2011-08-09 07:27:58 -04:00
// Copyright (c) 2009-2010 Satoshi Nakamoto
2019-04-19 09:53:48 -04:00
// Copyright (c) 2009-2019 The Bitcoin Core developers
2014-10-26 04:03:12 -03:00
// Distributed under the MIT software license, see the accompanying
2012-05-18 10:02:28 -04:00
// file COPYING or http://www.opensource.org/licenses/mit-license.php.
2011-06-26 13:23:24 -04:00
2017-11-09 21:57:53 -03:00
# include <wallet/wallet.h>
2013-04-13 02:13:08 -03:00
2017-11-09 21:57:53 -03:00
# include <chain.h>
# include <consensus/consensus.h>
# include <consensus/validation.h>
# include <fs.h>
2017-07-26 10:23:01 -04:00
# include <interfaces/chain.h>
2018-04-08 15:37:50 -03:00
# include <interfaces/wallet.h>
2017-11-09 21:57:53 -03:00
# include <key.h>
2017-09-19 22:12:25 -03:00
# include <key_io.h>
2017-11-09 21:57:53 -03:00
# include <policy/fees.h>
# include <policy/policy.h>
# include <primitives/block.h>
# include <primitives/transaction.h>
2018-11-10 17:29:07 -03:00
# include <script/descriptor.h>
2017-11-09 21:57:53 -03:00
# include <script/script.h>
2019-06-06 16:52:24 -04:00
# include <script/signingprovider.h>
2018-11-06 11:23:43 -03:00
# include <util/bip32.h>
2019-04-02 18:03:37 -03:00
# include <util/error.h>
# include <util/fees.h>
2018-10-22 19:51:11 -03:00
# include <util/moneystr.h>
2019-04-02 18:03:37 -03:00
# include <util/rbf.h>
2019-06-17 03:56:52 -04:00
# include <util/translation.h>
2019-04-02 18:03:37 -03:00
# include <util/validation.h>
2019-04-17 13:27:02 -04:00
# include <wallet/coincontrol.h>
2017-11-09 21:57:53 -03:00
# include <wallet/fees.h>
2013-04-13 02:13:08 -03:00
2018-04-17 14:22:23 -03:00
# include <algorithm>
2014-10-01 03:50:24 -03:00
# include <assert.h>
2012-11-03 11:58:41 -03:00
# include <boost/algorithm/string/replace.hpp>
2011-06-26 13:23:24 -04:00
2018-07-25 03:24:55 -04:00
const std : : map < uint64_t , std : : string > WALLET_FLAG_CAVEATS {
{ WALLET_FLAG_AVOID_REUSE ,
" You need to rescan the blockchain in order to correctly mark used "
" destinations in the past. Until this is done, some destinations may "
" be considered unused, even if the opposite is the case. "
} ,
} ;
2018-07-30 12:50:43 -04:00
static const size_t OUTPUT_GROUP_MAX_ENTRIES = 10 ;
2018-04-19 10:44:34 -03:00
static CCriticalSection cs_wallets ;
2018-05-22 11:18:07 -04:00
static std : : vector < std : : shared_ptr < CWallet > > vpwallets GUARDED_BY ( cs_wallets ) ;
2018-04-17 14:22:23 -03:00
2018-05-22 11:18:07 -04:00
bool AddWallet ( const std : : shared_ptr < CWallet > & wallet )
2018-04-17 14:22:23 -03:00
{
2018-04-19 10:44:34 -03:00
LOCK ( cs_wallets ) ;
2018-04-17 14:22:23 -03:00
assert ( wallet ) ;
2018-05-22 11:18:07 -04:00
std : : vector < std : : shared_ptr < CWallet > > : : const_iterator i = std : : find ( vpwallets . begin ( ) , vpwallets . end ( ) , wallet ) ;
2018-04-17 14:22:23 -03:00
if ( i ! = vpwallets . end ( ) ) return false ;
vpwallets . push_back ( wallet ) ;
return true ;
}
2018-05-22 11:18:07 -04:00
bool RemoveWallet ( const std : : shared_ptr < CWallet > & wallet )
2018-04-17 14:22:23 -03:00
{
2018-04-19 10:44:34 -03:00
LOCK ( cs_wallets ) ;
2018-04-17 14:22:23 -03:00
assert ( wallet ) ;
2018-05-22 11:18:07 -04:00
std : : vector < std : : shared_ptr < CWallet > > : : iterator i = std : : find ( vpwallets . begin ( ) , vpwallets . end ( ) , wallet ) ;
2018-04-17 14:22:23 -03:00
if ( i = = vpwallets . end ( ) ) return false ;
vpwallets . erase ( i ) ;
return true ;
}
2018-04-18 09:46:11 -03:00
bool HasWallets ( )
{
2018-04-19 10:44:34 -03:00
LOCK ( cs_wallets ) ;
2018-04-18 09:46:11 -03:00
return ! vpwallets . empty ( ) ;
}
2018-05-22 11:18:07 -04:00
std : : vector < std : : shared_ptr < CWallet > > GetWallets ( )
2018-04-17 14:22:23 -03:00
{
2018-04-19 10:44:34 -03:00
LOCK ( cs_wallets ) ;
2018-04-17 14:22:23 -03:00
return vpwallets ;
}
2018-05-22 11:18:07 -04:00
std : : shared_ptr < CWallet > GetWallet ( const std : : string & name )
2018-04-17 14:22:23 -03:00
{
2018-04-19 10:44:34 -03:00
LOCK ( cs_wallets ) ;
2018-05-22 11:18:07 -04:00
for ( const std : : shared_ptr < CWallet > & wallet : vpwallets ) {
2018-04-17 14:22:23 -03:00
if ( wallet - > GetName ( ) = = name ) return wallet ;
}
return nullptr ;
}
2018-12-12 20:21:19 -03:00
static Mutex g_wallet_release_mutex ;
static std : : condition_variable g_wallet_release_cv ;
2019-08-24 21:07:04 -04:00
static std : : set < std : : string > g_unloading_wallet_set ;
2018-12-12 20:21:19 -03:00
2018-04-28 18:36:43 -03:00
// Custom deleter for shared_ptr<CWallet>.
static void ReleaseWallet ( CWallet * wallet )
{
2018-12-12 20:21:19 -03:00
// Unregister and delete the wallet right after BlockUntilSyncedToCurrentChain
// so that it's in sync with the current chainstate.
2019-08-24 21:07:04 -04:00
const std : : string name = wallet - > GetName ( ) ;
2018-06-15 19:02:52 -04:00
wallet - > WalletLogPrintf ( " Releasing wallet \n " ) ;
2018-04-28 18:36:43 -03:00
wallet - > BlockUntilSyncedToCurrentChain ( ) ;
wallet - > Flush ( ) ;
2017-07-30 16:00:56 -04:00
wallet - > m_chain_notifications_handler . reset ( ) ;
2018-04-28 18:36:43 -03:00
delete wallet ;
2018-12-12 20:21:19 -03:00
// Wallet is now released, notify UnloadWallet, if any.
{
LOCK ( g_wallet_release_mutex ) ;
2019-08-24 21:07:04 -04:00
if ( g_unloading_wallet_set . erase ( name ) = = 0 ) {
2018-12-12 20:21:19 -03:00
// UnloadWallet was not called for this wallet, all done.
return ;
}
}
g_wallet_release_cv . notify_all ( ) ;
}
void UnloadWallet ( std : : shared_ptr < CWallet > & & wallet )
{
// Mark wallet for unloading.
2019-08-24 21:07:04 -04:00
const std : : string name = wallet - > GetName ( ) ;
2018-12-12 20:21:19 -03:00
{
LOCK ( g_wallet_release_mutex ) ;
2019-08-24 21:07:04 -04:00
auto it = g_unloading_wallet_set . insert ( name ) ;
2018-12-12 20:21:19 -03:00
assert ( it . second ) ;
}
// The wallet can be in use so it's not possible to explicitly unload here.
// Notify the unload intent so that all remaining shared pointers are
// released.
2019-08-24 21:07:04 -04:00
wallet - > NotifyUnload ( ) ;
2018-12-12 20:21:19 -03:00
// Time to ditch our shared_ptr and wait for ReleaseWallet call.
wallet . reset ( ) ;
{
WAIT_LOCK ( g_wallet_release_mutex , lock ) ;
2019-08-24 21:07:04 -04:00
while ( g_unloading_wallet_set . count ( name ) = = 1 ) {
2018-12-12 20:21:19 -03:00
g_wallet_release_cv . wait ( lock ) ;
}
}
2018-04-28 18:36:43 -03:00
}
2019-10-06 18:52:05 -03:00
std : : shared_ptr < CWallet > LoadWallet ( interfaces : : Chain & chain , const WalletLocation & location , std : : string & error , std : : vector < std : : string > & warnings )
2019-01-12 08:47:04 -03:00
{
2019-10-06 18:52:05 -03:00
if ( ! CWallet : : Verify ( chain , location , false , error , warnings ) ) {
2019-01-12 08:47:04 -03:00
error = " Wallet file verification failed: " + error ;
return nullptr ;
}
2019-10-06 18:52:05 -03:00
std : : shared_ptr < CWallet > wallet = CWallet : : CreateWalletFromFile ( chain , location , error , warnings ) ;
2019-01-12 08:47:04 -03:00
if ( ! wallet ) {
2019-10-06 18:52:05 -03:00
error = " Wallet loading failed: " + error ;
2019-01-12 08:47:04 -03:00
return nullptr ;
}
AddWallet ( wallet ) ;
wallet - > postInitProcess ( ) ;
return wallet ;
}
2019-10-06 18:52:05 -03:00
std : : shared_ptr < CWallet > LoadWallet ( interfaces : : Chain & chain , const std : : string & name , std : : string & error , std : : vector < std : : string > & warnings )
2019-01-12 08:47:04 -03:00
{
2019-10-06 18:52:05 -03:00
return LoadWallet ( chain , WalletLocation ( name ) , error , warnings ) ;
2019-01-12 08:47:04 -03:00
}
2019-10-06 18:52:05 -03:00
WalletCreationStatus CreateWallet ( interfaces : : Chain & chain , const SecureString & passphrase , uint64_t wallet_creation_flags , const std : : string & name , std : : string & error , std : : vector < std : : string > & warnings , std : : shared_ptr < CWallet > & result )
2019-05-24 17:13:13 -04:00
{
// Indicate that the wallet is actually supposed to be blank and not just blank to make it encrypted
bool create_blank = ( wallet_creation_flags & WALLET_FLAG_BLANK_WALLET ) ;
// Born encrypted wallets need to be created blank first.
if ( ! passphrase . empty ( ) ) {
wallet_creation_flags | = WALLET_FLAG_BLANK_WALLET ;
}
// Check the wallet file location
WalletLocation location ( name ) ;
if ( location . Exists ( ) ) {
error = " Wallet " + location . GetName ( ) + " already exists. " ;
2019-07-10 17:51:39 -04:00
return WalletCreationStatus : : CREATION_FAILED ;
2019-05-24 17:13:13 -04:00
}
// Wallet::Verify will check if we're trying to create a wallet with a duplicate name.
2019-10-06 18:52:05 -03:00
if ( ! CWallet : : Verify ( chain , location , false , error , warnings ) ) {
error = " Wallet file verification failed: " + error ;
2019-07-10 17:51:39 -04:00
return WalletCreationStatus : : CREATION_FAILED ;
}
// Do not allow a passphrase when private keys are disabled
if ( ! passphrase . empty ( ) & & ( wallet_creation_flags & WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) {
error = " Passphrase provided but private keys are disabled. A passphrase is only used to encrypt private keys, so cannot be used for wallets with private keys disabled. " ;
return WalletCreationStatus : : CREATION_FAILED ;
2019-05-24 17:13:13 -04:00
}
// Make the wallet
2019-10-06 18:52:05 -03:00
std : : shared_ptr < CWallet > wallet = CWallet : : CreateWalletFromFile ( chain , location , error , warnings , wallet_creation_flags ) ;
2019-05-24 17:13:13 -04:00
if ( ! wallet ) {
2019-10-06 18:52:05 -03:00
error = " Wallet creation failed: " + error ;
2019-07-10 17:51:39 -04:00
return WalletCreationStatus : : CREATION_FAILED ;
2019-05-24 17:13:13 -04:00
}
// Encrypt the wallet
if ( ! passphrase . empty ( ) & & ! ( wallet_creation_flags & WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) {
if ( ! wallet - > EncryptWallet ( passphrase ) ) {
error = " Error: Wallet created but failed to encrypt. " ;
2019-07-10 17:51:39 -04:00
return WalletCreationStatus : : ENCRYPTION_FAILED ;
2019-05-24 17:13:13 -04:00
}
if ( ! create_blank ) {
// Unlock the wallet
if ( ! wallet - > Unlock ( passphrase ) ) {
error = " Error: Wallet was encrypted but could not be unlocked " ;
2019-07-10 17:51:39 -04:00
return WalletCreationStatus : : ENCRYPTION_FAILED ;
2019-05-24 17:13:13 -04:00
}
// Set a seed for the wallet
CPubKey master_pub_key = wallet - > GenerateNewSeed ( ) ;
wallet - > SetHDSeed ( master_pub_key ) ;
wallet - > NewKeyPool ( ) ;
// Relock the wallet
wallet - > Lock ( ) ;
}
}
AddWallet ( wallet ) ;
wallet - > postInitProcess ( ) ;
2019-07-10 17:51:39 -04:00
result = wallet ;
return WalletCreationStatus : : SUCCESS ;
2019-05-24 17:13:13 -04:00
}
2016-06-01 14:29:39 -04:00
const uint32_t BIP32_HARDENED_KEY_LIMIT = 0x80000000 ;
2016-02-22 06:48:44 -03:00
2019-07-25 10:42:34 -04:00
const uint256 CWalletTx : : ABANDON_HASH ( uint256S ( " 0000000000000000000000000000000000000000000000000000000000000001 " ) ) ;
2016-01-07 18:31:27 -03:00
2014-10-26 04:03:12 -03:00
/** @defgroup mapWallet
*
* @ {
*/
2011-06-26 13:23:24 -04:00
Split up util.cpp/h
Split up util.cpp/h into:
- string utilities (hex, base32, base64): no internal dependencies, no dependency on boost (apart from foreach)
- money utilities (parsesmoney, formatmoney)
- time utilities (gettime*, sleep, format date):
- and the rest (logging, argument parsing, config file parsing)
The latter is basically the environment and OS handling,
and is stripped of all utility functions, so we may want to
rename it to something else than util.cpp/h for clarity (Matt suggested
osinterface).
Breaks dependency of sha256.cpp on all the things pulled in by util.
2014-08-21 10:11:09 -04:00
std : : string COutput : : ToString ( ) const
{
2016-11-11 21:54:51 -03:00
return strprintf ( " COutput(%s, %d, %d) [ % s ] " , tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue)) ;
Split up util.cpp/h
Split up util.cpp/h into:
- string utilities (hex, base32, base64): no internal dependencies, no dependency on boost (apart from foreach)
- money utilities (parsesmoney, formatmoney)
- time utilities (gettime*, sleep, format date):
- and the rest (logging, argument parsing, config file parsing)
The latter is basically the environment and OS handling,
and is stripped of all utility functions, so we may want to
rename it to something else than util.cpp/h for clarity (Matt suggested
osinterface).
Breaks dependency of sha256.cpp on all the things pulled in by util.
2014-08-21 10:11:09 -04:00
}
2018-11-10 17:29:07 -03:00
std : : vector < CKeyID > GetAffectedKeys ( const CScript & spk , const SigningProvider & provider )
{
std : : vector < CScript > dummy ;
FlatSigningProvider out ;
InferDescriptor ( spk , provider ) - > Expand ( 0 , DUMMY_SIGNING_PROVIDER , dummy , out ) ;
std : : vector < CKeyID > ret ;
for ( const auto & entry : out . pubkeys ) {
ret . push_back ( entry . first ) ;
2017-08-25 23:55:52 -03:00
}
2018-11-10 17:29:07 -03:00
return ret ;
}
2017-04-20 09:23:48 -03:00
2014-02-15 18:38:28 -03:00
const CWalletTx * CWallet : : GetWalletTx ( const uint256 & hash ) const
{
LOCK ( cs_wallet ) ;
std : : map < uint256 , CWalletTx > : : const_iterator it = mapWallet . find ( hash ) ;
if ( it = = mapWallet . end ( ) )
2017-08-07 01:36:37 -04:00
return nullptr ;
2014-02-15 18:38:28 -03:00
return & ( it - > second ) ;
}
2017-12-08 08:39:22 -03:00
CPubKey CWallet : : GenerateNewKey ( WalletBatch & batch , bool internal )
2012-02-18 11:02:36 -03:00
{
2017-05-05 03:53:39 -03:00
assert ( ! IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) ;
2019-02-06 23:26:55 -03:00
assert ( ! IsWalletFlagSet ( WALLET_FLAG_BLANK_WALLET ) ) ;
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-03-21 23:56:31 -03:00
bool fCompressed = CanSupportFeature ( FEATURE_COMPRPUBKEY ) ; // default to compressed public keys if we want 0.6.0 wallets
2012-02-18 11:06:32 -03:00
2013-05-01 00:52:05 -04:00
CKey secret ;
2016-01-02 08:34:08 -03:00
// Create new metadata
int64_t nCreationTime = GetTime ( ) ;
CKeyMetadata metadata ( nCreationTime ) ;
2019-02-06 23:26:55 -03:00
// use HD key derivation if HD was enabled during wallet creation and a seed is present
2016-08-17 09:09:47 -03:00
if ( IsHDEnabled ( ) ) {
2017-12-08 08:39:22 -03:00
DeriveNewChildKey ( batch , metadata , secret , ( CanSupportFeature ( FEATURE_HD_SPLIT ) ? internal : false ) ) ;
2016-01-02 08:34:08 -03:00
} else {
secret . MakeNewKey ( fCompressed ) ;
}
2012-02-18 11:06:32 -03:00
// Compressed public keys were introduced in version 0.6.0
2017-07-14 21:00:30 -04:00
if ( fCompressed ) {
2012-03-21 23:56:31 -03:00
SetMinVersion ( FEATURE_COMPRPUBKEY ) ;
2017-07-14 21:00:30 -04:00
}
2012-02-18 11:06:32 -03:00
2013-05-01 00:52:05 -04:00
CPubKey pubkey = secret . GetPubKey ( ) ;
2014-11-06 06:17:48 -03:00
assert ( secret . VerifyPubKey ( pubkey ) ) ;
2013-06-19 19:13:55 -04:00
2016-01-02 08:34:08 -03:00
mapKeyMetadata [ pubkey . GetID ( ) ] = metadata ;
2016-11-08 18:28:20 -03:00
UpdateTimeFirstKey ( nCreationTime ) ;
2013-06-19 19:13:55 -04:00
2017-12-08 08:39:22 -03:00
if ( ! AddKeyPubKeyWithDB ( batch , secret , pubkey ) ) {
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : AddKey failed " ) ;
2017-07-14 21:00:30 -04:00
}
2013-05-01 00:52:05 -04:00
return pubkey ;
2012-02-18 11:02:36 -03:00
}
2011-06-26 13:23:24 -04:00
2017-12-08 08:39:22 -03:00
void CWallet : : DeriveNewChildKey ( WalletBatch & batch , CKeyMetadata & metadata , CKey & secret , bool internal )
2016-07-19 19:43:11 -04:00
{
// for now we use a fixed keypath scheme of m/0'/0'/k
2018-04-04 13:47:55 -03:00
CKey seed ; //seed (256bit)
2016-07-19 19:43:11 -04:00
CExtKey masterKey ; //hd master key
CExtKey accountKey ; //key at m/0'
2017-01-10 12:45:30 -03:00
CExtKey chainChildKey ; //key at m/0'/0' (external) or m/0'/1' (internal)
2016-07-19 19:43:11 -04:00
CExtKey childKey ; //key at m/0'/0'/<n>'
2018-04-04 13:47:55 -03:00
// try to get the seed
if ( ! GetKey ( hdChain . seed_id , seed ) )
throw std : : runtime_error ( std : : string ( __func__ ) + " : seed not found " ) ;
2016-07-19 19:43:11 -04:00
2018-04-04 13:47:55 -03:00
masterKey . SetSeed ( seed . begin ( ) , seed . size ( ) ) ;
2016-07-19 19:43:11 -04:00
// derive m/0'
// use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
masterKey . Derive ( accountKey , BIP32_HARDENED_KEY_LIMIT ) ;
2017-01-10 12:45:30 -03:00
// derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
2017-03-24 06:57:55 -03:00
assert ( internal ? CanSupportFeature ( FEATURE_HD_SPLIT ) : true ) ;
2017-01-10 12:45:30 -03:00
accountKey . Derive ( chainChildKey , BIP32_HARDENED_KEY_LIMIT + ( internal ? 1 : 0 ) ) ;
2016-07-19 19:43:11 -04:00
// derive child key at next index, skip keys already known to the wallet
do {
// always derive hardened keys
// childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
// example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
2017-01-26 17:02:55 -03:00
if ( internal ) {
chainChildKey . Derive ( childKey , hdChain . nInternalChainCounter | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . hdKeypath = " m/0'/1'/ " + std : : to_string ( hdChain . nInternalChainCounter ) + " ' " ;
2018-11-06 11:23:37 -03:00
metadata . key_origin . path . push_back ( 0 | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . key_origin . path . push_back ( 1 | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . key_origin . path . push_back ( hdChain . nInternalChainCounter | BIP32_HARDENED_KEY_LIMIT ) ;
2017-01-10 12:45:30 -03:00
hdChain . nInternalChainCounter + + ;
2017-01-26 17:02:55 -03:00
}
else {
chainChildKey . Derive ( childKey , hdChain . nExternalChainCounter | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . hdKeypath = " m/0'/0'/ " + std : : to_string ( hdChain . nExternalChainCounter ) + " ' " ;
2018-11-06 11:23:37 -03:00
metadata . key_origin . path . push_back ( 0 | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . key_origin . path . push_back ( 0 | BIP32_HARDENED_KEY_LIMIT ) ;
metadata . key_origin . path . push_back ( hdChain . nExternalChainCounter | BIP32_HARDENED_KEY_LIMIT ) ;
2017-01-10 12:45:30 -03:00
hdChain . nExternalChainCounter + + ;
2017-01-26 17:02:55 -03:00
}
2016-07-19 19:43:11 -04:00
} while ( HaveKey ( childKey . key . GetPubKey ( ) . GetID ( ) ) ) ;
secret = childKey . key ;
2018-04-04 12:43:45 -03:00
metadata . hd_seed_id = hdChain . seed_id ;
2018-11-06 11:23:37 -03:00
CKeyID master_id = masterKey . key . GetPubKey ( ) . GetID ( ) ;
std : : copy ( master_id . begin ( ) , master_id . begin ( ) + 4 , metadata . key_origin . fingerprint ) ;
metadata . has_key_origin = true ;
2016-07-19 19:43:11 -04:00
// update the chain model in the database
2017-12-08 08:39:22 -03:00
if ( ! batch . WriteHDChain ( hdChain ) )
2016-07-19 19:43:11 -04:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : Writing HD chain model failed " ) ;
}
2019-02-18 18:09:45 -03:00
bool CWallet : : AddKeyPubKeyWithDB ( WalletBatch & batch , const CKey & secret , const CPubKey & pubkey )
2011-06-26 13:23:24 -04:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2017-07-14 21:00:30 -04:00
2019-01-25 16:38:34 -03:00
// Make sure we aren't adding private keys to private key disabled wallets
assert ( ! IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) ;
2019-06-06 17:58:21 -04:00
// FillableSigningProvider has no concept of wallet databases, but calls AddCryptedKey
2017-07-14 21:00:30 -04:00
// which is overridden below. To avoid flushes, the database handle is
// tunneled through to it.
2017-12-08 08:39:22 -03:00
bool needsDB = ! encrypted_batch ;
2017-07-14 21:00:30 -04:00
if ( needsDB ) {
2017-12-08 08:39:22 -03:00
encrypted_batch = & batch ;
2017-07-14 21:00:30 -04:00
}
2019-06-06 17:58:21 -04:00
if ( ! AddKeyPubKeyInner ( secret , pubkey ) ) {
2017-12-08 08:39:22 -03:00
if ( needsDB ) encrypted_batch = nullptr ;
2011-06-25 08:57:32 -04:00
return false ;
2017-07-14 21:00:30 -04:00
}
2017-12-08 08:39:22 -03:00
if ( needsDB ) encrypted_batch = nullptr ;
2014-07-26 15:05:11 -04:00
// check if we need to remove from watch-only
CScript script ;
2019-02-19 19:00:45 -03:00
script = GetScriptForDestination ( PKHash ( pubkey ) ) ;
2017-07-14 21:00:30 -04:00
if ( HaveWatchOnly ( script ) ) {
2015-06-10 04:03:08 -03:00
RemoveWatchOnly ( script ) ;
2017-07-14 21:00:30 -04:00
}
2015-06-10 04:03:08 -03:00
script = GetScriptForRawPubKey ( pubkey ) ;
2017-07-14 21:00:30 -04:00
if ( HaveWatchOnly ( script ) ) {
2014-07-26 15:05:11 -04:00
RemoveWatchOnly ( script ) ;
2017-07-14 21:00:30 -04:00
}
2014-07-26 15:05:11 -04:00
2013-05-01 00:52:05 -04:00
if ( ! IsCrypted ( ) ) {
2017-12-08 08:39:22 -03:00
return batch . WriteKey ( pubkey ,
2013-06-10 09:36:29 -04:00
secret . GetPrivKey ( ) ,
2013-06-19 19:13:55 -04:00
mapKeyMetadata [ pubkey . GetID ( ) ] ) ;
2013-05-01 00:52:05 -04:00
}
2019-05-18 06:01:56 -04:00
UnsetWalletFlagWithDB ( batch , WALLET_FLAG_BLANK_WALLET ) ;
2011-07-13 07:43:50 -04:00
return true ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
}
2017-07-14 21:00:30 -04:00
bool CWallet : : AddKeyPubKey ( const CKey & secret , const CPubKey & pubkey )
{
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
return CWallet : : AddKeyPubKeyWithDB ( batch , secret , pubkey ) ;
2017-07-14 21:00:30 -04:00
}
2013-06-10 09:36:29 -04:00
bool CWallet : : AddCryptedKey ( const CPubKey & vchPubKey ,
2017-01-26 22:33:45 -03:00
const std : : vector < unsigned char > & vchCryptedSecret )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2019-06-06 17:58:21 -04:00
if ( ! AddCryptedKeyInner ( vchPubKey , vchCryptedSecret ) )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return false ;
2011-07-08 09:08:27 -04:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
if ( encrypted_batch )
return encrypted_batch - > WriteCryptedKey ( vchPubKey ,
2013-06-10 09:36:29 -04:00
vchCryptedSecret ,
2013-06-19 19:13:55 -04:00
mapKeyMetadata [ vchPubKey . GetID ( ) ] ) ;
2011-07-08 09:08:27 -04:00
else
2017-12-08 08:39:22 -03:00
return WalletBatch ( * database ) . WriteCryptedKey ( vchPubKey ,
2013-06-10 09:36:29 -04:00
vchCryptedSecret ,
2013-06-19 19:13:55 -04:00
mapKeyMetadata [ vchPubKey . GetID ( ) ] ) ;
2011-07-08 09:08:27 -04:00
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
}
2019-02-18 18:09:45 -03:00
void CWallet : : LoadKeyMetadata ( const CKeyID & keyID , const CKeyMetadata & meta )
2013-06-19 19:13:55 -04:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2016-11-08 18:28:20 -03:00
UpdateTimeFirstKey ( meta . nCreateTime ) ;
2016-11-08 18:55:02 -03:00
mapKeyMetadata [ keyID ] = meta ;
2013-06-19 19:13:55 -04:00
}
2019-02-18 18:09:45 -03:00
void CWallet : : LoadScriptMetadata ( const CScriptID & script_id , const CKeyMetadata & meta )
2017-12-08 14:50:46 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2017-12-08 14:50:46 -03:00
UpdateTimeFirstKey ( meta . nCreateTime ) ;
m_script_metadata [ script_id ] = meta ;
}
2018-11-06 11:23:37 -03:00
void CWallet : : UpgradeKeyMetadata ( )
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2018-11-06 11:23:37 -03:00
if ( IsLocked ( ) | | IsWalletFlagSet ( WALLET_FLAG_KEY_ORIGIN_METADATA ) ) {
return ;
}
2019-02-18 00:28:04 -03:00
std : : unique_ptr < WalletBatch > batch = MakeUnique < WalletBatch > ( * database ) ;
2018-11-06 11:23:37 -03:00
for ( auto & meta_pair : mapKeyMetadata ) {
CKeyMetadata & meta = meta_pair . second ;
if ( ! meta . hd_seed_id . IsNull ( ) & & ! meta . has_key_origin & & meta . hdKeypath ! = " s " ) { // If the hdKeypath is "s", that's the seed and it doesn't have a key origin
CKey key ;
GetKey ( meta . hd_seed_id , key ) ;
CExtKey masterKey ;
masterKey . SetSeed ( key . begin ( ) , key . size ( ) ) ;
// Add to map
CKeyID master_id = masterKey . key . GetPubKey ( ) . GetID ( ) ;
std : : copy ( master_id . begin ( ) , master_id . begin ( ) + 4 , meta . key_origin . fingerprint ) ;
if ( ! ParseHDKeypath ( meta . hdKeypath , meta . key_origin . path ) ) {
throw std : : runtime_error ( " Invalid stored hdKeypath " ) ;
}
meta . has_key_origin = true ;
if ( meta . nVersion < CKeyMetadata : : VERSION_WITH_KEY_ORIGIN ) {
meta . nVersion = CKeyMetadata : : VERSION_WITH_KEY_ORIGIN ;
}
// Write meta to wallet
CPubKey pubkey ;
if ( GetPubKey ( meta_pair . first , pubkey ) ) {
2019-02-18 00:28:04 -03:00
batch - > WriteKeyMetadata ( meta , pubkey , true ) ;
2018-11-06 11:23:37 -03:00
}
}
}
2019-02-18 00:28:04 -03:00
batch . reset ( ) ; //write before setting the flag
2018-11-06 11:23:37 -03:00
SetWalletFlag ( WALLET_FLAG_KEY_ORIGIN_METADATA ) ;
}
2013-05-02 12:43:07 -04:00
bool CWallet : : LoadCryptedKey ( const CPubKey & vchPubKey , const std : : vector < unsigned char > & vchCryptedSecret )
{
2019-06-06 17:58:21 -04:00
return AddCryptedKeyInner ( vchPubKey , vchCryptedSecret ) ;
2013-05-02 12:43:07 -04:00
}
2017-03-02 17:24:50 -03:00
/**
* Update wallet first key creation time . This should be called whenever keys
* are added to the wallet , with the oldest key creation time .
*/
2016-11-08 18:28:20 -03:00
void CWallet : : UpdateTimeFirstKey ( int64_t nCreateTime )
{
AssertLockHeld ( cs_wallet ) ;
if ( nCreateTime < = 1 ) {
// Cannot determine birthday information, so set the wallet birthday to
// the beginning of time.
nTimeFirstKey = 1 ;
} else if ( ! nTimeFirstKey | | nCreateTime < nTimeFirstKey ) {
nTimeFirstKey = nCreateTime ;
}
}
2012-01-04 23:40:52 -03:00
bool CWallet : : AddCScript ( const CScript & redeemScript )
2019-04-03 19:56:01 -03:00
{
WalletBatch batch ( * database ) ;
return AddCScriptWithDB ( batch , redeemScript ) ;
}
bool CWallet : : AddCScriptWithDB ( WalletBatch & batch , const CScript & redeemScript )
2011-10-03 14:05:43 -03:00
{
2019-06-06 17:58:21 -04:00
if ( ! FillableSigningProvider : : AddCScript ( redeemScript ) )
2011-10-03 14:05:43 -03:00
return false ;
2019-04-03 19:56:01 -03:00
if ( batch . WriteCScript ( Hash160 ( redeemScript ) , redeemScript ) ) {
2019-05-18 06:01:56 -04:00
UnsetWalletFlagWithDB ( batch , WALLET_FLAG_BLANK_WALLET ) ;
2019-02-06 23:26:55 -03:00
return true ;
}
return false ;
2011-10-03 14:05:43 -03:00
}
2014-06-10 03:42:42 -04:00
bool CWallet : : LoadCScript ( const CScript & redeemScript )
{
/* A sanity check was added in pull #3843 to avoid adding redeemScripts
* that never can be redeemed . However , old wallets may still contain
* these . Do not add them to the wallet and warn . */
if ( redeemScript . size ( ) > MAX_SCRIPT_ELEMENT_SIZE )
{
2019-02-19 19:00:45 -03:00
std : : string strAddr = EncodeDestination ( ScriptHash ( redeemScript ) ) ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " %s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s. \n " , __func__ , redeemScript . size ( ) , MAX_SCRIPT_ELEMENT_SIZE , strAddr ) ;
2014-06-10 03:42:42 -04:00
return true ;
}
2019-06-06 17:58:21 -04:00
return FillableSigningProvider : : AddCScript ( redeemScript ) ;
2014-06-10 03:42:42 -04:00
}
2019-06-17 17:46:52 -04:00
static bool ExtractPubKey ( const CScript & dest , CPubKey & pubKeyOut )
{
2019-08-29 06:58:18 -04:00
std : : vector < std : : vector < unsigned char > > solutions ;
return Solver ( dest , solutions ) = = TX_PUBKEY & &
( pubKeyOut = CPubKey ( solutions [ 0 ] ) ) . IsFullyValid ( ) ;
2019-06-17 17:46:52 -04:00
}
bool CWallet : : AddWatchOnlyInMem ( const CScript & dest )
{
LOCK ( cs_KeyStore ) ;
setWatchOnly . insert ( dest ) ;
CPubKey pubKey ;
if ( ExtractPubKey ( dest , pubKey ) ) {
mapWatchKeys [ pubKey . GetID ( ) ] = pubKey ;
ImplicitlyLearnRelatedKeyScripts ( pubKey ) ;
}
return true ;
2014-06-10 03:42:42 -04:00
}
2019-04-03 19:56:01 -03:00
bool CWallet : : AddWatchOnlyWithDB ( WalletBatch & batch , const CScript & dest )
2013-07-25 19:06:01 -04:00
{
2019-06-17 17:46:52 -04:00
if ( ! AddWatchOnlyInMem ( dest ) )
2013-07-25 19:06:01 -04:00
return false ;
2017-12-08 14:50:46 -03:00
const CKeyMetadata & meta = m_script_metadata [ CScriptID ( dest ) ] ;
2016-11-08 18:55:02 -03:00
UpdateTimeFirstKey ( meta . nCreateTime ) ;
2014-07-26 15:05:11 -04:00
NotifyWatchonlyChanged ( true ) ;
2019-04-03 19:56:01 -03:00
if ( batch . WriteWatchOnly ( dest , meta ) ) {
2019-05-18 06:01:56 -04:00
UnsetWalletFlagWithDB ( batch , WALLET_FLAG_BLANK_WALLET ) ;
2019-02-06 23:26:55 -03:00
return true ;
}
return false ;
2016-11-08 18:55:02 -03:00
}
2019-04-03 19:56:01 -03:00
bool CWallet : : AddWatchOnlyWithDB ( WalletBatch & batch , const CScript & dest , int64_t create_time )
{
m_script_metadata [ CScriptID ( dest ) ] . nCreateTime = create_time ;
return AddWatchOnlyWithDB ( batch , dest ) ;
}
bool CWallet : : AddWatchOnly ( const CScript & dest )
{
WalletBatch batch ( * database ) ;
return AddWatchOnlyWithDB ( batch , dest ) ;
}
2016-11-08 18:55:02 -03:00
bool CWallet : : AddWatchOnly ( const CScript & dest , int64_t nCreateTime )
{
2017-12-08 14:50:46 -03:00
m_script_metadata [ CScriptID ( dest ) ] . nCreateTime = nCreateTime ;
2016-11-08 18:55:02 -03:00
return AddWatchOnly ( dest ) ;
2013-07-25 19:06:01 -04:00
}
2014-07-26 15:05:11 -04:00
bool CWallet : : RemoveWatchOnly ( const CScript & dest )
{
AssertLockHeld ( cs_wallet ) ;
2019-06-17 17:46:52 -04:00
{
LOCK ( cs_KeyStore ) ;
setWatchOnly . erase ( dest ) ;
CPubKey pubKey ;
if ( ExtractPubKey ( dest , pubKey ) ) {
mapWatchKeys . erase ( pubKey . GetID ( ) ) ;
}
// Related CScripts are not removed; having superfluous scripts around is
// harmless (see comment in ImplicitlyLearnRelatedKeyScripts).
