| blob | b40dcceda1782ccce9b173389d728f95e14d0993 |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
34 #include <assert.h>
36 #include <boost/algorithm/string/replace.hpp>
37 #include <boost/thread.hpp>
40 /** Transaction fee set by the user */
49 /**
50 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
51 * Override with -mintxfee
52 */
54 /**
55 * If fee estimation does not have enough data to provide estimates, use this fee instead.
56 * Has no effect if not using fee estimation
57 * Override with -fallbackfee
58 */
63 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
65 /** @defgroup mapWallet
66 *
67 * @{
68 */
70 struct CompareValueOnly
71 {
74 {
76 }
77 };
80 {
81 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
82 }
90 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
93 txnouttype type;
99 }
100 }
105 }
108 CScript script;
111 }
114 };
117 {
123 }
126 {
128 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
130 CKey secret;
132 // Create new metadata
136 // use HD key derivation if HD was enabled during wallet creation
138 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
141 }
143 // Compressed public keys were introduced in version 0.6.0
146 }
156 }
158 }
160 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
161 {
162 // for now we use a fixed keypath scheme of m/0'/0'/k
169 // try to get the master key
175 // derive m/0'
176 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
179 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
183 // derive child key at next index, skip keys already known to the wallet
185 // always derive hardened keys
186 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
187 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
192 }
197 }
201 // update the chain model in the database
204 }
206 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
207 {
210 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
211 // which is overridden below. To avoid flushes, the database handle is
212 // tunneled through to it.
216 }
220 }
223 // check if we need to remove from watch-only
224 CScript script;
228 }
232 }
238 }
240 }
243 {
246 }
250 {
253 {
257 vchCryptedSecret,
259 else
261 vchCryptedSecret,
263 }
264 }
267 {
272 }
274 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
275 {
277 }
279 /**
280 * Update wallet first key creation time. This should be called whenever keys
281 * are added to the wallet, with the oldest key creation time.
282 */
284 {
287 // Cannot determine birthday information, so set the wallet birthday to
288 // the beginning of time.
292 }
293 }
296 {
300 }
303 {
304 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
305 * that never can be redeemed. However, old wallets may still contain
306 * these. Do not add them to the wallet and warn. */
308 {
310 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
313 }
316 }
319 {
326 }
329 {
332 }
335 {
345 }
348 {
350 }
353 {
354 CCrypter crypter;
355 CKeyingMaterial _vMasterKey;
357 {
360 {
361 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
367 }
368 }
370 }
372 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
373 {
376 {
380 CCrypter crypter;
381 CKeyingMaterial _vMasterKey;
383 {
384 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
389 {
391 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
392 pMasterKey.second.nDeriveIterations = pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime)));
395 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
396 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
401 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
403 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
411 }
412 }
413 }
416 }
419 {
422 }
424 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
425 {
430 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
439 {
445 }
448 }
451 {
453 // cannot downgrade below current version
460 }
463 {
475 {
481 }
483 }
486 {
490 }
493 {
495 }
498 {
504 // Keep track of each wallet absolute path to detect duplicates.
509 return InitError(strprintf(_("Error loading wallet %s. -wallet parameter must only specify a filename (not a path)."), walletFile));
510 }
513 return InitError(strprintf(_("Error loading wallet %s. Invalid characters in -wallet filename."), walletFile));
514 }
518 if (fs::exists(wallet_path) && (!fs::is_regular_file(wallet_path) || fs::is_symlink(wallet_path))) {
519 return InitError(strprintf(_("Error loading wallet %s. -wallet filename must be a regular file."), walletFile));
520 }
523 return InitError(strprintf(_("Error loading wallet %s. Duplicate -wallet filename specified."), walletFile));
524 }
529 }
532 // Recover readable keypairs:
533 CWallet dummyWallet;
535 if (!CWalletDB::Recover(walletFile, (void *)&dummyWallet, CWalletDB::RecoverKeysOnlyFilter, backup_filename)) {
537 }
538 }
541 bool dbV = CWalletDB::VerifyDatabaseFile(walletFile, GetDataDir().string(), strWarning, strError);
544 }
548 }
549 }
552 }
555 {
556 // We want all the wallet transactions in range to have the same metadata as
557 // the oldest (smallest nOrderPos).
558 // So: find smallest nOrderPos:
563 {
567 {
570 }
571 }
572 // Now copy data from copyFrom to rest:
574 {
581 // fTimeReceivedIsTxTime not copied on purpose
582 // nTimeReceived not copied on purpose
586 // nOrderPos not copied on purpose
587 // cached members not copied on purpose
588 }
589 }
591 /**
592 * Outpoint is spent if any non-conflicted transaction
593 * spends it:
594 */
596 {
602 {
609 }
610 }
612 }
615 {
621 }
625 {
633 }
636 {
640 CKeyingMaterial _vMasterKey;
645 CMasterKey kMasterKey;
650 CCrypter crypter;
652 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
656 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
657 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
664 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
669 {
678 }
682 {
685 // We now probably have half of our keys encrypted in memory, and half not...
686 // die and let the user reload the unencrypted wallet.
688 }
690 // Encryption was introduced in version 0.4.0
695 // We now have keys encrypted in memory, but not on disk...
696 // die to avoid confusion and let the user reload the unencrypted wallet.
698 }
706 // if we are using HD, replace the HD master key (seed) with a new one
710 }
711 }
716 // Need to completely rewrite the wallet file; if we don't, bdb might keep
717 // bits of the unencrypted private key in slack space in the database file.
