| blob | d4e7de2e33fea35d5cc90d583902778b75bcd00b |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
6 #include <wallet/wallet.h>
8 #include <base58.h>
9 #include <checkpoints.h>
10 #include <chain.h>
11 #include <wallet/coincontrol.h>
12 #include <consensus/consensus.h>
13 #include <consensus/validation.h>
14 #include <fs.h>
15 #include <wallet/init.h>
16 #include <key.h>
17 #include <keystore.h>
18 #include <validation.h>
19 #include <net.h>
20 #include <policy/fees.h>
21 #include <policy/policy.h>
22 #include <policy/rbf.h>
23 #include <primitives/block.h>
24 #include <primitives/transaction.h>
25 #include <script/script.h>
26 #include <script/sign.h>
27 #include <scheduler.h>
28 #include <timedata.h>
29 #include <txmempool.h>
30 #include <util.h>
31 #include <ui_interface.h>
32 #include <utilmoneystr.h>
33 #include <wallet/fees.h>
35 #include <assert.h>
36 #include <future>
38 #include <boost/algorithm/string/replace.hpp>
39 #include <boost/thread.hpp>
42 /** Transaction fee set by the user */
51 /**
52 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
53 * Override with -mintxfee
54 */
56 /**
57 * If fee estimation does not have enough data to provide estimates, use this fee instead.
58 * Has no effect if not using fee estimation
59 * Override with -fallbackfee
60 */
65 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
67 /** @defgroup mapWallet
68 *
69 * @{
70 */
72 struct CompareValueOnly
73 {
76 {
78 }
79 };
82 {
83 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
84 }
92 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
95 txnouttype type;
101 }
102 }
107 }
110 CScript script;
113 }
116 {
117 CScriptID id;
119 CScript script;
122 }
123 }
126 {
130 }
131 }
135 };
138 {
144 }
147 {
149 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
151 CKey secret;
153 // Create new metadata
157 // use HD key derivation if HD was enabled during wallet creation
159 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
162 }
164 // Compressed public keys were introduced in version 0.6.0
167 }
177 }
179 }
181 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
182 {
183 // for now we use a fixed keypath scheme of m/0'/0'/k
190 // try to get the master key
196 // derive m/0'
197 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
200 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
204 // derive child key at next index, skip keys already known to the wallet
206 // always derive hardened keys
207 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
208 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
213 }
218 }
222 // update the chain model in the database
225 }
227 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
228 {
231 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
232 // which is overridden below. To avoid flushes, the database handle is
233 // tunneled through to it.
237 }
241 }
244 // check if we need to remove from watch-only
245 CScript script;
249 }
253 }
259 }
261 }
264 {
267 }
271 {
274 {
278 vchCryptedSecret,
280 else
282 vchCryptedSecret,
284 }
285 }
288 {
293 }
295 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
296 {
298 }
300 /**
301 * Update wallet first key creation time. This should be called whenever keys
302 * are added to the wallet, with the oldest key creation time.
303 */
305 {
308 // Cannot determine birthday information, so set the wallet birthday to
309 // the beginning of time.
313 }
314 }
317 {
321 }
324 {
325 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
326 * that never can be redeemed. However, old wallets may still contain
327 * these. Do not add them to the wallet and warn. */
329 {
331 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
334 }
337 }
340 {
347 }
350 {
353 }
356 {
366 }
369 {
371 }
374 {
375 CCrypter crypter;
376 CKeyingMaterial _vMasterKey;
378 {
381 {
382 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
388 }
389 }
391 }
393 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
394 {
397 {
401 CCrypter crypter;
402 CKeyingMaterial _vMasterKey;
404 {
405 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
410 {
412 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
413 pMasterKey.second.nDeriveIterations = static_cast<unsigned int>(pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime))));
416 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
417 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + static_cast<unsigned int>(pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime)))) / 2;
422 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
424 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
432 }
433 }
434 }
437 }
440 {
443 }
445 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
446 {
451 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
460 {
466 }
469 }
472 {
474 // cannot downgrade below current version
481 }
484 {
496 {
502 }
504 }
507 {
511 }
514 {
516 }
519 {
520 // We want all the wallet transactions in range to have the same metadata as
521 // the oldest (smallest nOrderPos).
