instagibbs · February 24, 2017 01:24
diff --git a/construct.sh b/construct.sh

 shopt -s expand_aliases

 rm -r ~/elementsdir1
 rm -r ~/elementsdir2
 rm -r ~/bitcoindir
 mkdir ~/elementsdir1
 mkdir ~/elementsdir2
 mkdir ~/bitcoindir

 # First we need to set up our config files to walk through this demo

 cat <<EOF > ~/elementsdir1/elements.conf
 # Standard bitcoind stuff
 rpcuser=user1
 rpcpassword=password1
 rpcport=18884
 port=18886

 # Over p2p we will only connect to local other elementsd
 connect=localhost:18887

 regtest=1
 daemon=1
 # Make sure you set listen after -connect, otherwise neither
 # will accept incoming connections!
 listen=1
 # Just for looking at random txs
 txindex=1

 # This is the script that controls pegged in funds in Bitcoin network
 # Users will be pegging into a P2SH of this, and the "watchmen"
 # can then recover these funds and send them to users who desire to peg out.
 # This template is 1-of-1 checkmultisig
 #fedpegscript=5121<pubkey>51ae

 # This is the script that controls how blocks are made
 # We have to supply a signature that satisfies this to create
 # a valid block.
 #signblockscript=5121<pubkey2>51ae

 # We want to validate pegins by checking with bitcoind if header exists
 # in best known chain, and how deep. We combine this with pegin
 # proof included in the pegin to get full security.
 validatepegin=1

 # If in the same datadir and using standard ports, these are unneeded
 # thanks to cookie auth. If not, like in our situation, elementsd needs
 # more info to connect to bitcoind:
 mainchainrpcport=18888
 mainchainrpcuser=user3
 mainchainrpcpassword=password3
 EOF

 cat <<EOF > ~/elementsdir2/elements.conf
 rpcuser=user2
 rpcpassword=password2
 rpcport=18885
 port=18887
 connect=localhost:18886

 regtest=1
 daemon=1
 listen=1
 txindex=1

 #fedpegscript=51<pubkey>51ae
 #signblockscript=51<pubkey2>51ae

 mainchainrpcport=18888
 mainchainrpcuser=user3
 mainchainrpcpassword=password3
 validatepegin=1
 EOF

 cat <<EOF > ~/bitcoindir/bitcoin.conf
 rpcuser=user3
 rpcpassword=password3
 rpcport=18888
 port=18889

 regtest=1
 testnet=0
 daemon=1
 txindex=1
 EOF

 ELEMENTSPATH="."
 BITCOINPATH="."

 alias e1-cli="$ELEMENTSPATH/elements-cli -datadir=$HOME/elementsdir1"
 alias e1-dae="$ELEMENTSPATH/elementsd -datadir=$HOME/elementsdir1"
 alias e2-cli="$ELEMENTSPATH/elements-cli -datadir=$HOME/elementsdir2"
 alias e2-dae="$ELEMENTSPATH/elementsd -datadir=$HOME/elementsdir2"

 alias b-cli="$BITCOINPATH/bitcoin-cli -datadir=$HOME/bitcoindir"
 alias b-dae="$BITCOINPATH/bitcoind -datadir=$HOME/bitcoindir"

 # Should throw an error, can't connect to bitcoin daemon to validate pegins
 e1-dae

 # Need to start bitcoind first, elementsd will wait until bitcoind gives warmup finished status
 b-dae
 e1-dae
 e2-dae

 # Prime the chain, see "immature balance" holds all funds until genesis is mature
 e1-cli getwalletinfo

 # Mining for now is OP_TRUE
 e1-cli generate 101

 # Now we have 21M OP_TRUE value
 e1-cli getwalletinfo
 e2-cli getwalletinfo

 # Primed and ready

 ######## WALLET ###########


 #Sample raw transaction RPC API

 #   ~Core API

 #* `getrawtransaction <txid> 1`
 #* `gettransaction <txid> 1`
 #* `listunspent`
 #* `decoderawtransaction <hex>`
 #* `sendrawtransaction <hex>`
 #* `validateaddress <address>
 #* `listreceivedbyaddress <minconf> <include_empty> <include_watchonly>`

 #   Elements Only API

 #* `blindrawtransaction <hex>`
 #* `dumpblindingkey <address>`
 #* `importblindingkey <addr> <blindingkey>`

