miniscript refactor: Remove unique_ptr-indirection #31713

hodlinator commented at 9:16 PM on January 22, 2025: contributor

Removes one level of unnecessary indirection, which was a change that originally aided in finding one issue in #30866. Simplifies the code one step further than 09a1875ad8cddeb17c19af34b8282d37fed0937e belonging to aforementioned PR.

Also adds test which verifies resistance to stack overflow when it comes to ~Node() and Node::Clone().

No observed difference when running benchmarks: ExpandDescriptor/WalletIsMineDescriptors/WalletIsMineMigratedDescriptors/WalletLoadingDescriptors.

Followup to #30866.

DrahtBot commented at 9:16 PM on January 22, 2025: contributor

The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Code Coverage & Benchmarks

For details see: https://corecheck.dev/bitcoin/bitcoin/pulls/31713.

Reviews

See the guideline for information on the review process.

Type	Reviewers
ACK	darosior, l0rinc, achow101
Stale ACK	sipa

If your review is incorrectly listed, please copy-paste <code></code> into the comment that the bot should ignore.

Conflicts

Reviewers, this pull request conflicts with the following ones:

#34141 (miniscript: Use Func and Expr when parsing keys, hashes, and locktimes by achow101)

If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

LLM Linter (✨ experimental)

Possible places where named args for integral literals may be used (e.g. func(x, /*named_arg=*/0) in C++, and func(x, named_arg=0) in Python):

to_parse.emplace_back(ParseContext::WRAPPED_EXPR, -1, -1) in src/script/miniscript.h
to_parse.emplace_back(ParseContext::OR_I, -1, -1) in src/script/miniscript.h

2026-01-20

hodlinator commented at 9:20 PM on January 22, 2025: contributor

CC @achow101 @darosior @brunoerg from parent PR to gauge their interest.

It's unfortunate that this PR touches many lines, so if there's little support for the refactoring I'm fine with closing, or letting it linger for a while (I understand this is super-low priority). At least it helped find the issue mentioned at the top of the summary.

darosior commented at 1:04 AM on January 23, 2025: member

CI failure looks unrelated. Could you s/script/miniscript/ in the PR title to make it clear to reviewer this does not touch consensus critical stuff?

It's unfortunate that this PR touches many lines

It's also not a part of the codebase where i expect much churn, so it probably lowers the bar for doing something like this.

hodlinator renamed this:
~~script refactor: Remove superfluous unique_ptr-indirection (#30866 follow-up)~~
miniscript refactor: Remove unique_ptr-indirection (#30866 follow-up)
on Jan 23, 2025

hodlinator force-pushed on Jan 23, 2025

maflcko commented at 8:33 AM on January 23, 2025: member

CI failure looks unrelated.

I can't seem to find it. It would be good to always report or at least leave a comment with the log to any CI failure. Otherwise, it will remain unfixed and will just happen on another pull later on.

l0rinc commented at 8:59 AM on January 23, 2025: contributor

leave a comment with the log to any CI failure

I think they meant the p2p_1p1c_network failure at https://github.com/bitcoin/bitcoin/actions/runs/12917231673/job/36023158007?pr=31713

hodlinator commented at 9:05 AM on January 23, 2025: contributor

I think they meant the p2p_1p1c_network failure at https://github.com/bitcoin/bitcoin/actions/runs/12917231673/job/36023158007?pr=31713

Yes, that's the one, thanks for finding it @l0rinc!

Could you s/script/miniscript/ in the PR title to make it clear to reviewer this does not touch consensus critical stuff?

Updated PR title and commit message titles.

darosior commented at 3:36 PM on January 23, 2025: member

From a quick skim, this looks fine to me. I wonder if @sipa has any objection to not using pointers here.

Let me see if we can get the conflicts in first and then do this when nothing else is conflicting anymore.

sipa commented at 5:07 PM on January 23, 2025: member

Very rough-skim Concept ACK.

This will make the code diverge further from the c++ miniscript policy compiler code, but that's a bullet we already took with the shared_ptr to unique_ptr change, and it doesn't seem there is development happening on that anyway.

in src/script/descriptor.cpp:1304 in 58e9c7ca89 outdated

1300 | @@ -1301,31 +1301,31 @@ class StringMaker {
1301 |  class MiniscriptDescriptor final : public DescriptorImpl
1302 |  {
1303 |  private:
1304 | -    miniscript::NodeRef<uint32_t> m_node;
1305 | +    const miniscript::Node<uint32_t> m_node;

purpleKarrot commented at 4:02 PM on February 27, 2025:

Data members should not be const. See https://isocpp.github.io/CppCoreGuidelines/CppCoreGuidelines#Rc-constref

hodlinator commented at 3:51 PM on March 1, 2025:

Thanks for having a look! const fields are the bane of making types movable, as in c7f1829b4bb3a579c65a99a62b42f64de946c0da of this very PR, so good to have another argument in that direction.

Still think there's some value in marking fields as const to collapse down the mental model of the code when moving is not necessary. Wish we had "const except on move".

But I've proven my point that it can now be made const. I'll remove it on the next push.

hodlinator commented at 2:41 PM on March 20, 2025:

Adjusted in latest push, which is otherwise just a rebase.

laanwj added the label Utils/log/libs on Mar 4, 2025

DrahtBot added the label Needs rebase on Mar 20, 2025

hodlinator force-pushed on Mar 20, 2025

DrahtBot removed the label Needs rebase on Mar 20, 2025

DrahtBot added the label Needs rebase on Apr 10, 2025

hodlinator force-pushed on Apr 12, 2025

DrahtBot removed the label Needs rebase on Apr 12, 2025

DrahtBot added the label Needs rebase on Apr 29, 2025

hodlinator force-pushed on Apr 30, 2025

DrahtBot removed the label Needs rebase on Apr 30, 2025

DrahtBot added the label CI failed on Apr 30, 2025

DrahtBot commented at 10:33 AM on April 30, 2025: contributor

🚧 At least one of the CI tasks failed. Task tidy: https://github.com/bitcoin/bitcoin/runs/41407555382 LLM reason (✨ experimental): The CI failure is caused by clang-tidy reporting errors related to functions being within a recursive call chain, indicating static analysis issues rather than build or test errors.

<details><summary>Hints</summary>

Try to run the tests locally, according to the documentation. However, a CI failure may still happen due to a number of reasons, for example:

Possibly due to a silent merge conflict (the changes in this pull request being incompatible with the current code in the target branch). If so, make sure to rebase on the latest commit of the target branch.
A sanitizer issue, which can only be found by compiling with the sanitizer and running the affected test.
An intermittent issue.

Leave a comment here, if you need help tracking down a confusing failure.

</details>

hodlinator force-pushed on Apr 30, 2025

maflcko commented at 10:16 AM on May 6, 2025: member

If there is a clang-tidy bug, it could make sense to minimize the reproducer and report/fix it upstream

hodlinator commented at 10:23 AM on May 6, 2025: contributor

If there is a clang-tidy bug, it could make sense to minimize the reproducer and report/fix it upstream

~Currently trying to just recreate the CI failure locally on NixOS instead of spamming subscribers of the PR (a bit involved due to clang-tidy depending on generated LLVM headers).~ I keep getting nerd-sniped into trying a more NixOS-native approach. Was able to iterate through env -i HOME="$HOME" PATH="$PATH" USER="$USER" bash -c 'MAKEJOBS="-j$(nproc)" FILE_ENV="./ci/test/00_setup_env_native_tidy.sh" ./ci/test_run_all.sh'.

https://reviews.llvm.org/D72362 which added the recursion check does mention not supporting destructors.

Edit: Using NOLINTBEGIN/-END rather than NOLINTNEXTLINE did the job. So it was just invalid use of clang-tidy, not a bug.

hodlinator force-pushed on May 7, 2025

DrahtBot removed the label CI failed on May 7, 2025

in src/script/miniscript.h:420 in 33df8e9103 outdated

 413 | @@ -421,11 +414,11 @@ struct Ops {
 414 |   */
 415 |  struct SatInfo {
 416 |      //! Whether a canonical satisfaction/dissatisfaction is possible at all.
 417 | -    const bool valid;
 418 | +    bool valid;
 419 |      //! How much higher the stack size at start of execution can be compared to at the end.
 420 | -    const int32_t netdiff;
 421 | +    int32_t netdiff;
 422 |      //! Mow much higher the stack size can be during execution compared to at the end.

maflcko commented at 12:58 PM on May 7, 2025:

unrelated, but it looks like there are typos:

Mow much -> How much [Typo in "Mow much"]

RIPEMD10 -> RIPEMD160 [Incorrect algorithm name]

hodlinator commented at 3:07 PM on May 7, 2025:

Taken in latest push.

hodlinator force-pushed on May 7, 2025

in src/test/fuzz/miniscript.cpp:319 in 8ccda63b6a outdated

 310 | @@ -311,11 +311,6 @@ const struct KeyComparator {
 311 |  // A dummy scriptsig to pass to VerifyScript (we always use Segwit v0).
 312 |  const CScript DUMMY_SCRIPTSIG;
 313 |  
 314 | -//! Construct a miniscript node as a shared_ptr.

