doc/html/sign__transaction_8cpp_source.html

// Copyright (c) 2023 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <bench/bench.h>

#include <addresstype.h>

#include <coins.h>

#include <key.h>

#include <primitives/transaction.h>

#include <pubkey.h>

#include <script/interpreter.h>

#include <script/script.h>

#include <script/sign.h>

#include <uint256.h>

#include <test/util/random.h>

#include <util/translation.h>


enum class InputType {

    P2WPKH, // segwitv0, witness-pubkey-hash (ECDSA signature)

    P2TR,   // segwitv1, taproot key-path spend (Schnorr signature)

};


static void SignTransactionSingleInput(benchmark::Bench& bench, InputType input_type)

{

    ECC_Context ecc_context{};


    FlatSigningProvider keystore;

    std::vector<CScript> prev_spks;


    // Create a bunch of keys / UTXOs to avoid signing with the same key repeatedly

    for (int i = 0; i < 32; i++) {

        CKey privkey = GenerateRandomKey();

        CPubKey pubkey = privkey.GetPubKey();

        CKeyID key_id = pubkey.GetID();

        keystore.keys.emplace(key_id, privkey);

        keystore.pubkeys.emplace(key_id, pubkey);


        // Create specified locking script type

        CScript prev_spk;

        switch (input_type) {

        case InputType::P2WPKH: prev_spk = GetScriptForDestination(WitnessV0KeyHash(pubkey)); break;

        case InputType::P2TR:   prev_spk = GetScriptForDestination(WitnessV1Taproot(XOnlyPubKey{pubkey})); break;

        default: assert(false);

        }

        prev_spks.push_back(prev_spk);

    }


    // Simple 1-input tx with artificial outpoint

    // (note that for the purpose of signing with SIGHASH_ALL we don't need any outputs)

    COutPoint prevout{/*hashIn=*/Txid::FromUint256(uint256::ONE), /*nIn=*/1337};

    CMutableTransaction unsigned_tx;

    unsigned_tx.vin.emplace_back(prevout);


    // Benchmark.

    int iter = 0;

    bench.minEpochIterations(100).run([&] {

        CMutableTransaction tx{unsigned_tx};

        std::map<COutPoint, Coin> coins;

        CScript prev_spk = prev_spks[(iter++) % prev_spks.size()];

        coins[prevout] = Coin(CTxOut(10000, prev_spk), /*nHeightIn=*/100, /*fCoinBaseIn=*/false);

        std::map<int, bilingual_str> input_errors;

        bool complete = SignTransaction(tx, &keystore, coins, SIGHASH_ALL, input_errors);

        assert(complete);

    });

}


static void SignTransactionECDSA(benchmark::Bench& bench)   { SignTransactionSingleInput(bench, InputType::P2WPKH); }

static void SignTransactionSchnorr(benchmark::Bench& bench) { SignTransactionSingleInput(bench, InputType::P2TR);   }


static void SignSchnorrTapTweakBenchmark(benchmark::Bench& bench, bool use_null_merkle_root)

{

    ECC_Context ecc_context{};


    auto key = GenerateRandomKey();

    auto msg = InsecureRand256();

    auto merkle_root = use_null_merkle_root ? uint256() : InsecureRand256();

    auto aux = InsecureRand256();

    std::vector<unsigned char> sig(64);


    bench.minEpochIterations(100).run([&] {

        bool success = key.SignSchnorr(msg, sig, &merkle_root, aux);

        assert(success);

    });

}


static void SignSchnorrWithMerkleRoot(benchmark::Bench& bench)

{

    SignSchnorrTapTweakBenchmark(bench, /*use_null_merkle_root=*/false);

}


static void SignSchnorrWithNullMerkleRoot(benchmark::Bench& bench)

{

    SignSchnorrTapTweakBenchmark(bench, /*use_null_merkle_root=*/true);

}


BENCHMARK(SignTransactionECDSA, benchmark::PriorityLevel::HIGH);

BENCHMARK(SignTransactionSchnorr, benchmark::PriorityLevel::HIGH);

BENCHMARK(SignSchnorrWithMerkleRoot, benchmark::PriorityLevel::HIGH);

BENCHMARK(SignSchnorrWithNullMerkleRoot, benchmark::PriorityLevel::HIGH);