720 }
724 }
727 {
731 // Old wallets didn't have any defined order for transactions
732 // Probably a bad idea to change the output of this
734 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
737 TxItems txByTime;
739 for (std::map<uint256, CWalletTx>::iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
740 {
743 }
747 {
749 }
754 {
760 {
765 {
768 }
769 else
772 }
773 else
774 {
777 {
780 }
787 // Since we're changing the order, write it back
789 {
792 }
793 else
796 }
797 }
801 }
804 {
811 }
813 }
815 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
816 {
823 // Debit
824 CAccountingEntry debit;
833 // Credit
834 CAccountingEntry credit;
847 }
850 {
853 CAccount account;
860 // Check if the current key has been used
869 }
870 }
871 }
873 // Generate a new key
880 }
885 }
888 {
889 {
893 }
894 }
897 {
902 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
907 // Ensure for now that we're not overwriting data
918 }
923 }
926 {
933 // Inserts only if not already there, returns tx inserted or tx found
934 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
939 {
945 }
949 {
950 // Merge
952 {
955 }
956 // If no longer abandoned, update
958 {
961 }
963 {
966 }
968 {
971 }
972 }
974 //// debug print
975 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
977 // Write to disk
982 // Break debit/credit balance caches:
985 // Notify UI of new or updated transaction
988 // notify an external script when a wallet transaction comes in or is updated
992 {
995 }
998 }
1001 {
1014 }
1015 }
1016 }
1019 }
1021 /**
1022 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1023 * be set when the transaction was known to be included in a block. When
1024 * pIndex == NULL, then wallet state is not updated in AddToWallet, but
1025 * notifications happen and cached balances are marked dirty.
1026 *
1027 * If fUpdate is true, existing transactions will be updated.
1028 * TODO: One exception to this is that the abandoned state is cleared under the
1029 * assumption that any further notification of a transaction that was considered
1030 * abandoned is an indication that it is not safe to be considered abandoned.
1031 * Abandoned state should probably be more carefully tracked via different
1032 * posInBlock signals or by checking mempool presence when necessary.
1033 */
1034 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1035 {
1037 {
1042 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1045 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1047 }
1049 }
1050 }
1051 }
1056 {
1057 /* Check if any keys in the wallet keypool that were supposed to be unused
1058 * have appeared in a new transaction. If so, remove those keys from the keypool.
1059 * This can happen when restoring an old wallet backup that does not contain
1060 * the mostly recently created transactions from newer versions of the wallet.
1061 */
1063 // loop though all outputs
1065 // extract addresses and check if they match with an unused keypool key
1071 LogPrintf("%s: Detected a used keypool key, mark all keypool key up to this key as used\n", __func__);
1076 }
1077 }
1078 }
1079 }
1083 // Get merkle branch if transaction was found in a block
1088 }
1089 }
1091 }
1094 {
1098 }
1101 {
1109 // Can't mark abandoned if confirmed or in mempool
1114 }
1125 // If the orig tx was not in block, none of its spends can be
1127 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1129 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1136 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1141 }
1142 iter++;
1143 }
1144 // If a transaction changes 'conflicted' state, that changes the balance
1145 // available of the outputs it spends. So force those to be recomputed
1147 {
1150 }
1151 }
1152 }
1155 }
1158 {
1166 }
1167 }
1168 // If number of conflict confirms cannot be determined, this means
1169 // that the block is still unknown or not yet part of the main chain,
1170 // for example when loading the wallet during a reindex. Do nothing in that
1171 // case.
1175 // Do not flush the wallet here for performance reasons
1191 // Block is 'more conflicted' than current confirm; update.
1192 // Mark transaction as conflicted with this block.
1197 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1202 }
1203 iter++;
1204 }
1205 // If a transaction changes 'conflicted' state, that changes the balance
1206 // available of the outputs it spends. So force those to be recomputed
1208 {
1211 }
1212 }
1213 }
1214 }
1216 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1222 // If a transaction changes 'conflicted' state, that changes the balance
1223 // available of the outputs it spends. So force those to be
1224 // recomputed, also:
1226 {
1229 }
1230 }
1235 }
1237 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1239 // TODO: Temporarily ensure that mempool removals are notified before
1240 // connected transactions. This shouldn't matter, but the abandoned
1241 // state of transactions in our wallet is currently cleared when we
1242 // receive another notification and there is a race condition where
1243 // notification of a connected conflict might cause an outside process
1244 // to abandon a transaction and then have it inadvertently cleared by
1245 // the notification that the conflicted transaction was evicted.
1249 }
1252 }
1253 }
1260 }
1261 }
1266 {
1267 {
1271 {
1275 }
1276 }
1278 }
1280 // Note that this function doesn't distinguish between a 0-valued input,
1281 // and a not-"is mine" (according to the filter) input.
1283 {
1284 {
1288 {
1293 }
1294 }
1296 }
1299 {
1301 }
1304 {
1308 }
1311 {
1312 // TODO: fix handling of 'change' outputs. The assumption is that any
1313 // payment to a script that is ours, but is not in the address book
1314 // is change. That assumption is likely to break when we implement multisignature
1315 // wallets that return change back into a multi-signature-protected address;
1316 // a better way of identifying which outputs are 'the send' and which are
1317 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1318 // which output, if any, was change).