hodlinator commented at 12:22 PM on June 18, 2025:

@maflcko, the LLM linter is showing issues for the code before my changes, and also changing casing by itself which causes it to detect it as an error:

Possible typos and grammar issues:

* Mow much higher -> How much higher [Typo in comment]

* Constructed.emplace_back -> constructed.emplace_back [Typo in variable name]

* //! Construct a miniscript node as a shared_ptr. -> This comment is inaccurate given the code changes, as Node is no longer represented by a shared_ptr. [Inaccurate comment]

maflcko commented at 12:26 PM on June 18, 2025:

Thx, this was fixed in https://github.com/maflcko/DrahtBot/commit/30bb2f0baa4e920211cfa35f5be72aed013253a1 last month. You can ignore it, or rebase, if you want it to re-run.

hodlinator commented at 9:03 PM on June 18, 2025:

Rebased, thanks!

hodlinator force-pushed on Jun 18, 2025

in src/script/miniscript.h:535 in db2ede0828 outdated

 514 | @@ -515,9 +515,11 @@ struct Node {
 515 |      //! The Script context for this node. Either P2WSH or Tapscript.
 516 |      const MiniscriptContext m_script_ctx;
 517 |  
 518 | -    /* Destroy the shared pointers iteratively to avoid a stack-overflow due to recursive calls

l0rinc commented at 12:12 PM on June 22, 2025:

The comment is a #30866 leftover, right? we might want to mention it in the commit message for context (i.e. independently of the PR's description)

hodlinator commented at 6:43 AM on June 24, 2025:

Added to reference in commit message.

in src/script/miniscript.h:554 in db2ede0828 outdated

 520 | -    ~Node() {
 521 | +    ~Node()
 522 | +    {
 523 | +        // Destroy the subexpressions iteratively after moving out their
 524 | +        // subexpressions to avoid a stack-overflow due to recursive calls to
 525 | +        // the subs' destructors.

l0rinc commented at 12:17 PM on June 22, 2025:

so this basically flattens out the tree structure to make sure the destructor's call stack has at most 1 indirection? Would TreeEval complicate this too much?

Do we have a test that makes sure this doesn't cause a stack-overflow? Maybe we could cover these changed lines with something that exercises the clone and destructor, e.g.:

// Confirm that `Node`’s destructor and Clone() are stack-safe
BOOST_AUTO_TEST_CASE(node_deep_destruct)
{
    using miniscript::internal::NoDupCheck;
    using miniscript::Fragment;
    using NodeU32 = miniscript::Node<uint32_t>;

    constexpr auto ctx{miniscript::MiniscriptContext::P2WSH};

    NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
    for (uint32_t i{0}; i < 100'000; ++i) {
        root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_S, Vector(std::move(root))};
    }

    for(auto clone{root.Clone()}; !clone.subs.empty(); ) {
        BOOST_CHECK_EQUAL(clone.subs.size(), root.subs.size());
        clone = std::move(clone.subs[0]);
        root = std::move(root.subs[0]);
    }
}

which would fail for:

~Node()
{
}

or

Node<Key> Clone() const
{
    std::vector<Node> new_subs;
    new_subs.reserve(subs.size());
    for (const Node& child : subs) {
        new_subs.push_back(child.Clone());
    }

    return Node{internal::NoDupCheck{}, m_script_ctx, fragment, std::move(new_subs), keys, data, k};
}

hodlinator commented at 12:17 PM on June 24, 2025:

Thanks for the test! Added as the last commit (~78db9e119136154bd733c95fc6379c780703234a~ f22f4f75e252e4f2171af34e4f92f3e6a396f227). Had to increase the depth from 100'000 to 1000'000 for it to cause stack overflow. Could simplify Clone()ing.

so this basically flattens out the tree structure to make sure the desctructor's call stack has at most 1 indirection? Would TreeEval complicate this too much?

I've brought back an earlier version of the destructor I had that destroys entire vector<Node>s at once in a separate commit (~106d6937372ce62ccebf5d2c019381a337681826~ 00ce8ef316646221c7a2d21734694bf27cae71df). If that doesn't satisfy I'm happy to see a TreeEval-version.

l0rinc commented at 7:15 AM on June 25, 2025:

Nice, I like the new one a lot more (moving the whole subs vector instead of one-by-one)! One small nit: I think I'd prefer the flattening metaphor rather than the stripping one

hodlinator commented at 5:33 PM on June 27, 2025:

(Forgot to mention but I changed from to_be_stripped + stripping to queue + flattening). https://github.com/bitcoin/bitcoin/blob/2bb86e371c21ca996cf8c1fbc80bc9b39f3d1dec/src/script/miniscript.h#L536-L544

l0rinc commented at 9:25 PM on June 27, 2025:

... and you also changed to do/while since there's always at least one value in the queue 👍

darosior commented at 4:13 PM on January 23, 2026:

Would TreeEval complicate this too much?

TreeEval is only for read-only evaluations over the AST, it cannot modify the nodes.

in src/script/miniscript.h:525 in db2ede0828 outdated

 523 | +        // Destroy the subexpressions iteratively after moving out their
 524 | +        // subexpressions to avoid a stack-overflow due to recursive calls to
 525 | +        // the subs' destructors.
 526 |          while (!subs.empty()) {
 527 |              auto node = std::move(subs.back());
 528 |              subs.pop_back();

l0rinc commented at 12:23 PM on June 22, 2025:

Given that this can cause stack overflow, I assume the levels aren't trivial, which makes me wonder if we can Bulk move all node->subs over (in a reverse order though) and clear it at the end instead of popping one-by-one.

hodlinator commented at 12:19 PM on June 24, 2025:

I prefer moving whole vectors. See reply to #31713 (review).

in src/script/miniscript.h:514 in c04b7b490e outdated

 514 | -    const std::vector<unsigned char> data;
 515 | +    std::vector<Key> keys;
 516 | +    //! The data bytes in this expression (only for HASH160/HASH256/SHA256/RIPEMD160).
 517 | +    std::vector<unsigned char> data;
 518 |      //! Subexpressions (for WRAP_*/AND_*/OR_*/ANDOR/THRESH)
 519 |      mutable std::vector<NodeRef<Key>> subs;

l0rinc commented at 12:44 PM on June 22, 2025:

Could we remove the mutable in commit c04b7b490e0c63942000472ea9f918df326c5b00 for consistency?

hodlinator commented at 12:20 PM on June 24, 2025:

It got a bit complicated since NodeRef is internally const (std::unique_ptr<const Node<Key>>). Did it as a separate commit for now: effcf701474eacd85a24da4d1707120fc756aa91.

in src/test/miniscript_tests.cpp:653 in 5e4573adda outdated

 649 | @@ -650,13 +650,13 @@ BOOST_AUTO_TEST_CASE(fixed_tests)
 650 |      // A Script with a non minimal push is invalid
 651 |      constexpr auto nonminpush{"0000210232780000feff00ffffffffffff21ff005f00ae21ae00000000060602060406564c2102320000060900fe00005f00ae21ae00100000060606060606000000000000000000000000000000000000000000000000000000000000000000"_hex_u8};
 652 |      const CScript nonminpush_script(nonminpush.begin(), nonminpush.end());
 653 | -    BOOST_CHECK(miniscript::FromScript(nonminpush_script, wsh_converter) == nullptr);
 654 | -    BOOST_CHECK(miniscript::FromScript(nonminpush_script, tap_converter) == nullptr);
 655 | +    BOOST_CHECK(miniscript::FromScript(nonminpush_script, wsh_converter) == std::nullopt);

l0rinc commented at 12:49 PM on June 22, 2025:

We could even simplify these to:

    BOOST_CHECK(!miniscript::FromScript(nonminpush_script, wsh_converter));

(given that *_EQUALS wouldn't easily work)

hodlinator commented at 7:34 AM on June 24, 2025:

Was doing that in earlier pushes of the PR but changed back to != nullopt since it disambiguates pointer/optional cases and is closer to master.

in src/script/miniscript.h:197 in 5e4573adda outdated

 187 | @@ -188,13 +188,6 @@ inline consteval Type operator""_mst(const char* c, size_t l)
 188 |  
 189 |  using Opcode = std::pair<opcodetype, std::vector<unsigned char>>;
 190 |  
 191 | -template<typename Key> struct Node;
 192 | -template<typename Key> using NodeRef = std::unique_ptr<const Node<Key>>;
 193 | -
 194 | -//! Construct a miniscript node as a unique_ptr.
 195 | -template<typename Key, typename... Args>

l0rinc commented at 12:50 PM on June 22, 2025:

commit 5e4573adda107e6bfad6ba1afb417fdb4fdc81ed is too big (especially compared to the rest), could we do it in smaller scripted diffs instead?

hodlinator commented at 1:19 PM on June 24, 2025:

Broke out removal of NodeRef & MakeNodeRef() as mentioned in other comment.

