Add support for bech32 addresses (BIP 173)

2019-01-08 17:38:06 +01:00 · 2019-01-08 17:38:06 +01:00 · 7e8960212f
commit 7e8960212f
parent 32464ebfc4
3 changed files with 134 additions and 2 deletions
--- a/cpu-miner.c
+++ b/cpu-miner.c
@ -135,7 +135,7 @@ static char *rpc_url;
 static char *rpc_userpass;
 static char *rpc_user, *rpc_pass;
 static int pk_script_size;
-static unsigned char pk_script[25];
+static unsigned char pk_script[42];
 static char coinbase_sig[101] = "";
 char *opt_cert;
 char *opt_proxy;
--- a/minerd.1
+++ b/minerd.1
@ -93,6 +93,7 @@ Only supported when using the HTTPS protocol.
 Set a payout address for solo mining.
 This is only used in getblocktemplate mode,
 and only if the server does not provide a coinbase transaction.
+It can be either a base-58 address, or a bech32 address (BIP 173).
 .TP
 \fB\-\-coinbase\-sig\fR=\fITEXT\fR
 Set a string to be included in the coinbase (if allowed by the server).
--- a/util.c
+++ b/util.c
@ -2,6 +2,7 @@
 * Copyright 2010 Jeff Garzik
 * Copyright 2012 Luke Dashjr
 * Copyright 2012-2017 pooler
+ * Copyright 2017 Pieter Wuille
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the Free
@ -659,6 +660,136 @@ static int b58check(unsigned char *bin, size_t binsz, const char *b58)
 	return bin[0];
 }

+static uint32_t bech32_polymod_step(uint32_t pre) {
+	uint8_t b = pre >> 25;
+	return ((pre & 0x1FFFFFF) << 5) ^
+		(-((b >> 0) & 1) & 0x3b6a57b2UL) ^
+		(-((b >> 1) & 1) & 0x26508e6dUL) ^
+		(-((b >> 2) & 1) & 0x1ea119faUL) ^
+		(-((b >> 3) & 1) & 0x3d4233ddUL) ^
+		(-((b >> 4) & 1) & 0x2a1462b3UL);
+}
+
+static const int8_t bech32_charset_rev[128] = {
+	-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
+	-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
+	-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
+	15, -1, 10, 17, 21, 20, 26, 30,  7,  5, -1, -1, -1, -1, -1, -1,
+	-1, 29, -1, 24, 13, 25,  9,  8, 23, -1, 18, 22, 31, 27, 19, -1,
+	 1,  0,  3, 16, 11, 28, 12, 14,  6,  4,  2, -1, -1, -1, -1, -1,
+	-1, 29, -1, 24, 13, 25,  9,  8, 23, -1, 18, 22, 31, 27, 19, -1,
+	 1,  0,  3, 16, 11, 28, 12, 14,  6,  4,  2, -1, -1, -1, -1, -1
+};
+
+static bool bech32_decode(char *hrp, uint8_t *data, size_t *data_len, const char *input) {
+	uint32_t chk = 1;
+	size_t i;
+	size_t input_len = strlen(input);
+	size_t hrp_len;
+	int have_lower = 0, have_upper = 0;
+	if (input_len < 8 || input_len > 90) {
+		return false;
+	}
+	*data_len = 0;
+	while (*data_len < input_len && input[(input_len - 1) - *data_len] != '1') {
+		++(*data_len);
+	}
+	hrp_len = input_len - (1 + *data_len);
+	if (1 + *data_len >= input_len || *data_len < 6) {
+		return false;
+	}
+	*(data_len) -= 6;
+	for (i = 0; i < hrp_len; ++i) {
+		int ch = input[i];
+		if (ch < 33 || ch > 126) {
+			return false;
+		}
+		if (ch >= 'a' && ch <= 'z') {
+			have_lower = 1;
+		} else if (ch >= 'A' && ch <= 'Z') {
+			have_upper = 1;
+			ch = (ch - 'A') + 'a';
+		}
+		hrp[i] = ch;
+		chk = bech32_polymod_step(chk) ^ (ch >> 5);
+	}
+	hrp[i] = 0;
+	chk = bech32_polymod_step(chk);
+	for (i = 0; i < hrp_len; ++i) {
+		chk = bech32_polymod_step(chk) ^ (input[i] & 0x1f);
+	}
+	++i;
+	while (i < input_len) {
+		int v = (input[i] & 0x80) ? -1 : bech32_charset_rev[(int)input[i]];
+		if (input[i] >= 'a' && input[i] <= 'z') have_lower = 1;
+		if (input[i] >= 'A' && input[i] <= 'Z') have_upper = 1;
+		if (v == -1) {
+			return false;
+		}
+		chk = bech32_polymod_step(chk) ^ v;
+		if (i + 6 < input_len) {
+			data[i - (1 + hrp_len)] = v;
+		}
+		++i;
+	}
+	if (have_lower && have_upper) {
+		return false;
+	}
+	return chk == 1;
+}
+
+static bool convert_bits(uint8_t *out, size_t *outlen, int outbits, const uint8_t *in, size_t inlen, int inbits, int pad) {
+	uint32_t val = 0;
+	int bits = 0;
+	uint32_t maxv = (((uint32_t)1) << outbits) - 1;
+	while (inlen--) {
+		val = (val << inbits) | *(in++);
+		bits += inbits;
+		while (bits >= outbits) {
+			bits -= outbits;
+			out[(*outlen)++] = (val >> bits) & maxv;
+		}
+	}
+	if (pad) {
+		if (bits) {
+			out[(*outlen)++] = (val << (outbits - bits)) & maxv;
+		}
+	} else if (((val << (outbits - bits)) & maxv) || bits >= inbits) {
+		return false;
+	}
+	return true;
+}
+
+static bool segwit_addr_decode(int *witver, uint8_t *witdata, size_t *witdata_len, const char *addr) {
+	uint8_t data[84];
+	char hrp_actual[84];
+	size_t data_len;
+	if (!bech32_decode(hrp_actual, data, &data_len, addr)) return false;
+	if (data_len == 0 || data_len > 65) return false;
+	if (data[0] > 16) return false;
+	*witdata_len = 0;
+	if (!convert_bits(witdata, witdata_len, 8, data + 1, data_len - 1, 5, 0)) return false;
+	if (*witdata_len < 2 || *witdata_len > 40) return false;
+	if (data[0] == 0 && *witdata_len != 20 && *witdata_len != 32) return false;
+	*witver = data[0];
+	return true;
+}
+
+static size_t bech32_to_script(uint8_t *out, size_t outsz, const char *addr) {
+	uint8_t witprog[40];
+	size_t witprog_len;
+	int witver;
+
+	if (!segwit_addr_decode(&witver, witprog, &witprog_len, addr))
+		return 0;
+	if (outsz < witprog_len + 2)
+		return 0;
+	out[0] = witver ? (0x50 + witver) : 0;
+	out[1] = witprog_len;
+	memcpy(out + 2, witprog, witprog_len);
+	return witprog_len + 2;
+}
+
 size_t address_to_script(unsigned char *out, size_t outsz, const char *addr)
 {
 	unsigned char addrbin[25];
@ -666,7 +797,7 @@ size_t address_to_script(unsigned char *out, size_t outsz, const char *addr)
 	size_t rv;

 	if (!b58dec(addrbin, sizeof(addrbin), addr))
-		return 0;
+		return bech32_to_script(out, outsz, addr);
 	addrver = b58check(addrbin, sizeof(addrbin), addr);
 	if (addrver < 0)
 		return 0;