 # But let's start with a managed wallet example

 # First, drain OP_TRUE
 e2-cli sendtoaddress $(e2-cli getnewaddress) 21000000 "" "" true
 e2-cli generate 101

 # Funds should be all in e2 now
 e1-cli getwalletinfo
 e2-cli getwalletinfo

 # Have Bob send coins to himself using a blinded Elements address!
 ADDR=$(e2-cli getnewaddress)

 # How do we know it's blinded? Check for blinding key, unblinded address.
 e2-cli validateaddress $ADDR

 TXID=$(e2-cli sendtoaddress $ADDR 1)

 e2-cli generate 1

 # Now let's examine the transaction, both in wallet and without

 # In-wallet, take a look at blinding information
 e2-cli gettransaction $TXID
 # e1 doesn't have in wallet
 e1-cli gettransaction $TXID

 # public info, see blinded ranges, etc
 e1-cli getrawtransaction $TXID 1

 # Now let's import the key to spend
 e1-cli importprivkey $(e2-cli dumpprivkey $ADDR)

 # We can't see output value info though
 e1-cli gettransaction $TXID
 # And it won't show in balance or known outputs
 e1-cli getwalletinfo
 # Amount for transaction is unknown, so it is not shown.
 e1-cli listunspent 1 1

 # Solution: Import blinding key
 e1-cli importblindingkey $ADDR $(e2-cli dumpblindingkey $ADDR)

 # Check again, funds should show
 e1-cli getwalletinfo
 e1-cli listunspent 1 1
 e1-cli gettransaction $TXID

 #Exercises
 #===
 # Resources: https://bitcoin.org/en/developer-documentation
 #1. Find the change output in one of your transactions.
 #2. Use both methods to get the total input value of the transaction.
 #3. Find your UTXO with the most confirmations.
 #4. Create a raw transaction that pays 0.1 coins in fees and has two change addresses.
 #5. Build blinded multisig p2sh

 ###### BLOCKSIGNING #######

 # Recall blocksigning is OP_TRUE
 e1-cli generate 1

 # Let's set it to something more interesting... 2-of-2 multisig

 # First lets get some keys from both clients to make our block "challenge"
 ADDR1=$(e1-cli getnewaddress)
 ADDR2=$(e2-cli getnewaddress)
 VALID1=$(e1-cli validateaddress $ADDR1)
 PUBKEY1=$(echo $VALID1 | python3 -c "import sys, json; print(json.load(sys.stdin)['pubkey'])")
 VALID2=$(e2-cli validateaddress $ADDR2)
 PUBKEY2=$(echo $VALID2 | python3 -c "import sys, json; print(json.load(sys.stdin)['pubkey'])")

 KEY1=$(e1-cli dumpprivkey $ADDR1)
 KEY2=$(e2-cli dumpprivkey $ADDR2)

 e1-cli stop
 e2-cli stop

 # Now filled with the pubkeys as 2-of-2 checkmultisig
 SIGNBLOCKARG="-signblockscript=5221$(echo $PUBKEY1)21$(echo $PUBKEY2)52ae"

 # Wipe out the chain and wallet to get funds with new genesis block
 # You can not swap out blocksigner sets as of now for security reasons,
 # so we start fresh on a new chain.
 rm -r ~/elementsdir1/elementsregtest/blocks
 rm -r ~/elementsdir1/elementsregtest/chainstate
 rm ~/elementsdir1/elementsregtest/wallet.dat
 rm -r ~/elementsdir2/elementsregtest/blocks
 rm -r ~/elementsdir2/elementsregtest/chainstate
 rm ~/elementsdir2/elementsregtest/wallet.dat

 e1-dae $SIGNBLOCKARG
 e2-dae $SIGNBLOCKARG

 # Now import signing keys
 e1-cli importprivkey $KEY1
 e2-cli importprivkey $KEY2

 # Generate no longer works, even if keys are in wallet
 e1-cli generate 1
 e2-cli generate 1

 # Let's propose and accept some blocks, e1 is master!
 HEX=$(e1-cli getnewblockhex)

 # Unsigned is no good
 # 0 before, 0 after
 e1-cli getblockcount
 
 e1-cli submitblock $HEX

 # Still 0
 e1-cli getblockcount

 ####
 # Signblock tests validity except block signatures
 # This signing step can be outsourced to a HSM signing to enforce business logic of any sort
 # See Strong Federations paper
 SIGN1=$(e1-cli signblock $HEX)
 SIGN2=$(e2-cli signblock $HEX)
 ####

