| blob | 6d94154da84b5a5f0d2c4ce0e44e3dba6c70d253 |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
34 #include <assert.h>
36 #include <boost/algorithm/string/replace.hpp>
37 #include <boost/thread.hpp>
40 /** Transaction fee set by the user */
49 /**
50 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
51 * Override with -mintxfee
52 */
54 /**
55 * If fee estimation does not have enough data to provide estimates, use this fee instead.
56 * Has no effect if not using fee estimation
57 * Override with -fallbackfee
58 */
63 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
65 /** @defgroup mapWallet
66 *
67 * @{
68 */
70 struct CompareValueOnly
71 {
74 {
76 }
77 };
80 {
81 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
82 }
90 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
93 txnouttype type;
99 }
100 }
105 }
108 CScript script;
111 }
114 };
117 {
123 }
126 {
128 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
130 CKey secret;
132 // Create new metadata
136 // use HD key derivation if HD was enabled during wallet creation
138 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
141 }
143 // Compressed public keys were introduced in version 0.6.0
146 }
156 }
158 }
160 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
161 {
162 // for now we use a fixed keypath scheme of m/0'/0'/k
169 // try to get the master key
175 // derive m/0'
176 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
179 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
183 // derive child key at next index, skip keys already known to the wallet
185 // always derive hardened keys
186 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
187 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
192 }
197 }
201 // update the chain model in the database
204 }
206 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
207 {
210 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
211 // which is overridden below. To avoid flushes, the database handle is
212 // tunneled through to it.
216 }
220 }
223 // check if we need to remove from watch-only
224 CScript script;
228 }
232 }
238 }
240 }
243 {
246 }
250 {
253 {
257 vchCryptedSecret,
259 else
261 vchCryptedSecret,
263 }
264 }
267 {
272 }
274 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
275 {
277 }
279 /**
280 * Update wallet first key creation time. This should be called whenever keys
281 * are added to the wallet, with the oldest key creation time.
282 */
284 {
287 // Cannot determine birthday information, so set the wallet birthday to
288 // the beginning of time.
292 }
293 }
296 {
300 }
303 {
304 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
305 * that never can be redeemed. However, old wallets may still contain
306 * these. Do not add them to the wallet and warn. */
308 {
310 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
313 }
316 }
319 {
326 }
329 {
332 }
335 {
345 }
348 {
350 }
353 {
354 CCrypter crypter;
355 CKeyingMaterial _vMasterKey;
357 {
360 {
361 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
367 }
368 }
370 }
372 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
373 {
376 {
380 CCrypter crypter;
381 CKeyingMaterial _vMasterKey;
383 {
384 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
389 {
391 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
392 pMasterKey.second.nDeriveIterations = pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime)));
395 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
396 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
401 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
403 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
411 }
412 }
413 }
416 }
419 {
422 }
424 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
425 {
430 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
439 {
445 }
448 }
451 {
453 // cannot downgrade below current version
460 }
463 {
475 {
481 }
483 }
486 {
490 }
493 {
495 }
498 {
504 // Keep track of each wallet absolute path to detect duplicates.
509 return InitError(strprintf(_("Error loading wallet %s. -wallet parameter must only specify a filename (not a path)."), walletFile));
510 }
513 return InitError(strprintf(_("Error loading wallet %s. Invalid characters in -wallet filename."), walletFile));
514 }
518 if (fs::exists(wallet_path) && (!fs::is_regular_file(wallet_path) || fs::is_symlink(wallet_path))) {
519 return InitError(strprintf(_("Error loading wallet %s. -wallet filename must be a regular file."), walletFile));
520 }
523 return InitError(strprintf(_("Error loading wallet %s. Duplicate -wallet filename specified."), walletFile));
524 }
529 }
532 // Recover readable keypairs:
533 CWallet dummyWallet;
535 if (!CWalletDB::Recover(walletFile, (void *)&dummyWallet, CWalletDB::RecoverKeysOnlyFilter, backup_filename)) {
537 }
538 }
541 bool dbV = CWalletDB::VerifyDatabaseFile(walletFile, GetDataDir().string(), strWarning, strError);
544 }
548 }
549 }
552 }
555 {
556 // We want all the wallet transactions in range to have the same metadata as
557 // the oldest (smallest nOrderPos).
558 // So: find smallest nOrderPos:
563 {
567 {
570 }
571 }
572 // Now copy data from copyFrom to rest:
574 {
581 // fTimeReceivedIsTxTime not copied on purpose
582 // nTimeReceived not copied on purpose
586 // nOrderPos not copied on purpose
587 // cached members not copied on purpose
588 }
589 }
591 /**
592 * Outpoint is spent if any non-conflicted transaction
593 * spends it:
594 */
596 {
602 {
609 }
610 }
612 }
615 {
621 }
625 {
634 }
637 {
641 CKeyingMaterial _vMasterKey;
646 CMasterKey kMasterKey;
651 CCrypter crypter;
653 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
657 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
658 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
665 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
670 {
679 }
683 {
686 // We now probably have half of our keys encrypted in memory, and half not...
687 // die and let the user reload the unencrypted wallet.