1320 {
1321 CTxDestination address;
1328 }
1330 }
1333 {
1337 }
1340 {
1345 }
1348 {
1350 }
1353 {
1356 {
1360 }
1362 }
1365 {
1369 {
1381 }
1383 }
1386 {
1389 {
1393 }
1395 }
1398 {
1401 {
1405 }
1407 }
1410 {
1411 CKey key;
1417 // calculate the pubkey
1421 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1425 {
1428 // mem store the metadata
1431 // write the key&metadata to the database
1434 }
1437 }
1440 {
1442 // store the keyid (hash160) together with
1443 // the child index counter in the database
1444 // as a hdchain object
1445 CHDChain newHdChain;
1446 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1451 }
1454 {
1461 }
1464 {
1466 }
1469 {
1472 }
1475 {
1476 // Returns -1 if it wasn't being tracked
1478 {
1481 {
1482 // Generated block
1484 {
1488 }
1489 }
1490 else
1491 {
1492 // Did anyone request this transaction?
1495 {
1498 // How about the block it's in?
1500 {
1504 else
1506 }
1507 }
1508 }
1509 }
1511 }
1514 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1515 {
1521 // Compute fee:
1524 {
1527 }
1529 // Sent/received.
1531 {
1534 // Only need to handle txouts if AT LEAST one of these is true:
1535 // 1) they debit from us (sent)
1536 // 2) the output is to us (received)
1538 {
1539 // Don't report 'change' txouts
1542 }
1546 // In either case, we need to get the destination address
1547 CTxDestination address;
1550 {
1554 }
1558 // If we are debited by the transaction, add the output as a "sent" entry
1562 // If we are receiving the output, add it as a "received" entry
1565 }
1567 }
1569 /**
1570 * Scan active chain for relevant transactions after importing keys. This should
1571 * be called whenever new keys are added to the wallet, with the oldest key
1572 * creation time.
1573 *
1574 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1575 * returned will be higher than startTime if relevant blocks could not be read.
1576 */
1578 {
1582 // Find starting block. May be null if nCreateTime is greater than the
1583 // highest blockchain timestamp, in which case there is nothing that needs
1584 // to be scanned.
1586 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1592 }
1593 }
1595 }
1597 /**
1598 * Scan the block chain (starting in pindexStart) for transactions
1599 * from or to us. If fUpdate is true, found transactions that already
1600 * exist in the wallet will be updated.
1601 *
1602 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1603 * possible (due to pruning or corruption), returns pointer to the most recent
1604 * block that could not be scanned.
1605 */
1607 {
1613 {
1618 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1622 {
1624 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1627 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1628 }
1630 CBlock block;
1634 }
1637 }
1639 }
1641 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1642 }
1646 }
1648 }
1651 {
1652 // If transactions aren't being broadcasted, don't let them into local mempool either
1658 // Sort pending wallet transactions based on their initial wallet insertion order
1660 {
1669 }
1670 }
1672 // Try to add wallet transactions to memory pool
1674 {
1678 CValidationState state;
1680 }
1681 }
1684 {
1687 {
1688 CValidationState state;
1689 /* GetDepthInMainChain already catches known conflicts. */
1695 {
1697 });
1699 }
1700 }
1701 }
1703 }
1706 {
1709 {
1713 }
1715 }
1718 {
1724 {
1727 else
1728 {
1732 }
1733 }
1735 {
1738 else
1739 {
1743 }
1744 }
1746 }
1749 {
1750 // Must wait until coinbase is safely deep enough in the chain before valuing it
1756 {
1757 // GetBalance can assume transactions in mapWallet won't change
1760 else
1761 {
1765 }
1766 }
1768 {
1771 else
1772 {
1776 }
1777 }
1779 }
1782 {
1784 {
1790 }
1793 }
1796 {
1800 // Must wait until coinbase is safely deep enough in the chain before valuing it
1810 {
1812 {
1817 }
1818 }
1823 }
1826 {
1828 {
1834 }
1837 }
1840 {
1844 // Must wait until coinbase is safely deep enough in the chain before valuing it
1853 {
1855 {
1860 }
1861 }
1866 }
1869 {
1875 }
1878 {
1881 }
1884 {
1885 // Quick answer in most cases
1896 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1900 // Trusted if all inputs are from us and are in the mempool:
1902 {
1903 // Transactions not sent by us: not trusted
1910 }
1912 }
1915 {
1921 }
1924 {
1928 // Sort them in chronological order
1931 {
1933 // Don't rebroadcast if newer than nTime:
1937 }
1939 {
1943 }
1945 }
1948 {
1949 // Do this infrequently and randomly to avoid giving away
1950 // that these are our transactions.
1958 // Only do it if there's been a new block since last time
1963 // Rebroadcast unconfirmed txes older than 5 minutes before the last
1964 // block was found:
1968 }
1975 /** @defgroup Actions
1976 *
1977 * @{
1978 */
1982 {
1984 {
1986 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1987 {
1991 }
1992 }
1995 }
1998 {
2000 {
2002 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2003 {
2007 }
2008 }
2010 }
2013 {
2015 {
2017 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2018 {
2021 }
2022 }
2024 }
2027 {
2029 {
2031 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2032 {
2036 }
2037 }
2040 }
2043 {
2045 {
2047 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2048 {
2052 }
2053 }
2055 }
2058 {
2060 {
2062 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2063 {
2066 }
2067 }
2069 }
2071 // Calculate total balance in a different way from GetBalance. The biggest
2072 // difference is that GetBalance sums up all unspent TxOuts paying to the
2073 // wallet, while this sums up both spent and unspent TxOuts paying to the
2074 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2075 // also has fewer restrictions on which unconfirmed transactions are considered
2076 // trusted.