Let me know if you still see potential in for a non-contrived scripted diff.

in src/script/miniscript.h:522 in 5e4573adda outdated

 517 | @@ -523,25 +518,27 @@ struct Node {
 518 |          while (!subs.empty()) {
 519 |              auto node = std::move(subs.back());
 520 |              subs.pop_back();
 521 | -            while (!node->subs.empty()) {
 522 | -                subs.push_back(std::move(node->subs.back()));
 523 | -                node->subs.pop_back();
 524 | +            while (!node.subs.empty()) {
 525 | +                subs.emplace_back(std::move(node.subs.back()));

l0rinc commented at 12:52 PM on June 22, 2025:

maybe we could do the push_back -> emplace_back changes in a separate commit. I'm not sure all of them make sense - does emplace_back have any advantage when the objects are already built?

<details> <summary>Details</summary>

diff --git a/src/script/miniscript.h b/src/script/miniscript.h
index f99c9a8036..be1913b785 100644
--- a/src/script/miniscript.h
+++ b/src/script/miniscript.h
@@ -519,7 +519,7 @@ struct Node {
             auto node = std::move(subs.back());
             subs.pop_back();
             while (!node.subs.empty()) {
-                subs.emplace_back(std::move(node.subs.back()));
+                subs.push_back(std::move(node.subs.back()));
                 node.subs.pop_back();
             }
         }
@@ -534,7 +534,7 @@ struct Node {
             for (auto& child : children) {
                 // It's fine to move from children as they are new nodes having
                 // been produced by calling this function one level down.
-                new_subs.emplace_back(std::move(child));
+                new_subs.push_back(std::move(child));
             }
             return Node{internal::NoDupCheck{}, node.m_script_ctx, node.fragment, std::move(new_subs), node.keys, node.data, node.k};
         };
diff --git a/src/test/fuzz/miniscript.cpp b/src/test/fuzz/miniscript.cpp
index c9904583e5..743226c33f 100644
--- a/src/test/fuzz/miniscript.cpp
+++ b/src/test/fuzz/miniscript.cpp
@@ -994,7 +994,7 @@ std::optional<Node> GenNode(MsCtx script_ctx, F ConsumeNode, Type root_type, boo
                 return {};
             }
             // Move it to the stack.
-            stack.emplace_back(std::move(*node));
+            stack.push_back(std::move(*node));
             todo.pop_back();
         }
     }

</details>

hodlinator commented at 1:23 PM on June 24, 2025:

Agree I went overboard in those 3 cases, :+1: reverted.

in src/script/miniscript.h:1693 in 5e4573adda outdated

1694 |      Node(const Node&) = delete;
1695 |      Node& operator=(const Node&) = delete;
1696 | +
1697 | +    // subs is movable, circumventing recursion, so these are permitted.
1698 | +    Node(Node&&) = default;
1699 | +    Node& operator=(Node&&) = default;

l0rinc commented at 12:53 PM on June 22, 2025:

Are these implicitly already noexcept? In other such cases we've made them explicit.

hodlinator commented at 12:35 PM on June 24, 2025:

Probably not implicit, added for good measure.

in src/script/miniscript.h:516 in c04b7b490e outdated

 502 | @@ -503,17 +503,17 @@ struct NoDupCheck {};
 503 |  template<typename Key>
 504 |  struct Node {
 505 |      //! What node type this node is.
 506 | -    const Fragment fragment;
 507 | +    Fragment fragment;

l0rinc commented at 1:16 PM on June 22, 2025:

I don't mind removing the const from the privates in Node, but I'm not a fan of making the publics mutable... It seems to me we could make them private if we move FindChallenges over.

<details> <summary>or add getters to the fields</summary>

diff --git a/src/script/miniscript.h b/src/script/miniscript.h
index f99c9a8036..181a6614cf 100644
--- a/src/script/miniscript.h
+++ b/src/script/miniscript.h
@@ -495,19 +495,6 @@ struct NoDupCheck {};
 //! A node in a miniscript expression.
 template<typename Key>
 struct Node {
-    //! What node type this node is.
-    Fragment fragment;
-    //! The k parameter (time for OLDER/AFTER, threshold for THRESH(_M))
-    uint32_t k = 0;
-    //! The keys used by this expression (only for PK_K/PK_H/MULTI)
-    std::vector<Key> keys;
-    //! The data bytes in this expression (only for HASH160/HASH256/SHA256/RIPEMD160).
-    std::vector<unsigned char> data;
-    //! Subexpressions (for WRAP_*/AND_*/OR_*/ANDOR/THRESH)
-    std::vector<Node> subs;
-    //! The Script context for this node. Either P2WSH or Tapscript.
-    MiniscriptContext m_script_ctx;
-
     // Permit 1 level deep recursion since we own instances of our own type.
     // NOLINTBEGIN(misc-no-recursion)
     ~Node()
@@ -541,7 +528,26 @@ struct Node {
         return TreeEval<Node>(upfn);
     }
 
+    Fragment GetFragment() const noexcept { return fragment; }
+    uint32_t GetK() const noexcept { return k; }
+    std::span<const Key> GetKeys() const noexcept { return keys; }
+    std::span<const unsigned char> GetData() const noexcept { return data; }
+    std::span<const Node> GetSubs() const noexcept { return subs; }
+
 private:
+    //! What node type this node is.
+    Fragment fragment;
+    //! The k parameter (time for OLDER/AFTER, threshold for THRESH(_M))
+    uint32_t k = 0;
+    //! The keys used by this expression (only for PK_K/PK_H/MULTI)
+    std::vector<Key> keys;
+    //! The data bytes in this expression (only for HASH160/HASH256/SHA256/RIPEMD160).
+    std::vector<unsigned char> data;
+    //! Subexpressions (for WRAP_*/AND_*/OR_*/ANDOR/THRESH)
+    std::vector<Node> subs;
+    //! The Script context for this node. Either P2WSH or Tapscript.
+    MiniscriptContext m_script_ctx;
+
     //! Cached ops counts.
     internal::Ops ops;
     //! Cached stack size bounds.
diff --git a/src/test/miniscript_tests.cpp b/src/test/miniscript_tests.cpp
index cee88373c4..8a5a54b0bf 100644
--- a/src/test/miniscript_tests.cpp
+++ b/src/test/miniscript_tests.cpp
@@ -121,7 +121,7 @@ enum class ChallengeType {
  * For hashes it's just the first 4 bytes of the hash. For pubkeys, it's the last 4 bytes.
  */
 uint32_t ChallengeNumber(const CPubKey& pubkey) { return ReadLE32(pubkey.data() + 29); }
-uint32_t ChallengeNumber(const std::vector<unsigned char>& hash) { return ReadLE32(hash.data()); }
+uint32_t ChallengeNumber(std::span<const unsigned char> hash) { return ReadLE32(hash.data()); }
 
 //! A Challenge is a combination of type of leaf condition and its challenge number.
 typedef std::pair<ChallengeType, uint32_t> Challenge;
@@ -304,19 +304,19 @@ std::set<Challenge> FindChallenges(const Node& root)
         const auto* ref{stack.back()};
         stack.pop_back();
 
-        for (const auto& key : ref->keys) {
+        for (const auto& key : ref->GetKeys()) {
             chal.emplace(ChallengeType::PK, ChallengeNumber(key));
         }
-        switch (ref->fragment) {
-        case Fragment::OLDER: chal.emplace(ChallengeType::OLDER, ref->k); break;
-        case Fragment::AFTER: chal.emplace(ChallengeType::AFTER, ref->k); break;
-        case Fragment::SHA256: chal.emplace(ChallengeType::SHA256, ChallengeNumber(ref->data)); break;
-        case Fragment::RIPEMD160: chal.emplace(ChallengeType::RIPEMD160, ChallengeNumber(ref->data)); break;
-        case Fragment::HASH256: chal.emplace(ChallengeType::HASH256, ChallengeNumber(ref->data)); break;
-        case Fragment::HASH160: chal.emplace(ChallengeType::HASH160, ChallengeNumber(ref->data)); break;
+        switch (ref->GetFragment()) {
+        case Fragment::OLDER: chal.emplace(ChallengeType::OLDER, ref->GetK()); break;
+        case Fragment::AFTER: chal.emplace(ChallengeType::AFTER, ref->GetK()); break;
+        case Fragment::SHA256: chal.emplace(ChallengeType::SHA256, ChallengeNumber(ref->GetData())); break;
+        case Fragment::RIPEMD160: chal.emplace(ChallengeType::RIPEMD160, ChallengeNumber(ref->GetData())); break;
+        case Fragment::HASH256: chal.emplace(ChallengeType::HASH256, ChallengeNumber(ref->GetData())); break;
+        case Fragment::HASH160: chal.emplace(ChallengeType::HASH160, ChallengeNumber(ref->GetData())); break;
         default: break;
         }
-        for (const auto& sub : ref->subs) {
+        for (const auto& sub : ref->GetSubs()) {
             stack.push_back(&sub);
         }
     }

</details>

hodlinator commented at 12:46 PM on June 24, 2025:

Variant of this done as part of: a41db39bf87303d8a8173db56d0020c491239d38.

in src/script/miniscript.h:601 in 5e4573adda outdated

 578 |      //! Cached script length (computed by CalcScriptLen).
 579 | -    const size_t scriptlen;
 580 | +    size_t scriptlen;
 581 |      //! Whether a public key appears more than once in this node. This value is initialized
 582 |      //! by all constructors except the NoDupCheck ones. The NoDupCheck ones skip the
 583 |      //! computation, requiring it to be done manually by invoking DuplicateKeyCheck().

l0rinc commented at 1:25 PM on June 23, 2025:

I wish we could remove the mutable from std::optional<bool> has_duplicate_keys as well since auto upfn = [&ctx](const Node& node promises more than it can deliver - but it seems we would need to touch a lot of declarations - I'll let you decide if there's anything to do here.

