add multi_a

sanket1729 · sanket1729 · commit c05eb7c70d08 · 2021-10-26T09:07:46.000-07:00
diff --git a/src/miniscript/astelem.rs b/src/miniscript/astelem.rs
@@ -119,7 +119,9 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {
                     && c.real_for_each_key(pred)
             }
             Terminal::Thresh(_, ref subs) => subs.iter().all(|sub| sub.real_for_each_key(pred)),
-            Terminal::Multi(_, ref keys) => keys.iter().all(|key| pred(ForEach::Key(key))),
+            Terminal::Multi(_, ref keys) | Terminal::MultiA(_, ref keys) => {
+                keys.iter().all(|key| pred(ForEach::Key(key)))
+            }
         }
     }
     pub(super) fn real_translate_pk<FPk, FPkh, Q, Error>(
@@ -209,6 +211,10 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {
                 let keys: Result<Vec<Q>, _> = keys.iter().map(&mut *translatefpk).collect();
                 Terminal::Multi(k, keys?)
             }
+            Terminal::MultiA(k, ref keys) => {
+                let keys: Result<Vec<Q>, _> = keys.iter().map(&mut *translatefpk).collect();
+                Terminal::MultiA(k, keys?)
+            }
         };
         Ok(frag)
     }
@@ -312,6 +318,13 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> fmt::Debug for Terminal<Pk, Ctx> {
                     }
                     f.write_str(")")
                 }
+                Terminal::MultiA(k, ref keys) => {
+                    write!(f, "multi_a({}", k)?;
+                    for k in keys {
+                        write!(f, ",{}", k)?;
+                    }
+                    f.write_str(")")
+                }
                 _ => unreachable!(),
             }
         }
@@ -368,6 +381,13 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> fmt::Display for Terminal<Pk, Ctx> {
                 }
                 f.write_str(")")
             }
+            Terminal::MultiA(k, ref keys) => {
+                write!(f, "multi_a({}", k)?;
+                for k in keys {
+                    write!(f, ",{}", k)?;
+                }
+                f.write_str(")")
+            }
             // wrappers
             _ => {
                 if let Some((ch, sub)) = self.wrap_char() {
@@ -540,7 +560,7 @@ where
 
                 Ok(Terminal::Thresh(k, subs?))
             }
-            ("multi", n) => {
+            ("multi", n) | ("multi_a", n) => {
                 if n == 0 {
                     return Err(errstr("no arguments given"));
                 }
@@ -554,7 +574,12 @@ where
                     .map(|sub| expression::terminal(sub, Pk::from_str))
                     .collect();
 
-                pks.map(|pks| Terminal::Multi(k, pks))
+                if frag_name == "multi" {
+                    pks.map(|pks| Terminal::Multi(k, pks))
+                } else {
+                    // must be multi_a
+                    pks.map(|pks| Terminal::MultiA(k, pks))
+                }
             }
             _ => Err(Error::Unexpected(format!(
                 "{}({} args) while parsing Miniscript",
@@ -745,6 +770,19 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {
                     .push_int(keys.len() as i64)
                     .push_opcode(opcodes::all::OP_CHECKMULTISIG)
             }
+            Terminal::MultiA(k, ref keys) => {
+                debug_assert!(Ctx::is_tap());
+                // keys must be atleast len 1 here, guaranteed by typing rules
+                builder = builder.push_ms_key::<_, Ctx>(&keys[0]);
+                builder = builder.push_opcode(opcodes::all::OP_CHECKSIG);
+                for pk in keys.iter().skip(1) {
+                    builder = builder.push_ms_key::<_, Ctx>(pk);
+                    builder = builder.push_opcode(opcodes::all::OP_CHECKSIGADD);
+                }
+                builder
+                    .push_int(k as i64)
+                    .push_opcode(opcodes::all::OP_NUMEQUAL)
+            }
         }
     }
 