2077 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2078 {
2087 }
2089 // Loop through tx outputs and add incoming payments. For outgoing txs,
2090 // treat change outputs specially, as part of the amount debited.
2096 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2098 }
2099 }
2101 // For outgoing txs, subtract amount debited.
2104 }
2105 }
2109 }
2112 }
2115 {
2124 }
2125 }
2127 }
2129 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2130 {
2133 {
2138 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2139 {
2153 // We should not consider coins which aren't at least in our mempool
2154 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2160 // We should not consider coins from transactions that are replacing
2161 // other transactions.
2162 //
2163 // Example: There is a transaction A which is replaced by bumpfee
2164 // transaction B. In this case, we want to prevent creation of
2165 // a transaction B' which spends an output of B.
2166 //
2167 // Reason: If transaction A were initially confirmed, transactions B
2168 // and B' would no longer be valid, so the user would have to create
2169 // a new transaction C to replace B'. However, in the case of a
2170 // one-block reorg, transactions B' and C might BOTH be accepted,
2171 // when the user only wanted one of them. Specifically, there could
2172 // be a 1-block reorg away from the chain where transactions A and C
2173 // were accepted to another chain where B, B', and C were all
2174 // accepted.
2177 }
2179 // Similarly, we should not consider coins from transactions that
2180 // have been replaced. In the example above, we would want to prevent
2181 // creation of a transaction A' spending an output of A, because if
2182 // transaction B were initially confirmed, conflicting with A and
2183 // A', we wouldn't want to the user to create a transaction D
2184 // intending to replace A', but potentially resulting in a scenario
2185 // where A, A', and D could all be accepted (instead of just B and
2186 // D, or just A and A' like the user would want).
2189 }
2193 }
2202 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint((*it).first, i)))
2215 }
2217 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2222 // Checks the sum amount of all UTXO's.
2228 }
2229 }
2231 // Checks the maximum number of UTXO's.
2234 }
2235 }
2236 }
2237 }
2238 }
2241 {
2242 // TODO: Add AssertLockHeld(cs_wallet) here.
2243 //
2244 // Because the return value from this function contains pointers to
2245 // CWalletTx objects, callers to this function really should acquire the
2246 // cs_wallet lock before calling it. However, the current caller doesn't
2247 // acquire this lock yet. There was an attempt to add the missing lock in
2248 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2249 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2250 // avoid adding some extra complexity to the Qt code.
2259 CTxDestination address;
2263 }
2264 }
2274 CTxDestination address;
2275 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2278 }
2279 }
2280 }
2281 }
2284 }
2287 {
2296 }
2299 }
2301 }
2303 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2305 {
2311 FastRandomContext insecure_rand;
2314 {
2319 {
2321 {
2322 //The solver here uses a randomized algorithm,
2323 //the randomness serves no real security purpose but is just
2324 //needed to prevent degenerate behavior and it is important
2325 //that the rng is fast. We do not use a constant random sequence,
2326 //because there may be some privacy improvement by making
2327 //the selection random.
2329 {
2333 {
2336 {
2339 }
2342 }
2343 }
2344 }
2345 }
2346 }
2347 }
2349 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2351 {
2355 // List of values less than target
2363 {
2380 {
2384 }
2386 {
2389 }
2391 {
2393 }
2394 }
2397 {
2399 {
2402 }
2404 }
2407 {
2413 }
2415 // Solve subset sum by stochastic approximation
2419 CAmount nBest;
2425 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2426 // or the next bigger coin is closer), return the bigger coin
2428 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2429 {
2432 }
2436 {
2439 }
2446 }
2447 }
2449 }
2450 }
2453 }
2455 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2456 {
2459 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2461 {
2463 {
2468 }
2470 }
2472 // calculate value from preset inputs and store them
2480 {
2483 {
2485 // Clearly invalid input, fail
2492 }
2494 // remove preset inputs from vCoins
2495 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2496 {
2499 else
2501 }
2503 size_t nMaxChainLength = std::min(GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2504 bool fRejectLongChains = GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2507 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2508 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2509 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2510 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2511 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2512 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2513 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2515 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2518 // add preset inputs to the total value selected
2522 }
2525 {
2528 // sign the new tx
2535 }
2538 SignatureData sigdata;
2539 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2541 }
2543 nIn++;
2544 }
2546 }
2548 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2549 {
2552 // Turn the txout set into a CRecipient vector
2554 {
2556 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2558 }
2566 CWalletTx wtx;
2567 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2569 }
2573 // we dont have the normal Create/Commit cycle, and dont want to risk reusing change,
2574 // so just remove the key from the keypool here.
2576 }
2578 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2582 // Add new txins (keeping original txin scriptSig/order)
2584 {
2586 {
2590 {
2593 }
2594 }
2595 }
2599 }
2602 {
2603 unsigned int highest_target = estimator.HighestTargetTracked(FeeEstimateHorizon::LONG_HALFLIFE);
2604 CFeeRate discard_rate = estimator.estimateSmartFee(highest_target, nullptr /* FeeCalculation */, false /* conservative */);
2605 // Don't let discard_rate be greater than longest possible fee estimate if we get a valid fee estimate
2606 discard_rate = (discard_rate == CFeeRate(0)) ? CWallet::m_discard_rate : std::min(discard_rate, CWallet::m_discard_rate);
2607 // Discard rate must be at least dustRelayFee
2610 }
2612 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2614 {
2619 {
2621 {
2624 }
2628 nSubtractFeeFromAmount++;
2629 }
2631 {
2634 }
2638 CMutableTransaction txNew;
2640 // Discourage fee sniping.