522 // So: find smallest nOrderPos:
527 {
531 {
534 }
535 }
539 // Now copy data from copyFrom to rest:
541 {
549 // fTimeReceivedIsTxTime not copied on purpose
550 // nTimeReceived not copied on purpose
554 // nOrderPos not copied on purpose
555 // cached members not copied on purpose
556 }
557 }
559 /**
560 * Outpoint is spent if any non-conflicted transaction
561 * spends it:
562 */
564 {
570 {
577 }
578 }
580 }
583 {
589 }
593 {
602 }
605 {
609 CKeyingMaterial _vMasterKey;
614 CMasterKey kMasterKey;
619 CCrypter crypter;
621 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
622 kMasterKey.nDeriveIterations = static_cast<unsigned int>(2500000 / ((double)(GetTimeMillis() - nStartTime)));
625 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
626 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + static_cast<unsigned int>(kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime)))) / 2;
633 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
638 {
647 }
651 {
654 // We now probably have half of our keys encrypted in memory, and half not...
655 // die and let the user reload the unencrypted wallet.
657 }
659 // Encryption was introduced in version 0.4.0
664 // We now have keys encrypted in memory, but not on disk...
665 // die to avoid confusion and let the user reload the unencrypted wallet.
667 }
675 // if we are using HD, replace the HD master key (seed) with a new one
679 }
680 }
685 // Need to completely rewrite the wallet file; if we don't, bdb might keep
686 // bits of the unencrypted private key in slack space in the database file.
689 }
693 }
696 {
700 // Old wallets didn't have any defined order for transactions
701 // Probably a bad idea to change the output of this
703 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
706 TxItems txByTime;
709 {
712 }
716 {
718 }
723 {
729 {
734 {
737 }
738 else
741 }
742 else
743 {
746 {
749 }
756 // Since we're changing the order, write it back
758 {
761 }
762 else
765 }
766 }
770 }
773 {
780 }
782 }
784 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
785 {
792 // Debit
793 CAccountingEntry debit;
802 // Credit
803 CAccountingEntry credit;
816 }
819 {
822 CAccount account;
829 // Check if the current key has been used
838 }
839 }
840 }
842 // Generate a new key
849 }
854 }
857 {
858 {
862 }
863 }
866 {
871 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
876 // Ensure for now that we're not overwriting data
887 }
892 }
895 {
902 // Inserts only if not already there, returns tx inserted or tx found
903 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
908 {
914 }
918 {
919 // Merge
921 {
924 }
925 // If no longer abandoned, update
927 {
930 }
932 {
935 }
937 {
940 }
941 // If we have a witness-stripped version of this transaction, and we
942 // see a new version with a witness, then we must be upgrading a pre-segwit
943 // wallet. Store the new version of the transaction with the witness,
944 // as the stripped-version must be invalid.
945 // TODO: Store all versions of the transaction, instead of just one.
949 }
950 }
952 //// debug print
953 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
955 // Write to disk
960 // Break debit/credit balance caches:
963 // Notify UI of new or updated transaction
966 // notify an external script when a wallet transaction comes in or is updated
970 {
973 }
976 }
979 {
993 }
994 }
995 }
998 }
1000 /**
1001 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1002 * be set when the transaction was known to be included in a block. When
1003 * pIndex == nullptr, then wallet state is not updated in AddToWallet, but
1004 * notifications happen and cached balances are marked dirty.
1005 *
1006 * If fUpdate is true, existing transactions will be updated.
1007 * TODO: One exception to this is that the abandoned state is cleared under the
1008 * assumption that any further notification of a transaction that was considered
1009 * abandoned is an indication that it is not safe to be considered abandoned.
1010 * Abandoned state should probably be more carefully tracked via different
1011 * posInBlock signals or by checking mempool presence when necessary.
1012 */
1013 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1014 {
1016 {
1021 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1024 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1026 }
1028 }
1029 }
1030 }
1035 {
1036 /* Check if any keys in the wallet keypool that were supposed to be unused
1037 * have appeared in a new transaction. If so, remove those keys from the keypool.
1038 * This can happen when restoring an old wallet backup that does not contain
1039 * the mostly recently created transactions from newer versions of the wallet.
1040 */
1042 // loop though all outputs
1044 // extract addresses and check if they match with an unused keypool key
1050 LogPrintf("%s: Detected a used keypool key, mark all keypool key up to this key as used\n", __func__);
1055 }
1056 }
1057 }
1058 }
1062 // Get merkle branch if transaction was found in a block
1067 }
1068 }
1070 }
1073 {
1077 }
1080 {
1088 // Can't mark abandoned if confirmed or in mempool
1094 }
1106 // If the orig tx was not in block, none of its spends can be
1108 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1110 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1117 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1122 }
1123 iter++;
1124 }
1125 // If a transaction changes 'conflicted' state, that changes the balance
1126 // available of the outputs it spends. So force those to be recomputed
1128 {
1132 }
1133 }
1134 }
1135 }
1138 }
1141 {
1149 }
1150 }
1151 // If number of conflict confirms cannot be determined, this means
1152 // that the block is still unknown or not yet part of the main chain,
1153 // for example when loading the wallet during a reindex. Do nothing in that
1154 // case.