@@ -799,6 +837,12 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {
                     + script_num_size(pks.len())
                     + pks.iter().map(|pk| Ctx::pk_len(pk)).sum::<usize>()
             }
+            Terminal::MultiA(k, ref pks) => {
+                script_num_size(k)
+                    + 1 // NUMEQUAL
+                    + pks.iter().map(|pk| Ctx::pk_len(pk)).sum::<usize>() // n keys
+                    + pks.len() // n times CHECKSIGADD
+            }
         }
     }
 }
diff --git a/src/miniscript/context.rs b/src/miniscript/context.rs
@@ -67,6 +67,8 @@ pub enum ScriptContextError {
     TaprootMultiDisabled,
     /// Stack size exceeded in script execution
     StackSizeLimitExceeded { actual: usize, limit: usize },
+    /// MultiA is only allowed in post tapscript
+    MultiANotAllowed,
 }
 
 impl fmt::Display for ScriptContextError {
@@ -132,6 +134,9 @@ impl fmt::Display for ScriptContextError {
                     actual, limit
                 )
             }
+            ScriptContextError::MultiANotAllowed => {
+                write!(f, "Multi a(CHECKSIGADD) only allowed post tapscript")
+            }
         }
     }
 }
@@ -335,6 +340,9 @@ impl ScriptContext for Legacy {
         if ms.ext.pk_cost > MAX_SCRIPT_ELEMENT_SIZE {
             return Err(ScriptContextError::MaxRedeemScriptSizeExceeded);
         }
+        if let Terminal::MultiA(..) = ms.node {
+            return Err(ScriptContextError::MultiANotAllowed);
+        }
         Ok(())
     }
 
@@ -431,6 +439,9 @@ impl ScriptContext for Segwitv0 {
                 }
                 Ok(())
             }
+            Terminal::MultiA(..) => {
+                return Err(ScriptContextError::MultiANotAllowed);
+            }
             _ => Ok(()),
         }
     }
@@ -628,6 +639,9 @@ impl ScriptContext for BareCtx {
         if ms.ext.pk_cost > MAX_SCRIPT_SIZE {
             return Err(ScriptContextError::MaxWitnessScriptSizeExceeded);
         }
+        if let Terminal::MultiA(..) = ms.node {
+            return Err(ScriptContextError::MultiANotAllowed);
+        }
         Ok(())
     }
 
diff --git a/src/miniscript/decode.rs b/src/miniscript/decode.rs
@@ -185,6 +185,8 @@ pub enum Terminal<Pk: MiniscriptKey, Ctx: ScriptContext> {
     Thresh(usize, Vec<Arc<Miniscript<Pk, Ctx>>>),
     /// k (<key>)* n CHECKMULTISIG
     Multi(usize, Vec<Pk>),
+    /// <key> CHECKSIG (<key> CHECKSIGADD)*(n-1) k NUMEQUAL
+    MultiA(usize, Vec<Pk>),
 }
 
 macro_rules! match_token {
@@ -485,6 +487,25 @@ pub fn parse<Ctx: ScriptContext>(
                         keys.reverse();
                         term.reduce0(Terminal::Multi(k as usize, keys))?;
                     },
+                    // MultiA
+                    Tk::NumEqual, Tk::Num(k) => {
+                        let mut keys = Vec::with_capacity(k as usize); // atleast k capacity
+                        while tokens.peek() == Some(&Tk::CheckSigAdd) {
+                            match_token!(
+                                tokens,
+                                Tk::CheckSigAdd, Tk::Bytes32(pk) => keys.push(<Ctx::Key>::from_slice(pk)
+                                    .map_err(|e| Error::PubKeyCtxError(e, Ctx::name_str()))?),
+                            );
+                        }
+                        // Last key must be with a CheckSig
+                        match_token!(
+                            tokens,
+                            Tk::CheckSig, Tk::Bytes32(pk) => keys.push(<Ctx::Key>::from_slice(pk)
+                                .map_err(|e| Error::PubKeyCtxError(e, Ctx::name_str()))?),
+                        );
+                        keys.reverse();
+                        term.reduce0(Terminal::MultiA(k as usize, keys))?;
+                    },
                 );
             }
             Some(NonTerm::MaybeAndV) => {
diff --git a/src/miniscript/lex.rs b/src/miniscript/lex.rs
@@ -31,7 +31,9 @@ pub enum Token<'s> {
     BoolOr,
     Add,
     Equal,
+    NumEqual,
     CheckSig,
+    CheckSigAdd,
     CheckMultiSig,
     CheckSequenceVerify,
     CheckLockTimeVerify,
@@ -129,13 +131,24 @@ pub fn lex<'s>(script: &'s script::Script) -> Result<Vec<Token<'s>>, Error> {
                 ret.push(Token::Equal);
                 ret.push(Token::Verify);
             }
+            script::Instruction::Op(opcodes::all::OP_NUMEQUAL) => {
+                ret.push(Token::NumEqual);
+            }
+            script::Instruction::Op(opcodes::all::OP_NUMEQUALVERIFY) => {
+                ret.push(Token::NumEqual);
+                ret.push(Token::Verify);
+            }
             script::Instruction::Op(opcodes::all::OP_CHECKSIG) => {
                 ret.push(Token::CheckSig);
             }
             script::Instruction::Op(opcodes::all::OP_CHECKSIGVERIFY) => {
                 ret.push(Token::CheckSig);
                 ret.push(Token::Verify);
             }
+            // Change once the opcode name is updated
+            script::Instruction::Op(opcodes::all::OP_CHECKSIGADD) => {
+                ret.push(Token::CheckSigAdd);
+            }
             script::Instruction::Op(opcodes::all::OP_CHECKMULTISIG) => {
                 ret.push(Token::CheckMultiSig);
             }
diff --git a/src/miniscript/mod.rs b/src/miniscript/mod.rs
@@ -448,6 +448,7 @@ serde_string_impl_pk!(Miniscript, "a miniscript", Ctx; ScriptContext);
 