}
2014-07-26 15:05:11 -04:00
if ( ! HaveWatchOnly ( ) )
NotifyWatchonlyChanged ( false ) ;
2017-12-08 08:39:22 -03:00
if ( ! WalletBatch ( * database ) . EraseWatchOnly ( dest ) )
2017-03-08 09:08:26 -03:00
return false ;
2014-07-26 15:05:11 -04:00
return true ;
}
2014-06-09 15:11:59 -04:00
bool CWallet : : LoadWatchOnly ( const CScript & dest )
2013-07-25 19:06:01 -04:00
{
2019-06-17 17:46:52 -04:00
return AddWatchOnlyInMem ( dest ) ;
}
bool CWallet : : HaveWatchOnly ( const CScript & dest ) const
{
LOCK ( cs_KeyStore ) ;
return setWatchOnly . count ( dest ) > 0 ;
}
bool CWallet : : HaveWatchOnly ( ) const
{
LOCK ( cs_KeyStore ) ;
return ( ! setWatchOnly . empty ( ) ) ;
2013-07-25 19:06:01 -04:00
}
2016-09-16 11:45:36 -03:00
bool CWallet : : Unlock ( const SecureString & strWalletPassphrase , bool accept_no_keys )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2011-08-26 15:37:23 -03:00
CCrypter crypter ;
2016-11-10 04:00:05 -03:00
CKeyingMaterial _vMasterKey ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2012-04-06 13:39:12 -03:00
{
LOCK ( cs_wallet ) ;
2017-06-01 21:18:57 -04:00
for ( const MasterKeyMap : : value_type & pMasterKey : mapMasterKeys )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
if ( ! crypter . SetKeyFromPassphrase ( strWalletPassphrase , pMasterKey . second . vchSalt , pMasterKey . second . nDeriveIterations , pMasterKey . second . nDerivationMethod ) )
return false ;
2016-11-10 04:00:05 -03:00
if ( ! crypter . Decrypt ( pMasterKey . second . vchCryptedKey , _vMasterKey ) )
2013-05-07 10:47:00 -04:00
continue ; // try another master key
2019-06-06 17:58:21 -04:00
if ( Unlock ( _vMasterKey , accept_no_keys ) ) {
2018-11-06 11:23:37 -03:00
// Now that we've unlocked, upgrade the key metadata
UpgradeKeyMetadata ( ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return true ;
2018-11-06 11:23:37 -03:00
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
}
2012-04-06 13:39:12 -03:00
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return false ;
}
2011-11-26 03:02:04 -03:00
bool CWallet : : ChangeWalletPassphrase ( const SecureString & strOldWalletPassphrase , const SecureString & strNewWalletPassphrase )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2011-08-26 15:37:23 -03:00
bool fWasLocked = IsLocked ( ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2011-08-26 15:37:23 -03:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
Lock ( ) ;
CCrypter crypter ;
2016-11-10 04:00:05 -03:00
CKeyingMaterial _vMasterKey ;
2017-06-01 21:18:57 -04:00
for ( MasterKeyMap : : value_type & pMasterKey : mapMasterKeys )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
if ( ! crypter . SetKeyFromPassphrase ( strOldWalletPassphrase , pMasterKey . second . vchSalt , pMasterKey . second . nDeriveIterations , pMasterKey . second . nDerivationMethod ) )
return false ;
2016-11-10 04:00:05 -03:00
if ( ! crypter . Decrypt ( pMasterKey . second . vchCryptedKey , _vMasterKey ) )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return false ;
2019-06-06 17:58:21 -04:00
if ( Unlock ( _vMasterKey ) )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2013-04-13 02:13:08 -03:00
int64_t nStartTime = GetTimeMillis ( ) ;
2011-06-28 09:31:09 -04:00
crypter . SetKeyFromPassphrase ( strNewWalletPassphrase , pMasterKey . second . vchSalt , pMasterKey . second . nDeriveIterations , pMasterKey . second . nDerivationMethod ) ;
2017-09-11 16:43:49 -03:00
pMasterKey . second . nDeriveIterations = static_cast < unsigned int > ( pMasterKey . second . nDeriveIterations * ( 100 / ( ( double ) ( GetTimeMillis ( ) - nStartTime ) ) ) ) ;
2011-06-28 09:31:09 -04:00
nStartTime = GetTimeMillis ( ) ;
crypter . SetKeyFromPassphrase ( strNewWalletPassphrase , pMasterKey . second . vchSalt , pMasterKey . second . nDeriveIterations , pMasterKey . second . nDerivationMethod ) ;
2017-09-11 16:43:49 -03:00
pMasterKey . second . nDeriveIterations = ( pMasterKey . second . nDeriveIterations + static_cast < unsigned int > ( pMasterKey . second . nDeriveIterations * 100 / ( ( double ) ( GetTimeMillis ( ) - nStartTime ) ) ) ) / 2 ;
2011-06-28 09:31:09 -04:00
if ( pMasterKey . second . nDeriveIterations < 25000 )
pMasterKey . second . nDeriveIterations = 25000 ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " Wallet passphrase changed to an nDeriveIterations of %i \n " , pMasterKey . second . nDeriveIterations ) ;
2011-06-28 09:31:09 -04:00
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
if ( ! crypter . SetKeyFromPassphrase ( strNewWalletPassphrase , pMasterKey . second . vchSalt , pMasterKey . second . nDeriveIterations , pMasterKey . second . nDerivationMethod ) )
return false ;
2016-11-10 04:00:05 -03:00
if ( ! crypter . Encrypt ( _vMasterKey , pMasterKey . second . vchCryptedKey ) )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return false ;
2017-12-08 08:39:22 -03:00
WalletBatch ( * database ) . WriteMasterKey ( pMasterKey . first , pMasterKey . second ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
if ( fWasLocked )
Lock ( ) ;
return true ;
}
}
}
2011-08-26 15:37:23 -03:00
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return false ;
}
2018-04-27 15:01:02 -03:00
void CWallet : : ChainStateFlushed ( const CBlockLocator & loc )
2012-04-15 17:10:54 -03:00
{
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
batch . WriteBestBlock ( loc ) ;
2012-04-15 17:10:54 -03:00
}
2011-07-10 10:07:22 -04:00
2018-07-27 02:22:42 -04:00
void CWallet : : SetMinVersion ( enum WalletFeature nVersion , WalletBatch * batch_in , bool fExplicit )
2012-02-18 10:55:02 -03:00
{
2019-02-18 18:09:45 -03:00
LOCK ( cs_wallet ) ;
2012-02-18 10:55:02 -03:00
if ( nWalletVersion > = nVersion )
2018-07-27 02:22:42 -04:00
return ;
2012-02-18 10:55:02 -03:00
2012-03-21 23:56:31 -03:00
// when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
if ( fExplicit & & nVersion > nWalletMaxVersion )
nVersion = FEATURE_LATEST ;
2012-02-18 10:55:02 -03:00
nWalletVersion = nVersion ;
2012-03-21 23:56:31 -03:00
if ( nVersion > nWalletMaxVersion )
nWalletMaxVersion = nVersion ;
2012-02-18 10:55:02 -03:00
{
2017-12-08 08:39:22 -03:00
WalletBatch * batch = batch_in ? batch_in : new WalletBatch ( * database ) ;
2012-02-18 10:55:02 -03:00
if ( nWalletVersion > 40000 )
2017-12-08 08:39:22 -03:00
batch - > WriteMinVersion ( nWalletVersion ) ;
if ( ! batch_in )
delete batch ;
2012-02-18 10:55:02 -03:00
}
}
2012-03-21 23:56:31 -03:00
bool CWallet : : SetMaxVersion ( int nVersion )
{
2019-02-18 18:09:45 -03:00
LOCK ( cs_wallet ) ;
2012-03-21 23:56:31 -03:00
// cannot downgrade below current version
if ( nWalletVersion > nVersion )
return false ;
nWalletMaxVersion = nVersion ;
return true ;
}
2017-01-26 22:33:45 -03:00
std : : set < uint256 > CWallet : : GetConflicts ( const uint256 & txid ) const
2014-02-13 22:12:51 -03:00
{
2017-01-26 22:33:45 -03:00
std : : set < uint256 > result ;
2014-02-13 22:12:51 -03:00
AssertLockHeld ( cs_wallet ) ;
std : : map < uint256 , CWalletTx > : : const_iterator it = mapWallet . find ( txid ) ;
if ( it = = mapWallet . end ( ) )
return result ;
const CWalletTx & wtx = it - > second ;
2014-02-15 18:38:28 -03:00
std : : pair < TxSpends : : const_iterator , TxSpends : : const_iterator > range ;
2014-02-13 22:12:51 -03:00
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : wtx . tx - > vin )
2014-02-13 22:12:51 -03:00
{
2014-02-15 18:38:28 -03:00
if ( mapTxSpends . count ( txin . prevout ) < = 1 )
continue ; // No conflict if zero or one spends
range = mapTxSpends . equal_range ( txin . prevout ) ;
2016-09-02 13:19:01 -03:00
for ( TxSpends : : const_iterator _it = range . first ; _it ! = range . second ; + + _it )
result . insert ( _it - > second ) ;
2014-02-13 22:12:51 -03:00
}
return result ;
}
2016-12-09 15:45:27 -03:00
bool CWallet : : HasWalletSpend ( const uint256 & txid ) const
{
AssertLockHeld ( cs_wallet ) ;
auto iter = mapTxSpends . lower_bound ( COutPoint ( txid , 0 ) ) ;
return ( iter ! = mapTxSpends . end ( ) & & iter - > first . hash = = txid ) ;
}
2015-02-04 17:19:27 -03:00
void CWallet : : Flush ( bool shutdown )
{
2017-12-08 08:39:22 -03:00
database - > Flush ( shutdown ) ;
2015-02-04 17:19:27 -03:00
}
2017-01-26 22:33:45 -03:00
void CWallet : : SyncMetaData ( std : : pair < TxSpends : : iterator , TxSpends : : iterator > range )
2014-02-13 22:12:51 -03:00
{
// We want all the wallet transactions in range to have the same metadata as
// the oldest (smallest nOrderPos).
// So: find smallest nOrderPos:
int nMinOrderPos = std : : numeric_limits < int > : : max ( ) ;
2017-08-07 01:36:37 -04:00
const CWalletTx * copyFrom = nullptr ;
2018-01-26 13:28:31 -03:00
for ( TxSpends : : iterator it = range . first ; it ! = range . second ; + + it ) {
2017-01-19 18:08:03 -03:00
const CWalletTx * wtx = & mapWallet . at ( it - > second ) ;
2018-01-26 13:28:31 -03:00
if ( wtx - > nOrderPos < nMinOrderPos ) {
2018-06-29 05:30:25 -04:00
nMinOrderPos = wtx - > nOrderPos ;
2018-01-26 13:28:31 -03:00
copyFrom = wtx ;
2014-02-13 22:12:51 -03:00
}
}
2017-08-17 10:26:32 -03:00
2018-05-17 16:07:32 -04:00
if ( ! copyFrom ) {
return ;
}
2017-08-17 10:26:32 -03:00
2014-02-13 22:12:51 -03:00
// Now copy data from copyFrom to rest:
2014-02-15 18:38:28 -03:00
for ( TxSpends : : iterator it = range . first ; it ! = range . second ; + + it )
2014-02-13 22:12:51 -03:00
{
const uint256 & hash = it - > second ;
2017-01-19 18:08:03 -03:00
CWalletTx * copyTo = & mapWallet . at ( hash ) ;
2014-02-13 22:12:51 -03:00
if ( copyFrom = = copyTo ) continue ;
2017-08-28 04:24:17 -03:00
assert ( copyFrom & & " Oldest wallet transaction in range assumed to have been found. " ) ;
2015-03-11 20:48:53 -03:00
if ( ! copyFrom - > IsEquivalentTo ( * copyTo ) ) continue ;
2014-02-13 22:12:51 -03:00
copyTo - > mapValue = copyFrom - > mapValue ;
copyTo - > vOrderForm = copyFrom - > vOrderForm ;
// fTimeReceivedIsTxTime not copied on purpose
// nTimeReceived not copied on purpose
copyTo - > nTimeSmart = copyFrom - > nTimeSmart ;
copyTo - > fFromMe = copyFrom - > fFromMe ;
// nOrderPos not copied on purpose
// cached members not copied on purpose
}
}
2014-10-26 04:03:12 -03:00
/**
* Outpoint is spent if any non - conflicted transaction
* spends it :
*/
2017-07-31 15:30:21 -04:00
bool CWallet : : IsSpent ( interfaces : : Chain : : Lock & locked_chain , const uint256 & hash , unsigned int n ) const
2014-02-13 22:12:51 -03:00
{
2014-02-15 18:38:28 -03:00
const COutPoint outpoint ( hash , n ) ;
2017-01-26 22:33:45 -03:00
std : : pair < TxSpends : : const_iterator , TxSpends : : const_iterator > range ;
2014-02-15 18:38:28 -03:00
range = mapTxSpends . equal_range ( outpoint ) ;
2014-02-13 22:12:51 -03:00
2014-02-15 18:38:28 -03:00
for ( TxSpends : : const_iterator it = range . first ; it ! = range . second ; + + it )
2014-02-13 22:12:51 -03:00
{
2014-02-15 18:38:28 -03:00
const uint256 & wtxid = it - > second ;
std : : map < uint256 , CWalletTx > : : const_iterator mit = mapWallet . find ( wtxid ) ;
2016-01-07 18:31:27 -03:00
if ( mit ! = mapWallet . end ( ) ) {
2017-07-31 15:30:21 -04:00
int depth = mit - > second . GetDepthInMainChain ( locked_chain ) ;
2016-01-07 18:31:27 -03:00
if ( depth > 0 | | ( depth = = 0 & & ! mit - > second . isAbandoned ( ) ) )
return true ; // Spent
}
2014-02-13 22:12:51 -03:00
}
2014-02-15 18:38:28 -03:00
return false ;
}
void CWallet : : AddToSpends ( const COutPoint & outpoint , const uint256 & wtxid )
{
2017-01-26 22:33:45 -03:00
mapTxSpends . insert ( std : : make_pair ( outpoint , wtxid ) ) ;
2014-02-15 18:38:28 -03:00
2018-05-25 09:27:58 -04:00
setLockedCoins . erase ( outpoint ) ;
2017-01-26 22:33:45 -03:00
std : : pair < TxSpends : : iterator , TxSpends : : iterator > range ;
2014-02-15 18:38:28 -03:00
range = mapTxSpends . equal_range ( outpoint ) ;
SyncMetaData ( range ) ;
}
void CWallet : : AddToSpends ( const uint256 & wtxid )
{
2017-08-13 11:04:57 -03:00
auto it = mapWallet . find ( wtxid ) ;
assert ( it ! = mapWallet . end ( ) ) ;
CWalletTx & thisTx = it - > second ;
2014-02-15 18:38:28 -03:00
if ( thisTx . IsCoinBase ( ) ) // Coinbases don't spend anything!
return ;
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : thisTx . tx - > vin )
2014-02-15 18:38:28 -03:00
AddToSpends ( txin . prevout , wtxid ) ;
2014-02-13 22:12:51 -03:00
}
2011-11-26 03:02:04 -03:00
bool CWallet : : EncryptWallet ( const SecureString & strWalletPassphrase )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2011-08-26 15:37:23 -03:00
if ( IsCrypted ( ) )
return false ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2016-11-10 04:00:05 -03:00
CKeyingMaterial _vMasterKey ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2016-11-10 04:00:05 -03:00
_vMasterKey . resize ( WALLET_CRYPTO_KEY_SIZE ) ;
GetStrongRandBytes ( & _vMasterKey [ 0 ] , WALLET_CRYPTO_KEY_SIZE ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2011-08-26 15:37:23 -03:00
CMasterKey kMasterKey ;
2014-06-24 08:27:32 -04:00
2011-08-26 15:37:23 -03:00
kMasterKey . vchSalt . resize ( WALLET_CRYPTO_SALT_SIZE ) ;
2016-04-16 07:25:12 -03:00
GetStrongRandBytes ( & kMasterKey . vchSalt [ 0 ] , WALLET_CRYPTO_SALT_SIZE ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2011-08-26 15:37:23 -03:00
CCrypter crypter ;
2013-04-13 02:13:08 -03:00
int64_t nStartTime = GetTimeMillis ( ) ;
2011-08-26 15:37:23 -03:00
crypter . SetKeyFromPassphrase ( strWalletPassphrase , kMasterKey . vchSalt , 25000 , kMasterKey . nDerivationMethod ) ;
2017-09-11 16:43:49 -03:00
kMasterKey . nDeriveIterations = static_cast < unsigned int > ( 2500000 / ( ( double ) ( GetTimeMillis ( ) - nStartTime ) ) ) ;
2011-06-28 09:31:09 -04:00
2011-08-26 15:37:23 -03:00
nStartTime = GetTimeMillis ( ) ;
crypter . SetKeyFromPassphrase ( strWalletPassphrase , kMasterKey . vchSalt , kMasterKey . nDeriveIterations , kMasterKey . nDerivationMethod ) ;
2017-09-11 16:43:49 -03:00
kMasterKey . nDeriveIterations = ( kMasterKey . nDeriveIterations + static_cast < unsigned int > ( kMasterKey . nDeriveIterations * 100 / ( ( double ) ( GetTimeMillis ( ) - nStartTime ) ) ) ) / 2 ;
2011-06-28 09:31:09 -04:00
2011-08-26 15:37:23 -03:00
if ( kMasterKey . nDeriveIterations < 25000 )
kMasterKey . nDeriveIterations = 25000 ;
2011-06-28 09:31:09 -04:00
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " Encrypting Wallet with an nDeriveIterations of %i \n " , kMasterKey . nDeriveIterations ) ;
2011-06-28 09:31:09 -04:00
2011-08-26 15:37:23 -03:00
if ( ! crypter . SetKeyFromPassphrase ( strWalletPassphrase , kMasterKey . vchSalt , kMasterKey . nDeriveIterations , kMasterKey . nDerivationMethod ) )
return false ;
2016-11-10 04:00:05 -03:00
if ( ! crypter . Encrypt ( _vMasterKey , kMasterKey . vchCryptedKey ) )
2011-08-26 15:37:23 -03:00
return false ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2011-08-26 15:37:23 -03:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
mapMasterKeys [ + + nMasterKeyMaxID ] = kMasterKey ;
2017-12-08 08:39:22 -03:00
assert ( ! encrypted_batch ) ;
encrypted_batch = new WalletBatch ( * database ) ;
if ( ! encrypted_batch - > TxnBegin ( ) ) {
delete encrypted_batch ;
encrypted_batch = nullptr ;
2017-03-08 09:08:26 -03:00
return false ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
}
2017-12-08 08:39:22 -03:00
encrypted_batch - > WriteMasterKey ( nMasterKeyMaxID , kMasterKey ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2016-11-10 04:00:05 -03:00
if ( ! EncryptKeys ( _vMasterKey ) )
2011-07-08 09:08:27 -04:00
{
2017-12-08 08:39:22 -03:00
encrypted_batch - > TxnAbort ( ) ;
delete encrypted_batch ;
2018-09-03 10:41:02 -03:00
encrypted_batch = nullptr ;
2014-09-28 11:11:17 -03:00
// We now probably have half of our keys encrypted in memory, and half not...
2015-04-28 11:48:28 -03:00
// die and let the user reload the unencrypted wallet.
2014-10-01 03:50:24 -03:00
assert ( false ) ;
2011-07-08 09:08:27 -04:00
}
2012-02-18 10:55:02 -03:00
// Encryption was introduced in version 0.4.0
2017-12-08 08:39:22 -03:00
SetMinVersion ( FEATURE_WALLETCRYPT , encrypted_batch , true ) ;
2012-02-18 10:55:02 -03:00
2017-12-08 08:39:22 -03:00
if ( ! encrypted_batch - > TxnCommit ( ) ) {
delete encrypted_batch ;
2018-09-03 10:41:02 -03:00
encrypted_batch = nullptr ;
2017-03-08 09:08:26 -03:00
// We now have keys encrypted in memory, but not on disk...
// die to avoid confusion and let the user reload the unencrypted wallet.
assert ( false ) ;
2011-07-08 09:08:27 -04:00
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2017-12-08 08:39:22 -03:00
delete encrypted_batch ;
encrypted_batch = nullptr ;
2017-03-08 09:08:26 -03:00
2011-11-17 16:01:25 -03:00
Lock ( ) ;
Unlock ( strWalletPassphrase ) ;
2016-07-21 15:19:02 -04:00
2018-04-04 13:47:55 -03:00
// if we are using HD, replace the HD seed with a new one
2016-08-17 09:09:47 -03:00
if ( IsHDEnabled ( ) ) {
2018-07-27 02:22:42 -04:00
SetHDSeed ( GenerateNewSeed ( ) ) ;
2016-07-21 15:19:02 -04:00
}
2011-11-17 16:01:25 -03:00
NewKeyPool ( ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
Lock ( ) ;
2011-08-26 15:37:23 -03:00
2011-11-10 23:12:46 -03:00
// Need to completely rewrite the wallet file; if we don't, bdb might keep
// bits of the unencrypted private key in slack space in the database file.
2017-12-08 08:39:22 -03:00
database - > Rewrite ( ) ;
2012-05-05 10:07:14 -04:00
2018-02-20 18:08:36 -03:00
// BDB seems to have a bad habit of writing old data into
// slack space in .dat files; that is bad if the old data is
// unencrypted private keys. So:
database - > ReloadDbEnv ( ) ;
2011-11-10 23:12:46 -03:00
}
2012-05-06 13:40:58 -04:00
NotifyStatusChanged ( this ) ;
2011-11-10 17:29:23 -03:00
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return true ;
2011-06-26 13:23:24 -04:00
}
2016-09-09 23:21:44 -03:00
DBErrors CWallet : : ReorderTransactions ( )
{
2016-09-28 12:57:25 -03:00
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
2016-09-28 12:57:25 -03:00
// Old wallets didn't have any defined order for transactions
// Probably a bad idea to change the output of this
2018-07-31 12:23:26 -04:00
// First: get all CWalletTx into a sorted-by-time multimap.
typedef std : : multimap < int64_t , CWalletTx * > TxItems ;
2016-09-28 12:57:25 -03:00
TxItems txByTime ;
2017-06-04 16:02:43 -04:00
for ( auto & entry : mapWallet )
2016-09-28 12:57:25 -03:00
{
2017-06-04 16:02:43 -04:00
CWalletTx * wtx = & entry . second ;
2018-07-31 12:23:26 -04:00
txByTime . insert ( std : : make_pair ( wtx - > nTimeReceived , wtx ) ) ;
2016-09-28 12:57:25 -03:00
}
nOrderPosNext = 0 ;
std : : vector < int64_t > nOrderPosOffsets ;
for ( TxItems : : iterator it = txByTime . begin ( ) ; it ! = txByTime . end ( ) ; + + it )
{
2018-07-31 12:23:26 -04:00
CWalletTx * const pwtx = ( * it ) . second ;
int64_t & nOrderPos = pwtx - > nOrderPos ;
2016-09-28 12:57:25 -03:00
if ( nOrderPos = = - 1 )
{
nOrderPos = nOrderPosNext + + ;
nOrderPosOffsets . push_back ( nOrderPos ) ;
2018-07-31 12:23:26 -04:00
if ( ! batch . WriteTx ( * pwtx ) )
return DBErrors : : LOAD_FAIL ;
2016-09-28 12:57:25 -03:00
}
else
{
int64_t nOrderPosOff = 0 ;
2017-06-01 21:18:57 -04:00
for ( const int64_t & nOffsetStart : nOrderPosOffsets )
2016-09-28 12:57:25 -03:00
{
if ( nOrderPos > = nOffsetStart )
+ + nOrderPosOff ;
}
nOrderPos + = nOrderPosOff ;
nOrderPosNext = std : : max ( nOrderPosNext , nOrderPos + 1 ) ;
if ( ! nOrderPosOff )
continue ;
// Since we're changing the order, write it back
2018-07-31 12:23:26 -04:00
if ( ! batch . WriteTx ( * pwtx ) )
return DBErrors : : LOAD_FAIL ;
2016-09-28 12:57:25 -03:00
}
}
2017-12-08 08:39:22 -03:00
batch . WriteOrderPosNext ( nOrderPosNext ) ;
2016-09-28 12:57:25 -03:00
2018-03-09 11:03:40 -03:00
return DBErrors : : LOAD_OK ;
2016-09-09 23:21:44 -03:00
}
2019-02-18 18:09:45 -03:00
int64_t CWallet : : IncOrderPosNext ( WalletBatch * batch )
2012-09-08 01:55:36 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2013-04-13 02:13:08 -03:00
int64_t nRet = nOrderPosNext + + ;
2017-12-08 08:39:22 -03:00
if ( batch ) {
batch - > WriteOrderPosNext ( nOrderPosNext ) ;
2012-11-13 19:52:37 -03:00
} else {
2017-12-08 08:39:22 -03:00
WalletBatch ( * database ) . WriteOrderPosNext ( nOrderPosNext ) ;
2012-11-13 19:52:37 -03:00
}
2012-09-08 01:55:36 -03:00
return nRet ;
}
2011-07-13 05:56:38 -04:00
void CWallet : : MarkDirty ( )
{
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2017-06-01 21:28:42 -04:00
for ( std : : pair < const uint256 , CWalletTx > & item : mapWallet )
2011-07-13 05:56:38 -04:00
item . second . MarkDirty ( ) ;
}
}
2016-12-09 15:45:27 -03:00
bool CWallet : : MarkReplaced ( const uint256 & originalHash , const uint256 & newHash )
{
LOCK ( cs_wallet ) ;
auto mi = mapWallet . find ( originalHash ) ;
// There is a bug if MarkReplaced is not called on an existing wallet transaction.
assert ( mi ! = mapWallet . end ( ) ) ;
CWalletTx & wtx = ( * mi ) . second ;
// Ensure for now that we're not overwriting data
assert ( wtx . mapValue . count ( " replaced_by_txid " ) = = 0 ) ;
wtx . mapValue [ " replaced_by_txid " ] = newHash . ToString ( ) ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database , " r+ " ) ;
2016-12-09 15:45:27 -03:00
bool success = true ;
2017-12-08 08:39:22 -03:00
if ( ! batch . WriteTx ( wtx ) ) {
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " %s: Updating batch tx %s failed \n " , __func__ , wtx . GetHash ( ) . ToString ( ) ) ;
2016-12-09 15:45:27 -03:00
success = false ;
}
NotifyTransactionChanged ( this , originalHash , CT_UPDATED ) ;
return success ;
}
2018-09-13 01:53:19 -03:00
void CWallet : : SetUsedDestinationState ( const uint256 & hash , unsigned int n , bool used )
{
const CWalletTx * srctx = GetWalletTx ( hash ) ;
if ( ! srctx ) return ;
CTxDestination dst ;
if ( ExtractDestination ( srctx - > tx - > vout [ n ] . scriptPubKey , dst ) ) {
if ( : : IsMine ( * this , dst ) ) {
LOCK ( cs_wallet ) ;
if ( used & & ! GetDestData ( dst , " used " , nullptr ) ) {
AddDestData ( dst , " used " , " p " ) ; // p for "present", opposite of absent (null)
} else if ( ! used & & GetDestData ( dst , " used " , nullptr ) ) {
EraseDestData ( dst , " used " ) ;
}
}
}
}
bool CWallet : : IsUsedDestination ( const CTxDestination & dst ) const
{
LOCK ( cs_wallet ) ;
return : : IsMine ( * this , dst ) & & GetDestData ( dst , " used " , nullptr ) ;
}
bool CWallet : : IsUsedDestination ( const uint256 & hash , unsigned int n ) const
{
CTxDestination dst ;
const CWalletTx * srctx = GetWalletTx ( hash ) ;
return srctx & & ExtractDestination ( srctx - > tx - > vout [ n ] . scriptPubKey , dst ) & & IsUsedDestination ( dst ) ;
}
2016-06-08 00:41:03 -04:00
bool CWallet : : AddToWallet ( const CWalletTx & wtxIn , bool fFlushOnClose )
2011-06-26 13:23:24 -04:00
{
2016-06-08 00:41:03 -04:00
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database , " r+ " , fFlushOnClose ) ;
2016-06-08 00:41:03 -04:00
2011-06-26 13:23:24 -04:00
uint256 hash = wtxIn . GetHash ( ) ;
2014-02-13 22:12:51 -03:00
2018-09-13 01:53:19 -03:00
if ( IsWalletFlagSet ( WALLET_FLAG_AVOID_REUSE ) ) {
// Mark used destinations
for ( const CTxIn & txin : wtxIn . tx - > vin ) {
const COutPoint & op = txin . prevout ;
SetUsedDestinationState ( op . hash , op . n , true ) ;
}
}
2016-06-08 00:25:31 -04:00
// Inserts only if not already there, returns tx inserted or tx found
2017-01-26 22:33:45 -03:00
std : : pair < std : : map < uint256 , CWalletTx > : : iterator , bool > ret = mapWallet . insert ( std : : make_pair ( hash , wtxIn ) ) ;
2016-06-08 00:25:31 -04:00
CWalletTx & wtx = ( * ret . first ) . second ;
wtx . BindWallet ( this ) ;
bool fInsertedNew = ret . second ;
2018-06-11 14:09:16 -04:00
if ( fInsertedNew ) {
2017-07-28 22:54:31 -04:00
wtx . nTimeReceived = chain ( ) . getAdjustedTime ( ) ;
2017-12-08 08:39:22 -03:00
wtx . nOrderPos = IncOrderPosNext ( & batch ) ;
2018-07-31 12:23:26 -04:00
wtx . m_it_wtxOrdered = wtxOrdered . insert ( std : : make_pair ( wtx . nOrderPos , & wtx ) ) ;
2016-12-16 12:00:26 -03:00
wtx . nTimeSmart = ComputeTimeSmart ( wtx ) ;
2016-06-08 00:25:31 -04:00
AddToSpends ( hash ) ;
}
2011-06-26 13:23:24 -04:00
2016-06-08 00:25:31 -04:00
bool fUpdated = false ;
if ( ! fInsertedNew )
{
2019-08-12 18:12:12 -04:00
if ( wtxIn . m_confirm . status ! = wtx . m_confirm . status ) {
wtx . m_confirm . status = wtxIn . m_confirm . status ;
wtx . m_confirm . nIndex = wtxIn . m_confirm . nIndex ;
wtx . m_confirm . hashBlock = wtxIn . m_confirm . hashBlock ;
2016-06-08 00:25:31 -04:00
fUpdated = true ;
2019-08-12 18:12:12 -04:00
} else {
assert ( wtx . m_confirm . nIndex = = wtxIn . m_confirm . nIndex ) ;
assert ( wtx . m_confirm . hashBlock = = wtxIn . m_confirm . hashBlock ) ;
2011-06-26 13:23:24 -04:00
}
2016-06-08 00:25:31 -04:00
if ( wtxIn . fFromMe & & wtxIn . fFromMe ! = wtx . fFromMe )
{
wtx . fFromMe = wtxIn . fFromMe ;
fUpdated = true ;
}
2017-09-03 09:43:35 -03:00
// If we have a witness-stripped version of this transaction, and we
// see a new version with a witness, then we must be upgrading a pre-segwit
// wallet. Store the new version of the transaction with the witness,
// as the stripped-version must be invalid.
// TODO: Store all versions of the transaction, instead of just one.
if ( wtxIn . tx - > HasWitness ( ) & & ! wtx . tx - > HasWitness ( ) ) {
wtx . SetTx ( wtxIn . tx ) ;
fUpdated = true ;
}
2016-06-08 00:25:31 -04:00
}
2011-06-26 13:23:24 -04:00
2016-06-08 00:25:31 -04:00
//// debug print
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " AddToWallet %s %s%s \n " , wtxIn . GetHash ( ) . ToString ( ) , ( fInsertedNew ? " new " : " " ) , ( fUpdated ? " update " : " " ) ) ;
2011-06-26 13:23:24 -04:00
2016-06-08 00:25:31 -04:00
// Write to disk
if ( fInsertedNew | | fUpdated )
2017-12-08 08:39:22 -03:00
if ( ! batch . WriteTx ( wtx ) )
2016-06-08 00:25:31 -04:00
return false ;
2013-05-26 14:17:18 -04:00
2016-06-08 00:25:31 -04:00
// Break debit/credit balance caches:
wtx . MarkDirty ( ) ;
2011-06-26 13:23:24 -04:00
2016-06-08 00:25:31 -04:00
// Notify UI of new or updated transaction
NotifyTransactionChanged ( this , hash , fInsertedNew ? CT_NEW : CT_UPDATED ) ;
2012-11-03 11:58:41 -03:00
2019-07-05 12:30:15 -04:00
# if HAVE_SYSTEM
2016-06-08 00:25:31 -04:00
// notify an external script when a wallet transaction comes in or is updated
2017-08-01 15:17:40 -04:00
std : : string strCmd = gArgs . GetArg ( " -walletnotify " , " " ) ;
2012-11-03 11:58:41 -03:00
2017-07-26 19:09:05 -04:00
if ( ! strCmd . empty ( ) )
2016-06-08 00:25:31 -04:00
{
boost : : replace_all ( strCmd , " %s " , wtxIn . GetHash ( ) . GetHex ( ) ) ;
2018-02-07 21:19:34 -03:00
std : : thread t ( runCommand , strCmd ) ;
t . detach ( ) ; // thread runs free
2016-06-08 00:25:31 -04:00
}
2019-03-14 07:30:37 -03:00
# endif
2016-06-08 00:25:31 -04:00
return true ;
}
2019-08-22 13:16:40 -04:00
void CWallet : : LoadToWallet ( CWalletTx & wtxIn )
2016-06-08 00:25:31 -04:00
{
2019-08-22 13:16:40 -04:00
// If wallet doesn't have a chain (e.g wallet-tool), lock can't be taken.
auto locked_chain = LockChain ( ) ;
// If tx hasn't been reorged out of chain while wallet being shutdown
// change tx status to UNCONFIRMED and reset hashBlock/nIndex.
if ( ! wtxIn . m_confirm . hashBlock . IsNull ( ) ) {
if ( locked_chain & & ! locked_chain - > getBlockHeight ( wtxIn . m_confirm . hashBlock ) ) {
wtxIn . setUnconfirmed ( ) ;
wtxIn . m_confirm . hashBlock = uint256 ( ) ;
wtxIn . m_confirm . nIndex = 0 ;
}
}
2016-06-08 00:25:31 -04:00
uint256 hash = wtxIn . GetHash ( ) ;
2018-06-11 14:09:16 -04:00
const auto & ins = mapWallet . emplace ( hash , wtxIn ) ;
CWalletTx & wtx = ins . first - > second ;
2016-06-08 00:25:31 -04:00
wtx . BindWallet ( this ) ;
2018-06-11 14:09:16 -04:00
if ( /* insertion took place */ ins . second ) {
2018-07-31 12:23:26 -04:00
wtx . m_it_wtxOrdered = wtxOrdered . insert ( std : : make_pair ( wtx . nOrderPos , & wtx ) ) ;
2018-06-11 14:09:16 -04:00
}
2016-06-08 00:25:31 -04:00
AddToSpends ( hash ) ;
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : wtx . tx - > vin ) {
2017-08-13 11:04:57 -03:00
auto it = mapWallet . find ( txin . prevout . hash ) ;
if ( it ! = mapWallet . end ( ) ) {
CWalletTx & prevtx = it - > second ;
2019-08-12 18:12:12 -04:00
if ( prevtx . isConflicted ( ) ) {
MarkConflicted ( prevtx . m_confirm . hashBlock , wtx . GetHash ( ) ) ;
2016-06-08 00:25:31 -04:00
}
}
2012-05-05 10:07:14 -04:00
}
2011-06-26 13:23:24 -04:00
}
2019-08-12 18:12:12 -04:00
bool CWallet : : AddToWalletIfInvolvingMe ( const CTransactionRef & ptx , CWalletTx : : Status status , const uint256 & block_hash , int posInBlock , bool fUpdate )
2011-06-26 13:23:24 -04:00
{
2017-03-06 20:21:27 -03:00
const CTransaction & tx = * ptx ;
2011-06-26 13:23:24 -04:00
{
2014-03-09 08:41:22 -03:00
AssertLockHeld ( cs_wallet ) ;
2015-11-26 14:42:07 -03:00
2017-07-27 10:08:31 -04:00
if ( ! block_hash . IsNull ( ) ) {
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : tx . vin ) {
2015-11-26 14:42:07 -03:00
std : : pair < TxSpends : : const_iterator , TxSpends : : const_iterator > range = mapTxSpends . equal_range ( txin . prevout ) ;
while ( range . first ! = range . second ) {
if ( range . first - > second ! = tx . GetHash ( ) ) {
2017-07-27 10:08:31 -04:00
WalletLogPrintf ( " Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i) \n " , tx . GetHash ( ) . ToString ( ) , block_hash . ToString ( ) , range . first - > second . ToString ( ) , range . first - > first . hash . ToString ( ) , range . first - > first . n ) ;
MarkConflicted ( block_hash , range . first - > second ) ;
2015-11-26 14:42:07 -03:00
}
range . first + + ;
}
}
}
2014-09-06 15:59:59 -04:00
bool fExisted = mapWallet . count ( tx . GetHash ( ) ) ! = 0 ;
2011-08-26 15:37:23 -03:00
if ( fExisted & & ! fUpdate ) return false ;
2014-07-17 08:09:46 -04:00
if ( fExisted | | IsMine ( tx ) | | IsFromMe ( tx ) )
2011-08-26 15:37:23 -03:00
{
2017-07-18 15:49:56 -04:00
/* Check if any keys in the wallet keypool that were supposed to be unused
* have appeared in a new transaction . If so , remove those keys from the keypool .
* This can happen when restoring an old wallet backup that does not contain
* the mostly recently created transactions from newer versions of the wallet .