If nothing else, we should at least cover it with tests: https://maflcko.github.io/b-c-cov/total.coverage/src/script/miniscript.h.gcov.html#L1464

hodlinator commented at 12:40 PM on June 24, 2025:

Good find, but would rather leave that for another PR. This one has ballooned enough IMO just from wanting to remove unique_ptr.

in src/test/miniscript_tests.cpp:348 in 5e4573adda outdated

 344 | @@ -346,9 +345,10 @@ void SatisfactionToWitness(miniscript::MiniscriptContext ctx, CScriptWitness& wi
 345 |  
 346 |  struct MiniScriptTest : BasicTestingSetup {
 347 |  /** Run random satisfaction tests. */
 348 | -void TestSatisfy(const KeyConverter& converter, const std::string& testcase, const NodeRef& node) {
 349 | -    auto script = node->ToScript(converter);
 350 | -    const auto challenges{FindChallenges(node.get())}; // Find all challenges in the generated miniscript.
 351 | +void TestSatisfy(const KeyConverter& converter, const std::string& testcase, const Node& node)

l0rinc commented at 1:53 PM on June 23, 2025:

Is testcase here for debugging purposes only? Seems unused...

hodlinator commented at 12:40 PM on June 24, 2025:

It was added as a parameter when the function was introduced in 22c5b00345063bdeb8b6d3da8b5692d18f92bfb7 but I couldn't find any commit where we started using it. Removed.

in src/script/miniscript.h:366 in 5e4573adda outdated

 341 | @@ -349,8 +342,8 @@ struct InputResult {
 342 |  //! Class whose objects represent the maximum of a list of integers.
 343 |  template<typename I>
 344 |  struct MaxInt {
 345 | -    const bool valid;
 346 | -    const I value;
 347 | +    bool valid;
 348 | +    I value;

l0rinc commented at 3:14 PM on June 23, 2025:

can we make these private or friend now that they're exposed?

hodlinator commented at 12:47 PM on June 24, 2025:

See response to #31713 (review).

in src/script/miniscript.h:442 in 5e4573adda outdated

 413 | @@ -421,11 +414,11 @@ struct Ops {
 414 |   */
 415 |  struct SatInfo {
 416 |      //! Whether a canonical satisfaction/dissatisfaction is possible at all.
 417 | -    const bool valid;
 418 | +    bool valid;

l0rinc commented at 3:14 PM on June 23, 2025:

same

hodlinator commented at 12:47 PM on June 24, 2025:

See response to #31713 (review).

in src/script/miniscript.h:2087 in 5e4573adda outdated

2092 | +            constructed.back() = Node{internal::NoDupCheck{}, ctx.MsContext(), Fragment::OR_I, Vector(std::move(constructed.back()), Node<Key>(internal::NoDupCheck{}, ctx.MsContext(), Fragment::JUST_0))};
2093 |              break;
2094 |          }
2095 |          case ParseContext::WRAP_T: {
2096 | -            constructed.back() = MakeNodeRef<Key>(internal::NoDupCheck{}, ctx.MsContext(), Fragment::AND_V, Vector(std::move(constructed.back()), MakeNodeRef<Key>(internal::NoDupCheck{}, ctx.MsContext(), Fragment::JUST_1)));
2097 | +            constructed.back() = Node{internal::NoDupCheck{}, ctx.MsContext(), Fragment::AND_V, Vector(std::move(constructed.back()), Node<Key>(internal::NoDupCheck{}, ctx.MsContext(), Fragment::JUST_1))};

l0rinc commented at 3:20 PM on June 23, 2025:

👍 for using the alias - but as mentioned before, there are too many changes in this commit, could you do these in smaller, more focused commits instead?

hodlinator commented at 1:11 PM on June 24, 2025:

Broke out removal of NodeRef & MakeNodeRef() into its own commit: c4d30115f5cefe3945ac8b69c021a551eb2b6a72.

in src/test/fuzz/miniscript.cpp:971 in 5e4573adda outdated

 968 |                  sub.push_back(std::move(*(stack.end() - info.subtypes.size() + i)));
 969 |              }
 970 |              stack.erase(stack.end() - info.subtypes.size(), stack.end());
 971 | -            // Construct new NodeRef.
 972 | -            NodeRef node;
 973 | +            // Construct new Node.

l0rinc commented at 3:22 PM on June 23, 2025:

comment is redundant

hodlinator commented at 1:13 PM on June 24, 2025:

The comments around this code seem to be introducing different phases of the code. I'd rather not rip one out and leave the other ones there, so not touching for now.

l0rinc commented at 7:30 AM on June 25, 2025:

Hmm, this isn't even an optional, since it always receives a value, right? We could use an IIFE instead:

Node node{[&] {
    if (info.keys.empty()) {
        return {miniscript::internal::NoDupCheck{}, script_ctx, info.fragment, std::move(sub), std::move(info.hash), info.k};
    }
    assert(sub.empty());
    assert(info.hash.empty());
    return {miniscript::internal::NoDupCheck{}, script_ctx, info.fragment, std::move(info.keys), info.k};
}()};

in src/test/fuzz/miniscript.cpp:972 in 5e4573adda outdated

 972 | -            NodeRef node;
 973 | +            // Construct new Node.
 974 | +            std::optional<Node> node;
 975 |              if (info.keys.empty()) {
 976 | -                node = MakeNodeRef(script_ctx, info.fragment, std::move(sub), std::move(info.hash), info.k);
 977 | +                node = Node{miniscript::internal::NoDupCheck{}, script_ctx, info.fragment, std::move(sub), std::move(info.hash), info.k};

l0rinc commented at 3:23 PM on June 23, 2025:

I would inline this in a separate commit, it's non-trivial

hodlinator commented at 1:13 PM on June 24, 2025:

Done, see reply to #31713 (review).

l0rinc changes_requested

l0rinc commented at 3:36 PM on June 23, 2025: contributor

Concept ACK, makes sense to improve locality by removing needless indirection!

My main concerns are:

the last commit contains too many changes of different types;
we may not have proper coverage for all corner cases (duplicate keys, case Fragment::WRAP_J, stack-safety for destructor and clone)
the introduced mutability lowers security
needless emplace_back changes
unused params (not introduced here, but may be a mistake anyway)

hodlinator force-pushed on Jun 24, 2025

hodlinator commented at 7:23 PM on June 24, 2025: contributor

New push in response to all concerns from #31713#pullrequestreview-2948159254

hodlinator force-pushed on Jun 24, 2025

DrahtBot added the label CI failed on Jun 24, 2025

DrahtBot commented at 8:14 PM on June 24, 2025: contributor

🚧 At least one of the CI tasks failed. Task tidy: https://github.com/bitcoin/bitcoin/runs/44712881670 LLM reason (✨ experimental): Clang-tidy reported errors related to recursive function calls in vector.h, causing the CI failure.

<details><summary>Hints</summary>

Try to run the tests locally, according to the documentation. However, a CI failure may still happen due to a number of reasons, for example:

Possibly due to a silent merge conflict (the changes in this pull request being incompatible with the current code in the target branch). If so, make sure to rebase on the latest commit of the target branch.
A sanitizer issue, which can only be found by compiling with the sanitizer and running the affected test.
An intermittent issue.

Leave a comment here, if you need help tracking down a confusing failure.

</details>

hodlinator commented at 8:19 PM on June 24, 2025: contributor

Pushed clang-tidy fix for https://cirrus-ci.com/task/6094677570486272?logs=ci#L2068:

[15:19:19.395] [ 29/669][11.0s] clang-tidy-20 -p=/ci_container_base/ci/scratch/build-x86_64-pc-linux-gnu -quiet -load=/tidy-build/libbitcoin-tidy.so /ci_container_base/src/test/fuzz/miniscript.cpp
[15:19:19.395] /ci_container_base/src/util/vector.h:23:49: error: function 'Vector<std::vector<miniscript::Node<(anonymous namespace)::ScriptParserContext::Key>>>' is within a recursive call chain [misc-no-recursion,-warnings-as-errors]
[15:19:19.395]    23 | inline std::vector<std::common_type_t<Args...>> Vector(Args&&... args)
[15:19:19.395]       |                                                 ^
[15:19:19.395] /ci_container_base/src/util/vector.h:23:49: error: function 'Vector<std::vector<miniscript::Node<CPubKey>>>' is within a recursive call chain [misc-no-recursion,-warnings-as-errors]
[15:19:19.395] 1059 warnings generated.