 #[cfg(test)]
 mod tests {
+
     use super::{Miniscript, ScriptContext};
     use super::{Segwitv0, Tap};
     use hex_script;
@@ -462,6 +463,7 @@ mod tests {
     use std::str;
     use std::str::FromStr;
     use std::sync::Arc;
+    use TranslatePk2;
 
     type Segwitv0Script = Miniscript<bitcoin::PublicKey, Segwitv0>;
     type Tapscript = Miniscript<bitcoin::schnorr::PublicKey, Tap>;
@@ -1000,4 +1002,45 @@ mod tests {
         ))
         .unwrap();
     }
+
+    #[test]
+    fn multi_a_tests() {
+        // Test from string tests
+        type Segwitv0Ms = Miniscript<String, Segwitv0>;
+        type TapMs = Miniscript<String, Tap>;
+        let segwit_multi_a_ms = Segwitv0Ms::from_str_insane("multi_a(1,A,B,C)");
+        assert_eq!(
+            segwit_multi_a_ms.unwrap_err().to_string(),
+            "Multi a(CHECKSIGADD) only allowed post tapscript"
+        );
+        let tap_multi_a_ms = TapMs::from_str_insane("multi_a(1,A,B,C)").unwrap();
+        assert_eq!(tap_multi_a_ms.to_string(), "multi_a(1,A,B,C)");
+
+        // Test encode/decode and translation tests
+        type XonlyKey = bitcoin::schnorr::PublicKey;
+        let tap_ms = tap_multi_a_ms.translate_pk2_infallible(|_| {
+            XonlyKey::from_str("e948a0bbf8b15ee47cf0851afbce8835b5f06d3003b8e7ed6104e82a1d41d6f8")
+                .unwrap()
+        });
+        // script rtt test
+        assert_eq!(
+            Miniscript::<XonlyKey, Tap>::parse_insane(&tap_ms.encode()).unwrap(),
+            tap_ms
+        );
+        assert_eq!(tap_ms.script_size(), 104);
+        assert_eq!(tap_ms.encode().len(), tap_ms.script_size());
+
+        // Test satisfaction code
+        // struct SimpleSatisfier(secp256k1::schnorrsig::Signature);
+
+        // impl Satisfier<bitcoin::PublicKey> for SimpleSatisfier {
+        //     fn lookup_sig(&self, pk: &bitcoin::PublicKey) -> Option<BitcoinSig> {
+        //         if *pk == self.0 {
+        //             Some((self.sig, bitcoin::SigHashType::All))
+        //         } else {
+        //             None
+        //         }
+        //     }
+        // }
+    }
 }
diff --git a/src/miniscript/satisfy.rs b/src/miniscript/satisfy.rs
@@ -947,6 +947,44 @@ impl Satisfaction {
                     }
                 }
             }
+            Terminal::MultiA(k, ref keys) => {
+                // Collect all available signatures
+                let mut sig_count = 0;
+                let mut sigs = vec![vec![vec![]]; keys.len()];
+                for (i, pk) in keys.iter().enumerate() {
+                    match Witness::signature(stfr, pk) {
+                        Witness::Stack(sig) => {
+                            sigs[i] = sig;
+                            sig_count += 1;
+                            // This a privacy issue, we are only selecting the first available
+                            // sigs. Incase pk at pos 1 is not selected, we know we did not have access to it
+                            // bitcoin core also implements the same logic for MULTISIG, so I am not bothering
+                            // permuting the sigs for now
+                            if sig_count == k {
+                                break;
+                            }
+                        }
+                        Witness::Impossible => {}
+                        Witness::Unavailable => unreachable!(
+                            "Signature satisfaction without witness must be impossible"
+                        ),
+                    }
+                }
+
+                if sig_count < k {
+                    Satisfaction {
+                        stack: Witness::Impossible,
+                        has_sig: false,
+                    }
+                } else {
+                    Satisfaction {
+                        stack: sigs.into_iter().fold(Witness::empty(), |acc, sig| {
+                            Witness::combine(acc, Witness::Stack(sig))
+                        }),
+                        has_sig: true,
+                    }
+                }
+            }
         }
     }
 
