Cleanly check validity rules for DescriptorKeys

Each context has slightly different rules on what Pks are allowed in descriptors

Legacy/Bare does not allow x_only keys
SegwitV0 does not allow uncompressed keys and x_only keys
Tapscript does not allow uncompressed keys

Note that String types are allowed everywhere

Author: sanket1729

src/descriptor/bare.rs

@@ -15,7 +15,7 @@ use bitcoin::{Address, Network, Script};
 
 use super::checksum::{self, verify_checksum};
 use crate::expression::{self, FromTree};
-use crate::miniscript::context::ScriptContext;
+use crate::miniscript::context::{ScriptContext, ScriptContextError};
 use crate::policy::{semantic, Liftable};
 use crate::prelude::*;
 use crate::util::{varint_len, witness_to_scriptsig};
@@ -208,9 +208,12 @@ pub struct Pkh<Pk: MiniscriptKey> {
 
 impl<Pk: MiniscriptKey> Pkh<Pk> {
     /// Create a new Pkh descriptor
-    pub fn new(pk: Pk) -> Self {
+    pub fn new(pk: Pk) -> Result<Self, ScriptContextError> {
         // do the top-level checks
-        Self { pk }
+        match BareCtx::check_pk(&pk) {
+            Ok(()) => Ok(Pkh { pk }),
+            Err(e) => Err(e),
+        }
     }
 
     /// Get a reference to the inner key
@@ -337,7 +340,7 @@ impl_from_tree!(
         if top.name == "pkh" && top.args.len() == 1 {
             Ok(Pkh::new(expression::terminal(&top.args[0], |pk| {
                 Pk::from_str(pk)
-            })?))
+            })?)?)
         } else {
             Err(Error::Unexpected(format!(
                 "{}({} args) while parsing pkh descriptor",
@@ -378,6 +381,7 @@ where
     where
         T: Translator<P, Q, E>,
     {
-        Ok(Pkh::new(t.pk(&self.pk)?))
+        let res = Pkh::new(t.pk(&self.pk)?);
+        Ok(res.expect("Expect will be fixed in next commit"))
     }
 }

src/descriptor/mod.rs

@@ -178,8 +178,8 @@ impl<Pk: MiniscriptKey> Descriptor<Pk> {
     }
 
     /// Create a new PkH descriptor
-    pub fn new_pkh(pk: Pk) -> Self {
-        Descriptor::Pkh(Pkh::new(pk))
+    pub fn new_pkh(pk: Pk) -> Result<Self, Error> {
+        Ok(Descriptor::Pkh(Pkh::new(pk)?))
     }
 
     /// Create a new Wpkh descriptor
@@ -1288,7 +1288,7 @@ mod tests {
         );
         assert_eq!(bare.unsigned_script_sig(), bitcoin::Script::new());
 