Fix: https://github.com/bitcoin/bitcoin/compare/106d6937372ce62ccebf5d2c019381a337681826..00ce8ef316646221c7a2d21734694bf27cae71df

DrahtBot removed the label CI failed on Jun 24, 2025

in src/test/miniscript_tests.cpp:744 in f22f4f75e2 outdated

 739 | +    NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
 740 | +    for (uint32_t i{0}; i < 1000'000; ++i) {
 741 | +        root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_S, Vector(std::move(root))};
 742 | +    }
 743 | +
 744 | +    root.Clone();

l0rinc commented at 7:09 AM on June 25, 2025:

+1 for the example in the commit message (if you touch again consider reducing the indentation) we could even lightly validate the clone here by comparing the two depths for good measure

hodlinator commented at 12:51 PM on June 25, 2025:

Reduced indentation in commit message.
Added validation of the ScriptSize() to the test which is a value that depends on child nodes.

in src/test/miniscript_tests.cpp:740 in f22f4f75e2 outdated

 735 | +    using NodeU32 = miniscript::Node<uint32_t>;
 736 | +
 737 | +    constexpr auto ctx{miniscript::MiniscriptContext::P2WSH};
 738 | +
 739 | +    NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
 740 | +    for (uint32_t i{0}; i < 1000'000; ++i) {

l0rinc commented at 7:10 AM on June 25, 2025:

    for (uint32_t i{0}; i < 1'000'000; ++i) {

(locally 100'000 is enough for me to reproduce the failure with incorrect destructor and clone - this test may be too heavy otherwise)

hodlinator commented at 12:47 PM on June 25, 2025:

100'000 isn't sufficient for my configuration with an empty destructor. But 200'000 was for both, decreased.

in src/test/fuzz/miniscript.cpp:1177 in f22f4f75e2 outdated

1177 | +            return sats >= node.GetK();
1178 |          }
1179 |          case Fragment::OLDER:
1180 |          case Fragment::AFTER:
1181 | -            return node.k & 1;
1182 | +            return node.GetK() & 1;

l0rinc commented at 7:11 AM on June 25, 2025:

when do you use a Get prefix and when just a capitalized field name?

in src/test/fuzz/miniscript.cpp:1170 in f22f4f75e2 outdated

1168 | -            return is_key_satisfiable(node.keys[0]);
1169 | +            return is_key_satisfiable(node.GetKeys()[0]);
1170 |          case Fragment::MULTI:
1171 |          case Fragment::MULTI_A: {
1172 | -            size_t sats = std::count_if(node.keys.begin(), node.keys.end(), [&](const auto& key) {
1173 | +            size_t sats = std::ranges::count_if(node.GetKeys(), [&](const auto& key) {

l0rinc commented at 7:11 AM on June 25, 2025:

👍

in src/script/miniscript.h:513 in f22f4f75e2 outdated

 491 |  
 492 | +public:
 493 |      constexpr StackSize(SatInfo in_sat, SatInfo in_dsat) noexcept : sat(in_sat), dsat(in_dsat) {};
 494 |      constexpr StackSize(SatInfo in_both) noexcept : sat(in_both), dsat(in_both) {};
 495 | +
 496 | +    const SatInfo& Sat() const { return sat; }

l0rinc commented at 7:18 AM on June 25, 2025:

nit: unless there's a good reason, I'd unify the Get/Is prefixes (I actually prefer without anything here) and consider noexcept for these as well

hodlinator commented at 12:56 PM on June 25, 2025:

Regarding naming of accessors: There is some precedent in Node::IsValid(). But I also prefer it without prefixes - updated.

Regarding noexcept: The compiler should be able to infer noexcept by itself for simple accessors, so would rather avoid that noise.

in src/script/miniscript.h:360 in a41db39bf8 outdated

 359 |  
 360 | +public:
 361 |      MaxInt() : valid(false), value(0) {}
 362 |      MaxInt(I val) : valid(true), value(val) {}
 363 |  
 364 | +    bool IsValid() const { return valid; }

l0rinc commented at 7:21 AM on June 25, 2025:

nit: I'm repeating myself a bit, but not sure why some getters have prefixes

in src/script/miniscript.h:567 in a41db39bf8 outdated

 561 | @@ -544,17 +562,23 @@ struct Node {
 562 |          return TreeEval<NodeRef<Key>>(upfn);
 563 |      }
 564 |  
 565 | +    Fragment GetFragment() const { return fragment; }
 566 | +    uint32_t GetK() const { return k; }
 567 | +    const std::vector<Key>& GetKeys() const { return keys; }

l0rinc commented at 7:22 AM on June 25, 2025:

do we need to return vectors here? Seems overly specific, I think spans should also suffice here

hodlinator commented at 12:55 PM on June 25, 2025:

I prefer leaving up to the client of the interface to choose which type they want to switch to.

in src/script/miniscript.h:192 in 1784cfaa13 outdated

 188 | @@ -189,11 +189,11 @@ inline consteval Type operator""_mst(const char* c, size_t l)
 189 |  using Opcode = std::pair<opcodetype, std::vector<unsigned char>>;
 190 |  
 191 |  template<typename Key> class Node;
 192 | -template<typename Key> using NodeRef = std::unique_ptr<Node<Key>>;
 193 | +template<typename Key> using NodeRef = Node<Key>; // <- removed in next commit

l0rinc commented at 7:25 AM on June 25, 2025:

👍 - if you touch again, consider adding a TODO prefix to make sure we get a warning from the linters or the IDE if we accidentally leave them there

hodlinator commented at 12:54 PM on June 25, 2025:

Done.

in src/test/fuzz/miniscript.cpp:852 in 1784cfaa13 outdated

 851 | @@ -851,12 +852,12 @@ std::optional<NodeInfo> ConsumeNodeSmart(MsCtx script_ctx, FuzzedDataProvider& p
 852 |   * Generate a Miniscript node based on the fuzzer's input.
 853 |   *
 854 |   * - ConsumeNode is a function object taking a Type, and returning an std::optional<NodeInfo>.
 855 | - * - root_type is the required type properties of the constructed NodeRef.
 856 | + * - root_type is the required type properties of the constructed Node.
 857 |   * - strict_valid sets whether ConsumeNode is expected to guarantee a NodeInfo that results in
 858 | - *   a NodeRef whose Type() matches the type fed to ConsumeNode.
 859 | + *   a Node whose Type() matches the type fed to ConsumeNode.

l0rinc commented at 7:28 AM on June 25, 2025:

Nit: would this be more accurate?

 *   an std::optional<Node> whose Type() matches the type fed to ConsumeNode.

hodlinator commented at 1:16 PM on June 25, 2025:

Think it's better as is, documenting the properties of the Node inside the optional.

l0rinc approved

l0rinc commented at 7:53 AM on June 25, 2025: contributor

Code review ACK f22f4f75e252e4f2171af34e4f92f3e6a396f227

Someone else with more experience should also review it, I have only lightly tested it locally.

DrahtBot requested review from sipa on Jun 25, 2025

hodlinator force-pushed on Jun 25, 2025

DrahtBot added the label CI failed on Jun 25, 2025

DrahtBot commented at 2:28 PM on June 25, 2025: contributor

🚧 At least one of the CI tasks failed. Task ARM, unit tests, no functional tests: https://github.com/bitcoin/bitcoin/runs/44768522506 LLM reason (✨ experimental): The CI failure is caused by a compilation error due to a change in the meaning of ‘Fragment’ caused by a conflicting declaration in miniscript.h.

<details><summary>Hints</summary>

Try to run the tests locally, according to the documentation. However, a CI failure may still happen due to a number of reasons, for example:

Possibly due to a silent merge conflict (the changes in this pull request being incompatible with the current code in the target branch). If so, make sure to rebase on the latest commit of the target branch.
A sanitizer issue, which can only be found by compiling with the sanitizer and running the affected test.
An intermittent issue.

Leave a comment here, if you need help tracking down a confusing failure.

</details>

hodlinator force-pushed on Jun 25, 2025

DrahtBot removed the label CI failed on Jun 25, 2025

l0rinc commented at 2:48 PM on June 27, 2025: contributor

Code review re-ACK 9adf381d810f11b997ea036da6e2ce7dbad74cf6

Someone else with more experience should also review it, I have only lightly tested it locally.

