Script: Difference between revisions
Jump to navigation
Jump to search
Blind reversions of edits by SMTP, see this thread: https://bitcointalk.org/index.php?topic=134843.msg1449369#msg1449369 |
|||
| Line 1: | Line 1: | ||
Bitcoin uses a scripting system for [[transactions]]. [[Wikipedia:FORTH|Forth]]-like, Script is simple, stack-based, and processed from left to right. It is purposefully not Turing-complete, with no loops. | Bitcoin uses a scripting system for [[transactions]]. [[Wikipedia:FORTH|Forth]]-like, Script is simple, stack-based, and processed from left to right. It is purposefully not Turing-complete, with no loops. | ||
A script is essentially a list of instructions recorded with each transaction that describe how the next person wanting to spend the Bitcoins being transferred can gain access to them. | A script is essentially a list of instructions recorded with each transaction that describe how the next person wanting to spend the Bitcoins being transferred can gain access to them. The script for a typical Bitcoin transfer to destination Bitcoin address D simply encumbers future spending of the bitcoins with two things: the spender must provide | ||
The script for a typical Bitcoin transfer to destination Bitcoin address D simply encumbers future spending of the bitcoins with two things: the spender must provide | |||
# a public key that, when hashed, yields destination address D embedded in the script, and | # a public key that, when hashed, yields destination address D embedded in the script, and | ||
# a signature to show evidence of the private key corresponding to the public key just provided. | # a signature to show evidence of the private key corresponding to the public key just provided. | ||
| Line 12: | Line 7: | ||
Scripting provides the flexibility to change the parameters of what's needed to spend transferred Bitcoins. For example, the scripting system could be used to require two private keys, or a combination of several, or even no keys at all. | Scripting provides the flexibility to change the parameters of what's needed to spend transferred Bitcoins. For example, the scripting system could be used to require two private keys, or a combination of several, or even no keys at all. | ||
A transaction is valid if nothing in the combined script triggers failure and the top stack item | A transaction is valid if nothing in the combined script triggers failure and the top stack item is true (non-zero). The party who originally ''sent'' the Bitcoins now being spent, dictates the script operations that will occur ''last'' in order to release them for use in another transaction. The party wanting to spend them must provide the input(s) to the previously recorded script that results in those operations occurring last leaving behind true (non-zero). | ||
Scripts are big-endian. | |||
The stacks hold byte vectors. Byte vectors are interpreted as little-endian variable-length integers with the most significant bit determining the sign of the integer. Thus 0x81 represents -1. 0x80 is another representation of zero (so called negative 0). Byte vectors are interpreted as Booleans where False is represented by any representation of zero, and True is represented by any representation of non-zero. | |||
== | == Words == | ||
This is a list of all Script words (commands/functions). Some of the more complicated opcodes are disabled out of concern that the client might have a bug in their implementation; if a transaction using such an opcode were to be included in the chain any fix would risk forking the chain. | |||
True=1 and False=0. | |||
=== | === Constants === | ||
When talking about scripts, these value-pushing words are usually omitted. | |||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 341: | Line 30: | ||
!Description | !Description | ||
|- | |- | ||
|OP_FALSE | |OP_0, OP_FALSE | ||
|0 | |0 | ||
|0x00 | |0x00 | ||
|Nothing | |Nothing. | ||
| | |(empty value) | ||
| | |An empty array of bytes is pushed onto the stack. (This is not a no-op: an item is added to the stack.) | ||
|- | |- | ||
| | |N/A | ||
|1 - 75 | |1-75 | ||
|0x01 - 0x4b | |0x01-0x4b | ||
|( | |(special) | ||
| | |data | ||
|The next | |The next ''opcode'' bytes is data to be pushed onto the stack | ||
|- | |- | ||
|OP_PUSHDATA1 | |OP_PUSHDATA1 | ||
|76 | |76 | ||
|0x4c | |0x4c | ||
|( | |(special) | ||
| | |data | ||
|The next byte contains the number of bytes to be pushed onto the stack | |The next byte contains the number of bytes to be pushed onto the stack. | ||
|- | |- | ||
|OP_PUSHDATA2 | |OP_PUSHDATA2 | ||
|77 | |77 | ||
|0x4d | |0x4d | ||
|( | |(special) | ||
| | |data | ||
|The next two bytes contain the number of bytes to be pushed onto the stack | |The next two bytes contain the number of bytes to be pushed onto the stack. | ||
|- | |- | ||
|OP_PUSHDATA4 | |OP_PUSHDATA4 | ||
|78 | |78 | ||
|0x4e | |0x4e | ||
|( | |(special) | ||
| | |data | ||
|The next four bytes contain the number of bytes to be pushed onto the stack | |The next four bytes contain the number of bytes to be pushed onto the stack. | ||
|- | |- | ||
|OP_1NEGATE | |OP_1NEGATE | ||
|79 | |79 | ||
|0x4f | |0x4f | ||
|Nothing | |Nothing. | ||
| -1 | | -1 | ||
|The | |The number -1 is pushed onto the stack. | ||
|- | |- | ||
|OP_1, OP_TRUE | |OP_1, OP_TRUE | ||
|81 | |81 | ||
|0x51 | |0x51 | ||
|Nothing | |Nothing. | ||
|1 | |1 | ||