-        let pkh = Descriptor::new_pkh(pk);
+        let pkh = Descriptor::new_pkh(pk).unwrap();
         pkh.satisfy(&mut txin, &satisfier).expect("satisfaction");
         assert_eq!(
             txin,
@@ -2006,4 +2006,54 @@ pk(03f28773c2d975288bc7d1d205c3748651b075fbc6610e58cddeeddf8f19405aa8))";
         Descriptor::<DescriptorPublicKey>::from_str("wsh(andor(pk(tpubDEN9WSToTyy9ZQfaYqSKfmVqmq1VVLNtYfj3Vkqh67et57eJ5sTKZQBkHqSwPUsoSskJeaYnPttHe2VrkCsKA27kUaN9SDc5zhqeLzKa1rr/0'/<0;1>/*),older(10000),pk(tpubD8LYfn6njiA2inCoxwM7EuN3cuLVcaHAwLYeups13dpevd3nHLRdK9NdQksWXrhLQVxcUZRpnp5CkJ1FhE61WRAsHxDNAkvGkoQkAeWDYjV/8/<0;1;2;3;4>/*)))").unwrap_err();
         Descriptor::<DescriptorPublicKey>::from_str("wsh(andor(pk(tpubDEN9WSToTyy9ZQfaYqSKfmVqmq1VVLNtYfj3Vkqh67et57eJ5sTKZQBkHqSwPUsoSskJeaYnPttHe2VrkCsKA27kUaN9SDc5zhqeLzKa1rr/0'/<0;1;2;3>/*),older(10000),pk(tpubD8LYfn6njiA2inCoxwM7EuN3cuLVcaHAwLYeups13dpevd3nHLRdK9NdQksWXrhLQVxcUZRpnp5CkJ1FhE61WRAsHxDNAkvGkoQkAeWDYjV/8/<0;1;2>/*)))").unwrap_err();
     }
+
+    #[test]
+    fn test_context_pks() {
+        let comp_key = bitcoin::PublicKey::from_str(
+            "02015e4cb53458bf813db8c79968e76e10d13ed6426a23fa71c2f41ba021c2a7ab",
+        )
+        .unwrap();
+        let x_only_key = bitcoin::XOnlyPublicKey::from_str(
+            "015e4cb53458bf813db8c79968e76e10d13ed6426a23fa71c2f41ba021c2a7ab",
+        )
+        .unwrap();
+        let uncomp_key = bitcoin::PublicKey::from_str("04015e4cb53458bf813db8c79968e76e10d13ed6426a23fa71c2f41ba021c2a7ab0d46021e9e69ef061eb25eab41ae206187b2b05e829559df59d78319bd9267b4").unwrap();
+
+        type Desc = Descriptor<DescriptorPublicKey>;
+
+        // Legacy tests, x-only keys are not supported
+        Desc::from_str(&format!("sh(pk({}))", comp_key)).unwrap();
+        Desc::from_str(&format!("sh(pk({}))", uncomp_key)).unwrap();
+        Desc::from_str(&format!("sh(pk({}))", x_only_key)).unwrap_err();
+
+        // bare tests, x-only keys not supported
+        Desc::from_str(&format!("pk({})", comp_key)).unwrap();
+        Desc::from_str(&format!("pk({})", uncomp_key)).unwrap();
+        Desc::from_str(&format!("pk({})", x_only_key)).unwrap_err();
+
+        // pkh tests, x-only keys not supported
+        Desc::from_str(&format!("pkh({})", comp_key)).unwrap();
+        Desc::from_str(&format!("pkh({})", uncomp_key)).unwrap();
+        Desc::from_str(&format!("pkh({})", x_only_key)).unwrap_err();
+
+        // wpkh tests, uncompressed and x-only keys not supported
+        Desc::from_str(&format!("wpkh({})", comp_key)).unwrap();
+        Desc::from_str(&format!("wpkh({})", uncomp_key)).unwrap_err();
+        Desc::from_str(&format!("wpkh({})", x_only_key)).unwrap_err();
+
+        // Segwitv0 tests, uncompressed and x-only keys not supported
+        Desc::from_str(&format!("wsh(pk({}))", comp_key)).unwrap();
+        Desc::from_str(&format!("wsh(pk({}))", uncomp_key)).unwrap_err();
+        Desc::from_str(&format!("wsh(pk({}))", x_only_key)).unwrap_err();
+
+        // Tap tests, key path
+        Desc::from_str(&format!("tr({})", comp_key)).unwrap();
+        Desc::from_str(&format!("tr({})", uncomp_key)).unwrap_err();
+        Desc::from_str(&format!("tr({})", x_only_key)).unwrap();
+
+        // Tap tests, script path
+        Desc::from_str(&format!("tr({},pk({}))", x_only_key, comp_key)).unwrap();
+        Desc::from_str(&format!("tr({},pk({}))", x_only_key, uncomp_key)).unwrap_err();
+        Desc::from_str(&format!("tr({},pk({}))", x_only_key, x_only_key)).unwrap();
+    }
 }

src/descriptor/segwitv0.rs

@@ -306,14 +306,11 @@ pub struct Wpkh<Pk: MiniscriptKey> {
 
 impl<Pk: MiniscriptKey> Wpkh<Pk> {
     /// Create a new Wpkh descriptor
-    pub fn new(pk: Pk) -> Result<Self, Error> {
+    pub fn new(pk: Pk) -> Result<Self, ScriptContextError> {
         // do the top-level checks
-        if pk.is_uncompressed() {
-            Err(Error::ContextError(ScriptContextError::CompressedOnly(
-                pk.to_string(),
-            )))
-        } else {
-            Ok(Self { pk })
+        match Segwitv0::check_pk(&pk) {
+            Ok(_) => Ok(Wpkh { pk }),
+            Err(e) => Err(e),
         }
     }
 

src/descriptor/tr.rs

@@ -20,7 +20,8 @@ use crate::policy::Liftable;
 use crate::prelude::*;
 use crate::util::{varint_len, witness_size};
 use crate::{
-    errstr, Error, ForEachKey, MiniscriptKey, Satisfier, Tap, ToPublicKey, TranslatePk, Translator,
+    errstr, Error, ForEachKey, MiniscriptKey, Satisfier, ScriptContext, Tap, ToPublicKey,
+    TranslatePk, Translator,
 };
 