DrahtBot added the label Needs rebase on Jul 2, 2025

hodlinator force-pushed on Jul 2, 2025

DrahtBot removed the label Needs rebase on Jul 2, 2025

l0rinc commented at 5:53 AM on August 5, 2025: contributor

Code review reACK 6bf4f4a87889b0679c744b0a171c98a9386fe8c0

Rebased without other changes since last ACK

in src/script/descriptor.cpp:1605 in 6bf4f4a878 outdated

1316 | +        return Vector(m_node.ToScript(ScriptMaker(keys, script_ctx)));
1317 |      }
1318 |  
1319 |  public:
1320 | -    MiniscriptDescriptor(std::vector<std::unique_ptr<PubkeyProvider>> providers, miniscript::NodeRef<uint32_t> node)
1321 | +    MiniscriptDescriptor(std::vector<std::unique_ptr<PubkeyProvider>> providers, miniscript::Node<uint32_t>&& node)

purpleKarrot commented at 7:44 AM on August 14, 2025:

&& should really only be used for move constructors, move assignment operators, and forwarding references. Normal sink arguments should be passed by value.

purpleKarrot commented at 7:48 AM on August 14, 2025:

The core guidelines seem to disagree with me: https://isocpp.github.io/CppCoreGuidelines/CppCoreGuidelines#Rf-consume

hodlinator commented at 7:17 PM on August 14, 2025:

Could technically safely remove && as the miniscript::Node copy-ctor and assignment operator by l-value are currently deleted: https://github.com/bitcoin/bitcoin/blob/6bf4f4a87889b0679c744b0a171c98a9386fe8c0/src/script/miniscript.h#L1711-L1713 But I'm paranoid enough to think that could change again, so feels more robust to keep &&. Thanks for arguing both sides!

in src/test/fuzz/miniscript.cpp:1032 in d85e120e66 outdated

1028 | @@ -1027,7 +1029,7 @@ void SatisfactionToWitness(MsCtx ctx, CScriptWitness& witness, const CScript& sc
1029 |  }
1030 |  
1031 |  /** Perform various applicable tests on a miniscript Node. */
1032 | -void TestNode(const MsCtx script_ctx, const NodeRef& node, FuzzedDataProvider& provider)
1033 | +void TestNode(const MsCtx script_ctx, const std::optional<Node> node, FuzzedDataProvider& provider)

sipa commented at 5:58 PM on November 3, 2025:

In commit "refactor(miniscript): Remove superfluous unique_ptr-indirection"

Should this be const std::optional<Node>& node (by reference)?

hodlinator commented at 9:32 PM on November 3, 2025:

Move-constructed std::optional (which I think would happen here) should be negligible, but agree const ref is more optimal.

Taken in latest push (together with minor correction to another commit's message).

sipa commented at 6:06 PM on November 3, 2025: member

ACK 6bf4f4a87889b0679c744b0a171c98a9386fe8c0

Just one test-only comment.

hodlinator force-pushed on Nov 3, 2025

l0rinc commented at 3:53 PM on November 4, 2025: contributor

reACK a1df8547ca0711d99f05d1b31bc758a8068ba512

It's quite a heavy refactor, I did my best to review all the changes. Someone else should also review it to be sure. The latest https://corecheck.dev/bitcoin/bitcoin/pulls/31713 Sonar warnings seem like false positives.

DrahtBot requested review from sipa on Nov 4, 2025

hodlinator commented at 9:14 AM on November 5, 2025: contributor

The latest https://corecheck.dev/bitcoin/bitcoin/pulls/31713 Sonar warnings seem like false positives.

Took a closer look at https://sonarcloud.io/project/issues?issueStatuses=OPEN%2CCONFIRMED&branch=31713-a1df8547ca0711d99f05d1b31bc758a8068ba512&id=aureleoules_bitcoin&open=AZpLftZOTlsoQg18lt0A

miniscript::Node on master and in the PR violates the "Rule of Zero" (https://sonarcloud.io/organizations/aureleoules/rules?open=cpp%3AS3624&rule_key=cpp%3AS3624&tab=why) where if one has a custom destructor, one probably needs a custom move assignment operator etc (Edit: later realized that const fields on master probably disable implicitly generated move assignment, but would probably still allow move-ctor). I realized maybe the move assignment operator specifically might lead to stack blow-out since the std::vector move constructor will destroy it's elements (https://en.cppreference.com/w/cpp/container/vector/operator=.html) before adopting the new ones. But as our Node::subs vector has the element type Node whose destructor protects against blowing up the stack, we are safe.

If I touch again I might add:

--- a/src/test/miniscript_tests.cpp
+++ b/src/test/miniscript_tests.cpp
@@ -727,7 +727,7 @@ BOOST_AUTO_TEST_CASE(fixed_tests)
     g_testdata.reset();
 }
 
-// Confirm that ~Node() and Node::Clone() are stack-safe.
+// Confirm that ~Node(), Node::Clone() and operator=(Node&&) are stack-safe.
 BOOST_AUTO_TEST_CASE(node_deep_destruct)
 {
     using miniscript::internal::NoDupCheck;
@@ -744,6 +744,8 @@ BOOST_AUTO_TEST_CASE(node_deep_destruct)
 
     auto clone{root.Clone()};
     BOOST_CHECK_EQUAL(clone.ScriptSize(), root.ScriptSize());
+
+    clone = std::move(root);
 }
 
 BOOST_AUTO_TEST_SUITE_END()

(Godbolt exploration of lifetimes).

DrahtBot added the label Needs rebase on Nov 18, 2025

hodlinator force-pushed on Nov 19, 2025

hodlinator commented at 8:13 AM on November 19, 2025: contributor

Latest push rebased to resolve conflict with #31734. + Added explicit test coverage of operator=(Node&&) (https://github.com/bitcoin/bitcoin/pull/31713#issuecomment-3490078075).

DrahtBot removed the label Needs rebase on Nov 19, 2025

in src/script/miniscript.h:542 in c6ac239124

 556 | +        queue.push_back(std::move(subs));
 557 | +        do {
 558 | +            auto flattening{std::move(queue.back())};
 559 | +            queue.pop_back();
 560 | +            for (auto& i : flattening) {
 561 | +                queue.push_back(std::move(i.subs));

l0rinc commented at 10:54 AM on November 19, 2025:

nit, if you touch again, we could simply omit leaves with no subs

                if (i.subs.size()) queue.push_back(std::move(i.subs));

hodlinator commented at 3:35 PM on November 21, 2025:

Agree that would be slightly more optimal, avoiding some needless pushes/pops. Taken in latest push + changed auto& i to Node& n for clarity.

l0rinc commented at 11:24 AM on November 19, 2025: contributor

Redid the rebase locally, besides an import collision the following was added:

diff --git a/src/test/miniscript_tests.cpp b/src/test/miniscript_tests.cpp
--- a/src/test/miniscript_tests.cpp	(revision 31196b79cabb6e4519e8a27165e1be75c5044403)
+++ b/src/test/miniscript_tests.cpp	(date 1763547689484)
@@ -727,7 +727,7 @@
     g_testdata.reset();
 }
 
-// Confirm that ~Node() and Node::Clone() are stack-safe.
+// Confirm that ~Node(), Node::Clone() and operator=(Node&&) are stack-safe.
 BOOST_AUTO_TEST_CASE(node_deep_destruct)
 {
     using miniscript::internal::NoDupCheck;
@@ -744,6 +744,8 @@
 
     auto clone{root.Clone()};
     BOOST_CHECK_EQUAL(clone.ScriptSize(), root.ScriptSize());
+
+    clone = std::move(root);
 }
 
 BOOST_AUTO_TEST_SUITE_END()

Code coverage indicates both move method are tested now: https://github.com/bitcoin/bitcoin/blob/c6ac239124b3e66f2d5ff52edc6ff422926abead/src/script/miniscript.h#L1716-L1717

reACK c6ac239124b3e66f2d5ff52edc6ff422926abead

l0rinc approved

hodlinator force-pushed on Nov 21, 2025

l0rinc commented at 4:30 PM on November 21, 2025: contributor

reACK d782bffc5461f7361ae410963466ae1577ef63df

The only difference since last ACK was to omit collecting empty leaves in the destructor

fanquake renamed this:
~~miniscript refactor: Remove unique_ptr-indirection (#30866 follow-up)~~
miniscript refactor: Remove unique_ptr-indirection
on Dec 4, 2025

sipa commented at 5:01 PM on December 8, 2025: member

reACK d782bffc5461f7361ae410963466ae1577ef63df

fanquake commented at 11:13 AM on December 9, 2025: member

@darosior conceptual / final look?

darosior commented at 2:53 PM on December 9, 2025: member

Looks good conceptually. I may get to it later but it's not a priority for me so i don't want to be a blocker.

DrahtBot added the label Needs rebase on Dec 17, 2025

l0rinc commented at 2:30 PM on December 18, 2025: contributor

Sorry for the conflict - happy to re-review after the rebase. Tried it locally, seems trivial.

hodlinator force-pushed on Dec 18, 2025

hodlinator commented at 3:38 PM on December 18, 2025: contributor

Rebased to solve trivial conflict with #33192.

l0rinc commented at 4:20 PM on December 18, 2025: contributor

Rebased locally, soft reset against re-rebased PR HEAD is empty.

ACK 7909f9f7d6d780f0cf2a1e94267b71157122b0f5

DrahtBot requested review from sipa on Dec 18, 2025

DrahtBot removed the label Needs rebase on Dec 18, 2025

DrahtBot added the label Needs rebase on Jan 3, 2026

hodlinator force-pushed on Jan 3, 2026

DrahtBot removed the label Needs rebase on Jan 3, 2026

hodlinator commented at 2:05 PM on January 3, 2026: contributor

Rebased to resolve conflict with #33135.

l0rinc commented at 8:44 PM on January 3, 2026: contributor

Re-rebased and soft reset the results and the small remaining diff seem good to me.