|The | |The number 1 is pushed onto the stack. | ||
|- | |- | ||
|OP_2 - OP_16 | |OP_2-OP_16 | ||
|82 - 96 | |82-96 | ||
|0x52 - 0x60 | |0x52-0x60 | ||
|Nothing | |Nothing. | ||
|2-16 | |2-16 | ||
|The | |The number in the word name (2-16) is pushed onto the stack. | ||
|} | |} | ||
| Line 402: | Line 91: | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 419: | Line 108: | ||
|99 | |99 | ||
|0x63 | |0x63 | ||
| | | colspan="2"|<expression> if [statements] [else [statements]]* endif | ||
| | |If the top stack value is not 0, the statements are executed. The top stack value is removed. | ||
|If the top stack value is not 0, the statements are executed. The top stack value is removed. | |||
|- | |- | ||
|OP_NOTIF | |OP_NOTIF | ||
|100 | |100 | ||
|0x64 | |0x64 | ||
| | | colspan="2"|<expression> if [statements] [else [statements]]* endif | ||
| | |If the top stack value is 0, the statements are executed. The top stack value is removed. | ||
|If the top stack value is 0, the statements are executed. The top stack value is removed. | |||
|- | |- | ||
|OP_ELSE | |OP_ELSE | ||
|103 | |103 | ||
|0x67 | |0x67 | ||
| | | colspan="2"|<expression> if [statements] [else [statements]]* endif | ||
| | |If the preceding OP_IF or OP_NOTIF or OP_ELSE was not executed then these statements are and if the preceding OP_IF or OP_NOTIF or OP_ELSE was executed then these statements are not. | ||
|If the | |||
|- | |- | ||
|OP_ENDIF | |OP_ENDIF | ||
|104 | |104 | ||
|0x68 | |0x68 | ||
| | | colspan="2"|<expression> if [statements] [else [statements]]* endif | ||
| | |Ends an if/else block. | ||
|- | |- | ||
|OP_VERIFY | |OP_VERIFY | ||
|105 | |105 | ||
|0x69 | |0x69 | ||
| | |True / false | ||
|Nothing / False | |Nothing / False | ||
| | |'''Marks transaction as invalid''' if top stack value is not true. True is removed, but false is not. | ||
|- | |- | ||
|OP_RETURN | |OP_RETURN | ||
| Line 456: | Line 141: | ||
|Nothing | |Nothing | ||
|Nothing | |Nothing | ||
|Marks transaction as | |'''Marks transaction as invalid'''. | ||
|} | |} | ||
===Stack | === Stack === | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 473: | Line 158: | ||
|107 | |107 | ||
|0x6b | |0x6b | ||
|x1 | |x1 | ||
|(alt x1 | |(alt)x1 | ||
|Puts the input onto the top of the alt stack. Removes it from the | |Puts the input onto the top of the alt stack. Removes it from the main stack. | ||
|- | |- | ||
|OP_FROMALTSTACK | |OP_FROMALTSTACK | ||
|108 | |108 | ||
|0x6c | |0x6c | ||
|(alt x1 | |(alt)x1 | ||
|x1 | |x1 | ||
|Puts the input onto the top of the | |Puts the input onto the top of the main stack. Removes it from the alt stack. | ||
|- | |- | ||
|OP_IFDUP | |OP_IFDUP | ||
|115 | |115 | ||
|0x73 | |0x73 | ||
| | |x | ||
| | |x / x x | ||
|If the top stack value is not 0, duplicate it. | |If the top stack value is not 0, duplicate it. | ||
|- | |- | ||
| Line 537: | Line 180: | ||
|0x74 | |0x74 | ||
|Nothing | |Nothing | ||
| | |<Stack size> | ||
|Puts the number of stack items onto the stack | |Puts the number of stack items onto the stack. | ||
|- | |- | ||
|OP_DROP | |OP_DROP | ||
|117 | |117 | ||
|0x75 | |0x75 | ||
| | |x | ||
|Nothing | |Nothing | ||
|Removes the top stack item. | |Removes the top stack item. | ||
| Line 550: | Line 193: | ||
|118 | |118 | ||
|0x76 | |0x76 | ||
| | |x | ||
| | |x x | ||
|Duplicates the top stack item. | |Duplicates the top stack item. | ||
|- | |- | ||
| Line 557: | Line 200: | ||
|119 | |119 | ||
|0x77 | |0x77 | ||
|x2 | |x1 x2 | ||
| | |x2 | ||
|Removes the second-to-top stack item. | |Removes the second-to-top stack item. | ||
|- | |- | ||
| Line 564: | Line 207: | ||
|120 | |120 | ||
|0x78 | |0x78 | ||
|x2 | |x1 x2 | ||
|x2 x1 | |x1 x2 x1 | ||
|Copies the second-to-top stack item to the top. | |Copies the second-to-top stack item to the top. | ||
|- | |- | ||
| Line 573: | Line 216: | ||
|xn ... x2 x1 x0 <n> | |xn ... x2 x1 x0 <n> | ||
|xn ... x2 x1 x0 xn | |xn ... x2 x1 x0 xn | ||
| | |The item ''n'' back in the stack is copied to the top. | ||
|- | |- | ||
|OP_ROLL | |OP_ROLL | ||
| Line 580: | Line 223: | ||
|xn ... x2 x1 x0 <n> | |xn ... x2 x1 x0 <n> | ||
|... x2 x1 x0 xn | |... x2 x1 x0 xn | ||
| | |The item ''n'' back in the stack is moved to the top. | ||
|- | |- | ||
|OP_ROT | |OP_ROT | ||
|123 | |123 | ||
|0x7b | |0x7b | ||
|x3 | |x1 x2 x3 | ||
|x2 x1 | |x2 x3 x1 | ||
|The top three items on the stack are rotated to the left. | |The top three items on the stack are rotated to the left. | ||
|- | |- | ||
| Line 592: | Line 235: | ||
|124 | |124 | ||
|0x7c | |0x7c | ||
|x1 x2 | |||
|x2 x1 | |x2 x1 | ||
|The top two items on the stack are swapped. | |||
|The top two items on the stack are swapped | |||
|- | |- | ||
|OP_TUCK | |OP_TUCK | ||
|125 | |125 | ||
|0x7d | |0x7d | ||
|x2 | |x1 x2 | ||
|x1 x2 | |x2 x1 x2 | ||
|The item at the top of the stack is copied and inserted before the second-to-top item. | |The item at the top of the stack is copied and inserted before the second-to-top item. | ||
|- | |||
|OP_2DROP | |||
|109 | |||
|0x6d | |||
|x1 x2 | |||
|Nothing | |||
|Removes the top two stack items. | |||
|- | |||
|OP_2DUP | |||
|110 | |||
|0x6e | |||
|x1 x2 | |||
|x1 x2 x1 x2 | |||
|Duplicates the top two stack items. | |||
|- | |||
|OP_3DUP | |||
|111 | |||
|0x6f | |||
|x1 x2 x3 | |||
|x1 x2 x3 x1 x2 x3 | |||
|Duplicates the top three stack items. | |||
|- | |||
|OP_2OVER | |||
|112 | |||
|0x70 | |||
