diff --git a/.github/workflows/cont_integration.yml b/.github/workflows/cont_integration.yml index f793f7ad6..ef6fc8da1 100644 --- a/.github/workflows/cont_integration.yml +++ b/.github/workflows/cont_integration.yml @@ -130,3 +130,32 @@ jobs: with: token: ${{ secrets.GITHUB_TOKEN }} args: --all-features --all-targets -- -D warnings + + build-examples: + name: Build Examples + runs-on: ubuntu-latest + strategy: + matrix: + example-dir: + - example_cli + - example_bitcoind_rpc_polling + - example_electrum + - example_esplora + - wallet_electrum + - wallet_esplora_async + - wallet_esplora_blocking + - wallet_rpc + steps: + - name: checkout + uses: actions/checkout@v2 + - name: Install Rust toolchain + uses: actions-rs/toolchain@v1 + with: + toolchain: stable + override: true + profile: minimal + - name: Rust Cache + uses: Swatinem/rust-cache@v2.2.1 + - name: Build + working-directory: example-crates/${{ matrix.example-dir }} + run: cargo build diff --git a/crates/wallet/Cargo.toml b/crates/wallet/Cargo.toml index 44314a968..6015dc3bd 100644 --- a/crates/wallet/Cargo.toml +++ b/crates/wallet/Cargo.toml @@ -47,6 +47,11 @@ rand = "^0.8" all-features = true rustdoc-args = ["--cfg", "docsrs"] +[[example]] +name = "descriptor_with_plan" +path = "examples/descriptor_with_plan.rs" +required-features = [] + [[example]] name = "mnemonic_to_descriptors" path = "examples/mnemonic_to_descriptors.rs" diff --git a/crates/wallet/examples/descriptor_with_plan.rs b/crates/wallet/examples/descriptor_with_plan.rs new file mode 100644 index 000000000..c239a1bfe --- /dev/null +++ b/crates/wallet/examples/descriptor_with_plan.rs @@ -0,0 +1,341 @@ +#![allow(unused)] +use std::str::FromStr; + +use bdk_wallet::bitcoin::bip32::Xpriv; +use bdk_wallet::bitcoin::hashes::Hash; +use bdk_wallet::bitcoin::key::Secp256k1; + +use bdk_wallet::bitcoin::{ + self, psbt, Address, Network, OutPoint, Psbt, Script, Sequence, Transaction, TxIn, TxOut, Txid, +}; + +use bdk_wallet::keys::DescriptorPublicKey; +use bdk_wallet::miniscript::plan::Assets; +use bdk_wallet::miniscript::policy::Concrete; +use bdk_wallet::miniscript::psbt::PsbtExt; +use bdk_wallet::miniscript::{DefiniteDescriptorKey, Descriptor}; +use bdk_wallet::{KeychainKind, Wallet}; +use bitcoin::{absolute, transaction, Amount}; + +// Using a descriptor and spending plans with BDK wallets. +// +// Consider the basic flow of using a descriptor. The steps are: +// 1. Set up the Descriptor +// 2. Deposit sats into the descriptor +// 3. Get the previous output and witness from the deposit transaction +// 4. Set up a psbt to spend the deposited funds +// 5. If there are multiple spend paths, use the `plan` module to format the psbt properly +// 6. Sign the spending psbt +// 7. Finalize the psbt. At this point, miniscript will check whether the transaction +// satisfies the descriptor, and will notify you if it doesn't. +// 8. If desired, extract the transaction from the psbt and broadcast it. +fn main() { + // In order to try out descriptors, let's define a Bitcoin vault with two spend paths. + // + // The vault works like this: + // + // A. If you have the `unvault_key`, you can spend the funds, but only *after* a specified block height + // B. If you have the `emergency_key`, presumably kept in deep cold storage, you can spend at any time. + + // Let's set up some wallets so we have keys to work with. + + // Regular unvault spend path keys + blockheight. You can use wallet descriptors like this, + // or you could potentially use a mnemonic and derive from that. See the `mnemonic_to_descriptors.rs` + // example if you want to do that. + let unvault_tprv = "tprv8ZgxMBicQKsPdKyH699thnjrFcmJMrUUoaNZvHYxxqvhySPhAYZpmxtR39u5QAYnhtYSfMBuBBH6pGuSgmoK3NpfNDU3RAbrVpcbpLmz5ot"; + let unvault_pk = "02e7c62fd3a65abdc7ff233fba5637f89c9eaba7fe6baaf15ca99d81e0f5145bf8"; + let after = 1311208; + + // Emergency path keys + let emergency_tprv = "tprv8ZgxMBicQKsPekKEvzvCnK7qe5r6ausugHDyrPeX9TLQ4oADSYLWtA4m3XsEMmUZEbVaeJtuZimakomLkecLTMwerVJKpAZFtXoo7DYb84B"; + let emergency_pk = "033b4ac89f5d83de29af72d8b99963c4dbd416fa7c8a8aee6b4761f8f85e588f80"; + + // Make a wallet for the unvault user + let unvault_desc = format!("wpkh({unvault_tprv}/84'/1'/0'/0/*)"); + let unvault_change_desc = format!("wpkh({unvault_tprv}/84'/1'/0'/1/*)"); + let mut unvault_wallet = Wallet::create(unvault_desc, unvault_change_desc) + .network(Network::Testnet) + .create_wallet_no_persist() + .expect("couldn't create unvault_wallet"); + + // Make a wallet for the emergency user + let emergency_desc = format!