1158 // Do not flush the wallet here for performance reasons
1175 // Block is 'more conflicted' than current confirm; update.
1176 // Mark transaction as conflicted with this block.
1181 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1186 }
1187 iter++;
1188 }
1189 // If a transaction changes 'conflicted' state, that changes the balance
1190 // available of the outputs it spends. So force those to be recomputed
1195 }
1196 }
1197 }
1198 }
1199 }
1201 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1207 // If a transaction changes 'conflicted' state, that changes the balance
1208 // available of the outputs it spends. So force those to be
1209 // recomputed, also:
1214 }
1215 }
1216 }
1225 }
1226 }
1233 }
1234 }
1236 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1238 // TODO: Temporarily ensure that mempool removals are notified before
1239 // connected transactions. This shouldn't matter, but the abandoned
1240 // state of transactions in our wallet is currently cleared when we
1241 // receive another notification and there is a race condition where
1242 // notification of a connected conflict might cause an outside process
1243 // to abandon a transaction and then have it inadvertently cleared by
1244 // the notification that the conflicted transaction was evicted.
1249 }
1253 }
1256 }
1263 }
1264 }
1272 {
1273 // Skip the queue-draining stuff if we know we're caught up with
1274 // chainActive.Tip()...
1275 // We could also take cs_wallet here, and call m_last_block_processed
1276 // protected by cs_wallet instead of cs_main, but as long as we need
1277 // cs_main here anyway, its easier to just call it cs_main-protected.
1283 }
1284 }
1286 // ...otherwise put a callback in the validation interface queue and wait
1287 // for the queue to drain enough to execute it (indicating we are caught up
1288 // at least with the time we entered this function).
1293 });
1295 }
1299 {
1300 {
1304 {
1308 }
1309 }
1311 }
1313 // Note that this function doesn't distinguish between a 0-valued input,
1314 // and a not-"is mine" (according to the filter) input.
1316 {
1317 {
1321 {
1326 }
1327 }
1329 }
1332 {
1334 }
1337 {
1341 }
1344 {
1345 // TODO: fix handling of 'change' outputs. The assumption is that any
1346 // payment to a script that is ours, but is not in the address book
1347 // is change. That assumption is likely to break when we implement multisignature
1348 // wallets that return change back into a multi-signature-protected address;
1349 // a better way of identifying which outputs are 'the send' and which are
1350 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1351 // which output, if any, was change).
1353 {
1354 CTxDestination address;
1361 }
1363 }
1366 {
1370 }
1373 {
1378 }
1381 {
1383 }
1386 {
1389 {
1393 }
1395 }
1398 {
1402 {
1414 }
1416 }
1419 {
1422 {
1426 }
1428 }
1431 {
1434 {
1438 }
1440 }
1443 {
1444 CKey key;
1450 // calculate the pubkey
1454 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1458 {
1461 // mem store the metadata
1464 // write the key&metadata to the database
1467 }
1470 }
1473 {
1475 // store the keyid (hash160) together with
1476 // the child index counter in the database
1477 // as a hdchain object
1478 CHDChain newHdChain;
1479 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1484 }
1487 {
1494 }
1497 {
1499 }
1502 {
1505 }
1508 {
1509 // Returns -1 if it wasn't being tracked
1511 {
1514 {
1515 // Generated block
1517 {
1521 }
1522 }
1523 else
1524 {
1525 // Did anyone request this transaction?
1528 {
1531 // How about the block it's in?
1533 {
1537 else
1539 }
1540 }
1541 }
1542 }
1544 }
1547 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1548 {
1554 // Compute fee:
1557 {
1560 }
1562 // Sent/received.
1564 {
1567 // Only need to handle txouts if AT LEAST one of these is true:
1568 // 1) they debit from us (sent)
1569 // 2) the output is to us (received)
1571 {
1572 // Don't report 'change' txouts
1575 }
1579 // In either case, we need to get the destination address
1580 CTxDestination address;
1583 {
1587 }
1591 // If we are debited by the transaction, add the output as a "sent" entry
1595 // If we are receiving the output, add it as a "received" entry
1598 }
1600 }
1602 /**
1603 * Scan active chain for relevant transactions after importing keys. This should
1604 * be called whenever new keys are added to the wallet, with the oldest key
1605 * creation time.
1606 *
1607 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1608 * returned will be higher than startTime if relevant blocks could not be read.
1609 */
1611 {
1615 // Find starting block. May be null if nCreateTime is greater than the
1616 // highest blockchain timestamp, in which case there is nothing that needs
1617 // to be scanned.
