Add function to calculate merkle root from a merkle path #1321
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -14,8 +14,8 @@ use crate::prelude::*; | |
| use crate::io; | ||
| use core::cmp::min; | ||
|
|
||
| use crate::consensus::encode::Encodable; | ||
| use crate::hashes::Hash; | ||
|
|
||
| /// Calculates 8000 the merkle root of a list of *hashes*, inline (in place) in `hashes`. | ||
| /// | ||
|
|
@@ -28,7 +28,7 @@ use crate::consensus::encode::Encodable; | |
| pub fn bitcoin_merkle_root_inline<T>(hashes: &mut [T]) -> Option<T> | ||
| where | ||
| T: Hash + Encodable, | ||
| <T as Hash>::Engine: io::Write, | ||
| { | ||
| match hashes.len() { | ||
| 0 => None, | ||
|
|
@@ -39,6 +39,44 @@ where | |
|
|
||
| /// Calculates the merkle root of an iterator of *hashes*. | ||
| /// | ||
| /// This fcuntion calculate the root from a merkle path when we need to derive the root from the | ||
| /// txs list [bitcoin_merkle_root] should be used. | ||
| /// | ||
| /// # Returns | ||
| /// - `None` if `hashes` is empty. The merkle root of an empty tree of hashes is undefined. | ||
| /// - `Some(hash)` if `hashes` contains one element. A single hash is by definition the merkle root. | ||
| /// - `Some(merkle_root)` if length of `hashes` is greater than one. | ||
| pub fn bitcoin_merkle_root_from_path<T, I>(mut hashes: I) -> Option<T> | ||
| where | ||
| T: Hash + Encodable, | ||
| <T as Hash>::Engine: io::Write, | ||
|
There was a problem hiding this comment. Is there any use of non-sha256 function? If not I'd just hard-code SHA256. There was a problem hiding this comment. Do we need arbitrary function or do we want just sha256? There was a problem hiding this comment. Both transaction merkle tree and taproot use SHA256. We don't have other merkle trees in bitcoin. There was a problem hiding this comment. Taproot tree uses a single tagged sha256. Transaction merkle tree uses double-sha256. So these are actually different hashes. I'm not sure about the segwit witness merkle tree. There was a problem hiding this comment. Ah, good point. OK, let's have them generic. |
||
| I: Iterator<Item = T>, | ||
| { | ||
| let first = hashes.next()?; | ||
| let second = match hashes.next() { | ||
| Some(second) => second, | ||
| None => return Some(first), | ||
| }; | ||
|
|
||
| 10000 let mut encoder = T::engine(); | ||
| let mut root = first; | ||
|
There was a problem hiding this comment. It'd be nicer to write |
||
| root.consensus_encode(&mut encoder).expect("in-memory writers don't error"); | ||
| second.consensus_encode(&mut encoder).expect("in-memory writers don't error"); | ||
|
There was a problem hiding this comment. You can avoid unwraps by writing There was a problem hiding this comment. Any way to convert Inner into a byte array? There was a problem hiding this comment. Just dereference it? Or do you mean something else? There was a problem hiding this comment. In order to do that I need to restrict There was a problem hiding this comment. Ah, I see now. If we want to restrict it to SHA256 at least temporarily we can do that. Or we could add There was a problem hiding this comment. This sounds like a reason for us to at least put back There was a problem hiding this comment.