689 }
691 // Encryption was introduced in version 0.4.0
696 // We now have keys encrypted in memory, but not on disk...
697 // die to avoid confusion and let the user reload the unencrypted wallet.
699 }
707 // if we are using HD, replace the HD master key (seed) with a new one
711 }
712 }
717 // Need to completely rewrite the wallet file; if we don't, bdb might keep
718 // bits of the unencrypted private key in slack space in the database file.
721 }
725 }
728 {
732 // Old wallets didn't have any defined order for transactions
733 // Probably a bad idea to change the output of this
735 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
738 TxItems txByTime;
740 for (std::map<uint256, CWalletTx>::iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
741 {
744 }
748 {
750 }
755 {
761 {
766 {
769 }
770 else
773 }
774 else
775 {
778 {
781 }
788 // Since we're changing the order, write it back
790 {
793 }
794 else
797 }
798 }
802 }
805 {
812 }
814 }
816 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
817 {
824 // Debit
825 CAccountingEntry debit;
834 // Credit
835 CAccountingEntry credit;
848 }
851 {
854 CAccount account;
861 // Check if the current key has been used
870 }
871 }
872 }
874 // Generate a new key
881 }
886 }
889 {
890 {
894 }
895 }
898 {
903 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
908 // Ensure for now that we're not overwriting data
919 }
924 }
927 {
934 // Inserts only if not already there, returns tx inserted or tx found
935 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
940 {
946 }
950 {
951 // Merge
953 {
956 }
957 // If no longer abandoned, update
959 {
962 }
964 {
967 }
969 {
972 }
973 }
975 //// debug print
976 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
978 // Write to disk
983 // Break debit/credit balance caches:
986 // Notify UI of new or updated transaction
989 // notify an external script when a wallet transaction comes in or is updated
993 {
996 }
999 }
1002 {
1016 }
1017 }
1018 }
1021 }
1023 /**
1024 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1025 * be set when the transaction was known to be included in a block. When
1026 * pIndex == nullptr, then wallet state is not updated in AddToWallet, but
1027 * notifications happen and cached balances are marked dirty.
1028 *
1029 * If fUpdate is true, existing transactions will be updated.
1030 * TODO: One exception to this is that the abandoned state is cleared under the
1031 * assumption that any further notification of a transaction that was considered
1032 * abandoned is an indication that it is not safe to be considered abandoned.
1033 * Abandoned state should probably be more carefully tracked via different
1034 * posInBlock signals or by checking mempool presence when necessary.
1035 */
1036 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1037 {
1039 {
1044 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1047 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1049 }
1051 }
1052 }
1053 }
1058 {
1059 /* Check if any keys in the wallet keypool that were supposed to be unused
1060 * have appeared in a new transaction. If so, remove those keys from the keypool.
1061 * This can happen when restoring an old wallet backup that does not contain
1062 * the mostly recently created transactions from newer versions of the wallet.
1063 */
1065 // loop though all outputs
1067 // extract addresses and check if they match with an unused keypool key
1073 LogPrintf("%s: Detected a used keypool key, mark all keypool key up to this key as used\n", __func__);
1078 }
1079 }
1080 }
1081 }
1085 // Get merkle branch if transaction was found in a block
1090 }
1091 }
1093 }
1096 {
1100 }
1103 {
1111 // Can't mark abandoned if confirmed or in mempool
1117 }
1129 // If the orig tx was not in block, none of its spends can be
1131 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1133 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1140 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1145 }
1146 iter++;
1147 }
1148 // If a transaction changes 'conflicted' state, that changes the balance
1149 // available of the outputs it spends. So force those to be recomputed
1151 {
1155 }
1156 }
1157 }
1158 }
1161 }
1164 {
1172 }
1173 }
1174 // If number of conflict confirms cannot be determined, this means
1175 // that the block is still unknown or not yet part of the main chain,
1176 // for example when loading the wallet during a reindex. Do nothing in that
1177 // case.
1181 // Do not flush the wallet here for performance reasons
1198 // Block is 'more conflicted' than current confirm; update.
1199 // Mark transaction as conflicted with this block.
1204 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1209 }
1210 iter++;
1211 }
1212 // If a transaction changes 'conflicted' state, that changes the balance
1213 // available of the outputs it spends. So force those to be recomputed
1218 }
1219 }
1220 }
1221 }
1222 }
1224 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1230 // If a transaction changes 'conflicted' state, that changes the balance
1231 // available of the outputs it spends. So force those to be
1232 // recomputed, also:
1237 }
1238 }
1239 }
1244 }
1246 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1248 // TODO: Temporarily ensure that mempool removals are notified before
1249 // connected transactions. This shouldn't matter, but the abandoned
1250 // state of transactions in our wallet is currently cleared when we
1251 // receive another notification and there is a race condition where
1252 // notification of a connected conflict might cause an outside process
1253 // to abandon a transaction and then have it inadvertently cleared by
1254 // the notification that the conflicted transaction was evicted.
1258 }
1261 }
1262 }
1269 }
1270 }
1275 {
1276 {
1280 {
1284 }
1285 }
1287 }
1289 // Note that this function doesn't distinguish between a 0-valued input,
1290 // and a not-"is mine" (according to the filter) input.