 # We now can gather signatures any way you want, combine them into a fully signed block
 BLOCKRESULT=$(e1-cli combineblocksigs $HEX '''["'''$SIGN1'''", "'''$SIGN2'''"]''')

 COMPLETE=$(echo $BLOCKRESULT | python3 -c "import sys, json; print(json.load(sys.stdin)['complete'])")
 SIGNBLOCK=$(echo $BLOCKRESULT | python3 -c "import sys, json; print(json.load(sys.stdin)['hex'])")

 # Should get True here as we have signatures from each key
 echo $COMPLETE

 # Now submit the block, doesn't matter who
 e2-cli submitblock $SIGNBLOCK

 # We now have moved forward one block!
 e1-cli getblockcount
 e2-cli getblockcount

 e1-cli stop
 e2-cli stop

 # Further Exercises:
 # 1.Make funny/different block block challenge? modify generate to allow arbitrary proof, instead of from wallet only
 # 2.Arbitrary consensus change?
 # 3.Make a python script that does round-robin consensus

 ######## Pegging #######

 # Everything pegging related can be done inside the Elements daemon directly, except for
 # pegging out. This is due to the multisig pool aka Watchmen that controls the bitcoin
 # on the Bitcoin blockchain. That is the easiest part to get wrong, and by far the most
 # important as there is no going back if you lose the funds.

 # Wipe out the chain and wallet to get funds with new genesis block
 rm -r ~/elementsdir1/elementsregtest/blocks
 rm -r ~/elementsdir1/elementsregtest/chainstate
 rm ~/elementsdir1/elementsregtest/wallet.dat
 rm -r ~/elementsdir2/elementsregtest/blocks
 rm -r ~/elementsdir2/elementsregtest/chainstate
 rm ~/elementsdir2/elementsregtest/wallet.dat

 FEDPEGARG="-fedpegscript=5221$(echo $PUBKEY1)21$(echo $PUBKEY2)52ae"

 # Back to OP_TRUE blocks, re-using pubkeys for pegin pool instead
 # Keys can be the same or different, doesn't matter
 e1-dae $FEDPEGARG
 e2-dae $FEDPEGARG

 # Mature some outputs on each side
 e1-cli generate 101
 b-cli generate 101

 # We have to lock up some of the funds first. Regtest(what we're running) has all funds as OP_TRUE
 # but this is not the case in testnet/production. Doesn't matter where we send it
 # inside Bitcoin, this is just a hack to lock some funds up.
 e1-cli sendtomainchain $(b-cli getnewaddress) 50

 # Mature the pegout
 e1-cli generate 101

 # Now we can actually start pegging in. Examine the pegin address fields
 e1-cli getpeginaddress
 # Changes each time as it's a new sidechain address as well as new "tweak" for the watchmen keys
 # mainchain_address : where you send your bitcoin from Bitcoin network
 # sidechain_address : where the bitcoin will end up on the sidechain after pegging in

 # Each call of this takes the pubkeys defined in the config file, adds a random number to them
 # that is essetially the hash of the sidechain_address and other information,
 # then creates a new P2SH Bitcoin address from that. We reveal that "tweak" to the functionaries
 # during `claimpegin`, then they are able to calculate the necessary private key and control
 # funds. 
 e1-cli getpeginaddress

 ADDRS=$(e1-cli getpeginaddress)

 MAINCHAIN=$(echo $ADDRS | python3 -c "import sys, json; print(json.load(sys.stdin)['mainchain_address'])")
 SIDECHAIN=$(echo $ADDRS | python3 -c "import sys, json; print(json.load(sys.stdin)['sidechain_address'])")

 #Send funds to unique watchmen P2SH address
 TXID=$(b-cli sendtoaddress $MAINCHAIN 1)

 # Mature pegin funds to avoid reorg -> fractional reserve
 b-cli generate 101
 PROOF=$(b-cli gettxoutproof '''["'''$TXID'''"]''')
 RAW=$(b-cli getrawtransaction $TXID)

 # Attempt claim!
 CLAIMTXID=$(e1-cli claimpegin $SIDECHAIN $RAW $PROOF)

 # Other node should accept to mempool and mine
 e2-cli generate 1

 # Should see confirmations
 e1-cli getrawtransaction $CLAIMTXID 1

 #### Pegging Out ####

 #sendtomainaddress <addr> <amount>

 #Exercises
 #1. Implement really dumb/unsafe watchmen to allow pegouts for learning purposes
 # Recover tweak from pegin, add to privkey, combined tweaked pubkeys into a redeemscript, add to Core wallet

	shopt -s expand_aliases

	rm -r ~/elementsdir1
	rm -r ~/elementsdir2
	rm -r ~/bitcoindir
	mkdir ~/elementsdir1
	mkdir ~/elementsdir2
	mkdir ~/bitcoindir

