PageRenderTime 49ms CodeModel.GetById 24ms RepoModel.GetById 0ms app.codeStats 0ms

/src/merkleblock.h

http://github.com/bitcoin/bitcoin
C Header | 173 lines | 65 code | 29 blank | 79 comment | 5 complexity | 89b976c64a5c909cb7fcbb92c002f236 MD5 | raw file
Possible License(s): GPL-3.0, BSD-3-Clause, MIT 
    

  1. // Copyright (c) 2009-2010 Satoshi Nakamoto
    2. 

  2. // Copyright (c) 2009-2018 The Bitcoin Core developers
    3. 

  3. // Distributed under the MIT software license, see the accompanying
    4. 

  4. // file COPYING or http://www.opensource.org/licenses/mit-license.php.
    5. 

  5. 

  6. #ifndef BITCOIN_MERKLEBLOCK_H
    7. 

  7. #define BITCOIN_MERKLEBLOCK_H
    8. 

  8. 

  9. #include <serialize.h>
    10. 

  10. #include <uint256.h>
    11. 

  11. #include <primitives/block.h>
    12. 

  12. #include <bloom.h>
    13. 

  13. 

  14. #include <vector>
    15. 

  15. 

  16. /** Data structure that represents a partial merkle tree.
    17. 

  17.  *
    18. 

  18.  * It represents a subset of the txid's of a known block, in a way that
    19. 

  19.  * allows recovery of the list of txid's and the merkle root, in an
    20. 

  20.  * authenticated way.
    21. 

  21.  *
    22. 

  22.  * The encoding works as follows: we traverse the tree in depth-first order,
    23. 

  23.  * storing a bit for each traversed node, signifying whether the node is the
    24. 

  24.  * parent of at least one matched leaf txid (or a matched txid itself). In
    25. 

  25.  * case we are at the leaf level, or this bit is 0, its merkle node hash is
    26. 

  26.  * stored, and its children are not explored further. Otherwise, no hash is
    27. 

  27.  * stored, but we recurse into both (or the only) child branch. During
    28. 

  28.  * decoding, the same depth-first traversal is performed, consuming bits and
    29. 

  29.  * hashes as they written during encoding.
    30. 

  30.  *
    31. 

  31.  * The serialization is fixed and provides a hard guarantee about the
    32. 

  32.  * encoded size:
    33. 

  33.  *
    34. 

  34.  *   SIZE <= 10 + ceil(32.25*N)
    35. 

  35.  *
    36. 

  36.  * Where N represents the number of leaf nodes of the partial tree. N itself
    37. 

  37.  * is bounded by:
    38. 

  38.  *
    39. 

  39.  *   N <= total_transactions
    40. 

  40.  *   N <= 1 + matched_transactions*tree_height
    41. 

  41.  *
    42. 

  42.  * The serialization format:
    43. 

  43.  *  - uint32     total_transactions (4 bytes)
    44. 

  44.  *  - varint     number of hashes   (1-3 bytes)
    45. 

  45.  *  - uint256[]  hashes in depth-first order (<= 32*N bytes)
    46. 

  46.  *  - varint     number of bytes of flag bits (1-3 bytes)
    47. 

  47.  *  - byte[]     flag bits, packed per 8 in a byte, least significant bit first (<= 2*N-1 bits)
    48. 

  48.  * The size constraints follow from this.
    49. 

  49.  */
    50. 

  50. class CPartialMerkleTree
    51. 

  51. {
    52. 

  52. protected:
    53. 

  53.     /** the total number of transactions in the block */
    54. 

  54.     unsigned int nTransactions;
    55. 

  55. 

  56.     /** node-is-parent-of-matched-txid bits */
    57. 

  57.     std::vector<bool> vBits;
    58. 

  58. 

  59.     /** txids and internal hashes */
    60. 

  60.     std::vector<uint256> vHash;
    61. 

  61. 

  62.     /** flag set when encountering invalid data */
    63. 

  63.     bool fBad;
    64. 

  64. 

  65.     /** helper function to efficiently calculate the number of nodes at given height in the merkle tree */
    66. 

  66.     unsigned int CalcTreeWidth(int height) const {
    67. 

  67.         return (nTransactions+(1 << height)-1) >> height;
    68. 

  68.     }
    69. 

  69. 

  70.     /** calculate the hash of a node in the merkle tree (at leaf level: the txid's themselves) */
    71. 

  71.     uint256 CalcHash(int height, unsigned int pos, const std::vector<uint256> &vTxid);
    72. 

  72. 

  73.     /** recursive function that traverses tree nodes, storing the data as bits and hashes */
    74. 

  74.     void TraverseAndBuild(int height, unsigned int pos, const std::vector<uint256> &vTxid, const std::vector<bool> &vMatch);
    75. 

  75. 

  76.     /**
    77. 

  77.      * recursive function that traverses tree nodes, consuming the bits and hashes produced by TraverseAndBuild.
    78. 

  78.      * it returns the hash of the respective node and its respective index.
    79. 

  79.      */
    80. 