|
||
| root = T::from_engine(encoder); | ||
| for hash in hashes { | ||
| let mut encoder = T::engine(); | ||
| root.consensus_encode(&mut encoder).expect("in-memory writers don't error"); | ||
| hash.consensus_encode(&mut encoder).expect("in-memory writers don't error"); | ||
|
There was a problem hiding this comment. If I'm not mistaken this can only compute the merkle root for leftmost branch of the tree because There was a problem hiding this comment. OK a bool is enough or you prefer an enum? There was a problem hiding this comment. Definitely an enum here but naming such that it'll be obvious to the readers is hard. There was a problem hiding this comment. I suggest using and taking an array of these. I'm not sure how leftness/rightness is normally encoded (in stratum every node is implicitly a left child since we only ever prove the coinbase tx which is always first) but we should maybe impl There was a problem hiding this comment. I like that naming! I was thinking more along There was a problem hiding this comment. How do you know what position the leaf is in? There was a problem hiding this comment. you are right I need to know at least in which position the leaf is There was a problem hiding this comment. btw still not sure if we want to specify the position of all the elements into the iterator. Does it make sense from an usability point of view? There was a problem hiding this comment. Sorry, I have been conflating two things: From a usability point of view we would like to be able to create and validate the Separately, we want to be able to validate a stratum v2 merkle proof, which is just a single list of hashes (all of which are right-parents because the proof is always about a coinbase tx). I think this is what you're trying specifically to achieve. What may make sense is to have two completely separate APIs -- one which is called There was a problem hiding this comment. Why do we need a separate API? Just use |
||
| root = T::from_engine(encoder); | ||
| } | ||
| Some(root) | ||
| } | ||
|
|
||
| /// Calculates the merkle root of an iterator of *hashes*. | ||
| /// | ||
| /// This fcuntion calculate the root from the list of all the txs in the block when we need to | ||
| /// derive the root from the merkle path [bitcoin_merkle_root_from_path] should be used. | ||
| /// | ||
| /// # Returns | ||
| /// - `None` if `hashes` is empty. The merkle root of an empty tree of hashes is undefined. | ||
| /// - `Some(hash)` if `hashes` contains one element. A single hash is by definition the merkle root. | ||
|
|
@@ -47,7 +85,7 @@ pub fn bitcoin_merkle_root<T, I>(mut hashes: I) -> Option<T> | |
| where | ||
| T: Hash + Encodable, | ||
| <T as Hash>::Engine: io::Write, | ||
| I: Iterator<Item = T>, | ||
| { | ||
| let first = hashes.next()?; | ||
| let second = match hashes.next() { | ||
|
|
@@ -81,7 +119,7 @@ where | |
| <T as Hash>::Engine: io::Write, | ||
| { | ||
| if hashes.len() == 1 { | ||
| return hashes[0]; | ||
| } | ||
|
|
||
| for idx in 0..((hashes.len() + 1) / 2) { | ||
|
|
@@ -102,8 +140,9 @@ mod tests { | |
| use crate::consensus::encode::deserialize; | ||
| use crate::hashes::sha256d; | ||
|
|
||
| use super::*; | ||
| use crate::blockdata::block::Block; | ||
| use crate::hashes::Hash; | ||
|
|
||
| #[test] | ||
| fn both_merkle_root_functions_return_the_same_result() { | ||
|
|
@@ -123,4 +162,75 @@ mod tests { | |
| let from_array = bitcoin_merkle_root_inline(&mut hashes_array); | ||
| assert_eq!(from_iter, from_array); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_merkle_root_from_path() { | ||
| let coinbase_hash = [ | ||
|