2641 //
2642 // For a large miner the value of the transactions in the best block and
2643 // the mempool can exceed the cost of deliberately attempting to mine two
2644 // blocks to orphan the current best block. By setting nLockTime such that
2645 // only the next block can include the transaction, we discourage this
2646 // practice as the height restricted and limited blocksize gives miners
2647 // considering fee sniping fewer options for pulling off this attack.
2648 //
2649 // A simple way to think about this is from the wallet's point of view we
2650 // always want the blockchain to move forward. By setting nLockTime this
2651 // way we're basically making the statement that we only want this
2652 // transaction to appear in the next block; we don't want to potentially
2653 // encourage reorgs by allowing transactions to appear at lower heights
2654 // than the next block in forks of the best chain.
2655 //
2656 // Of course, the subsidy is high enough, and transaction volume low
2657 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2658 // now we ensure code won't be written that makes assumptions about
2659 // nLockTime that preclude a fix later.
2662 // Secondly occasionally randomly pick a nLockTime even further back, so
2663 // that transactions that are delayed after signing for whatever reason,
2664 // e.g. high-latency mix networks and some CoinJoin implementations, have
2665 // better privacy.
2671 FeeCalculation feeCalc;
2673 {
2676 {
2680 // Create change script that will be used if we need change
2681 // TODO: pass in scriptChange instead of reservekey so
2682 // change transaction isn't always pay-to-bitcoin-address
2683 CScript scriptChange;
2685 // coin control: send change to custom address
2689 // Note: We use a new key here to keep it from being obvious which side is the change.
2690 // The drawback is that by not reusing a previous key, the change may be lost if a
2691 // backup is restored, if the backup doesn't have the new private key for the change.
2692 // If we reused the old key, it would be possible to add code to look for and
2693 // rediscover unknown transactions that were written with keys of ours to recover
2694 // post-backup change.
2696 // Reserve a new key pair from key pool
2697 CPubKey vchPubKey;
2701 {
2704 }
2707 }
2715 // Start with no fee and loop until there is enough fee
2717 {
2727 // vouts to the payees
2729 {
2733 {
2734 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2737 {
2740 }
2741 }
2744 {
2746 {
2749 else
2750 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2751 }
2752 else
2755 }
2757 }
2759 // Choose coins to use
2764 {
2767 }
2768 }
2773 {
2774 // Fill a vout to ourself
2777 // Never create dust outputs; if we would, just
2778 // add the dust to the fee.
2780 {
2783 }
2784 else
2785 {
2787 {
2788 // Insert change txn at random position:
2790 }
2792 {
2795 }
2799 }
2802 }
2804 // Fill vin
2805 //
2806 // Note how the sequence number is set to non-maxint so that
2807 // the nLockTime set above actually works.
2808 //
2809 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2810 // we use the highest possible value in that range (maxint-2)
2811 // to avoid conflicting with other possible uses of nSequence,
2812 // and in the spirit of "smallest possible change from prior
2813 // behavior."
2814 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2817 nSequence));
2819 // Fill in dummy signatures for fee calculation.
2823 }
2827 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2831 }
2835 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2836 // because we must be at the maximum allowed fee.
2838 {
2841 }
2844 // Reduce fee to only the needed amount if possible. This
2845 // prevents potential overpayment in fees if the coins
2846 // selected to meet nFeeNeeded result in a transaction that
2847 // requires less fee than the prior iteration.
2849 // TODO: The case where nSubtractFeeFromAmount > 0 remains
2850 // to be addressed because it requires returning the fee to
2851 // the payees and not the change output.
2853 // If we have no change and a big enough excess fee, then
2854 // try to construct transaction again only without picking
2855 // new inputs. We now know we only need the smaller fee
2856 // (because of reduced tx size) and so we should add a
2857 // change output. Only try this once.
2858 CAmount fee_needed_for_change = GetMinimumFee(change_prototype_size, coin_control, ::mempool, ::feeEstimator, nullptr);
2861 if (nFeeRet > nFeeNeeded + max_excess_fee && nChangePosInOut == -1 && nSubtractFeeFromAmount == 0 && pick_new_inputs) {
2865 }
2867 // If we have change output already, just increase it
2873 }
2875 }
2877 // This shouldn't happen, we should have had enough excess
2878 // fee to pay for the new output and still meet nFeeNeeded
2881 }
2883 // Try to reduce change to include necessary fee
2887 // Only reduce change if remaining amount is still a large enough output.
2892 }
2893 }
2895 // Include more fee and try again.
2898 }
2899 }
2901 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2904 {
2908 {
2910 SignatureData sigdata;
2912 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2913 {
2918 }
2920 nIn++;
2921 }
2922 }
2924 // Embed the constructed transaction data in wtxNew.
2927 // Limit size
2929 {
2932 }
2933 }
2936 // Lastly, ensure this tx will pass the mempool's chain limits
2937 LockPoints lp;
2943 size_t nLimitDescendantSize = GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2945 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2948 }
2949 }
2951 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2952 nFeeRet, nBytes, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2954 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2955 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
2957 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
2958 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
2960 }
2962 /**
2963 * Call after CreateTransaction unless you want to abort
2964 */
2965 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
2966 {
2967 {
2970 {
2971 // Take key pair from key pool so it won't be used again
2974 // Add tx to wallet, because if it has change it's also ours,
2975 // otherwise just for transaction history.
