npm - xpi-ts - Versions diffs - 0.2.13 → 0.2.15 - Mend

xpi-ts 0.2.13 → 0.2.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (277) hide show

package/dist/esm/lib/bitcore/script/interpreter/interpreter.js ADDED Viewed

@@ -0,0 +1,1356 @@
+import { BN, Schnorr, ECDSA, Signature, isSchnorrSignature } from '../../crypto';
+import { PublicKey } from '../../publickey';
+import { sighash as computeSighash } from '../../transaction/sighash';
+import { BufferUtil } from '../../util/buffer';
+import { Opcode } from '../../opcode';
+import { Hash } from '../../crypto/hash';
+import { Script } from '../../script';
+import { ConditionStack } from './condition-stack';
+import { ScriptNum } from './script-num';
+import { MAX_SCRIPT_ELEMENT_SIZE, MAX_OPS_PER_SCRIPT, MAX_PUBKEYS_PER_MULTISIG, MAX_SCRIPT_SIZE, MAX_STACK_SIZE, MAX_NUM2BIN_SIZE, ScriptError, ScriptFlags, } from './types';
+import { TAPROOT_SCRIPTTYPE, TAPROOT_INTRO_SIZE, TAPROOT_SIZE_WITHOUT_STATE, TAPROOT_SIZE_WITH_STATE, TAPROOT_ANNEX_TAG, TAPROOT_LEAF_MASK, TAPROOT_LEAF_TAPSCRIPT, TAPROOT_CONTROL_BASE_SIZE, TAPROOT_CONTROL_NODE_SIZE, TAPROOT_CONTROL_MAX_SIZE, verifyTaprootCommitment, } from '../taproot';
+function stacktop(stack, offset) {
+    return stack[stack.length + offset];
+}
+function stackset(stack, offset, value) {
+    stack[stack.length + offset] = value;
+}
+function popstack(stack) {
+    if (stack.length === 0) {
+        throw new Error('popstack: stack empty');
+    }
+    stack.pop();
+}
+function stackswap(stack, offsetA, offsetB) {
+    const idxA = stack.length + offsetA;
+    const idxB = stack.length + offsetB;
+    const tmp = stack[idxA];
+    stack[idxA] = stack[idxB];
+    stack[idxB] = tmp;
+}
+const EMPTY_BUFFER = BufferUtil.alloc(0);
+const FALSE_BUFFER = BufferUtil.alloc(0);
+const TRUE_BUFFER = BufferUtil.from([0x01]);
+function castToBool(buf) {
+    for (let i = 0; i < buf.length; i++) {
+        if (buf[i] !== 0) {
+            if (i === buf.length - 1 && buf[i] === 0x80) {
+                return false;
+            }
+            return true;
+        }
+    }
+    return false;
+}
+const FIRST_UNDEFINED_OP_VALUE = Opcode.OP_RAWLEFTBITSHIFT + 1;
+function isOpcodeDisabled(opcode) {
+    switch (opcode) {
+        case Opcode.OP_RESERVED:
+        case Opcode.OP_VERIF:
+        case Opcode.OP_VERNOTIF:
+        case Opcode.OP_IFDUP:
+        case Opcode.OP_INVERT:
+        case Opcode.OP_RESERVED1:
+        case Opcode.OP_RESERVED2:
+        case Opcode.OP_2MUL:
+        case Opcode.OP_2DIV:
+        case Opcode.OP_MUL:
+        case Opcode.OP_NUMEQUAL:
+        case Opcode.OP_NUMEQUALVERIFY:
+        case Opcode.OP_NUMNOTEQUAL:
+        case Opcode.OP_SHA1:
+            return true;
+        default:
+            if (opcode >= FIRST_UNDEFINED_OP_VALUE) {
+                return true;
+            }
+            return false;
+    }
+}
+function checkMinimalPush(data, opcode) {
+    if (data.length === 0) {
+        return opcode === Opcode.OP_0;
+    }
+    if (data.length === 1) {
+        if (data[0] >= 1 && data[0] <= 16) {
+            return opcode === Opcode.OP_1 + (data[0] - 1);
+        }
+        if (data[0] === 0x81) {
+            return opcode === Opcode.OP_1NEGATE;
+        }
+    }
+    if (data.length <= 75) {
+        return opcode === data.length;
+    }
+    if (data.length <= 255) {
+        return opcode === Opcode.OP_PUSHDATA1;
+    }
+    if (data.length <= 65535) {
+        return opcode === Opcode.OP_PUSHDATA2;
+    }
+    return true;
+}
+function readInstruction(script, offset) {
+    if (offset >= script.length) {
+        return null;
+    }
+    const opcode = script[offset];
+    let data = EMPTY_BUFFER;
+    let next = offset + 1;
+    if (opcode >= 0 && opcode < Opcode.OP_PUSHDATA1) {
+        const len = opcode;
+        if (next + len > script.length) {
+            return null;
+        }
+        data = script.slice(next, next + len);
+        next += len;
+    }
+    else if (opcode === Opcode.OP_PUSHDATA1) {
+        if (next >= script.length) {
+            return null;
+        }
+        const len = script[next];
+        next++;
+        if (next + len > script.length) {
+            return null;
+        }
+        data = script.slice(next, next + len);
+        next += len;
+    }
+    else if (opcode === Opcode.OP_PUSHDATA2) {
+        if (next + 2 > script.length) {
+            return null;
+        }
+        const len = script[next] | (script[next + 1] << 8);
+        next += 2;
+        if (next + len > script.length) {
+            return null;
+        }
+        data = script.slice(next, next + len);
+        next += len;
+    }
+    else if (opcode === Opcode.OP_PUSHDATA4) {
+        if (next + 4 > script.length) {
+            return null;
+        }
+        const len = script[next] |
+            (script[next + 1] << 8) |
+            (script[next + 2] << 16) |
+            ((script[next + 3] << 24) >>> 0);
+        next += 4;
+        if (next + len > script.length) {
+            return null;
+        }
+        data = script.slice(next, next + len);
+        next += len;
+    }
+    return { opcode, data, nextOffset: next };
+}
+function success() {
+    return { success: true, error: ScriptError.OK };
+}
+function failure(error) {
+    return { success: false, error };
+}
+export function evalScript(stack, scriptBuf, flags, checker, metrics, execdata) {
+    if (scriptBuf.length > MAX_SCRIPT_SIZE) {
+        return failure(ScriptError.SCRIPT_SIZE);
+    }
+    const altstack = [];
+    const vfExec = new ConditionStack();
+    let nOpCount = 0;
+    let opcodePos = 0;
+    let offset = 0;
+    let codeHashBegin = 0;
+    try {
+        while (offset < scriptBuf.length) {
+            const fExec = vfExec.allTrue();
+            const instr = readInstruction(scriptBuf, offset);
+            if (!instr) {
+                return failure(ScriptError.BAD_OPCODE);
+            }
+            const { opcode, data: pushData } = instr;
+            offset = instr.nextOffset;
+            if (pushData.length > MAX_SCRIPT_ELEMENT_SIZE) {
+                return failure(ScriptError.PUSH_SIZE);
+            }
