
// Blank out other inputs completely, not recommended for open transactions
if (hashType & SIGHASH_ANYONECANPAY) {
txTmp.ins = [txTmp.ins[inIndex]];
}
var buffer = txTmp.serialize();
2014-03-23 20:01:33 +01:00
buffer = buffer.concat(convert.numToBytes(parseInt(hashType), 4));
buffer = convert.bytesToWordArray(buffer);
2014-03-23 20:01:33 +01:00
return convert.wordArrayToBytes(SHA256(SHA256(buffer)));
};
/**
* Calculate and return the transaction's hash.
2013-10-08 19:41:20 +02:00
* Reverses hash since blockchain.info, blockexplorer.com and others
* use little-endian hashes for some stupid reason
*/
Transaction.prototype.getHash = function ()
{
var buffer = convert.bytesToWordArray(this.serialize());
return convert.wordArrayToBytes(SHA256(SHA256(buffer))).reverse();
};
/**
* Create a copy of this transaction object.
*/
Transaction.prototype.clone = function ()
{
var newTx = new Transaction();
newTx.version = this.version;
newTx.locktime = this.locktime;
this.ins.forEach(function(txin) {
newTx.addInput(txin.clone());
});
this.outs.forEach(function(txout) {
newTx.addOutput(txout.clone());
});
return newTx;
};
/**
* Converts a serialized transaction into a transaction object
*/
Transaction.deserialize = function(buffer) {
2013-11-02 11:20:09 +01:00
if (typeof buffer == "string") {
buffer = convert.hexToBytes(buffer)
2013-11-02 11:20:09 +01:00
}
var pos = 0;
var readAsInt = function(bytes) {
2014-03-23 20:04:43 +01:00
if (bytes === 0) return 0;
pos++;
return buffer[pos-1] + readAsInt(bytes-1) * 256;
}
var readVarInt = function() {
pos++;
if (buffer[pos-1] < 253) {
return buffer[pos-1];
}
return readAsInt(buffer[pos-1] - 251);
}
var readBytes = function(bytes) {
pos += bytes;
return buffer.slice(pos - bytes, pos);
}
var readVarString = function() {
var size = readVarInt();
return readBytes(size);
}
var obj = {
ins: [],
outs: []
}
obj.version = readAsInt(4);
var ins = readVarInt();
2014-03-23 20:02:31 +01:00
var i;
for (i = 0; i < ins; i++) {
obj.ins.push({
outpoint: {
hash: convert.bytesToHex(readBytes(32).reverse()),
index: readAsInt(4)
},
script: new Script(readVarString()),
sequence: readBytes(4)
});
}
var outs = readVarInt();
2014-03-23 20:02:31 +01:00
for (i = 0; i < outs; i++) {
obj.outs.push({
value: convert.bytesToNum(readBytes(8)),
script: new Script(readVarString())
});
}
2014-03-23 20:02:31 +01:00
obj.locktime = readAsInt(4);
return new Transaction(obj);
}
/**
* Signs a standard output at some index with the given key
*/
Transaction.prototype.sign = function(index, key, type) {
type = type || SIGHASH_ALL;
2013-10-08 12:45:13 +02:00
key = new ECKey(key);
2014-03-23 20:01:33 +01:00
// TODO: getPub is slow, sha256ripe160 probably is too.
// This could be sped up a lot by providing these as inputs.
var pub = key.getPub().export('bytes'),
2013-10-08 12:45:13 +02:00
hash160 = util.sha256ripe160(pub),
script = Script.createOutputScript(new Address(hash160)),
hash = this.hashTransactionForSignature( script, index, type),
sig = key.sign(hash).concat([type]);
this.ins[index].script = Script.createInputScript(sig,pub);
}
// Takes outputs of the form [{ output: 'txhash:index', address: 'address' },...]