1292 {
1293 {
1297 {
1302 }
1303 }
1305 }
1308 {
1310 }
1313 {
1317 }
1320 {
1321 // TODO: fix handling of 'change' outputs. The assumption is that any
1322 // payment to a script that is ours, but is not in the address book
1323 // is change. That assumption is likely to break when we implement multisignature
1324 // wallets that return change back into a multi-signature-protected address;
1325 // a better way of identifying which outputs are 'the send' and which are
1326 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1327 // which output, if any, was change).
1329 {
1330 CTxDestination address;
1337 }
1339 }
1342 {
1346 }
1349 {
1354 }
1357 {
1359 }
1362 {
1365 {
1369 }
1371 }
1374 {
1378 {
1390 }
1392 }
1395 {
1398 {
1402 }
1404 }
1407 {
1410 {
1414 }
1416 }
1419 {
1420 CKey key;
1426 // calculate the pubkey
1430 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1434 {
1437 // mem store the metadata
1440 // write the key&metadata to the database
1443 }
1446 }
1449 {
1451 // store the keyid (hash160) together with
1452 // the child index counter in the database
1453 // as a hdchain object
1454 CHDChain newHdChain;
1455 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1460 }
1463 {
1470 }
1473 {
1475 }
1478 {
1481 }
1484 {
1485 // Returns -1 if it wasn't being tracked
1487 {
1490 {
1491 // Generated block
1493 {
1497 }
1498 }
1499 else
1500 {
1501 // Did anyone request this transaction?
1504 {
1507 // How about the block it's in?
1509 {
1513 else
1515 }
1516 }
1517 }
1518 }
1520 }
1523 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1524 {
1530 // Compute fee:
1533 {
1536 }
1538 // Sent/received.
1540 {
1543 // Only need to handle txouts if AT LEAST one of these is true:
1544 // 1) they debit from us (sent)
1545 // 2) the output is to us (received)
1547 {
1548 // Don't report 'change' txouts
1551 }
1555 // In either case, we need to get the destination address
1556 CTxDestination address;
1559 {
1563 }
1567 // If we are debited by the transaction, add the output as a "sent" entry
1571 // If we are receiving the output, add it as a "received" entry
1574 }
1576 }
1578 /**
1579 * Scan active chain for relevant transactions after importing keys. This should
1580 * be called whenever new keys are added to the wallet, with the oldest key
1581 * creation time.
1582 *
1583 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1584 * returned will be higher than startTime if relevant blocks could not be read.
1585 */
1587 {
1591 // Find starting block. May be null if nCreateTime is greater than the
1592 // highest blockchain timestamp, in which case there is nothing that needs
1593 // to be scanned.
1595 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1601 }
1602 }
1604 }
1606 /**
1607 * Scan the block chain (starting in pindexStart) for transactions
1608 * from or to us. If fUpdate is true, found transactions that already
1609 * exist in the wallet will be updated.
1610 *
1611 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1612 * possible (due to pruning or corruption), returns pointer to the most recent
1613 * block that could not be scanned.
1614 */
1616 {
1622 {
1627 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1631 {
1633 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1636 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1637 }
1639 CBlock block;
1643 }
1646 }
1648 }
1650 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1651 }
1655 }
1657 }
1660 {
1661 // If transactions aren't being broadcasted, don't let them into local mempool either
1667 // Sort pending wallet transactions based on their initial wallet insertion order
1669 {
1678 }
1679 }
1681 // Try to add wallet transactions to memory pool
1683 {
1687 CValidationState state;
1689 }
1690 }
1693 {
1696 {
1697 CValidationState state;
1698 /* GetDepthInMainChain already catches known conflicts. */
1704 {
1706 });
1708 }
1709 }
1710 }
1712 }
1715 {
1718 {
1722 }
1724 }
1727 {
1733 {
1736 else
1737 {
1741 }
1742 }
1744 {
1747 else
1748 {
1752 }
1753 }
1755 }
1758 {
1759 // Must wait until coinbase is safely deep enough in the chain before valuing it
1765 {
1766 // GetBalance can assume transactions in mapWallet won't change
1769 else
1770 {
1774 }
1775 }
1777 {
1780 else
1781 {
1785 }
1786 }
1788 }
1791 {
1793 {
1799 }
1802 }
1805 {
1809 // Must wait until coinbase is safely deep enough in the chain before valuing it
1819 {
1821 {
1826 }
1827 }
1832 }
1835 {
1837 {
1843 }
1846 }
1849 {
1853 // Must wait until coinbase is safely deep enough in the chain before valuing it
1862 {
1864 {
1869 }
1870 }
1875 }
1878 {
1884 }
1887 {
1890 }
1893 {
1894 // Quick answer in most cases
1905 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1909 // Trusted if all inputs are from us and are in the mempool:
1911 {
1912 // Transactions not sent by us: not trusted
1919 }
1921 }
1924 {
1930 }
1933 {
1938 // Sort them in chronological order
1941 {
1943 // Don't rebroadcast if newer than nTime:
1947 }
1949 {
1953 }
1955 }
1958 {
1959 // Do this infrequently and randomly to avoid giving away
1960 // that these are our transactions.