*/
// loop though all outputs
for ( const CTxOut & txout : tx . vout ) {
// extract addresses and check if they match with an unused keypool key
2018-11-10 17:29:07 -03:00
for ( const auto & keyid : GetAffectedKeys ( txout . scriptPubKey , * this ) ) {
2017-07-18 15:49:56 -04:00
std : : map < CKeyID , int64_t > : : const_iterator mi = m_pool_key_to_index . find ( keyid ) ;
if ( mi ! = m_pool_key_to_index . end ( ) ) {
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " %s: Detected a used keypool key, mark all keypool key up to this key as used \n " , __func__ ) ;
2017-07-18 15:49:56 -04:00
MarkReserveKeysAsUsed ( mi - > second ) ;
if ( ! TopUpKeyPool ( ) ) {
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " %s: Topping up keypool failed (locked wallet) \n " , __func__ ) ;
2017-07-18 15:49:56 -04:00
}
}
}
}
2017-03-06 20:21:27 -03:00
CWalletTx wtx ( this , ptx ) ;
2014-08-30 23:55:27 -04:00
2019-08-12 18:12:12 -04:00
// Block disconnection override an abandoned tx as unconfirmed
// which means user may have to call abandontransaction again
wtx . SetConf ( status , block_hash , posInBlock ) ;
2014-08-30 23:55:27 -04:00
2016-06-08 00:41:03 -04:00
return AddToWallet ( wtx , false ) ;
2011-08-26 15:37:23 -03:00
}
2011-06-26 13:23:24 -04:00
}
return false ;
}
2017-04-28 15:10:21 -03:00
bool CWallet : : TransactionCanBeAbandoned ( const uint256 & hashTx ) const
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2017-04-28 15:10:21 -03:00
const CWalletTx * wtx = GetWalletTx ( hashTx ) ;
2017-07-31 15:30:21 -04:00
return wtx & & ! wtx - > isAbandoned ( ) & & wtx - > GetDepthInMainChain ( * locked_chain ) = = 0 & & ! wtx - > InMempool ( ) ;
2017-04-28 15:10:21 -03:00
}
2018-07-12 16:02:31 -04:00
void CWallet : : MarkInputsDirty ( const CTransactionRef & tx )
{
for ( const CTxIn & txin : tx - > vin ) {
auto it = mapWallet . find ( txin . prevout . hash ) ;
if ( it ! = mapWallet . end ( ) ) {
it - > second . MarkDirty ( ) ;
}
}
}
2017-07-31 15:30:21 -04:00
bool CWallet : : AbandonTransaction ( interfaces : : Chain : : Lock & locked_chain , const uint256 & hashTx )
2016-01-07 18:31:27 -03:00
{
2017-07-26 10:23:01 -04:00
auto locked_chain_recursive = chain ( ) . lock ( ) ; // Temporary. Removed in upcoming lock cleanup
LOCK ( cs_wallet ) ;
2016-01-07 18:31:27 -03:00
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database , " r+ " ) ;
2016-01-07 18:31:27 -03:00
std : : set < uint256 > todo ;
std : : set < uint256 > done ;
// Can't mark abandoned if confirmed or in mempool
2017-08-13 11:04:57 -03:00
auto it = mapWallet . find ( hashTx ) ;
assert ( it ! = mapWallet . end ( ) ) ;
CWalletTx & origtx = it - > second ;
2017-07-31 15:30:21 -04:00
if ( origtx . GetDepthInMainChain ( locked_chain ) ! = 0 | | origtx . InMempool ( ) ) {
2016-01-07 18:31:27 -03:00
return false ;
}
todo . insert ( hashTx ) ;
while ( ! todo . empty ( ) ) {
uint256 now = * todo . begin ( ) ;
todo . erase ( now ) ;
done . insert ( now ) ;
2017-08-13 11:04:57 -03:00
auto it = mapWallet . find ( now ) ;
assert ( it ! = mapWallet . end ( ) ) ;
CWalletTx & wtx = it - > second ;
2017-07-31 15:30:21 -04:00
int currentconfirm = wtx . GetDepthInMainChain ( locked_chain ) ;
2016-01-07 18:31:27 -03:00
// If the orig tx was not in block, none of its spends can be
assert ( currentconfirm < = 0 ) ;
// if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
if ( currentconfirm = = 0 & & ! wtx . isAbandoned ( ) ) {
// If the orig tx was not in block/mempool, none of its spends can be in mempool
assert ( ! wtx . InMempool ( ) ) ;
2019-08-12 18:12:12 -04:00
wtx . m_confirm . nIndex = 0 ;
2016-01-07 18:31:27 -03:00
wtx . setAbandoned ( ) ;
wtx . MarkDirty ( ) ;
2017-12-08 08:39:22 -03:00
batch . WriteTx ( wtx ) ;
2016-01-11 07:15:41 -03:00
NotifyTransactionChanged ( this , wtx . GetHash ( ) , CT_UPDATED ) ;
2016-01-07 18:31:27 -03:00
// Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
2018-07-12 17:19:00 -04:00
TxSpends : : const_iterator iter = mapTxSpends . lower_bound ( COutPoint ( now , 0 ) ) ;
2016-01-07 18:31:27 -03:00
while ( iter ! = mapTxSpends . end ( ) & & iter - > first . hash = = now ) {
if ( ! done . count ( iter - > second ) ) {
todo . insert ( iter - > second ) ;
}
iter + + ;
}
// If a transaction changes 'conflicted' state, that changes the balance
// available of the outputs it spends. So force those to be recomputed
2018-07-12 16:02:31 -04:00
MarkInputsDirty ( wtx . tx ) ;
2016-01-07 18:31:27 -03:00
}
}
return true ;
}
2015-11-26 14:42:07 -03:00
void CWallet : : MarkConflicted ( const uint256 & hashBlock , const uint256 & hashTx )
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2015-11-26 14:42:07 -03:00
2017-07-27 10:08:31 -04:00
int conflictconfirms = - locked_chain - > getBlockDepth ( hashBlock ) ;
2016-02-09 16:23:09 -03:00
// If number of conflict confirms cannot be determined, this means
// that the block is still unknown or not yet part of the main chain,
// for example when loading the wallet during a reindex. Do nothing in that
// case.
if ( conflictconfirms > = 0 )
return ;
2015-11-26 14:42:07 -03:00
// Do not flush the wallet here for performance reasons
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database , " r+ " , false ) ;
2015-11-26 14:42:07 -03:00
2016-01-07 18:31:12 -03:00
std : : set < uint256 > todo ;
2015-11-26 14:42:07 -03:00
std : : set < uint256 > done ;
2016-01-07 18:31:12 -03:00
todo . insert ( hashTx ) ;
2015-11-26 14:42:07 -03:00
while ( ! todo . empty ( ) ) {
2016-01-07 18:31:12 -03:00
uint256 now = * todo . begin ( ) ;
todo . erase ( now ) ;
2015-11-26 14:42:07 -03:00
done . insert ( now ) ;
2017-08-13 11:04:57 -03:00
auto it = mapWallet . find ( now ) ;
assert ( it ! = mapWallet . end ( ) ) ;
CWalletTx & wtx = it - > second ;
2017-07-31 15:30:21 -04:00
int currentconfirm = wtx . GetDepthInMainChain ( * locked_chain ) ;
2015-11-26 14:42:07 -03:00
if ( conflictconfirms < currentconfirm ) {
// Block is 'more conflicted' than current confirm; update.
// Mark transaction as conflicted with this block.
2019-08-12 18:12:12 -04:00
wtx . m_confirm . nIndex = 0 ;
wtx . m_confirm . hashBlock = hashBlock ;
wtx . setConflicted ( ) ;
2015-11-26 14:42:07 -03:00
wtx . MarkDirty ( ) ;
2017-12-08 08:39:22 -03:00
batch . WriteTx ( wtx ) ;
2015-11-26 14:42:07 -03:00
// Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
TxSpends : : const_iterator iter = mapTxSpends . lower_bound ( COutPoint ( now , 0 ) ) ;
while ( iter ! = mapTxSpends . end ( ) & & iter - > first . hash = = now ) {
if ( ! done . count ( iter - > second ) ) {
2016-01-07 18:31:12 -03:00
todo . insert ( iter - > second ) ;
2015-11-26 14:42:07 -03:00
}
iter + + ;
}
2016-01-06 19:24:30 -03:00
// If a transaction changes 'conflicted' state, that changes the balance
// available of the outputs it spends. So force those to be recomputed
2018-07-12 16:02:31 -04:00
MarkInputsDirty ( wtx . tx ) ;
2015-11-26 14:42:07 -03:00
}
}
}
2019-08-12 18:12:12 -04:00
void CWallet : : SyncTransaction ( const CTransactionRef & ptx , CWalletTx : : Status status , const uint256 & block_hash , int posInBlock , bool update_tx )
{
if ( ! AddToWalletIfInvolvingMe ( ptx , status , block_hash , posInBlock , update_tx ) )
2014-02-15 18:38:28 -03:00
return ; // Not one of ours
// If a transaction changes 'conflicted' state, that changes the balance
// available of the outputs it spends. So force those to be
// recomputed, also:
2018-07-12 16:02:31 -04:00
MarkInputsDirty ( ptx ) ;
2013-10-19 13:34:06 -03:00
}
2017-03-29 22:12:42 -03:00
void CWallet : : TransactionAddedToMempool ( const CTransactionRef & ptx ) {
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2019-08-12 18:12:12 -04:00
SyncTransaction ( ptx , CWalletTx : : Status : : UNCONFIRMED , { } /* block hash */ , 0 /* position in block */ ) ;
Use callbacks to cache whether wallet transactions are in mempool
This avoid calling out to mempool state during coin selection,
balance calculation, etc. In the next commit we ensure all wallet
callbacks from CValidationInterface happen in the same queue,
serialized with each other. This helps to avoid re-introducing one
of the issues described in #9584 [1] by further disconnecting
wallet from current chain/mempool state.
Thanks to @morcos for the suggestion to do this.
Note that there are several race conditions introduced here:
* If a user calls sendrawtransaction from RPC, adding a
transaction which is "trusted" (ie from them) and pays them
change, it may not be immediately used by coin selection until
the notification callbacks finish running. No such race is
introduced in normal transaction-sending RPCs as this case is
explicitly handled.
* Until Block{Connected,Disconnected} and
TransactionAddedToMempool calls also run in the CSceduler
background thread, there is a race where
TransactionAddedToMempool might be called after a
Block{Connected,Disconnected} call happens.
* Wallet will write a new best chain from the SetBestChain
callback prior to having processed the transaction from that
block.
[1] "you could go to select coins, need to use 0-conf change, but
such 0-conf change may have been included in a block who's
callbacks have not yet been processed - resulting in thinking they
are not in mempool and, thus, not selectable."
2017-01-20 18:38:07 -03:00
auto it = mapWallet . find ( ptx - > GetHash ( ) ) ;
if ( it ! = mapWallet . end ( ) ) {
it - > second . fInMempool = true ;
}
}
void CWallet : : TransactionRemovedFromMempool ( const CTransactionRef & ptx ) {
LOCK ( cs_wallet ) ;
auto it = mapWallet . find ( ptx - > GetHash ( ) ) ;
if ( it ! = mapWallet . end ( ) ) {
it - > second . fInMempool = false ;
}
2017-03-29 22:12:42 -03:00
}
2017-07-30 16:00:56 -04:00
void CWallet : : BlockConnected ( const CBlock & block , const std : : vector < CTransactionRef > & vtxConflicted ) {
const uint256 & block_hash = block . GetHash ( ) ;
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2017-03-29 22:12:42 -03:00
2017-07-30 16:00:56 -04:00
for ( size_t i = 0 ; i < block . vtx . size ( ) ; i + + ) {
2019-08-12 18:12:12 -04:00
SyncTransaction ( block . vtx [ i ] , CWalletTx : : Status : : CONFIRMED , block_hash , i ) ;
2017-07-30 16:00:56 -04:00
TransactionRemovedFromMempool ( block . vtx [ i ] ) ;
2017-03-29 22:12:42 -03:00
}
2019-08-15 11:42:16 -04:00
for ( const CTransactionRef & ptx : vtxConflicted ) {
TransactionRemovedFromMempool ( ptx ) ;
}
2017-01-17 20:06:16 -03:00
2017-07-30 16:00:56 -04:00
m_last_block_processed = block_hash ;
2017-03-29 22:12:42 -03:00
}
2017-07-30 16:00:56 -04:00
void CWallet : : BlockDisconnected ( const CBlock & block ) {
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2017-03-08 14:55:33 -03:00
2019-08-12 18:12:12 -04:00
// At block disconnection, this will change an abandoned transaction to
// be unconfirmed, whether or not the transaction is added back to the mempool.
// User may have to call abandontransaction again. It may be addressed in the
// future with a stickier abandoned state or even removing abandontransaction call.
2017-07-30 16:00:56 -04:00
for ( const CTransactionRef & ptx : block . vtx ) {
2019-08-12 18:12:12 -04:00
SyncTransaction ( ptx , CWalletTx : : Status : : UNCONFIRMED , { } /* block hash */ , 0 /* position in block */ ) ;
2017-03-29 22:12:42 -03:00
}
}
2019-03-28 14:15:47 -03:00
void CWallet : : UpdatedBlockTip ( )
{
m_best_block_time = GetTime ( ) ;
}
2017-03-29 22:12:42 -03:00
2011-06-26 13:23:24 -04:00
2017-01-17 20:06:16 -03:00
void CWallet : : BlockUntilSyncedToCurrentChain ( ) {
AssertLockNotHeld ( cs_wallet ) ;
2019-04-18 08:21:35 -04:00
// Skip the queue-draining stuff if we know we're caught up with
2019-03-27 12:14:25 -03:00
// ::ChainActive().Tip(), otherwise put a callback in the validation interface queue and wait
2017-01-17 20:06:16 -03:00
// for the queue to drain enough to execute it (indicating we are caught up
// at least with the time we entered this function).
2019-04-18 08:21:35 -04:00
uint256 last_block_hash = WITH_LOCK ( cs_wallet , return m_last_block_processed ) ;
chain ( ) . waitForNotificationsIfNewBlocksConnected ( last_block_hash ) ;
2017-01-17 20:06:16 -03:00
}
2013-07-25 19:06:01 -04:00
isminetype CWallet : : IsMine ( const CTxIn & txin ) const
2011-06-26 13:23:24 -04:00
{
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2017-01-26 22:33:45 -03:00
std : : map < uint256 , CWalletTx > : : const_iterator mi = mapWallet . find ( txin . prevout . hash ) ;
2011-06-26 13:23:24 -04:00
if ( mi ! = mapWallet . end ( ) )
{
const CWalletTx & prev = ( * mi ) . second ;
2016-11-11 21:54:51 -03:00
if ( txin . prevout . n < prev . tx - > vout . size ( ) )
return IsMine ( prev . tx - > vout [ txin . prevout . n ] ) ;
2011-06-26 13:23:24 -04:00
}
}
2014-07-01 05:00:22 -04:00
return ISMINE_NO ;
2011-06-26 13:23:24 -04:00
}
2016-12-09 17:31:06 -03:00
// Note that this function doesn't distinguish between a 0-valued input,
// and a not-"is mine" (according to the filter) input.
2014-04-22 19:46:19 -03:00
CAmount CWallet : : GetDebit ( const CTxIn & txin , const isminefilter & filter ) const
2011-06-26 13:23:24 -04:00
{
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2017-01-26 22:33:45 -03:00
std : : map < uint256 , CWalletTx > : : const_iterator mi = mapWallet . find ( txin . prevout . hash ) ;
2011-06-26 13:23:24 -04:00
if ( mi ! = mapWallet . end ( ) )
{
const CWalletTx & prev = ( * mi ) . second ;
2016-11-11 21:54:51 -03:00
if ( txin . prevout . n < prev . tx - > vout . size ( ) )
if ( IsMine ( prev . tx - > vout [ txin . prevout . n ] ) & filter )
return prev . tx - > vout [ txin . prevout . n ] . nValue ;
2011-06-26 13:23:24 -04:00
}
}
return 0 ;
}
2015-02-04 19:19:29 -03:00
isminetype CWallet : : IsMine ( const CTxOut & txout ) const
{
return : : IsMine ( * this , txout . scriptPubKey ) ;
}
CAmount CWallet : : GetCredit ( const CTxOut & txout , const isminefilter & filter ) const
{
if ( ! MoneyRange ( txout . nValue ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2015-02-04 19:19:29 -03:00
return ( ( IsMine ( txout ) & filter ) ? txout . nValue : 0 ) ;
}
2011-10-03 14:05:43 -03:00
bool CWallet : : IsChange ( const CTxOut & txout ) const
2018-10-05 18:24:06 -03:00
{
return IsChange ( txout . scriptPubKey ) ;
}
bool CWallet : : IsChange ( const CScript & script ) const
2011-10-03 14:05:43 -03:00
{
2011-11-08 15:20:29 -03:00
// TODO: fix handling of 'change' outputs. The assumption is that any
2014-06-09 15:11:59 -04:00
// payment to a script that is ours, but is not in the address book
2011-11-08 15:20:29 -03:00
// is change. That assumption is likely to break when we implement multisignature
// wallets that return change back into a multi-signature-protected address;
// a better way of identifying which outputs are 'the send' and which are
// 'the change' will need to be implemented (maybe extend CWalletTx to remember
// which output, if any, was change).
2018-10-05 18:24:06 -03:00
if ( : : IsMine ( * this , script ) )
2012-04-06 13:39:12 -03:00
{
2014-06-09 15:11:59 -04:00
CTxDestination address ;
2018-10-05 18:24:06 -03:00
if ( ! ExtractDestination ( script , address ) )
2014-06-09 15:11:59 -04:00
return true ;
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
if ( ! mapAddressBook . count ( address ) )
return true ;
}
2011-10-03 14:05:43 -03:00
return false ;
}
2015-02-04 19:19:29 -03:00
CAmount CWallet : : GetChange ( const CTxOut & txout ) const
{
if ( ! MoneyRange ( txout . nValue ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2015-02-04 19:19:29 -03:00
return ( IsChange ( txout ) ? txout . nValue : 0 ) ;
}
bool CWallet : : IsMine ( const CTransaction & tx ) const
{
2017-06-01 21:18:57 -04:00
for ( const CTxOut & txout : tx . vout )
2015-02-04 19:19:29 -03:00
if ( IsMine ( txout ) )
return true ;
return false ;
}
bool CWallet : : IsFromMe ( const CTransaction & tx ) const
{
return ( GetDebit ( tx , ISMINE_ALL ) > 0 ) ;
}
CAmount CWallet : : GetDebit ( const CTransaction & tx , const isminefilter & filter ) const
{
CAmount nDebit = 0 ;
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : tx . vin )
2015-02-04 19:19:29 -03:00
{
nDebit + = GetDebit ( txin , filter ) ;
if ( ! MoneyRange ( nDebit ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2015-02-04 19:19:29 -03:00
}
return nDebit ;
}
2016-12-09 17:31:06 -03:00
bool CWallet : : IsAllFromMe ( const CTransaction & tx , const isminefilter & filter ) const
{
LOCK ( cs_wallet ) ;
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : tx . vin )
2016-12-09 17:31:06 -03:00
{
auto mi = mapWallet . find ( txin . prevout . hash ) ;
if ( mi = = mapWallet . end ( ) )
return false ; // any unknown inputs can't be from us
const CWalletTx & prev = ( * mi ) . second ;
if ( txin . prevout . n > = prev . tx - > vout . size ( ) )
return false ; // invalid input!
if ( ! ( IsMine ( prev . tx - > vout [ txin . prevout . n ] ) & filter ) )
return false ;
}
return true ;
}
2015-02-04 19:19:29 -03:00
CAmount CWallet : : GetCredit ( const CTransaction & tx , const isminefilter & filter ) const
{
CAmount nCredit = 0 ;
2017-06-01 21:18:57 -04:00
for ( const CTxOut & txout : tx . vout )
2015-02-04 19:19:29 -03:00
{
nCredit + = GetCredit ( txout , filter ) ;
if ( ! MoneyRange ( nCredit ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2015-02-04 19:19:29 -03:00
}
return nCredit ;
}
CAmount CWallet : : GetChange ( const CTransaction & tx ) const
{
CAmount nChange = 0 ;
2017-06-01 21:18:57 -04:00
for ( const CTxOut & txout : tx . vout )
2015-02-04 19:19:29 -03:00
{
nChange + = GetChange ( txout ) ;
if ( ! MoneyRange ( nChange ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2015-02-04 19:19:29 -03:00
}
return nChange ;
}
2018-04-04 12:43:45 -03:00
CPubKey CWallet : : GenerateNewSeed ( )
2016-07-21 15:19:02 -04:00
{
2017-05-05 03:53:39 -03:00
assert ( ! IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) ;
2016-07-21 15:19:02 -04:00
CKey key ;
key . MakeNewKey ( true ) ;
2018-04-04 12:43:45 -03:00
return DeriveNewSeed ( key ) ;
2017-09-12 18:01:12 -03:00
}
2016-07-21 15:19:02 -04:00
2018-04-04 12:43:45 -03:00
CPubKey CWallet : : DeriveNewSeed ( const CKey & key )
2017-09-12 18:01:12 -03:00
{
2016-07-21 15:19:02 -04:00
int64_t nCreationTime = GetTime ( ) ;
CKeyMetadata metadata ( nCreationTime ) ;
2018-04-04 13:47:55 -03:00
// calculate the seed
CPubKey seed = key . GetPubKey ( ) ;
assert ( key . VerifyPubKey ( seed ) ) ;
2016-07-21 15:19:02 -04:00
2018-04-04 13:47:55 -03:00
// set the hd keypath to "s" -> Seed, refers the seed to itself
metadata . hdKeypath = " s " ;
2018-11-06 11:23:37 -03:00
metadata . has_key_origin = false ;
2018-04-04 13:47:55 -03:00
metadata . hd_seed_id = seed . GetID ( ) ;
2016-07-21 15:19:02 -04:00
{
LOCK ( cs_wallet ) ;
// mem store the metadata
2018-04-04 13:47:55 -03:00
mapKeyMetadata [ seed . GetID ( ) ] = metadata ;
2016-07-21 15:19:02 -04:00
// write the key&metadata to the database
2018-04-04 13:47:55 -03:00
if ( ! AddKeyPubKey ( key , seed ) )
2016-08-19 13:31:35 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : AddKeyPubKey failed " ) ;
2016-07-21 15:19:02 -04:00
}
2018-04-04 13:47:55 -03:00
return seed ;
2016-07-21 15:19:02 -04:00
}
2018-07-27 02:22:42 -04:00
void CWallet : : SetHDSeed ( const CPubKey & seed )
2016-01-02 08:34:08 -03:00
{
LOCK ( cs_wallet ) ;
// store the keyid (hash160) together with
// the child index counter in the database
// as a hdchain object
CHDChain newHdChain ;
2017-03-29 13:33:13 -03:00
newHdChain . nVersion = CanSupportFeature ( FEATURE_HD_SPLIT ) ? CHDChain : : VERSION_HD_CHAIN_SPLIT : CHDChain : : VERSION_HD_BASE ;
2018-04-04 13:47:55 -03:00
newHdChain . seed_id = seed . GetID ( ) ;
2016-01-02 08:34:08 -03:00
SetHDChain ( newHdChain , false ) ;
2019-01-18 19:05:32 -03:00
NotifyCanGetAddressesChanged ( ) ;
2019-02-06 23:26:55 -03:00
UnsetWalletFlag ( WALLET_FLAG_BLANK_WALLET ) ;
2016-01-02 08:34:08 -03:00
}
2018-07-27 02:22:42 -04:00
void CWallet : : SetHDChain ( const CHDChain & chain , bool memonly )
2016-01-02 08:34:08 -03:00
{
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
if ( ! memonly & & ! WalletBatch ( * database ) . WriteHDChain ( chain ) )
2017-01-26 22:33:45 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing chain failed " ) ;
2016-01-02 08:34:08 -03:00
hdChain = chain ;
}
2017-03-08 23:32:02 -03:00
bool CWallet : : IsHDEnabled ( ) const
2016-08-17 09:09:47 -03:00
{
2018-04-04 12:43:45 -03:00
return ! hdChain . seed_id . IsNull ( ) ;
2016-08-17 09:09:47 -03:00
}
2019-02-06 23:26:55 -03:00
bool CWallet : : CanGenerateKeys ( )
{
// A wallet can generate keys if it has an HD seed (IsHDEnabled) or it is a non-HD wallet (pre FEATURE_HD)
LOCK ( cs_wallet ) ;
return IsHDEnabled ( ) | | ! CanSupportFeature ( FEATURE_HD ) ;
}
bool CWallet : : CanGetAddresses ( bool internal )
{
LOCK ( cs_wallet ) ;
// Check if the keypool has keys
bool keypool_has_keys ;
if ( internal & & CanSupportFeature ( FEATURE_HD_SPLIT ) ) {
keypool_has_keys = setInternalKeyPool . size ( ) > 0 ;
} else {
keypool_has_keys = KeypoolCountExternalKeys ( ) > 0 ;
}
// If the keypool doesn't have keys, check if we can generate them
if ( ! keypool_has_keys ) {
return CanGenerateKeys ( ) ;
}
return keypool_has_keys ;
}
2017-02-16 10:22:18 -03:00
void CWallet : : SetWalletFlag ( uint64_t flags )
{
LOCK ( cs_wallet ) ;
m_wallet_flags | = flags ;
if ( ! WalletBatch ( * database ) . WriteWalletFlags ( m_wallet_flags ) )
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing wallet flags failed " ) ;
}
2019-02-06 23:26:55 -03:00
void CWallet : : UnsetWalletFlag ( uint64_t flag )
2019-05-18 06:01:56 -04:00
{
WalletBatch batch ( * database ) ;
UnsetWalletFlagWithDB ( batch , flag ) ;
}
void CWallet : : UnsetWalletFlagWithDB ( WalletBatch & batch , uint64_t flag )
2019-02-06 23:26:55 -03:00
{
LOCK ( cs_wallet ) ;
m_wallet_flags & = ~ flag ;
2019-05-18 06:01:56 -04:00
if ( ! batch . WriteWalletFlags ( m_wallet_flags ) )
2019-02-06 23:26:55 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing wallet flags failed " ) ;
}
2018-08-02 03:43:55 -04:00
bool CWallet : : IsWalletFlagSet ( uint64_t flag ) const
2017-02-16 10:22:18 -03:00
{
return ( m_wallet_flags & flag ) ;
}
2017-05-05 03:53:39 -03:00
bool CWallet : : SetWalletFlags ( uint64_t overwriteFlags , bool memonly )
2017-02-16 10:22:18 -03:00
{
LOCK ( cs_wallet ) ;
m_wallet_flags = overwriteFlags ;
2019-05-24 01:55:27 -04:00
if ( ( ( overwriteFlags & KNOWN_WALLET_FLAGS ) > > 32 ) ^ ( overwriteFlags > > 32 ) ) {
2017-05-05 03:53:39 -03:00
// contains unknown non-tolerable wallet flags
return false ;
}
2017-02-16 10:22:18 -03:00
if ( ! memonly & & ! WalletBatch ( * database ) . WriteWalletFlags ( m_wallet_flags ) ) {
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing wallet flags failed " ) ;
}
2017-05-05 03:53:39 -03:00
return true ;
2017-02-16 10:22:18 -03:00
}
2013-04-13 02:13:08 -03:00
int64_t CWalletTx : : GetTxTime ( ) const
2011-06-26 13:23:24 -04:00
{
2013-04-13 02:13:08 -03:00
int64_t n = nTimeSmart ;
2012-05-28 14:45:12 -04:00
return n ? n : nTimeReceived ;
2011-06-26 13:23:24 -04:00
}
2018-07-14 22:19:44 -04:00
// Helper for producing a max-sized low-S low-R signature (eg 71 bytes)
2018-08-07 19:59:53 -04:00
// or a max-sized low-S signature (e.g. 72 bytes) if use_max_sig is true
bool CWallet : : DummySignInput ( CTxIn & tx_in , const CTxOut & txout , bool use_max_sig ) const
2018-03-05 18:37:24 -03:00
{
// Fill in dummy signatures for fee calculation.
const CScript & scriptPubKey = txout . scriptPubKey ;
SignatureData sigdata ;
2018-08-07 19:59:53 -04:00
if ( ! ProduceSignature ( * this , use_max_sig ? DUMMY_MAXIMUM_SIGNATURE_CREATOR : DUMMY_SIGNATURE_CREATOR , scriptPubKey , sigdata ) ) {
2018-03-05 18:37:24 -03:00
return false ;
}
2018-08-07 19:59:53 -04:00
UpdateInput ( tx_in , sigdata ) ;
2018-03-05 18:37:24 -03:00
return true ;
}
2018-07-14 22:19:44 -04:00
// Helper for producing a bunch of max-sized low-S low-R signatures (eg 71 bytes)
2018-08-07 19:59:53 -04:00
bool CWallet : : DummySignTx ( CMutableTransaction & txNew , const std : : vector < CTxOut > & txouts , bool use_max_sig ) const
2018-03-05 18:37:24 -03:00
{
// Fill in dummy signatures for fee calculation.
int nIn = 0 ;
for ( const auto & txout : txouts )
{
2018-08-07 19:59:53 -04:00
if ( ! DummySignInput ( txNew . vin [ nIn ] , txout , use_max_sig ) ) {
2018-03-05 18:37:24 -03:00
return false ;
}
nIn + + ;
}
return true ;
}
2019-06-27 21:17:42 -04:00
bool CWallet : : ImportScripts ( const std : : set < CScript > scripts , int64_t timestamp )
2019-04-04 06:12:50 -03:00
{
WalletBatch batch ( * database ) ;
for ( const auto & entry : scripts ) {
2019-07-16 18:51:39 -04:00
CScriptID id ( entry ) ;
if ( HaveCScript ( id ) ) {
WalletLogPrintf ( " Already have script %s, skipping \n " , HexStr ( entry ) ) ;
continue ;
}
if ( ! AddCScriptWithDB ( batch , entry ) ) {
2019-04-04 06:12:50 -03:00
return false ;
}
2019-06-27 21:17:42 -04:00
if ( timestamp > 0 ) {
m_script_metadata [ CScriptID ( entry ) ] . nCreateTime = timestamp ;
}
2019-04-04 06:12:50 -03:00
}
2019-06-27 21:17:42 -04:00
if ( timestamp > 0 ) {
UpdateTimeFirstKey ( timestamp ) ;
2019-04-04 06:12:50 -03:00
}
2019-06-27 21:17:42 -04:00
2019-04-04 06:12:50 -03:00
return true ;
}
bool CWallet : : ImportPrivKeys ( const std : : map < CKeyID , CKey > & privkey_map , const int64_t timestamp )
{
WalletBatch batch ( * database ) ;
for ( const auto & entry : privkey_map ) {
const CKey & key = entry . second ;
CPubKey pubkey = key . GetPubKey ( ) ;
const CKeyID & id = entry . first ;
assert ( key . VerifyPubKey ( pubkey ) ) ;
2019-07-16 18:51:39 -04:00
// Skip if we already have the key
if ( HaveKey ( id ) ) {
WalletLogPrintf ( " Already have key with pubkey %s, skipping \n " , HexStr ( pubkey ) ) ;
continue ;
}
2019-04-04 06:12:50 -03:00
mapKeyMetadata [ id ] . nCreateTime = timestamp ;
// If the private key is not present in the wallet, insert it.
2019-07-16 18:51:39 -04:00
if ( ! AddKeyPubKeyWithDB ( batch , key , pubkey ) ) {
2019-04-04 06:12:50 -03:00
return false ;
}
UpdateTimeFirstKey ( timestamp ) ;
}
return true ;
}
bool CWallet : : ImportPubKeys ( const std : : vector < CKeyID > & ordered_pubkeys , const std : : map < CKeyID , CPubKey > & pubkey_map , const std : : map < CKeyID , std : : pair < CPubKey , KeyOriginInfo > > & key_origins , const bool add_keypool , const bool internal , const int64_t timestamp )
{
WalletBatch batch ( * database ) ;
for ( const auto & entry : key_origins ) {
AddKeyOriginWithDB ( batch , entry . second . first , entry . second . second ) ;
}
for ( const CKeyID & id : ordered_pubkeys ) {
auto entry = pubkey_map . find ( id ) ;
if ( entry = = pubkey_map . end ( ) ) {
continue ;
}
const CPubKey & pubkey = entry - > second ;
CPubKey temp ;
2019-07-16 18:51:39 -04:00
if ( GetPubKey ( id , temp ) ) {
// Already have pubkey, skipping
WalletLogPrintf ( " Already have pubkey %s, skipping \n " , HexStr ( temp ) ) ;
continue ;
}
if ( ! AddWatchOnlyWithDB ( batch , GetScriptForRawPubKey ( pubkey ) , timestamp ) ) {
2019-04-04 06:12:50 -03:00
return false ;
}
mapKeyMetadata [ id ] . nCreateTime = timestamp ;
// Add to keypool only works with pubkeys
if ( add_keypool ) {
AddKeypoolPubkeyWithDB ( pubkey , internal , batch ) ;
NotifyCanGetAddressesChanged ( ) ;
}
}
return true ;
}
2019-07-11 20:21:05 -04:00
bool CWallet : : ImportScriptPubKeys ( const std : : string & label , const std : : set < CScript > & script_pub_keys , const bool have_solving_data , const bool apply_label , const int64_t timestamp )
2019-04-04 06:12:50 -03:00
{
WalletBatch batch ( * database ) ;
for ( const CScript & script : script_pub_keys ) {
if ( ! have_solving_data | | ! : : IsMine ( * this , script ) ) { // Always call AddWatchOnly for non-solvable watch-only, so that watch timestamp gets updated
if ( ! AddWatchOnlyWithDB ( batch , script , timestamp ) ) {
return false ;
}
}
CTxDestination dest ;
ExtractDestination ( script , dest ) ;
2019-07-11 20:21:05 -04:00
if ( apply_label & & IsValidDestination ( dest ) ) {
2019-04-04 06:33:02 -03:00
SetAddressBookWithDB ( batch , dest , label , " receive " ) ;
2019-04-04 06:12:50 -03:00
}
}
return true ;
}
2018-08-07 19:59:53 -04:00
int64_t CalculateMaximumSignedTxSize ( const CTransaction & tx , const CWallet * wallet , bool use_max_sig )
2018-03-05 18:37:24 -03:00
{
std : : vector < CTxOut > txouts ;
// Look up the inputs. We should have already checked that this transaction
// IsAllFromMe(ISMINE_SPENDABLE), so every input should already be in our
// wallet, with a valid index into the vout array, and the ability to sign.
2018-06-18 01:58:28 -04:00
for ( const CTxIn & input : tx . vin ) {
2018-03-05 18:37:24 -03:00
const auto mi = wallet - > mapWallet . find ( input . prevout . hash ) ;
if ( mi = = wallet - > mapWallet . end ( ) ) {
return - 1 ;
}
assert ( input . prevout . n < mi - > second . tx - > vout . size ( ) ) ;
txouts . emplace_back ( mi - > second . tx - > vout [ input . prevout . n ] ) ;
}
2018-08-07 19:59:53 -04:00
return CalculateMaximumSignedTxSize ( tx , wallet , txouts , use_max_sig ) ;
2018-03-05 18:37:24 -03:00
}
// txouts needs to be in the order of tx.vin
2018-08-07 19:59:53 -04:00
int64_t CalculateMaximumSignedTxSize ( const CTransaction & tx , const CWallet * wallet , const std : : vector < CTxOut > & txouts , bool use_max_sig )
2018-03-05 18:37:24 -03:00
{
CMutableTransaction txNew ( tx ) ;
2018-08-07 19:59:53 -04:00
if ( ! wallet - > DummySignTx ( txNew , txouts , use_max_sig ) ) {
2018-03-05 18:37:24 -03:00
// This should never happen, because IsAllFromMe(ISMINE_SPENDABLE)
// implies that we can sign for every input.
return - 1 ;
}
2018-12-10 03:03:07 -03:00
return GetVirtualTransactionSize ( CTransaction ( txNew ) ) ;
2018-03-05 18:37:24 -03:00
}
2018-08-07 19:59:53 -04:00
int CalculateMaximumSignedInputSize ( const CTxOut & txout , const CWallet * wallet , bool use_max_sig )
2018-03-05 18:37:24 -03:00
{
CMutableTransaction txn ;
txn . vin . push_back ( CTxIn ( COutPoint ( ) ) ) ;
2018-08-07 19:59:53 -04:00
if ( ! wallet - > DummySignInput ( txn . vin [ 0 ] , txout , use_max_sig ) ) {
2018-03-05 18:37:24 -03:00
return - 1 ;
}
return GetVirtualTransactionInputSize ( txn . vin [ 0 ] ) ;
}
2017-01-26 22:33:45 -03:00
void CWalletTx : : GetAmounts ( std : : list < COutputEntry > & listReceived ,
2018-07-31 12:23:26 -04:00
std : : list < COutputEntry > & listSent , CAmount & nFee , const isminefilter & filter ) const
2011-06-26 13:23:24 -04:00
{
2012-06-01 22:33:28 -04:00
nFee = 0 ;
2011-06-26 13:23:24 -04:00
listReceived . clear ( ) ;
listSent . clear ( ) ;
// Compute fee:
2014-04-22 19:46:19 -03:00
CAmount nDebit = GetDebit ( filter ) ;
2011-06-26 13:23:24 -04:00
if ( nDebit > 0 ) // debit>0 means we signed/sent this transaction
{
2016-11-11 21:54:51 -03:00
CAmount nValueOut = tx - > GetValueOut ( ) ;
2011-06-26 13:23:24 -04:00
nFee = nDebit - nValueOut ;
}
2011-10-03 14:05:43 -03:00
// Sent/received.
2016-11-11 21:54:51 -03:00
for ( unsigned int i = 0 ; i < tx - > vout . size ( ) ; + + i )
2011-06-26 13:23:24 -04:00
{
2016-11-11 21:54:51 -03:00
const CTxOut & txout = tx - > vout [ i ] ;
2014-04-29 13:39:01 -04:00
isminetype fIsMine = pwallet - > IsMine ( txout ) ;
2012-09-22 00:20:14 -03:00
// Only need to handle txouts if AT LEAST one of these is true:
// 1) they debit from us (sent)
// 2) the output is to us (received)
if ( nDebit > 0 )
{
// Don't report 'change' txouts
if ( pwallet - > IsChange ( txout ) )
continue ;
}
2014-04-29 13:39:01 -04:00
else if ( ! ( fIsMine & filter ) )
2012-09-22 00:20:14 -03:00
continue ;
// In either case, we need to get the destination address
2012-05-14 17:44:52 -04:00
CTxDestination address ;
2015-12-11 23:07:11 -03:00
2015-12-12 15:45:53 -03:00
if ( ! ExtractDestination ( txout . scriptPubKey , address ) & & ! txout . scriptPubKey . IsUnspendable ( ) )
2011-06-26 13:23:24 -04:00
{
2018-06-15 19:02:52 -04:00
pwallet - > WalletLogPrintf ( " CWalletTx::GetAmounts: Unknown transaction type found, txid %s \n " ,
this - > GetHash ( ) . ToString ( ) ) ;
2012-09-22 00:20:14 -03:00
address = CNoDestination ( ) ;
2011-06-26 13:23:24 -04:00
}
2014-07-18 07:24:38 -04:00
COutputEntry output = { address , txout . nValue , ( int ) i } ;
2014-05-29 18:54:00 -04:00
2012-09-22 00:20:14 -03:00
// If we are debited by the transaction, add the output as a "sent" entry
2011-06-26 13:23:24 -04:00
if ( nDebit > 0 )
2014-05-29 18:54:00 -04:00
listSent . push_back ( output ) ;
2011-06-26 13:23:24 -04:00
2012-09-22 00:20:14 -03:00
// If we are receiving the output, add it as a "received" entry
2014-07-12 11:15:17 -04:00
if ( fIsMine & filter )
2014-05-29 18:54:00 -04:00
listReceived . push_back ( output ) ;
2011-06-26 13:23:24 -04:00
}
}
2017-03-02 17:24:50 -03:00
/**
* Scan active chain for relevant transactions after importing keys . This should
* be called whenever new keys are added to the wallet , with the oldest key
2017-06-22 17:16:24 -04:00
* creation time .