("wpkh({emergency_tprv}/84'/1'/0'/0/*)"); + let emergency_change_desc = format!("wpkh({emergency_tprv}/84'/1'/0'/1/*)"); + let mut emergency_wallet = Wallet::create(emergency_desc, emergency_change_desc) + .network(Network::Testnet) + .create_wallet_no_persist() + .expect("couldn't create emergency_wallet"); + + // 1. Set up the Descriptor + + // The following string defines a miniscript vault policy with two possible spend paths (`or`): + // * spend at any time with the `emergency_pk` + // * spend `after` the timelock with the `unvault_pk` + let policy_str = format!("or(pk({emergency_pk}),and(pk({unvault_pk}),after({after})))"); + + // Refer to `examples/compiler.rs` for compiling a miniscript descriptor from a policy string. + let desc_str = "wsh(or_d(pk(033b4ac89f5d83de29af72d8b99963c4dbd416fa7c8a8aee6b4761f8f85e588f80),and_v(v:pk(02e7c62fd3a65abdc7ff233fba5637f89c9eaba7fe6baaf15ca99d81e0f5145bf8),after(1311208))))#9xvht4sc"; + println!("The vault descriptor is: {}\n", desc_str); + + // Alternately, we can make a wallet for our vault and get its address: + let mut vault = Wallet::create_single(desc_str) + .network(Network::Testnet) + .create_wallet_no_persist() + .unwrap(); + let vault_address = vault.peek_address(KeychainKind::External, 0).address; + println!("The vault address is {:?}", vault_address); + let vault_descriptor = vault.public_descriptor(KeychainKind::External).clone(); + let definite_descriptor = vault_descriptor.at_derivation_index(0).unwrap(); + + // We don't need to broadcast the funding transaction in this tutorial - + // having it locally is good enough to get the information we need, and it saves + // messing around with faucets etc. + + // Fund the vault by inserting a transaction: + let witness_utxo = TxOut { + value: Amount::from_sat(76_000), + script_pubkey: vault_address.script_pubkey(), + }; + let tx = Transaction { + output: vec![witness_utxo.clone()], + ..blank_transaction() + }; + + let previous_output = deposit_transaction(&mut vault, tx); + println!("Vault balance: {}", vault.balance().total()); + + // 3. Get the previous output and txout from the deposit transaction. In a real application + // you would get this from the blockchain if you didn't make the deposit_tx. + println!("The deposit transaction's outpoint was {}", previous_output); + + // 4. Set up a psbt to spend the deposited funds + println!("Setting up a psbt for the emergency spend path"); + let emergency_spend = blank_transaction(); + let mut psbt = + Psbt::from_unsigned_tx(emergency_spend).expect("couldn't create psbt from emergency_spend"); + + // Format an input containing the previous output + let txin = TxIn { + previous_output, + ..Default::default() + }; + + // Format an output which spends some of the funds in the vault + let txout1 = TxOut { + script_pubkey: emergency_wallet + .next_unused_address(KeychainKind::External) + .script_pubkey(), + value: Amount::from_sat(750), + }; + + // Leave some sats aside for fees + let fees = Amount::from_sat(500); + + // Calculate the change amount (total balance minus the amount sent in txout1) + let change_amount = emergency_wallet + .balance() + .confirmed + .checked_sub(txout1.value) + .expect("failed to generate change amount") + .checked_sub(fees) + .expect("couldn't subtract fee amount"); + + // Change output + let txout2 = TxOut { + script_pubkey: emergency_wallet + .next_unused_address(KeychainKind::Internal) + .script_pubkey(), + value: change_amount, + }; + + // Add the TxIn and TxOut to the transaction we're working on + psbt.unsigned_tx.input.push(txin); + psbt.unsigned_tx.output.push(txout1); + psbt.unsigned_tx.output.push(txout2); + + // 5. If there are multiple spend paths, use the `plan` module to format the psbt properly + + // Our vault happens to have two spend paths, and the miniscript satisfier will freak out + // if we don't tell it which path we're formatting this transaction for. It's like a + // compile-time check vs a runtime check. + // + // In order to tell it whether we are trying for the unvault + timelock spend path, + // or the emergency spend path, we can use the `plan` module from `rust-miniscript`. + // + // The plan module says: "given x assets, can I satisfy the + // miniscript descriptor y?". It can also automatically update the psbt + // with the information. When the psbt is finalized, miniscript will check + // whether the formatted transaction can satisfy the descriptor or not. + + // Let's try using the plan module on the emergency spend path. + + // First we define our emergency key as a possible asset we can use in the plan + // to attempt to satisfy the descriptor. + println!