1968 // Only do it if there's been a new block since last time
1973 // Rebroadcast unconfirmed txes older than 5 minutes before the last
1974 // block was found:
1978 }
1985 /** @defgroup Actions
1986 *
1987 * @{
1988 */
1992 {
1994 {
1996 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1997 {
2001 }
2002 }
2005 }
2008 {
2010 {
2012 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2013 {
2017 }
2018 }
2020 }
2023 {
2025 {
2027 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2028 {
2031 }
2032 }
2034 }
2037 {
2039 {
2041 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2042 {
2046 }
2047 }
2050 }
2053 {
2055 {
2057 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2058 {
2062 }
2063 }
2065 }
2068 {
2070 {
2072 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2073 {
2076 }
2077 }
2079 }
2081 // Calculate total balance in a different way from GetBalance. The biggest
2082 // difference is that GetBalance sums up all unspent TxOuts paying to the
2083 // wallet, while this sums up both spent and unspent TxOuts paying to the
2084 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2085 // also has fewer restrictions on which unconfirmed transactions are considered
2086 // trusted.
2087 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2088 {
2097 }
2099 // Loop through tx outputs and add incoming payments. For outgoing txs,
2100 // treat change outputs specially, as part of the amount debited.
2106 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2108 }
2109 }
2111 // For outgoing txs, subtract amount debited.
2114 }
2115 }
2119 }
2122 }
2125 {
2134 }
2135 }
2137 }
2139 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2140 {
2143 {
2148 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2149 {
2163 // We should not consider coins which aren't at least in our mempool
2164 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2170 // We should not consider coins from transactions that are replacing
2171 // other transactions.
2172 //
2173 // Example: There is a transaction A which is replaced by bumpfee
2174 // transaction B. In this case, we want to prevent creation of
2175 // a transaction B' which spends an output of B.
2176 //
2177 // Reason: If transaction A were initially confirmed, transactions B
2178 // and B' would no longer be valid, so the user would have to create
2179 // a new transaction C to replace B'. However, in the case of a
2180 // one-block reorg, transactions B' and C might BOTH be accepted,
2181 // when the user only wanted one of them. Specifically, there could
2182 // be a 1-block reorg away from the chain where transactions A and C
2183 // were accepted to another chain where B, B', and C were all
2184 // accepted.
2187 }
2189 // Similarly, we should not consider coins from transactions that
2190 // have been replaced. In the example above, we would want to prevent
2191 // creation of a transaction A' spending an output of A, because if
2192 // transaction B were initially confirmed, conflicting with A and
2193 // A', we wouldn't want to the user to create a transaction D
2194 // intending to replace A', but potentially resulting in a scenario
2195 // where A, A', and D could all be accepted (instead of just B and
2196 // D, or just A and A' like the user would want).
2199 }
2203 }
2212 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint((*it).first, i)))
2225 }
2227 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2232 // Checks the sum amount of all UTXO's.
2238 }
2239 }
2241 // Checks the maximum number of UTXO's.
2244 }
2245 }
2246 }
2247 }
2248 }
2251 {
2252 // TODO: Add AssertLockHeld(cs_wallet) here.
2253 //
2254 // Because the return value from this function contains pointers to
2255 // CWalletTx objects, callers to this function really should acquire the
2256 // cs_wallet lock before calling it. However, the current caller doesn't
2257 // acquire this lock yet. There was an attempt to add the missing lock in
2258 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2259 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2260 // avoid adding some extra complexity to the Qt code.
2269 CTxDestination address;
2273 }
2274 }
2284 CTxDestination address;
2285 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2288 }
2289 }
2290 }
2291 }
2294 }
2297 {
2306 }
2309 }
2311 }
2313 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2315 {
2321 FastRandomContext insecure_rand;
2324 {
2329 {
2331 {
2332 //The solver here uses a randomized algorithm,
2333 //the randomness serves no real security purpose but is just
2334 //needed to prevent degenerate behavior and it is important
2335 //that the rng is fast. We do not use a constant random sequence,
2336 //because there may be some privacy improvement by making
2337 //the selection random.
2339 {
2343 {
2346 {
2349 }
2352 }
2353 }
2354 }
2355 }
2356 }
2357 }
2359 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2361 {
2365 // List of values less than target
2373 {
2390 {
2394 }
2396 {
2399 }
2401 {
2403 }
2404 }
2407 {
2409 {
2412 }
2414 }
2417 {
2423 }
2425 // Solve subset sum by stochastic approximation
2429 CAmount nBest;
2435 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2436 // or the next bigger coin is closer), return the bigger coin
2438 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2439 {
2442 }
2446 {
2449 }
2456 }
2457 }
2459 }
2460 }
2463 }
2465 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2466 {
2469 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2471 {
2473 {
2478 }
2480 }
2482 // calculate value from preset inputs and store them
2490 {
2493 {
2495 // Clearly invalid input, fail
2502 }
2504 // remove preset inputs from vCoins
2505 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2506 {
2509 else
2511 }
2513 size_t nMaxChainLength = std::min(gArgs.GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), gArgs.GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2514 bool fRejectLongChains = gArgs.GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2517 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2518 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2519 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2520 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2521 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2522 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2523 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2525 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2528 // add preset inputs to the total value selected
2532 }
2535 {
2538 // sign the new tx
2545 }
2548 SignatureData sigdata;
2549 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2551 }
2553 nIn++;
2554 }
2556 }
2558 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2559 {
2562 // Turn the txout set into a CRecipient vector
2564 {
2566 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2568 }
2576 CWalletTx wtx;
2577 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2579 }
2583 // we don't have the normal Create/Commit cycle, and don't want to risk reusing change,
2584 // so just remove the key from the keypool here.