+            if (opcode > Opcode.OP_16 && ++nOpCount > MAX_OPS_PER_SCRIPT) {
+                return failure(ScriptError.OP_COUNT);
+            }
+            if (isOpcodeDisabled(opcode)) {
+                return failure(ScriptError.DISABLED_OPCODE);
+            }
+            if (opcode === Opcode.OP_SCRIPTTYPE) {
+                return failure(ScriptError.INVALID_OP_SCRIPTTYPE);
+            }
+            if (fExec && opcode >= 0 && opcode <= Opcode.OP_PUSHDATA4) {
+                if (!checkMinimalPush(pushData, opcode)) {
+                    return failure(ScriptError.MINIMALDATA);
+                }
+                stack.push(pushData);
+            }
+            else if (fExec ||
+                (opcode >= Opcode.OP_IF && opcode <= Opcode.OP_ENDIF)) {
+                const result = executeOpcode(opcode, stack, altstack, vfExec, fExec, flags, checker, metrics, execdata, scriptBuf, codeHashBegin, offset, opcodePos, nOpCount);
+                if (!result.success) {
+                    return result;
+                }
+                if (result.codeHashBegin !== undefined) {
+                    codeHashBegin = result.codeHashBegin;
+                }
+                if (result.nOpCount !== undefined) {
+                    nOpCount = result.nOpCount;
+                }
+            }
+            if (stack.length + altstack.length > MAX_STACK_SIZE) {
+                return failure(ScriptError.STACK_SIZE);
+            }
+            opcodePos++;
+        }
+    }
+    catch {
+        return failure(ScriptError.UNKNOWN);
+    }
+    if (!vfExec.isEmpty()) {
+        return failure(ScriptError.UNBALANCED_CONDITIONAL);
+    }
+    return success();
+}
+function opcodeSuccess(overrides) {
+    return { success: true, error: ScriptError.OK, ...overrides };
+}
+function opcodeFailure(error) {
+    return { success: false, error };
+}
+function executeOpcode(opcode, stack, altstack, vfExec, fExec, flags, checker, metrics, execdata, scriptBuf, codeHashBegin, currentOffset, opcodePos, nOpCount) {
+    switch (opcode) {
+        case Opcode.OP_1NEGATE:
+        case Opcode.OP_1:
+        case Opcode.OP_2:
+        case Opcode.OP_3:
+        case Opcode.OP_4:
+        case Opcode.OP_5:
+        case Opcode.OP_6:
+        case Opcode.OP_7:
+        case Opcode.OP_8:
+        case Opcode.OP_9:
+        case Opcode.OP_10:
+        case Opcode.OP_11:
+        case Opcode.OP_12:
+        case Opcode.OP_13:
+        case Opcode.OP_14:
+        case Opcode.OP_15:
+        case Opcode.OP_16: {
+            const n = opcode - (Opcode.OP_1 - 1);
+            const bn = new ScriptNum(BigInt(n));
+            stack.push(bn.toBuffer());
+            return opcodeSuccess();
+        }
+        case Opcode.OP_NOP:
+            return opcodeSuccess();
+        case Opcode.OP_CHECKLOCKTIMEVERIFY: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const nLockTime = ScriptNum.fromBuffer(stacktop(stack, -1), true, 5);
+            if (nLockTime.isNegative()) {
+                return opcodeFailure(ScriptError.NEGATIVE_LOCKTIME);
+            }
+            if (!checker.checkLockTime(nLockTime.value)) {
+                return opcodeFailure(ScriptError.UNSATISFIED_LOCKTIME);
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_CHECKSEQUENCEVERIFY: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const nSequence = ScriptNum.fromBuffer(stacktop(stack, -1), true, 5);
+            if (nSequence.isNegative()) {
+                return opcodeFailure(ScriptError.NEGATIVE_LOCKTIME);
+            }
+            const SEQUENCE_LOCKTIME_DISABLE_FLAG = 1 << 31;
+            if ((Number(nSequence.value) & SEQUENCE_LOCKTIME_DISABLE_FLAG) !== 0) {
+                return opcodeSuccess();
+            }
+            if (!checker.checkSequence(nSequence.value)) {
+                return opcodeFailure(ScriptError.UNSATISFIED_LOCKTIME);
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_NOP1:
+        case Opcode.OP_NOP4:
+        case Opcode.OP_NOP5:
+        case Opcode.OP_NOP6:
+        case Opcode.OP_NOP7:
+        case Opcode.OP_NOP8:
+        case Opcode.OP_NOP9:
+        case Opcode.OP_NOP10: {
+            if (flags & ScriptFlags.VERIFY_DISCOURAGE_UPGRADABLE_NOPS) {
+                return opcodeFailure(ScriptError.DISCOURAGE_UPGRADABLE_NOPS);
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_IF:
+        case Opcode.OP_NOTIF: {
+            let fValue = false;
+            if (fExec) {
+                if (stack.length < 1) {
+                    return opcodeFailure(ScriptError.UNBALANCED_CONDITIONAL);
+                }
+                const vch = stacktop(stack, -1);
+                if (flags & ScriptFlags.VERIFY_MINIMALIF) {
+                    if (vch.length > 1) {
+                        return opcodeFailure(ScriptError.MINIMALIF);
+                    }
+                    if (vch.length === 1 && vch[0] !== 1) {
+                        return opcodeFailure(ScriptError.MINIMALIF);
+                    }
+                }
+                fValue = castToBool(vch);
+                if (opcode === Opcode.OP_NOTIF) {
+                    fValue = !fValue;
+                }
+                popstack(stack);
+            }
+            vfExec.pushBack(fValue);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_ELSE: {
+            if (vfExec.isEmpty()) {
+                return opcodeFailure(ScriptError.UNBALANCED_CONDITIONAL);
+            }
+            vfExec.toggleTop();
+            return opcodeSuccess();
+        }
+        case Opcode.OP_ENDIF: {
+            if (vfExec.isEmpty()) {
+                return opcodeFailure(ScriptError.UNBALANCED_CONDITIONAL);
+            }
+            vfExec.popBack();
+            return opcodeSuccess();
+        }
+        case Opcode.OP_VERIFY: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            if (castToBool(stacktop(stack, -1))) {
+                popstack(stack);
+            }
+            else {
+                return opcodeFailure(ScriptError.VERIFY);
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_RETURN:
+            return opcodeFailure(ScriptError.OP_RETURN);
+        case Opcode.OP_TOALTSTACK: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            altstack.push(stacktop(stack, -1));