	# First we need to set up our config files to walk through this demo

	cat <<EOF > ~/elementsdir1/elements.conf
	# Standard bitcoind stuff
	rpcuser=user1
	rpcpassword=password1
	rpcport=18884
	port=18886

	# Over p2p we will only connect to local other elementsd
	connect=localhost:18887

	regtest=1
	daemon=1
	# Make sure you set listen after -connect, otherwise neither
	# will accept incoming connections!
	listen=1
	# Just for looking at random txs
	txindex=1

	# This is the script that controls pegged in funds in Bitcoin network
	# Users will be pegging into a P2SH of this, and the "watchmen"
	# can then recover these funds and send them to users who desire to peg out.
	# This template is 1-of-1 checkmultisig
	#fedpegscript=5121<pubkey>51ae

	# This is the script that controls how blocks are made
	# We have to supply a signature that satisfies this to create
	# a valid block.
	#signblockscript=5121<pubkey2>51ae

	# We want to validate pegins by checking with bitcoind if header exists
	# in best known chain, and how deep. We combine this with pegin
	# proof included in the pegin to get full security.
	validatepegin=1

	# If in the same datadir and using standard ports, these are unneeded
	# thanks to cookie auth. If not, like in our situation, elementsd needs
	# more info to connect to bitcoind:
	mainchainrpcport=18888
	mainchainrpcuser=user3
	mainchainrpcpassword=password3
	EOF

	cat <<EOF > ~/elementsdir2/elements.conf
	rpcuser=user2
	rpcpassword=password2
	rpcport=18885
	port=18887
	connect=localhost:18886

	regtest=1
	daemon=1
	listen=1
	txindex=1

	#fedpegscript=51<pubkey>51ae
	#signblockscript=51<pubkey2>51ae

	mainchainrpcport=18888
	mainchainrpcuser=user3
	mainchainrpcpassword=password3
	validatepegin=1
	EOF

	cat <<EOF > ~/bitcoindir/bitcoin.conf
	rpcuser=user3
	rpcpassword=password3
	rpcport=18888
	port=18889

	regtest=1
	testnet=0
	daemon=1
	txindex=1
	EOF

	ELEMENTSPATH="."
	BITCOINPATH="."

	alias e1-cli="$ELEMENTSPATH/elements-cli -datadir=$HOME/elementsdir1"
	alias e1-dae="$ELEMENTSPATH/elementsd -datadir=$HOME/elementsdir1"
	alias e2-cli="$ELEMENTSPATH/elements-cli -datadir=$HOME/elementsdir2"
	alias e2-dae="$ELEMENTSPATH/elementsd -datadir=$HOME/elementsdir2"

	alias b-cli="$BITCOINPATH/bitcoin-cli -datadir=$HOME/bitcoindir"
	alias b-dae="$BITCOINPATH/bitcoind -datadir=$HOME/bitcoindir"

	# Should throw an error, can't connect to bitcoin daemon to validate pegins
	e1-dae

	# Need to start bitcoind first, elementsd will wait until bitcoind gives warmup finished status
	b-dae
	e1-dae
	e2-dae

	# Prime the chain, see "immature balance" holds all funds until genesis is mature
	e1-cli getwalletinfo

	# Mining for now is OP_TRUE
	e1-cli generate 101

	# Now we have 21M OP_TRUE value
	e1-cli getwalletinfo
	e2-cli getwalletinfo

	# Primed and ready

	######## WALLET ###########


	#Sample raw transaction RPC API

	# ~Core API

	#* `getrawtransaction <txid> 1`
	#* `gettransaction <txid> 1`
	#* `listunspent`
	#* `decoderawtransaction <hex>`
	#* `sendrawtransaction <hex>`
	#* `validateaddress <address>
	#* `listreceivedbyaddress <minconf> <include_empty> <include_watchonly>`

	# Elements Only API

	#* `blindrawtransaction <hex>`
	#* `dumpblindingkey <address>`
	#* `importblindingkey <addr> <blindingkey>`