2586 }
2588 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2592 // Add new txins (keeping original txin scriptSig/order)
2594 {
2596 {
2600 {
2603 }
2604 }
2605 }
2609 }
2612 {
2613 unsigned int highest_target = estimator.HighestTargetTracked(FeeEstimateHorizon::LONG_HALFLIFE);
2614 CFeeRate discard_rate = estimator.estimateSmartFee(highest_target, nullptr /* FeeCalculation */, false /* conservative */);
2615 // Don't let discard_rate be greater than longest possible fee estimate if we get a valid fee estimate
2616 discard_rate = (discard_rate == CFeeRate(0)) ? CWallet::m_discard_rate : std::min(discard_rate, CWallet::m_discard_rate);
2617 // Discard rate must be at least dustRelayFee
2620 }
2622 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2624 {
2629 {
2631 {
2634 }
2638 nSubtractFeeFromAmount++;
2639 }
2641 {
2644 }
2648 CMutableTransaction txNew;
2650 // Discourage fee sniping.
2651 //
2652 // For a large miner the value of the transactions in the best block and
2653 // the mempool can exceed the cost of deliberately attempting to mine two
2654 // blocks to orphan the current best block. By setting nLockTime such that
2655 // only the next block can include the transaction, we discourage this
2656 // practice as the height restricted and limited blocksize gives miners
2657 // considering fee sniping fewer options for pulling off this attack.
2658 //
2659 // A simple way to think about this is from the wallet's point of view we
2660 // always want the blockchain to move forward. By setting nLockTime this
2661 // way we're basically making the statement that we only want this
2662 // transaction to appear in the next block; we don't want to potentially
2663 // encourage reorgs by allowing transactions to appear at lower heights
2664 // than the next block in forks of the best chain.
2665 //
2666 // Of course, the subsidy is high enough, and transaction volume low
2667 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2668 // now we ensure code won't be written that makes assumptions about
2669 // nLockTime that preclude a fix later.
2672 // Secondly occasionally randomly pick a nLockTime even further back, so
2673 // that transactions that are delayed after signing for whatever reason,
2674 // e.g. high-latency mix networks and some CoinJoin implementations, have
2675 // better privacy.
2681 FeeCalculation feeCalc;
2683 {
2686 {
2690 // Create change script that will be used if we need change
2691 // TODO: pass in scriptChange instead of reservekey so
2692 // change transaction isn't always pay-to-bitcoin-address
2693 CScript scriptChange;
2695 // coin control: send change to custom address
2699 // Note: We use a new key here to keep it from being obvious which side is the change.
2700 // The drawback is that by not reusing a previous key, the change may be lost if a
2701 // backup is restored, if the backup doesn't have the new private key for the change.
2702 // If we reused the old key, it would be possible to add code to look for and
2703 // rediscover unknown transactions that were written with keys of ours to recover
2704 // post-backup change.
2706 // Reserve a new key pair from key pool
2707 CPubKey vchPubKey;
2711 {
2714 }
2717 }
2725 // Start with no fee and loop until there is enough fee
2727 {
2737 // vouts to the payees
2739 {
2743 {
2745 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2748 {
2751 }
2752 }
2755 {
2757 {
2760 else
2761 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2762 }
2763 else
2766 }
2768 }
2770 // Choose coins to use
2775 {
2778 }
2779 }
2784 {
2785 // Fill a vout to ourself
2788 // Never create dust outputs; if we would, just
2789 // add the dust to the fee.
2791 {
2794 }
2795 else
2796 {
2798 {
2799 // Insert change txn at random position:
2801 }
2803 {
2806 }
2810 }
2813 }
2815 // Fill vin
2816 //
2817 // Note how the sequence number is set to non-maxint so that
2818 // the nLockTime set above actually works.
2819 //
2820 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2821 // we use the highest possible value in that range (maxint-2)
2822 // to avoid conflicting with other possible uses of nSequence,
2823 // and in the spirit of "smallest possible change from prior
2824 // behavior."
2825 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2828 nSequence));
2830 // Fill in dummy signatures for fee calculation.
2834 }
2838 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2842 }
2846 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2847 // because we must be at the maximum allowed fee.
2849 {
2852 }
2855 // Reduce fee to only the needed amount if possible. This
2856 // prevents potential overpayment in fees if the coins
2857 // selected to meet nFeeNeeded result in a transaction that
2858 // requires less fee than the prior iteration.
2860 // If we have no change and a big enough excess fee, then
2861 // try to construct transaction again only without picking
2862 // new inputs. We now know we only need the smaller fee
2863 // (because of reduced tx size) and so we should add a
2864 // change output. Only try this once.