@@ -1063,6 +1101,10 @@ impl Satisfaction {
                 stack: Witness::Stack(vec![vec![]; k + 1]),
                 has_sig: false,
             },
+            Terminal::MultiA(_, ref pks) => Satisfaction {
+                stack: Witness::Stack(vec![vec![]; pks.len()]),
+                has_sig: false,
+            },
         }
     }
 
diff --git a/src/miniscript/types/extra_props.rs b/src/miniscript/types/extra_props.rs
@@ -234,6 +234,29 @@ impl Property for ExtData {
         }
     }
 
+    fn from_multi_a(k: usize, n: usize) -> Self {
+        let num_cost = match (k > 16, n > 16) {
+            (true, true) => 4,
+            (false, true) => 3,
+            (true, false) => 3,
+            (false, false) => 2,
+        };
+        ExtData {
+            pk_cost: num_cost + 33 * n /*pks*/ + (n-1) /*checksigadds*/ + 1,
+            has_free_verify: true,
+            ops_count_static: 1, // We don't care about opcounts in tapscript
+            ops_count_sat: Some(n + 1),
+            ops_count_nsat: Some(n + 1),
+            stack_elem_count_sat: Some(n),
+            stack_elem_count_dissat: Some(n),
+            max_sat_size: Some(((n - k) + 64 * k, (n - k) + 64 * k)),
+            max_dissat_size: Some((n, n)),
+            timelock_info: TimeLockInfo::default(),
+            exec_stack_elem_count_sat: Some(2), // the two nums before num equal verify
+            exec_stack_elem_count_dissat: Some(2),
+        }
+    }
+
     fn from_hash() -> Self {
         //never called directly
         unreachable!()
@@ -990,7 +1013,7 @@ impl Property for ExtData {
             Terminal::False => Ok(Self::from_false()),
             Terminal::PkK(..) => Ok(Self::from_pk_k()),
             Terminal::PkH(..) => Ok(Self::from_pk_h()),
-            Terminal::Multi(k, ref pks) => {
+            Terminal::Multi(k, ref pks) | Terminal::MultiA(k, ref pks) => {
                 if k == 0 {
                     return Err(Error {
                         fragment: fragment.clone(),
@@ -1003,7 +1026,11 @@ impl Property for ExtData {
                         error: ErrorKind::OverThreshold(k, pks.len()),
                     });
                 }
-                Ok(Self::from_multi(k, pks.len()))
+                match *fragment {
+                    Terminal::Multi(..) => Ok(Self::from_multi(k, pks.len())),
+                    Terminal::MultiA(..) => Ok(Self::from_multi_a(k, pks.len())),
+                    _ => unreachable!(),
+                }
             }
             Terminal::After(t) => {
                 // Note that for CLTV this is a limitation not of Bitcoin but Miniscript. The
diff --git a/src/miniscript/types/mod.rs b/src/miniscript/types/mod.rs
diff --git a/src/policy/mod.rs b/src/policy/mod.rs