+            popstack(stack);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_FROMALTSTACK: {
+            if (altstack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_ALTSTACK_OPERATION);
+            }
+            stack.push(altstack[altstack.length - 1]);
+            altstack.pop();
+            return opcodeSuccess();
+        }
+        case Opcode.OP_2DROP: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            popstack(stack);
+            popstack(stack);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_2DUP: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.push(stacktop(stack, -2));
+            stack.push(stacktop(stack, -2));
+            return opcodeSuccess();
+        }
+        case Opcode.OP_3DUP: {
+            if (stack.length < 3) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.push(stacktop(stack, -3));
+            stack.push(stacktop(stack, -3));
+            stack.push(stacktop(stack, -3));
+            return opcodeSuccess();
+        }
+        case Opcode.OP_2OVER: {
+            if (stack.length < 4) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.push(stacktop(stack, -4));
+            stack.push(stacktop(stack, -4));
+            return opcodeSuccess();
+        }
+        case Opcode.OP_2ROT: {
+            if (stack.length < 6) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const v1 = stacktop(stack, -6);
+            const v2 = stacktop(stack, -5);
+            stack.splice(stack.length - 6, 2);
+            stack.push(v1, v2);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_2SWAP: {
+            if (stack.length < 4) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stackswap(stack, -4, -2);
+            stackswap(stack, -3, -1);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_DEPTH: {
+            const bn = new ScriptNum(BigInt(stack.length));
+            stack.push(bn.toBuffer());
+            return opcodeSuccess();
+        }
+        case Opcode.OP_DROP: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            popstack(stack);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_DUP: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.push(stacktop(stack, -1));
+            return opcodeSuccess();
+        }
+        case Opcode.OP_NIP: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.splice(stack.length - 2, 1);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_OVER: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stack.push(stacktop(stack, -2));
+            return opcodeSuccess();
+        }
+        case Opcode.OP_PICK:
+        case Opcode.OP_ROLL: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const n = ScriptNum.fromBuffer(stacktop(stack, -1), true).toNumber();
+            popstack(stack);
+            if (n < 0 || n >= stack.length) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const val = stacktop(stack, -n - 1);
+            if (opcode === Opcode.OP_ROLL) {
+                stack.splice(stack.length - n - 1, 1);
+            }
+            stack.push(val);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_ROT: {
+            if (stack.length < 3) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stackswap(stack, -3, -2);
+            stackswap(stack, -2, -1);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_SWAP: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            stackswap(stack, -2, -1);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_TUCK: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const vch = stacktop(stack, -1);
+            stack.splice(stack.length - 2, 0, vch);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_SIZE: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const bn = new ScriptNum(BigInt(stacktop(stack, -1).length));
+            stack.push(bn.toBuffer());
+            return opcodeSuccess();
+        }
+        case Opcode.OP_AND:
+        case Opcode.OP_OR:
+        case Opcode.OP_XOR: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const a = stacktop(stack, -2);
+            const b = stacktop(stack, -1);
+            const longer = a.length >= b.length ? a : b;
+            const shorter = a.length >= b.length ? b : a;
+            const result = longer;
+            if (opcode === Opcode.OP_AND) {
+                for (let i = 0; i < result.length; i++) {
+                    result[i] = i < shorter.length ? result[i] & shorter[i] : 0;
+                }
+            }
+            else if (opcode === Opcode.OP_OR) {
+                for (let i = 0; i < shorter.length; i++) {
+                    result[i] |= shorter[i];
+                }
+            }
+            else {
+                for (let i = 0; i < shorter.length; i++) {
+                    result[i] ^= shorter[i];
+                }
+            }
+            const depthShorter = a.length >= b.length ? -1 : -2;
+            stack.splice(stack.length + depthShorter, 1);
+            stackset(stack, -1, result);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_EQUAL:
+        case Opcode.OP_EQUALVERIFY: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const a2 = stacktop(stack, -2);
+            const b2 = stacktop(stack, -1);
+            const fEqual = a2.equals(b2);
+            popstack(stack);
+            popstack(stack);
+            stack.push(fEqual ? TRUE_BUFFER : FALSE_BUFFER);
+            if (opcode === Opcode.OP_EQUALVERIFY) {
+                if (fEqual) {
+                    popstack(stack);
+                }
+                else {
+                    return opcodeFailure(ScriptError.EQUALVERIFY);
+                }
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_1ADD:
+        case Opcode.OP_1SUB:
+        case Opcode.OP_NEGATE:
+        case Opcode.OP_ABS:
+        case Opcode.OP_NOT:
+        case Opcode.OP_0NOTEQUAL: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            let bn = ScriptNum.fromBuffer(stacktop(stack, -1), true);
+            const ONE = new ScriptNum(1n);
+            switch (opcode) {
+                case Opcode.OP_1ADD:
+                    bn = bn.add(ONE);
+                    break;