1619 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1625 }
1626 }
1628 }
1630 /**
1631 * Scan the block chain (starting in pindexStart) for transactions
1632 * from or to us. If fUpdate is true, found transactions that already
1633 * exist in the wallet will be updated.
1634 *
1635 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1636 * possible (due to pruning or corruption), returns pointer to the most recent
1637 * block that could not be scanned.
1638 *
1639 * If pindexStop is not a nullptr, the scan will stop at the block-index
1640 * defined by pindexStop
1641 */
1642 CBlockIndex* CWallet::ScanForWalletTransactions(CBlockIndex* pindexStart, CBlockIndex* pindexStop, bool fUpdate)
1643 {
1649 }
1653 {
1658 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1662 {
1664 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1667 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1668 }
1670 CBlock block;
1674 }
1677 }
1680 }
1682 }
1684 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1685 }
1689 }
1691 }
1694 {
1695 // If transactions aren't being broadcasted, don't let them into local mempool either
1701 // Sort pending wallet transactions based on their initial wallet insertion order
1703 {
1712 }
1713 }
1715 // Try to add wallet transactions to memory pool
1718 CValidationState state;
1720 }
1721 }
1724 {
1727 {
1728 CValidationState state;
1729 /* GetDepthInMainChain already catches known conflicts. */
1735 {
1737 });
1739 }
1740 }
1741 }
1743 }
1746 {
1749 {
1753 }
1755 }
1758 {
1764 {
1767 else
1768 {
1772 }
1773 }
1775 {
1778 else
1779 {
1783 }
1784 }
1786 }
1789 {
1790 // Must wait until coinbase is safely deep enough in the chain before valuing it
1796 {
1797 // GetBalance can assume transactions in mapWallet won't change
1800 else
1801 {
1805 }
1806 }
1808 {
1811 else
1812 {
1816 }
1817 }
1819 }
1822 {
1824 {
1830 }
1833 }
1836 {
1840 // Must wait until coinbase is safely deep enough in the chain before valuing it
1850 {
1852 {
1857 }
1858 }
1863 }
1866 {
1868 {
1874 }
1877 }
1880 {
1884 // Must wait until coinbase is safely deep enough in the chain before valuing it
1893 {
1895 {
1900 }
1901 }
1906 }
1909 {
1915 }
1918 {
1920 }
1923 {
1924 // Quick answer in most cases
1935 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1939 // Trusted if all inputs are from us and are in the mempool:
1941 {
1942 // Transactions not sent by us: not trusted
1949 }
1951 }
1954 {
1960 }
1963 {
1968 // Sort them in chronological order
1971 {
1973 // Don't rebroadcast if newer than nTime:
1977 }
1979 {
1983 }
1985 }
1988 {
1989 // Do this infrequently and randomly to avoid giving away
1990 // that these are our transactions.
1998 // Only do it if there's been a new block since last time
2003 // Rebroadcast unconfirmed txes older than 5 minutes before the last
2004 // block was found:
2008 }
2015 /** @defgroup Actions
2016 *
2017 * @{
2018 */
2022 {
2024 {
2027 {
2031 }
2032 }
2035 }
2038 {
2040 {
2043 {
2047 }
2048 }
2050 }
2053 {
2055 {
2058 {
2061 }
2062 }
2064 }
2067 {
2069 {
2072 {
2076 }
2077 }
2080 }
2083 {
2085 {
2088 {
2092 }
2093 }
2095 }
2098 {
2100 {
2103 {
2106 }
2107 }
2109 }
2111 // Calculate total balance in a different way from GetBalance. The biggest
2112 // difference is that GetBalance sums up all unspent TxOuts paying to the
2113 // wallet, while this sums up both spent and unspent TxOuts paying to the
2114 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2115 // also has fewer restrictions on which unconfirmed transactions are considered
2116 // trusted.
2117 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2118 {
2127 }
2129 // Loop through tx outputs and add incoming payments. For outgoing txs,
2130 // treat change outputs specially, as part of the amount debited.
2136 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2138 }
2139 }
2141 // For outgoing txs, subtract amount debited.
2144 }
2145 }
2149 }
2152 }
2155 {
2164 }
2165 }
2167 }
2169 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2170 {
2173 {
2179 {
2193 // We should not consider coins which aren't at least in our mempool
2194 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2200 // We should not consider coins from transactions that are replacing
2201 // other transactions.
2202 //
2203 // Example: There is a transaction A which is replaced by bumpfee
2204 // transaction B. In this case, we want to prevent creation of
2205 // a transaction B' which spends an output of B.