Original file line number	Diff line number	Diff line change
`@@ -119,7 +119,9 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {`
`119`	`119`	`&& c.real_for_each_key(pred)`
`120`	`120`	`}`
`121`	`121`	`Terminal::Thresh(_, ref subs) => subs.iter().all(\|sub\| sub.real_for_each_key(pred)),`
`122`		`- Terminal::Multi(_, ref keys) => keys.iter().all(\|key\| pred(ForEach::Key(key))),`
	`122`	`+ Terminal::Multi(_, ref keys) \| Terminal::MultiA(_, ref keys) => {`
	`123`	`+ keys.iter().all(\|key\| pred(ForEach::Key(key)))`
	`124`	`+ }`
`123`	`125`	`}`
`124`	`126`	`}`
`125`	`127`	`pub(super) fn real_translate_pk<FPk, FPkh, Q, Error>(`
`@@ -209,6 +211,10 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {`
`209`	`211`	`let keys: Result<Vec<Q>, _> = keys.iter().map(&mut *translatefpk).collect();`
`210`	`212`	`Terminal::Multi(k, keys?)`
`211`	`213`	`}`
	`214`	`+ Terminal::MultiA(k, ref keys) => {`
	`215`	`+ let keys: Result<Vec<Q>, _> = keys.iter().map(&mut *translatefpk).collect();`
	`216`	`+ Terminal::MultiA(k, keys?)`
	`217`	`+ }`
`212`	`218`	`};`
`213`	`219`	`Ok(frag)`
`214`	`220`	`}`
`@@ -312,6 +318,13 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> fmt::Debug for Terminal<Pk, Ctx> {`
`312`	`318`	`}`
`313`	`319`	`f.write_str(")")`
`314`	`320`	`}`
	`321`	`+ Terminal::MultiA(k, ref keys) => {`
	`322`	`+ write!(f, "multi_a({}", k)?;`
	`323`	`+ for k in keys {`
	`324`	`+ write!(f, ",{}", k)?;`
	`325`	`+ }`
	`326`	`+ f.write_str(")")`
	`327`	`+ }`
`315`	`328`	`_ => unreachable!(),`
`316`	`329`	`}`
`317`	`330`	`}`
`@@ -368,6 +381,13 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> fmt::Display for Terminal<Pk, Ctx> {`
`368`	`381`	`}`
`369`	`382`	`f.write_str(")")`
`370`	`383`	`}`
	`384`	`+ Terminal::MultiA(k, ref keys) => {`
	`385`	`+ write!(f, "multi_a({}", k)?;`
	`386`	`+ for k in keys {`
	`387`	`+ write!(f, ",{}", k)?;`
	`388`	`+ }`
	`389`	`+ f.write_str(")")`
	`390`	`+ }`
`371`	`391`	`// wrappers`
`372`	`392`	`_ => {`
`373`	`393`	`if let Some((ch, sub)) = self.wrap_char() {`
`@@ -540,7 +560,7 @@ where`
`540`	`560`
`541`	`561`	`Ok(Terminal::Thresh(k, subs?))`
`542`	`562`	`}`
`543`		`- ("multi", n) => {`
	`563`	`+ ("multi", n) \| ("multi_a", n) => {`
`544`	`564`	`if n == 0 {`
`545`	`565`	`return Err(errstr("no arguments given"));`
`546`	`566`	`}`
`@@ -554,7 +574,12 @@ where`
`554`	`574`	`.map(\|sub\| expression::terminal(sub, Pk::from_str))`
`555`	`575`	`.collect();`
`556`	`576`
`557`		`- pks.map(\|pks\| Terminal::Multi(k, pks))`
	`577`	`+ if frag_name == "multi" {`
	`578`	`+ pks.map(\|pks\| Terminal::Multi(k, pks))`
	`579`	`+ } else {`
	`580`	`+ // must be multi_a`
	`581`	`+ pks.map(\|pks\| Terminal::MultiA(k, pks))`
	`582`	`+ }`
`558`	`583`	`}`
`559`	`584`	`_ => Err(Error::Unexpected(format!(`
`560`	`585`	`"{}({} args) while parsing Miniscript",`
`@@ -745,6 +770,19 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {`
`745`	`770`	`.push_int(keys.len() as i64)`