+                case Opcode.OP_1SUB:
+                    bn = bn.sub(ONE);
+                    break;
+                case Opcode.OP_NEGATE:
+                    bn = bn.negate();
+                    break;
+                case Opcode.OP_ABS:
+                    bn = bn.abs();
+                    break;
+                case Opcode.OP_NOT:
+                    bn = new ScriptNum(bn.isZero() ? 1n : 0n);
+                    break;
+                case Opcode.OP_0NOTEQUAL:
+                    bn = new ScriptNum(bn.isZero() ? 0n : 1n);
+                    break;
+            }
+            popstack(stack);
+            stack.push(bn.toBuffer());
+            return opcodeSuccess();
+        }
+        case Opcode.OP_ADD:
+        case Opcode.OP_SUB:
+        case Opcode.OP_DIV:
+        case Opcode.OP_MOD:
+        case Opcode.OP_MULPOW2:
+        case Opcode.OP_BOOLAND:
+        case Opcode.OP_BOOLOR:
+        case Opcode.OP_LESSTHAN:
+        case Opcode.OP_GREATERTHAN:
+        case Opcode.OP_LESSTHANOREQUAL:
+        case Opcode.OP_GREATERTHANOREQUAL:
+        case Opcode.OP_MIN:
+        case Opcode.OP_MAX: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const bn1 = ScriptNum.fromBuffer(stacktop(stack, -2), true);
+            const bn2 = ScriptNum.fromBuffer(stacktop(stack, -1), true);
+            let bnResult;
+            switch (opcode) {
+                case Opcode.OP_ADD:
+                    bnResult = bn1.add(bn2);
+                    break;
+                case Opcode.OP_SUB:
+                    bnResult = bn1.sub(bn2);
+                    break;
+                case Opcode.OP_DIV:
+                    if (bn2.isZero()) {
+                        return opcodeFailure(ScriptError.DIV_BY_ZERO);
+                    }
+                    bnResult = bn1.div(bn2);
+                    break;
+                case Opcode.OP_MOD:
+                    if (bn2.isZero()) {
+                        return opcodeFailure(ScriptError.MOD_BY_ZERO);
+                    }
+                    bnResult = bn1.mod(bn2);
+                    break;
+                case Opcode.OP_MULPOW2:
+                    bnResult = bn1.mulpow2(bn2);
+                    break;
+                case Opcode.OP_BOOLAND:
+                    bnResult = new ScriptNum(!bn1.isZero() && !bn2.isZero() ? 1n : 0n);
+                    break;
+                case Opcode.OP_BOOLOR:
+                    bnResult = new ScriptNum(!bn1.isZero() || !bn2.isZero() ? 1n : 0n);
+                    break;
+                case Opcode.OP_LESSTHAN:
+                    bnResult = new ScriptNum(bn1.lt(bn2) ? 1n : 0n);
+                    break;
+                case Opcode.OP_GREATERTHAN:
+                    bnResult = new ScriptNum(bn1.gt(bn2) ? 1n : 0n);
+                    break;
+                case Opcode.OP_LESSTHANOREQUAL:
+                    bnResult = new ScriptNum(bn1.lte(bn2) ? 1n : 0n);
+                    break;
+                case Opcode.OP_GREATERTHANOREQUAL:
+                    bnResult = new ScriptNum(bn1.gte(bn2) ? 1n : 0n);
+                    break;
+                case Opcode.OP_MIN:
+                    bnResult = bn1.lt(bn2) ? bn1 : bn2;
+                    break;
+                case Opcode.OP_MAX:
+                    bnResult = bn1.gt(bn2) ? bn1 : bn2;
+                    break;
+                default:
+                    return opcodeFailure(ScriptError.BAD_OPCODE);
+            }
+            popstack(stack);
+            popstack(stack);
+            stack.push(bnResult.toBuffer());
+            return opcodeSuccess();
+        }
+        case Opcode.OP_WITHIN: {
+            if (stack.length < 3) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const x = ScriptNum.fromBuffer(stacktop(stack, -3), true);
+            const min = ScriptNum.fromBuffer(stacktop(stack, -2), true);
+            const max = ScriptNum.fromBuffer(stacktop(stack, -1), true);
+            const fValue = min.lte(x) && x.lt(max);
+            popstack(stack);
+            popstack(stack);
+            popstack(stack);
+            stack.push(fValue ? TRUE_BUFFER : FALSE_BUFFER);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_RIPEMD160:
+        case Opcode.OP_SHA256:
+        case Opcode.OP_HASH160:
+        case Opcode.OP_HASH256: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const data = stacktop(stack, -1);
+            let hashResult;
+            switch (opcode) {
+                case Opcode.OP_RIPEMD160:
+                    hashResult = Hash.ripemd160(data);
+                    break;
+                case Opcode.OP_SHA256:
+                    hashResult = Hash.sha256(data);
+                    break;
+                case Opcode.OP_HASH160:
+                    hashResult = Hash.sha256ripemd160(data);
+                    break;
+                case Opcode.OP_HASH256:
+                    hashResult = Hash.sha256sha256(data);
+                    break;
+                default:
+                    return opcodeFailure(ScriptError.BAD_OPCODE);
+            }
+            popstack(stack);
+            stack.push(hashResult);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_CODESEPARATOR: {
+            execdata.codeseparatorPos = opcodePos;
+            return opcodeSuccess({ codeHashBegin: currentOffset });
+        }
+        case Opcode.OP_CHECKSIG:
+        case Opcode.OP_CHECKSIGVERIFY: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const vchSig = stacktop(stack, -2);
+            const vchPubKey = stacktop(stack, -1);
+            let fSuccess = false;
+            if (vchSig.length > 0) {
+                const scriptCode = scriptBuf.slice(codeHashBegin);
+                fSuccess = checker.checkSignature(vchSig, vchPubKey, execdata, scriptCode, flags);
+                metrics.sigChecks += 1;
+                if (!fSuccess) {
+                    return opcodeFailure(ScriptError.SIG_NULLFAIL);
+                }
+            }
+            popstack(stack);
+            popstack(stack);
+            stack.push(fSuccess ? TRUE_BUFFER : FALSE_BUFFER);
+            if (opcode === Opcode.OP_CHECKSIGVERIFY) {
+                if (fSuccess) {