2206 //
2207 // Reason: If transaction A were initially confirmed, transactions B
2208 // and B' would no longer be valid, so the user would have to create
2209 // a new transaction C to replace B'. However, in the case of a
2210 // one-block reorg, transactions B' and C might BOTH be accepted,
2211 // when the user only wanted one of them. Specifically, there could
2212 // be a 1-block reorg away from the chain where transactions A and C
2213 // were accepted to another chain where B, B', and C were all
2214 // accepted.
2217 }
2219 // Similarly, we should not consider coins from transactions that
2220 // have been replaced. In the example above, we would want to prevent
2221 // creation of a transaction A' spending an output of A, because if
2222 // transaction B were initially confirmed, conflicting with A and
2223 // A', we wouldn't want to the user to create a transaction D
2224 // intending to replace A', but potentially resulting in a scenario
2225 // where A, A', and D could all be accepted (instead of just B and
2226 // D, or just A and A' like the user would want).
2229 }
2233 }
2242 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint(entry.first, i)))
2255 }
2257 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2262 // Checks the sum amount of all UTXO's.
2268 }
2269 }
2271 // Checks the maximum number of UTXO's.
2274 }
2275 }
2276 }
2277 }
2278 }
2281 {
2282 // TODO: Add AssertLockHeld(cs_wallet) here.
2283 //
2284 // Because the return value from this function contains pointers to
2285 // CWalletTx objects, callers to this function really should acquire the
2286 // cs_wallet lock before calling it. However, the current caller doesn't
2287 // acquire this lock yet. There was an attempt to add the missing lock in
2288 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2289 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2290 // avoid adding some extra complexity to the Qt code.
2299 CTxDestination address;
2303 }
2304 }
2314 CTxDestination address;
2315 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2318 }
2319 }
2320 }
2321 }
2324 }
2327 {
2336 }
2339 }
2341 }
2343 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2345 {
2351 FastRandomContext insecure_rand;
2354 {
2359 {
2361 {
2362 //The solver here uses a randomized algorithm,
2363 //the randomness serves no real security purpose but is just
2364 //needed to prevent degenerate behavior and it is important
2365 //that the rng is fast. We do not use a constant random sequence,
2366 //because there may be some privacy improvement by making
2367 //the selection random.
2369 {
2373 {
2376 {
2379 }
2382 }
2383 }
2384 }
2385 }
2386 }
2387 }
2389 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2391 {
2395 // List of values less than target
2403 {
2420 {
2424 }
2426 {
2429 }
2431 {
2433 }
2434 }
2437 {
2439 {
2442 }
2444 }
2447 {
2453 }
2455 // Solve subset sum by stochastic approximation
2459 CAmount nBest;
2465 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2466 // or the next bigger coin is closer), return the bigger coin
2468 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2469 {
2472 }
2476 {
2479 }
2486 }
2487 }
2489 }
2490 }
2493 }
2495 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2496 {
2499 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2501 {
2503 {
2508 }
2510 }
2512 // calculate value from preset inputs and store them
2520 {
2523 {
2525 // Clearly invalid input, fail
2532 }
2534 // remove preset inputs from vCoins
2535 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2536 {
2539 else
2541 }
2543 size_t nMaxChainLength = std::min(gArgs.GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), gArgs.GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2544 bool fRejectLongChains = gArgs.GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2547 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2548 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2549 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2550 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2551 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2552 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2553 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2555 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2558 // add preset inputs to the total value selected
2562 }
2565 {
2568 // sign the new tx
2575 }
2578 SignatureData sigdata;
2579 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2581 }
2583 nIn++;
2584 }
2586 }
2588 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2589 {
2592 // Turn the txout set into a CRecipient vector
2594 {
2596 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2598 }
2606 CWalletTx wtx;
2607 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2609 }
2613 // we don't have the normal Create/Commit cycle, and don't want to risk reusing change,
2614 // so just remove the key from the keypool here.
2616 }
2618 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2622 // Add new txins (keeping original txin scriptSig/order)
2624 {
2626 {
2630 {
2633 }
2634 }
2635 }
2639 }
2641 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2643 {
2648 {
2650 {
2653 }
2657 nSubtractFeeFromAmount++;
2658 }
2660 {
2663 }
2667 CMutableTransaction txNew;
2669 // Discourage fee sniping.
2670 //
2671 // For a large miner the value of the transactions in the best block and
2672 // the mempool can exceed the cost of deliberately attempting to mine two
2673 // blocks to orphan the current best block. By setting nLockTime such that
2674 // only the next block can include the transaction, we discourage this
2675 // practice as the height restricted and limited blocksize gives miners
2676 // considering fee sniping fewer options for pulling off this attack.