2017-03-02 17:24:50 -03:00
*
* @ return Earliest timestamp that could be successfully scanned from . Timestamp
2017-06-22 17:14:40 -04:00
* returned will be higher than startTime if relevant blocks could not be read .
2017-03-02 17:24:50 -03:00
*/
2017-12-12 20:13:58 -03:00
int64_t CWallet : : RescanFromTime ( int64_t startTime , const WalletRescanReserver & reserver , bool update )
2017-03-02 17:24:50 -03:00
{
// Find starting block. May be null if nCreateTime is greater than the
// highest blockchain timestamp, in which case there is nothing that needs
// to be scanned.
2019-01-08 04:38:53 -03:00
uint256 start_block ;
2017-09-07 20:29:59 -03:00
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
2019-03-26 13:46:22 -03:00
const Optional < int > start_height = locked_chain - > findFirstBlockWithTimeAndHeight ( startTime - TIMESTAMP_WINDOW , 0 , & start_block ) ;
2019-01-08 04:38:53 -03:00
const Optional < int > tip_height = locked_chain - > getHeight ( ) ;
WalletLogPrintf ( " %s: Rescanning last %i blocks \n " , __func__ , tip_height & & start_height ? * tip_height - * start_height + 1 : 0 ) ;
2017-09-07 20:29:59 -03:00
}
2017-03-02 17:24:50 -03:00
2019-01-08 04:38:53 -03:00
if ( ! start_block . IsNull ( ) ) {
2018-04-29 12:45:44 -03:00
// TODO: this should take into account failure by ScanResult::USER_ABORT
2019-01-08 04:38:53 -03:00
ScanResult result = ScanForWalletTransactions ( start_block , { } /* stop_block */ , reserver , update ) ;
if ( result . status = = ScanResult : : FAILURE ) {
int64_t time_max ;
2019-01-31 19:42:56 -03:00
if ( ! chain ( ) . findBlock ( result . last_failed_block , nullptr /* block */ , nullptr /* time */ , & time_max ) ) {
2019-01-08 04:38:53 -03:00
throw std : : logic_error ( " ScanForWalletTransactions returned invalid block hash " ) ;
}
return time_max + TIMESTAMP_WINDOW + 1 ;
2017-03-02 17:24:50 -03:00
}
}
return startTime ;
}
2014-10-26 04:03:12 -03:00
/**
2019-01-08 04:38:53 -03:00
* Scan the block chain ( starting in start_block ) for transactions
2014-10-26 04:03:12 -03:00
* from or to us . If fUpdate is true , found transactions that already
* exist in the wallet will be updated .
2017-02-16 12:49:03 -03:00
*
2019-02-01 18:15:13 -03:00
* @ param [ in ] start_block Scan starting block . If block is not on the active
* chain , the scan will return SUCCESS immediately .
* @ param [ in ] stop_block Scan ending block . If block is not on the active
* chain , the scan will continue until it reaches the
* chain tip .
2015-11-19 12:05:37 -03:00
*
2019-01-31 19:48:51 -03:00
* @ return ScanResult returning scan information and indicating success or
* failure . Return status will be set to SUCCESS if scan was
* successful . FAILURE if a complete rescan was not possible ( due to
* pruning or corruption ) . USER_ABORT if the rescan was aborted before
* it could complete .
2017-09-07 20:29:59 -03:00
*
2019-01-08 04:38:53 -03:00
* @ pre Caller needs to make sure start_block ( and the optional stop_block ) are on
2017-09-07 20:29:59 -03:00
* the main chain after to the addition of any new keys you want to detect
* transactions for .
2014-10-26 04:03:12 -03:00
*/
2019-01-08 04:38:53 -03:00
CWallet : : ScanResult CWallet : : ScanForWalletTransactions ( const uint256 & start_block , const uint256 & stop_block , const WalletRescanReserver & reserver , bool fUpdate )
2011-06-26 13:23:24 -04:00
{
2014-02-17 21:35:37 -03:00
int64_t nNow = GetTime ( ) ;
2019-04-27 10:15:56 -04:00
int64_t start_time = GetTimeMillis ( ) ;
2011-06-26 13:23:24 -04:00
2017-12-12 20:13:58 -03:00
assert ( reserver . isReserved ( ) ) ;
2015-11-19 12:05:37 -03:00
2019-01-08 04:38:53 -03:00
uint256 block_hash = start_block ;
ScanResult result ;
2018-04-09 13:48:19 -03:00
2019-01-08 04:38:53 -03:00
WalletLogPrintf ( " Rescan started from block %s... \n " , start_block . ToString ( ) ) ;
2018-04-09 13:48:19 -03:00
2019-04-27 10:16:33 -04:00
fAbortRescan = false ;
2019-06-28 14:09:58 -04:00
ShowProgress ( strprintf ( " %s " + _ ( " Rescanning... " ) . translated , GetDisplayName ( ) ) , 0 ) ; // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
2019-04-27 10:16:33 -04:00
uint256 tip_hash ;
// The way the 'block_height' is initialized is just a workaround for the gcc bug #47679 since version 4.6.0.
Optional < int > block_height = MakeOptional ( false , int ( ) ) ;
double progress_begin ;
double progress_end ;
2011-06-26 13:23:24 -04:00
{
2019-04-27 10:16:33 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
if ( Optional < int > tip_height = locked_chain - > getHeight ( ) ) {
tip_hash = locked_chain - > getBlockHash ( * tip_height ) ;
}
block_height = locked_chain - > getBlockHeight ( block_hash ) ;
progress_begin = chain ( ) . guessVerificationProgress ( block_hash ) ;
progress_end = chain ( ) . guessVerificationProgress ( stop_block . IsNull ( ) ? tip_hash : stop_block ) ;
}
double progress_current = progress_begin ;
while ( block_height & & ! fAbortRescan & & ! chain ( ) . shutdownRequested ( ) ) {
2019-04-03 13:05:52 -03:00
m_scanning_progress = ( progress_current - progress_begin ) / ( progress_end - progress_begin ) ;
2019-04-27 10:16:33 -04:00
if ( * block_height % 100 = = 0 & & progress_end - progress_begin > 0.0 ) {
2019-06-28 14:09:58 -04:00
ShowProgress ( strprintf ( " %s " + _ ( " Rescanning... " ) . translated , GetDisplayName ( ) ) , std : : max ( 1 , std : : min ( 99 , ( int ) ( m_scanning_progress * 100 ) ) ) ) ;
2019-04-27 10:16:33 -04:00
}
if ( GetTime ( ) > = nNow + 60 ) {
nNow = GetTime ( ) ;
WalletLogPrintf ( " Still rescanning. At block %d. Progress=%f \n " , * block_height , progress_current ) ;
2017-09-07 20:29:59 -03:00
}
2013-06-10 09:38:13 -04:00
2019-04-27 10:16:33 -04:00
CBlock block ;
if ( chain ( ) . findBlock ( block_hash , & block ) & & ! block . IsNull ( ) ) {
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
if ( ! locked_chain - > getBlockHeight ( block_hash ) ) {
// Abort scan if current block is no longer active, to prevent
// marking transactions as coming from the wrong block.
// TODO: This should return success instead of failure, see
// https://github.com/bitcoin/bitcoin/pull/14711#issuecomment-458342518
2019-01-31 19:42:56 -03:00
result . last_failed_block = block_hash ;
2019-01-08 04:38:53 -03:00
result . status = ScanResult : : FAILURE ;
2019-04-27 10:16:33 -04:00
break ;
}
for ( size_t posInBlock = 0 ; posInBlock < block . vtx . size ( ) ; + + posInBlock ) {
2019-08-12 18:12:12 -04:00
SyncTransaction ( block . vtx [ posInBlock ] , CWalletTx : : Status : : CONFIRMED , block_hash , posInBlock , fUpdate ) ;
2011-06-26 13:23:24 -04:00
}
2019-04-27 10:16:33 -04:00
// scan succeeded, record block as most recent successfully scanned
result . last_scanned_block = block_hash ;
result . last_scanned_height = * block_height ;
} else {
// could not scan block, keep scanning but record this block as the most recent failure
result . last_failed_block = block_hash ;
result . status = ScanResult : : FAILURE ;
}
if ( block_hash = = stop_block ) {
break ;
}
{
auto locked_chain = chain ( ) . lock ( ) ;
Optional < int > tip_height = locked_chain - > getHeight ( ) ;
if ( ! tip_height | | * tip_height < = block_height | | ! locked_chain - > getBlockHeight ( block_hash ) ) {
// break successfully when rescan has reached the tip, or
// previous block is no longer on the chain due to a reorg
2015-11-19 12:05:37 -03:00
break ;
}
2019-01-08 04:38:53 -03:00
2019-04-27 10:16:33 -04:00
// increment block and verification progress
block_hash = locked_chain - > getBlockHash ( + + * block_height ) ;
progress_current = chain ( ) . guessVerificationProgress ( block_hash ) ;
2019-01-08 04:38:53 -03:00
2019-04-27 10:16:33 -04:00
// handle updated tip hash
const uint256 prev_tip_hash = tip_hash ;
tip_hash = locked_chain - > getBlockHash ( * tip_height ) ;
if ( stop_block . IsNull ( ) & & prev_tip_hash ! = tip_hash ) {
// in case the tip has changed, update progress max
progress_end = chain ( ) . guessVerificationProgress ( tip_hash ) ;
2017-09-07 20:29:59 -03:00
}
2011-06-26 13:23:24 -04:00
}
2019-04-27 10:16:33 -04:00
}
2019-06-28 14:09:58 -04:00
ShowProgress ( strprintf ( " %s " + _ ( " Rescanning... " ) . translated , GetDisplayName ( ) ) , 100 ) ; // hide progress dialog in GUI
2019-04-27 10:16:33 -04:00
if ( block_height & & fAbortRescan ) {
WalletLogPrintf ( " Rescan aborted at block %d. Progress=%f \n " , * block_height , progress_current ) ;
result . status = ScanResult : : USER_ABORT ;
} else if ( block_height & & chain ( ) . shutdownRequested ( ) ) {
WalletLogPrintf ( " Rescan interrupted by shutdown request at block %d. Progress=%f \n " , * block_height , progress_current ) ;
result . status = ScanResult : : USER_ABORT ;
} else {
WalletLogPrintf ( " Rescan completed in %15dms \n " , GetTimeMillis ( ) - start_time ) ;
2011-06-26 13:23:24 -04:00
}
2019-01-08 04:38:53 -03:00
return result ;
2011-06-26 13:23:24 -04:00
}
2019-03-27 13:59:47 -03:00
void CWallet : : ReacceptWalletTransactions ( interfaces : : Chain : : Lock & locked_chain )
2011-06-26 13:23:24 -04:00
{
2015-04-28 11:48:28 -03:00
// If transactions aren't being broadcasted, don't let them into local mempool either
2015-03-27 06:34:48 -03:00
if ( ! fBroadcastTransactions )
return ;
2014-12-19 02:59:16 -03:00
std : : map < int64_t , CWalletTx * > mapSorted ;
// Sort pending wallet transactions based on their initial wallet insertion order
2019-04-11 11:58:53 -04:00
for ( std : : pair < const uint256 , CWalletTx > & item : mapWallet ) {
2014-02-15 18:38:28 -03:00
const uint256 & wtxid = item . first ;
CWalletTx & wtx = item . second ;
assert ( wtx . GetHash ( ) = = wtxid ) ;
2011-06-26 13:23:24 -04:00
2019-03-27 13:59:47 -03:00
int nDepth = wtx . GetDepthInMainChain ( locked_chain ) ;
2014-02-15 18:38:28 -03:00
2016-01-07 18:31:27 -03:00
if ( ! wtx . IsCoinBase ( ) & & ( nDepth = = 0 & & ! wtx . isAbandoned ( ) ) ) {
2014-12-19 02:59:16 -03:00
mapSorted . insert ( std : : make_pair ( wtx . nOrderPos , & wtx ) ) ;
2011-06-26 13:23:24 -04:00
}
}
2014-12-19 02:59:16 -03:00
// Try to add wallet transactions to memory pool
2018-06-18 01:58:28 -04:00
for ( const std : : pair < const int64_t , CWalletTx * > & item : mapSorted ) {
2014-12-19 02:59:16 -03:00
CWalletTx & wtx = * ( item . second ) ;
2019-04-11 11:58:53 -04:00
std : : string unused_err_string ;
2019-08-09 11:07:30 -04:00
wtx . SubmitMemoryPoolAndRelay ( unused_err_string , false , locked_chain ) ;
2014-12-19 02:59:16 -03:00
}
2011-06-26 13:23:24 -04:00
}
2019-08-09 11:07:30 -04:00
bool CWalletTx : : SubmitMemoryPoolAndRelay ( std : : string & err_string , bool relay , interfaces : : Chain : : Lock & locked_chain )
2011-06-26 13:23:24 -04:00
{
2019-03-26 15:56:40 -03:00
// Can't relay if wallet is not broadcasting
if ( ! pwallet - > GetBroadcastTransactions ( ) ) return false ;
// Don't relay abandoned transactions
if ( isAbandoned ( ) ) return false ;
2019-08-06 14:38:34 -04:00
// Don't try to submit coinbase transactions. These would fail anyway but would
// cause log spam.
if ( IsCoinBase ( ) ) return false ;
2019-08-09 11:07:30 -04:00
// Don't try to submit conflicted or confirmed transactions.
if ( GetDepthInMainChain ( locked_chain ) ! = 0 ) return false ;
2019-03-26 15:56:40 -03:00
2019-04-11 11:58:53 -04:00
// Submit transaction to mempool for relay
pwallet - > WalletLogPrintf ( " Submitting wtx %s to mempool for relay \n " , GetHash ( ) . ToString ( ) ) ;
// We must set fInMempool here - while it will be re-set to true by the
// entered-mempool callback, if we did not there would be a race where a
// user could call sendmoney in a loop and hit spurious out of funds errors
// because we think that this newly generated transaction's change is
// unavailable as we're not yet aware that it is in the mempool.
//
// Irrespective of the failure reason, un-marking fInMempool
// out-of-order is incorrect - it should be unmarked when
// TransactionRemovedFromMempool fires.
bool ret = pwallet - > chain ( ) . broadcastTransaction ( tx , err_string , pwallet - > m_default_max_tx_fee , relay ) ;
fInMempool | = ret ;
return ret ;
2011-06-26 13:23:24 -04:00
}
2017-01-26 22:33:45 -03:00
std : : set < uint256 > CWalletTx : : GetConflicts ( ) const
2014-02-13 22:12:51 -03:00
{
2017-01-26 22:33:45 -03:00
std : : set < uint256 > result ;
2017-08-07 01:36:37 -04:00
if ( pwallet ! = nullptr )
2014-02-13 22:12:51 -03:00
{
uint256 myHash = GetHash ( ) ;
2014-07-17 08:09:46 -04:00
result = pwallet - > GetConflicts ( myHash ) ;
2014-02-13 22:12:51 -03:00
result . erase ( myHash ) ;
}
return result ;
}
2019-04-09 22:40:35 -04:00
CAmount CWalletTx : : GetCachableAmount ( AmountType type , const isminefilter & filter , bool recalculate ) const
{
auto & amount = m_amounts [ type ] ;
if ( recalculate | | ! amount . m_cached [ filter ] ) {
amount . Set ( filter , type = = DEBIT ? pwallet - > GetDebit ( * tx , filter ) : pwallet - > GetCredit ( * tx , filter ) ) ;
}
return amount . m_value [ filter ] ;
}
2014-12-18 22:00:01 -03:00
CAmount CWalletTx : : GetDebit ( const isminefilter & filter ) const
{
2016-11-11 21:54:51 -03:00
if ( tx - > vin . empty ( ) )
2014-12-18 22:00:01 -03:00
return 0 ;
CAmount debit = 0 ;
2019-04-09 22:40:35 -04:00
if ( filter & ISMINE_SPENDABLE ) {
debit + = GetCachableAmount ( DEBIT , ISMINE_SPENDABLE ) ;
2014-12-18 22:00:01 -03:00
}
2019-04-09 22:40:35 -04:00
if ( filter & ISMINE_WATCH_ONLY ) {
debit + = GetCachableAmount ( DEBIT , ISMINE_WATCH_ONLY ) ;
2014-12-18 22:00:01 -03:00
}
return debit ;
}
2017-07-31 15:30:21 -04:00
CAmount CWalletTx : : GetCredit ( interfaces : : Chain : : Lock & locked_chain , const isminefilter & filter ) const
2014-12-18 22:00:01 -03:00
{
// Must wait until coinbase is safely deep enough in the chain before valuing it
2017-07-31 15:30:21 -04:00
if ( IsImmatureCoinBase ( locked_chain ) )
2014-12-18 22:00:01 -03:00
return 0 ;
2016-11-15 11:19:23 -03:00
CAmount credit = 0 ;
2019-04-09 22:40:35 -04:00
if ( filter & ISMINE_SPENDABLE ) {
2014-12-18 22:00:01 -03:00
// GetBalance can assume transactions in mapWallet won't change
2019-04-09 22:40:35 -04:00
credit + = GetCachableAmount ( CREDIT , ISMINE_SPENDABLE ) ;
2014-12-18 22:00:01 -03:00
}
2019-04-09 22:40:35 -04:00
if ( filter & ISMINE_WATCH_ONLY ) {
credit + = GetCachableAmount ( CREDIT , ISMINE_WATCH_ONLY ) ;
2014-12-18 22:00:01 -03:00
}
return credit ;
}
2017-07-31 15:30:21 -04:00
CAmount CWalletTx : : GetImmatureCredit ( interfaces : : Chain : : Lock & locked_chain , bool fUseCache ) const
2014-12-18 22:00:01 -03:00
{
2017-07-31 15:30:21 -04:00
if ( IsImmatureCoinBase ( locked_chain ) & & IsInMainChain ( locked_chain ) ) {
2019-04-09 22:40:35 -04:00
return GetCachableAmount ( IMMATURE_CREDIT , ISMINE_SPENDABLE , ! fUseCache ) ;
2014-12-18 22:00:01 -03:00
}
return 0 ;
}
2017-07-31 15:30:21 -04:00
CAmount CWalletTx : : GetAvailableCredit ( interfaces : : Chain : : Lock & locked_chain , bool fUseCache , const isminefilter & filter ) const
2014-12-18 22:00:01 -03:00
{
2017-06-21 15:10:00 -04:00
if ( pwallet = = nullptr )
2014-12-18 22:00:01 -03:00
return 0 ;
2019-04-09 22:40:35 -04:00
// Avoid caching ismine for NO or ALL cases (could remove this check and simplify in the future).
2018-09-13 01:53:19 -03:00
bool allow_cache = ( filter & ISMINE_ALL ) & & ( filter & ISMINE_ALL ) ! = ISMINE_ALL ;
2019-04-09 22:40:35 -04:00
2014-12-18 22:00:01 -03:00
// Must wait until coinbase is safely deep enough in the chain before valuing it
2017-07-31 15:30:21 -04:00
if ( IsImmatureCoinBase ( locked_chain ) )
2014-12-18 22:00:01 -03:00
return 0 ;
2019-04-09 22:40:35 -04:00
if ( fUseCache & & allow_cache & & m_amounts [ AVAILABLE_CREDIT ] . m_cached [ filter ] ) {
return m_amounts [ AVAILABLE_CREDIT ] . m_value [ filter ] ;
2018-06-25 14:39:36 -04:00
}
2014-12-18 22:00:01 -03:00
2018-09-13 01:53:19 -03:00
bool allow_used_addresses = ( filter & ISMINE_USED ) | | ! pwallet - > IsWalletFlagSet ( WALLET_FLAG_AVOID_REUSE ) ;
2014-12-18 22:00:01 -03:00
CAmount nCredit = 0 ;
uint256 hashTx = GetHash ( ) ;
2016-11-11 21:54:51 -03:00
for ( unsigned int i = 0 ; i < tx - > vout . size ( ) ; i + + )
2014-12-18 22:00:01 -03:00
{
2018-09-13 01:53:19 -03:00
if ( ! pwallet - > IsSpent ( locked_chain , hashTx , i ) & & ( allow_used_addresses | | ! pwallet - > IsUsedDestination ( hashTx , i ) ) ) {
2016-11-11 21:54:51 -03:00
const CTxOut & txout = tx - > vout [ i ] ;
2018-06-25 14:39:36 -04:00
nCredit + = pwallet - > GetCredit ( txout , filter ) ;
2014-12-18 22:00:01 -03:00
if ( ! MoneyRange ( nCredit ) )
2017-07-04 15:22:53 -04:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : value out of range " ) ;
2014-12-18 22:00:01 -03:00
}
}
2019-04-09 22:40:35 -04:00
if ( allow_cache ) {
m_amounts [ AVAILABLE_CREDIT ] . Set ( filter , nCredit ) ;
2018-06-25 14:39:36 -04:00
}
2019-04-09 22:40:35 -04:00
2014-12-18 22:00:01 -03:00
return nCredit ;
}
2017-07-31 15:30:21 -04:00
CAmount CWalletTx : : GetImmatureWatchOnlyCredit ( interfaces : : Chain : : Lock & locked_chain , const bool fUseCache ) const
2014-12-18 22:00:01 -03:00
{
2017-07-31 15:30:21 -04:00
if ( IsImmatureCoinBase ( locked_chain ) & & IsInMainChain ( locked_chain ) ) {
2019-04-09 22:40:35 -04:00
return GetCachableAmount ( IMMATURE_CREDIT , ISMINE_WATCH_ONLY , ! fUseCache ) ;
2014-12-18 22:00:01 -03:00
}
return 0 ;
}
CAmount CWalletTx : : GetChange ( ) const
{
if ( fChangeCached )
return nChangeCached ;
2017-05-09 03:46:26 -03:00
nChangeCached = pwallet - > GetChange ( * tx ) ;
2014-12-18 22:00:01 -03:00
fChangeCached = true ;
return nChangeCached ;
}
2015-11-30 12:15:15 -03:00
bool CWalletTx : : InMempool ( ) const
{
Use callbacks to cache whether wallet transactions are in mempool
This avoid calling out to mempool state during coin selection,
balance calculation, etc. In the next commit we ensure all wallet
callbacks from CValidationInterface happen in the same queue,
serialized with each other. This helps to avoid re-introducing one
of the issues described in #9584 [1] by further disconnecting
wallet from current chain/mempool state.
Thanks to @morcos for the suggestion to do this.
Note that there are several race conditions introduced here:
* If a user calls sendrawtransaction from RPC, adding a
transaction which is "trusted" (ie from them) and pays them
change, it may not be immediately used by coin selection until
the notification callbacks finish running. No such race is
introduced in normal transaction-sending RPCs as this case is
explicitly handled.
* Until Block{Connected,Disconnected} and
TransactionAddedToMempool calls also run in the CSceduler
background thread, there is a race where
TransactionAddedToMempool might be called after a
Block{Connected,Disconnected} call happens.
* Wallet will write a new best chain from the SetBestChain
callback prior to having processed the transaction from that
block.
[1] "you could go to select coins, need to use 0-conf change, but
such 0-conf change may have been included in a block who's
callbacks have not yet been processed - resulting in thinking they
are not in mempool and, thus, not selectable."
2017-01-20 18:38:07 -03:00
return fInMempool ;
2015-11-30 12:15:15 -03:00
}
2017-07-31 15:30:21 -04:00
bool CWalletTx : : IsTrusted ( interfaces : : Chain : : Lock & locked_chain ) const
2019-08-30 16:25:41 -04:00
{
std : : set < uint256 > s ;
return IsTrusted ( locked_chain , s ) ;
}
bool CWalletTx : : IsTrusted ( interfaces : : Chain : : Lock & locked_chain , std : : set < uint256 > & trustedParents ) const
2014-12-18 22:00:01 -03:00
{
// Quick answer in most cases
2019-02-01 19:35:51 -03:00
if ( ! locked_chain . checkFinalTx ( * tx ) ) {
2014-12-18 22:00:01 -03:00
return false ;
2019-02-01 19:35:51 -03:00
}
2017-07-31 15:30:21 -04:00
int nDepth = GetDepthInMainChain ( locked_chain ) ;
2014-12-18 22:00:01 -03:00
if ( nDepth > = 1 )
return true ;
if ( nDepth < 0 )
return false ;
2018-04-07 13:12:46 -03:00
if ( ! pwallet - > m_spend_zero_conf_change | | ! IsFromMe ( ISMINE_ALL ) ) // using wtx's cached debit
2014-12-18 22:00:01 -03:00
return false ;
2015-11-26 14:42:07 -03:00
// Don't trust unconfirmed transactions from us unless they are in the mempool.
2015-11-30 12:15:15 -03:00
if ( ! InMempool ( ) )
return false ;
2015-11-26 14:42:07 -03:00
2014-12-18 22:00:01 -03:00
// Trusted if all inputs are from us and are in the mempool:
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : tx - > vin )
2014-12-18 22:00:01 -03:00
{
// Transactions not sent by us: not trusted
const CWalletTx * parent = pwallet - > GetWalletTx ( txin . prevout . hash ) ;
2017-08-07 01:36:37 -04:00
if ( parent = = nullptr )
2014-12-18 22:00:01 -03:00
return false ;
2016-11-11 21:54:51 -03:00
const CTxOut & parentOut = parent - > tx - > vout [ txin . prevout . n ] ;
2019-08-30 15:39:41 -04:00
// Check that this specific input being spent is trusted
2014-12-18 22:00:01 -03:00
if ( pwallet - > IsMine ( parentOut ) ! = ISMINE_SPENDABLE )
return false ;
2019-08-30 16:25:41 -04:00
// If we've already trusted this parent, continue
if ( trustedParents . count ( parent - > GetHash ( ) ) )
continue ;
2019-08-30 15:39:41 -04:00
// Recurse to check that the parent is also trusted
2019-08-30 16:25:41 -04:00
if ( ! parent - > IsTrusted ( locked_chain , trustedParents ) )
2019-08-30 15:39:41 -04:00
return false ;
2019-08-30 16:25:41 -04:00
trustedParents . insert ( parent - > GetHash ( ) ) ;
2014-12-18 22:00:01 -03:00
}
return true ;
}
2016-11-11 21:54:51 -03:00
bool CWalletTx : : IsEquivalentTo ( const CWalletTx & _tx ) const
2015-07-02 15:57:39 -03:00
{
2018-05-04 18:38:49 -03:00
CMutableTransaction tx1 { * this - > tx } ;
CMutableTransaction tx2 { * _tx . tx } ;
2017-05-18 03:42:14 -04:00
for ( auto & txin : tx1 . vin ) txin . scriptSig = CScript ( ) ;
for ( auto & txin : tx2 . vin ) txin . scriptSig = CScript ( ) ;
2015-07-02 15:57:39 -03:00
return CTransaction ( tx1 ) = = CTransaction ( tx2 ) ;
}
2019-03-20 18:46:38 -03:00
// Rebroadcast transactions from the wallet. We do this on a random timer
// to slightly obfuscate which transactions come from our wallet.
//
// Ideally, we'd only resend transactions that we think should have been
// mined in the most recent block. Any transaction that wasn't in the top
// blockweight of transactions in the mempool shouldn't have been mined,
// and so is probably just sitting in the mempool waiting to be confirmed.
// Rebroadcasting does nothing to speed up confirmation and only damages
// privacy.
2019-03-20 19:07:52 -03:00
void CWallet : : ResendWalletTransactions ( )
2011-06-26 13:23:24 -04:00
{
2019-03-20 18:46:38 -03:00
// During reindex, importing and IBD, old wallet transactions become
// unconfirmed. Don't resend them as that would spam other nodes.
if ( ! chain ( ) . isReadyToBroadcast ( ) ) return ;
2011-06-26 13:23:24 -04:00
// Do this infrequently and randomly to avoid giving away
// that these are our transactions.
2019-03-22 15:37:30 -03:00
if ( GetTime ( ) < nNextResend | | ! fBroadcastTransactions ) return ;
2013-04-19 18:28:25 -03:00
bool fFirst = ( nNextResend = = 0 ) ;
nNextResend = GetTime ( ) + GetRand ( 30 * 60 ) ;
2019-03-22 15:37:30 -03:00
if ( fFirst ) return ;
2011-06-26 13:23:24 -04:00
// Only do it if there's been a new block since last time
2019-03-28 14:15:47 -03:00
if ( m_best_block_time < nLastResend ) return ;
2013-04-19 18:28:25 -03:00
nLastResend = GetTime ( ) ;
2011-06-26 13:23:24 -04:00
2019-04-11 11:58:53 -04:00
int submitted_tx_count = 0 ;
2019-03-22 15:37:30 -03:00
2019-03-20 19:07:52 -03:00
{ // locked_chain and cs_wallet scope
auto locked_chain = chain ( ) . lock ( ) ;
2019-03-22 15:37:30 -03:00
LOCK ( cs_wallet ) ;
// Relay transactions
for ( std : : pair < const uint256 , CWalletTx > & item : mapWallet ) {
CWalletTx & wtx = item . second ;
2019-08-09 11:07:30 -04:00
// Attempt to rebroadcast all txes more than 5 minutes older than
// the last block. SubmitMemoryPoolAndRelay() will not rebroadcast
// any confirmed or conflicting txs.
2019-03-28 14:15:47 -03:00
if ( wtx . nTimeReceived > m_best_block_time - 5 * 60 ) continue ;
2019-04-11 11:58:53 -04:00
std : : string unused_err_string ;
2019-08-09 11:07:30 -04:00
if ( wtx . SubmitMemoryPoolAndRelay ( unused_err_string , true , * locked_chain ) ) + + submitted_tx_count ;
2019-03-22 15:37:30 -03:00
}
2019-03-20 19:07:52 -03:00
} // locked_chain and cs_wallet
2019-03-22 15:37:30 -03:00
2019-04-11 11:58:53 -04:00
if ( submitted_tx_count > 0 ) {
WalletLogPrintf ( " %s: resubmit %u unconfirmed transactions \n " , __func__ , submitted_tx_count ) ;
2019-03-22 15:37:30 -03:00
}
2011-06-26 13:23:24 -04:00
}
2014-10-26 04:03:12 -03:00
/** @} */ // end of mapWallet
2011-06-26 13:23:24 -04:00
2019-03-20 18:46:38 -03:00
void MaybeResendWalletTxs ( )
{
for ( const std : : shared_ptr < CWallet > & pwallet : GetWallets ( ) ) {
2019-03-20 19:07:52 -03:00
pwallet - > ResendWalletTransactions ( ) ;
2019-03-20 18:46:38 -03:00
}
}
2011-06-26 13:23:24 -04:00
2014-10-26 04:03:12 -03:00
/** @defgroup Actions
*
* @ {
*/
2011-06-26 13:23:24 -04:00
2018-09-13 01:53:19 -03:00
CWallet : : Balance CWallet : : GetBalance ( const int min_depth , bool avoid_reuse ) const
2011-06-26 13:23:24 -04:00
{
2019-03-11 17:12:58 -03:00
Balance ret ;
2019-06-25 13:18:12 -04:00
isminefilter reuse_filter = avoid_reuse ? ISMINE_NO : ISMINE_USED ;
2011-06-26 13:23:24 -04:00
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2019-08-30 16:31:11 -04:00
std : : set < uint256 > trustedParents ;
2017-06-04 16:02:43 -04:00
for ( const auto & entry : mapWallet )
2011-06-26 13:23:24 -04:00
{
2019-03-10 18:29:54 -03:00
const CWalletTx & wtx = entry . second ;
2019-08-30 16:31:11 -04:00
const bool is_trusted { wtx . IsTrusted ( * locked_chain , trustedParents ) } ;
2019-03-11 17:12:58 -03:00
const int tx_depth { wtx . GetDepthInMainChain ( * locked_chain ) } ;
2018-09-13 01:53:19 -03:00
const CAmount tx_credit_mine { wtx . GetAvailableCredit ( * locked_chain , /* fUseCache */ true , ISMINE_SPENDABLE | reuse_filter ) } ;
const CAmount tx_credit_watchonly { wtx . GetAvailableCredit ( * locked_chain , /* fUseCache */ true , ISMINE_WATCH_ONLY | reuse_filter ) } ;
2019-03-11 17:12:58 -03:00
if ( is_trusted & & tx_depth > = min_depth ) {
ret . m_mine_trusted + = tx_credit_mine ;
ret . m_watchonly_trusted + = tx_credit_watchonly ;
2018-06-25 14:39:36 -04:00
}
2019-03-11 17:12:58 -03:00
if ( ! is_trusted & & tx_depth = = 0 & & wtx . InMempool ( ) ) {
ret . m_mine_untrusted_pending + = tx_credit_mine ;
ret . m_watchonly_untrusted_pending + = tx_credit_watchonly ;
}
ret . m_mine_immature + = wtx . GetImmatureCredit ( * locked_chain ) ;
ret . m_watchonly_immature + = wtx . GetImmatureWatchOnlyCredit ( * locked_chain ) ;
2011-06-26 13:23:24 -04:00
}
}
2019-03-11 17:12:58 -03:00
return ret ;
2014-03-29 01:15:28 -03:00
}
2017-04-28 15:10:21 -03:00
CAmount CWallet : : GetAvailableBalance ( const CCoinControl * coinControl ) const
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2017-05-04 18:02:12 -03:00
2017-04-28 15:10:21 -03:00
CAmount balance = 0 ;
std : : vector < COutput > vCoins ;
2017-07-31 15:30:21 -04:00
AvailableCoins ( * locked_chain , vCoins , true , coinControl ) ;
2017-04-28 15:10:21 -03:00
for ( const COutput & out : vCoins ) {
if ( out . fSpendable ) {
balance + = out . tx - > tx - > vout [ out . i ] . nValue ;
}
}
return balance ;
}
2019-05-09 21:34:38 -04:00
void CWallet : : AvailableCoins ( interfaces : : Chain : : Lock & locked_chain , std : : vector < COutput > & vCoins , bool fOnlySafe , const CCoinControl * coinControl , const CAmount & nMinimumAmount , const CAmount & nMaximumAmount , const CAmount & nMinimumSumAmount , const uint64_t nMaximumCount ) const
2012-02-27 09:19:32 -03:00
{
2018-02-02 08:37:50 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-02-27 09:19:32 -03:00
vCoins . clear ( ) ;
2018-02-08 15:18:51 -03:00
CAmount nTotal = 0 ;
2018-09-13 01:53:19 -03:00
// Either the WALLET_FLAG_AVOID_REUSE flag is not set (in which case we always allow), or we default to avoiding, and only in the case where
// a coin control object is provided, and has the avoid address reuse flag set to false, do we allow already used addresses
bool allow_used_addresses = ! IsWalletFlagSet ( WALLET_FLAG_AVOID_REUSE ) | | ( coinControl & & ! coinControl - > m_avoid_address_reuse ) ;
2019-05-09 21:34:38 -04:00
const int min_depth = { coinControl ? coinControl - > m_min_depth : DEFAULT_MIN_DEPTH } ;
const int max_depth = { coinControl ? coinControl - > m_max_depth : DEFAULT_MAX_DEPTH } ;
2012-02-27 09:19:32 -03:00
2019-08-30 16:31:11 -04:00
std : : set < uint256 > trustedParents ;
2018-02-08 15:18:51 -03:00
for ( const auto & entry : mapWallet )
2012-02-27 09:19:32 -03:00
{
2018-02-08 15:18:51 -03:00
const uint256 & wtxid = entry . first ;
2019-03-10 18:29:54 -03:00
const CWalletTx & wtx = entry . second ;
2017-03-07 15:17:32 -03:00
2019-03-10 18:29:54 -03:00
if ( ! locked_chain . checkFinalTx ( * wtx . tx ) ) {
2018-02-08 15:18:51 -03:00
continue ;
2019-02-01 19:35:51 -03:00
}
2017-03-07 15:17:32 -03:00
2019-03-10 18:29:54 -03:00
if ( wtx . IsImmatureCoinBase ( locked_chain ) )
2018-02-08 15:18:51 -03:00
continue ;
2012-02-27 09:19:32 -03:00
2019-03-10 18:29:54 -03:00
int nDepth = wtx . GetDepthInMainChain ( locked_chain ) ;
2018-02-08 15:18:51 -03:00
if ( nDepth < 0 )
continue ;
2012-05-31 16:01:16 -04:00
2018-02-08 15:18:51 -03:00
// We should not consider coins which aren't at least in our mempool
// It's possible for these to be conflicted via ancestors which we may never be able to detect
2019-03-10 18:29:54 -03:00
if ( nDepth = = 0 & & ! wtx . InMempool ( ) )
2018-02-08 15:18:51 -03:00
continue ;
2012-02-27 09:19:32 -03:00
2019-08-30 16:31:11 -04:00
bool safeTx = wtx . IsTrusted ( locked_chain , trustedParents ) ;
2018-02-08 15:18:51 -03:00
// We should not consider coins from transactions that are replacing
// other transactions.
//
// Example: There is a transaction A which is replaced by bumpfee
// transaction B. In this case, we want to prevent creation of
// a transaction B' which spends an output of B.
//
// Reason: If transaction A were initially confirmed, transactions B
// and B' would no longer be valid, so the user would have to create
// a new transaction C to replace B'. However, in the case of a
// one-block reorg, transactions B' and C might BOTH be accepted,
// when the user only wanted one of them. Specifically, there could
// be a 1-block reorg away from the chain where transactions A and C
// were accepted to another chain where B, B', and C were all
// accepted.
2019-03-10 18:29:54 -03:00
if ( nDepth = = 0 & & wtx . mapValue . count ( " replaces_txid " ) ) {
2018-02-08 15:18:51 -03:00
safeTx = false ;
}
2014-02-12 15:43:07 -03:00
2018-02-08 15:18:51 -03:00
// Similarly, we should not consider coins from transactions that
// have been replaced. In the example above, we would want to prevent
// creation of a transaction A' spending an output of A, because if
// transaction B were initially confirmed, conflicting with A and
// A', we wouldn't want to the user to create a transaction D
// intending to replace A', but potentially resulting in a scenario
// where A, A', and D could all be accepted (instead of just B and
// D, or just A and A' like the user would want).