2865 CAmount fee_needed_for_change = GetMinimumFee(change_prototype_size, coin_control, ::mempool, ::feeEstimator, nullptr);
2868 if (nFeeRet > nFeeNeeded + max_excess_fee && nChangePosInOut == -1 && nSubtractFeeFromAmount == 0 && pick_new_inputs) {
2872 }
2874 // If we have change output already, just increase it
2880 }
2882 }
2884 // This shouldn't happen, we should have had enough excess
2885 // fee to pay for the new output and still meet nFeeNeeded
2886 // Or we should have just subtracted fee from recipients and
2887 // nFeeNeeded should not have changed
2890 }
2892 // Try to reduce change to include necessary fee
2896 // Only reduce change if remaining amount is still a large enough output.
2901 }
2902 }
2904 // If subtracting fee from recipients, we now know what fee we
2905 // need to subtract, we have no reason to reselect inputs
2908 }
2910 // Include more fee and try again.
2913 }
2914 }
2916 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2919 {
2923 {
2925 SignatureData sigdata;
2927 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2928 {
2933 }
2935 nIn++;
2936 }
2937 }
2939 // Embed the constructed transaction data in wtxNew.
2942 // Limit size
2944 {
2947 }
2948 }
2951 // Lastly, ensure this tx will pass the mempool's chain limits
2952 LockPoints lp;
2956 size_t nLimitAncestorSize = gArgs.GetArg("-limitancestorsize", DEFAULT_ANCESTOR_SIZE_LIMIT)*1000;
2958 size_t nLimitDescendantSize = gArgs.GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2960 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2963 }
2964 }
2966 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2967 nFeeRet, nBytes, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2969 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2970 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
2972 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
2973 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
2975 }
2977 /**
2978 * Call after CreateTransaction unless you want to abort
2979 */
2980 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
2981 {
2982 {
2985 {
2986 // Take key pair from key pool so it won't be used again
2989 // Add tx to wallet, because if it has change it's also ours,
2990 // otherwise just for transaction history.
2993 // Notify that old coins are spent
2995 {
2999 }
3000 }
3002 // Track how many getdata requests our transaction gets
3006 {
3007 // Broadcast
3009 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
3010 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
3013 }
3014 }
3015 }
3017 }
3019 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
3022 }
3025 {
3029 }
3032 {
3035 }
3042 }
3045 {
3047 }
3049 CAmount CWallet::GetMinimumFee(unsigned int nTxBytes, const CCoinControl& coin_control, const CTxMemPool& pool, const CBlockPolicyEstimator& estimator, FeeCalculation *feeCalc)
3050 {
3051 /* User control of how to calculate fee uses the following parameter precedence:
3052 1. coin_control.m_feerate
3053 2. coin_control.m_confirm_target
3054 3. payTxFee (user-set global variable)
3055 4. nTxConfirmTarget (user-set global variable)
3056 The first parameter that is set is used.
3057 */
3058 CAmount fee_needed;
3062 // Allow to override automatic min/max check over coin control instance
3064 }
3065 else if (!coin_control.m_confirm_target && ::payTxFee != CFeeRate(0)) { // 3. TODO: remove magic value of 0 for global payTxFee
3068 }
3070 // We will use smart fee estimation
3071 unsigned int target = coin_control.m_confirm_target ? *coin_control.m_confirm_target : ::nTxConfirmTarget;
3072 // By default estimates are economical iff we are signaling opt-in-RBF
3074 // Allow to override the default fee estimate mode over the CoinControl instance
3076 else if (coin_control.m_fee_mode == FeeEstimateMode::ECONOMICAL) conservative_estimate = false;
3078 fee_needed = estimator.estimateSmartFee(target, feeCalc, conservative_estimate).GetFee(nTxBytes);
3080 // if we don't have enough data for estimateSmartFee, then use fallbackFee
3083 }
3084 // Obey mempool min fee when using smart fee estimation
3085 CAmount min_mempool_fee = pool.GetMinFee(gArgs.GetArg("-maxmempool", DEFAULT_MAX_MEMPOOL_SIZE) * 1000000).GetFee(nTxBytes);
3089 }
3090 }
3092 // prevent user from paying a fee below minRelayTxFee or minTxFee
3097 }
3098 // But always obey the maximum
3102 }
3104 }
3110 {
3114 {
3116 {
3121 // Note: can't top-up keypool here, because wallet is locked.
3122 // User will be prompted to unlock wallet the next operation
3123 // that requires a new key.
3124 }
3125 }
3127 // This wallet is in its first run if all of these are empty
3128 fFirstRunRet = mapKeys.empty() && mapCryptedKeys.empty() && mapWatchKeys.empty() && setWatchOnly.empty() && mapScripts.empty();
3136 }
3139 {
3146 {
3148 {
3152 // Note: can't top-up keypool here, because wallet is locked.
3153 // User will be prompted to unlock wallet the next operation
3154 // that requires a new key.
3155 }
3156 }
3165 }
3168 {
3171 {
3173 {
3178 // Note: can't top-up keypool here, because wallet is locked.
3179 // User will be prompted to unlock wallet the next operation
3180 // that requires a new key.