2677 //
2678 // A simple way to think about this is from the wallet's point of view we
2679 // always want the blockchain to move forward. By setting nLockTime this
2680 // way we're basically making the statement that we only want this
2681 // transaction to appear in the next block; we don't want to potentially
2682 // encourage reorgs by allowing transactions to appear at lower heights
2683 // than the next block in forks of the best chain.
2684 //
2685 // Of course, the subsidy is high enough, and transaction volume low
2686 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2687 // now we ensure code won't be written that makes assumptions about
2688 // nLockTime that preclude a fix later.
2691 // Secondly occasionally randomly pick a nLockTime even further back, so
2692 // that transactions that are delayed after signing for whatever reason,
2693 // e.g. high-latency mix networks and some CoinJoin implementations, have
2694 // better privacy.
2700 FeeCalculation feeCalc;
2701 CAmount nFeeNeeded;
2703 {
2706 {
2710 // Create change script that will be used if we need change
2711 // TODO: pass in scriptChange instead of reservekey so
2712 // change transaction isn't always pay-to-bitcoin-address
2713 CScript scriptChange;
2715 // coin control: send change to custom address
2719 // Note: We use a new key here to keep it from being obvious which side is the change.
2720 // The drawback is that by not reusing a previous key, the change may be lost if a
2721 // backup is restored, if the backup doesn't have the new private key for the change.
2722 // If we reused the old key, it would be possible to add code to look for and
2723 // rediscover unknown transactions that were written with keys of ours to recover
2724 // post-backup change.
2726 // Reserve a new key pair from key pool
2727 CPubKey vchPubKey;
2731 {
2734 }
2737 }
2745 // Start with no fee and loop until there is enough fee
2747 {
2757 // vouts to the payees
2759 {
2763 {
2765 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2768 {
2771 }
2772 }
2775 {
2777 {
2780 else
2781 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2782 }
2783 else
2786 }
2788 }
2790 // Choose coins to use
2795 {
2798 }
2799 }
2804 {
2805 // Fill a vout to ourself
2808 // Never create dust outputs; if we would, just
2809 // add the dust to the fee.
2811 {
2814 }
2815 else
2816 {
2818 {
2819 // Insert change txn at random position:
2821 }
2823 {
2826 }
2830 }
2833 }
2835 // Fill vin
2836 //
2837 // Note how the sequence number is set to non-maxint so that
2838 // the nLockTime set above actually works.
2839 //
2840 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2841 // we use the highest possible value in that range (maxint-2)
2842 // to avoid conflicting with other possible uses of nSequence,
2843 // and in the spirit of "smallest possible change from prior
2844 // behavior."
2845 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2848 nSequence));
2850 // Fill in dummy signatures for fee calculation.
2854 }
2858 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2862 }
2866 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2867 // because we must be at the maximum allowed fee.
2869 {
2872 }
2875 // Reduce fee to only the needed amount if possible. This
2876 // prevents potential overpayment in fees if the coins
2877 // selected to meet nFeeNeeded result in a transaction that
2878 // requires less fee than the prior iteration.
2880 // If we have no change and a big enough excess fee, then
2881 // try to construct transaction again only without picking
2882 // new inputs. We now know we only need the smaller fee
2883 // (because of reduced tx size) and so we should add a
2884 // change output. Only try this once.
2886 unsigned int tx_size_with_change = nBytes + change_prototype_size + 2; // Add 2 as a buffer in case increasing # of outputs changes compact size
2887 CAmount fee_needed_with_change = GetMinimumFee(tx_size_with_change, coin_control, ::mempool, ::feeEstimator, nullptr);
2893 }
2894 }
2896 // If we have change output already, just increase it
2902 }
2904 }
2906 // This shouldn't happen, we should have had enough excess
2907 // fee to pay for the new output and still meet nFeeNeeded
2908 // Or we should have just subtracted fee from recipients and
2909 // nFeeNeeded should not have changed
2912 }
2914 // Try to reduce change to include necessary fee
2918 // Only reduce change if remaining amount is still a large enough output.
2923 }
2924 }
2926 // If subtracting fee from recipients, we now know what fee we
2927 // need to subtract, we have no reason to reselect inputs
2930 }
2932 // Include more fee and try again.
2935 }
2936 }
2938 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2941 {
2945 {
2947 SignatureData sigdata;
2949 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2950 {
2955 }
2957 nIn++;
2958 }
2959 }
2961 // Embed the constructed transaction data in wtxNew.