+                    popstack(stack);
+                }
+                else {
+                    return opcodeFailure(ScriptError.CHECKSIGVERIFY);
+                }
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_CHECKDATASIG:
+        case Opcode.OP_CHECKDATASIGVERIFY: {
+            if (stack.length < 3) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const cdsSig = stacktop(stack, -3);
+            const cdsMsg = stacktop(stack, -2);
+            const cdsPubKey = stacktop(stack, -1);
+            let cdSuccess = false;
+            if (cdsSig.length > 0) {
+                const msgHash = Hash.sha256(cdsMsg);
+                cdSuccess = checker.verifySignature(cdsSig, cdsPubKey, msgHash);
+                metrics.sigChecks += 1;
+                if (!cdSuccess) {
+                    return opcodeFailure(ScriptError.SIG_NULLFAIL);
+                }
+            }
+            popstack(stack);
+            popstack(stack);
+            popstack(stack);
+            stack.push(cdSuccess ? TRUE_BUFFER : FALSE_BUFFER);
+            if (opcode === Opcode.OP_CHECKDATASIGVERIFY) {
+                if (cdSuccess) {
+                    popstack(stack);
+                }
+                else {
+                    return opcodeFailure(ScriptError.CHECKDATASIGVERIFY);
+                }
+            }
+            return opcodeSuccess();
+        }
+        case Opcode.OP_CHECKMULTISIG:
+        case Opcode.OP_CHECKMULTISIGVERIFY: {
+            return executeCheckmultisig(opcode, stack, flags, checker, metrics, execdata, scriptBuf, codeHashBegin, currentOffset, nOpCount);
+        }
+        case Opcode.OP_CAT: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const catA = stacktop(stack, -2);
+            const catB = stacktop(stack, -1);
+            if (catA.length + catB.length > MAX_SCRIPT_ELEMENT_SIZE) {
+                return opcodeFailure(ScriptError.PUSH_SIZE);
+            }
+            const catResult = BufferUtil.concat([catA, catB]);
+            popstack(stack);
+            stackset(stack, -1, catResult);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_SPLIT: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const splitData = stacktop(stack, -2);
+            const pos = ScriptNum.fromBuffer(stacktop(stack, -1), true).toNumber();
+            if (pos < 0 || pos > splitData.length) {
+                return opcodeFailure(ScriptError.INVALID_SPLIT_RANGE);
+            }
+            const n1 = splitData.slice(0, pos);
+            const n2 = splitData.slice(pos);
+            stackset(stack, -2, n1);
+            stackset(stack, -1, n2);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_REVERSEBYTES: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const revData = stacktop(stack, -1);
+            revData.reverse();
+            stackset(stack, -1, revData);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_NUM2BIN: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const targetSize = ScriptNum.fromBuffer(stacktop(stack, -1), true).toNumber();
+            if (targetSize > MAX_SCRIPT_ELEMENT_SIZE) {
+                return opcodeFailure(ScriptError.PUSH_SIZE);
+            }
+            if (targetSize > MAX_NUM2BIN_SIZE) {
+                return opcodeFailure(ScriptError.INVALID_NUM2BIN_SIZE);
+            }
+            popstack(stack);
+            let rawnum = stacktop(stack, -1);
+            rawnum = ScriptNum.minimallyEncode(rawnum);
+            if (rawnum.length > targetSize) {
+                return opcodeFailure(ScriptError.IMPOSSIBLE_ENCODING);
+            }
+            if (rawnum.length === targetSize) {
+                stackset(stack, -1, rawnum);
+                return opcodeSuccess();
+            }
+            let signbit = 0x00;
+            if (rawnum.length > 0) {
+                signbit = rawnum[rawnum.length - 1] & 0x80;
+                rawnum[rawnum.length - 1] &= 0x7f;
+            }
+            const padded = BufferUtil.alloc(targetSize, 0);
+            rawnum.copy(padded);
+            padded[targetSize - 1] = signbit;
+            stackset(stack, -1, padded);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_BIN2NUM: {
+            if (stack.length < 1) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const encoded = ScriptNum.minimallyEncode(stacktop(stack, -1));
+            if (!ScriptNum.isMinimallyEncoded(encoded)) {
+                return opcodeFailure(ScriptError.INVALID_NUMBER_RANGE);
+            }
+            stackset(stack, -1, encoded);
+            return opcodeSuccess();
+        }
+        case Opcode.OP_RAWLEFTBITSHIFT: {
+            if (stack.length < 2) {
+                return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+            }
+            const shiftData = stacktop(stack, -2);
+            const signedBitshift = ScriptNum.fromBuffer(stacktop(stack, -1), true).toNumber();
+            popstack(stack);
+            if (shiftData.length === 0 || signedBitshift === 0) {
+                stackset(stack, -1, shiftData);
+                return opcodeSuccess();
+            }
+            let bitshift = Math.abs(signedBitshift);
+            if (bitshift > shiftData.length * 8) {
+                bitshift = shiftData.length * 8;
+            }
+            const innerBitshift = bitshift % 8;
+            const byteshift = Math.floor(bitshift / 8);
+            if (signedBitshift > 0) {
+                const mask = 0xff >> innerBitshift;
+                for (let idx = byteshift; idx < shiftData.length; idx++) {
+                    const bits = shiftData[idx];
+                    const off = idx - byteshift;
+                    const removeMask = mask << innerBitshift;
+                    shiftData[off] &= ~removeMask & 0xff;
+                    shiftData[off] |= (bits & mask) << innerBitshift;
+                    if (off > 0) {
+                        const removeMaskCarry = (~mask & 0xff) >> (8 - innerBitshift);
+                        shiftData[off - 1] &= ~removeMaskCarry & 0xff;
+                        shiftData[off - 1] |= (bits & ~mask & 0xff) >> (8 - innerBitshift);
+                    }
+                }