3181 }
3182 }
3188 }
3191 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3192 {
3194 {
3201 }
3204 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(CBitcoinAddress(address).ToString(), strPurpose))
3207 }
3210 {
3211 {
3214 // Delete destdata tuples associated with address
3217 {
3219 }
3221 }
3223 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3227 }
3230 {
3231 CTxDestination address;
3236 }
3237 }
3238 // A scriptPubKey that doesn't have an entry in the address book is
3239 // associated with the default account ("").
3242 }
3244 /**
3245 * Mark old keypool keys as used,
3246 * and generate all new keys
3247 */
3249 {
3250 {
3256 }
3261 }
3268 }
3270 }
3272 }
3275 {
3278 }
3281 {
3287 }
3291 // If no metadata exists yet, create a default with the pool key's
3292 // creation time. Note that this may be overwritten by actually
3293 // stored metadata for that key later, which is fine.
3297 }
3300 {
3301 {
3307 // Top up key pool
3311 else
3314 // count amount of available keys (internal, external)
3315 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3316 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3317 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3320 {
3321 // don't create extra internal keys
3323 }
3327 {
3330 }
3332 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3338 }
3344 }
3346 }
3348 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3349 }
3350 }
3352 }
3354 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3355 {
3358 {
3364 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3367 // Get the oldest key
3378 }
3381 }
3384 }
3389 }
3390 }
3393 {
3394 // Remove from key pool
3398 }
3401 {
3402 // Return to key pool
3403 {
3409 }
3411 }
3413 }
3416 {
3417 CKeyPool keypool;
3418 {
3423 {
3428 }
3431 }
3433 }
3435 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3438 }
3440 CKeyPool keypool;
3444 }
3447 }
3450 {
3455 // load oldest key from keypool, get time and return
3459 }
3462 }
3465 {
3468 {
3471 {
3485 {
3486 CTxDestination addr;
3497 }
3498 }
3499 }
3502 }
3505 {
3511 {
3515 {
3517 // group all input addresses with each other
3519 {
3520 CTxDestination address;
3523 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3527 }
3529 // group change with input addresses
3531 {
3534 {
3535 CTxDestination txoutAddr;
3539 }
3540 }
3542 {
3545 }
3546 }
3548 // group lone addrs by themselves
3551 {
3552 CTxDestination address;
3558 }
3559 }
3561 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3562 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3564 {
3565 // make a set of all the groups hit by this new group
3572 // merge all hit groups into a new single group and delete old groups
3575 {
3579 }
3582 // update setmap
3585 }
3589 {
3592 }
3595 }
3598 {
3602 {
3607 }
3609 }
3612 {
3614 {
3615 CKeyPool keypool;
3621 }
3623 }
3627 }
3630 {
3635 }
3638 {
3641 }
3644 }
3647 {
3659 CKeyPool keypool;
3662 }
3666 }
3667 }
3670 {
3672 CPubKey pubkey;
3678 }
3681 {
3684 }
3687 {
3690 }
3693 {
3696 }
3699 {
3704 }
3707 {
3713 }
3714 }
3722 // get birth times for keys with metadata
3726 }
3727 }
3729 // map in which we'll infer heights of other keys
3730 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3737 }
3740 // if there are no such keys, we're done
3744 // find first block that affects those keys, if there are any left
3746 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); it++) {
3747 // iterate over all wallet transactions...
3751 // ... which are already in a block
3754 // iterate over all their outputs
3757 // ... and all their affected keys
3761 }
3763 }
3764 }
3765 }
3767 // Extract block timestamps for those keys
3768 for (std::map<CKeyID, CBlockIndex*>::const_iterator it = mapKeyFirstBlock.begin(); it != mapKeyFirstBlock.end(); it++)
3769 mapKeyBirth[it->first] = it->second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3770 }
3772 /**
3773 * Compute smart timestamp for a transaction being added to the wallet.
3774 *
3775 * Logic:
3776 * - If sending a transaction, assign its timestamp to the current time.
3777 * - If receiving a transaction outside a block, assign its timestamp to the
3778 * current time.
3779 * - If receiving a block with a future timestamp, assign all its (not already
3780 * known) transactions' timestamps to the current time.
3781 * - If receiving a block with a past timestamp, before the most recent known
3782 * transaction (that we care about), assign all its (not already known)
3783 * transactions' timestamps to the same timestamp as that most-recent-known
3784 * transaction.
3785 * - If receiving a block with a past timestamp, but after the most recent known
3786 * transaction, assign all its (not already known) transactions' timestamps to
3787 * the block time.
3788 *
3789 * For more information see CWalletTx::nTimeSmart,
3790 * https://bitcointalk.org/?topic=54527, or
3791 * https://github.com/bitcoin/bitcoin/pull/1393.