	# But let's start with a managed wallet example

	# First, drain OP_TRUE
	e2-cli sendtoaddress $(e2-cli getnewaddress) 21000000 "" "" true
	e2-cli generate 101

	# Funds should be all in e2 now
	e1-cli getwalletinfo
	e2-cli getwalletinfo

	# Have Bob send coins to himself using a blinded Elements address!
	ADDR=$(e2-cli getnewaddress)

	# How do we know it's blinded? Check for blinding key, unblinded address.
	e2-cli validateaddress $ADDR

	TXID=$(e2-cli sendtoaddress $ADDR 1)

	e2-cli generate 1

	# Now let's examine the transaction, both in wallet and without

	# In-wallet, take a look at blinding information
	e2-cli gettransaction $TXID
	# e1 doesn't have in wallet
	e1-cli gettransaction $TXID

	# public info, see blinded ranges, etc
	e1-cli getrawtransaction $TXID 1

	# Now let's import the key to spend
	e1-cli importprivkey $(e2-cli dumpprivkey $ADDR)

	# We can't see output value info though
	e1-cli gettransaction $TXID
	# And it won't show in balance or known outputs
	e1-cli getwalletinfo
	# Amount for transaction is unknown, so it is not shown.
	e1-cli listunspent 1 1

	# Solution: Import blinding key
	e1-cli importblindingkey $ADDR $(e2-cli dumpblindingkey $ADDR)

	# Check again, funds should show
	e1-cli getwalletinfo
	e1-cli listunspent 1 1
	e1-cli gettransaction $TXID

	#Exercises
	#===
	# Resources: https://bitcoin.org/en/developer-documentation
	#1. Find the change output in one of your transactions.
	#2. Use both methods to get the total input value of the transaction.
	#3. Find your UTXO with the most confirmations.
	#4. Create a raw transaction that pays 0.1 coins in fees and has two change addresses.
	#5. Build blinded multisig p2sh

	###### BLOCKSIGNING #######

	# Recall blocksigning is OP_TRUE
	e1-cli generate 1

	# Let's set it to something more interesting... 2-of-2 multisig

	# First lets get some keys from both clients to make our block "challenge"
	ADDR1=$(e1-cli getnewaddress)
	ADDR2=$(e2-cli getnewaddress)
	VALID1=$(e1-cli validateaddress $ADDR1)
	PUBKEY1=$(echo $VALID1 \| python3 -c "import sys, json; print(json.load(sys.stdin)['pubkey'])")
	VALID2=$(e2-cli validateaddress $ADDR2)
	PUBKEY2=$(echo $VALID2 \| python3 -c "import sys, json; print(json.load(sys.stdin)['pubkey'])")

	KEY1=$(e1-cli dumpprivkey $ADDR1)
	KEY2=$(e2-cli dumpprivkey $ADDR2)

	e1-cli stop
	e2-cli stop

	# Now filled with the pubkeys as 2-of-2 checkmultisig
	SIGNBLOCKARG="-signblockscript=5221$(echo $PUBKEY1)21$(echo $PUBKEY2)52ae"

	# Wipe out the chain and wallet to get funds with new genesis block
	# You can not swap out blocksigner sets as of now for security reasons,
	# so we start fresh on a new chain.
	rm -r ~/elementsdir1/elementsregtest/blocks
	rm -r ~/elementsdir1/elementsregtest/chainstate
	rm ~/elementsdir1/elementsregtest/wallet.dat
	rm -r ~/elementsdir2/elementsregtest/blocks
	rm -r ~/elementsdir2/elementsregtest/chainstate
	rm ~/elementsdir2/elementsregtest/wallet.dat

	e1-dae $SIGNBLOCKARG
	e2-dae $SIGNBLOCKARG

	# Now import signing keys
	e1-cli importprivkey $KEY1
	e2-cli importprivkey $KEY2

	# Generate no longer works, even if keys are in wallet
	e1-cli generate 1
	e2-cli generate 1

	# Let's propose and accept some blocks, e1 is master!
	HEX=$(e1-cli getnewblockhex)

	# Unsigned is no good
	# 0 before, 0 after
	e1-cli getblockcount

	e1-cli submitblock $HEX

	# Still 0
	e1-cli getblockcount

	####
	# Signblock tests validity except block signatures
	# This signing step can be outsourced to a HSM signing to enforce business logic of any sort
	# See Strong Federations paper
	SIGN1=$(e1-cli signblock $HEX)
	SIGN2=$(e2-cli signblock $HEX)
	####

	# We now can gather signatures any way you want, combine them into a fully signed block
	BLOCKRESULT=$(e1-cli combineblocksigs $HEX '''["'''$SIGN1'''", "'''$SIGN2'''"]''')