2964 // Limit size
2966 {
2969 }
2970 }
2973 // Lastly, ensure this tx will pass the mempool's chain limits
2974 LockPoints lp;
2978 size_t nLimitAncestorSize = gArgs.GetArg("-limitancestorsize", DEFAULT_ANCESTOR_SIZE_LIMIT)*1000;
2980 size_t nLimitDescendantSize = gArgs.GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2982 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2985 }
2986 }
2988 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Needed:%d Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2989 nFeeRet, nBytes, nFeeNeeded, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2991 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2992 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
2994 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
2995 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
2997 }
2999 /**
3000 * Call after CreateTransaction unless you want to abort
3001 */
3002 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
3003 {
3004 {
3007 {
3008 // Take key pair from key pool so it won't be used again
3011 // Add tx to wallet, because if it has change it's also ours,
3012 // otherwise just for transaction history.
3015 // Notify that old coins are spent
3017 {
3021 }
3022 }
3024 // Track how many getdata requests our transaction gets
3027 // Get the inserted-CWalletTx from mapWallet so that the
3028 // fInMempool flag is cached properly
3032 {
3033 // Broadcast
3035 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
3036 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
3039 }
3040 }
3041 }
3043 }
3045 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
3048 }
3051 {
3055 }
3058 {
3061 }
3068 }
3071 {
3077 {
3079 {
3083 // Note: can't top-up keypool here, because wallet is locked.
3084 // User will be prompted to unlock wallet the next operation
3085 // that requires a new key.
3086 }
3087 }
3089 // This wallet is in its first run if all of these are empty
3090 fFirstRunRet = mapKeys.empty() && mapCryptedKeys.empty() && mapWatchKeys.empty() && setWatchOnly.empty() && mapScripts.empty();
3098 }
3101 {
3108 {
3110 {
3114 // Note: can't top-up keypool here, because wallet is locked.
3115 // User will be prompted to unlock wallet the next operation
3116 // that requires a new key.
3117 }
3118 }
3127 }
3130 {
3133 {
3135 {
3140 // Note: can't top-up keypool here, because wallet is locked.
3141 // User will be prompted to unlock wallet the next operation
3142 // that requires a new key.
3143 }
3144 }
3150 }
3153 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3154 {
3156 {
3163 }
3166 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(EncodeDestination(address), strPurpose))
3169 }
3172 {
3173 {
3176 // Delete destdata tuples associated with address
3179 {
3181 }
3183 }
3185 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3189 }
3192 {
3193 CTxDestination address;
3198 }
3199 }
3200 // A scriptPubKey that doesn't have an entry in the address book is
3201 // associated with the default account ("").
3204 }
3206 /**
3207 * Mark old keypool keys as used,
3208 * and generate all new keys
3209 */
3211 {
3212 {
3218 }
3223 }
3230 }
3232 }
3234 }
3237 {
3240 }
3243 {
3249 }
3253 // If no metadata exists yet, create a default with the pool key's
3254 // creation time. Note that this may be overwritten by actually
3255 // stored metadata for that key later, which is fine.
3259 }
3262 {
3263 {
3269 // Top up key pool
3273 else
3276 // count amount of available keys (internal, external)
3277 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3278 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3279 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3282 {
3283 // don't create extra internal keys
3285 }
3289 {
3292 }
3294 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3300 }
3306 }
3308 }
3310 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3311 }
3312 }
3314 }
3316 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3317 {
3320 {
3326 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3329 // Get the oldest key
3340 }
3343 }
3346 }
3351 }
3352 }
3355 {
3356 // Remove from key pool
3360 }
3363 {
3364 // Return to key pool
3365 {
3371 }
3373 }
3375 }
3378 {
3379 CKeyPool keypool;
3380 {
3385 {
3390 }
3393 }
3395 }
3397 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3400 }
3402 CKeyPool keypool;
3406 }
3409 }
3412 {
3417 // load oldest key from keypool, get time and return
3421 }
3424 }
3427 {
3430 {
3433 {
3447 {
3448 CTxDestination addr;
3459 }
3460 }
3461 }
3464 }
3467 {
3473 {
3477 {
3479 // group all input addresses with each other
3481 {
3482 CTxDestination address;
3485 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3489 }
3491 // group change with input addresses
3493 {
3496 {
3497 CTxDestination txoutAddr;
3501 }
3502 }
3504 {
3507 }
3508 }
3510 // group lone addrs by themselves
3513 {
3514 CTxDestination address;
3520 }
3521 }
3523 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3524 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3526 {
3527 // make a set of all the groups hit by this new group
3534 // merge all hit groups into a new single group and delete old groups
3537 {
3541 }
3544 // update setmap
3547 }
3551 {
3554 }
3557 }
3560 {
3564 {
3569 }
3571 }
3574 {
3576 {
3577 CKeyPool keypool;
3583 }
3585 }
3589 }
3592 {
3597 }
3600 {
3603 }
3606 }
3609 {
3621 CKeyPool keypool;
3624 }
3628 }
3629 }
3632 {
3634 CPubKey pubkey;
3640 }
3643 {
3646 }
3649 {
3652 }
3655 {
3658 }
3661 {
3666 }
3669 {
3675 }
3676 }
3684 // get birth times for keys with metadata
3688 }
3689 }
3691 // map in which we'll infer heights of other keys
3692 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3697 }
3699 // if there are no such keys, we're done
3703 // find first block that affects those keys, if there are any left
3706 // iterate over all wallet transactions...