2978 // Notify that old coins are spent
2980 {
2984 }
2985 }
2987 // Track how many getdata requests our transaction gets
2991 {
2992 // Broadcast
2994 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
2995 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
2998 }
2999 }
3000 }
3002 }
3004 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
3007 }
3010 {
3014 }
3017 {
3020 }
3027 }
3030 {
3032 }
3034 CAmount CWallet::GetMinimumFee(unsigned int nTxBytes, const CCoinControl& coin_control, const CTxMemPool& pool, const CBlockPolicyEstimator& estimator, FeeCalculation *feeCalc)
3035 {
3036 /* User control of how to calculate fee uses the following parameter precedence:
3037 1. coin_control.m_feerate
3038 2. coin_control.m_confirm_target
3039 3. payTxFee (user-set global variable)
3040 4. nTxConfirmTarget (user-set global variable)
3041 The first parameter that is set is used.
3042 */
3043 CAmount fee_needed;
3047 // Allow to override automatic min/max check over coin control instance
3049 }
3050 else if (!coin_control.m_confirm_target && ::payTxFee != CFeeRate(0)) { // 3. TODO: remove magic value of 0 for global payTxFee
3053 }
3055 // We will use smart fee estimation
3056 unsigned int target = coin_control.m_confirm_target ? *coin_control.m_confirm_target : ::nTxConfirmTarget;
3057 // By default estimates are economical iff we are signaling opt-in-RBF
3059 // Allow to override the default fee estimate mode over the CoinControl instance
3061 else if (coin_control.m_fee_mode == FeeEstimateMode::ECONOMICAL) conservative_estimate = false;
3063 fee_needed = estimator.estimateSmartFee(target, feeCalc, conservative_estimate).GetFee(nTxBytes);
3065 // if we don't have enough data for estimateSmartFee, then use fallbackFee
3068 }
3069 // Obey mempool min fee when using smart fee estimation
3070 CAmount min_mempool_fee = pool.GetMinFee(GetArg("-maxmempool", DEFAULT_MAX_MEMPOOL_SIZE) * 1000000).GetFee(nTxBytes);
3074 }
3075 }
3077 // prevent user from paying a fee below minRelayTxFee or minTxFee
3082 }
3083 // But always obey the maximum
3087 }
3089 }
3095 {
3099 {
3101 {
3106 // Note: can't top-up keypool here, because wallet is locked.
3107 // User will be prompted to unlock wallet the next operation
3108 // that requires a new key.
3109 }
3110 }
3119 }
3122 {
3130 {
3132 {
3136 // Note: can't top-up keypool here, because wallet is locked.
3137 // User will be prompted to unlock wallet the next operation
3138 // that requires a new key.
3139 }
3140 }
3149 }
3152 {
3156 {
3158 {
3163 // Note: can't top-up keypool here, because wallet is locked.
3164 // User will be prompted to unlock wallet the next operation
3165 // that requires a new key.
3166 }
3167 }
3173 }
3176 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3177 {
3179 {
3186 }
3189 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(CBitcoinAddress(address).ToString(), strPurpose))
3192 }
3195 {
3196 {
3199 // Delete destdata tuples associated with address
3202 {
3204 }
3206 }
3208 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3212 }
3215 {
3216 CTxDestination address;
3221 }
3222 }
3223 // A scriptPubKey that doesn't have an entry in the address book is
3224 // associated with the default account ("").
3227 }
3230 {
3235 }
3237 /**
3238 * Mark old keypool keys as used,
3239 * and generate all new keys
3240 */
3242 {
3243 {
3249 }
3254 }
3261 }
3263 }
3265 }
3268 {
3271 }
3274 {
3280 }
3284 // If no metadata exists yet, create a default with the pool key's
3285 // creation time. Note that this may be overwritten by actually
3286 // stored metadata for that key later, which is fine.
3290 }
3293 {
3294 {
3300 // Top up key pool
3304 else
3307 // count amount of available keys (internal, external)
3308 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3309 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3310 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3313 {
3314 // don't create extra internal keys
3316 }
3320 {
3323 }
3325 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3331 }
3337 }
3339 }
3341 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3342 }
3343 }
3345 }
3347 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3348 {
3351 {
3357 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3360 // Get the oldest key
3371 }
3374 }
3377 }
3382 }
3383 }
3386 {
3387 // Remove from key pool
3391 }
3394 {
3395 // Return to key pool
3396 {
3402 }
3404 }
3406 }
3409 {
3410 CKeyPool keypool;
3411 {
3416 {
3421 }
3424 }
3426 }
3428 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3431 }
3433 CKeyPool keypool;
3437 }
3440 }
3443 {
3448 // load oldest key from keypool, get time and return
3452 }
3455 }
3458 {
3461 {
3464 {
3478 {
3479 CTxDestination addr;
3490 }
3491 }
3492 }
3495 }
3498 {
3504 {
3508 {
3510 // group all input addresses with each other
3512 {
3513 CTxDestination address;
3516 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3520 }
3522 // group change with input addresses
3524 {
3527 {
3528 CTxDestination txoutAddr;
3532 }
3533 }
3535 {
3538 }
3539 }
3541 // group lone addrs by themselves
3544 {
3545 CTxDestination address;
3551 }
3552 }
3554 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3555 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3557 {
3558 // make a set of all the groups hit by this new group
3565 // merge all hit groups into a new single group and delete old groups
3568 {
3572 }
3575 // update setmap
3578 }
3582 {
3585 }
3588 }
3591 {
3595 {
3600 }
3602 }
3605 {
3607 {
3608 CKeyPool keypool;
3614 }
3616 }
3620 }
3623 {
3628 }
3631 {
3634 }
3637 }
3640 {
3652 CKeyPool keypool;
3655 }
3658 }
3659 }
3662 {
3663 return setExternalKeyPool.size() >= min_keys && (setInternalKeyPool.size() >= min_keys || !CanSupportFeature(FEATURE_HD_SPLIT));
3664 }
3667 {
3669 CPubKey pubkey;
3675 }
3678 {
3681 }
3684 {
3687 }
3690 {
3693 }
3696 {
3701 }
3704 {
3710 }
3711 }
3719 // get birth times for keys with metadata
3723 }
3724 }
3726 // map in which we'll infer heights of other keys
3727 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3734 }
3737 // if there are no such keys, we're done
3741 // find first block that affects those keys, if there are any left
3743 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); it++) {
3744 // iterate over all wallet transactions...