	COMPLETE=$(echo $BLOCKRESULT \| python3 -c "import sys, json; print(json.load(sys.stdin)['complete'])")
	SIGNBLOCK=$(echo $BLOCKRESULT \| python3 -c "import sys, json; print(json.load(sys.stdin)['hex'])")

	# Should get True here as we have signatures from each key
	echo $COMPLETE

	# Now submit the block, doesn't matter who
	e2-cli submitblock $SIGNBLOCK

	# We now have moved forward one block!
	e1-cli getblockcount
	e2-cli getblockcount

	e1-cli stop
	e2-cli stop

	# Further Exercises:
	# 1.Make funny/different block block challenge? modify generate to allow arbitrary proof, instead of from wallet only
	# 2.Arbitrary consensus change?
	# 3.Make a python script that does round-robin consensus

	######## Pegging #######

	# Everything pegging related can be done inside the Elements daemon directly, except for
	# pegging out. This is due to the multisig pool aka Watchmen that controls the bitcoin
	# on the Bitcoin blockchain. That is the easiest part to get wrong, and by far the most
	# important as there is no going back if you lose the funds.

	# Wipe out the chain and wallet to get funds with new genesis block
	rm -r ~/elementsdir1/elementsregtest/blocks
	rm -r ~/elementsdir1/elementsregtest/chainstate
	rm ~/elementsdir1/elementsregtest/wallet.dat
	rm -r ~/elementsdir2/elementsregtest/blocks
	rm -r ~/elementsdir2/elementsregtest/chainstate
	rm ~/elementsdir2/elementsregtest/wallet.dat

	FEDPEGARG="-fedpegscript=5221$(echo $PUBKEY1)21$(echo $PUBKEY2)52ae"

	# Back to OP_TRUE blocks, re-using pubkeys for pegin pool instead
	# Keys can be the same or different, doesn't matter
	e1-dae $FEDPEGARG
	e2-dae $FEDPEGARG

	# Mature some outputs on each side
	e1-cli generate 101
	b-cli generate 101

	# We have to lock up some of the funds first. Regtest(what we're running) has all funds as OP_TRUE
	# but this is not the case in testnet/production. Doesn't matter where we send it
	# inside Bitcoin, this is just a hack to lock some funds up.
	e1-cli sendtomainchain $(b-cli getnewaddress) 50

	# Mature the pegout
	e1-cli generate 101

	# Now we can actually start pegging in. Examine the pegin address fields
	e1-cli getpeginaddress
	# Changes each time as it's a new sidechain address as well as new "tweak" for the watchmen keys
	# mainchain_address : where you send your bitcoin from Bitcoin network
	# sidechain_address : where the bitcoin will end up on the sidechain after pegging in

	# Each call of this takes the pubkeys defined in the config file, adds a random number to them
	# that is essetially the hash of the sidechain_address and other information,
	# then creates a new P2SH Bitcoin address from that. We reveal that "tweak" to the functionaries
	# during `claimpegin`, then they are able to calculate the necessary private key and control
	# funds.
	e1-cli getpeginaddress

	ADDRS=$(e1-cli getpeginaddress)

	MAINCHAIN=$(echo $ADDRS \| python3 -c "import sys, json; print(json.load(sys.stdin)['mainchain_address'])")
	SIDECHAIN=$(echo $ADDRS \| python3 -c "import sys, json; print(json.load(sys.stdin)['sidechain_address'])")

	#Send funds to unique watchmen P2SH address
	TXID=$(b-cli sendtoaddress $MAINCHAIN 1)

	# Mature pegin funds to avoid reorg -> fractional reserve
	b-cli generate 101
	PROOF=$(b-cli gettxoutproof '''["'''$TXID'''"]''')
	RAW=$(b-cli getrawtransaction $TXID)

	# Attempt claim!
	CLAIMTXID=$(e1-cli claimpegin $SIDECHAIN $RAW $PROOF)

	# Other node should accept to mempool and mine
	e2-cli generate 1

	# Should see confirmations
	e1-cli getrawtransaction $CLAIMTXID 1

	#### Pegging Out ####

	#sendtomainaddress <addr> <amount>

	#Exercises
	#1. Implement really dumb/unsafe watchmen to allow pegouts for learning purposes
	# Recover tweak from pegin, add to privkey, combined tweaked pubkeys into a redeemscript, add to Core wallet