`746`	`771`	`.push_opcode(opcodes::all::OP_CHECKMULTISIG)`
`747`	`772`	`}`
	`773`	`+ Terminal::MultiA(k, ref keys) => {`
	`774`	`+ debug_assert!(Ctx::is_tap());`
	`775`	`+ // keys must be atleast len 1 here, guaranteed by typing rules`
	`776`	`+ builder = builder.push_ms_key::<_, Ctx>(&keys[0]);`
	`777`	`+ builder = builder.push_opcode(opcodes::all::OP_CHECKSIG);`
	`778`	`+ for pk in keys.iter().skip(1) {`
	`779`	`+ builder = builder.push_ms_key::<_, Ctx>(pk);`
	`780`	`+ builder = builder.push_opcode(opcodes::all::OP_CHECKSIGADD);`
	`781`	`+ }`
	`782`	`+ builder`
	`783`	`+ .push_int(k as i64)`
	`784`	`+ .push_opcode(opcodes::all::OP_NUMEQUAL)`
	`785`	`+ }`
`748`	`786`	`}`
`749`	`787`	`}`
`750`	`788`
`@@ -799,6 +837,12 @@ impl<Pk: MiniscriptKey, Ctx: ScriptContext> Terminal<Pk, Ctx> {`
`799`	`837`	`+ script_num_size(pks.len())`
`800`	`838`	`+ pks.iter().map(\|pk\| Ctx::pk_len(pk)).sum::<usize>()`
`801`	`839`	`}`
	`840`	`+ Terminal::MultiA(k, ref pks) => {`
	`841`	`+ script_num_size(k)`
	`842`	`+ + 1 // NUMEQUAL`
	`843`	`+ + pks.iter().map(\|pk\| Ctx::pk_len(pk)).sum::<usize>() // n keys`
	`844`	`+ + pks.len() // n times CHECKSIGADD`
	`845`	`+ }`
`802`	`846`	`}`
`803`	`847`	`}`
`804`	`848`	`}`
Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,8 @@ pub enum ScriptContextError {`
`67`	`67`	`TaprootMultiDisabled,`
`68`	`68`	`/// Stack size exceeded in script execution`
`69`	`69`	`StackSizeLimitExceeded { actual: usize, limit: usize },`
	`70`	`+ /// MultiA is only allowed in post tapscript`
	`71`	`+ MultiANotAllowed,`
`70`	`72`	`}`
`71`	`73`
`72`	`74`	`impl fmt::Display for ScriptContextError {`
`@@ -132,6 +134,9 @@ impl fmt::Display for ScriptContextError {`
`132`	`134`	`actual, limit`
`133`	`135`	`)`
`134`	`136`	`}`
	`137`	`+ ScriptContextError::MultiANotAllowed => {`
	`138`	`+ write!(f, "Multi a(CHECKSIGADD) only allowed post tapscript")`
	`139`	`+ }`
`135`	`140`	`}`
`136`	`141`	`}`
`137`	`142`	`}`
`@@ -335,6 +340,9 @@ impl ScriptContext for Legacy {`
`335`	`340`	`if ms.ext.pk_cost > MAX_SCRIPT_ELEMENT_SIZE {`
`336`	`341`	`return Err(ScriptContextError::MaxRedeemScriptSizeExceeded);`
`337`	`342`	`}`
	`343`	`+ if let Terminal::MultiA(..) = ms.node {`
	`344`	`+ return Err(ScriptContextError::MultiANotAllowed);`
	`345`	`+ }`
`338`	`346`	`Ok(())`
`339`	`347`	`}`
`340`	`348`
`@@ -431,6 +439,9 @@ impl ScriptContext for Segwitv0 {`
`431`	`439`	`}`
`432`	`440`	`Ok(())`
`433`	`441`	`}`
	`442`	`+ Terminal::MultiA(..) => {`
	`443`	`+ return Err(ScriptContextError::MultiANotAllowed);`
	`444`	`+ }`
`434`	`445`	`_ => Ok(()),`
`435`	`446`	`}`
`436`	`447`	`}`
`@@ -628,6 +639,9 @@ impl ScriptContext for BareCtx {`
`628`	`639`	`if ms.ext.pk_cost > MAX_SCRIPT_SIZE {`
`629`	`640`	`return Err(ScriptContextError::MaxWitnessScriptSizeExceeded);`
`630`	`641`	`}`
	`642`	`+ if let Terminal::MultiA(..) = ms.node {`
	`643`	`+ return Err(ScriptContextError::MultiANotAllowed);`
	`644`	`+ }`
`631`	`645`	`Ok(())`
`632`	`646`	`}`
`633`	`647`