("Adding a spending plan to the emergency spend psbt"); + let emergency_key_asset = DescriptorPublicKey::from_str(emergency_pk).unwrap(); + + // Then we add the emergency key to our list of plan assets. If we had more than one + // asset (e.g. multiple keys, timelocks, etc) in the descriptor branch we are trying + // to spend on, we would define and add multiple assets. + let assets = Assets::new().add(emergency_key_asset); + + // Automatically generate a plan for spending the descriptor + let emergency_plan = definite_descriptor + .clone() + .plan(&assets) + .expect("couldn't create emergency plan"); + + // Create an input where we can put the plan data + // Add the witness_utxo from the deposit transaction to the input + let mut input = psbt::Input { + witness_utxo: Some(witness_utxo.clone()), + ..Default::default() + }; + + // Update the input with the generated plan + println!("Update the emergency spend psbt with spend plan"); + emergency_plan.update_psbt_input(&mut input); + + // Push the input to the PSBT + psbt.inputs.push(input); + + // Add a default output to the PSBT + psbt.outputs.push(psbt::Output::default()); + + // 6. Sign the spending psbt + + // At this point, we have a PSBT that is ready to be signed. + // It contains public data in its inputs, and data which needs to be signed + // in its `unsigned_tx.{input, output}s` + + // Sign the psbt + println!("Signing emergency spend psbt"); + let secp = Secp256k1::new(); + let emergency_key = Xpriv::from_str(emergency_tprv).expect("couldn't create emergency key"); + psbt.sign(&emergency_key, &secp) + .expect("failed to sign emergency spend psbt"); + + // 7. Finalize the psbt. At this point, miniscript will check whether the transaction + // satisfies the descriptor, and will notify you if it doesn't. + + psbt.finalize_mut(&secp) + .expect("problem finalizing emergency psbt"); + println!("Finalized emergency spend psbt"); + + // 8. If desired, extract the transaction from the psbt and broadcast it. We won't do this + // here as it saves messing around with faucets, wallets, etc. + let _my_emergency_spend_tx = psbt.extract_tx().expect("failed to extract emergency tx"); + + println!("==================================================="); + + // Let's now try the same thing with the unvault transaction. We just need to make a new + // plan, sign a new spending psbt, and finalize it. + + // Build a spend transaction the unvault key path + println!("Setting up a psbt for the unvault spend path"); + let timelock = absolute::LockTime::from_height(after).expect("couldn't format locktime"); + let unvault_spend_transaction = blank_transaction_with(timelock); + let mut psbt = Psbt::from_unsigned_tx(unvault_spend_transaction) + .expect("couldn't create psbt from unvault_spend_transaction"); + + // Format an input containing the previous output + let txin = TxIn { + previous_output, + sequence: Sequence::ENABLE_RBF_NO_LOCKTIME, // disables relative timelock + ..Default::default() + }; + + // Format an output which spends some of the funds in the vault. + let txout = TxOut { + script_pubkey: unvault_wallet + .next_unused_address(KeychainKind::External) + .script_pubkey(), + value: Amount::from_sat(750), + }; + + // Add the TxIn and TxOut to the transaction we're working on + psbt.unsigned_tx.input.push(txin); + psbt.unsigned_tx.output.push(txout); + + // Let's try using the Plan module, this time with two assets: the unvault_key + // and our `after` timelock. + println!("Adding a spending plan to the unvault spend psbt"); + let unvault_key_asset = DescriptorPublicKey::from_str(unvault_pk).unwrap(); + let timelock = absolute::LockTime::from_height(after).expect("couldn't format locktime"); + let unvault_assets = Assets::new().add(unvault_key_asset).after(timelock); + + // Automatically generate a plan for spending the descriptor, using the assets in our plan + let unvault_plan = definite_descriptor + .clone() + .plan(&unvault_assets) + .expect("couldn't create plan"); + + // Create an input where we can put the plan data + // Add the witness_utxo from the deposit transaction to the input + let mut input = psbt::Input { + witness_utxo: Some(witness_utxo.clone()), + ..Default::default() + }; + + // Update the input with the generated plan + println!