2019-03-10 18:29:54 -03:00
if ( nDepth = = 0 & & wtx . mapValue . count ( " replaced_by_txid " ) ) {
2018-02-08 15:18:51 -03:00
safeTx = false ;
}
2016-03-17 13:48:05 -03:00
2018-02-08 15:18:51 -03:00
if ( fOnlySafe & & ! safeTx ) {
continue ;
}
2016-12-09 15:45:27 -03:00
2019-05-09 21:34:38 -04:00
if ( nDepth < min_depth | | nDepth > max_depth ) {
2018-02-08 15:18:51 -03:00
continue ;
2019-05-09 21:34:38 -04:00
}
2017-02-23 13:20:16 -03:00
2019-03-10 18:29:54 -03:00
for ( unsigned int i = 0 ; i < wtx . tx - > vout . size ( ) ; i + + ) {
if ( wtx . tx - > vout [ i ] . nValue < nMinimumAmount | | wtx . tx - > vout [ i ] . nValue > nMaximumAmount )
2016-12-09 15:45:27 -03:00
continue ;
2018-02-08 15:18:51 -03:00
if ( coinControl & & coinControl - > HasSelected ( ) & & ! coinControl - > fAllowOtherInputs & & ! coinControl - > IsSelected ( COutPoint ( entry . first , i ) ) )
2017-03-07 15:17:32 -03:00
continue ;
2018-02-08 15:18:51 -03:00
if ( IsLockedCoin ( entry . first , i ) )
continue ;
2017-03-07 15:17:32 -03:00
2017-07-31 15:30:21 -04:00
if ( IsSpent ( locked_chain , wtxid , i ) )
2018-02-08 15:18:51 -03:00
continue ;
2017-03-07 15:17:32 -03:00
2019-03-10 18:29:54 -03:00
isminetype mine = IsMine ( wtx . tx - > vout [ i ] ) ;
2017-03-07 15:17:32 -03:00
2018-02-08 15:18:51 -03:00
if ( mine = = ISMINE_NO ) {
continue ;
}
2017-03-07 15:17:32 -03:00
2018-09-13 01:53:19 -03:00
if ( ! allow_used_addresses & & IsUsedDestination ( wtxid , i ) ) {
continue ;
}
2019-03-10 18:29:54 -03:00
bool solvable = IsSolvable ( * this , wtx . tx - > vout [ i ] . scriptPubKey ) ;
2018-05-01 16:05:55 -03:00
bool spendable = ( ( mine & ISMINE_SPENDABLE ) ! = ISMINE_NO ) | | ( ( ( mine & ISMINE_WATCH_ONLY ) ! = ISMINE_NO ) & & ( coinControl & & coinControl - > fAllowWatchOnly & & solvable ) ) ;
2017-03-07 15:17:32 -03:00
2019-03-10 18:29:54 -03:00
vCoins . push_back ( COutput ( & wtx , i , nDepth , spendable , solvable , safeTx , ( coinControl & & coinControl - > fAllowWatchOnly ) ) ) ;
2017-03-07 15:17:32 -03:00
2018-02-08 15:18:51 -03:00
// Checks the sum amount of all UTXO's.
if ( nMinimumSumAmount ! = MAX_MONEY ) {
2019-03-10 18:29:54 -03:00
nTotal + = wtx . tx - > vout [ i ] . nValue ;
2017-03-07 15:17:32 -03:00
2018-02-08 15:18:51 -03:00
if ( nTotal > = nMinimumSumAmount ) {
2017-03-07 15:17:32 -03:00
return ;
}
2012-09-27 14:52:09 -03:00
}
2018-02-08 15:18:51 -03:00
// Checks the maximum number of UTXO's.
if ( nMaximumCount > 0 & & vCoins . size ( ) > = nMaximumCount ) {
return ;
}
2012-02-27 09:19:32 -03:00
}
}
}
2017-07-31 15:30:21 -04:00
std : : map < CTxDestination , std : : vector < COutput > > CWallet : : ListCoins ( interfaces : : Chain : : Lock & locked_chain ) const
2017-04-28 15:10:21 -03:00
{
2017-06-15 14:56:35 -04:00
AssertLockHeld ( cs_wallet ) ;
2017-04-28 15:10:21 -03:00
std : : map < CTxDestination , std : : vector < COutput > > result ;
std : : vector < COutput > availableCoins ;
2017-07-31 15:30:21 -04:00
AvailableCoins ( locked_chain , availableCoins ) ;
2018-02-02 08:37:50 -03:00
2018-06-18 01:58:28 -04:00
for ( const COutput & coin : availableCoins ) {
2017-04-28 15:10:21 -03:00
CTxDestination address ;
if ( coin . fSpendable & &
ExtractDestination ( FindNonChangeParentOutput ( * coin . tx - > tx , coin . i ) . scriptPubKey , address ) ) {
result [ address ] . emplace_back ( std : : move ( coin ) ) ;
}
}
std : : vector < COutPoint > lockedCoins ;
ListLockedCoins ( lockedCoins ) ;
2018-06-18 01:58:28 -04:00
for ( const COutPoint & output : lockedCoins ) {
2017-04-28 15:10:21 -03:00
auto it = mapWallet . find ( output . hash ) ;
if ( it ! = mapWallet . end ( ) ) {
2017-07-31 15:30:21 -04:00
int depth = it - > second . GetDepthInMainChain ( locked_chain ) ;
2017-04-28 15:10:21 -03:00
if ( depth > = 0 & & output . n < it - > second . tx - > vout . size ( ) & &
IsMine ( it - > second . tx - > vout [ output . n ] ) = = ISMINE_SPENDABLE ) {
CTxDestination address ;
if ( ExtractDestination ( FindNonChangeParentOutput ( * it - > second . tx , output . n ) . scriptPubKey , address ) ) {
result [ address ] . emplace_back (
& it - > second , output . n , depth , true /* spendable */ , true /* solvable */ , false /* safe */ ) ;
}
}
}
}
return result ;
}
const CTxOut & CWallet : : FindNonChangeParentOutput ( const CTransaction & tx , int output ) const
{
const CTransaction * ptx = & tx ;
int n = output ;
while ( IsChange ( ptx - > vout [ n ] ) & & ptx - > vin . size ( ) > 0 ) {
const COutPoint & prevout = ptx - > vin [ 0 ] . prevout ;
auto it = mapWallet . find ( prevout . hash ) ;
if ( it = = mapWallet . end ( ) | | it - > second . tx - > vout . size ( ) < = prevout . n | |
! IsMine ( it - > second . tx - > vout [ prevout . n ] ) ) {
break ;
}
ptx = it - > second . tx . get ( ) ;
n = prevout . n ;
}
return ptx - > vout [ n ] ;
}
2018-07-18 22:45:26 -04:00
bool CWallet : : SelectCoinsMinConf ( const CAmount & nTargetValue , const CoinEligibilityFilter & eligibility_filter , std : : vector < OutputGroup > groups ,
2018-03-05 18:42:49 -03:00
std : : set < CInputCoin > & setCoinsRet , CAmount & nValueRet , const CoinSelectionParams & coin_selection_params , bool & bnb_used ) const
2011-06-26 13:23:24 -04:00
{
setCoinsRet . clear ( ) ;
nValueRet = 0 ;
2018-07-18 22:45:26 -04:00
std : : vector < OutputGroup > utxo_pool ;
2018-03-05 18:42:49 -03:00
if ( coin_selection_params . use_bnb ) {
// Get long term estimate
FeeCalculation feeCalc ;
CCoinControl temp ;
temp . m_confirm_target = 1008 ;
2017-07-28 21:40:29 -04:00
CFeeRate long_term_feerate = GetMinimumFeeRate ( * this , temp , & feeCalc ) ;
2016-12-02 17:29:20 -03:00
2018-03-05 18:42:49 -03:00
// Calculate cost of change
2017-07-28 21:40:29 -04:00
CAmount cost_of_change = GetDiscardRate ( * this ) . GetFee ( coin_selection_params . change_spend_size ) + coin_selection_params . effective_fee . GetFee ( coin_selection_params . change_output_size ) ;
2011-06-26 13:23:24 -04:00
2018-03-05 18:42:49 -03:00
// Filter by the min conf specs and add to utxo_pool and calculate effective value
2018-07-18 22:45:26 -04:00
for ( OutputGroup & group : groups ) {
if ( ! group . EligibleForSpending ( eligibility_filter ) ) continue ;
group . fee = 0 ;
group . long_term_fee = 0 ;
group . effective_value = 0 ;
for ( auto it = group . m_outputs . begin ( ) ; it ! = group . m_outputs . end ( ) ; ) {
const CInputCoin & coin = * it ;
CAmount effective_value = coin . txout . nValue - ( coin . m_input_bytes < 0 ? 0 : coin_selection_params . effective_fee . GetFee ( coin . m_input_bytes ) ) ;
// Only include outputs that are positive effective value (i.e. not dust)
if ( effective_value > 0 ) {
group . fee + = coin . m_input_bytes < 0 ? 0 : coin_selection_params . effective_fee . GetFee ( coin . m_input_bytes ) ;
group . long_term_fee + = coin . m_input_bytes < 0 ? 0 : long_term_feerate . GetFee ( coin . m_input_bytes ) ;
group . effective_value + = effective_value ;
+ + it ;
} else {
it = group . Discard ( coin ) ;
}
2011-06-26 13:23:24 -04:00
}
2018-07-18 22:45:26 -04:00
if ( group . effective_value > 0 ) utxo_pool . push_back ( group ) ;
2018-03-05 18:42:49 -03:00
}
// Calculate the fees for things that aren't inputs
CAmount not_input_fees = coin_selection_params . effective_fee . GetFee ( coin_selection_params . tx_noinputs_size ) ;
bnb_used = true ;
return SelectCoinsBnB ( utxo_pool , nTargetValue , cost_of_change , setCoinsRet , nValueRet , not_input_fees ) ;
} else {
// Filter by the min conf specs and add to utxo_pool
2018-07-18 22:45:26 -04:00
for ( const OutputGroup & group : groups ) {
if ( ! group . EligibleForSpending ( eligibility_filter ) ) continue ;
utxo_pool . push_back ( group ) ;
2016-12-25 17:19:40 -03:00
}
2018-03-05 18:42:49 -03:00
bnb_used = false ;
return KnapsackSolver ( nTargetValue , utxo_pool , setCoinsRet , nValueRet ) ;
2011-06-26 13:23:24 -04:00
}
}
2018-03-15 03:42:18 -03:00
bool CWallet : : SelectCoins ( const std : : vector < COutput > & vAvailableCoins , const CAmount & nTargetValue , std : : set < CInputCoin > & setCoinsRet , CAmount & nValueRet , const CCoinControl & coin_control , CoinSelectionParams & coin_selection_params , bool & bnb_used ) const
2011-06-26 13:23:24 -04:00
{
2017-01-26 22:33:45 -03:00
std : : vector < COutput > vCoins ( vAvailableCoins ) ;
2013-08-12 11:03:03 -04:00
// coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2018-03-05 18:42:49 -03:00
if ( coin_control . HasSelected ( ) & & ! coin_control . fAllowOtherInputs )
2013-08-12 11:03:03 -04:00
{
2018-03-05 18:42:49 -03:00
// We didn't use BnB here, so set it to false.
bnb_used = false ;
2017-06-01 21:18:57 -04:00
for ( const COutput & out : vCoins )
2013-08-12 11:03:03 -04:00
{
2015-04-24 22:29:00 -03:00
if ( ! out . fSpendable )
continue ;
2016-11-11 21:54:51 -03:00
nValueRet + = out . tx - > tx - > vout [ out . i ] . nValue ;
2018-07-18 22:45:26 -04:00
setCoinsRet . insert ( out . GetInputCoin ( ) ) ;
2013-08-12 11:03:03 -04:00
}
return ( nValueRet > = nTargetValue ) ;
}
2012-02-27 09:19:32 -03:00
2015-04-24 22:29:00 -03:00
// calculate value from preset inputs and store them
2017-04-07 06:38:33 -03:00
std : : set < CInputCoin > setPresetCoins ;
2015-04-24 22:29:00 -03:00
CAmount nValueFromPresetInputs = 0 ;
std : : vector < COutPoint > vPresetInputs ;
2018-03-05 18:42:49 -03:00
coin_control . ListSelected ( vPresetInputs ) ;
2017-06-01 21:18:57 -04:00
for ( const COutPoint & outpoint : vPresetInputs )
2015-04-24 22:29:00 -03:00
{
2018-03-05 18:42:49 -03:00
// For now, don't use BnB if preset inputs are selected. TODO: Enable this later
bnb_used = false ;
2018-03-15 03:42:18 -03:00
coin_selection_params . use_bnb = false ;
2018-03-05 18:42:49 -03:00
2017-01-26 22:33:45 -03:00
std : : map < uint256 , CWalletTx > : : const_iterator it = mapWallet . find ( outpoint . hash ) ;
2015-04-24 22:29:00 -03:00
if ( it ! = mapWallet . end ( ) )
{
2019-03-10 18:29:54 -03:00
const CWalletTx & wtx = it - > second ;
2015-04-24 22:29:00 -03:00
// Clearly invalid input, fail
2019-03-10 18:29:54 -03:00
if ( wtx . tx - > vout . size ( ) < = outpoint . n )
2015-04-24 22:29:00 -03:00
return false ;
2018-03-05 18:42:49 -03:00
// Just to calculate the marginal byte size
2019-03-10 18:29:54 -03:00
nValueFromPresetInputs + = wtx . tx - > vout [ outpoint . n ] . nValue ;
setPresetCoins . insert ( CInputCoin ( wtx . tx , outpoint . n ) ) ;
2015-04-24 22:29:00 -03:00
} else
return false ; // TODO: Allow non-wallet inputs
}
// remove preset inputs from vCoins
2018-03-05 18:42:49 -03:00
for ( std : : vector < COutput > : : iterator it = vCoins . begin ( ) ; it ! = vCoins . end ( ) & & coin_control . HasSelected ( ) ; )
2015-04-24 22:29:00 -03:00
{
2018-07-18 22:45:26 -04:00
if ( setPresetCoins . count ( it - > GetInputCoin ( ) ) )
2015-04-24 22:29:00 -03:00
it = vCoins . erase ( it ) ;
else
+ + it ;
}
2018-07-18 22:45:26 -04:00
// form groups from remaining coins; note that preset coins will not
// automatically have their associated (same address) coins included
2018-07-30 12:50:43 -04:00
if ( coin_control . m_avoid_partial_spends & & vCoins . size ( ) > OUTPUT_GROUP_MAX_ENTRIES ) {
// Cases where we have 11+ outputs all pointing to the same destination may result in
// privacy leaks as they will potentially be deterministically sorted. We solve that by
// explicitly shuffling the outputs before processing
2018-10-31 19:42:03 -03:00
Shuffle ( vCoins . begin ( ) , vCoins . end ( ) , FastRandomContext ( ) ) ;
2018-07-30 12:50:43 -04:00
}
2018-07-18 22:45:26 -04:00
std : : vector < OutputGroup > groups = GroupOutputs ( vCoins , ! coin_control . m_avoid_partial_spends ) ;
2019-10-14 14:32:41 -03:00
unsigned int limit_ancestor_count ;
unsigned int limit_descendant_count ;
chain ( ) . getPackageLimits ( limit_ancestor_count , limit_descendant_count ) ;
size_t max_ancestors = ( size_t ) std : : max < int64_t > ( 1 , limit_ancestor_count ) ;
size_t max_descendants = ( size_t ) std : : max < int64_t > ( 1 , limit_descendant_count ) ;
2017-08-01 15:17:40 -04:00
bool fRejectLongChains = gArgs . GetBoolArg ( " -walletrejectlongchains " , DEFAULT_WALLET_REJECT_LONG_CHAINS ) ;
2016-12-02 17:29:20 -03:00
2015-04-24 22:29:00 -03:00
bool res = nTargetValue < = nValueFromPresetInputs | |
2018-07-18 22:45:26 -04:00
SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 1 , 6 , 0 ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) | |
SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 1 , 1 , 0 ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) | |
( m_spend_zero_conf_change & & SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 0 , 1 , 2 ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) ) | |
( m_spend_zero_conf_change & & SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 0 , 1 , std : : min ( ( size_t ) 4 , max_ancestors / 3 ) , std : : min ( ( size_t ) 4 , max_descendants / 3 ) ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) ) | |
( m_spend_zero_conf_change & & SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 0 , 1 , max_ancestors / 2 , max_descendants / 2 ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) ) | |
( m_spend_zero_conf_change & & SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 0 , 1 , max_ancestors - 1 , max_descendants - 1 ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) ) | |
( m_spend_zero_conf_change & & ! fRejectLongChains & & SelectCoinsMinConf ( nTargetValue - nValueFromPresetInputs , CoinEligibilityFilter ( 0 , 1 , std : : numeric_limits < uint64_t > : : max ( ) ) , groups , setCoinsRet , nValueRet , coin_selection_params , bnb_used ) ) ;
2015-04-24 22:29:00 -03:00
// because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2018-07-18 22:45:26 -04:00
util : : insert ( setCoinsRet , setPresetCoins ) ;
2015-04-24 22:29:00 -03:00
// add preset inputs to the total value selected
nValueRet + = nValueFromPresetInputs ;
return res ;
2011-06-26 13:23:24 -04:00
}
2019-02-18 18:09:45 -03:00
bool CWallet : : SignTransaction ( CMutableTransaction & tx )
2017-03-03 12:15:47 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2017-04-10 09:05:49 -03:00
2017-03-03 12:15:47 -03:00
// sign the new tx
int nIn = 0 ;
2018-05-17 20:54:18 -04:00
for ( auto & input : tx . vin ) {
2017-03-03 12:15:47 -03:00
std : : map < uint256 , CWalletTx > : : const_iterator mi = mapWallet . find ( input . prevout . hash ) ;
2017-03-27 09:00:14 -03:00
if ( mi = = mapWallet . end ( ) | | input . prevout . n > = mi - > second . tx - > vout . size ( ) ) {
return false ;
}
2017-03-03 12:15:47 -03:00
const CScript & scriptPubKey = mi - > second . tx - > vout [ input . prevout . n ] . scriptPubKey ;
const CAmount & amount = mi - > second . tx - > vout [ input . prevout . n ] . nValue ;
SignatureData sigdata ;
2018-05-20 16:47:14 -04:00
if ( ! ProduceSignature ( * this , MutableTransactionSignatureCreator ( & tx , nIn , amount , SIGHASH_ALL ) , scriptPubKey , sigdata ) ) {
2017-03-03 12:15:47 -03:00
return false ;
}
2018-05-17 20:54:18 -04:00
UpdateInput ( input , sigdata ) ;
2017-03-03 12:15:47 -03:00
nIn + + ;
}
return true ;
}
2017-07-10 14:29:06 -04:00
bool CWallet : : FundTransaction ( CMutableTransaction & tx , CAmount & nFeeRet , int & nChangePosInOut , std : : string & strFailReason , bool lockUnspents , const std : : set < int > & setSubtractFeeFromOutputs , CCoinControl coinControl )
2015-04-24 22:29:00 -03:00
{
2017-01-26 22:33:45 -03:00
std : : vector < CRecipient > vecSend ;
2015-04-24 22:29:00 -03:00
2017-12-14 00:17:58 -03:00
// Turn the txout set into a CRecipient vector.
for ( size_t idx = 0 ; idx < tx . vout . size ( ) ; idx + + ) {
2016-12-13 18:36:23 -03:00
const CTxOut & txOut = tx . vout [ idx ] ;
CRecipient recipient = { txOut . scriptPubKey , txOut . nValue , setSubtractFeeFromOutputs . count ( idx ) = = 1 } ;
2015-04-24 22:29:00 -03:00
vecSend . push_back ( recipient ) ;
}
coinControl . fAllowOtherInputs = true ;
2016-04-28 17:04:07 -03:00
2017-12-14 00:17:58 -03:00
for ( const CTxIn & txin : tx . vin ) {
2015-04-24 22:29:00 -03:00
coinControl . Select ( txin . prevout ) ;
2017-12-14 00:17:58 -03:00
}
2015-04-24 22:29:00 -03:00
2017-12-14 00:18:29 -03:00
// Acquire the locks to prevent races to the new locked unspents between the
// CreateTransaction call and LockCoin calls (when lockUnspents is true).
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2015-04-24 22:29:00 -03:00
2017-02-02 17:30:03 -03:00
CTransactionRef tx_new ;
2019-07-10 11:37:45 -04:00
if ( ! CreateTransaction ( * locked_chain , vecSend , tx_new , nFeeRet , nChangePosInOut , strFailReason , coinControl , false ) ) {
2015-04-24 22:29:00 -03:00
return false ;
2017-06-28 16:41:55 -04:00
}
2017-07-10 14:29:06 -04:00
if ( nChangePosInOut ! = - 1 ) {
2017-02-02 17:30:03 -03:00
tx . vout . insert ( tx . vout . begin ( ) + nChangePosInOut , tx_new - > vout [ nChangePosInOut ] ) ;
2017-07-10 14:29:06 -04:00
}
2015-04-24 22:29:00 -03:00
2017-12-14 00:17:58 -03:00
// Copy output sizes from new transaction; they may have had the fee
// subtracted from them.
for ( unsigned int idx = 0 ; idx < tx . vout . size ( ) ; idx + + ) {
2017-02-02 17:30:03 -03:00
tx . vout [ idx ] . nValue = tx_new - > vout [ idx ] . nValue ;
2017-12-14 00:17:58 -03:00
}
2016-12-13 18:36:23 -03:00
2017-12-14 00:17:58 -03:00
// Add new txins while keeping original txin scriptSig/order.
2017-02-02 17:30:03 -03:00
for ( const CTxIn & txin : tx_new - > vin ) {
2017-12-14 00:17:58 -03:00
if ( ! coinControl . IsSelected ( txin . prevout ) ) {
2015-04-24 22:29:00 -03:00
tx . vin . push_back ( txin ) ;
2016-04-06 11:56:14 -03:00
2017-12-14 00:17:58 -03:00
if ( lockUnspents ) {
LockCoin ( txin . prevout ) ;
2016-04-06 11:56:14 -03:00
}
}
2015-04-24 22:29:00 -03:00
}
return true ;
}
2019-03-06 18:47:57 -03:00
static bool IsCurrentForAntiFeeSniping ( interfaces : : Chain & chain , interfaces : : Chain : : Lock & locked_chain )
2018-12-23 15:08:57 -03:00
{
2019-03-06 18:47:57 -03:00
if ( chain . isInitialBlockDownload ( ) ) {
2018-12-23 15:08:57 -03:00
return false ;
}
constexpr int64_t MAX_ANTI_FEE_SNIPING_TIP_AGE = 8 * 60 * 60 ; // in seconds
2019-03-06 18:47:57 -03:00
if ( locked_chain . getBlockTime ( * locked_chain . getHeight ( ) ) < ( GetTime ( ) - MAX_ANTI_FEE_SNIPING_TIP_AGE ) ) {
2018-12-23 15:08:57 -03:00
return false ;
}
return true ;
}
/**
* Return a height - based locktime for new transactions ( uses the height of the
* current chain tip unless we are not synced with the current chain
*/
2019-03-06 18:47:57 -03:00
static uint32_t GetLocktimeForNewTransaction ( interfaces : : Chain & chain , interfaces : : Chain : : Lock & locked_chain )
2018-12-23 15:08:57 -03:00
{
2019-01-31 15:46:23 -03:00
uint32_t const height = locked_chain . getHeight ( ) . get_value_or ( - 1 ) ;
2018-12-23 15:08:57 -03:00
uint32_t locktime ;
// Discourage fee sniping.
//
// For a large miner the value of the transactions in the best block and
// the mempool can exceed the cost of deliberately attempting to mine two
// blocks to orphan the current best block. By setting nLockTime such that
// only the next block can include the transaction, we discourage this
// practice as the height restricted and limited blocksize gives miners
// considering fee sniping fewer options for pulling off this attack.
//
// A simple way to think about this is from the wallet's point of view we
// always want the blockchain to move forward. By setting nLockTime this
// way we're basically making the statement that we only want this
// transaction to appear in the next block; we don't want to potentially
// encourage reorgs by allowing transactions to appear at lower heights
// than the next block in forks of the best chain.
//
// Of course, the subsidy is high enough, and transaction volume low
// enough, that fee sniping isn't a problem yet, but by implementing a fix
// now we ensure code won't be written that makes assumptions about
// nLockTime that preclude a fix later.
2019-03-06 18:47:57 -03:00
if ( IsCurrentForAntiFeeSniping ( chain , locked_chain ) ) {
2017-07-27 10:08:31 -04:00
locktime = height ;
2018-12-23 15:08:57 -03:00
// Secondly occasionally randomly pick a nLockTime even further back, so
// that transactions that are delayed after signing for whatever reason,
// e.g. high-latency mix networks and some CoinJoin implementations, have
// better privacy.
if ( GetRandInt ( 10 ) = = 0 )
locktime = std : : max ( 0 , ( int ) locktime - GetRandInt ( 100 ) ) ;
} else {
// If our chain is lagging behind, we can't discourage fee sniping nor help
// the privacy of high-latency transactions. To avoid leaking a potentially
// unique "nLockTime fingerprint", set nLockTime to a constant.
locktime = 0 ;
}
2017-07-27 10:08:31 -04:00
assert ( locktime < = height ) ;
2018-12-23 15:08:57 -03:00
assert ( locktime < LOCKTIME_THRESHOLD ) ;
return locktime ;
}
2018-01-15 13:10:13 -03:00
OutputType CWallet : : TransactionChangeType ( OutputType change_type , const std : : vector < CRecipient > & vecSend )
2018-01-23 13:56:15 -03:00
{
// If -changetype is specified, always use that change type.
2018-03-19 16:57:11 -03:00
if ( change_type ! = OutputType : : CHANGE_AUTO ) {
2018-01-15 13:10:13 -03:00
return change_type ;
2018-01-23 13:56:15 -03:00
}
2018-02-10 23:06:35 -03:00
// if m_default_address_type is legacy, use legacy address as change (even
2018-01-23 13:56:15 -03:00
// if some of the outputs are P2WPKH or P2WSH).
2018-02-10 23:06:35 -03:00
if ( m_default_address_type = = OutputType : : LEGACY ) {
return OutputType : : LEGACY ;
2018-01-23 13:56:15 -03:00
}
// if any destination is P2WPKH or P2WSH, use P2WPKH for the change
// output.
for ( const auto & recipient : vecSend ) {
// Check if any destination contains a witness program:
int witnessversion = 0 ;
std : : vector < unsigned char > witnessprogram ;
if ( recipient . scriptPubKey . IsWitnessProgram ( witnessversion , witnessprogram ) ) {
2018-02-10 23:06:35 -03:00
return OutputType : : BECH32 ;
2018-01-23 13:56:15 -03:00
}
}
2018-02-10 23:06:35 -03:00
// else use m_default_address_type for change
return m_default_address_type ;
2018-01-23 13:56:15 -03:00
}
2019-07-10 11:37:45 -04:00
bool CWallet : : CreateTransaction ( interfaces : : Chain : : Lock & locked_chain , const std : : vector < CRecipient > & vecSend , CTransactionRef & tx , CAmount & nFeeRet ,
2018-07-18 22:45:26 -04:00
int & nChangePosInOut , std : : string & strFailReason , const CCoinControl & coin_control , bool sign )
2011-06-26 13:23:24 -04:00
{
2014-04-22 19:46:19 -03:00
CAmount nValue = 0 ;
2019-07-10 11:37:45 -04:00
ReserveDestination reservedest ( this ) ;
2016-03-29 22:04:22 -03:00
int nChangePosRequest = nChangePosInOut ;
2014-07-23 08:34:36 -04:00
unsigned int nSubtractFeeFromAmount = 0 ;
2017-01-04 05:51:14 -03:00
for ( const auto & recipient : vecSend )
2011-06-26 13:23:24 -04:00
{
2014-07-23 08:34:36 -04:00
if ( nValue < 0 | | recipient . nAmount < 0 )
2013-04-25 18:31:22 -03:00
{
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction amounts must not be negative " ) . translated ;
2011-06-26 13:23:24 -04:00
return false ;
2013-04-25 18:31:22 -03:00
}
2014-07-23 08:34:36 -04:00
nValue + = recipient . nAmount ;
if ( recipient . fSubtractFeeFromAmount )
nSubtractFeeFromAmount + + ;
2011-06-26 13:23:24 -04:00
}
2016-11-22 14:48:01 -03:00
if ( vecSend . empty ( ) )
2013-04-25 18:31:22 -03:00
{
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction must have at least one recipient " ) . translated ;
2011-06-26 13:23:24 -04:00
return false ;
2013-04-25 18:31:22 -03:00
}
2011-06-26 13:23:24 -04:00
2014-06-07 07:53:27 -04:00
CMutableTransaction txNew ;
2011-06-26 13:23:24 -04:00
2019-03-06 18:47:57 -03:00
txNew . nLockTime = GetLocktimeForNewTransaction ( chain ( ) , locked_chain ) ;
2013-08-25 14:13:25 -04:00
2017-04-25 16:39:32 -03:00
FeeCalculation feeCalc ;
2017-08-25 16:49:44 -03:00
CAmount nFeeNeeded ;
2018-03-05 18:37:24 -03:00
int nBytes ;
2011-06-26 13:23:24 -04:00
{
2017-04-07 06:38:33 -03:00
std : : set < CInputCoin > setCoins ;
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2011-06-26 13:23:24 -04:00
{
2016-03-07 21:15:17 -03:00
std : : vector < COutput > vAvailableCoins ;
2019-05-09 21:34:38 -04:00
AvailableCoins ( * locked_chain , vAvailableCoins , true , & coin_control , 1 , MAX_MONEY , MAX_MONEY , 0 ) ;
2018-03-05 18:42:49 -03:00
CoinSelectionParams coin_selection_params ; // Parameters for coin selection, init with dummy
2016-03-07 21:15:17 -03:00
2017-06-30 12:53:29 -04:00
// Create change script that will be used if we need change
2019-06-18 15:48:20 -04:00
// TODO: pass in scriptChange instead of reservedest so
2017-06-30 12:53:29 -04:00
// change transaction isn't always pay-to-bitcoin-address
CScript scriptChange ;
// coin control: send change to custom address
2017-06-28 16:41:55 -04:00
if ( ! boost : : get < CNoDestination > ( & coin_control . destChange ) ) {
scriptChange = GetScriptForDestination ( coin_control . destChange ) ;
} else { // no coin control: send change to newly generated address
2017-06-30 12:53:29 -04:00
// Note: We use a new key here to keep it from being obvious which side is the change.
// The drawback is that by not reusing a previous key, the change may be lost if a
// backup is restored, if the backup doesn't have the new private key for the change.
// If we reused the old key, it would be possible to add code to look for and
// rediscover unknown transactions that were written with keys of ours to recover
// post-backup change.
// Reserve a new key pair from key pool
2018-11-06 11:44:51 -03:00
if ( ! CanGetAddresses ( true ) ) {
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Can't generate a change-address key. No keys in the internal keypool and can't generate any keys. " ) . translated ;
2017-05-05 03:53:39 -03:00
return false ;
}
2019-06-18 15:48:20 -04:00
CTxDestination dest ;
const OutputType change_type = TransactionChangeType ( coin_control . m_change_type ? * coin_control . m_change_type : m_default_change_type , vecSend ) ;
bool ret = reservedest . GetReservedDestination ( change_type , dest , true ) ;
2017-06-30 12:53:29 -04:00
if ( ! ret )
{
2019-06-18 15:48:20 -04:00
strFailReason = " Keypool ran out, please call keypoolrefill first " ;
2017-06-30 12:53:29 -04:00
return false ;
}
2019-06-18 15:48:20 -04:00
scriptChange = GetScriptForDestination ( dest ) ;
2017-06-30 12:53:29 -04:00
}
2017-06-30 13:16:53 -04:00
CTxOut change_prototype_txout ( 0 , scriptChange ) ;
2018-06-22 14:27:18 -04:00
coin_selection_params . change_output_size = GetSerializeSize ( change_prototype_txout ) ;
2017-06-30 12:53:29 -04:00
2017-07-28 21:40:29 -04:00
CFeeRate discard_rate = GetDiscardRate ( * this ) ;
2018-03-05 18:42:49 -03:00
// Get the fee rate to use effective values in coin selection
2017-07-28 21:40:29 -04:00
CFeeRate nFeeRateNeeded = GetMinimumFeeRate ( * this , coin_control , & feeCalc ) ;
2018-03-05 18:42:49 -03:00
2014-11-01 20:14:47 -03:00
nFeeRet = 0 ;
2017-06-30 13:16:53 -04:00
bool pick_new_inputs = true ;
CAmount nValueIn = 0 ;
2018-03-05 18:42:49 -03:00
// BnB selector is the only selector used when this is true.
// That should only happen on the first pass through the loop.
coin_selection_params . use_bnb = nSubtractFeeFromAmount = = 0 ; // If we are doing subtract fee from recipient, then don't use BnB
2015-09-14 09:49:59 -03:00
// Start with no fee and loop until there is enough fee
2013-07-31 00:06:44 -04:00
while ( true )
2011-06-26 13:23:24 -04:00
{
2016-03-29 22:04:22 -03:00
nChangePosInOut = nChangePosRequest ;
2014-06-07 07:53:27 -04:00
txNew . vin . clear ( ) ;
txNew . vout . clear ( ) ;
2014-07-23 08:34:36 -04:00
bool fFirst = true ;
2011-06-26 13:23:24 -04:00
2015-03-18 15:22:49 -03:00
CAmount nValueToSelect = nValue ;
2014-07-23 08:34:36 -04:00
if ( nSubtractFeeFromAmount = = 0 )
2015-03-18 15:22:49 -03:00
nValueToSelect + = nFeeRet ;
2018-03-05 18:42:49 -03:00
2011-06-26 13:23:24 -04:00
// vouts to the payees
2018-03-05 18:42:49 -03:00
coin_selection_params . tx_noinputs_size = 11 ; // Static vsize overhead + outputs vsize. 4 nVersion, 4 nLocktime, 1 input count, 1 output count, 1 witness overhead (dummy, flag, stack size)
2017-01-04 05:51:14 -03:00
for ( const auto & recipient : vecSend )
2013-04-24 19:27:00 -03:00
{
2014-07-23 08:34:36 -04:00
CTxOut txout ( recipient . nAmount , recipient . scriptPubKey ) ;
if ( recipient . fSubtractFeeFromAmount )
{
2017-08-28 04:20:50 -03:00
assert ( nSubtractFeeFromAmount ! = 0 ) ;
2014-07-23 08:34:36 -04:00
txout . nValue - = nFeeRet / nSubtractFeeFromAmount ; // Subtract fee equally from each selected recipient
if ( fFirst ) // first receiver pays the remainder not divisible by output count
{
fFirst = false ;
txout . nValue - = nFeeRet % nSubtractFeeFromAmount ;
}
}
2018-03-05 18:42:49 -03:00
// Include the fee cost for outputs. Note this is only used for BnB right now
2018-06-22 14:27:18 -04:00
coin_selection_params . tx_noinputs_size + = : : GetSerializeSize ( txout , PROTOCOL_VERSION ) ;
2014-07-23 08:34:36 -04:00
2019-03-06 18:47:57 -03:00
if ( IsDust ( txout , chain ( ) . relayDustFee ( ) ) )
2013-04-25 18:31:22 -03:00
{
2014-07-23 08:34:36 -04:00
if ( recipient . fSubtractFeeFromAmount & & nFeeRet > 0 )
{
if ( txout . nValue < 0 )
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " The transaction amount is too small to pay the fee " ) . translated ;
2014-07-23 08:34:36 -04:00
else
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " The transaction amount is too small to send after the fee has been deducted " ) . translated ;
2014-07-23 08:34:36 -04:00
}
else
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction amount too small " ) . translated ;
2013-04-24 19:27:00 -03:00
return false ;
2013-04-25 18:31:22 -03:00
}
2014-06-07 07:53:27 -04:00
txNew . vout . push_back ( txout ) ;
2013-04-24 19:27:00 -03:00
}
2011-06-26 13:23:24 -04:00
// Choose coins to use
2018-03-05 18:42:49 -03:00
bool bnb_used ;
2017-06-30 13:16:53 -04:00
if ( pick_new_inputs ) {
nValueIn = 0 ;
setCoins . clear ( ) ;
2018-10-03 02:41:03 -03:00
int change_spend_size = CalculateMaximumSignedInputSize ( change_prototype_txout , this ) ;
// If the wallet doesn't know how to sign change output, assume p2sh-p2wpkh
// as lower-bound to allow BnB to do it's thing
if ( change_spend_size = = - 1 ) {
coin_selection_params . change_spend_size = DUMMY_NESTED_P2WPKH_INPUT_SIZE ;
} else {
coin_selection_params . change_spend_size = ( size_t ) change_spend_size ;
}
2018-03-05 18:42:49 -03:00
coin_selection_params . effective_fee = nFeeRateNeeded ;
if ( ! SelectCoins ( vAvailableCoins , nValueToSelect , setCoins , nValueIn , coin_control , coin_selection_params , bnb_used ) )
2017-06-30 13:16:53 -04:00
{
2018-03-05 18:42:49 -03:00
// If BnB was used, it was the first pass. No longer the first pass and continue loop with knapsack.
if ( bnb_used ) {
coin_selection_params . use_bnb = false ;
continue ;
}
else {
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Insufficient funds " ) . translated ;
2018-03-05 18:42:49 -03:00
return false ;
}
2017-06-30 13:16:53 -04:00
}
2018-06-27 12:06:44 -04:00
} else {
bnb_used = false ;
2013-04-25 18:31:22 -03:00
}
2011-06-26 13:23:24 -04:00
2015-03-18 15:22:49 -03:00
const CAmount nChange = nValueIn - nValueToSelect ;
2011-07-24 10:37:09 -04:00
if ( nChange > 0 )
2011-06-26 13:23:24 -04:00
{
2011-09-28 13:30:06 -03:00
// Fill a vout to ourself
2013-04-24 19:27:00 -03:00
CTxOut newTxOut ( nChange , scriptChange ) ;
// Never create dust outputs; if we would, just
// add the dust to the fee.