 /// A Taproot Tree representation.
@@ -165,6 +166,7 @@ impl<Pk: MiniscriptKey> fmt::Debug for TapTree<Pk> {
 impl<Pk: MiniscriptKey> Tr<Pk> {
     /// Create a new [`Tr`] descriptor from internal key and [`TapTree`]
     pub fn new(internal_key: Pk, tree: Option<TapTree<Pk>>) -> Result<Self, Error> {
+        Tap::check_pk(&internal_key)?;
         let nodes = tree.as_ref().map(|t| t.taptree_height()).unwrap_or(0);
 
         if nodes <= TAPROOT_CONTROL_MAX_NODE_COUNT {
@@ -636,14 +638,12 @@ where
     where
         T: Translator<P, Q, E>,
     {
-        let translate_desc = Tr {
-            internal_key: translate.pk(&self.internal_key)?,
-            tree: match &self.tree {
-                Some(tree) => Some(tree.translate_helper(translate)?),
-                None => None,
-            },
-            spend_info: Mutex::new(None),
+        let tree = match &self.tree {
+            Some(tree) => Some(tree.translate_helper(translate)?),
+            None => None,
         };
+        let translate_desc = Tr::new(translate.pk(&self.internal_key)?, tree)
+            .expect("This will be removed in future");
         Ok(translate_desc)
     }
 }

src/miniscript/context.rs

@@ -209,6 +209,12 @@ where
         Ok(())
     }
 
+    /// Each context has slightly different rules on what Pks are allowed in descriptors
+    /// Legacy/Bare does not allow x_only keys
+    /// Segwit does not allow uncompressed keys and x_only keys
+    /// Tapscript does not allow uncompressed keys
+    fn check_pk<Pk: MiniscriptKey>(pk: &Pk) -> Result<(), ScriptContextError>;
+
     /// Depending on script context, the size of a satifaction witness may slightly differ.
     fn max_satisfaction_size<Pk: MiniscriptKey>(ms: &Miniscript<Pk, Self>) -> Option<usize>;
     /// Depending on script Context, some of the Terminals might not
@@ -356,6 +362,18 @@ impl ScriptContext for Legacy {
         }
     }
 
+    // Only compressed and uncompressed public keys are allowed in Legacy context
+    fn check_pk<Pk: MiniscriptKey>(pk: &Pk) -> Result<(), ScriptContextError> {
+        if pk.is_x_only_key() {
+            Err(ScriptContextError::XOnlyKeysNotAllowed(
+                pk.to_string(),
+                Self::name_str(),
+            ))
+        } else {
+            Ok(())
+        }
+    }
+
     fn check_witness<Pk: MiniscriptKey>(witness: &[Vec<u8>]) -> Result<(), ScriptContextError> {
         // In future, we could avoid by having a function to count only
         // len of script instead of converting it.
@@ -373,31 +391,21 @@ impl ScriptContext for Legacy {
         }
 
         match ms.node {
-            Terminal::PkK(ref key) if key.is_x_only_key() => {
-                return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                    key.to_string(),
-                    Self::name_str(),
-                ))
-            }
+            Terminal::PkK(ref pk) => Self::check_pk(pk),
             Terminal::Multi(_k, ref pks) => {
                 if pks.len() > MAX_PUBKEYS_PER_MULTISIG {
                     return Err(ScriptContextError::CheckMultiSigLimitExceeded);
                 }
                 for pk in pks.iter() {
-                    if pk.is_x_only_key() {
-                        return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                            pk.to_string(),
-                            Self::name_str(),
-                        ));
-                    }
+                    Self::check_pk(pk)?;
                 }
+                Ok(())
             }
             Terminal::MultiA(..) => {
                 return Err(ScriptContextError::MultiANotAllowed);
             }
-            _ => {}
+            _ => Ok(()),
         }
-        Ok(())
     }
 
     fn check_local_consensus_validity<Pk: MiniscriptKey>(
@@ -461,6 +469,20 @@ impl ScriptContext for Segwitv0 {
         Ok(())
     }
 
+    // No x-only keys or uncompressed keys in Segwitv0 context
+    fn check_pk<Pk: MiniscriptKey>(pk: &Pk) -> Result<(), ScriptContextError> {
+        if pk.is_uncompressed() {
+            Err(ScriptContextError::UncompressedKeysNotAllowed)
+        } else if pk.is_x_only_key() {
+            Err(ScriptContextError::XOnlyKeysNotAllowed(
+                pk.to_string(),
+                Self::name_str(),
+            ))
+        } else {
+            Ok(())
+        }
+    }
+
     fn check_witness<Pk: MiniscriptKey>(witness: &[Vec<u8>]) -> Result<(), ScriptContextError> {
         if witness.len() > MAX_STANDARD_P2WSH_STACK_ITEMS {
             return Err(ScriptContextError::MaxWitnessItemssExceeded {
@@ -479,30 +501,13 @@ impl ScriptContext for Segwitv0 {
         }
 