("Update the unvault spend psbt with spend plan"); + unvault_plan.update_psbt_input(&mut input); + + // Push the input to the PSBT + psbt.inputs.push(input); + + // Add a default output to the PSBT + psbt.outputs.push(psbt::Output::default()); + + // Sign it + println!("Signing unvault spend psbt"); + let secp = Secp256k1::new(); + let unvault_key = Xpriv::from_str(unvault_tprv).unwrap(); + psbt.sign(&unvault_key, &secp) + .expect("failed to sign unvault psbt"); + + // Finalize the psbt. Miniscript satisfier checks are run at this point, + // and if your transaction doesn't satisfy the descriptor, this will error. + psbt.finalize_mut(&secp) + .expect("problem finalizing unvault psbt"); + println!("Finalized unvault spend psbt"); + + // Once again, we could broadcast the transaction if we wanted to + // spend using the unvault path. Spend attempts will fail until + // after the absolute block height defined in the timelock. + let _my_unvault_tx = psbt.extract_tx().expect("failed to extract unvault tx"); + + println!("Congratulations, you've just used a miniscript descriptor with a BDK wallet!"); + println!("Read the code comments for a more detailed look at what happened.") +} + +fn blank_transaction() -> bitcoin::Transaction { + blank_transaction_with(absolute::LockTime::ZERO) +} + +fn blank_transaction_with(lock_time: absolute::LockTime) -> bitcoin::Transaction { + bitcoin::Transaction { + version: transaction::Version::TWO, + lock_time, + input: vec![], + output: vec![], + } +} + +fn deposit_transaction(wallet: &mut Wallet, tx: Transaction) -> OutPoint { + use bdk_chain::{ConfirmationBlockTime, TxGraph}; + use bdk_wallet::Update; + + let txid = tx.compute_txid(); + let vout = 0; + let mut graph = TxGraph::::new([tx]); + let _ = graph.insert_seen_at(txid, 42); + wallet + .apply_update(Update { + graph, + ..Default::default() + }) + .unwrap(); + + OutPoint { txid, vout } +} diff --git a/example-crates/example_cli/Cargo.toml b/example-crates/example_cli/Cargo.toml index 9b8c4debb..09f093ebf 100644 --- a/example-crates/example_cli/Cargo.toml +++ b/example-crates/example_cli/Cargo.toml @@ -9,8 +9,10 @@ edition = "2021" bdk_chain = { path = "../../crates/chain", features = ["serde", "miniscript"]} bdk_coin_select = "0.3.0" bdk_file_store = { path = "../../crates/file_store" } +bitcoin = { version = "0.32.0", features = ["base64"], default-features = false } anyhow = "1" clap = { version = "3.2.23", features = ["derive", "env"] } +rand = "0.8" serde = { version = "1", features = ["derive"] } serde_json = "1.0" diff --git a/example-crates/example_cli/src/lib.rs b/example-crates/example_cli/src/lib.rs index ee0c9b376..393f9d3fb 100644 --- a/example-crates/example_cli/src/lib.rs +++ b/example-crates/example_cli/src/lib.rs @@ -10,14 +10,9 @@ use std::sync::Mutex; use anyhow::bail; use anyhow::Context; use bdk_chain::bitcoin::{ - absolute, - address::NetworkUnchecked, - bip32, consensus, constants, - hex::DisplayHex, - relative, - secp256k1::{rand::prelude::*, Secp256k1}, - transaction, Address, Amount, Network, NetworkKind, PrivateKey, Psbt, PublicKey, Sequence, - Transaction, TxIn, TxOut, + absolute, address::NetworkUnchecked, bip32, consensus, constants, hex::DisplayHex, relative, + secp256k1::Secp256k1, transaction, Address, Amount, Network, NetworkKind, PrivateKey, Psbt, + PublicKey, Sequence, Transaction, TxIn, TxOut, }; use bdk_chain::miniscript::{ descriptor::{DescriptorSecretKey, SinglePubKey}, @@ -37,6 +32,7 @@ use bdk_coin_select::{ }; use bdk_file_store::Store; use clap::{Parser, Subcommand}; +use rand::prelude::*; pub use anyhow; pub use clap; @@ -675,7 +671,7 @@ pub fn handle_commands( Ok(()) } PsbtCmd::Sign { psbt, descriptor } => { - let mut psbt = Psbt::from_str(&psbt.unwrap_or_default())?; + let mut psbt = Psbt::from_str(psbt.unwrap_or_default().as_str())?; let desc_str = match descriptor { Some(s) => s, @@ -717,7 +713,7 @@ pub fn handle_commands( chain_specific, psbt, } => { - let mut psbt = Psbt::from_str(&psbt)?; + let mut psbt = Psbt::from_str(psbt.as_str())?; psbt.finalize_mut(&Secp256k1::new()) .map_err(|errors| anyhow::anyhow!("failed to finalize PSBT {errors:?}"))?;