|x1 x2 x3 x4 | |||
|x1 x2 x3 x4 x1 x2 | |||
|Copies the pair of items two spaces back in the stack to the front. | |||
|- | |||
|OP_2ROT | |||
|113 | |||
|0x71 | |||
|x1 x2 x3 x4 x5 x6 | |||
|x3 x4 x5 x6 x1 x2 | |||
|The fifth and sixth items back are moved to the top of the stack. | |||
|- | |||
|OP_2SWAP | |||
|114 | |||
|0x72 | |||
|x1 x2 x3 x4 | |||
|x3 x4 x1 x2 | |||
|Swaps the top two pairs of items. | |||
|} | |} | ||
| Line 608: | Line 293: | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 618: | Line 303: | ||
|126 | |126 | ||
|0x7e | |0x7e | ||
|x2 | |x1 x2 | ||
|out | |out | ||
| | |Concatenates two strings. ''Currently disabled.'' | ||
|- | |- | ||
|OP_SUBSTR | |OP_SUBSTR | ||
|127 | |127 | ||
|0x7f | |0x7f | ||
| | |in begin size | ||
|out | |out | ||
|Returns | |Returns a section of a string. ''Currently disabled.'' | ||
|- | |- | ||
|OP_LEFT | |OP_LEFT | ||
|128 | |128 | ||
|0x80 | |0x80 | ||
| | |in size | ||
|out | |out | ||
|Keeps only characters left of the specified point in | |Keeps only characters left of the specified point in a string. ''Currently disabled.'' | ||
|- | |- | ||
|OP_RIGHT | |OP_RIGHT | ||
|129 | |129 | ||
|0x81 | |0x81 | ||
| | |in size | ||
|out | |out | ||
|Keeps only characters right of the specified point in | |Keeps only characters right of the specified point in a string. ''Currently disabled.'' | ||
|- | |- | ||
|OP_SIZE | |OP_SIZE | ||
|130 | |130 | ||
|0x82 | |0x82 | ||
| | |in | ||
| | |in size | ||
|Returns the length of the input string | |Returns the length of the input string. | ||
|} | |} | ||
| Line 655: | Line 340: | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 665: | Line 350: | ||
|131 | |131 | ||
|0x83 | |0x83 | ||
| | |in | ||
| | |out | ||
|Flips all of the bits in the input. ''Currently disabled.'' | |Flips all of the bits in the input. ''Currently disabled.'' | ||
|- | |- | ||
| Line 672: | Line 357: | ||
|132 | |132 | ||
|0x84 | |0x84 | ||
|x2 | |x1 x2 | ||
| | |out | ||
|Boolean ''and'' between each bit in the inputs. ''Currently disabled.'' | |Boolean ''and'' between each bit in the inputs. ''Currently disabled.'' | ||
|- | |- | ||
| Line 679: | Line 364: | ||
|133 | |133 | ||
|0x85 | |0x85 | ||
|x2 | |x1 x2 | ||
| | |out | ||
|Boolean ''or'' between each bit in the inputs. ''Currently disabled.'' | |Boolean ''or'' between each bit in the inputs. ''Currently disabled.'' | ||
|- | |- | ||
| Line 686: | Line 371: | ||
|134 | |134 | ||
|0x86 | |0x86 | ||
|x2 | |x1 x2 | ||
| | |out | ||
|Boolean ''exclusive or'' between each bit in the inputs. ''Currently disabled.'' | |Boolean ''exclusive or'' between each bit in the inputs. ''Currently disabled.'' | ||
|- | |- | ||
| Line 693: | Line 378: | ||
|135 | |135 | ||
|0x87 | |0x87 | ||
|x2 | |x1 x2 | ||
| | |True / false | ||
|Returns 1 if the inputs | |Returns 1 if the inputs are exactly equal, 0 otherwise. | ||
|- | |- | ||
|OP_EQUALVERIFY | |OP_EQUALVERIFY | ||
|136 | |136 | ||
|0x88 | |0x88 | ||
|x2 | |x1 x2 | ||
| | |True / false | ||
|Same as OP_EQUAL, but runs OP_VERIFY afterward. | |Same as OP_EQUAL, but runs OP_VERIFY afterward. | ||
|} | |} | ||
| Line 707: | Line 392: | ||
=== Arithmetic === | === Arithmetic === | ||
Arithmetic is limited to max 4 byte integers | |||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 720: | Line 406: | ||
|139 | |139 | ||
|0x8b | |0x8b | ||
| | |in | ||
| | |out | ||
|1 is added to the input. | |1 is added to the input. | ||
|- | |- | ||
| Line 727: | Line 413: | ||
|140 | |140 | ||
|0x8c | |0x8c | ||
| | |in | ||
| | |out | ||
|1 is subtracted from the input. | |1 is subtracted from the input. | ||
|- | |- | ||
| Line 734: | Line 420: | ||
|141 | |141 | ||
|0x8d | |0x8d | ||
| | |in | ||
| | |out | ||
|The input is multiplied by 2. ''Currently disabled.'' | |The input is multiplied by 2. ''Currently disabled.'' | ||
|- | |- | ||
| Line 741: | Line 427: | ||
|142 | |142 | ||
|0x8e | |0x8e | ||
| | |in | ||
| | |out | ||
|The input is divided by 2 | |The input is divided by 2. ''Currently disabled.'' | ||
|- | |- | ||
|OP_NEGATE | |OP_NEGATE | ||
|143 | |143 | ||
|0x8f | |0x8f | ||
| | |in | ||
| | |out | ||
|The sign of the input is flipped. | |The sign of the input is flipped. | ||
|- | |- | ||
|OP_ABS | |OP_ABS | ||
|144 | |144 | ||
|0x90 | |0x90 | ||
| | |in | ||
| | |out | ||
|The input is | |The input is made positive. | ||
|- | |- | ||
|OP_NOT | |OP_NOT | ||
|145 | |145 | ||
|0x91 | |0x91 | ||
| | |in | ||
| | |out | ||
|If the input is 0 or 1, it is flipped. Otherwise the output will be 0. | |If the input is 0 or 1, it is flipped. Otherwise the output will be 0. | ||
|- | |- | ||
|OP_0NOTEQUAL | |OP_0NOTEQUAL | ||
|146 | |146 | ||
|0x92 | |0x92 | ||
| | |in | ||
| | |out | ||
|Returns 0 if the input is 0. 1 otherwise. | |Returns 0 if the input is 0. 1 otherwise. | ||
|- | |- | ||
|OP_ADD | |OP_ADD | ||
|147 | |147 | ||
|0x93 | |0x93 | ||
| | |a b | ||
| | |out | ||
| | |a is added to b. | ||
|- | |- | ||
|OP_SUB | |OP_SUB | ||
|148 | |148 | ||
|0x94 | |0x94 | ||
| | |a b | ||
| | |out | ||
| | |b is subtracted from a. | ||
|- | |- | ||
|OP_MUL | |OP_MUL | ||
|149 | |149 | ||
|0x95 | |0x95 | ||
| | |a b | ||
| | |out | ||
| | |a is multiplied by b. ''Currently disabled.'' | ||
|- | |- | ||
|OP_DIV | |OP_DIV | ||
|150 | |150 | ||
|0x96 | |0x96 | ||
| | |a b | ||
| | |out | ||
| | |a is divided by b. ''Currently disabled.'' | ||
|- | |- | ||