+                if (byteshift < shiftData.length) {
+                    shiftData[shiftData.length - byteshift - 1] &=
+                        (0xff << innerBitshift) & 0xff;
+                }
+                for (let i = shiftData.length - byteshift; i < shiftData.length; i++) {
+                    shiftData[i] = 0;
+                }
+            }
+            else {
+                const mask = (0xff << innerBitshift) & 0xff;
+                for (let idx = shiftData.length - byteshift - 1; idx >= 0; idx--) {
+                    const bits = shiftData[idx];
+                    const off = idx + byteshift;
+                    const removeMask = (mask >> innerBitshift) & 0xff;
+                    shiftData[off] &= ~removeMask & 0xff;
+                    shiftData[off] |= (bits & mask) >> innerBitshift;
+                    if (off + 1 < shiftData.length) {
+                        const removeMaskCarry = ((~mask & 0xff) << (8 - innerBitshift)) & 0xff;
+                        shiftData[off + 1] &= ~removeMaskCarry & 0xff;
+                        shiftData[off + 1] |=
+                            ((bits & ~mask & 0xff) << (8 - innerBitshift)) & 0xff;
+                    }
+                }
+                for (let i = 0; i < byteshift; i++) {
+                    shiftData[i] = 0;
+                }
+                if (byteshift < shiftData.length) {
+                    shiftData[byteshift] &= (0xff >> innerBitshift) & 0xff;
+                }
+            }
+            stackset(stack, -1, shiftData);
+            return opcodeSuccess();
+        }
+        default:
+            return opcodeFailure(ScriptError.BAD_OPCODE);
+    }
+}
+function executeCheckmultisig(opcode, stack, flags, checker, metrics, execdata, scriptBuf, codeHashBegin, _currentOffset, nOpCount) {
+    if (stack.length < 1) {
+        return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+    }
+    const nKeysCount = ScriptNum.fromBuffer(stacktop(stack, -1), true).toNumber();
+    if (nKeysCount < 0 || nKeysCount > MAX_PUBKEYS_PER_MULTISIG) {
+        return opcodeFailure(ScriptError.PUBKEY_COUNT);
+    }
+    let updatedOpCount = nOpCount + nKeysCount;
+    if (updatedOpCount > MAX_OPS_PER_SCRIPT) {
+        return opcodeFailure(ScriptError.OP_COUNT);
+    }
+    const idxTopKey = 2;
+    const idxSigCount = idxTopKey + nKeysCount;
+    if (stack.length < idxSigCount) {
+        return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+    }
+    const nSigsCount = ScriptNum.fromBuffer(stacktop(stack, -idxSigCount), true).toNumber();
+    if (nSigsCount < 0 || nSigsCount > nKeysCount) {
+        return opcodeFailure(ScriptError.SIG_COUNT);
+    }
+    const idxTopSig = idxSigCount + 1;
+    const idxDummy = idxTopSig + nSigsCount;
+    if (stack.length < idxDummy) {
+        return opcodeFailure(ScriptError.INVALID_STACK_OPERATION);
+    }
+    const scriptCode = scriptBuf.slice(codeHashBegin);
+    let fSuccess = true;
+    const dummyElement = stacktop(stack, -idxDummy);
+    if (dummyElement.length !== 0) {
+        let checkBits = 0;
+        for (let i = 0; i < dummyElement.length; i++) {
+            checkBits |= dummyElement[i] << (8 * i);
+        }
+        let bitCount = 0;
+        let tmp = checkBits;
+        while (tmp) {
+            bitCount += tmp & 1;
+            tmp >>>= 1;
+        }
+        if (bitCount !== nSigsCount) {
+            return opcodeFailure(ScriptError.INVALID_BIT_COUNT);
+        }
+        const idxBottomKey = idxTopKey + nKeysCount - 1;
+        const idxBottomSig = idxTopSig + nSigsCount - 1;
+        let iKey = 0;
+        for (let iSig = 0; iSig < nSigsCount; iSig++, iKey++) {
+            if (checkBits >>> iKey === 0) {
+                return opcodeFailure(ScriptError.INVALID_BIT_RANGE);
+            }
+            while (((checkBits >>> iKey) & 0x01) === 0) {
+                iKey++;
+            }
+            if (iKey >= nKeysCount) {
+                return opcodeFailure(ScriptError.PUBKEY_COUNT);
+            }
+            const vchSig = stacktop(stack, -idxBottomSig + iSig);
+            const vchPubKey = stacktop(stack, -idxBottomKey + iKey);
+            if (!checker.checkSignature(vchSig, vchPubKey, execdata, scriptCode, flags)) {
+                return opcodeFailure(ScriptError.SIG_NULLFAIL);
+            }
+            metrics.sigChecks += 1;
+        }
+        if (checkBits >>> iKey !== 0) {
+            return opcodeFailure(ScriptError.INVALID_BIT_COUNT);
+        }
+    }
+    else {
+        let nSigsRemaining = nSigsCount;
+        let nKeysRemaining = nKeysCount;
+        while (fSuccess && nSigsRemaining > 0) {
+            const vchSig = stacktop(stack, -idxTopSig - (nSigsCount - nSigsRemaining));
+            const vchPubKey = stacktop(stack, -idxTopKey - (nKeysCount - nKeysRemaining));
+            const fOk = checker.checkSignature(vchSig, vchPubKey, execdata, scriptCode, flags);
+            if (fOk) {
+                nSigsRemaining--;
+            }
+            nKeysRemaining--;
+            if (nSigsRemaining > nKeysRemaining) {
+                fSuccess = false;
+            }
+        }
+        let allSigsNull = true;
+        for (let i = 0; i < nSigsCount; i++) {
+            if (stacktop(stack, -idxTopSig - i).length > 0) {
+                allSigsNull = false;
+                break;
+            }
+        }
+        if (!fSuccess && !allSigsNull) {
+            return opcodeFailure(ScriptError.SIG_NULLFAIL);
+        }
+        if (!allSigsNull) {
+            metrics.sigChecks += nKeysCount;
+        }
+    }
+    for (let i = 0; i < idxDummy; i++) {
+        popstack(stack);
+    }
+    stack.push(fSuccess ? TRUE_BUFFER : FALSE_BUFFER);
+    if (opcode === Opcode.OP_CHECKMULTISIGVERIFY) {
+        if (fSuccess) {
+            popstack(stack);
+        }
+        else {
+            return opcodeFailure(ScriptError.CHECKMULTISIGVERIFY);
+        }
+    }
+    return opcodeSuccess({ nOpCount: updatedOpCount });
+}
+function isPayToTaproot(scriptPubKey) {
+    if (scriptPubKey.length < TAPROOT_SIZE_WITHOUT_STATE) {
+        return false;
+    }
+    if (scriptPubKey[0] !== Opcode.OP_SCRIPTTYPE ||