         match ms.node {
-            Terminal::PkK(ref pk) => {
-                if pk.is_uncompressed() {
-                    return Err(ScriptContextError::CompressedOnly(pk.to_string()));
-                } else if pk.is_x_only_key() {
-                    return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                        pk.to_string(),
-                        Self::name_str(),
-                    ));
-                }
-                Ok(())
-            }
+            Terminal::PkK(ref pk) => Self::check_pk(pk),
             Terminal::Multi(_k, ref pks) => {
                 if pks.len() > MAX_PUBKEYS_PER_MULTISIG {
                     return Err(ScriptContextError::CheckMultiSigLimitExceeded);
                 }
                 for pk in pks.iter() {
-                    if pk.is_uncompressed() {
-                        return Err(ScriptContextError::CompressedOnly(pk.to_string()));
-                    } else if pk.is_x_only_key() {
-                        return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                            pk.to_string(),
-                            Self::name_str(),
-                        ));
-                    }
+                    Self::check_pk(pk)?;
                 }
                 Ok(())
             }
@@ -583,6 +588,15 @@ impl ScriptContext for Tap {
         Ok(())
     }
 
+    // No uncompressed keys in Tap context
+    fn check_pk<Pk: MiniscriptKey>(pk: &Pk) -> Result<(), ScriptContextError> {
+        if pk.is_uncompressed() {
+            Err(ScriptContextError::UncompressedKeysNotAllowed)
+        } else {
+            Ok(())
+        }
+    }
+
     fn check_witness<Pk: MiniscriptKey>(witness: &[Vec<u8>]) -> Result<(), ScriptContextError> {
         // Note that tapscript has a 1000 limit compared to 100 of segwitv0
         if witness.len() > MAX_STACK_SIZE {
@@ -607,9 +621,10 @@ impl ScriptContext for Tap {
         }
 
         match ms.node {
-            Terminal::PkK(ref pk) => {
-                if pk.is_uncompressed() {
-                    return Err(ScriptContextError::UncompressedKeysNotAllowed);
+            Terminal::PkK(ref pk) => Self::check_pk(pk),
+            Terminal::MultiA(_, ref keys) => {
+                for pk in keys.iter() {
+                    Self::check_pk(pk)?;
                 }
                 Ok(())
             }
@@ -694,30 +709,32 @@ impl ScriptContext for BareCtx {
         Ok(())
     }
 
+    // No x-only keys in Bare context
+    fn check_pk<Pk: MiniscriptKey>(pk: &Pk) -> Result<(), ScriptContextError> {
+        if pk.is_x_only_key() {
+            Err(ScriptContextError::XOnlyKeysNotAllowed(
+                pk.to_string(),
+                Self::name_str(),
+            ))
+        } else {
+            Ok(())
+        }
+    }
+
     fn check_global_consensus_validity<Pk: MiniscriptKey>(
         ms: &Miniscript<Pk, Self>,
     ) -> Result<(), ScriptContextError> {
         if ms.ext.pk_cost > MAX_SCRIPT_SIZE {
             return Err(ScriptContextError::MaxWitnessScriptSizeExceeded);
         }
         match ms.node {
-            Terminal::PkK(ref key) if key.is_x_only_key() => {
-                return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                    key.to_string(),
-                    Self::name_str(),
-                ))
-            }
+            Terminal::PkK(ref key) => Self::check_pk(key),
             Terminal::Multi(_k, ref pks) => {
                 if pks.len() > MAX_PUBKEYS_PER_MULTISIG {
                     return Err(ScriptContextError::CheckMultiSigLimitExceeded);
                 }
                 for pk in pks.iter() {
-                    if pk.is_x_only_key() {
-                        return Err(ScriptContextError::XOnlyKeysNotAllowed(
-                            pk.to_string(),
-                            Self::name_str(),
-                        ));
-                    }
+                    Self::check_pk(pk)?;
                 }
                 Ok(())
             }
@@ -788,6 +805,11 @@ impl ScriptContext for NoChecks {
         Ok(())
     }
 
+    // No checks in NoChecks
+    fn check_pk<Pk: MiniscriptKey>(_pk: &Pk) -> Result<(), ScriptContextError> {
+        Ok(())
+    }
+
     fn check_global_policy_validity<Pk: MiniscriptKey>(
         _ms: &Miniscript<Pk, Self>,
     ) -> Result<(), ScriptContextError> {

src/psbt/finalizer.rs

@@ -147,7 +147,7 @@ fn get_descriptor(psbt: &Psbt, index: usize) -> Result<Descriptor<PublicKey>, In
             *script_pubkey == addr.script_pubkey()
         });
         match partial_sig_contains_pk {
-            Some((pk, _sig)) => Ok(Descriptor::new_pkh(*pk)),
+            Some((pk, _sig)) => Descriptor::new_pkh(*pk).map_err(|e| InputError::from(e)),
             None => Err(InputError::MissingPubkey),
         }
     } else if script_pubkey.is_v0_p2wpkh() {