|OP_MOD | |OP_MOD | ||
|151 | |151 | ||
|0x97 | |0x97 | ||
| | |a b | ||
| | |out | ||
|Returns the remainder after dividing | |Returns the remainder after dividing a by b. ''Currently disabled.'' | ||
|- | |- | ||
|OP_LSHIFT | |OP_LSHIFT | ||
|152 | |152 | ||
|0x98 | |0x98 | ||
| | |a b | ||
| | |out | ||
|Shifts | |Shifts a left b bits, preserving sign. ''Currently disabled.'' | ||
|- | |- | ||
|OP_RSHIFT | |OP_RSHIFT | ||
|153 | |153 | ||
|0x99 | |0x99 | ||
| | |a b | ||
| | |out | ||
|Shifts | |Shifts a right b bits, preserving sign. ''Currently disabled.'' | ||
|- | |- | ||
|OP_BOOLAND | |OP_BOOLAND | ||
|154 | |154 | ||
|0x9a | |0x9a | ||
| | |a b | ||
| | |out | ||
|If both | |If both a and b are not 0, the output is 1. Otherwise 0. | ||
|- | |- | ||
|OP_BOOLOR | |OP_BOOLOR | ||
|155 | |155 | ||
|0x9b | |0x9b | ||
| | |a b | ||
| | |out | ||
|If | |If a or b is not 0, the output is 1. Otherwise 0. | ||
|- | |- | ||
|OP_NUMEQUAL | |OP_NUMEQUAL | ||
|156 | |156 | ||
|0x9c | |0x9c | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if the numbers are equal, 0 otherwise. | ||
|- | |- | ||
|OP_NUMEQUALVERIFY | |OP_NUMEQUALVERIFY | ||
|157 | |157 | ||
|0x9d | |0x9d | ||
| | |a b | ||
| | |out | ||
|Same as OP_NUMEQUAL, but runs OP_VERIFY afterward. | |Same as OP_NUMEQUAL, but runs OP_VERIFY afterward. | ||
|- | |- | ||
| Line 853: | Line 539: | ||
|158 | |158 | ||
|0x9e | |0x9e | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if the numbers are not equal, 0 otherwise. | ||
|- | |- | ||
|OP_LESSTHAN | |OP_LESSTHAN | ||
|159 | |159 | ||
|0x9f | |0x9f | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if a is less than b, 0 otherwise. | ||
|- | |- | ||
|OP_GREATERTHAN | |OP_GREATERTHAN | ||
|160 | |160 | ||
|0xa0 | |0xa0 | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if a is greater than b, 0 otherwise. | ||
|- | |- | ||
|OP_LESSTHANOREQUAL | |OP_LESSTHANOREQUAL | ||
|161 | |161 | ||
|0xa1 | |0xa1 | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if a is less than or equal to b, 0 otherwise. | ||
|- | |- | ||
|OP_GREATERTHANOREQUAL | |OP_GREATERTHANOREQUAL | ||
|162 | |162 | ||
|0xa2 | |0xa2 | ||
| | |a b | ||
| | |out | ||
|Returns 1 if | |Returns 1 if a is greater than or equal to b, 0 otherwise. | ||
|- | |- | ||
|OP_MIN | |OP_MIN | ||
|163 | |163 | ||
|0xa3 | |0xa3 | ||
| | |a b | ||
| | |out | ||
|Returns the smaller of | |Returns the smaller of a and b. | ||
|- | |- | ||
|OP_MAX | |OP_MAX | ||
|164 | |164 | ||
|0xa4 | |0xa4 | ||
| | |a b | ||
| | |out | ||
|Returns the larger of | |Returns the larger of a and b. | ||
|- | |- | ||
|OP_WITHIN | |OP_WITHIN | ||
|165 | |165 | ||
|0xa5 | |0xa5 | ||
| | |x min max | ||
| | |out | ||
|Returns 1 if | |Returns 1 if x is within the specified range (left-inclusive), 0 otherwise. | ||
|} | |} | ||
| Line 911: | Line 597: | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Input | !Input | ||
| Line 921: | Line 607: | ||
|166 | |166 | ||
|0xa6 | |0xa6 | ||
| | |in | ||
| | |hash | ||
|The input is hashed using RIPEMD-160. | |The input is hashed using RIPEMD-160. | ||
|- | |- | ||
| Line 928: | Line 614: | ||
|167 | |167 | ||
|0xa7 | |0xa7 | ||
| | |in | ||
| | |hash | ||
|The input is hashed using SHA-1. | |The input is hashed using SHA-1. | ||
|- | |- | ||
| Line 935: | Line 621: | ||
|168 | |168 | ||
|0xa8 | |0xa8 | ||
| | |in | ||
| | |hash | ||
|The input is hashed using SHA-256. | |The input is hashed using SHA-256. | ||
|- | |- | ||
| Line 942: | Line 628: | ||
|169 | |169 | ||
|0xa9 | |0xa9 | ||
| | |in | ||
| | |hash | ||
|The input is hashed twice: first with SHA-256 and then with RIPEMD-160. | |The input is hashed twice: first with SHA-256 and then with RIPEMD-160. | ||
|- | |- | ||
| Line 949: | Line 635: | ||
|170 | |170 | ||
|0xaa | |0xaa | ||
| | |in | ||
| | |hash | ||
|The input is hashed two times with SHA-256. | |The input is hashed two times with SHA-256. | ||
|- | |- | ||
| Line 958: | Line 644: | ||
|Nothing | |Nothing | ||
|Nothing | |Nothing | ||
|All of the signature checking | |All of the signature checking words will only match signatures to the data after the most recently-executed OP_CODESEPARATOR. | ||
|- | |- | ||
|[[OP_CHECKSIG]] | |[[OP_CHECKSIG]] | ||
| Line 964: | Line 650: | ||
|0xac | |0xac | ||
|sig pubkey | |sig pubkey | ||
| | |True / false | ||
|The entire transaction's outputs, inputs, and script (from the most recently-executed OP_CODESEPARATOR to the end) are hashed. The signature used by OP_CHECKSIG must be a valid signature for | |The entire transaction's outputs, inputs, and script (from the most recently-executed OP_CODESEPARATOR to the end) are hashed. The signature used by OP_CHECKSIG must be a valid signature for this hash and public key. If it is, 1 is returned, 0 otherwise. | ||
|- | |- | ||
|OP_CHECKSIGVERIFY | |OP_CHECKSIGVERIFY | ||
| Line 971: | Line 657: | ||
|0xad | |0xad | ||
|sig pubkey | |sig pubkey | ||
| | |True / false | ||
|Same as OP_CHECKSIG, but OP_VERIFY is executed afterward. | |Same as OP_CHECKSIG, but OP_VERIFY is executed afterward. | ||
|- | |- | ||
| Line 977: | Line 663: | ||
|174 | |174 | ||
|0xae | |0xae | ||
|sig1 sig2 ... <number of signatures> pub1 pub2 <number of public keys> | |x sig1 sig2 ... <number of signatures> pub1 pub2 <number of public keys> | ||
| | |True / False | ||