+        scriptPubKey[1] !== TAPROOT_SCRIPTTYPE) {
+        return false;
+    }
+    if (scriptPubKey[2] !== 33) {
+        return false;
+    }
+    if (scriptPubKey.length === TAPROOT_SIZE_WITHOUT_STATE) {
+        return true;
+    }
+    return (scriptPubKey.length === TAPROOT_SIZE_WITH_STATE &&
+        scriptPubKey[TAPROOT_SIZE_WITHOUT_STATE] === 32);
+}
+function checkTaprootKeySpendSigEncoding(sig) {
+    if (sig.length === 0) {
+        return null;
+    }
+    if (sig.length !== 65) {
+        return ScriptError.SIG_BADLENGTH;
+    }
+    const hashtype = sig[sig.length - 1];
+    if ((hashtype & Signature.SIGHASH_ALGORITHM_MASK) !==
+        Signature.SIGHASH_LOTUS) {
+        return ScriptError.TAPROOT_KEY_SPEND_MUST_USE_LOTUS_SIGHASH;
+    }
+    return null;
+}
+function checkPubKeyEncoding(pubkey) {
+    if (pubkey.length === 33) {
+        if (pubkey[0] === 0x02 || pubkey[0] === 0x03) {
+            return null;
+        }
+    }
+    else if (pubkey.length === 65) {
+        if (pubkey[0] === 0x04) {
+            return null;
+        }
+    }
+    return ScriptError.PUBKEYTYPE;
+}
+function verifyTaprootSpend(stack, scriptSig, scriptPubKey, flags, checker, metrics) {
+    if (flags & ScriptFlags.DISABLE_TAPROOT_SIGHASH_LOTUS) {
+        return failure(ScriptError.TAPROOT_PHASEOUT);
+    }
+    if (!isPayToTaproot(scriptPubKey)) {
+        return failure(ScriptError.SCRIPTTYPE_MALFORMED_SCRIPT);
+    }
+    const vchPubkey = scriptPubKey.slice(TAPROOT_INTRO_SIZE, TAPROOT_SIZE_WITHOUT_STATE);
+    if (stack.length === 0) {
+        return failure(ScriptError.INVALID_STACK_OPERATION);
+    }
+    if (stack.length >= 2 &&
+        stack[stack.length - 1].length > 0 &&
+        stack[stack.length - 1][0] === TAPROOT_ANNEX_TAG) {
+        return failure(ScriptError.TAPROOT_ANNEX_NOT_SUPPORTED);
+    }
+    if (stack.length === 1) {
+        const vchSig = stack[stack.length - 1];
+        const sigFlags = flags | ScriptFlags.TAPROOT_KEY_SPEND_PATH;
+        const sigErr = checkTaprootKeySpendSigEncoding(vchSig);
+        if (sigErr !== null) {
+            return failure(sigErr);
+        }
+        const pkErr = checkPubKeyEncoding(vchPubkey);
+        if (pkErr !== null) {
+            return failure(pkErr);
+        }
+        if (vchSig.length === 0 ||
+            !checker.checkSignature(vchSig, vchPubkey, undefined, BufferUtil.alloc(0), sigFlags)) {
+            return failure(ScriptError.TAPROOT_VERIFY_SIGNATURE_FAILED);
+        }
+        metrics.sigChecks += 1;
+        return success();
+    }
+    const controlBlock = stack[stack.length - 1];
+    const scriptBytes = stack[stack.length - 2];
+    const execScript = scriptBytes;
+    stack.pop();
+    stack.pop();
+    const sizeRemainder = (controlBlock.length - TAPROOT_CONTROL_BASE_SIZE) %
+        TAPROOT_CONTROL_NODE_SIZE;
+    if (controlBlock.length < TAPROOT_CONTROL_BASE_SIZE ||
+        controlBlock.length > TAPROOT_CONTROL_MAX_SIZE ||
+        sizeRemainder !== 0) {
+        return failure(ScriptError.TAPROOT_WRONG_CONTROL_SIZE);
+    }
+    if ((controlBlock[0] & TAPROOT_LEAF_MASK) !== TAPROOT_LEAF_TAPSCRIPT) {
+        return failure(ScriptError.TAPROOT_LEAF_VERSION_NOT_SUPPORTED);
+    }
+    const commitResult = verifyTaprootCommitment(controlBlock, vchPubkey, Script.fromBuffer(execScript));
+    if (!commitResult.success) {
+        return failure(ScriptError.TAPROOT_VERIFY_COMMITMENT_FAILED);
+    }
+    if (scriptPubKey.length === TAPROOT_SIZE_WITH_STATE) {
+        const stateStart = TAPROOT_SIZE_WITHOUT_STATE + 1;
+        const stateEnd = TAPROOT_SIZE_WITH_STATE;
+        stack.push(scriptPubKey.slice(stateStart, stateEnd));
+    }
+    const taprootExecdata = {
+        codeseparatorPos: 0xffffffff,
+        executedScriptHash: commitResult.tapleafHash,
+    };
+    const evalResult = evalScript(stack, execScript, flags, checker, metrics, taprootExecdata);
+    if (!evalResult.success) {
+        return evalResult;
+    }
+    if (stack.length === 0 || !castToBool(stack[stack.length - 1])) {
+        return failure(ScriptError.EVAL_FALSE);
+    }
+    return verifyPostConditions(stack, scriptSig, flags, metrics);
+}
+function verifyScriptType(stack, scriptSig, scriptPubKey, flags, checker, metrics) {
+    if (scriptPubKey.length === 1) {
+        return failure(ScriptError.SCRIPTTYPE_MALFORMED_SCRIPT);
+    }
+    if (scriptPubKey[1] === TAPROOT_SCRIPTTYPE) {
+        return verifyTaprootSpend(stack, scriptSig, scriptPubKey, flags, checker, metrics);
+    }
+    return failure(ScriptError.SCRIPTTYPE_INVALID_TYPE);
+}
+function verifyPostConditions(stack, scriptSig, flags, metrics) {
+    if (flags & ScriptFlags.VERIFY_CLEANSTACK) {
+        if (stack.length !== 1) {
+            return failure(ScriptError.CLEANSTACK);
+        }
+    }
+    if (flags & ScriptFlags.VERIFY_INPUT_SIGCHECKS) {
+        if (scriptSig.length < metrics.sigChecks * 43 - 60) {
+            return failure(ScriptError.INPUT_SIGCHECKS);
+        }
+    }
+    return success();
+}
+export function verifyScript(scriptSig, scriptPubKey, flags, checker) {
+    if (!isPushOnly(scriptSig)) {
+        return failure(ScriptError.SIG_PUSHONLY);
+    }
+    const metrics = { sigChecks: 0 };
+    const stack = [];
+    const sigExecdata = makeExecdata(BufferUtil.alloc(0));
+    const sigResult = evalScript(stack, scriptSig, flags, checker, metrics, sigExecdata);
+    if (!sigResult.success) {
+        return sigResult;
+    }
+    if (scriptPubKey.length > 0 && scriptPubKey[0] === Opcode.OP_SCRIPTTYPE) {
+        const stResult = verifyScriptType(stack, scriptSig, scriptPubKey, flags, checker, metrics);
+        return stResult;
+    }
+    const stackCopy = stack.map(el => el.slice());
+    const pubkeyExecdata = makeExecdata(scriptPubKey);
+    const pubkeyResult = evalScript(stack, scriptPubKey, flags, checker, metrics, pubkeyExecdata);
+    if (!pubkeyResult.success) {
+        return pubkeyResult;
+    }
+    if (stack.length === 0) {
+        return failure(ScriptError.EVAL_FALSE);
+    }
+    if (!castToBool(stack[stack.length - 1])) {
+        return failure(ScriptError.EVAL_FALSE);
+    }
+    if (isPayToScriptHash(scriptPubKey)) {