2018-03-05 18:42:49 -03:00
// The nChange when BnB is used is always going to go to fees.
if ( IsDust ( newTxOut , discard_rate ) | | bnb_used )
2013-04-24 19:27:00 -03:00
{
2016-03-29 22:04:22 -03:00
nChangePosInOut = - 1 ;
2013-04-24 19:27:00 -03:00
nFeeRet + = nChange ;
}
else
{
2016-03-29 22:04:22 -03:00
if ( nChangePosInOut = = - 1 )
{
// Insert change txn at random position:
nChangePosInOut = GetRandInt ( txNew . vout . size ( ) + 1 ) ;
}
2016-06-08 09:34:18 -04:00
else if ( ( unsigned int ) nChangePosInOut > txNew . vout . size ( ) )
2016-03-29 22:04:22 -03:00
{
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Change index out of range " ) . translated ;
2016-03-29 22:04:22 -03:00
return false ;
}
2017-01-26 22:33:45 -03:00
std : : vector < CTxOut > : : iterator position = txNew . vout . begin ( ) + nChangePosInOut ;
2014-06-07 07:53:27 -04:00
txNew . vout . insert ( position , newTxOut ) ;
2013-04-24 19:27:00 -03:00
}
2017-04-28 18:22:37 -03:00
} else {
nChangePosInOut = - 1 ;
}
2011-06-26 13:23:24 -04:00
2018-03-15 17:18:48 -03:00
// Dummy fill vin for maximum size estimation
2013-08-25 14:13:25 -04:00
//
2018-03-15 17:18:48 -03:00
for ( const auto & coin : setCoins ) {
txNew . vin . push_back ( CTxIn ( coin . outpoint , CScript ( ) ) ) ;
}
2011-06-26 13:23:24 -04:00
2018-12-10 03:03:07 -03:00
nBytes = CalculateMaximumSignedTxSize ( CTransaction ( txNew ) , this , coin_control . fAllowWatchOnly ) ;
2018-03-05 18:37:24 -03:00
if ( nBytes < 0 ) {
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Signing transaction failed " ) . translated ;
2017-01-26 14:57:04 -03:00
return false ;
2015-04-24 22:29:00 -03:00
}
2017-07-28 21:40:29 -04:00
nFeeNeeded = GetMinimumFee ( * this , nBytes , coin_control , & feeCalc ) ;
2018-04-07 13:12:46 -03:00
if ( feeCalc . reason = = FeeReason : : FALLBACK & & ! m_allow_fallback_fee ) {
2017-12-12 17:32:50 -03:00
// eventually allow a fallback fee
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Fee estimation failed. Fallbackfee is disabled. Wait a few blocks or enable -fallbackfee. " ) . translated ;
2017-12-12 17:32:50 -03:00
return false ;
}
2014-05-27 15:44:57 -04:00
2017-01-05 11:12:48 -03:00
if ( nFeeRet > = nFeeNeeded ) {
2017-06-30 13:16:53 -04:00
// Reduce fee to only the needed amount if possible. This
// prevents potential overpayment in fees if the coins
// selected to meet nFeeNeeded result in a transaction that
// requires less fee than the prior iteration.
// If we have no change and a big enough excess fee, then
// try to construct transaction again only without picking
// new inputs. We now know we only need the smaller fee
// (because of reduced tx size) and so we should add a
// change output. Only try this once.
2017-08-25 16:46:07 -03:00
if ( nChangePosInOut = = - 1 & & nSubtractFeeFromAmount = = 0 & & pick_new_inputs ) {
2018-03-05 18:42:49 -03:00
unsigned int tx_size_with_change = nBytes + coin_selection_params . change_output_size + 2 ; // Add 2 as a buffer in case increasing # of outputs changes compact size
2017-07-28 21:40:29 -04:00
CAmount fee_needed_with_change = GetMinimumFee ( * this , tx_size_with_change , coin_control , nullptr ) ;
2017-08-25 16:46:07 -03:00
CAmount minimum_value_for_change = GetDustThreshold ( change_prototype_txout , discard_rate ) ;
if ( nFeeRet > = fee_needed_with_change + minimum_value_for_change ) {
pick_new_inputs = false ;
nFeeRet = fee_needed_with_change ;
continue ;
}
2017-06-30 13:16:53 -04:00
}
// If we have change output already, just increase it
2017-01-05 11:12:48 -03:00
if ( nFeeRet > nFeeNeeded & & nChangePosInOut ! = - 1 & & nSubtractFeeFromAmount = = 0 ) {
CAmount extraFeePaid = nFeeRet - nFeeNeeded ;
2017-01-26 22:33:45 -03:00
std : : vector < CTxOut > : : iterator change_position = txNew . vout . begin ( ) + nChangePosInOut ;
2017-01-05 11:12:48 -03:00
change_position - > nValue + = extraFeePaid ;
nFeeRet - = extraFeePaid ;
}
2014-12-16 06:43:40 -03:00
break ; // Done, enough fee included.
2017-01-05 11:12:48 -03:00
}
2017-06-30 13:16:53 -04:00
else if ( ! pick_new_inputs ) {
// This shouldn't happen, we should have had enough excess
// fee to pay for the new output and still meet nFeeNeeded
2017-07-27 17:01:39 -04:00
// Or we should have just subtracted fee from recipients and
// nFeeNeeded should not have changed
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction fee and change calculation failed " ) . translated ;
2017-06-30 13:16:53 -04:00
return false ;
}
2014-05-27 15:44:57 -04:00
2017-01-05 11:10:08 -03:00
// Try to reduce change to include necessary fee
if ( nChangePosInOut ! = - 1 & & nSubtractFeeFromAmount = = 0 ) {
CAmount additionalFeeNeeded = nFeeNeeded - nFeeRet ;
2017-01-26 22:33:45 -03:00
std : : vector < CTxOut > : : iterator change_position = txNew . vout . begin ( ) + nChangePosInOut ;
2017-01-05 11:10:08 -03:00
// Only reduce change if remaining amount is still a large enough output.
if ( change_position - > nValue > = MIN_FINAL_CHANGE + additionalFeeNeeded ) {
change_position - > nValue - = additionalFeeNeeded ;
nFeeRet + = additionalFeeNeeded ;
break ; // Done, able to increase fee from change
}
}
2017-07-27 17:01:39 -04:00
// If subtracting fee from recipients, we now know what fee we
// need to subtract, we have no reason to reselect inputs
if ( nSubtractFeeFromAmount > 0 ) {
pick_new_inputs = false ;
}
2014-05-27 15:44:57 -04:00
// Include more fee and try again.
nFeeRet = nFeeNeeded ;
2018-03-05 18:42:49 -03:00
coin_selection_params . use_bnb = false ;
2014-05-27 15:44:57 -04:00
continue ;
2011-06-26 13:23:24 -04:00
}
}
2017-01-04 05:51:14 -03:00
2018-03-15 17:18:48 -03:00
// Shuffle selected coins and fill in final vin
txNew . vin . clear ( ) ;
std : : vector < CInputCoin > selected_coins ( setCoins . begin ( ) , setCoins . end ( ) ) ;
2018-10-31 19:42:03 -03:00
Shuffle ( selected_coins . begin ( ) , selected_coins . end ( ) , FastRandomContext ( ) ) ;
2018-03-15 17:18:48 -03:00
// Note how the sequence number is set to non-maxint so that
// the nLockTime set above actually works.
//
// BIP125 defines opt-in RBF as any nSequence < maxint-1, so
// we use the highest possible value in that range (maxint-2)
// to avoid conflicting with other possible uses of nSequence,
// and in the spirit of "smallest possible change from prior
// behavior."
2018-04-07 13:12:46 -03:00
const uint32_t nSequence = coin_control . m_signal_bip125_rbf . get_value_or ( m_signal_rbf ) ? MAX_BIP125_RBF_SEQUENCE : ( CTxIn : : SEQUENCE_FINAL - 1 ) ;
2018-03-15 17:18:48 -03:00
for ( const auto & coin : selected_coins ) {
txNew . vin . push_back ( CTxIn ( coin . outpoint , CScript ( ) , nSequence ) ) ;
}
2017-01-04 05:51:14 -03:00
if ( sign )
{
int nIn = 0 ;
2018-03-15 17:18:48 -03:00
for ( const auto & coin : selected_coins )
2017-01-04 05:51:14 -03:00
{
2017-04-07 06:57:06 -03:00
const CScript & scriptPubKey = coin . txout . scriptPubKey ;
2017-01-04 05:51:14 -03:00
SignatureData sigdata ;
2018-05-20 16:47:14 -04:00
if ( ! ProduceSignature ( * this , MutableTransactionSignatureCreator ( & txNew , nIn , coin . txout . nValue , SIGHASH_ALL ) , scriptPubKey , sigdata ) )
2017-01-04 05:51:14 -03:00
{
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Signing transaction failed " ) . translated ;
2017-01-04 05:51:14 -03:00
return false ;
} else {
2018-05-17 20:54:18 -04:00
UpdateInput ( txNew . vin . at ( nIn ) , sigdata ) ;
2017-01-04 05:51:14 -03:00
}
nIn + + ;
}
}
2017-02-02 17:30:03 -03:00
// Return the constructed transaction data.
tx = MakeTransactionRef ( std : : move ( txNew ) ) ;
2017-01-04 05:51:14 -03:00
// Limit size
2018-04-26 14:24:48 -03:00
if ( GetTransactionWeight ( * tx ) > MAX_STANDARD_TX_WEIGHT )
2017-01-04 05:51:14 -03:00
{
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction too large " ) . translated ;
2017-01-04 05:51:14 -03:00
return false ;
}
2011-06-26 13:23:24 -04:00
}
2019-07-02 10:16:36 -04:00
if ( nFeeRet > m_default_max_tx_fee ) {
strFailReason = TransactionErrorString ( TransactionError : : MAX_FEE_EXCEEDED ) ;
return false ;
}
2017-08-01 15:17:40 -04:00
if ( gArgs . GetBoolArg ( " -walletrejectlongchains " , DEFAULT_WALLET_REJECT_LONG_CHAINS ) ) {
2016-12-02 17:45:43 -03:00
// Lastly, ensure this tx will pass the mempool's chain limits
2017-07-28 19:45:45 -04:00
if ( ! chain ( ) . checkChainLimits ( tx ) ) {
2019-06-28 14:09:58 -04:00
strFailReason = _ ( " Transaction has too long of a mempool chain " ) . translated ;
2016-12-02 17:45:43 -03:00
return false ;
}
}
2017-04-25 16:39:32 -03:00
2019-06-13 14:12:01 -04:00
// Before we return success, we assume any change key will be used to prevent
// accidental re-use.
reservedest . KeepDestination ( ) ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " Fee Calculation: Fee:%d Bytes:%u Needed:%d Tgt:%d (requested %d) Reason: \" %s \" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) \n " ,
2017-08-25 16:49:44 -03:00
nFeeRet , nBytes , nFeeNeeded , feeCalc . returnedTarget , feeCalc . desiredTarget , StringForFeeReason ( feeCalc . reason ) , feeCalc . est . decay ,
2017-04-25 16:39:32 -03:00
feeCalc . est . pass . start , feeCalc . est . pass . end ,
100 * feeCalc . est . pass . withinTarget / ( feeCalc . est . pass . totalConfirmed + feeCalc . est . pass . inMempool + feeCalc . est . pass . leftMempool ) ,
feeCalc . est . pass . withinTarget , feeCalc . est . pass . totalConfirmed , feeCalc . est . pass . inMempool , feeCalc . est . pass . leftMempool ,
feeCalc . est . fail . start , feeCalc . est . fail . end ,
100 * feeCalc . est . fail . withinTarget / ( feeCalc . est . fail . totalConfirmed + feeCalc . est . fail . inMempool + feeCalc . est . fail . leftMempool ) ,
feeCalc . est . fail . withinTarget , feeCalc . est . fail . totalConfirmed , feeCalc . est . fail . inMempool , feeCalc . est . fail . leftMempool ) ;
2014-07-23 08:34:36 -04:00
return true ;
2011-06-26 13:23:24 -04:00
}
2014-10-26 04:03:12 -03:00
/**
* Call after CreateTransaction unless you want to abort
*/
2019-07-10 11:37:45 -04:00
bool CWallet : : CommitTransaction ( CTransactionRef tx , mapValue_t mapValue , std : : vector < std : : pair < std : : string , std : : string > > orderForm , CValidationState & state )
2011-06-26 13:23:24 -04:00
{
{
2017-07-26 10:23:01 -04:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2017-02-02 17:30:03 -03:00
CWalletTx wtxNew ( this , std : : move ( tx ) ) ;
wtxNew . mapValue = std : : move ( mapValue ) ;
wtxNew . vOrderForm = std : : move ( orderForm ) ;
wtxNew . fTimeReceivedIsTxTime = true ;
wtxNew . fFromMe = true ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " CommitTransaction: \n %s " , wtxNew . tx - > ToString ( ) ) ; /* Continued */
2011-06-26 13:23:24 -04:00
{
// Add tx to wallet, because if it has change it's also ours,
// otherwise just for transaction history.
2016-06-08 00:41:03 -04:00
AddToWallet ( wtxNew ) ;
2011-06-26 13:23:24 -04:00
2014-02-15 18:38:28 -03:00
// Notify that old coins are spent
2017-06-01 21:18:57 -04:00
for ( const CTxIn & txin : wtxNew . tx - > vin )
2011-06-26 13:23:24 -04:00
{
2017-01-19 18:08:03 -03:00
CWalletTx & coin = mapWallet . at ( txin . prevout . hash ) ;
2011-06-28 17:45:22 -04:00
coin . BindWallet ( this ) ;
2012-05-05 10:07:14 -04:00
NotifyTransactionChanged ( this , coin . GetHash ( ) , CT_UPDATED ) ;
2011-06-26 13:23:24 -04:00
}
}
Use callbacks to cache whether wallet transactions are in mempool
This avoid calling out to mempool state during coin selection,
balance calculation, etc. In the next commit we ensure all wallet
callbacks from CValidationInterface happen in the same queue,
serialized with each other. This helps to avoid re-introducing one
of the issues described in #9584 [1] by further disconnecting
wallet from current chain/mempool state.
Thanks to @morcos for the suggestion to do this.
Note that there are several race conditions introduced here:
* If a user calls sendrawtransaction from RPC, adding a
transaction which is "trusted" (ie from them) and pays them
change, it may not be immediately used by coin selection until
the notification callbacks finish running. No such race is
introduced in normal transaction-sending RPCs as this case is
explicitly handled.
* Until Block{Connected,Disconnected} and
TransactionAddedToMempool calls also run in the CSceduler
background thread, there is a race where
TransactionAddedToMempool might be called after a
Block{Connected,Disconnected} call happens.
* Wallet will write a new best chain from the SetBestChain
callback prior to having processed the transaction from that
block.
[1] "you could go to select coins, need to use 0-conf change, but
such 0-conf change may have been included in a block who's
callbacks have not yet been processed - resulting in thinking they
are not in mempool and, thus, not selectable."
2017-01-20 18:38:07 -03:00
// Get the inserted-CWalletTx from mapWallet so that the
// fInMempool flag is cached properly
2017-01-19 18:08:03 -03:00
CWalletTx & wtx = mapWallet . at ( wtxNew . GetHash ( ) ) ;
Use callbacks to cache whether wallet transactions are in mempool
This avoid calling out to mempool state during coin selection,
balance calculation, etc. In the next commit we ensure all wallet
callbacks from CValidationInterface happen in the same queue,
serialized with each other. This helps to avoid re-introducing one
of the issues described in #9584 [1] by further disconnecting
wallet from current chain/mempool state.
Thanks to @morcos for the suggestion to do this.
Note that there are several race conditions introduced here:
* If a user calls sendrawtransaction from RPC, adding a
transaction which is "trusted" (ie from them) and pays them
change, it may not be immediately used by coin selection until
the notification callbacks finish running. No such race is
introduced in normal transaction-sending RPCs as this case is
explicitly handled.
* Until Block{Connected,Disconnected} and
TransactionAddedToMempool calls also run in the CSceduler
background thread, there is a race where
TransactionAddedToMempool might be called after a
Block{Connected,Disconnected} call happens.
* Wallet will write a new best chain from the SetBestChain
callback prior to having processed the transaction from that
block.
[1] "you could go to select coins, need to use 0-conf change, but
such 0-conf change may have been included in a block who's
callbacks have not yet been processed - resulting in thinking they
are not in mempool and, thus, not selectable."
2017-01-20 18:38:07 -03:00
2015-03-27 06:34:48 -03:00
if ( fBroadcastTransactions )
2011-06-26 13:23:24 -04:00
{
2019-04-11 11:58:53 -04:00
std : : string err_string ;
2019-08-09 11:07:30 -04:00
if ( ! wtx . SubmitMemoryPoolAndRelay ( err_string , true , * locked_chain ) ) {
2019-04-11 11:58:53 -04:00
WalletLogPrintf ( " CommitTransaction(): Transaction cannot be broadcast immediately, %s \n " , err_string ) ;
2016-12-08 16:49:28 -03:00
// TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
2015-03-27 06:34:48 -03:00
}
2011-06-26 13:23:24 -04:00
}
}
return true ;
}
2012-09-18 15:30:47 -03:00
DBErrors CWallet : : LoadWallet ( bool & fFirstRunRet )
2011-06-26 13:23:24 -04:00
{
2019-08-22 13:16:40 -04:00
// Even if we don't use this lock in this function, we want to preserve
// lock order in LoadToWallet if query of chain state is needed to know
// tx status. If lock can't be taken (e.g wallet-tool), tx confirmation
// status may be not reliable.
auto locked_chain = LockChain ( ) ;
2017-07-26 10:23:01 -04:00
LOCK ( cs_wallet ) ;
2017-08-24 15:12:21 -03:00
2011-06-26 13:23:24 -04:00
fFirstRunRet = false ;
2017-12-08 08:39:22 -03:00
DBErrors nLoadWalletRet = WalletBatch ( * database , " cr+ " ) . LoadWallet ( this ) ;
2018-03-09 11:03:40 -03:00
if ( nLoadWalletRet = = DBErrors : : NEED_REWRITE )
2011-11-10 17:29:23 -03:00
{
2017-12-08 08:39:22 -03:00
if ( database - > Rewrite ( " \x04 pool " ) )
2011-11-10 23:12:46 -03:00
{
2017-04-19 13:55:32 -03:00
setInternalKeyPool . clear ( ) ;
setExternalKeyPool . clear ( ) ;
2017-07-21 13:54:13 -04:00
m_pool_key_to_index . clear ( ) ;
2011-11-10 23:12:46 -03:00
// Note: can't top-up keypool here, because wallet is locked.
// User will be prompted to unlock wallet the next operation
2015-04-08 09:24:46 -03:00
// that requires a new key.
2011-11-10 23:12:46 -03:00
}
2011-11-10 17:29:23 -03:00
}
2018-04-29 15:15:05 -03:00
{
LOCK ( cs_KeyStore ) ;
// This wallet is in its first run if all of these are empty
2019-02-06 23:26:55 -03:00
fFirstRunRet = mapKeys . empty ( ) & & mapCryptedKeys . empty ( ) & & mapWatchKeys . empty ( ) & & setWatchOnly . empty ( ) & & mapScripts . empty ( )
& & ! IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) & & ! IsWalletFlagSet ( WALLET_FLAG_BLANK_WALLET ) ;
2018-04-29 15:15:05 -03:00
}
2017-07-28 20:00:49 -04:00
2018-03-09 11:03:40 -03:00
if ( nLoadWalletRet ! = DBErrors : : LOAD_OK )
2011-07-04 21:06:19 -04:00
return nLoadWalletRet ;
2011-06-26 13:23:24 -04:00
2018-03-09 11:03:40 -03:00
return DBErrors : : LOAD_OK ;
2011-06-26 13:23:24 -04:00
}
2017-01-26 22:33:45 -03:00
DBErrors CWallet : : ZapSelectTx ( std : : vector < uint256 > & vHashIn , std : : vector < uint256 > & vHashOut )
2016-03-07 10:51:06 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
DBErrors nZapSelectTxRet = WalletBatch ( * database , " cr+ " ) . ZapSelectTx ( vHashIn , vHashOut ) ;
2018-06-11 14:09:16 -04:00
for ( uint256 hash : vHashOut ) {
const auto & it = mapWallet . find ( hash ) ;
wtxOrdered . erase ( it - > second . m_it_wtxOrdered ) ;
mapWallet . erase ( it ) ;
2019-09-24 06:15:15 -03:00
NotifyTransactionChanged ( this , hash , CT_DELETED ) ;
2018-06-11 14:09:16 -04:00
}
2016-11-12 06:53:18 -03:00
2018-03-09 11:03:40 -03:00
if ( nZapSelectTxRet = = DBErrors : : NEED_REWRITE )
2016-03-07 10:51:06 -03:00
{
2017-12-08 08:39:22 -03:00
if ( database - > Rewrite ( " \x04 pool " ) )
2016-03-07 10:51:06 -03:00
{
2017-04-19 13:55:32 -03:00
setInternalKeyPool . clear ( ) ;
setExternalKeyPool . clear ( ) ;
2017-07-21 13:54:13 -04:00
m_pool_key_to_index . clear ( ) ;
2016-03-07 10:51:06 -03:00
// Note: can't top-up keypool here, because wallet is locked.
// User will be prompted to unlock wallet the next operation
// that requires a new key.
}
}
2018-03-09 11:03:40 -03:00
if ( nZapSelectTxRet ! = DBErrors : : LOAD_OK )
2016-03-07 10:51:06 -03:00
return nZapSelectTxRet ;
MarkDirty ( ) ;
2018-03-09 11:03:40 -03:00
return DBErrors : : LOAD_OK ;
2016-03-07 10:51:06 -03:00
}
2011-07-07 09:22:54 -04:00
2014-02-14 14:27:15 -03:00
DBErrors CWallet : : ZapWalletTx ( std : : vector < CWalletTx > & vWtx )
2014-02-14 13:33:07 -03:00
{
2017-12-08 08:39:22 -03:00
DBErrors nZapWalletTxRet = WalletBatch ( * database , " cr+ " ) . ZapWalletTx ( vWtx ) ;
2018-03-09 11:03:40 -03:00
if ( nZapWalletTxRet = = DBErrors : : NEED_REWRITE )
2014-02-14 13:33:07 -03:00
{
2017-12-08 08:39:22 -03:00
if ( database - > Rewrite ( " \x04 pool " ) )
2014-02-14 13:33:07 -03:00
{
LOCK ( cs_wallet ) ;
2017-04-19 13:55:32 -03:00
setInternalKeyPool . clear ( ) ;
setExternalKeyPool . clear ( ) ;
2017-07-21 13:54:13 -04:00
m_pool_key_to_index . clear ( ) ;
2014-02-14 13:33:07 -03:00
// Note: can't top-up keypool here, because wallet is locked.
// User will be prompted to unlock wallet the next operation
2014-10-26 04:03:12 -03:00
// that requires a new key.
2014-02-14 13:33:07 -03:00
}
}
2018-03-09 11:03:40 -03:00
if ( nZapWalletTxRet ! = DBErrors : : LOAD_OK )
2014-02-14 13:33:07 -03:00
return nZapWalletTxRet ;
2018-03-09 11:03:40 -03:00
return DBErrors : : LOAD_OK ;
2014-02-14 13:33:07 -03:00
}
2019-04-04 06:33:02 -03:00
bool CWallet : : SetAddressBookWithDB ( WalletBatch & batch , const CTxDestination & address , const std : : string & strName , const std : : string & strPurpose )
2011-07-07 09:22:54 -04:00
{
2014-02-18 14:11:46 -03:00
bool fUpdated = false ;
{
2019-02-07 16:46:08 -03:00
LOCK ( cs_wallet ) ;
2014-02-18 14:11:46 -03:00
std : : map < CTxDestination , CAddressBookData > : : iterator mi = mapAddressBook . find ( address ) ;
fUpdated = mi ! = mapAddressBook . end ( ) ;
mapAddressBook [ address ] . name = strName ;
if ( ! strPurpose . empty ( ) ) /* update purpose only if requested */
mapAddressBook [ address ] . purpose = strPurpose ;
}
2014-09-06 15:59:59 -04:00
NotifyAddressBookChanged ( this , address , strName , : : IsMine ( * this , address ) ! = ISMINE_NO ,
2014-02-18 14:11:46 -03:00
strPurpose , ( fUpdated ? CT_UPDATED : CT_NEW ) ) ;
2019-04-04 06:33:02 -03:00
if ( ! strPurpose . empty ( ) & & ! batch . WritePurpose ( EncodeDestination ( address ) , strPurpose ) )
2013-07-22 02:50:39 -04:00
return false ;
2019-04-04 06:33:02 -03:00
return batch . WriteName ( EncodeDestination ( address ) , strName ) ;
}
bool CWallet : : SetAddressBook ( const CTxDestination & address , const std : : string & strName , const std : : string & strPurpose )
{
WalletBatch batch ( * database ) ;
return SetAddressBookWithDB ( batch , address , strName , strPurpose ) ;
2011-07-07 09:22:54 -04:00
}
2013-07-22 02:50:39 -04:00
bool CWallet : : DelAddressBook ( const CTxDestination & address )
2011-07-07 09:22:54 -04:00
{
2013-11-18 12:55:54 -03:00
{
2019-02-07 16:46:08 -03:00
LOCK ( cs_wallet ) ;
2014-02-18 14:11:46 -03:00
2017-03-08 09:08:26 -03:00
// Delete destdata tuples associated with address
2017-08-22 22:02:33 -03:00
std : : string strAddress = EncodeDestination ( address ) ;
2018-05-15 18:41:53 -04:00
for ( const std : : pair < const std : : string , std : : string > & item : mapAddressBook [ address ] . destdata )
2013-11-18 12:55:54 -03:00
{
2017-12-08 08:39:22 -03:00
WalletBatch ( * database ) . EraseDestData ( strAddress , item . first ) ;
2013-11-18 12:55:54 -03:00
}
2014-02-18 14:11:46 -03:00
mapAddressBook . erase ( address ) ;
2013-11-18 12:55:54 -03:00
}
2014-09-06 15:59:59 -04:00
NotifyAddressBookChanged ( this , address , " " , : : IsMine ( * this , address ) ! = ISMINE_NO , " " , CT_DELETED ) ;
2014-02-18 14:11:46 -03:00
2017-12-08 08:39:22 -03:00
WalletBatch ( * database ) . ErasePurpose ( EncodeDestination ( address ) ) ;
return WalletBatch ( * database ) . EraseName ( EncodeDestination ( address ) ) ;
2011-07-07 09:22:54 -04:00
}
2014-10-26 04:03:12 -03:00
/**
* Mark old keypool keys as used ,
2017-03-28 15:11:44 -03:00
* and generate all new keys
2014-10-26 04:03:12 -03:00
*/
2011-11-17 16:01:25 -03:00
bool CWallet : : NewKeyPool ( )
{
2017-05-05 03:53:39 -03:00
if ( IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) {
return false ;
}
2011-11-17 16:01:25 -03:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
2017-04-19 14:11:16 -03:00
2018-06-18 01:58:28 -04:00
for ( const int64_t nIndex : setInternalKeyPool ) {
2017-12-08 08:39:22 -03:00
batch . ErasePool ( nIndex ) ;
2017-04-19 14:11:16 -03:00
}
2017-04-19 13:55:32 -03:00
setInternalKeyPool . clear ( ) ;
2017-04-19 14:11:16 -03:00
2018-06-18 01:58:28 -04:00
for ( const int64_t nIndex : setExternalKeyPool ) {
2017-12-08 08:39:22 -03:00
batch . ErasePool ( nIndex ) ;
2017-04-19 14:11:16 -03:00
}
2017-04-19 13:55:32 -03:00
setExternalKeyPool . clear ( ) ;
2011-11-17 16:01:25 -03:00
2018-06-18 01:58:28 -04:00
for ( const int64_t nIndex : set_pre_split_keypool ) {
2018-04-21 04:10:12 -03:00
batch . ErasePool ( nIndex ) ;
}
set_pre_split_keypool . clear ( ) ;
2017-07-21 13:54:13 -04:00
m_pool_key_to_index . clear ( ) ;
2017-01-16 04:57:31 -03:00
if ( ! TopUpKeyPool ( ) ) {
2011-11-17 16:01:25 -03:00
return false ;
}
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " CWallet::NewKeyPool rewrote keypool \n " ) ;
2011-11-17 16:01:25 -03:00
}
return true ;
}
2017-01-10 12:45:30 -03:00
size_t CWallet : : KeypoolCountExternalKeys ( )
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2018-04-21 04:10:12 -03:00
return setExternalKeyPool . size ( ) + set_pre_split_keypool . size ( ) ;
2017-01-10 12:45:30 -03:00
}
2017-07-26 16:37:15 -04:00
void CWallet : : LoadKeyPool ( int64_t nIndex , const CKeyPool & keypool )
{
2017-07-21 13:54:13 -04:00
AssertLockHeld ( cs_wallet ) ;
2018-04-21 04:10:12 -03:00
if ( keypool . m_pre_split ) {
set_pre_split_keypool . insert ( nIndex ) ;
} else if ( keypool . fInternal ) {
2017-07-26 16:37:15 -04:00
setInternalKeyPool . insert ( nIndex ) ;
} else {
setExternalKeyPool . insert ( nIndex ) ;
}
m_max_keypool_index = std : : max ( m_max_keypool_index , nIndex ) ;
2017-07-21 13:54:13 -04:00
m_pool_key_to_index [ keypool . vchPubKey . GetID ( ) ] = nIndex ;
2017-07-26 16:37:15 -04:00
// If no metadata exists yet, create a default with the pool key's
// creation time. Note that this may be overwritten by actually
// stored metadata for that key later, which is fine.
CKeyID keyid = keypool . vchPubKey . GetID ( ) ;
if ( mapKeyMetadata . count ( keyid ) = = 0 )
mapKeyMetadata [ keyid ] = CKeyMetadata ( keypool . nTime ) ;
}
2013-06-25 16:07:29 -04:00
bool CWallet : : TopUpKeyPool ( unsigned int kpSize )
2011-06-26 13:23:24 -04:00
{
2019-02-06 23:26:55 -03:00
if ( ! CanGenerateKeys ( ) ) {
2017-05-05 03:53:39 -03:00
return false ;
}
2011-06-26 13:23:24 -04:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2019-07-09 10:09:56 -04:00
if ( IsLocked ( ) ) return false ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2011-06-26 13:23:24 -04:00
// Top up key pool
2013-06-25 16:07:29 -04:00
unsigned int nTargetSize ;
if ( kpSize > 0 )
nTargetSize = kpSize ;
else
2017-08-01 15:17:40 -04:00
nTargetSize = std : : max ( gArgs . GetArg ( " -keypool " , DEFAULT_KEYPOOL_SIZE ) , ( int64_t ) 0 ) ;
2013-06-25 16:07:29 -04:00
2017-01-10 12:45:30 -03:00
// count amount of available keys (internal, external)
2017-01-17 04:55:30 -03:00
// make sure the keypool of external and internal keys fits the user selected target (-keypool)
2017-04-19 13:55:32 -03:00
int64_t missingExternal = std : : max ( std : : max ( ( int64_t ) nTargetSize , ( int64_t ) 1 ) - ( int64_t ) setExternalKeyPool . size ( ) , ( int64_t ) 0 ) ;
int64_t missingInternal = std : : max ( std : : max ( ( int64_t ) nTargetSize , ( int64_t ) 1 ) - ( int64_t ) setInternalKeyPool . size ( ) , ( int64_t ) 0 ) ;
2017-01-10 12:45:30 -03:00
if ( ! IsHDEnabled ( ) | | ! CanSupportFeature ( FEATURE_HD_SPLIT ) )
{
// don't create extra internal keys
missingInternal = 0 ;
}
bool internal = false ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
2017-01-10 12:45:30 -03:00
for ( int64_t i = missingInternal + missingExternal ; i - - ; )
2011-06-26 13:23:24 -04:00
{
2017-04-19 14:11:16 -03:00
if ( i < missingInternal ) {
2017-01-10 12:45:30 -03:00
internal = true ;
2017-04-19 14:11:16 -03:00
}
2017-12-08 08:39:22 -03:00
CPubKey pubkey ( GenerateNewKey ( batch , internal ) ) ;
2018-11-06 11:43:58 -03:00
AddKeypoolPubkeyWithDB ( pubkey , internal , batch ) ;
2017-07-17 04:16:36 -04:00
}
if ( missingInternal + missingExternal > 0 ) {
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " keypool added %d keys (%d internal), size=%u (%u internal) \n " , missingInternal + missingExternal , missingInternal , setInternalKeyPool . size ( ) + setExternalKeyPool . size ( ) + set_pre_split_keypool . size ( ) , setInternalKeyPool . size ( ) ) ;
2011-06-26 13:23:24 -04:00
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
}
2019-01-18 19:05:32 -03:00
NotifyCanGetAddressesChanged ( ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return true ;
}
2018-11-06 11:43:58 -03:00
void CWallet : : AddKeypoolPubkeyWithDB ( const CPubKey & pubkey , const bool internal , WalletBatch & batch )
{
LOCK ( cs_wallet ) ;
assert ( m_max_keypool_index < std : : numeric_limits < int64_t > : : max ( ) ) ; // How in the hell did you use so many keys?
int64_t index = + + m_max_keypool_index ;
if ( ! batch . WritePool ( index , CKeyPool ( pubkey , internal ) ) ) {
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing imported pubkey failed " ) ;
}
if ( internal ) {
setInternalKeyPool . insert ( index ) ;
} else {
setExternalKeyPool . insert ( index ) ;
}
m_pool_key_to_index [ pubkey . GetID ( ) ] = index ;
}
2018-05-16 21:56:41 -04:00
bool CWallet : : ReserveKeyFromKeyPool ( int64_t & nIndex , CKeyPool & keypool , bool fRequestedInternal )
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
nIndex = - 1 ;
2012-05-14 13:07:52 -04:00
keypool . vchPubKey = CPubKey ( ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2019-07-09 10:09:56 -04:00
TopUpKeyPool ( ) ;
2011-06-26 13:23:24 -04:00
2018-11-06 11:44:51 -03:00
bool fReturningInternal = fRequestedInternal ;
fReturningInternal & = ( IsHDEnabled ( ) & & CanSupportFeature ( FEATURE_HD_SPLIT ) ) | | IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ;
2018-05-16 21:56:41 -04:00
bool use_split_keypool = set_pre_split_keypool . empty ( ) ;
std : : set < int64_t > & setKeyPool = use_split_keypool ? ( fReturningInternal ? setInternalKeyPool : setExternalKeyPool ) : set_pre_split_keypool ;
2017-04-19 13:55:32 -03:00
2011-06-26 13:23:24 -04:00
// Get the oldest key
2018-05-16 21:56:41 -04:00
if ( setKeyPool . empty ( ) ) {
return false ;
}
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
2017-04-19 13:55:32 -03:00
auto it = setKeyPool . begin ( ) ;
nIndex = * it ;
setKeyPool . erase ( it ) ;
2017-12-08 08:39:22 -03:00
if ( ! batch . ReadPool ( nIndex , keypool ) ) {
2017-04-19 13:55:32 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : read failed " ) ;
2017-01-10 12:45:30 -03:00
}
2018-11-06 11:44:51 -03:00
CPubKey pk ;
if ( ! GetPubKey ( keypool . vchPubKey . GetID ( ) , pk ) ) {
2017-04-19 13:55:32 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : unknown key in key pool " ) ;
}
2018-04-21 04:10:12 -03:00
// If the key was pre-split keypool, we don't care about what type it is
2018-05-16 21:56:41 -04:00
if ( use_split_keypool & & keypool . fInternal ! = fReturningInternal ) {
2017-04-19 13:55:32 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : keypool entry misclassified " ) ;
}
2018-05-16 21:56:41 -04:00
if ( ! keypool . vchPubKey . IsValid ( ) ) {
throw std : : runtime_error ( std : : string ( __func__ ) + " : keypool entry invalid " ) ;
}
2017-04-19 13:55:32 -03:00
2017-07-21 13:54:13 -04:00
m_pool_key_to_index . erase ( keypool . vchPubKey . GetID ( ) ) ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " keypool reserve %d \n " , nIndex ) ;
2011-06-26 13:23:24 -04:00
}
2019-01-18 19:05:32 -03:00
NotifyCanGetAddressesChanged ( ) ;
2018-05-16 21:56:41 -04:00
return true ;
2011-06-26 13:23:24 -04:00
}
2013-04-13 02:13:08 -03:00
void CWallet : : KeepKey ( int64_t nIndex )
2011-06-26 13:23:24 -04:00
{
// Remove from key pool
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
batch . ErasePool ( nIndex ) ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " keypool keep %d \n " , nIndex ) ;
2011-06-26 13:23:24 -04:00
}
2017-07-21 13:54:13 -04:00
void CWallet : : ReturnKey ( int64_t nIndex , bool fInternal , const CPubKey & pubkey )
2011-06-26 13:23:24 -04:00
{
// Return to key pool
2012-04-06 13:39:12 -03:00
{
LOCK ( cs_wallet ) ;
2017-04-19 13:55:32 -03:00
if ( fInternal ) {
setInternalKeyPool . insert ( nIndex ) ;
2018-04-21 04:10:12 -03:00
} else if ( ! set_pre_split_keypool . empty ( ) ) {
set_pre_split_keypool . insert ( nIndex ) ;
2017-04-19 13:55:32 -03:00
} else {
setExternalKeyPool . insert ( nIndex ) ;
}
2017-07-21 13:54:13 -04:00
m_pool_key_to_index [ pubkey . GetID ( ) ] = nIndex ;
2019-01-18 19:05:32 -03:00
NotifyCanGetAddressesChanged ( ) ;
2012-04-06 13:39:12 -03:00
}
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " keypool return %d \n " , nIndex ) ;
2011-06-26 13:23:24 -04:00
}
2017-01-10 12:45:30 -03:00
bool CWallet : : GetKeyFromPool ( CPubKey & result , bool internal )
2011-06-26 13:23:24 -04:00
{
2019-02-06 23:26:55 -03:00
if ( ! CanGetAddresses ( internal ) ) {
2017-05-05 03:53:39 -03:00
return false ;
}
2011-06-26 13:23:24 -04:00
CKeyPool keypool ;
2011-08-12 16:32:07 -04:00
{
2012-04-06 13:39:12 -03:00
LOCK ( cs_wallet ) ;
2018-05-16 21:56:41 -04:00
int64_t nIndex ;
2018-11-06 11:44:51 -03:00
if ( ! ReserveKeyFromKeyPool ( nIndex , keypool , internal ) & & ! IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) {
2011-09-01 11:58:08 -03:00
if ( IsLocked ( ) ) return false ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
result = GenerateNewKey ( batch , internal ) ;
2011-08-12 16:32:07 -04:00
return true ;
}
2011-09-01 11:58:08 -03:00
KeepKey ( nIndex ) ;
result = keypool . vchPubKey ;
2011-08-12 16:32:07 -04:00
}
return true ;
2011-06-26 13:23:24 -04:00
}
2019-06-18 15:19:13 -04:00
bool CWallet : : GetNewDestination ( const OutputType type , const std : : string label , CTxDestination & dest , std : : string & error )
{
LOCK ( cs_wallet ) ;
error . clear ( ) ;
2019-07-09 10:09:56 -04:00
TopUpKeyPool ( ) ;
2019-06-18 15:19:13 -04:00
// Generate a new key that is added to wallet
CPubKey new_key ;
if ( ! GetKeyFromPool ( new_key ) ) {
error = " Error: Keypool ran out, please call keypoolrefill first " ;
return false ;
}
LearnRelatedScripts ( new_key , type ) ;
dest = GetDestinationForKey ( new_key , type ) ;
SetAddressBook ( dest , label , " receive " ) ;
return true ;
}
2019-06-18 15:49:02 -04:00
bool CWallet : : GetNewChangeDestination ( const OutputType type , CTxDestination & dest , std : : string & error )
{
error . clear ( ) ;
2019-07-09 10:09:56 -04:00
TopUpKeyPool ( ) ;
2019-06-18 15:49:02 -04:00
ReserveDestination reservedest ( this ) ;
if ( ! reservedest . GetReservedDestination ( type , dest , true ) ) {
error = " Error: Keypool ran out, please call keypoolrefill first " ;
return false ;
}
reservedest . KeepDestination ( ) ;
return true ;
}
2017-12-08 08:39:22 -03:00
static int64_t GetOldestKeyTimeInPool ( const std : : set < int64_t > & setKeyPool , WalletBatch & batch ) {
2017-04-19 13:55:32 -03:00
if ( setKeyPool . empty ( ) ) {
Add wallet privkey encryption.