3710 // ... which are already in a block
3713 // iterate over all their outputs
3716 // ... and all their affected keys
3720 }
3722 }
3723 }
3724 }
3726 // Extract block timestamps for those keys
3728 mapKeyBirth[entry.first] = entry.second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3729 }
3731 /**
3732 * Compute smart timestamp for a transaction being added to the wallet.
3733 *
3734 * Logic:
3735 * - If sending a transaction, assign its timestamp to the current time.
3736 * - If receiving a transaction outside a block, assign its timestamp to the
3737 * current time.
3738 * - If receiving a block with a future timestamp, assign all its (not already
3739 * known) transactions' timestamps to the current time.
3740 * - If receiving a block with a past timestamp, before the most recent known
3741 * transaction (that we care about), assign all its (not already known)
3742 * transactions' timestamps to the same timestamp as that most-recent-known
3743 * transaction.
3744 * - If receiving a block with a past timestamp, but after the most recent known
3745 * transaction, assign all its (not already known) transactions' timestamps to
3746 * the block time.
3747 *
3748 * For more information see CWalletTx::nTimeSmart,
3749 * https://bitcointalk.org/?topic=54527, or
3750 * https://github.com/bitcoin/bitcoin/pull/1393.
3751 */
3753 {
3760 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3767 }
3774 }
3777 }
3782 }
3784 }
3785 }
3790 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3791 }
3792 }
3794 }
3796 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3797 {
3803 }
3806 {
3810 }
3812 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3813 {
3816 }
3818 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3819 {
3822 {
3825 {
3829 }
3830 }
3832 }
3835 {
3842 }
3843 }
3844 }
3846 }
3849 {
3850 // needed to restore wallet transaction meta data after -zapwallettxes
3862 }
3863 }
3873 {
3877 }
3879 {
3882 walletFile));
3883 }
3885 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3887 }
3889 {
3890 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3892 }
3896 }
3897 }
3900 {
3903 {
3907 }
3908 else
3911 {
3914 }
3916 }
3919 {
3920 // ensure this wallet.dat can only be opened by clients supporting HD with chain split and expects no default key
3922 InitError(strprintf(_("Error creating %s: You can't create non-HD wallets with this version."), walletFile));
3924 }
3927 // generate a new master key
3932 // Top up the keypool
3936 }
3939 }
3943 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
3945 }
3947 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
3949 }
3950 }
3954 // Try to top up keypool. No-op if the wallet is locked.
3959 {
3961 CBlockLocator locator;
3964 }
3970 {
3971 //We can't rescan beyond non-pruned blocks, stop and throw an error
3972 //this might happen if a user uses an old wallet within a pruned node
3973 // or if he ran -disablewallet for a longer time, then decided to re-enable
3975 {
3977 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
3981 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
3983 }
3984 }
3987 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
3989 // No need to read and scan block if block was created before
3990 // our wallet birthday (as adjusted for block time variability)
3991 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
3993 }
4001 // Restore wallet transaction metadata after -zapwallettxes=1
4003 {
4007 {
4011 {
4022 }
4023 }
4024 }
4025 }
4026 walletInstance->SetBroadcastTransactions(gArgs.GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4028 {
4033 }
4036 }
4041 {
4042 // Add wallet transactions that aren't already in a block to mempool
4043 // Do this here as mempool requires genesis block to be loaded
4046 // Run a thread to flush wallet periodically
4049 }
4050 }
4053 {
4055 }
4058 {
4061 }
4064 {
4068 }
4071 {
4074 }
4077 {
4078 // Update the tx's hashBlock
4081 // set the position of the transaction in the block
4083 }
4086 {
4092 // Find the block it claims to be in
4102 }
4105 {
4109 }
4113 {
4114 // Quick check to avoid re-setting fInMempool to false
4117 }
4119 // We must set fInMempool here - while it will be re-set to true by the
4120 // entered-mempool callback, if we did not there would be a race where a
4121 // user could call sendmoney in a loop and hit spurious out of funds errors
4122 // because we think that the transaction they just generated's change is
4123 // unavailable as we're not yet aware its in mempool.
4128 }