<details> <summary>Details</summary>

diff --git a/src/script/descriptor.cpp b/src/script/descriptor.cpp
index df21f6cdb9..dedc35afc8 100644
--- a/src/script/descriptor.cpp
+++ b/src/script/descriptor.cpp
@@ -1552,9 +1552,9 @@ public:
         : DescriptorImpl(std::move(providers), "?"), m_node(std::move(node))
     {
         // Traverse miniscript tree for unsafe use of older()
-        miniscript::ForEachNode(*m_node, [&](const miniscript::Node<uint32_t>& node) {
-            if (node.fragment == miniscript::Fragment::OLDER) {
-                const uint32_t raw = node.k;
+        miniscript::ForEachNode(m_node, [&](const miniscript::Node<uint32_t>& node) {
+            if (node.Fragment() == miniscript::Fragment::OLDER) {
+                const uint32_t raw = node.K();
                 const uint32_t value_part = raw & ~CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG;
                 if (value_part > CTxIn::SEQUENCE_LOCKTIME_MASK) {
                     const bool is_time_based = (raw & CTxIn::SEQUENCE_LOCKTIME_TYPE_FLAG) != 0;
diff --git a/src/script/miniscript.h b/src/script/miniscript.h
index 9d5ebcfd87..bd3a16f404 100644
--- a/src/script/miniscript.h
+++ b/src/script/miniscript.h
@@ -191,11 +191,6 @@ inline consteval Type operator""_mst(const char* c, size_t l)
 using Opcode = std::pair<opcodetype, std::vector<unsigned char>>;
 
 template<typename Key> class Node;
-template<typename Key> using NodeRef = Node<Key>; // <- TODO: Remove in next commit.
-
-//! Construct a miniscript node (TODO: remove in next commit).
-template<typename Key, typename... Args>
-Node<Key> MakeNodeRef(Args&&... args) { return Node<Key>(std::forward<Args>(args)...); }
 
 //! Unordered traversal of a miniscript node tree.
 template <typename Key, std::invocable<const Node<Key>&> Fn>
@@ -206,8 +201,8 @@ void ForEachNode(const Node<Key>& root, Fn&& fn)
         const Node<Key>& node = stack.back();
         std::invoke(fn, node);
         stack.pop_back();
-        for (const auto& sub : node.subs) {
-            stack.emplace_back(*sub);
+        for (const auto& sub : node.Subs()) {
+            stack.emplace_back(sub);
         }
     }
 }

</details>

Also verified with git range-diff -w -U0 master 7909f9f bdc8802 to be sure. Someone with more expertise in this area should also check it.

code review ACK bdc8802f792fd4b6f1085a235f797b0f9e11e36e

DrahtBot added the label Needs rebase on Jan 20, 2026

doc(miniscript): Remove mention of shared pointers

Correct destructor implementation comment to no longer refer to shared pointers and also move it into the function body, in symmetry with Clone() right below.

Leftover from #30866.

22e4115312

refactor(miniscript): Make fields non-const & private

Makes a lot of fields in miniscript.h non-const in order to allow move-operations 2 commits later.

Also fixes adjacent comment typos.

Co-authored-by: Lőrinc <pap.lorinc@gmail.com>
Co-authored-by: MarcoFalke <*~=`'#}+{/-|&$^_@721217.xyz>

c6f798b222

refactor(miniscript): Remove Node::subs mutability e55b23c170

refactor(miniscript): Remove superfluous unique_ptr-indirection

Functional parity is achieved through making Node move-able.

Unfortunately ~Node() now needs to have the recursion linter disabled, as it is unable to figure out that recursion stops 1 level down. The former smart pointers must have been circumventing the linter somehow.

NodeRef & MakeNodeRef() are deleted in the following commit (broken out to facilitate review).

15fb34de41

refactor(miniscript): Remove NodeRef & MakeNodeRef()

(Also removes parameter to TestSatisfy() which existed unused from the start in 22c5b00345063bdeb8b6d3da8b5692d18f92bfb7).

50cab8570e

refactor(miniscript): Destroy nodes one full subs-vector at a time 198bbaee49

test(miniscript): Prove avoidance of stack overflow

Can be tested through emptying the function body of ~Node() or replacing Clone() implementation with naive version:
```C++
Node<Key> Clone() const
{
    std::vector<Node> new_subs;
    new_subs.reserve(subs.size());
    for (const Node& child : subs) {
        new_subs.push_back(child.Clone());
    }
    return Node{internal::NoDupCheck{}, m_script_ctx, fragment, std::move(new_subs), keys, data, k};
}
```

Co-authored-by: Lőrinc <pap.lorinc@gmail.com>

964c44cdcd

hodlinator force-pushed on Jan 20, 2026

hodlinator commented at 9:47 PM on January 20, 2026: contributor

Rebased to resolve conflicts with 9e5e9824f11b1b0f9e2a4e28124edbb1616af519 (#32471).

DrahtBot removed the label Needs rebase on Jan 20, 2026

in src/script/miniscript.h:563 in 198bbaee49

 565 | +            queue.pop_back();
 566 | +            for (Node& n : flattening) {
 567 | +                if (!n.subs.empty()) queue.push_back(std::move(n.subs));
 568 |              }
 569 | -        }
 570 | +        } while (!queue.empty());

darosior commented at 4:04 PM on January 23, 2026:

Why this refactoring? How is this related to this PR?

hodlinator commented at 9:39 PM on January 23, 2026:

Thread requested refactoring of the destructor #31713 (review)

The code on master has mutable std::vector<NodeRef<Key>> Node::subs, that means moving each element of the vector is just moving a unique_ptr to another. With the change to use raw std::vector<Node> Node::subs, we would be moving from one Node-instance to another, which should be more work than updating a pointer. Therefore it should be more efficient to move whole vectors (meaning the underlying array of Nodes remains in the same place in memory).

Agree the commit message should be amended with this motivation if I re-touch.

hodlinator commented at 10:38 AM on February 9, 2026:

(Code comment explaining why we move entire vectors is being added in follow-up: https://github.com/bitcoin/bitcoin/pull/34499/changes/fd7c494c6bfa01a5582d60d234725c564507e9fa).

in src/test/miniscript_tests.cpp:741 in 964c44cdcd

 736 | +
 737 | +    constexpr auto ctx{miniscript::MiniscriptContext::P2WSH};
 738 | +
 739 | +    NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
 740 | +    for (uint32_t i{0}; i < 200'000; ++i) {
 741 | +        root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_S, Vector(std::move(root))};

darosior commented at 4:50 PM on January 23, 2026:

So this is really just a test template for reviewers so they can manually tweak the depth locally and make sure a particular change does not re-introduce the stack overflow issue? Or are we sure the current hardcoded depth would always trigger a test failure on CI?

If it does not, i am not sure it's worth including this test, or at least this would need to be documented that this is just a template that needs to be modified to meaningfully test anything. Otherwise the next person may just assume that if the test pass they didn't break anything (which seems far from unreasonable).

darosior commented at 5:09 PM on January 23, 2026:

This is an invalid Miniscript. You can create a valid one with this hardcoded depth by using WRAP_N in place of WRAP_S and a TAPSCRIPT context rather than a P2WSH one.

It doesn't really matter for this test though, and any meaningful depth that would make the test actually fail (something like 1'000'000?) would result in the Miniscript being invalid due to its size.

darosior commented at 5:16 PM on January 23, 2026:

Or are we sure the current hardcoded depth would always trigger a test failure on CI?

Seems like it would for all the jobs that set ulimit -s 512.

hodlinator commented at 9:55 PM on January 23, 2026:

I'm fairly sure I tweaked the iteration count to reliably cause stack overflow on my machine with a naive implementation of ~Node/Clone(), but still not take "too much time" to run. If we accidentally introduce stack-overflow issues, this test should help.

If you mean to say 200'000 is not sufficient to break the test on your machine if you switch to naive implementations of ~Node/Clone(), I'm open to bump the numbers.

We could implement a function for querying remaining stack space (with Posix+Windows variants) and use alloca() to grab the majority and only leave a fixed small amount to more reliably hit stack overflow in case of bad ~Node()/Clone() implementations. That way we could probably shrink the 200'000 number and keep it fairly future-proof at the cost of the extra code complexity. What do you think?

hodlinator commented at 10:06 PM on January 23, 2026:

Thanks for pointing out the invalidity! Will make it valid if I re-touch.

See my other comment regarding the depth.

darosior commented at 8:10 PM on January 27, 2026:

If you mean to say 200'000 is not sufficient to break the test on your machine if you switch to naive implementations of ~Node/Clone(), I'm open to bump the numbers.

I'm not sure how useful that would be. The threshold seems to vary on different systems, and is already high enough for the test to fail ci.