GetScriptForDestination
CScript GetScriptForDestination(const CTxDestination &dest)
Generate a Bitcoin scriptPubKey for the given CTxDestination.
Definition addresstype.cpp:166

addresstype.h

bench.h

BENCHMARK
#define BENCHMARK(n, priority_level)
Definition bench.h:79

ecc_context
ECC_Context ecc_context
Definition bitcoin-wallet.cpp:134

CKey
An encapsulated private key.
Definition key.h:35

CKey::GetPubKey
CPubKey GetPubKey() const
Compute the public key from a private key.
Definition key.cpp:182

CKeyID
A reference to a CKey: the Hash160 of its serialized public key.
Definition pubkey.h:24

COutPoint
An outpoint - a combination of a transaction hash and an index n into its vout.
Definition transaction.h:29

CPubKey
An encapsulated public key.
Definition pubkey.h:34

CPubKey::GetID
CKeyID GetID() const
Get the KeyID of this public key (hash of its serialization)
Definition pubkey.h:164

CScript
Serialized script, used inside transaction inputs and outputs.
Definition script.h:414

CTxOut
An output of a transaction.
Definition transaction.h:150

Coin
A UTXO entry.
Definition coins.h:33

ECC_Context
RAII class initializing and deinitializing global state for elliptic curve support.
Definition key.h:322

XOnlyPubKey
Definition pubkey.h:231

ankerl::nanobench::Bench
Main entry point to nanobench's benchmarking facility.
Definition nanobench.h:627

ankerl::nanobench::Bench::run
Bench & run(char const *benchmarkName, Op &&op)
Repeatedly calls op() based on the configuration, and performs measurements.
Definition nanobench.h:1234

ankerl::nanobench::Bench::minEpochIterations
ANKERL_NANOBENCH(NODISCARD) std Bench & minEpochIterations(uint64_t numIters) noexcept
Sets the minimum number of iterations each epoch should take.

prevector::push_back
void push_back(const T &value)
Definition prevector.h:443

transaction_identifier< false >::FromUint256
static transaction_identifier FromUint256(const uint256 &id)
Definition transaction_identifier.h:40

uint256
256-bit opaque blob.
Definition uint256.h:178

uint256::ONE
static const uint256 ONE
Definition uint256.h:186

interpreter.h

SIGHASH_ALL
@ SIGHASH_ALL
Definition interpreter.h:30

GenerateRandomKey
CKey GenerateRandomKey(bool compressed) noexcept
Definition key.cpp:352

key.h

benchmark::HIGH
@ HIGH
Definition bench.h:47

transaction.h

pubkey.h

SignTransaction
void SignTransaction(CMutableTransaction &mtx, const SigningProvider *keystore, const std::map< COutPoint, Coin > &coins, const UniValue &hashType, UniValue &result)
Sign a transaction with the given keystore and previous transactions.
Definition rawtransaction_util.cpp:305

script.h

sign.h

SignTransactionSingleInput
static void SignTransactionSingleInput(benchmark::Bench &bench, InputType input_type)
Definition sign_transaction.cpp:23

SignTransactionECDSA
static void SignTransactionECDSA(benchmark::Bench &bench)
Definition sign_transaction.cpp:67

SignSchnorrWithMerkleRoot
static void SignSchnorrWithMerkleRoot(benchmark::Bench &bench)
Definition sign_transaction.cpp:86

InputType
InputType
Definition sign_transaction.cpp:18

InputType::P2WPKH
@ P2WPKH

InputType::P2TR
@ P2TR

SignTransactionSchnorr
static void SignTransactionSchnorr(benchmark::Bench &bench)
Definition sign_transaction.cpp:68

SignSchnorrTapTweakBenchmark
static void SignSchnorrTapTweakBenchmark(benchmark::Bench &bench, bool use_null_merkle_root)
Definition sign_transaction.cpp:70

SignSchnorrWithNullMerkleRoot
static void SignSchnorrWithNullMerkleRoot(benchmark::Bench &bench)
Definition sign_transaction.cpp:91

CMutableTransaction
A mutable version of CTransaction.
Definition transaction.h:378

CMutableTransaction::vin
std::vector< CTxIn > vin
Definition transaction.h:379

FlatSigningProvider
Definition signingprovider.h:208

FlatSigningProvider::pubkeys
std::map< CKeyID, CPubKey > pubkeys
Definition signingprovider.h:210

FlatSigningProvider::keys
std::map< CKeyID, CKey > keys
Definition signingprovider.h:212

WitnessV0KeyHash
Definition addresstype.h:80

WitnessV1Taproot
Definition addresstype.h:89

random.h

InsecureRand256
static uint256 InsecureRand256()
Definition random.h:35

translation.h

uint256.h

assert
assert(!tx.IsCoinBase())