Transaction.prototype.signWithKeys = function(keys, outputs, type) {
type = type || SIGHASH_ALL;
2014-03-23 20:01:33 +01:00
var addrdata = keys.map(function(key) {
2013-10-21 21:33:35 +02:00
key = new ECKey(key);
return {
key: key,
2014-03-22 08:17:54 +01:00
address: key.getAddress().toString()
}
});
2014-03-23 20:01:33 +01:00
var hmap = {};
outputs.forEach(function(o) {
hmap[o.output] = o;
});
for (var i = 0; i < this.ins.length; i++) {
2014-03-23 20:01:33 +01:00
var outpoint = this.ins[i].outpoint.hash + ':' + this.ins[i].outpoint.index;
var histItem = hmap[outpoint];
if (!histItem) continue;
2014-03-23 20:01:33 +01:00
var thisInputAddrdata = addrdata.filter(function(a) {
return a.address == histItem.address;
});
2014-03-23 20:04:43 +01:00
if (thisInputAddrdata.length === 0) continue;
this.sign(i,thisInputAddrdata[0].key);
}
}
/**
* Signs a P2SH output at some index with the given key
*/
Transaction.prototype.p2shsign = function(index, script, key, type) {
2013-10-08 12:45:13 +02:00
script = new Script(script);
key = new ECKey(key);
type = type || SIGHASH_ALL;
var hash = this.hashTransactionForSignature(script, index, type),
sig = key.sign(hash).concat([type]);
return sig;
}
Transaction.prototype.multisign = Transaction.prototype.p2shsign;
2014-03-23 20:00:16 +01:00
Transaction.prototype.applyMultisigs = function(index, script, sigs/*, type*/) {
2013-11-02 11:20:09 +01:00
this.ins[index].script = Script.createMultiSigInputScript(sigs, script);
}
Transaction.prototype.validateSig = function(index, script, sig, pub) {
2013-10-08 12:45:13 +02:00
script = new Script(script);
var hash = this.hashTransactionForSignature(script,index,1);
return ECDSA.verify(hash, convert.coerceToBytes(sig),
convert.coerceToBytes(pub));
}
2014-03-22 16:48:21 +01:00
Transaction.feePerKb = 20000
Transaction.prototype.estimateFee = function(feePerKb){
var uncompressedInSize = 180
var outSize = 34
var fixedPadding = 34
2014-03-22 16:48:21 +01:00
var feePerKb = feePerKb || Transaction.feePerKb
var size = this.ins.length * uncompressedInSize + this.outs.length * outSize + fixedPadding
2014-03-22 16:48:21 +01:00
return feePerKb * Math.ceil(size / 1000)
2014-03-22 16:48:21 +01:00
}
var TransactionIn = function (data) {
if (typeof data == "string")
this.outpoint = { hash: data.split(':')[0], index: data.split(':')[1] }
else if (data.outpoint)
this.outpoint = data.outpoint
else
this.outpoint = { hash: data.hash, index: data.index }
if (data.scriptSig)
this.script = Script.fromScriptSig(data.scriptSig)
else if (data.script)
this.script = data.script
else
this.script = new Script(data.script)
this.sequence = data.sequence || this.defaultSequence
};
TransactionIn.prototype.clone = function () {
return new TransactionIn({
outpoint: {
hash: this.outpoint.hash,
index: this.outpoint.index
},
script: this.script.clone(),
sequence: this.sequence
});
};
var TransactionOut = function (data) {
this.script =
2013-10-15 07:24:13 +02:00
data.script instanceof Script ? data.script.clone()
2014-03-03 04:27:19 +01:00
: Array.isArray(data.script) ? new Script(data.script)
: typeof data.script == "string" ? new Script(convert.hexToBytes(data.script))
: data.scriptPubKey ? Script.fromScriptSig(data.scriptPubKey)
: data.address ? Script.createOutputScript(data.address)
: new Script();
if (this.script.buffer.length > 0) this.address = this.script.getToAddress();
this.value =
Array.isArray(data.value) ? convert.bytesToNum(data.value)
: "string" == typeof data.value ? parseInt(data.value)
: data.value instanceof BigInteger ? parseInt(data.value.toString())
: data.value;
};
2014-03-23 14:34:52 +01:00
TransactionOut.prototype.clone = function() {
var newTxout = new TransactionOut({
script: this.script.clone(),
value: this.value
});
return newTxout;
};
2014-03-23 14:34:52 +01:00
TransactionOut.prototype.scriptPubKey = function() {
return convert.bytesToHex(this.script.buffer)
}
2014-03-23 20:01:33 +01:00
module.exports = {
Transaction: Transaction,
TransactionIn: TransactionIn,
TransactionOut: TransactionOut
}