From testing on two different machines locally, running the test with no custom Node destructor will reliably fail with ulimit -s 5016 on one and ulimit -s 6269 on the other. With no custom ulimit the test will only break past a depth of ~265k on one of the machines and past a depth of ~325k on the other.

I also think it's unnecessary to introduce more complexity here and it would be better to just document this test is only meant to reliably fail on CI, and it passing locally is not a guarantee that the author of a change did not introduce a bug there (unless they ran it under a low ulimit like CI does).

hodlinator commented at 12:11 PM on January 28, 2026:

How about using POSIX threads to create a thread with a minimal stack size (~4096 bytes)?

#ifndef WIN32
template <typename T>
size_t GetDepth(miniscript::Node<T>& node)
{
    size_t depth{0};
    const auto* current{&node};
    while (!current->Subs().empty()) {
        current = &current->Subs().front();
        ++depth;
    }
    return depth;
}

// Confirm that ~Node(), Node::Clone() and operator=(Node&&) are stack-safe.
BOOST_AUTO_TEST_CASE(node_deep_destruct)
{
    using miniscript::internal::NoDupCheck;
    using miniscript::Fragment;
    using NodeU32 = miniscript::Node<uint32_t>;

    // Use POSIX threads which enables us to specify a small stack-size.
    pthread_attr_t attr;
    BOOST_REQUIRE_EQUAL(pthread_attr_init(&attr), EXIT_SUCCESS);
    // Set the stack size
    BOOST_REQUIRE_EQUAL(pthread_attr_setstacksize(&attr, PTHREAD_STACK_MIN), EXIT_SUCCESS);

    pthread_t thread;
    BOOST_REQUIRE_EQUAL(pthread_create(&thread, &attr, [] (void*) -> void* {
        const auto DEPTH{PTHREAD_STACK_MIN + 1}; // Try to provoke stack-overflow
        constexpr auto ctx{miniscript::MiniscriptContext::TAPSCRIPT};
        NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
        for (uint32_t i{0}; i < DEPTH; ++i) {
            root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_N, Vector(std::move(root))};
        }
        BOOST_CHECK(root.IsValid());
        BOOST_CHECK_EQUAL(GetDepth(root), DEPTH);

        auto clone{root.Clone()};
        BOOST_CHECK_EQUAL(GetDepth(clone), DEPTH);

        clone = std::move(root);
        return nullptr;
    }, nullptr), EXIT_SUCCESS);

    // Join the thread to ensure it completes
    BOOST_REQUIRE_EQUAL(pthread_join(thread, nullptr), EXIT_SUCCESS);

    // Destroy the attribute object
    BOOST_CHECK_EQUAL(pthread_attr_destroy(&attr), EXIT_SUCCESS);
}
#endif // !WIN32

l0rinc commented at 12:14 PM on January 28, 2026:

I don't mind re-reviewing if this is a blocker for anyone, otherwise I suggest we decouple it from all the heavy refactors here and push in a follow-up.

darosior commented at 3:06 PM on January 28, 2026:

Decoupling them would make sense to me because this is a bit tangential to the stated goal of this PR. But to be clear, this is not a blocker for me. I ACK'd the PR and agree this code can be merged regardless.

hodlinator commented at 10:33 AM on February 9, 2026:

(Making script valid in follow-up: https://github.com/bitcoin/bitcoin/pull/34499/changes/5af5e87646ec436bd4c86a62f70c376edb309ea9).

hodlinator commented at 10:36 AM on February 9, 2026:

(Thread approaches for POSIX+Windows up for review in follow-up #34499).

in src/test/miniscript_tests.cpp:743 in 964c44cdcd

 738 | +
 739 | +    NodeU32 root{NoDupCheck{}, ctx, Fragment::JUST_1};
 740 | +    for (uint32_t i{0}; i < 200'000; ++i) {
 741 | +        root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_S, Vector(std::move(root))};
 742 | +    }
 743 | +    BOOST_CHECK_EQUAL(root.ScriptSize(), 200'001);

darosior commented at 4:53 PM on January 23, 2026:

Why check the Script size? How is this relevant to this check, or more relevant than basic sanity checks such as IsValid() instead (which also performs a Script size check)?

hodlinator commented at 9:57 PM on January 23, 2026:

It proves to someone less used to the primitives that the earlier code has indeed created a large node cluster.

darosior commented at 8:13 PM on January 27, 2026:

The depth of the AST of a Miniscript is unrelated to the size of the corresponding Bitcoin script. I think this check is misleading to the reader.

hodlinator commented at 12:13 PM on January 28, 2026:

Aren't they pretty related if there's a bunch of WRAP_S/WRAP_N? Would GetStaticOps() be any better?

darosior commented at 3:03 PM on January 28, 2026:

My point was that a large Bitcoin Script is not a guarantee of a deep Miniscript, and this check uses it as such. No, the number of always-executed ops is also not a guarantee of a deep Miniscript.

hodlinator commented at 9:01 AM on January 29, 2026:

I've updated my suggestion in #31713 (review) with a simplistic GetDepth() that double-checks the depth of the Miniscript.

hodlinator commented at 10:34 AM on February 9, 2026:

(compute_depth() is up for review in follow-up: https://github.com/bitcoin/bitcoin/pull/34499/changes/24cd733825ebf98edc01fbca8cb3d8ae87f24b87).

in src/test/miniscript_tests.cpp:746 in 964c44cdcd

 741 | +        root = NodeU32{NoDupCheck{}, ctx, Fragment::WRAP_S, Vector(std::move(root))};
 742 | +    }
 743 | +    BOOST_CHECK_EQUAL(root.ScriptSize(), 200'001);
 744 | +
 745 | +    auto clone{root.Clone()};
 746 | +    BOOST_CHECK_EQUAL(clone.ScriptSize(), root.ScriptSize());

darosior commented at 4:53 PM on January 23, 2026:

Maybe compare them completely instead of just comparing their Script size?

hodlinator commented at 10:02 PM on January 23, 2026:

Comparing the Node::scriptlen members is what is most essential, I'm just roughly verifying that Clone() has performed its essential work for the purposes of this test, not verifying details of Clone() itself as the focus.

darosior commented at 8:15 PM on January 27, 2026:

Why is that the most essential?

hodlinator commented at 9:07 AM on January 29, 2026:

As stated in other comment, I've updated my suggestion in #31713 (review) with a simplistic GetDepth() that performs the essential check I'm after. Hopefully that could resolve this thread.

darosior commented at 5:13 PM on January 23, 2026: member

Code looks good to me, but i'm not sure about the last two commits. They seem fine code-wise, but unrelated to this PR and i'd like to better understand their purpose.

darosior approved

darosior commented at 6:06 PM on January 23, 2026: member

Code review ACK 964c44cdcd6be5f39aed1aeda9c305803eb3b25f

DrahtBot requested review from l0rinc on Jan 23, 2026

in src/script/miniscript.h:610 in 964c44cdcd

 605 | @@ -580,16 +606,17 @@ struct Node {
 606 |      // Constructor which takes all of the data that a Node could possibly contain.
 607 |      // This is kept private as no valid fragment has all of these arguments.
 608 |      // Only used by Clone()
 609 | -    Node(internal::NoDupCheck, MiniscriptContext script_ctx, Fragment nt, std::vector<NodeRef<Key>> sub, std::vector<Key> key, std::vector<unsigned char> arg, uint32_t val)
 610 | +    Node(internal::NoDupCheck, MiniscriptContext script_ctx, enum Fragment nt, std::vector<Node> sub, std::vector<Key> key, std::vector<unsigned char> arg, uint32_t val)
 611 |          : fragment(nt), k(val), keys(key), data(std::move(arg)), subs(std::move(sub)), m_script_ctx{script_ctx}, ops(CalcOps()), ss(CalcStackSize()), ws(CalcWitnessSize()), typ(CalcType()), scriptlen(CalcScriptLen()) {}

l0rinc commented at 8:41 PM on January 23, 2026:

nit: if you touch again, consider moving the key vector:

        : fragment(nt), k(val), keys(std::move(key)), data(std::move(arg)), subs(std::move(sub)), m_script_ctx{script_ctx}, ops(CalcOps()), ss(CalcStackSize()), ws(CalcWitnessSize()), typ(CalcType()), scriptlen(CalcScriptLen()) {}

hodlinator commented at 10:32 AM on February 9, 2026:

(Thanks! Up for review in https://github.com/bitcoin/bitcoin/pull/34499/changes/da51b5e4d216a2eff0e93d31c93434f3eac02f60).

l0rinc approved

l0rinc commented at 8:49 PM on January 23, 2026: contributor

ACK 964c44cdcd6be5f39aed1aeda9c305803eb3b25f Redid the rebase locally, no diff against latest push. Quickly went over the changes again, LGTM. If you decide to push something else here or in a followup based on the reviews, I don't mind reacking.

achow101 commented at 11:11 PM on January 30, 2026: member

ACK 964c44cdcd6be5f39aed1aeda9c305803eb3b25f

achow101 merged this on Jan 30, 2026

achow101 closed this on Jan 30, 2026

hodlinator deleted the branch on Feb 4, 2026