|For each signature and public key pair, OP_CHECKSIG is executed. If more public keys than signatures are listed, some key/sig pairs can fail. All signatures need to match a public key. If all signatures are valid, 1 is returned, 0 otherwise. Due to a bug, one extra unused value is removed from the stack. | |For each signature and public key pair, OP_CHECKSIG is executed. If more public keys than signatures are listed, some key/sig pairs can fail. All signatures need to match a public key. If all signatures are valid, 1 is returned, 0 otherwise. Due to a bug, one extra unused value is removed from the stack. | ||
|- | |- | ||
| Line 984: | Line 670: | ||
|175 | |175 | ||
|0xaf | |0xaf | ||
|sig1 sig2 ... <number of signatures> pub1 pub2 ... <number of public keys> | |x sig1 sig2 ... <number of signatures> pub1 pub2 ... <number of public keys> | ||
| | |True / False | ||
|Same as OP_CHECKMULTISIG, but OP_VERIFY is executed afterward. | |Same as OP_CHECKMULTISIG, but OP_VERIFY is executed afterward. | ||
|} | |} | ||
=== | ===Pseudo-words=== | ||
{| class="wikitable" | These words are used internally for assisting with transaction matching. They are invalid if used in actual scripts. | ||
{| class="wikitable" | |||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
!Description | !Description | ||
|- | |- | ||
| | |OP_PUBKEYHASH | ||
| | |253 | ||
| | |0xfd | ||
| | |Represents a public key hashed with OP_HASH160. | ||
|- | |||
|OP_PUBKEY | |||
|254 | |||
|0xfe | |||
|Represents a public key compatible with OP_CHECKSIG. | |||
|- | |||
|OP_INVALIDOPCODE | |||
|255 | |||
|0xff | |||
|Matches any opcode that is not yet assigned. | |||
|} | |} | ||
=== | === Reserved words === | ||
Any opcode not assigned is also reserved. Using an unassigned opcode makes the transaction invalid. | |||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
! | !Word | ||
! | !Opcode | ||
!Hex | !Hex | ||
! | !When used... | ||
|- | |||
|OP_RESERVED | |||
|80 | |||
|0x50 | |||
|Transaction is invalid unless occuring in an unexecuted OP_IF branch | |||
|- | |- | ||
|OP_VER | |OP_VER | ||
|98 | |98 | ||
|0x62 | |0x62 | ||
| | |Transaction is invalid unless occuring in an unexecuted OP_IF branch | ||
|- | |- | ||
|OP_VERIF | |OP_VERIF | ||
|101 | |101 | ||
|0x65 | |0x65 | ||
| | |Transaction is invalid even when occuring in an unexecuted OP_IF branch | ||
|- | |- | ||
|OP_VERNOTIF | |OP_VERNOTIF | ||
|102 | |102 | ||
|0x66 | |0x66 | ||
| | |Transaction is invalid even when occuring in an unexecuted OP_IF branch | ||
|- | |- | ||
|OP_RESERVED1 | |OP_RESERVED1 | ||
|137 | |137 | ||
|0x89 | |0x89 | ||
| | |Transaction is invalid unless occuring in an unexecuted OP_IF branch | ||
|- | |- | ||
|OP_RESERVED2 | |OP_RESERVED2 | ||
|138 | |138 | ||
|0x8a | |0x8a | ||
| | |Transaction is invalid unless occuring in an unexecuted OP_IF branch | ||
|- | |- | ||
|OP_NOP1-OP_NOP10 | |||
|176-185 | |||
|0xb0-0xb9 | |||
|The word is ignored. | |||
|- | |||
| | |||
| | |||
| | |||
|} | |} | ||
==Scripts | == Scripts == | ||
This is a list of interesting scripts. Keep in mind that all constants actually use the data-pushing commands above. | |||
===Standard | === Standard Transaction to Bitcoin address === | ||
scriptPubKey: OP_DUP OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | scriptPubKey: OP_DUP OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | ||
| Line 1,093: | Line 761: | ||
Data to push OP_EQUALVERIFY OP_CHECKSIG</pre> | Data to push OP_EQUALVERIFY OP_CHECKSIG</pre> | ||
Note: scriptSig is in the input of the spending transaction and scriptPubKey is in the output of the previously | Note: scriptSig is in the input of the spending transaction and scriptPubKey is in the output of the previously unspent i.e. "available" transaction. | ||
Here is how each | Here is how each word is processed: | ||
{| class="wikitable" | {| class="wikitable" | ||
|- | |- | ||
| Line 1,131: | Line 799: | ||
|} | |} | ||
=== | === Standard Generation / transaction to IP address === | ||
scriptPubKey: <pubKey> OP_CHECKSIG | scriptPubKey: <pubKey> OP_CHECKSIG | ||
| Line 1,156: | Line 824: | ||
|} | |} | ||
=== Transaction with a message === | |||
It's possible to add arbitrary data to any transaction by just adding some data along with OP_DROP. Scripts are limited to 10,000 bytes and 201 instructions, and each individual instruction/value is limited to 520 bytes. | |||
scriptPubKey: <message> OP_DROP <pubKey> OP_CHECKSIG | scriptPubKey: <message> OP_DROP <pubKey> OP_CHECKSIG | ||
scriptSig: <sig> | scriptSig: <sig> | ||
| Line 1,195: | Line 862: | ||
|} | |} | ||
=== | === Example non standard transaction on Testnet === | ||
These | These 2 links below show a non standard transaction. It just prepends the hex of "bob" and the operation OP_DROP | ||
which just removes it. As you can see they can be spent as normal. | which just removes it. As you can see they can be spent as normal. | ||
| Line 1,206: | Line 873: | ||
http://blockexplorer.com/testnet/t/AFdRB1CHS3 | http://blockexplorer.com/testnet/t/AFdRB1CHS3 | ||
== | ==See Also== | ||
* [[Transactions]] | * [[Transactions]] | ||
* [[Contracts]] | * [[Contracts]] | ||
[[Category:Technical]] | [[Category:Technical]] | ||
[[Category:Vocabulary]] | [[Category:Vocabulary]] | ||
Revision as of 01:52, 13 January 2013
Bitcoin uses a scripting system for transactions. Forth-like, Script is simple, stack-based, and processed from left to right. It is purposefully not Turing-complete, with no loops.