  80.     uint256 TraverseAndExtract(int height, unsigned int pos, unsigned int &nBitsUsed, unsigned int &nHashUsed, std::vector<uint256> &vMatch, std::vector<unsigned int> &vnIndex);
    81. 

  81. 

  82. public:
    83. 

  83. 

  84.     /** serialization implementation */
    85. 

  85.     ADD_SERIALIZE_METHODS;
    86. 

  86. 

  87.     template <typename Stream, typename Operation>
    88. 

  88.     inline void SerializationOp(Stream& s, Operation ser_action) {
    89. 

  89.         READWRITE(nTransactions);
    90. 

  90.         READWRITE(vHash);
    91. 

  91.         std::vector<unsigned char> vBytes;
    92. 

  92.         if (ser_action.ForRead()) {
    93. 

  93.             READWRITE(vBytes);
    94. 

  94.             CPartialMerkleTree &us = *(const_cast<CPartialMerkleTree*>(this));
    95. 

  95.             us.vBits.resize(vBytes.size() * 8);
    96. 

  96.             for (unsigned int p = 0; p < us.vBits.size(); p++)
    97. 

  97.                 us.vBits[p] = (vBytes[p / 8] & (1 << (p % 8))) != 0;
    98. 

  98.             us.fBad = false;
    99. 

  99.         } else {
    100. 

  100.             vBytes.resize((vBits.size()+7)/8);
    101. 

  101.             for (unsigned int p = 0; p < vBits.size(); p++)
    102. 

  102.                 vBytes[p / 8] |= vBits[p] << (p % 8);
    103. 

  103.             READWRITE(vBytes);
    104. 

  104.         }
    105. 

  105.     }
    106. 

  106. 

  107.     /** Construct a partial merkle tree from a list of transaction ids, and a mask that selects a subset of them */
    108. 

  108.     CPartialMerkleTree(const std::vector<uint256> &vTxid, const std::vector<bool> &vMatch);
    109. 

  109. 

  110.     CPartialMerkleTree();
    111. 

  111. 

  112.     /**
    113. 

  113.      * extract the matching txid's represented by this partial merkle tree
    114. 

  114.      * and their respective indices within the partial tree.
    115. 

  115.      * returns the merkle root, or 0 in case of failure
    116. 

  116.      */
    117. 

  117.     uint256 ExtractMatches(std::vector<uint256> &vMatch, std::vector<unsigned int> &vnIndex);
    118. 

  118. 

  119.     /** Get number of transactions the merkle proof is indicating for cross-reference with
    120. 

  120.      * local blockchain knowledge.
    121. 

  121.      */
    122. 

  122.     unsigned int GetNumTransactions() const { return nTransactions; };
    123. 

  123. 

  124. };
    125. 

  125. 

  126. 

  127. /**
    128. 

  128.  * Used to relay blocks as header + vector<merkle branch>
    129. 

  129.  * to filtered nodes.
    130. 

  130.  *
    131. 

  131.  * NOTE: The class assumes that the given CBlock has *at least* 1 transaction. If the CBlock has 0 txs, it will hit an assertion.
    132. 

  132.  */
    133. 

  133. class CMerkleBlock
    134. 

  134. {
    135. 

  135. public:
    136. 

  136.     /** Public only for unit testing */
    137. 

  137.     CBlockHeader header;
    138. 

  138.     CPartialMerkleTree txn;
    139. 

  139. 

  140.     /**
    141. 

  141.      * Public only for unit testing and relay testing (not relayed).
    142. 

  142.      *
    143. 

  143.      * Used only when a bloom filter is specified to allow
    144. 

  144.      * testing the transactions which matched the bloom filter.
    145. 

  145.      */
    146. 

  146.     std::vector<std::pair<unsigned int, uint256> > vMatchedTxn;
    147. 

  147. 

  148.     /**
    149. 

  149.      * Create from a CBlock, filtering transactions according to filter
    150. 

  150.      * Note that this will call IsRelevantAndUpdate on the filter for each transaction,
    151. 

  151.      * thus the filter will likely be modified.
    152. 

  152.      */
    153. 

  153.     CMerkleBlock(const CBlock& block, CBloomFilter& filter) : CMerkleBlock(block, &filter, nullptr) { }
    154. 

  154. 

  155.     // Create from a CBlock, matching the txids in the set
    156. 

  156.     CMerkleBlock(const CBlock& block, const std::set<uint256>& txids) : CMerkleBlock(block, nullptr, &txids) { }
    157. 

  157. 

  158.     CMerkleBlock() {}
    159. 

  159. 

  160.     ADD_SERIALIZE_METHODS;
    161. 

  161. 

  162.     template <typename Stream, typename Operation>
    163. 

  163.     inline void SerializationOp(Stream& s, Operation ser_action) {
    164. 

  164.         READWRITE(header);
    165. 

  165.         READWRITE(txn);
    166. 

  166.     }
    167. 

  167. 

  168. private:
    169. 

  169.     // Combined constructor to consolidate code
    170. 

  170.     CMerkleBlock(const CBlock& block, CBloomFilter* filter, const std::set<uint256>* txids);
    171. 

  171. };
    172. 

  172. 

  173. #endif // BITCOIN_MERKLEBLOCK_H
    174. 

  174.