+        if (!isPushOnly(scriptSig)) {
+            return failure(ScriptError.SIG_PUSHONLY);
+        }
+        const p2shStack = stackCopy;
+        if (p2shStack.length === 0) {
+            return failure(ScriptError.EVAL_FALSE);
+        }
+        const serializedScript = p2shStack[p2shStack.length - 1];
+        p2shStack.pop();
+        const p2shExecdata = makeExecdata(serializedScript);
+        const p2shResult = evalScript(p2shStack, serializedScript, flags, checker, metrics, p2shExecdata);
+        if (!p2shResult.success) {
+            return p2shResult;
+        }
+        if (p2shStack.length === 0) {
+            return failure(ScriptError.EVAL_FALSE);
+        }
+        if (!castToBool(p2shStack[p2shStack.length - 1])) {
+            return failure(ScriptError.EVAL_FALSE);
+        }
+        stack.length = 0;
+        stack.push(...p2shStack);
+    }
+    return verifyPostConditions(stack, scriptSig, flags, metrics);
+}
+function isPushOnly(scriptBuf) {
+    let offset = 0;
+    while (offset < scriptBuf.length) {
+        const instr = readInstruction(scriptBuf, offset);
+        if (!instr) {
+            return false;
+        }
+        if (instr.opcode > Opcode.OP_16) {
+            return false;
+        }
+        offset = instr.nextOffset;
+    }
+    return true;
+}
+function isPayToScriptHash(scriptBuf) {
+    return (scriptBuf.length === 23 &&
+        scriptBuf[0] === Opcode.OP_HASH160 &&
+        scriptBuf[1] === 0x14 &&
+        scriptBuf[22] === Opcode.OP_EQUAL);
+}
+function makeExecdata(script) {
+    return {
+        codeseparatorPos: 0xffffffff,
+        executedScriptHash: Hash.sha256sha256(script.length > 0 ? script : BufferUtil.alloc(0)),
+    };
+}
+export class Interpreter {
+    errstr = '';
+    static SCRIPT_VERIFY_NONE = ScriptFlags.VERIFY_NONE;
+    static SCRIPT_TAPROOT_KEY_SPEND_PATH = ScriptFlags.TAPROOT_KEY_SPEND_PATH;
+    static SCRIPT_DISABLE_TAPROOT_SIGHASH_LOTUS = ScriptFlags.DISABLE_TAPROOT_SIGHASH_LOTUS;
+    static SCRIPT_VERIFY_DISCOURAGE_UPGRADABLE_NOPS = ScriptFlags.VERIFY_DISCOURAGE_UPGRADABLE_NOPS;
+    static SCRIPT_VERIFY_CLEANSTACK = ScriptFlags.VERIFY_CLEANSTACK;
+    static SCRIPT_VERIFY_MINIMALIF = ScriptFlags.VERIFY_MINIMALIF;
+    static SCRIPT_ENABLE_SIGHASH_FORKID = ScriptFlags.ENABLE_SIGHASH_FORKID;
+    static SCRIPT_ENABLE_REPLAY_PROTECTION = ScriptFlags.ENABLE_REPLAY_PROTECTION;
+    static SCRIPT_VERIFY_INPUT_SIGCHECKS = ScriptFlags.VERIFY_INPUT_SIGCHECKS;
+    verify(scriptSig, scriptPubKey, tx, nin, flags, satoshis) {
+        this.errstr = '';
+        const sigBuf = scriptSig.toBuffer();
+        const pubkeyBuf = scriptPubKey.toBuffer();
+        const checker = new TransactionSignatureChecker(tx, nin, satoshis);
+        const result = verifyScript(sigBuf, pubkeyBuf, flags, checker);
+        if (!result.success) {
+            this.errstr = result.error;
+        }
+        return result.success;
+    }
+}
+class TransactionSignatureChecker {
+    tx;
+    nin;
+    satoshis;
+    constructor(tx, nin, satoshis) {
+        this.tx = tx;
+        this.nin = nin;
+        this.satoshis = satoshis;
+    }
+    verifySignature(signature, publicKey, sighash) {
+        try {
+            const pubkey = PublicKey.fromBuffer(publicKey);
+            if (isSchnorrSignature(signature)) {
+                const sig = Signature.fromSchnorr(signature);
+                return Schnorr.verify(sighash, sig, pubkey);
+            }
+            else {
+                const sig = Signature.fromDER(signature);
+                const ecdsa = new ECDSA();
+                ecdsa.hashbuf = sighash;
+                ecdsa.sig = sig;
+                ecdsa.pubkey = pubkey;
+                ecdsa.verify();
+                return ecdsa.verified;
+            }
+        }
+        catch {
+            return false;
+        }
+    }
+    checkSignature(signature, publicKey, execdata, scriptCode, flags) {
+        if (signature.length === 0) {
+            return false;
+        }
+        try {
+            const hashtype = signature[signature.length - 1];
+            const rawSig = signature.slice(0, signature.length - 1);
+            const subscript = Script.fromBuffer(scriptCode);
+            const sighashBuf = computeSighash(this.tx, hashtype, this.nin, subscript, this.satoshis !== undefined
+                ? BN.fromNumber(Number(this.satoshis))
+                : undefined, flags);
+            return this.verifySignature(rawSig, publicKey, sighashBuf);
+        }
+        catch {
+            return false;
+        }
+    }
+    checkLockTime(lockTime) {
+        const LOCKTIME_THRESHOLD = 500000000n;
+        const txLockTime = BigInt(this.tx.nLockTime || 0);
+        if ((txLockTime < LOCKTIME_THRESHOLD && lockTime >= LOCKTIME_THRESHOLD) ||
+            (txLockTime >= LOCKTIME_THRESHOLD && lockTime < LOCKTIME_THRESHOLD)) {
+            return false;
+        }
+        if (lockTime > txLockTime) {
+            return false;
+        }
+        const input = this.tx.inputs?.[this.nin];
+        if (input && input.sequenceNumber === 0xffffffff) {
+            return false;
+        }
+        return true;
+    }
+    checkSequence(sequence) {
+        const SEQUENCE_LOCKTIME_DISABLE_FLAG = 1n << 31n;
+        const SEQUENCE_LOCKTIME_TYPE_FLAG = 1n << 22n;
+        const SEQUENCE_LOCKTIME_MASK = 0x0000ffffn;
+        if (sequence & SEQUENCE_LOCKTIME_DISABLE_FLAG) {
+            return true;
+        }
+        const txVersion = this.tx.version || 1;
+        if (txVersion < 2) {
+            return false;
+        }
+        const input = this.tx.inputs?.[this.nin];
+        if (!input) {
+            return false;
+        }
+        const txSequence = BigInt(input.sequenceNumber || 0);
+        if (txSequence & SEQUENCE_LOCKTIME_DISABLE_FLAG) {
+            return false;
+        }
+        if ((sequence & SEQUENCE_LOCKTIME_TYPE_FLAG) !==
+            (txSequence & SEQUENCE_LOCKTIME_TYPE_FLAG)) {
+            return false;
+        }
+        if ((sequence & SEQUENCE_LOCKTIME_MASK) >
+            (txSequence & SEQUENCE_LOCKTIME_MASK)) {
+            return false;
+        }
+        return true;
+    }
+}