3748 // ... which are already in a block
3751 // iterate over all their outputs
3754 // ... and all their affected keys
3758 }
3760 }
3761 }
3762 }
3764 // Extract block timestamps for those keys
3765 for (std::map<CKeyID, CBlockIndex*>::const_iterator it = mapKeyFirstBlock.begin(); it != mapKeyFirstBlock.end(); it++)
3766 mapKeyBirth[it->first] = it->second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3767 }
3769 /**
3770 * Compute smart timestamp for a transaction being added to the wallet.
3771 *
3772 * Logic:
3773 * - If sending a transaction, assign its timestamp to the current time.
3774 * - If receiving a transaction outside a block, assign its timestamp to the
3775 * current time.
3776 * - If receiving a block with a future timestamp, assign all its (not already
3777 * known) transactions' timestamps to the current time.
3778 * - If receiving a block with a past timestamp, before the most recent known
3779 * transaction (that we care about), assign all its (not already known)
3780 * transactions' timestamps to the same timestamp as that most-recent-known
3781 * transaction.
3782 * - If receiving a block with a past timestamp, but after the most recent known
3783 * transaction, assign all its (not already known) transactions' timestamps to
3784 * the block time.
3785 *
3786 * For more information see CWalletTx::nTimeSmart,
3787 * https://bitcointalk.org/?topic=54527, or
3788 * https://github.com/bitcoin/bitcoin/pull/1393.
3789 */
3791 {
3798 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3805 }
3812 }
3815 }
3820 }
3822 }
3823 }
3828 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3829 }
3830 }
3832 }
3834 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3835 {
3841 }
3844 {
3848 }
3850 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3851 {
3854 }
3856 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3857 {
3860 {
3863 {
3867 }
3868 }
3870 }
3873 {
3880 }
3881 }
3882 }
3884 }
3887 {
3889 strUsage += HelpMessageOpt("-disablewallet", _("Do not load the wallet and disable wallet RPC calls"));
3890 strUsage += HelpMessageOpt("-keypool=<n>", strprintf(_("Set key pool size to <n> (default: %u)"), DEFAULT_KEYPOOL_SIZE));
3891 strUsage += HelpMessageOpt("-fallbackfee=<amt>", strprintf(_("A fee rate (in %s/kB) that will be used when fee estimation has insufficient data (default: %s)"),
3893 strUsage += HelpMessageOpt("-discardfee=<amt>", strprintf(_("The fee rate (in %s/kB) that indicates your tolerance for discarding change by adding it to the fee (default: %s). "
3894 "Note: An output is discarded if it is dust at this rate, but we will always discard up to the dust relay fee and a discard fee above that is limited by the fee estimate for the longest target"),
3896 strUsage += HelpMessageOpt("-mintxfee=<amt>", strprintf(_("Fees (in %s/kB) smaller than this are considered zero fee for transaction creation (default: %s)"),
3898 strUsage += HelpMessageOpt("-paytxfee=<amt>", strprintf(_("Fee (in %s/kB) to add to transactions you send (default: %s)"),
3900 strUsage += HelpMessageOpt("-rescan", _("Rescan the block chain for missing wallet transactions on startup"));
3901 strUsage += HelpMessageOpt("-salvagewallet", _("Attempt to recover private keys from a corrupt wallet on startup"));
3902 strUsage += HelpMessageOpt("-spendzeroconfchange", strprintf(_("Spend unconfirmed change when sending transactions (default: %u)"), DEFAULT_SPEND_ZEROCONF_CHANGE));
3903 strUsage += HelpMessageOpt("-txconfirmtarget=<n>", strprintf(_("If paytxfee is not set, include enough fee so transactions begin confirmation on average within n blocks (default: %u)"), DEFAULT_TX_CONFIRM_TARGET));
3904 strUsage += HelpMessageOpt("-usehd", _("Use hierarchical deterministic key generation (HD) after BIP32. Only has effect during wallet creation/first start") + " " + strprintf(_("(default: %u)"), DEFAULT_USE_HD_WALLET));
3905 strUsage += HelpMessageOpt("-walletrbf", strprintf(_("Send transactions with full-RBF opt-in enabled (default: %u)"), DEFAULT_WALLET_RBF));
3907 strUsage += HelpMessageOpt("-wallet=<file>", _("Specify wallet file (within data directory)") + " " + strprintf(_("(default: %s)"), DEFAULT_WALLET_DAT));
3908 strUsage += HelpMessageOpt("-walletbroadcast", _("Make the wallet broadcast transactions") + " " + strprintf(_("(default: %u)"), DEFAULT_WALLETBROADCAST));
3909 strUsage += HelpMessageOpt("-walletnotify=<cmd>", _("Execute command when a wallet transaction changes (%s in cmd is replaced by TxID)"));
3910 strUsage += HelpMessageOpt("-zapwallettxes=<mode>", _("Delete all wallet transactions and only recover those parts of the blockchain through -rescan on startup") +