This commit adds support for ckeys, or enCrypted private keys, to the wallet.
All keys are stored in memory in their encrypted form and thus the passphrase
is required from the user to spend coins, or to create new addresses.
Keys are encrypted with AES-256-CBC using OpenSSL's EVP library. The key is
calculated via EVP_BytesToKey using SHA512 with (by default) 25000 rounds and
a random salt.
By default, the user's wallet remains unencrypted until they call the RPC
command encryptwallet <passphrase> or, from the GUI menu, Options->
Encrypt Wallet.
When the user is attempting to call RPC functions which require the password
to unlock the wallet, an error will be returned unless they call
walletpassphrase <passphrase> <time to keep key in memory> first.
A keypoolrefill command has been added which tops up the users keypool
(requiring the passphrase via walletpassphrase first).
keypoolsize has been added to the output of getinfo to show the user the
number of keys left before they need to specify their passphrase (and call
keypoolrefill).
Note that walletpassphrase will automatically fill keypool in a separate
thread which it spawns when the passphrase is set. This could cause some
delays in other threads waiting for locks on the wallet passphrase, including
one which could cause the passphrase to be stored longer than expected,
however it will not allow the passphrase to be used longer than expected as
ThreadCleanWalletPassphrase will attempt to get a lock on the key as soon
as the specified lock time has arrived.
When the keypool runs out (and wallet is locked) GetOrReuseKeyFromPool
returns vchDefaultKey, meaning miners may start to generate many blocks to
vchDefaultKey instead of a new key each time.
A walletpassphrasechange <oldpassphrase> <newpassphrase> has been added to
allow the user to change their password via RPC.
Whenever keying material (unencrypted private keys, the user's passphrase,
the wallet's AES key) is stored unencrypted in memory, any reasonable attempt
is made to mlock/VirtualLock that memory before storing the keying material.
This is not true in several (commented) cases where mlock/VirtualLocking the
memory is not possible.
Although encryption of private keys in memory can be very useful on desktop
systems (as some small amount of protection against stupid viruses), on an
RPC server, the password is entered fairly insecurely. Thus, the only main
advantage encryption has for RPC servers is for RPC servers that do not spend
coins, except in rare cases, eg. a webserver of a merchant which only receives
payment except for cases of manual intervention.
Thanks to jgarzik for the original patch and sipa, gmaxwell and many others
for all their input.
Conflicts:
src/wallet.cpp
2011-07-08 09:47:35 -04:00
return GetTime ( ) ;
2017-04-19 13:55:32 -03:00
}
2016-04-05 05:45:11 -03:00
CKeyPool keypool ;
int64_t nIndex = * ( setKeyPool . begin ( ) ) ;
2017-12-08 08:39:22 -03:00
if ( ! batch . ReadPool ( nIndex , keypool ) ) {
2017-01-26 22:33:45 -03:00
throw std : : runtime_error ( std : : string ( __func__ ) + " : read oldest key in keypool failed " ) ;
2017-04-19 14:11:16 -03:00
}
2016-04-05 05:45:11 -03:00
assert ( keypool . vchPubKey . IsValid ( ) ) ;
2011-06-26 13:23:24 -04:00
return keypool . nTime ;
}
2017-04-19 13:55:32 -03:00
int64_t CWallet : : GetOldestKeyPoolTime ( )
{
LOCK ( cs_wallet ) ;
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
2017-04-19 13:55:32 -03:00
// load oldest key from keypool, get time and return
2017-12-08 08:39:22 -03:00
int64_t oldestKey = GetOldestKeyTimeInPool ( setExternalKeyPool , batch ) ;
2017-04-19 13:55:32 -03:00
if ( IsHDEnabled ( ) & & CanSupportFeature ( FEATURE_HD_SPLIT ) ) {
2017-12-08 08:39:22 -03:00
oldestKey = std : : max ( GetOldestKeyTimeInPool ( setInternalKeyPool , batch ) , oldestKey ) ;
2018-04-21 04:10:12 -03:00
if ( ! set_pre_split_keypool . empty ( ) ) {
oldestKey = std : : max ( GetOldestKeyTimeInPool ( set_pre_split_keypool , batch ) , oldestKey ) ;
}
2017-04-19 13:55:32 -03:00
}
return oldestKey ;
}
2017-07-31 15:30:21 -04:00
std : : map < CTxDestination , CAmount > CWallet : : GetAddressBalances ( interfaces : : Chain : : Lock & locked_chain )
2012-08-01 12:48:42 -04:00
{
2017-01-26 22:33:45 -03:00
std : : map < CTxDestination , CAmount > balances ;
2012-08-01 12:48:42 -04:00
{
LOCK ( cs_wallet ) ;
2019-08-30 16:31:11 -04:00
std : : set < uint256 > trustedParents ;
2017-06-01 11:48:29 -04:00
for ( const auto & walletEntry : mapWallet )
2012-08-01 12:48:42 -04:00
{
2019-03-10 18:29:54 -03:00
const CWalletTx & wtx = walletEntry . second ;
2012-08-01 12:48:42 -04:00
2019-08-30 16:31:11 -04:00
if ( ! wtx . IsTrusted ( locked_chain , trustedParents ) )
2012-08-01 12:48:42 -04:00
continue ;
2019-03-10 18:29:54 -03:00
if ( wtx . IsImmatureCoinBase ( locked_chain ) )
2012-08-01 12:48:42 -04:00
continue ;
2019-03-10 18:29:54 -03:00
int nDepth = wtx . GetDepthInMainChain ( locked_chain ) ;
if ( nDepth < ( wtx . IsFromMe ( ISMINE_ALL ) ? 0 : 1 ) )
2012-08-01 12:48:42 -04:00
continue ;
2019-03-10 18:29:54 -03:00
for ( unsigned int i = 0 ; i < wtx . tx - > vout . size ( ) ; i + + )
2012-08-01 12:48:42 -04:00
{
2012-08-20 13:43:33 -04:00
CTxDestination addr ;
2019-03-10 18:29:54 -03:00
if ( ! IsMine ( wtx . tx - > vout [ i ] ) )
2012-08-01 12:48:42 -04:00
continue ;
2019-03-10 18:29:54 -03:00
if ( ! ExtractDestination ( wtx . tx - > vout [ i ] . scriptPubKey , addr ) )
2012-08-20 13:43:33 -04:00
continue ;
2012-08-01 12:48:42 -04:00
2019-03-10 18:29:54 -03:00
CAmount n = IsSpent ( locked_chain , walletEntry . first , i ) ? 0 : wtx . tx - > vout [ i ] . nValue ;
2012-08-01 12:48:42 -04:00
if ( ! balances . count ( addr ) )
balances [ addr ] = 0 ;
balances [ addr ] + = n ;
}
}
}
return balances ;
}
2017-01-26 22:33:45 -03:00
std : : set < std : : set < CTxDestination > > CWallet : : GetAddressGroupings ( )
2012-08-01 12:48:42 -04:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2017-01-26 22:33:45 -03:00
std : : set < std : : set < CTxDestination > > groupings ;
std : : set < CTxDestination > grouping ;
2012-08-01 12:48:42 -04:00
2017-06-01 11:48:29 -04:00
for ( const auto & walletEntry : mapWallet )
2012-08-01 12:48:42 -04:00
{
2019-03-10 18:29:54 -03:00
const CWalletTx & wtx = walletEntry . second ;
2012-08-01 12:48:42 -04:00
2019-03-10 18:29:54 -03:00
if ( wtx . tx - > vin . size ( ) > 0 )
2012-08-01 12:48:42 -04:00
{
2012-09-27 14:29:35 -03:00
bool any_mine = false ;
2012-08-01 12:48:42 -04:00
// group all input addresses with each other
2019-03-10 18:29:54 -03:00
for ( const CTxIn & txin : wtx . tx - > vin )
2012-08-20 13:43:33 -04:00
{
CTxDestination address ;
2012-09-27 14:29:35 -03:00
if ( ! IsMine ( txin ) ) /* If this input isn't mine, ignore it */
continue ;
2017-01-19 18:08:03 -03:00
if ( ! ExtractDestination ( mapWallet . at ( txin . prevout . hash ) . tx - > vout [ txin . prevout . n ] . scriptPubKey , address ) )
2012-08-20 13:43:33 -04:00
continue ;
grouping . insert ( address ) ;
2012-09-27 14:29:35 -03:00
any_mine = true ;
2012-08-20 13:43:33 -04:00
}
2012-08-01 12:48:42 -04:00
// group change with input addresses
2012-09-27 14:29:35 -03:00
if ( any_mine )
{
2019-03-10 18:29:54 -03:00
for ( const CTxOut & txout : wtx . tx - > vout )
2012-09-27 14:29:35 -03:00
if ( IsChange ( txout ) )
{
CTxDestination txoutAddr ;
if ( ! ExtractDestination ( txout . scriptPubKey , txoutAddr ) )
continue ;
grouping . insert ( txoutAddr ) ;
}
}
if ( grouping . size ( ) > 0 )
{
groupings . insert ( grouping ) ;
grouping . clear ( ) ;
}
2012-08-01 12:48:42 -04:00
}
// group lone addrs by themselves
2019-03-10 18:29:54 -03:00
for ( const auto & txout : wtx . tx - > vout )
2017-05-18 03:42:14 -04:00
if ( IsMine ( txout ) )
2012-08-01 12:48:42 -04:00
{
2012-08-20 13:43:33 -04:00
CTxDestination address ;
2017-05-18 03:42:14 -04:00
if ( ! ExtractDestination ( txout . scriptPubKey , address ) )
2012-08-20 13:43:33 -04:00
continue ;
grouping . insert ( address ) ;
2012-08-01 12:48:42 -04:00
groupings . insert ( grouping ) ;
grouping . clear ( ) ;
}
}
2017-01-26 22:33:45 -03:00
std : : set < std : : set < CTxDestination > * > uniqueGroupings ; // a set of pointers to groups of addresses
std : : map < CTxDestination , std : : set < CTxDestination > * > setmap ; // map addresses to the unique group containing it
2017-06-01 21:18:57 -04:00
for ( std : : set < CTxDestination > _grouping : groupings )
2012-08-01 12:48:42 -04:00
{
// make a set of all the groups hit by this new group
2017-01-26 22:33:45 -03:00
std : : set < std : : set < CTxDestination > * > hits ;
std : : map < CTxDestination , std : : set < CTxDestination > * > : : iterator it ;
2018-06-18 01:58:28 -04:00
for ( const CTxDestination & address : _grouping )
2012-08-01 12:48:42 -04:00
if ( ( it = setmap . find ( address ) ) ! = setmap . end ( ) )
hits . insert ( ( * it ) . second ) ;
// merge all hit groups into a new single group and delete old groups
2017-01-26 22:33:45 -03:00
std : : set < CTxDestination > * merged = new std : : set < CTxDestination > ( _grouping ) ;
2017-06-01 21:18:57 -04:00
for ( std : : set < CTxDestination > * hit : hits )
2012-08-01 12:48:42 -04:00
{
merged - > insert ( hit - > begin ( ) , hit - > end ( ) ) ;
uniqueGroupings . erase ( hit ) ;
delete hit ;
}
uniqueGroupings . insert ( merged ) ;
// update setmap
2018-06-18 01:58:28 -04:00
for ( const CTxDestination & element : * merged )
2012-08-01 12:48:42 -04:00
setmap [ element ] = merged ;
}
2017-01-26 22:33:45 -03:00
std : : set < std : : set < CTxDestination > > ret ;
2018-06-18 01:58:28 -04:00
for ( const std : : set < CTxDestination > * uniqueGrouping : uniqueGroupings )
2012-08-01 12:48:42 -04:00
{
ret . insert ( * uniqueGrouping ) ;
delete uniqueGrouping ;
}
return ret ;
}
2017-10-20 14:27:55 -03:00
std : : set < CTxDestination > CWallet : : GetLabelAddresses ( const std : : string & label ) const
2013-07-15 19:01:09 -04:00
{
2014-11-28 15:11:49 -03:00
LOCK ( cs_wallet ) ;
2017-01-26 22:33:45 -03:00
std : : set < CTxDestination > result ;
2018-05-15 18:41:53 -04:00
for ( const std : : pair < const CTxDestination , CAddressBookData > & item : mapAddressBook )
2013-07-15 19:01:09 -04:00
{
const CTxDestination & address = item . first ;
2017-01-26 22:33:45 -03:00
const std : : string & strName = item . second . name ;
2017-10-20 14:27:55 -03:00
if ( strName = = label )
2013-07-15 19:01:09 -04:00
result . insert ( address ) ;
}
return result ;
}
2019-06-18 15:48:20 -04:00
bool ReserveDestination : : GetReservedDestination ( const OutputType type , CTxDestination & dest , bool internal )
2011-06-26 13:23:24 -04:00
{
2019-02-06 23:26:55 -03:00
if ( ! pwallet - > CanGetAddresses ( internal ) ) {
return false ;
}
2011-06-26 13:23:24 -04:00
if ( nIndex = = - 1 )
{
CKeyPool keypool ;
2018-05-16 21:56:41 -04:00
if ( ! pwallet - > ReserveKeyFromKeyPool ( nIndex , keypool , internal ) ) {
2014-06-16 08:45:32 -04:00
return false ;
2011-07-13 21:28:31 -04:00
}
2018-05-16 21:56:41 -04:00
vchPubKey = keypool . vchPubKey ;
2017-04-19 13:55:32 -03:00
fInternal = keypool . fInternal ;
2011-06-26 13:23:24 -04:00
}
2012-05-14 13:07:52 -04:00
assert ( vchPubKey . IsValid ( ) ) ;
2019-06-18 15:48:20 -04:00
pwallet - > LearnRelatedScripts ( vchPubKey , type ) ;
address = GetDestinationForKey ( vchPubKey , type ) ;
dest = address ;
2013-04-25 14:30:28 -03:00
return true ;
2011-06-26 13:23:24 -04:00
}
2019-06-18 15:48:20 -04:00
void ReserveDestination : : KeepDestination ( )
2011-06-26 13:23:24 -04:00
{
if ( nIndex ! = - 1 )
pwallet - > KeepKey ( nIndex ) ;
nIndex = - 1 ;
2012-05-14 13:07:52 -04:00
vchPubKey = CPubKey ( ) ;
2019-06-18 15:48:20 -04:00
address = CNoDestination ( ) ;
2011-06-26 13:23:24 -04:00
}
2019-06-18 15:48:20 -04:00
void ReserveDestination : : ReturnDestination ( )
2011-06-26 13:23:24 -04:00
{
2017-04-19 14:11:16 -03:00
if ( nIndex ! = - 1 ) {
2017-07-21 13:54:13 -04:00
pwallet - > ReturnKey ( nIndex , fInternal , vchPubKey ) ;
2017-04-19 14:11:16 -03:00
}
2011-06-26 13:23:24 -04:00
nIndex = - 1 ;
2012-05-14 13:07:52 -04:00
vchPubKey = CPubKey ( ) ;
2019-06-18 15:48:20 -04:00
address = CNoDestination ( ) ;
2011-06-26 13:23:24 -04:00
}
2011-07-07 09:22:54 -04:00
2017-07-18 15:49:56 -04:00
void CWallet : : MarkReserveKeysAsUsed ( int64_t keypool_id )
2017-04-19 13:55:32 -03:00
{
2017-07-18 15:49:56 -04:00
AssertLockHeld ( cs_wallet ) ;
bool internal = setInternalKeyPool . count ( keypool_id ) ;
2018-04-21 04:10:12 -03:00
if ( ! internal ) assert ( setExternalKeyPool . count ( keypool_id ) | | set_pre_split_keypool . count ( keypool_id ) ) ;
std : : set < int64_t > * setKeyPool = internal ? & setInternalKeyPool : ( set_pre_split_keypool . empty ( ) ? & setExternalKeyPool : & set_pre_split_keypool ) ;
2017-07-18 15:49:56 -04:00
auto it = setKeyPool - > begin ( ) ;
2017-04-19 13:55:32 -03:00
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * database ) ;
2017-07-18 15:49:56 -04:00
while ( it ! = std : : end ( * setKeyPool ) ) {
const int64_t & index = * ( it ) ;
if ( index > keypool_id ) break ; // set*KeyPool is ordered
2017-04-19 13:55:32 -03:00
2017-07-18 15:49:56 -04:00
CKeyPool keypool ;
2017-12-08 08:39:22 -03:00
if ( batch . ReadPool ( index , keypool ) ) { //TODO: This should be unnecessary
2017-07-18 15:49:56 -04:00
m_pool_key_to_index . erase ( keypool . vchPubKey . GetID ( ) ) ;
2017-04-19 13:55:32 -03:00
}
2017-11-30 21:49:16 -03:00
LearnAllRelatedScripts ( keypool . vchPubKey ) ;
2017-12-08 08:39:22 -03:00
batch . ErasePool ( index ) ;
2018-06-15 19:02:52 -04:00
WalletLogPrintf ( " keypool index %d removed \n " , index ) ;
2017-07-18 15:49:56 -04:00
it = setKeyPool - > erase ( it ) ;
2017-04-19 13:55:32 -03:00
}
}
2016-03-29 22:04:22 -03:00
void CWallet : : LockCoin ( const COutPoint & output )
2012-09-27 14:52:09 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-09-27 14:52:09 -03:00
setLockedCoins . insert ( output ) ;
}
2016-03-29 22:04:22 -03:00
void CWallet : : UnlockCoin ( const COutPoint & output )
2012-09-27 14:52:09 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-09-27 14:52:09 -03:00
setLockedCoins . erase ( output ) ;
}
void CWallet : : UnlockAllCoins ( )
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-09-27 14:52:09 -03:00
setLockedCoins . clear ( ) ;
}
bool CWallet : : IsLockedCoin ( uint256 hash , unsigned int n ) const
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-09-27 14:52:09 -03:00
COutPoint outpt ( hash , n ) ;
return ( setLockedCoins . count ( outpt ) > 0 ) ;
}
2017-04-28 15:10:21 -03:00
void CWallet : : ListLockedCoins ( std : : vector < COutPoint > & vOutpts ) const
2012-09-27 14:52:09 -03:00
{
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2012-09-27 14:52:09 -03:00
for ( std : : set < COutPoint > : : iterator it = setLockedCoins . begin ( ) ;
it ! = setLockedCoins . end ( ) ; it + + ) {
COutPoint outpt = ( * it ) ;
vOutpts . push_back ( outpt ) ;
}
}
2014-10-26 04:03:12 -03:00
/** @} */ // end of Actions
2014-08-27 11:46:30 -04:00
2019-04-29 10:14:47 -04:00
void CWallet : : GetKeyBirthTimes ( interfaces : : Chain : : Lock & locked_chain , std : : map < CKeyID , int64_t > & mapKeyBirth ) const {
2019-02-18 18:09:45 -03:00
AssertLockHeld ( cs_wallet ) ;
2013-04-29 13:50:40 -04:00
mapKeyBirth . clear ( ) ;
// get birth times for keys with metadata
2016-11-08 18:55:02 -03:00
for ( const auto & entry : mapKeyMetadata ) {
if ( entry . second . nCreateTime ) {
mapKeyBirth [ entry . first ] = entry . second . nCreateTime ;
}
}
2013-04-29 13:50:40 -04:00
// map in which we'll infer heights of other keys
2019-01-08 03:35:47 -03:00
const Optional < int > tip_height = locked_chain . getHeight ( ) ;
const int max_height = tip_height & & * tip_height > 144 ? * tip_height - 144 : 0 ; // the tip can be reorganized; use a 144-block safety margin
std : : map < CKeyID , int > mapKeyFirstBlock ;
2017-07-23 17:32:57 -04:00
for ( const CKeyID & keyid : GetKeys ( ) ) {
2013-04-29 13:50:40 -04:00
if ( mapKeyBirth . count ( keyid ) = = 0 )
2019-01-08 03:35:47 -03:00
mapKeyFirstBlock [ keyid ] = max_height ;
2013-04-29 13:50:40 -04:00
}
// if there are no such keys, we're done
if ( mapKeyFirstBlock . empty ( ) )
return ;
// find first block that affects those keys, if there are any left
2017-06-04 16:02:43 -04:00
for ( const auto & entry : mapWallet ) {
2013-04-29 13:50:40 -04:00
// iterate over all wallet transactions...
2017-06-04 16:02:43 -04:00
const CWalletTx & wtx = entry . second ;
2019-08-12 18:12:12 -04:00
if ( Optional < int > height = locked_chain . getBlockHeight ( wtx . m_confirm . hashBlock ) ) {
2013-04-29 13:50:40 -04:00
// ... which are already in a block
2017-06-01 21:18:57 -04:00
for ( const CTxOut & txout : wtx . tx - > vout ) {
2013-04-29 13:50:40 -04:00
// iterate over all their outputs
2018-11-10 17:29:07 -03:00
for ( const auto & keyid : GetAffectedKeys ( txout . scriptPubKey , * this ) ) {
2013-04-29 13:50:40 -04:00
// ... and all their affected keys
2019-01-08 03:35:47 -03:00
std : : map < CKeyID , int > : : iterator rit = mapKeyFirstBlock . find ( keyid ) ;
if ( rit ! = mapKeyFirstBlock . end ( ) & & * height < rit - > second )
rit - > second = * height ;
2013-04-29 13:50:40 -04:00
}
}
}
}
// Extract block timestamps for those keys
2017-06-04 16:02:43 -04:00
for ( const auto & entry : mapKeyFirstBlock )
2019-01-08 03:35:47 -03:00
mapKeyBirth [ entry . first ] = locked_chain . getBlockTime ( entry . second ) - TIMESTAMP_WINDOW ; // block times can be 2h off
2013-04-29 13:50:40 -04:00
}
2013-11-18 12:55:54 -03:00
2016-12-19 12:51:45 -03:00
/**
* Compute smart timestamp for a transaction being added to the wallet .
*
* Logic :
* - If sending a transaction , assign its timestamp to the current time .
* - If receiving a transaction outside a block , assign its timestamp to the
* current time .
* - If receiving a block with a future timestamp , assign all its ( not already
* known ) transactions ' timestamps to the current time .
* - If receiving a block with a past timestamp , before the most recent known
* transaction ( that we care about ) , assign all its ( not already known )
* transactions ' timestamps to the same timestamp as that most - recent - known
* transaction .
* - If receiving a block with a past timestamp , but after the most recent known
* transaction , assign all its ( not already known ) transactions ' timestamps to
* the block time .
*
* For more information see CWalletTx : : nTimeSmart ,
* https : //bitcointalk.org/?topic=54527, or
* https : //github.com/bitcoin/bitcoin/pull/1393.
*/
2016-12-16 12:00:26 -03:00
unsigned int CWallet : : ComputeTimeSmart ( const CWalletTx & wtx ) const
{
unsigned int nTimeSmart = wtx . nTimeReceived ;
2019-08-12 18:12:12 -04:00
if ( ! wtx . isUnconfirmed ( ) & & ! wtx . isAbandoned ( ) ) {
2019-01-08 03:56:46 -03:00
int64_t blocktime ;
2019-08-12 18:12:12 -04:00
if ( chain ( ) . findBlock ( wtx . m_confirm . hashBlock , nullptr /* block */ , & blocktime ) ) {
2016-12-16 12:00:26 -03:00
int64_t latestNow = wtx . nTimeReceived ;
int64_t latestEntry = 0 ;
2017-02-10 17:00:30 -03:00
// Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
int64_t latestTolerated = latestNow + 300 ;
const TxItems & txOrdered = wtxOrdered ;
for ( auto it = txOrdered . rbegin ( ) ; it ! = txOrdered . rend ( ) ; + + it ) {
2018-07-31 12:23:26 -04:00
CWalletTx * const pwtx = it - > second ;
2017-02-10 17:00:30 -03:00
if ( pwtx = = & wtx ) {
continue ;
}
int64_t nSmartTime ;
2018-07-31 12:23:26 -04:00
nSmartTime = pwtx - > nTimeSmart ;
if ( ! nSmartTime ) {
nSmartTime = pwtx - > nTimeReceived ;
2017-02-10 17:00:30 -03:00
}
if ( nSmartTime < = latestTolerated ) {
latestEntry = nSmartTime ;
if ( nSmartTime > latestNow ) {
latestNow = nSmartTime ;
2016-12-16 12:00:26 -03:00
}
2017-02-10 17:00:30 -03:00
break ;
2016-12-16 12:00:26 -03:00
}
}
nTimeSmart = std : : max ( latestEntry , std : : min ( blocktime , latestNow ) ) ;
2017-02-10 17:00:30 -03:00
} else {
2019-08-12 18:12:12 -04:00
WalletLogPrintf ( " %s: found %s in block %s not in index \n " , __func__ , wtx . GetHash ( ) . ToString ( ) , wtx . m_confirm . hashBlock . ToString ( ) ) ;
2016-12-16 12:00:26 -03:00
}
}
return nTimeSmart ;
}
2013-11-18 12:55:54 -03:00
bool CWallet : : AddDestData ( const CTxDestination & dest , const std : : string & key , const std : : string & value )
{
2014-01-14 01:05:43 -03:00
if ( boost : : get < CNoDestination > ( & dest ) )
return false ;
2013-11-18 12:55:54 -03:00
mapAddressBook [ dest ] . destdata . insert ( std : : make_pair ( key , value ) ) ;
2017-12-08 08:39:22 -03:00
return WalletBatch ( * database ) . WriteDestData ( EncodeDestination ( dest ) , key , value ) ;
2013-11-18 12:55:54 -03:00
}
bool CWallet : : EraseDestData ( const CTxDestination & dest , const std : : string & key )
{
if ( ! mapAddressBook [ dest ] . destdata . erase ( key ) )
return false ;
2017-12-08 08:39:22 -03:00
return WalletBatch ( * database ) . EraseDestData ( EncodeDestination ( dest ) , key ) ;
2013-11-18 12:55:54 -03:00
}
2018-07-27 02:22:42 -04:00
void CWallet : : LoadDestData ( const CTxDestination & dest , const std : : string & key , const std : : string & value )
2013-11-18 12:55:54 -03:00
{
mapAddressBook [ dest ] . destdata . insert ( std : : make_pair ( key , value ) ) ;
}
bool CWallet : : GetDestData ( const CTxDestination & dest , const std : : string & key , std : : string * value ) const
{
std : : map < CTxDestination , CAddressBookData > : : const_iterator i = mapAddressBook . find ( dest ) ;
if ( i ! = mapAddressBook . end ( ) )
{
CAddressBookData : : StringMap : : const_iterator j = i - > second . destdata . find ( key ) ;
if ( j ! = i - > second . destdata . end ( ) )
{
if ( value )
* value = j - > second ;
return true ;
}
}
return false ;
}
2014-08-20 23:04:43 -04:00
2017-04-28 15:10:21 -03:00
std : : vector < std : : string > CWallet : : GetDestValues ( const std : : string & prefix ) const
{
std : : vector < std : : string > values ;
for ( const auto & address : mapAddressBook ) {
for ( const auto & data : address . second . destdata ) {
if ( ! data . first . compare ( 0 , prefix . size ( ) , prefix ) ) {
values . emplace_back ( data . second ) ;
}
}
}
return values ;
}
2018-04-21 04:10:12 -03:00
void CWallet : : MarkPreSplitKeys ( )
{
WalletBatch batch ( * database ) ;
for ( auto it = setExternalKeyPool . begin ( ) ; it ! = setExternalKeyPool . end ( ) ; ) {
int64_t index = * it ;
CKeyPool keypool ;
if ( ! batch . ReadPool ( index , keypool ) ) {
throw std : : runtime_error ( std : : string ( __func__ ) + " : read keypool entry failed " ) ;
}
keypool . m_pre_split = true ;
if ( ! batch . WritePool ( index , keypool ) ) {
throw std : : runtime_error ( std : : string ( __func__ ) + " : writing modified keypool entry failed " ) ;
}
set_pre_split_keypool . insert ( index ) ;
it = setExternalKeyPool . erase ( it ) ;
}
}
2019-10-06 18:52:05 -03:00
bool CWallet : : Verify ( interfaces : : Chain & chain , const WalletLocation & location , bool salvage_wallet , std : : string & error_string , std : : vector < std : : string > & warnings )
2018-04-18 14:11:28 -03:00
{
// Do some checking on wallet path. It should be either a:
//
// 1. Path where a directory can be created.
// 2. Path to an existing directory.
// 3. Path to a symlink to a directory.
// 4. For backwards compatibility, the name of a data file in -walletdir.
LOCK ( cs_wallets ) ;
2018-09-28 12:50:18 -03:00
const fs : : path & wallet_path = location . GetPath ( ) ;
2018-04-18 14:11:28 -03:00
fs : : file_type path_type = fs : : symlink_status ( wallet_path ) . type ( ) ;
if ( ! ( path_type = = fs : : file_not_found | | path_type = = fs : : directory_file | |
( path_type = = fs : : symlink_file & & fs : : is_directory ( wallet_path ) ) | |
2018-09-28 12:50:18 -03:00
( path_type = = fs : : regular_file & & fs : : path ( location . GetName ( ) ) . filename ( ) = = location . GetName ( ) ) ) ) {
2018-04-18 15:17:09 -03:00
error_string = strprintf (
" Invalid -wallet path '%s'. -wallet path should point to a directory where wallet.dat and "
2018-04-18 14:11:28 -03:00
" database/log.?????????? files can be stored, a location where such a directory could be created, "
2018-04-18 15:17:09 -03:00
" or (for backwards compatibility) the name of an existing data file in -walletdir (%s) " ,
2018-09-28 12:50:18 -03:00
location . GetName ( ) , GetWalletDir ( ) ) ;
2018-04-18 15:17:09 -03:00
return false ;
2018-04-18 14:11:28 -03:00
}
// Make sure that the wallet path doesn't clash with an existing wallet path
2018-10-23 02:26:27 -03:00
if ( IsWalletLoaded ( wallet_path ) ) {
error_string = strprintf ( " Error loading wallet %s. Duplicate -wallet filename specified. " , location . GetName ( ) ) ;
return false ;
2018-04-18 14:11:28 -03:00
}
2018-05-18 16:28:50 -04:00
// Keep same database environment instance across Verify/Recover calls below.
std : : unique_ptr < WalletDatabase > database = WalletDatabase : : Create ( wallet_path ) ;
2018-08-04 12:14:28 -04:00
try {
if ( ! WalletBatch : : VerifyEnvironment ( wallet_path , error_string ) ) {
return false ;
}
} catch ( const fs : : filesystem_error & e ) {
2018-09-28 12:50:18 -03:00
error_string = strprintf ( " Error loading wallet %s. %s " , location . GetName ( ) , fsbridge : : get_filesystem_error_message ( e ) ) ;
2018-04-18 15:17:09 -03:00
return false ;
2018-04-18 14:11:28 -03:00
}
if ( salvage_wallet ) {
// Recover readable keypairs:
2019-03-22 01:24:55 -03:00
CWallet dummyWallet ( & chain , WalletLocation ( ) , WalletDatabase : : CreateDummy ( ) ) ;
2018-04-18 14:11:28 -03:00
std : : string backup_filename ;
2019-08-22 13:16:40 -04:00
// Even if we don't use this lock in this function, we want to preserve
// lock order in LoadToWallet if query of chain state is needed to know
// tx status. If lock can't be taken, tx confirmation status may be not
// reliable.
auto locked_chain = dummyWallet . LockChain ( ) ;
2018-04-18 14:11:28 -03:00
if ( ! WalletBatch : : Recover ( wallet_path , ( void * ) & dummyWallet , WalletBatch : : RecoverKeysOnlyFilter , backup_filename ) ) {
return false ;
}
}
2019-10-06 18:52:05 -03:00
return WalletBatch : : VerifyDatabaseFile ( wallet_path , warnings , error_string ) ;
2018-04-18 14:11:28 -03:00
}
2019-10-06 18:52:05 -03:00
std : : shared_ptr < CWallet > CWallet : : CreateWalletFromFile ( interfaces : : Chain & chain , const WalletLocation & location , std : : string & error , std : : vector < std : : string > & warnings , uint64_t wallet_creation_flags )
2016-02-22 08:07:55 -03:00
{
2019-08-19 17:13:11 -04:00
const std : : string walletFile = WalletDataFilePath ( location . GetPath ( ) ) . string ( ) ;
2017-11-13 23:25:46 -03:00
2016-02-22 08:07:55 -03:00
// needed to restore wallet transaction meta data after -zapwallettxes
std : : vector < CWalletTx > vWtx ;
2017-08-01 15:17:40 -04:00
if ( gArgs . GetBoolArg ( " -zapwallettxes " , false ) ) {
2019-06-28 14:09:58 -04:00
chain . initMessage ( _ ( " Zapping all transactions from wallet... " ) . translated ) ;
2016-02-22 08:07:55 -03:00
2019-03-22 01:24:55 -03:00
std : : unique_ptr < CWallet > tempWallet = MakeUnique < CWallet > ( & chain , location , WalletDatabase : : Create ( location . GetPath ( ) ) ) ;
2016-02-22 08:07:55 -03:00
DBErrors nZapWalletRet = tempWallet - > ZapWalletTx ( vWtx ) ;
2018-03-09 11:03:40 -03:00
if ( nZapWalletRet ! = DBErrors : : LOAD_OK ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Error loading %s: Wallet corrupted " ) . translated , walletFile ) ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-02-22 08:07:55 -03:00
}
}
2019-06-28 14:09:58 -04:00
chain . initMessage ( _ ( " Loading wallet... " ) . translated ) ;
2016-02-22 08:07:55 -03:00
int64_t nStart = GetTimeMillis ( ) ;
bool fFirstRun = true ;
2018-04-28 18:36:43 -03:00
// TODO: Can't use std::make_shared because we need a custom deleter but
// should be possible to use std::allocate_shared.