A script is essentially a list of instructions recorded with each transaction that describe how the next person wanting to spend the Bitcoins being transferred can gain access to them. The script for a typical Bitcoin transfer to destination Bitcoin address D simply encumbers future spending of the bitcoins with two things: the spender must provide
- a public key that, when hashed, yields destination address D embedded in the script, and
- a signature to show evidence of the private key corresponding to the public key just provided.
Scripting provides the flexibility to change the parameters of what's needed to spend transferred Bitcoins. For example, the scripting system could be used to require two private keys, or a combination of several, or even no keys at all.
A transaction is valid if nothing in the combined script triggers failure and the top stack item is true (non-zero). The party who originally sent the Bitcoins now being spent, dictates the script operations that will occur last in order to release them for use in another transaction. The party wanting to spend them must provide the input(s) to the previously recorded script that results in those operations occurring last leaving behind true (non-zero).
Scripts are big-endian.
The stacks hold byte vectors. Byte vectors are interpreted as little-endian variable-length integers with the most significant bit determining the sign of the integer. Thus 0x81 represents -1. 0x80 is another representation of zero (so called negative 0). Byte vectors are interpreted as Booleans where False is represented by any representation of zero, and True is represented by any representation of non-zero.
Words
This is a list of all Script words (commands/functions). Some of the more complicated opcodes are disabled out of concern that the client might have a bug in their implementation; if a transaction using such an opcode were to be included in the chain any fix would risk forking the chain.
True=1 and False=0.
Constants
When talking about scripts, these value-pushing words are usually omitted.
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_0, OP_FALSE | 0 | 0x00 | Nothing. | (empty value) | An empty array of bytes is pushed onto the stack. (This is not a no-op: an item is added to the stack.) |
| N/A | 1-75 | 0x01-0x4b | (special) | data | The next opcode bytes is data to be pushed onto the stack |
| OP_PUSHDATA1 | 76 | 0x4c | (special) | data | The next byte contains the number of bytes to be pushed onto the stack. |
| OP_PUSHDATA2 | 77 | 0x4d | (special) | data | The next two bytes contain the number of bytes to be pushed onto the stack. |
| OP_PUSHDATA4 | 78 | 0x4e | (special) | data | The next four bytes contain the number of bytes to be pushed onto the stack. |
| OP_1NEGATE | 79 | 0x4f | Nothing. | -1 | The number -1 is pushed onto the stack. |
| OP_1, OP_TRUE | 81 | 0x51 | Nothing. | 1 | The number 1 is pushed onto the stack. |
| OP_2-OP_16 | 82-96 | 0x52-0x60 | Nothing. | 2-16 | The number in the word name (2-16) is pushed onto the stack. |
Flow control
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_NOP | 97 | 0x61 | Nothing | Nothing | Does nothing. |
| OP_IF | 99 | 0x63 | <expression> if [statements] [else [statements]]* endif | If the top stack value is not 0, the statements are executed. The top stack value is removed. | |
| OP_NOTIF | 100 | 0x64 | <expression> if [statements] [else [statements]]* endif | If the top stack value is 0, the statements are executed. The top stack value is removed. | |
| OP_ELSE | 103 | 0x67 | <expression> if [statements] [else [statements]]* endif | If the preceding OP_IF or OP_NOTIF or OP_ELSE was not executed then these statements are and if the preceding OP_IF or OP_NOTIF or OP_ELSE was executed then these statements are not. | |
| OP_ENDIF | 104 | 0x68 | <expression> if [statements] [else [statements]]* endif | Ends an if/else block. | |
| OP_VERIFY | 105 | 0x69 | True / false | Nothing / False | Marks transaction as invalid if top stack value is not true. True is removed, but false is not. |
| OP_RETURN | 106 | 0x6a | Nothing | Nothing | Marks transaction as invalid. |
Stack
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_TOALTSTACK | 107 | 0x6b | x1 | (alt)x1 | Puts the input onto the top of the alt stack. Removes it from the main stack. |
| OP_FROMALTSTACK | 108 | 0x6c | (alt)x1 | x1 | Puts the input onto the top of the main stack. Removes it from the alt stack. |
| OP_IFDUP | 115 | 0x73 | x | x / x x | If the top stack value is not 0, duplicate it. |
| OP_DEPTH | 116 | 0x74 | Nothing | <Stack size> | Puts the number of stack items onto the stack. |
| OP_DROP | 117 | 0x75 | x | Nothing | Removes the top stack item. |
| OP_DUP | 118 | 0x76 | x | x x | Duplicates the top stack item. |
| OP_NIP | 119 | 0x77 | x1 x2 | x2 | Removes the second-to-top stack item. |
| OP_OVER | 120 | 0x78 | x1 x2 | x1 x2 x1 | Copies the second-to-top stack item to the top. |
| OP_PICK | 121 | 0x79 | xn ... x2 x1 x0 <n> | xn ... x2 x1 x0 xn | The item n back in the stack is copied to the top. |
| OP_ROLL | 122 | 0x7a | xn ... x2 x1 x0 <n> | ... x2 x1 x0 xn | The item n back in the stack is moved to the top. |
| OP_ROT | 123 | 0x7b | x1 x2 x3 | x2 x3 x1 | The top three items on the stack are rotated to the left. |
| OP_SWAP | 124 | 0x7c | x1 x2 | x2 x1 | The top two items on the stack are swapped. |
| OP_TUCK | 125 | 0x7d | x1 x2 | x2 x1 x2 | The item at the top of the stack is copied and inserted before the second-to-top item. |
| OP_2DROP | 109 | 0x6d | x1 x2 | Nothing | Removes the top two stack items. |
| OP_2DUP | 110 | 0x6e | x1 x2 | x1 x2 x1 x2 | Duplicates the top two stack items. |
| OP_3DUP | 111 | 0x6f | x1 x2 x3 | x1 x2 x3 x1 x2 x3 | Duplicates the top three stack items. |
| OP_2OVER | 112 | 0x70 | x1 x2 x3 x4 | x1 x2 x3 x4 x1 x2 | Copies the pair of items two spaces back in the stack to the front. |
