/Users/eugenesiegel/btc/bitcoin/src/consensus/tx_check.cpp

Source (jump to first uncovered line)
// Copyright (c) 2017-2021 The Bitcoin Core developers
// Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#include <consensus/tx_check.h>

#include <consensus/amount.h>
#include <primitives/transaction.h>
#include <consensus/validation.h>

bool CheckTransaction(const CTransaction& tx, TxValidationState& state)
{
    // Basic checks that don't depend on any context
    if (tx.vin.empty())
        return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vin-empty");
    if (tx.vout.empty())
        return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-empty");
    // Size limits (this doesn't take the witness into account, as that hasn't been checked for malleability)
    if (::GetSerializeSize(TX_NO_WITNESS(tx)) * WITNESS_SCALE_FACTOR > MAX_BLOCK_WEIGHT) {
        return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-oversize");
    }

    // Check for negative or overflow output values (see CVE-2010-5139)
    CAmount nValueOut = 0;
    for (const auto& txout : tx.vout)
    {
        if (txout.nValue < 0)
            return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-negative");
        if (txout.nValue > MAX_MONEY)
            return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-toolarge");
        nValueOut += txout.nValue;
        if (!MoneyRange(nValueOut))
            return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-txouttotal-toolarge");
    }

    // Check for duplicate inputs (see CVE-2018-17144)
    // While Consensus::CheckTxInputs does check if all inputs of a tx are available, and UpdateCoins marks all inputs
    // of a tx as spent, it does not check if the tx has duplicate inputs.
    // Failure to run this check will result in either a crash or an inflation bug, depending on the implementation of
    // the underlying coins database.
    std::set<COutPoint> vInOutPoints;
    for (const auto& txin : tx.vin) {
        if (!vInOutPoints.insert(txin.prevout).second)
            return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-inputs-duplicate");
    }

    if (tx.IsCoinBase())
    {
        if (tx.vin[0].scriptSig.size() < 2 || tx.vin[0].scriptSig.size() > 100)
            return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-cb-length");
    }
    else
    {
        for (const auto& txin : tx.vin)
            if (txin.prevout.IsNull())
                return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-prevout-null");
    }

    return true;
}

Line	Count	Source (jump to first uncovered line)
1		// Copyright (c) 2017-2021 The Bitcoin Core developers
2		// Distributed under the MIT software license, see the accompanying
3		// file COPYING or http://www.opensource.org/licenses/mit-license.php.
4
5		#include <consensus/tx_check.h>
6
7		#include <consensus/amount.h>
8		#include <primitives/transaction.h>
9		#include <consensus/validation.h>
10
11		bool CheckTransaction(const CTransaction& tx, TxValidationState& state)
12	30.0M	{
13		// Basic checks that don't depend on any context
14	30.0M	if (tx.vin.empty())
15	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vin-empty");
16	30.0M	if (tx.vout.empty())
17	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-empty");
18		// Size limits (this doesn't take the witness into account, as that hasn't been checked for malleability)
19	30.0M	if (::GetSerializeSize(TX_NO_WITNESS(tx)) * WITNESS_SCALE_FACTOR > MAX_BLOCK_WEIGHT) {
20	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-oversize");
21	0	}
22
23		// Check for negative or overflow output values (see CVE-2010-5139)
24	30.0M	CAmount nValueOut = 0;
25	30.0M	for (const auto& txout : tx.vout)
26	59.9M	{
27	59.9M	if (txout.nValue < 0)
28	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-negative");
29	59.9M	if (txout.nValue > MAX_MONEY)
30	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-vout-toolarge");
31	59.9M	nValueOut += txout.nValue;
32	59.9M	if (!MoneyRange(nValueOut))
33	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-txouttotal-toolarge");
34	59.9M	}
35
36		// Check for duplicate inputs (see CVE-2018-17144)
37		// While Consensus::CheckTxInputs does check if all inputs of a tx are available, and UpdateCoins marks all inputs
38		// of a tx as spent, it does not check if the tx has duplicate inputs.
39		// Failure to run this check will result in either a crash or an inflation bug, depending on the implementation of
40		// the underlying coins database.
41	30.0M	std::set<COutPoint> vInOutPoints;
42	30.0M	for (const auto& txin : tx.vin) {
43	30.0M	if (!vInOutPoints.insert(txin.prevout).second)
44	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-inputs-duplicate");
45	30.0M	}
46
47	30.0M	if (tx.IsCoinBase())
48	30.0M	{
49	30.0M	if (tx.vin[0].scriptSig.size() < 2 \|\| tx.vin[0].scriptSig.size() > 100)
50	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-cb-length");
51	30.0M	}
52	0	else
53	0	{
54	0	for (const auto& txin : tx.vin)
55	0	if (txin.prevout.IsNull())
56	0	return state.Invalid(TxValidationResult::TX_CONSENSUS, "bad-txns-prevout-null");
57	0	}
58
59	30.0M	return true;
60	30.0M	}

fuzz coverage

Coverage Report

Created: 2025-06-01 19:34