2019-03-22 01:24:55 -03:00
std : : shared_ptr < CWallet > walletInstance ( new CWallet ( & chain , location , WalletDatabase : : Create ( location . GetPath ( ) ) ) , ReleaseWallet ) ;
2016-02-22 08:07:55 -03:00
DBErrors nLoadWalletRet = walletInstance - > LoadWallet ( fFirstRun ) ;
2019-10-06 18:52:05 -03:00
if ( nLoadWalletRet ! = DBErrors : : LOAD_OK ) {
2018-03-09 11:03:40 -03:00
if ( nLoadWalletRet = = DBErrors : : CORRUPT ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Error loading %s: Wallet corrupted " ) . translated , walletFile ) ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-09-09 05:44:47 -03:00
}
2018-03-09 11:03:40 -03:00
else if ( nLoadWalletRet = = DBErrors : : NONCRITICAL_ERROR )
2016-02-22 08:07:55 -03:00
{
2019-10-06 18:52:05 -03:00
warnings . push_back ( strprintf ( _ ( " Error reading %s! All keys read correctly, but transaction data "
2019-06-28 14:09:58 -04:00
" or address book entries might be missing or incorrect. " ) . translated ,
2016-03-15 06:30:37 -03:00
walletFile ) ) ;
2016-02-22 08:07:55 -03:00
}
2018-03-09 11:03:40 -03:00
else if ( nLoadWalletRet = = DBErrors : : TOO_NEW ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Error loading %s: Wallet requires newer version of %s " ) . translated , walletFile , PACKAGE_NAME ) ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-09-09 05:44:47 -03:00
}
2018-03-09 11:03:40 -03:00
else if ( nLoadWalletRet = = DBErrors : : NEED_REWRITE )
2016-02-22 08:07:55 -03:00
{
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Wallet needed to be rewritten: restart %s to complete " ) . translated , PACKAGE_NAME ) ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-09-09 05:44:47 -03:00
}
else {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Error loading %s " ) . translated , walletFile ) ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-02-22 08:07:55 -03:00
}
}
2019-02-18 18:09:45 -03:00
int prev_version = walletInstance - > GetVersion ( ) ;
2017-08-01 15:17:40 -04:00
if ( gArgs . GetBoolArg ( " -upgradewallet " , fFirstRun ) )
2016-02-22 08:07:55 -03:00
{
2017-08-01 15:17:40 -04:00
int nMaxVersion = gArgs . GetArg ( " -upgradewallet " , 0 ) ;
2016-02-22 08:07:55 -03:00
if ( nMaxVersion = = 0 ) // the -upgradewallet without argument case
{
2018-06-15 19:02:52 -04:00
walletInstance - > WalletLogPrintf ( " Performing wallet upgrade to %i \n " , FEATURE_LATEST ) ;
2018-06-18 18:21:32 -04:00
nMaxVersion = FEATURE_LATEST ;
2016-02-22 08:07:55 -03:00
walletInstance - > SetMinVersion ( FEATURE_LATEST ) ; // permanently upgrade the wallet immediately
}
else
2018-06-15 19:02:52 -04:00
walletInstance - > WalletLogPrintf ( " Allowing wallet upgrade up to %i \n " , nMaxVersion ) ;
2016-02-22 08:07:55 -03:00
if ( nMaxVersion < walletInstance - > GetVersion ( ) )
2016-03-05 18:08:10 -03:00
{
2019-10-06 18:52:05 -03:00
error = _ ( " Cannot downgrade wallet " ) . translated ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-03-05 18:08:10 -03:00
}
2016-02-22 08:07:55 -03:00
walletInstance - > SetMaxVersion ( nMaxVersion ) ;
}
2018-03-31 14:37:27 -03:00
// Upgrade to HD if explicit upgrade
if ( gArgs . GetBoolArg ( " -upgradewallet " , false ) ) {
LOCK ( walletInstance - > cs_wallet ) ;
2018-04-28 00:32:59 -03:00
// Do not upgrade versions to any version between HD_SPLIT and FEATURE_PRE_SPLIT_KEYPOOL unless already supporting HD_SPLIT
2019-02-18 18:09:45 -03:00
int max_version = walletInstance - > GetVersion ( ) ;
if ( ! walletInstance - > CanSupportFeature ( FEATURE_HD_SPLIT ) & & max_version > = FEATURE_HD_SPLIT & & max_version < FEATURE_PRE_SPLIT_KEYPOOL ) {
2019-10-06 18:52:05 -03:00
error = _ ( " Cannot upgrade a non HD split wallet without upgrading to support pre split keypool. Please use -upgradewallet=169900 or -upgradewallet with no version specified. " ) . translated ;
2018-04-28 00:32:59 -03:00
return nullptr ;
}
2018-03-31 14:37:27 -03:00
bool hd_upgrade = false ;
2018-04-21 04:10:12 -03:00
bool split_upgrade = false ;
2018-03-31 14:37:27 -03:00
if ( walletInstance - > CanSupportFeature ( FEATURE_HD ) & & ! walletInstance - > IsHDEnabled ( ) ) {
2018-06-15 19:02:52 -04:00
walletInstance - > WalletLogPrintf ( " Upgrading wallet to HD \n " ) ;
2018-03-31 14:37:27 -03:00
walletInstance - > SetMinVersion ( FEATURE_HD ) ;
// generate a new master key
2018-04-04 12:43:45 -03:00
CPubKey masterPubKey = walletInstance - > GenerateNewSeed ( ) ;
2018-07-27 02:22:42 -04:00
walletInstance - > SetHDSeed ( masterPubKey ) ;
2018-03-31 14:37:27 -03:00
hd_upgrade = true ;
}
// Upgrade to HD chain split if necessary
if ( walletInstance - > CanSupportFeature ( FEATURE_HD_SPLIT ) ) {
2018-06-15 19:02:52 -04:00
walletInstance - > WalletLogPrintf ( " Upgrading wallet to use HD chain split \n " ) ;
2018-04-28 00:32:59 -03:00
walletInstance - > SetMinVersion ( FEATURE_PRE_SPLIT_KEYPOOL ) ;
2018-04-21 04:10:12 -03:00
split_upgrade = FEATURE_HD_SPLIT > prev_version ;
}
// Mark all keys currently in the keypool as pre-split
if ( split_upgrade ) {
walletInstance - > MarkPreSplitKeys ( ) ;
2018-03-31 14:37:27 -03:00
}
// Regenerate the keypool if upgraded to HD
if ( hd_upgrade ) {
2018-04-21 04:10:12 -03:00
if ( ! walletInstance - > TopUpKeyPool ( ) ) {
2019-10-06 18:52:05 -03:00
error = _ ( " Unable to generate keys " ) . translated ;
2018-03-31 14:37:27 -03:00
return nullptr ;
}
}
}
2016-02-22 08:07:55 -03:00
if ( fFirstRun )
{
2017-09-05 19:54:11 -03:00
// ensure this wallet.dat can only be opened by clients supporting HD with chain split and expects no default key
2018-03-31 14:37:27 -03:00
walletInstance - > SetMinVersion ( FEATURE_LATEST ) ;
2017-03-24 06:53:35 -03:00
2018-09-13 01:53:19 -03:00
walletInstance - > SetWalletFlags ( wallet_creation_flags , false ) ;
if ( ! ( wallet_creation_flags & ( WALLET_FLAG_DISABLE_PRIVATE_KEYS | WALLET_FLAG_BLANK_WALLET ) ) ) {
2017-05-05 03:53:39 -03:00
// generate a new seed
CPubKey seed = walletInstance - > GenerateNewSeed ( ) ;
2018-07-27 02:22:42 -04:00
walletInstance - > SetHDSeed ( seed ) ;
2018-09-13 01:53:19 -03:00
}
2017-07-28 20:00:49 -04:00
// Top up the keypool
2019-02-06 23:26:55 -03:00
if ( walletInstance - > CanGenerateKeys ( ) & & ! walletInstance - > TopUpKeyPool ( ) ) {
2019-10-06 18:52:05 -03:00
error = _ ( " Unable to generate initial keys " ) . translated ;
2017-10-09 09:26:53 -03:00
return nullptr ;
2016-02-22 08:07:55 -03:00
}
2019-05-16 15:42:34 -04:00
auto locked_chain = chain . lock ( ) ;
2019-02-01 18:17:43 -03:00
walletInstance - > ChainStateFlushed ( locked_chain - > getTipLocator ( ) ) ;
2017-05-05 03:53:39 -03:00
} else if ( wallet_creation_flags & WALLET_FLAG_DISABLE_PRIVATE_KEYS ) {
// Make it impossible to disable private keys after creation
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Error loading %s: Private keys can only be disabled during creation " ) . translated , walletFile ) ;
2017-05-05 03:53:39 -03:00
return NULL ;
} else if ( walletInstance - > IsWalletFlagSet ( WALLET_FLAG_DISABLE_PRIVATE_KEYS ) ) {
LOCK ( walletInstance - > cs_KeyStore ) ;
if ( ! walletInstance - > mapKeys . empty ( ) | | ! walletInstance - > mapCryptedKeys . empty ( ) ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( strprintf ( _ ( " Warning: Private keys detected in wallet {%s} with disabled private keys " ) . translated , walletFile ) ) ;
2017-05-05 03:53:39 -03:00
}
2016-06-13 10:27:41 -04:00
}
2016-02-22 08:07:55 -03:00
2018-03-19 16:57:11 -03:00
if ( ! gArgs . GetArg ( " -addresstype " , " " ) . empty ( ) & & ! ParseOutputType ( gArgs . GetArg ( " -addresstype " , " " ) , walletInstance - > m_default_address_type ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Unknown address type '%s' " ) . translated , gArgs . GetArg ( " -addresstype " , " " ) ) ;
2018-02-10 23:06:35 -03:00
return nullptr ;
}
2018-03-19 16:57:11 -03:00
if ( ! gArgs . GetArg ( " -changetype " , " " ) . empty ( ) & & ! ParseOutputType ( gArgs . GetArg ( " -changetype " , " " ) , walletInstance - > m_default_change_type ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Unknown change type '%s' " ) . translated , gArgs . GetArg ( " -changetype " , " " ) ) ;
2018-02-10 23:06:35 -03:00
return nullptr ;
}
2018-04-07 13:12:46 -03:00
if ( gArgs . IsArgSet ( " -mintxfee " ) ) {
CAmount n = 0 ;
if ( ! ParseMoney ( gArgs . GetArg ( " -mintxfee " , " " ) , n ) | | 0 = = n ) {
2019-10-06 18:52:05 -03:00
error = AmountErrMsg ( " mintxfee " , gArgs . GetArg ( " -mintxfee " , " " ) ) . translated ;
2018-04-07 13:12:46 -03:00
return nullptr ;
}
if ( n > HIGH_TX_FEE_PER_KB ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( AmountHighWarn ( " -mintxfee " ) . translated + " " +
2019-06-28 14:09:58 -04:00
_ ( " This is the minimum transaction fee you pay on every transaction. " ) . translated ) ;
2018-04-07 13:12:46 -03:00
}
walletInstance - > m_min_fee = CFeeRate ( n ) ;
}
if ( gArgs . IsArgSet ( " -fallbackfee " ) ) {
CAmount nFeePerK = 0 ;
if ( ! ParseMoney ( gArgs . GetArg ( " -fallbackfee " , " " ) , nFeePerK ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Invalid amount for -fallbackfee=<amount>: '%s' " ) . translated , gArgs . GetArg ( " -fallbackfee " , " " ) ) ;
2018-04-07 13:12:46 -03:00
return nullptr ;
}
if ( nFeePerK > HIGH_TX_FEE_PER_KB ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( AmountHighWarn ( " -fallbackfee " ) . translated + " " +
2019-06-28 14:09:58 -04:00
_ ( " This is the transaction fee you may pay when fee estimates are not available. " ) . translated ) ;
2018-04-07 13:12:46 -03:00
}
walletInstance - > m_fallback_fee = CFeeRate ( nFeePerK ) ;
}
2019-08-01 16:39:46 -04:00
// Disable fallback fee in case value was set to 0, enable if non-null value
walletInstance - > m_allow_fallback_fee = walletInstance - > m_fallback_fee . GetFeePerK ( ) ! = 0 ;
2018-04-07 13:12:46 -03:00
if ( gArgs . IsArgSet ( " -discardfee " ) ) {
CAmount nFeePerK = 0 ;
if ( ! ParseMoney ( gArgs . GetArg ( " -discardfee " , " " ) , nFeePerK ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Invalid amount for -discardfee=<amount>: '%s' " ) . translated , gArgs . GetArg ( " -discardfee " , " " ) ) ;
2018-04-07 13:12:46 -03:00
return nullptr ;
}
if ( nFeePerK > HIGH_TX_FEE_PER_KB ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( AmountHighWarn ( " -discardfee " ) . translated + " " +
2019-06-28 14:09:58 -04:00
_ ( " This is the transaction fee you may discard if change is smaller than dust at this level " ) . translated ) ;
2018-04-07 13:12:46 -03:00
}
walletInstance - > m_discard_rate = CFeeRate ( nFeePerK ) ;
}
if ( gArgs . IsArgSet ( " -paytxfee " ) ) {
CAmount nFeePerK = 0 ;
if ( ! ParseMoney ( gArgs . GetArg ( " -paytxfee " , " " ) , nFeePerK ) ) {
2019-10-06 18:52:05 -03:00
error = AmountErrMsg ( " paytxfee " , gArgs . GetArg ( " -paytxfee " , " " ) ) . translated ;
2018-04-07 13:12:46 -03:00
return nullptr ;
}
if ( nFeePerK > HIGH_TX_FEE_PER_KB ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( AmountHighWarn ( " -paytxfee " ) . translated + " " +
2019-06-28 14:09:58 -04:00
_ ( " This is the transaction fee you will pay if you send a transaction. " ) . translated ) ;
2018-04-07 13:12:46 -03:00
}
walletInstance - > m_pay_tx_fee = CFeeRate ( nFeePerK , 1000 ) ;
2019-03-06 18:47:57 -03:00
if ( walletInstance - > m_pay_tx_fee < chain . relayMinFee ( ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Invalid amount for -paytxfee=<amount>: '%s' (must be at least %s) " ) . translated ,
gArgs . GetArg ( " -paytxfee " , " " ) , chain . relayMinFee ( ) . ToString ( ) ) ;
2018-04-07 13:12:46 -03:00
return nullptr ;
}
}
2019-02-20 15:45:16 -03:00
2019-10-06 18:52:05 -03:00
if ( gArgs . IsArgSet ( " -maxtxfee " ) ) {
2019-02-20 15:45:16 -03:00
CAmount nMaxFee = 0 ;
if ( ! ParseMoney ( gArgs . GetArg ( " -maxtxfee " , " " ) , nMaxFee ) ) {
2019-10-06 18:52:05 -03:00
error = AmountErrMsg ( " maxtxfee " , gArgs . GetArg ( " -maxtxfee " , " " ) ) . translated ;
2019-02-20 15:45:16 -03:00
return nullptr ;
}
if ( nMaxFee > HIGH_MAX_TX_FEE ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( _ ( " -maxtxfee is set very high! Fees this large could be paid on a single transaction. " ) . translated ) ;
2019-02-20 15:45:16 -03:00
}
if ( CFeeRate ( nMaxFee , 1000 ) < chain . relayMinFee ( ) ) {
2019-10-06 18:52:05 -03:00
error = strprintf ( _ ( " Invalid amount for -maxtxfee=<amount>: '%s' (must be at least the minrelay fee of %s to prevent stuck transactions) " ) . translated ,
gArgs . GetArg ( " -maxtxfee " , " " ) , chain . relayMinFee ( ) . ToString ( ) ) ;
2019-02-20 15:45:16 -03:00
return nullptr ;
}
walletInstance - > m_default_max_tx_fee = nMaxFee ;
}
2019-08-20 13:17:05 -04:00
if ( chain . relayMinFee ( ) . GetFeePerK ( ) > HIGH_TX_FEE_PER_KB ) {
2019-10-06 18:52:05 -03:00
warnings . push_back ( AmountHighWarn ( " -minrelaytxfee " ) . translated + " " +
2019-06-28 14:09:58 -04:00
_ ( " The wallet will avoid paying less than the minimum relay fee. " ) . translated ) ;
2019-08-20 13:17:05 -04:00
}
2019-02-20 15:45:16 -03:00
2018-04-07 13:12:46 -03:00
walletInstance - > m_confirm_target = gArgs . GetArg ( " -txconfirmtarget " , DEFAULT_TX_CONFIRM_TARGET ) ;
walletInstance - > m_spend_zero_conf_change = gArgs . GetBoolArg ( " -spendzeroconfchange " , DEFAULT_SPEND_ZEROCONF_CHANGE ) ;
walletInstance - > m_signal_rbf = gArgs . GetBoolArg ( " -walletrbf " , DEFAULT_WALLET_RBF ) ;
2018-08-08 10:42:13 -04:00
walletInstance - > WalletLogPrintf ( " Wallet completed loading in %15dms \n " , GetTimeMillis ( ) - nStart ) ;
2016-02-22 08:07:55 -03:00
2017-07-18 15:49:56 -04:00
// Try to top up keypool. No-op if the wallet is locked.
walletInstance - > TopUpKeyPool ( ) ;
2017-07-26 10:23:01 -04:00
auto locked_chain = chain . lock ( ) ;
LOCK ( walletInstance - > cs_wallet ) ;
2018-01-11 21:56:27 -03:00
2019-01-08 05:06:24 -03:00
int rescan_height = 0 ;
2017-08-01 15:17:40 -04:00
if ( ! gArgs . GetBoolArg ( " -rescan " , false ) )
2016-02-22 08:07:55 -03:00
{
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * walletInstance - > database ) ;
2016-02-22 08:07:55 -03:00
CBlockLocator locator ;
2019-01-08 05:06:24 -03:00
if ( batch . ReadBestBlock ( locator ) ) {
if ( const Optional < int > fork_height = locked_chain - > findLocatorFork ( locator ) ) {
rescan_height = * fork_height ;
}
}
2016-02-22 08:07:55 -03:00
}
2017-01-17 20:06:16 -03:00
2019-01-08 05:06:24 -03:00
const Optional < int > tip_height = locked_chain - > getHeight ( ) ;
if ( tip_height ) {
walletInstance - > m_last_block_processed = locked_chain - > getBlockHash ( * tip_height ) ;
} else {
walletInstance - > m_last_block_processed . SetNull ( ) ;
}
2017-01-17 20:06:16 -03:00
2019-01-08 05:06:24 -03:00
if ( tip_height & & * tip_height ! = rescan_height )
2016-02-22 08:07:55 -03:00
{
2019-04-22 14:30:02 -04:00
// We can't rescan beyond non-pruned blocks, stop and throw an error.
// This might happen if a user uses an old wallet within a pruned node
// or if they ran -disablewallet for a longer time, then decided to re-enable
if ( chain . havePruned ( ) ) {
// Exit early and print an error.
// If a block is pruned after this check, we will load the wallet,
// but fail the rescan with a generic error.
2019-01-08 05:06:24 -03:00
int block_height = * tip_height ;
while ( block_height > 0 & & locked_chain - > haveBlockOnDisk ( block_height - 1 ) & & rescan_height ! = block_height ) {
- - block_height ;
}
2016-02-22 08:07:55 -03:00
2019-01-08 05:06:24 -03:00
if ( rescan_height ! = block_height ) {
2019-10-06 18:52:05 -03:00
error = _ ( " Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node) " ) . translated ;
2017-08-07 01:36:37 -04:00
return nullptr ;
2016-09-09 05:44:47 -03:00
}
2016-02-22 08:07:55 -03:00
}
2019-06-28 14:09:58 -04:00
chain . initMessage ( _ ( " Rescanning... " ) . translated ) ;
2019-01-08 05:06:24 -03:00
walletInstance - > WalletLogPrintf ( " Rescanning last %i blocks (from block %i)... \n " , * tip_height - rescan_height , rescan_height ) ;
2017-03-02 18:14:39 -03:00
// No need to read and scan block if block was created before
// our wallet birthday (as adjusted for block time variability)
2019-01-08 05:06:24 -03:00
if ( walletInstance - > nTimeFirstKey ) {
2019-03-26 13:46:22 -03:00
if ( Optional < int > first_block = locked_chain - > findFirstBlockWithTimeAndHeight ( walletInstance - > nTimeFirstKey - TIMESTAMP_WINDOW , rescan_height , nullptr ) ) {
2019-01-08 05:06:24 -03:00
rescan_height = * first_block ;
}
2017-03-02 18:14:39 -03:00
}
2017-12-12 20:13:58 -03:00
{
2018-05-22 11:18:07 -04:00
WalletRescanReserver reserver ( walletInstance . get ( ) ) ;
2019-01-08 05:06:24 -03:00
if ( ! reserver . reserve ( ) | | ( ScanResult : : SUCCESS ! = walletInstance - > ScanForWalletTransactions ( locked_chain - > getBlockHash ( rescan_height ) , { } /* stop block */ , reserver , true /* update */ ) . status ) ) {
2019-10-06 18:52:05 -03:00
error = _ ( " Failed to rescan the wallet during initialization " ) . translated ;
2017-12-12 20:13:58 -03:00
return nullptr ;
}
}
2019-02-01 18:17:43 -03:00
walletInstance - > ChainStateFlushed ( locked_chain - > getTipLocator ( ) ) ;
2017-12-08 08:39:22 -03:00
walletInstance - > database - > IncrementUpdateCounter ( ) ;
2016-02-22 08:07:55 -03:00
// Restore wallet transaction metadata after -zapwallettxes=1
2017-08-01 15:17:40 -04:00
if ( gArgs . GetBoolArg ( " -zapwallettxes " , false ) & & gArgs . GetArg ( " -zapwallettxes " , " 1 " ) ! = " 2 " )
2016-02-22 08:07:55 -03:00
{
2017-12-08 08:39:22 -03:00
WalletBatch batch ( * walletInstance - > database ) ;
2016-02-22 08:07:55 -03:00
2017-06-01 21:18:57 -04:00
for ( const CWalletTx & wtxOld : vWtx )
2016-02-22 08:07:55 -03:00
{
uint256 hash = wtxOld . GetHash ( ) ;
std : : map < uint256 , CWalletTx > : : iterator mi = walletInstance - > mapWallet . find ( hash ) ;
if ( mi ! = walletInstance - > mapWallet . end ( ) )
{
const CWalletTx * copyFrom = & wtxOld ;
CWalletTx * copyTo = & mi - > second ;
copyTo - > mapValue = copyFrom - > mapValue ;
copyTo - > vOrderForm = copyFrom - > vOrderForm ;
copyTo - > nTimeReceived = copyFrom - > nTimeReceived ;
copyTo - > nTimeSmart = copyFrom - > nTimeSmart ;
copyTo - > fFromMe = copyFrom - > fFromMe ;
copyTo - > nOrderPos = copyFrom - > nOrderPos ;
2017-12-08 08:39:22 -03:00
batch . WriteTx ( * copyTo ) ;
2016-02-22 08:07:55 -03:00
}
}
}
}
2018-05-07 18:08:03 -03:00
2018-04-08 15:37:50 -03:00
chain . loadWallet ( interfaces : : MakeWallet ( walletInstance ) ) ;
2018-06-19 15:33:13 -04:00
2017-07-30 16:00:56 -04:00
// Register with the validation interface. It's ok to do this after rescan since we're still holding locked_chain.
2019-04-17 13:27:02 -04:00
walletInstance - > handleNotifications ( ) ;
2018-05-07 18:08:03 -03:00
2017-08-01 15:17:40 -04:00
walletInstance - > SetBroadcastTransactions ( gArgs . GetBoolArg ( " -walletbroadcast " , DEFAULT_WALLETBROADCAST ) ) ;
2016-02-22 08:07:55 -03:00
2016-08-19 19:50:48 -03:00
{
2018-06-15 19:02:52 -04:00
walletInstance - > WalletLogPrintf ( " setKeyPool.size() = %u \n " , walletInstance - > GetKeyPoolSize ( ) ) ;
walletInstance - > WalletLogPrintf ( " mapWallet.size() = %u \n " , walletInstance - > mapWallet . size ( ) ) ;
walletInstance - > WalletLogPrintf ( " mapAddressBook.size() = %u \n " , walletInstance - > mapAddressBook . size ( ) ) ;
2016-08-19 19:50:48 -03:00
}
2016-09-09 05:44:47 -03:00
return walletInstance ;
}
2019-04-17 13:27:02 -04:00
void CWallet : : handleNotifications ( )
{
m_chain_notifications_handler = m_chain - > handleNotifications ( * this ) ;
}
2018-04-19 18:42:40 -03:00
void CWallet : : postInitProcess ( )
2016-10-20 04:22:13 -03:00
{
2019-03-27 13:59:47 -03:00
auto locked_chain = chain ( ) . lock ( ) ;
LOCK ( cs_wallet ) ;
2016-10-20 04:22:13 -03:00
// Add wallet transactions that aren't already in a block to mempool
// Do this here as mempool requires genesis block to be loaded
2019-03-27 13:59:47 -03:00
ReacceptWalletTransactions ( * locked_chain ) ;
2019-03-27 14:00:08 -03:00
// Update wallet transactions with current mempool transactions.
chain ( ) . requestMempoolTransactions ( * this ) ;
2016-10-20 04:22:13 -03:00
}
2016-05-16 20:31:16 -04:00
bool CWallet : : BackupWallet ( const std : : string & strDest )
{
2017-12-08 08:39:22 -03:00
return database - > Backup ( strDest ) ;
2016-05-16 20:31:16 -04:00
}
2014-08-20 23:04:43 -04:00
CKeyPool : : CKeyPool ( )
{
nTime = GetTime ( ) ;
2017-01-16 07:10:12 -03:00
fInternal = false ;
2018-04-21 04:10:12 -03:00
m_pre_split = false ;
2014-08-20 23:04:43 -04:00
}
2017-01-10 12:45:30 -03:00
CKeyPool : : CKeyPool ( const CPubKey & vchPubKeyIn , bool internalIn )
2014-08-20 23:04:43 -04:00
{
nTime = GetTime ( ) ;
vchPubKey = vchPubKeyIn ;
2017-01-10 12:45:30 -03:00
fInternal = internalIn ;
2018-04-21 04:10:12 -03:00
m_pre_split = false ;
2014-08-20 23:04:43 -04:00
}
2019-08-12 18:12:12 -04:00
void CWalletTx : : SetConf ( Status status , const uint256 & block_hash , int posInBlock )
2014-08-28 11:15:21 -04:00
{
2019-08-12 18:12:12 -04:00
// Update tx status
m_confirm . status = status ;
2014-08-29 14:24:16 -04:00
// Update the tx's hashBlock
2019-08-12 18:12:12 -04:00
m_confirm . hashBlock = block_hash ;
2014-08-28 11:15:21 -04:00
2016-04-26 08:55:13 -03:00
// set the position of the transaction in the block
2019-08-12 18:12:12 -04:00
m_confirm . nIndex = posInBlock ;
2014-08-28 11:15:21 -04:00
}
2019-07-25 10:42:34 -04:00
int CWalletTx : : GetDepthInMainChain ( interfaces : : Chain : : Lock & locked_chain ) const
2014-08-28 11:15:21 -04:00
{
2019-08-12 18:12:12 -04:00
if ( isUnconfirmed ( ) | | isAbandoned ( ) ) return 0 ;
2016-01-07 18:31:27 -03:00
2019-08-12 18:12:12 -04:00
return locked_chain . getBlockDepth ( m_confirm . hashBlock ) * ( isConflicted ( ) ? - 1 : 1 ) ;
2014-08-28 11:15:21 -04:00
}
2019-07-25 10:42:34 -04:00
int CWalletTx : : GetBlocksToMaturity ( interfaces : : Chain : : Lock & locked_chain ) const
2014-08-28 11:15:21 -04:00
{
if ( ! IsCoinBase ( ) )
return 0 ;
2017-07-31 15:30:21 -04:00
int chain_depth = GetDepthInMainChain ( locked_chain ) ;
2018-07-13 12:41:42 -04:00
assert ( chain_depth > = 0 ) ; // coinbase tx should not be conflicted
return std : : max ( 0 , ( COINBASE_MATURITY + 1 ) - chain_depth ) ;
2014-08-28 11:15:21 -04:00
}
2019-07-25 10:42:34 -04:00
bool CWalletTx : : IsImmatureCoinBase ( interfaces : : Chain : : Lock & locked_chain ) const
2018-07-11 01:17:59 -04:00
{
// note GetBlocksToMaturity is 0 for non-coinbase tx
2017-07-31 15:30:21 -04:00
return GetBlocksToMaturity ( locked_chain ) > 0 ;
2018-07-11 01:17:59 -04:00
}
2014-08-28 11:15:21 -04:00
2017-11-30 21:49:11 -03:00
void CWallet : : LearnRelatedScripts ( const CPubKey & key , OutputType type )
{
2018-02-10 23:06:35 -03:00
if ( key . IsCompressed ( ) & & ( type = = OutputType : : P2SH_SEGWIT | | type = = OutputType : : BECH32 ) ) {
2017-11-30 21:49:11 -03:00
CTxDestination witdest = WitnessV0KeyHash ( key . GetID ( ) ) ;
CScript witprog = GetScriptForDestination ( witdest ) ;
// Make sure the resulting program is solvable.
assert ( IsSolvable ( * this , witprog ) ) ;
AddCScript ( witprog ) ;
}
}
void CWallet : : LearnAllRelatedScripts ( const CPubKey & key )
{
2018-02-10 23:06:35 -03:00
// OutputType::P2SH_SEGWIT always adds all necessary scripts for all types.
LearnRelatedScripts ( key , OutputType : : P2SH_SEGWIT ) ;
2017-11-30 21:49:11 -03:00
}
2018-07-18 22:43:03 -04:00
std : : vector < OutputGroup > CWallet : : GroupOutputs ( const std : : vector < COutput > & outputs , bool single_coin ) const {
std : : vector < OutputGroup > groups ;
std : : map < CTxDestination , OutputGroup > gmap ;
CTxDestination dst ;
for ( const auto & output : outputs ) {
if ( output . fSpendable ) {
CInputCoin input_coin = output . GetInputCoin ( ) ;
size_t ancestors , descendants ;
2017-07-28 19:42:27 -04:00
chain ( ) . getTransactionAncestry ( output . tx - > GetHash ( ) , ancestors , descendants ) ;
2018-07-18 22:43:03 -04:00
if ( ! single_coin & & ExtractDestination ( output . tx - > tx - > vout [ output . i ] . scriptPubKey , dst ) ) {
2018-07-30 10:43:16 -04:00
// Limit output groups to no more than 10 entries, to protect
// against inadvertently creating a too-large transaction
// when using -avoidpartialspends
2018-07-30 12:50:43 -04:00
if ( gmap [ dst ] . m_outputs . size ( ) > = OUTPUT_GROUP_MAX_ENTRIES ) {
2018-07-18 22:43:03 -04:00
groups . push_back ( gmap [ dst ] ) ;
gmap . erase ( dst ) ;
}
gmap [ dst ] . Insert ( input_coin , output . nDepth , output . tx - > IsFromMe ( ISMINE_ALL ) , ancestors , descendants ) ;
} else {
groups . emplace_back ( input_coin , output . nDepth , output . tx - > IsFromMe ( ISMINE_ALL ) , ancestors , descendants ) ;
}
}
}
if ( ! single_coin ) {
for ( const auto & it : gmap ) groups . push_back ( it . second ) ;
}
return groups ;
}
2018-07-19 20:56:52 -04:00
bool CWallet : : GetKeyOrigin ( const CKeyID & keyID , KeyOriginInfo & info ) const
{
CKeyMetadata meta ;
{
LOCK ( cs_wallet ) ;
auto it = mapKeyMetadata . find ( keyID ) ;
if ( it ! = mapKeyMetadata . end ( ) ) {
meta = it - > second ;
}
}
2018-11-06 11:23:37 -03:00
if ( meta . has_key_origin ) {
std : : copy ( meta . key_origin . fingerprint , meta . key_origin . fingerprint + 4 , info . fingerprint ) ;
info . path = meta . key_origin . path ;
2018-07-19 20:56:52 -04:00
} else { // Single pubkeys get the master fingerprint of themselves
std : : copy ( keyID . begin ( ) , keyID . begin ( ) + 4 , info . fingerprint ) ;
}
return true ;
}
2018-11-06 11:23:45 -03:00
2019-04-03 19:56:01 -03:00
bool CWallet : : AddKeyOriginWithDB ( WalletBatch & batch , const CPubKey & pubkey , const KeyOriginInfo & info )
2018-11-06 11:23:45 -03:00
{
LOCK ( cs_wallet ) ;
std : : copy ( info . fingerprint , info . fingerprint + 4 , mapKeyMetadata [ pubkey . GetID ( ) ] . key_origin . fingerprint ) ;
mapKeyMetadata [ pubkey . GetID ( ) ] . key_origin . path = info . path ;
mapKeyMetadata [ pubkey . GetID ( ) ] . has_key_origin = true ;
mapKeyMetadata [ pubkey . GetID ( ) ] . hdKeypath = WriteHDKeypath ( info . path ) ;
2019-04-03 19:56:01 -03:00
return batch . WriteKeyMetadata ( mapKeyMetadata [ pubkey . GetID ( ) ] , pubkey , true ) ;
2018-11-06 11:23:45 -03:00
}
2019-06-06 17:58:21 -04:00
bool CWallet : : SetCrypted ( )
{
LOCK ( cs_KeyStore ) ;
if ( fUseCrypto )
return true ;
if ( ! mapKeys . empty ( ) )
return false ;
fUseCrypto = true ;
return true ;
}
bool CWallet : : IsLocked ( ) const
{
if ( ! IsCrypted ( ) ) {
return false ;
}
LOCK ( cs_KeyStore ) ;
return vMasterKey . empty ( ) ;
}
bool CWallet : : Lock ( )
{
if ( ! SetCrypted ( ) )
return false ;
{
LOCK ( cs_KeyStore ) ;
vMasterKey . clear ( ) ;
}
NotifyStatusChanged ( this ) ;
return true ;
}
bool CWallet : : Unlock ( const CKeyingMaterial & vMasterKeyIn , bool accept_no_keys )
{
{
LOCK ( cs_KeyStore ) ;
if ( ! SetCrypted ( ) )
return false ;
bool keyPass = mapCryptedKeys . empty ( ) ; // Always pass when there are no encrypted keys
bool keyFail = false ;
CryptedKeyMap : : const_iterator mi = mapCryptedKeys . begin ( ) ;
for ( ; mi ! = mapCryptedKeys . end ( ) ; + + mi )
{
const CPubKey & vchPubKey = ( * mi ) . second . first ;
const std : : vector < unsigned char > & vchCryptedSecret = ( * mi ) . second . second ;
CKey key ;
if ( ! DecryptKey ( vMasterKeyIn , vchCryptedSecret , vchPubKey , key ) )
{
keyFail = true ;
break ;
}
keyPass = true ;
if ( fDecryptionThoroughlyChecked )
break ;
}
if ( keyPass & & keyFail )
{
LogPrintf ( " The wallet is probably corrupted: Some keys decrypt but not all. \n " ) ;
throw std : : runtime_error ( " Error unlocking wallet: some keys decrypt but not all. Your wallet file may be corrupt. " ) ;
}
if ( keyFail | | ( ! keyPass & & ! accept_no_keys ) )
return false ;
vMasterKey = vMasterKeyIn ;
fDecryptionThoroughlyChecked = true ;
}
NotifyStatusChanged ( this ) ;
return true ;
}
bool CWallet : : HaveKey ( const CKeyID & address ) const
{
LOCK ( cs_KeyStore ) ;
if ( ! IsCrypted ( ) ) {
return FillableSigningProvider : : HaveKey ( address ) ;
}
return mapCryptedKeys . count ( address ) > 0 ;
}
bool CWallet : : GetKey ( const CKeyID & address , CKey & keyOut ) const
{
LOCK ( cs_KeyStore ) ;
if ( ! IsCrypted ( ) ) {
return FillableSigningProvider : : GetKey ( address , keyOut ) ;
}
CryptedKeyMap : : const_iterator mi = mapCryptedKeys . find ( address ) ;
if ( mi ! = mapCryptedKeys . end ( ) )
{
const CPubKey & vchPubKey = ( * mi ) . second . first ;
const std : : vector < unsigned char > & vchCryptedSecret = ( * mi ) . second . second ;
return DecryptKey ( vMasterKey , vchCryptedSecret , vchPubKey , keyOut ) ;
}
return false ;
}
2019-06-17 17:46:52 -04:00
bool CWallet : : GetWatchPubKey ( const CKeyID & address , CPubKey & pubkey_out ) const
{
LOCK ( cs_KeyStore ) ;
WatchKeyMap : : const_iterator it = mapWatchKeys . find ( address ) ;
if ( it ! = mapWatchKeys . end ( ) ) {
pubkey_out = it - > second ;
return true ;
}
return false ;
}
2019-06-06 17:58:21 -04:00
bool CWallet : : GetPubKey ( const CKeyID & address , CPubKey & vchPubKeyOut ) const
{
LOCK ( cs_KeyStore ) ;
2019-06-17 17:46:52 -04:00
if ( ! IsCrypted ( ) ) {
if ( ! FillableSigningProvider : : GetPubKey ( address , vchPubKeyOut ) ) {
return GetWatchPubKey ( address , vchPubKeyOut ) ;
}
return true ;
}
2019-06-06 17:58:21 -04:00
CryptedKeyMap : : const_iterator mi = mapCryptedKeys . find ( address ) ;
if ( mi ! = mapCryptedKeys . end ( ) )
{
vchPubKeyOut = ( * mi ) . second . first ;
return true ;
}
// Check for watch-only pubkeys
2019-06-17 17:46:52 -04:00
return GetWatchPubKey ( address , vchPubKeyOut ) ;
2019-06-06 17:58:21 -04:00
}
std : : set < CKeyID > CWallet : : GetKeys ( ) const
{
LOCK ( cs_KeyStore ) ;
if ( ! IsCrypted ( ) ) {
return FillableSigningProvider : : GetKeys ( ) ;
}
std : : set < CKeyID > set_address ;
for ( const auto & mi : mapCryptedKeys ) {
set_address . insert ( mi . first ) ;
}
return set_address ;
}
bool CWallet : : EncryptKeys ( CKeyingMaterial & vMasterKeyIn )
{
LOCK ( cs_KeyStore ) ;
if ( ! mapCryptedKeys . empty ( ) | | IsCrypted ( ) )
return false ;
fUseCrypto = true ;
for ( const KeyMap : : value_type & mKey : mapKeys )
{
const CKey & key = mKey . second ;
CPubKey vchPubKey = key . GetPubKey ( ) ;
CKeyingMaterial vchSecret ( key . begin ( ) , key . end ( ) ) ;
std : : vector < unsigned char > vchCryptedSecret ;
if ( ! EncryptSecret ( vMasterKeyIn , vchSecret , vchPubKey . GetHash ( ) , vchCryptedSecret ) )
return false ;
if ( ! AddCryptedKey ( vchPubKey , vchCryptedSecret ) )
return false ;
}
mapKeys . clear ( ) ;
return true ;
}
bool CWallet : : AddKeyPubKeyInner ( const CKey & key , const CPubKey & pubkey )
{
LOCK ( cs_KeyStore ) ;
if ( ! IsCrypted ( ) ) {
return FillableSigningProvider : : AddKeyPubKey ( key , pubkey ) ;
}
if ( IsLocked ( ) ) {
return false ;
}
std : : vector < unsigned char > vchCryptedSecret ;
CKeyingMaterial vchSecret ( key . begin ( ) , key . end ( ) ) ;
if ( ! EncryptSecret ( vMasterKey , vchSecret , pubkey . GetHash ( ) , vchCryptedSecret ) ) {
return false ;
}
if ( ! AddCryptedKey ( pubkey , vchCryptedSecret ) ) {
return false ;
}
return true ;
}
bool CWallet : : AddCryptedKeyInner ( const CPubKey & vchPubKey , const std : : vector < unsigned char > & vchCryptedSecret )
{
LOCK ( cs_KeyStore ) ;
if ( ! SetCrypted ( ) ) {
return false ;
}
mapCryptedKeys [ vchPubKey . GetID ( ) ] = make_pair ( vchPubKey , vchCryptedSecret ) ;
ImplicitlyLearnRelatedKeyScripts ( vchPubKey ) ;
return true ;
}