| OP_2ROT | 113 | 0x71 | x1 x2 x3 x4 x5 x6 | x3 x4 x5 x6 x1 x2 | The fifth and sixth items back are moved to the top of the stack. |
| OP_2SWAP | 114 | 0x72 | x1 x2 x3 x4 | x3 x4 x1 x2 | Swaps the top two pairs of items. |
Splice
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_CAT | 126 | 0x7e | x1 x2 | out | Concatenates two strings. Currently disabled. |
| OP_SUBSTR | 127 | 0x7f | in begin size | out | Returns a section of a string. Currently disabled. |
| OP_LEFT | 128 | 0x80 | in size | out | Keeps only characters left of the specified point in a string. Currently disabled. |
| OP_RIGHT | 129 | 0x81 | in size | out | Keeps only characters right of the specified point in a string. Currently disabled. |
| OP_SIZE | 130 | 0x82 | in | in size | Returns the length of the input string. |
Bitwise logic
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_INVERT | 131 | 0x83 | in | out | Flips all of the bits in the input. Currently disabled. |
| OP_AND | 132 | 0x84 | x1 x2 | out | Boolean and between each bit in the inputs. Currently disabled. |
| OP_OR | 133 | 0x85 | x1 x2 | out | Boolean or between each bit in the inputs. Currently disabled. |
| OP_XOR | 134 | 0x86 | x1 x2 | out | Boolean exclusive or between each bit in the inputs. Currently disabled. |
| OP_EQUAL | 135 | 0x87 | x1 x2 | True / false | Returns 1 if the inputs are exactly equal, 0 otherwise. |
| OP_EQUALVERIFY | 136 | 0x88 | x1 x2 | True / false | Same as OP_EQUAL, but runs OP_VERIFY afterward. |
Arithmetic
Arithmetic is limited to max 4 byte integers
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_1ADD | 139 | 0x8b | in | out | 1 is added to the input. |
| OP_1SUB | 140 | 0x8c | in | out | 1 is subtracted from the input. |
| OP_2MUL | 141 | 0x8d | in | out | The input is multiplied by 2. Currently disabled. |
| OP_2DIV | 142 | 0x8e | in | out | The input is divided by 2. Currently disabled. |
| OP_NEGATE | 143 | 0x8f | in | out | The sign of the input is flipped. |
| OP_ABS | 144 | 0x90 | in | out | The input is made positive. |
| OP_NOT | 145 | 0x91 | in | out | If the input is 0 or 1, it is flipped. Otherwise the output will be 0. |
| OP_0NOTEQUAL | 146 | 0x92 | in | out | Returns 0 if the input is 0. 1 otherwise. |
| OP_ADD | 147 | 0x93 | a b | out | a is added to b. |
| OP_SUB | 148 | 0x94 | a b | out | b is subtracted from a. |
| OP_MUL | 149 | 0x95 | a b | out | a is multiplied by b. Currently disabled. |
| OP_DIV | 150 | 0x96 | a b | out | a is divided by b. Currently disabled. |
| OP_MOD | 151 | 0x97 | a b | out | Returns the remainder after dividing a by b. Currently disabled. |
| OP_LSHIFT | 152 | 0x98 | a b | out | Shifts a left b bits, preserving sign. Currently disabled. |
| OP_RSHIFT | 153 | 0x99 | a b | out | Shifts a right b bits, preserving sign. Currently disabled. |
| OP_BOOLAND | 154 | 0x9a | a b | out | If both a and b are not 0, the output is 1. Otherwise 0. |
| OP_BOOLOR | 155 | 0x9b | a b | out | If a or b is not 0, the output is 1. Otherwise 0. |
| OP_NUMEQUAL | 156 | 0x9c | a b | out | Returns 1 if the numbers are equal, 0 otherwise. |
| OP_NUMEQUALVERIFY | 157 | 0x9d | a b | out | Same as OP_NUMEQUAL, but runs OP_VERIFY afterward. |
| OP_NUMNOTEQUAL | 158 | 0x9e | a b | out | Returns 1 if the numbers are not equal, 0 otherwise. |
| OP_LESSTHAN | 159 | 0x9f | a b | out | Returns 1 if a is less than b, 0 otherwise. |
| OP_GREATERTHAN | 160 | 0xa0 | a b | out | Returns 1 if a is greater than b, 0 otherwise. |
| OP_LESSTHANOREQUAL | 161 | 0xa1 | a b | out | Returns 1 if a is less than or equal to b, 0 otherwise. |
| OP_GREATERTHANOREQUAL | 162 | 0xa2 | a b | out | Returns 1 if a is greater than or equal to b, 0 otherwise. |
| OP_MIN | 163 | 0xa3 | a b | out | Returns the smaller of a and b. |
| OP_MAX | 164 | 0xa4 | a b | out | Returns the larger of a and b. |
| OP_WITHIN | 165 | 0xa5 | x min max | out | Returns 1 if x is within the specified range (left-inclusive), 0 otherwise. |
Crypto
| Word | Opcode | Hex | Input | Output | Description |
|---|---|---|---|---|---|
| OP_RIPEMD160 | 166 | 0xa6 | in | hash | The input is hashed using RIPEMD-160. |
| OP_SHA1 | 167 | 0xa7 | in | hash | The input is hashed using SHA-1. |
| OP_SHA256 | 168 | 0xa8 | in | hash | The input is hashed using SHA-256. |
| OP_HASH160 | 169 | 0xa9 | in | hash | The input is hashed twice: first with SHA-256 and then with RIPEMD-160. |
| OP_HASH256 | 170 | 0xaa | in | hash | The input is hashed two times with SHA-256. |
| OP_CODESEPARATOR | 171 | 0xab | Nothing | Nothing | All of the signature checking words will only match signatures to the data after the most recently-executed OP_CODESEPARATOR. |
| OP_CHECKSIG | 172 | 0xac | sig pubkey | True / false | The entire transaction's outputs, inputs, and script (from the most recently-executed OP_CODESEPARATOR to the end) are hashed. The signature used by OP_CHECKSIG must be a valid signature for this hash and public key. If it is, 1 is returned, 0 otherwise. |
| OP_CHECKSIGVERIFY | 173 | 0xad | sig pubkey | True / false | Same as OP_CHECKSIG, but OP_VERIFY is executed afterward. |
| OP_CHECKMULTISIG | 174 | 0xae | x sig1 sig2 ... <number of signatures> pub1 pub2 <number of public keys> | True / False | For each signature and public key pair, OP_CHECKSIG is executed. If more public keys than signatures are listed, some key/sig pairs can fail. All signatures need to match a public key. If all signatures are valid, 1 is returned, 0 otherwise. Due to a bug, one extra unused value is removed from the stack. |
| OP_CHECKMULTISIGVERIFY | 175 | 0xaf | x sig1 sig2 ... <number of signatures> pub1 pub2 ... <number of public keys> | True / False | Same as OP_CHECKMULTISIG, but OP_VERIFY is executed afterward. |
Pseudo-words
These words are used internally for assisting with transaction matching. They are invalid if used in actual scripts.