3911 " " + _("(1 = keep tx meta data e.g. account owner and payment request information, 2 = drop tx meta data)"));
3914 {
3917 strUsage += HelpMessageOpt("-dblogsize=<n>", strprintf("Flush wallet database activity from memory to disk log every <n> megabytes (default: %u)", DEFAULT_WALLET_DBLOGSIZE));
3918 strUsage += HelpMessageOpt("-flushwallet", strprintf("Run a thread to flush wallet periodically (default: %u)", DEFAULT_FLUSHWALLET));
3919 strUsage += HelpMessageOpt("-privdb", strprintf("Sets the DB_PRIVATE flag in the wallet db environment (default: %u)", DEFAULT_WALLET_PRIVDB));
3920 strUsage += HelpMessageOpt("-walletrejectlongchains", strprintf(_("Wallet will not create transactions that violate mempool chain limits (default: %u)"), DEFAULT_WALLET_REJECT_LONG_CHAINS));
3921 }
3924 }
3927 {
3928 // needed to restore wallet transaction meta data after -zapwallettxes
3940 }
3944 }
3954 {
3958 }
3960 {
3963 walletFile));
3964 }
3966 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3968 }
3970 {
3971 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3973 }
3977 }
3978 }
3981 {
3984 {
3988 }
3989 else
3992 {
3995 }
3997 }
4000 {
4001 // Create new keyUser and set as default key
4004 // ensure this wallet.dat can only be opened by clients supporting HD with chain split
4007 // generate a new master key
4011 }
4012 CPubKey newDefaultKey;
4018 }
4019 }
4022 }
4026 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
4028 }
4030 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
4032 }
4033 }
4039 // Try to top up keypool. No-op if the wallet is locked.
4044 {
4046 CBlockLocator locator;
4049 }
4051 {
4052 //We can't rescan beyond non-pruned blocks, stop and throw an error
4053 //this might happen if a user uses an old wallet within a pruned node
4054 // or if he ran -disablewallet for a longer time, then decided to re-enable
4056 {
4058 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
4062 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
4064 }
4065 }
4068 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
4070 // No need to read and scan block if block was created before
4071 // our wallet birthday (as adjusted for block time variability)
4072 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
4074 }
4082 // Restore wallet transaction metadata after -zapwallettxes=1
4084 {
4088 {
4092 {
4103 }
4104 }
4105 }
4106 }
4107 walletInstance->SetBroadcastTransactions(GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4109 {
4114 }
4117 }
4120 {
4124 }
4130 }
4132 }
4135 }
4140 {
4141 // Add wallet transactions that aren't already in a block to mempool
4142 // Do this here as mempool requires genesis block to be loaded
4145 // Run a thread to flush wallet periodically
4148 }
4149 }
4152 {
4159 if (GetBoolArg("-blocksonly", DEFAULT_BLOCKSONLY) && SoftSetBoolArg("-walletbroadcast", false)) {
4160 LogPrintf("%s: parameter interaction: -blocksonly=1 -> setting -walletbroadcast=0\n", __func__);
4161 }
4166 }
4167 // Rewrite just private keys: rescan to find transactions
4170 }
4171 }
4174 // -zapwallettxes implies dropping the mempool on startup
4176 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -persistmempool=0\n", __func__, zapwallettxes);
4177 }
4179 // -zapwallettxes implies a rescan
4183 }
4185 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -rescan=1\n", __func__, zapwallettxes);
4186 }
4187 }
4192 }
4193 }
4198 return InitError(_("Rescans are not possible in pruned mode. You will need to use -reindex which will download the whole blockchain again."));
4205 {
4213 }
4215 {
4218 return InitError(strprintf(_("Invalid amount for -fallbackfee=<amount>: '%s'"), GetArg("-fallbackfee", "")));
4223 }
4225 {
4228 return InitError(strprintf(_("Invalid amount for -discardfee=<amount>: '%s'"), GetArg("-discardfee", "")));
4231 _("This is the transaction fee you may discard if change is smaller than dust at this level"));
4233 }
4235 {
4245 {
4246 return InitError(strprintf(_("Invalid amount for -paytxfee=<amount>: '%s' (must be at least %s)"),
4248 }
4249 }
4251 {
4256 InitWarning(_("-maxtxfee is set very high! Fees this large could be paid on a single transaction."));
4259 {
4260 return InitError(strprintf(_("Invalid amount for -maxtxfee=<amount>: '%s' (must be at least the minrelay fee of %s to prevent stuck transactions)"),
4262 }
4263 }
4269 }
4272 {
4274 }
4277 {
4280 }
4283 {
4287 }
4290 {
4293 }
4296 {
4297 // Update the tx's hashBlock
4300 // set the position of the transaction in the block
4302 }
4305 {
4311 // Find the block it claims to be in
4321 }
4324 {
4328 }
4332 {
4334 }