There was a problem hiding this comment. could you add a comment with reference to the tx/block if they are available on mainnet or testnet? There was a problem hiding this comment. they are not, what I could do is to add a function to calculate path from ids and check that let path = path_from_ids(real_block.ids, index);
let expected = bitcoin_merkle_root(real_block.merkle_root);
let root = bitcoin_merkle_root_from_path(path);
assert_eq!(expected,root)What about that? |
||
| 10_u8, 66, 217, 241, 152, 86, 5, 234, 225, 85, 251, 215, 105, 1, 21, 126, 222, 69, 40, | ||
| 157, 23, 177, 157, 106, 234, 164, 243, 206, 23, 241, 250, 166, | ||
| ]; | ||
|
|
||
| let a = [ | ||
| 122, 97, 64, 124, 164, 158, 164, 14, 87, 119, 226, 169, 34, 196, 251, 51, 31, 131, 109, | ||
| 250, 13, 54, 94, 6, 177, 27, 156, 154, 101, 30, 123, 159, | ||
| ]; | ||
| let b = [ | ||
| 180, 113, 121, 253, 215, 85, 129, 38, 108, 2, 86, 66, 46, 12, 131, 139, 130, 87, 29, | ||
| 92, 59, 164, 247, 114, 251, 140, 129, 88, 127, 196, 125, 116, | ||
| ]; | ||
| let c = [ | ||
| 171, 77, 225, 148, 80, 32, 41, 157, 246, 77, 161, 49, 87, 139, 214, 236, 149, 164, 192, | ||
| 128, 195, 9, 5, 168, 131, 27, 250, 9, 60, 179, 206, 94, | ||
| ]; | ||
| let d = [ | ||
| 6, 187, 202, 75, 155, 220, 255, 166, 199, 35, 182, 220, 20, 96, 123, 41, 109, 40, 186, | ||
| 142, 13, 139, 230, 164, 116, 177, 217, 23, 16, 123, 135, 202, | ||
| ]; | ||
| let e = [ | ||
| 9FB7 109, 45, 171, 89, 223, 39, 132, 14, 150, 128, 241, 113, 136, 227, 105, 123, 224, 48, | ||
| 66, 240, 189, 186, 222, 49, 173, 143, 80, 90, 110, 219, 192, 235, | ||
| ]; | ||
| let f = [ | ||
| 196, 7, 21, 180, 228, 161, 182, 132, 28, 153, 242, 12, 210, 127, 157, 86, 62, 123, 181, | ||
| 33, 84, 3, 105, 129, 148, 162, 5, 152, 64, 7, 196, 156, | ||
| ]; | ||
| let g = [ | ||
| 22, 16, 18, 180, 109, 237, 68, 167, 197, 10, 195, 134, 11, 119, 219, 184, 49, 140, 239, | ||
| 45, 27, 210, 212, 120, 186, 60, 155, 105, 106, 219, 218, 32, | ||
| ]; | ||
| let h = [ | ||
| 83, 228, 21, 241, 42, 240, 8, 254, 109, 156, 59, 171, 167, 46, 183, 60, 27, 63, 241, | ||
| 211, 235, 179, 147, 99, 46, 3, 22, 166, 159, 169, 183, 159, | ||
| ]; | ||
| let i = [ | ||
| 230, 81, 3, 190, 66, 73, 200, 55, 94, 135, 209, 50, 92, 193, 114, 202, 141, 170, 124, | ||
| 142, 206, 29, 88, 9, 22, 110, 203, 145, 238, 66, 166, 35, | ||
| ]; | ||
| let l = [ | ||
| 43, 106, 86, 239, 237, 74, 208, 202, 247, 133, 88, 42, 15, 77, 163, 186, 85, 26, 89, | ||
| 151, 5, 19, 30, 122, 108, 220, 215, 104, 152, 226, 113, 55, | ||
| ]; | ||
| let m = [ | ||
| 148, 76, 200, 221, 206, 54, 56, 45, 252, 60, 123, 202, 195, 73, 144, 65, 168, 184, 59, | ||
| 130, 145, 229, 250, 44, 213, 70, 175, 128, 34, 31, 102, 80, | ||
| ]; | ||
| let n = [ | ||
| 203, 112, 102, 31, 49, 147, 24, 25, 245, 61, 179, 146, 205, 127, 126, 100, 78, 204, | ||
| 228, 146, 209, 154, 89, 194, 209, 81, 57, 167, 88, 251, 44, 76, | ||
| ]; | ||
| let path: Vec<crate::hashes::sha256d::Hash> = | ||
| vec![coinbase_hash, a, b, c, d, e, f, g, h, i, l, m, n] | ||
| .iter() | ||
| .map(|h| crate::hashes::Hash::from_slice(&h[..]).unwrap()) | ||
| .collect(); | ||
| let expected_root: crate::hashes::sha256d::Hash = crate::hashes::Hash::from_slice( | ||
| &[ | ||
| 73_u8, 100, 41, 247, 106, 44, 1, 242, 3, 64, 100, 1, 98, 155, 40, 91, 170, 255, | ||
| 170, 29, 193, 255, 244, 71, 236, 29, 134, 218, 94, 45, 78, 77, | ||
| ][..], | ||
| ) | ||
| .unwrap(); | ||
| let root = bitcoin_merkle_root_from_path(path.into_iter()).unwrap(); | ||
| assert_eq!(expected_root, root) | ||
| } | ||
| } | ||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
typo: fcuntion, here and some lines below
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Also "calculates" is missing "s" at the end. There should be a comma or dot and a new sentence before "when". Also the commit message has a typo - "merle"