| Word | Opcode | Hex | Description |
|---|---|---|---|
| OP_PUBKEYHASH | 253 | 0xfd | Represents a public key hashed with OP_HASH160. |
| OP_PUBKEY | 254 | 0xfe | Represents a public key compatible with OP_CHECKSIG. |
| OP_INVALIDOPCODE | 255 | 0xff | Matches any opcode that is not yet assigned. |
Reserved words
Any opcode not assigned is also reserved. Using an unassigned opcode makes the transaction invalid.
| Word | Opcode | Hex | When used... |
|---|---|---|---|
| OP_RESERVED | 80 | 0x50 | Transaction is invalid unless occuring in an unexecuted OP_IF branch |
| OP_VER | 98 | 0x62 | Transaction is invalid unless occuring in an unexecuted OP_IF branch |
| OP_VERIF | 101 | 0x65 | Transaction is invalid even when occuring in an unexecuted OP_IF branch |
| OP_VERNOTIF | 102 | 0x66 | Transaction is invalid even when occuring in an unexecuted OP_IF branch |
| OP_RESERVED1 | 137 | 0x89 | Transaction is invalid unless occuring in an unexecuted OP_IF branch |
| OP_RESERVED2 | 138 | 0x8a | Transaction is invalid unless occuring in an unexecuted OP_IF branch |
| OP_NOP1-OP_NOP10 | 176-185 | 0xb0-0xb9 | The word is ignored. |
Scripts
This is a list of interesting scripts. Keep in mind that all constants actually use the data-pushing commands above.
Standard Transaction to Bitcoin address
scriptPubKey: OP_DUP OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG scriptSig: <sig> <pubKey>
To demonstrate how scripts look on the wire, here is a raw scriptPubKey:
76 A9 14
OP_DUP OP_HASH160 Bytes to push
89 AB CD EF AB BA AB BA AB BA AB BA AB BA AB BA AB BA AB BA 88 AC
Data to push OP_EQUALVERIFY OP_CHECKSIG
Note: scriptSig is in the input of the spending transaction and scriptPubKey is in the output of the previously unspent i.e. "available" transaction.
Here is how each word is processed:
| Stack | Script | Description |
|---|---|---|
| Empty. | <sig> <pubKey> OP_DUP OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | scriptSig and scriptPubKey are combined. |
| <sig> <pubKey> | OP_DUP OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | Constants are added to the stack. |
| <sig> <pubKey> <pubKey> | OP_HASH160 <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | Top stack item is duplicated. |
| <sig> <pubKey> <pubHashA> | <pubKeyHash> OP_EQUALVERIFY OP_CHECKSIG | Top stack item is hashed. |
| <sig> <pubKey> <pubHashA> <pubKeyHash> | OP_EQUALVERIFY OP_CHECKSIG | Constant added. |
| <sig> <pubKey> | OP_CHECKSIG | Equality is checked between the top two stack items. |
| true | Empty. | Signature is checked for top two stack items. |
Standard Generation / transaction to IP address
scriptPubKey: <pubKey> OP_CHECKSIG scriptSig: <sig>
Checking process:
| Stack | Script | Description |
|---|---|---|
| Empty. | <sig> <pubKey> OP_CHECKSIG | scriptSig and scriptPubKey are combined. |
| <sig> <pubKey> | OP_CHECKSIG | Constants are added to the stack. |
| true | Empty. | Signature is checked for top two stack items. |
Transaction with a message
It's possible to add arbitrary data to any transaction by just adding some data along with OP_DROP. Scripts are limited to 10,000 bytes and 201 instructions, and each individual instruction/value is limited to 520 bytes.
scriptPubKey: <message> OP_DROP <pubKey> OP_CHECKSIG scriptSig: <sig>
| Stack | Script | Description |
|---|---|---|
| Empty. | <sig> <message> OP_DROP <pubKey> OP_CHECKSIG | |
| <sig> | <message> OP_DROP <pubKey> OP_CHECKSIG | scriptSig added to the stack. |
| <sig> <message> | OP_DROP <pubKey> OP_CHECKSIG | The message has been put. |
| <sig> | <pubKey> OP_CHECKSIG | Top stack item has been removed. |
| <sig> <pubKey> | OP_CHECKSIG | Checking signature against the public key. |
| true | Empty. | Stack holds the value of signature check now. |
Example non standard transaction on Testnet
These 2 links below show a non standard transaction. It just prepends the hex of "bob" and the operation OP_DROP which just removes it. As you can see they can be spent as normal.
Input non-std transaction: http://blockexplorer.com/testnet/t/6ttfeb55B1
Spent by: http://blockexplorer.com/testnet/t/AFdRB1CHS3