Line data    Source code

       1             : // Copyright (c) 2017-2021 The Bitcoin Core developers
       2             : // Distributed under the MIT software license, see the accompanying
       3             : // file COPYING or http://www.opensource.org/licenses/mit-license.php.
       4             : 
       5             : #include <consensus/tx_check.h>
       6             : 
       7             : #include <consensus/amount.h>
       8             : #include <primitives/transaction.h>
       9             : #include <consensus/validation.h>
      10             : 
      11       27732 : bool CheckTransaction(const CTransaction& tx, TxValidationState& state)
      12             : {
      13             :     // Basic checks that don't depend on any context
      14       27732 :     if (tx.vin.empty())
      15           0 :         return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vin-empty");
      16       27732 :     if (tx.vout.empty())
      17           0 :         return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-empty");
      18             :     // Size limits (this doesn't take the witness into account, as that hasn't been checked for malleability)
      19       27732 :     if (::GetSerializeSize(tx, PROTOCOL_VERSION | SERIALIZE_TRANSACTION_NO_WITNESS) * WITNESS_SCALE_FACTOR > MAX_BLOCK_WEIGHT)
      20           0 :         return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-oversize");
      21             : 
      22             :     // Check for negative or overflow output values (see CVE-2010-5139)
      23       27732 :     CAmount nValueOut = 0;
      24      476356 :     for (const auto& txout : tx.vout)
      25             :     {
      26      448624 :         if (txout.nValue < 0)
      27           0 :             return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-negative");
      28      448624 :         if (txout.nValue > MAX_MONEY)
      29           0 :             return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-toolarge");
      30      448624 :         nValueOut += txout.nValue;
      31      448624 :         if (!MoneyRange(nValueOut))
      32           0 :             return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-txouttotal-toolarge");
      33             :     }
      34             : 
      35             :     // Check for duplicate inputs (see CVE-2018-17144)
      36             :     // While Consensus::CheckTxInputs does check if all inputs of a tx are available, and UpdateCoins marks all inputs
      37             :     // of a tx as spent, it does not check if the tx has duplicate inputs.
      38             :     // Failure to run this check will result in either a crash or an inflation bug, depending on the implementation of
      39             :     // the underlying coins database.
      40       27732 :     std::set<COutPoint> vInOutPoints;
      41      352221 :     for (const auto& txin : tx.vin) {
      42      324489 :         if (!vInOutPoints.insert(txin.prevout).second)
      43           0 :             return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-inputs-duplicate");
      44             :     }
      45             : 
      46       27732 :     if (tx.IsCoinBase())
      47             :     {
      48       10319 :         if (tx.vin[0].scriptSig.size() < 2 || tx.vin[0].scriptSig.size() > 100)
      49           0 :             return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-cb-length");
      50       10319 :     }
      51             :     else
      52             :     {
      53      331583 :         for (const auto& txin : tx.vin)
      54      314170 :             if (txin.prevout.IsNull())
      55           0 :                 return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-prevout-null");
      56             :     }
      57             : 
      58       27732 :     return true;
      59       27732 : }