3792 */
3794 {
3801 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3808 }
3815 }
3818 }
3823 }
3825 }
3826 }
3831 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3832 }
3833 }
3835 }
3837 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3838 {
3844 }
3847 {
3851 }
3853 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3854 {
3857 }
3859 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3860 {
3863 {
3866 {
3870 }
3871 }
3873 }
3876 {
3883 }
3884 }
3885 }
3887 }
3890 {
3892 strUsage += HelpMessageOpt("-disablewallet", _("Do not load the wallet and disable wallet RPC calls"));
3893 strUsage += HelpMessageOpt("-keypool=<n>", strprintf(_("Set key pool size to <n> (default: %u)"), DEFAULT_KEYPOOL_SIZE));
3894 strUsage += HelpMessageOpt("-fallbackfee=<amt>", strprintf(_("A fee rate (in %s/kB) that will be used when fee estimation has insufficient data (default: %s)"),
3896 strUsage += HelpMessageOpt("-discardfee=<amt>", strprintf(_("The fee rate (in %s/kB) that indicates your tolerance for discarding change by adding it to the fee (default: %s). "
3897 "Note: An output is discarded if it is dust at this rate, but we will always discard up to the dust relay fee and a discard fee above that is limited by the fee estimate for the longest target"),
3899 strUsage += HelpMessageOpt("-mintxfee=<amt>", strprintf(_("Fees (in %s/kB) smaller than this are considered zero fee for transaction creation (default: %s)"),
3901 strUsage += HelpMessageOpt("-paytxfee=<amt>", strprintf(_("Fee (in %s/kB) to add to transactions you send (default: %s)"),
3903 strUsage += HelpMessageOpt("-rescan", _("Rescan the block chain for missing wallet transactions on startup"));
3904 strUsage += HelpMessageOpt("-salvagewallet", _("Attempt to recover private keys from a corrupt wallet on startup"));
3905 strUsage += HelpMessageOpt("-spendzeroconfchange", strprintf(_("Spend unconfirmed change when sending transactions (default: %u)"), DEFAULT_SPEND_ZEROCONF_CHANGE));
3906 strUsage += HelpMessageOpt("-txconfirmtarget=<n>", strprintf(_("If paytxfee is not set, include enough fee so transactions begin confirmation on average within n blocks (default: %u)"), DEFAULT_TX_CONFIRM_TARGET));
3907 strUsage += HelpMessageOpt("-usehd", _("Use hierarchical deterministic key generation (HD) after BIP32. Only has effect during wallet creation/first start") + " " + strprintf(_("(default: %u)"), DEFAULT_USE_HD_WALLET));
3908 strUsage += HelpMessageOpt("-walletrbf", strprintf(_("Send transactions with full-RBF opt-in enabled (default: %u)"), DEFAULT_WALLET_RBF));
3910 strUsage += HelpMessageOpt("-wallet=<file>", _("Specify wallet file (within data directory)") + " " + strprintf(_("(default: %s)"), DEFAULT_WALLET_DAT));
3911 strUsage += HelpMessageOpt("-walletbroadcast", _("Make the wallet broadcast transactions") + " " + strprintf(_("(default: %u)"), DEFAULT_WALLETBROADCAST));
3912 strUsage += HelpMessageOpt("-walletnotify=<cmd>", _("Execute command when a wallet transaction changes (%s in cmd is replaced by TxID)"));
3913 strUsage += HelpMessageOpt("-zapwallettxes=<mode>", _("Delete all wallet transactions and only recover those parts of the blockchain through -rescan on startup") +
3914 " " + _("(1 = keep tx meta data e.g. account owner and payment request information, 2 = drop tx meta data)"));
3917 {
3920 strUsage += HelpMessageOpt("-dblogsize=<n>", strprintf("Flush wallet database activity from memory to disk log every <n> megabytes (default: %u)", DEFAULT_WALLET_DBLOGSIZE));
3921 strUsage += HelpMessageOpt("-flushwallet", strprintf("Run a thread to flush wallet periodically (default: %u)", DEFAULT_FLUSHWALLET));
3922 strUsage += HelpMessageOpt("-privdb", strprintf("Sets the DB_PRIVATE flag in the wallet db environment (default: %u)", DEFAULT_WALLET_PRIVDB));
3923 strUsage += HelpMessageOpt("-walletrejectlongchains", strprintf(_("Wallet will not create transactions that violate mempool chain limits (default: %u)"), DEFAULT_WALLET_REJECT_LONG_CHAINS));
3924 }
3927 }
3930 {
3931 // needed to restore wallet transaction meta data after -zapwallettxes
3943 }
3944 }
3954 {
3958 }
3960 {
3963 walletFile));
3964 }
3966 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3968 }
3970 {
3971 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3973 }
3977 }
3978 }
3981 {
3984 {
3988 }
3989 else
3992 {
3995 }
3997 }
4000 {
4001 // Create new keyUser and set as default key
4004 // ensure this wallet.dat can only be opened by clients supporting HD with chain split
4007 // generate a new master key
4011 }
4013 // Top up the keypool
4017 }
4020 }
4024 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
4026 }
4028 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
4030 }
4031 }
4037 // Try to top up keypool. No-op if the wallet is locked.
4042 {
4044 CBlockLocator locator;
4047 }
4049 {
4050 //We can't rescan beyond non-pruned blocks, stop and throw an error
4051 //this might happen if a user uses an old wallet within a pruned node
4052 // or if he ran -disablewallet for a longer time, then decided to re-enable
4054 {
4056 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
4060 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
4062 }
4063 }
4066 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
4068 // No need to read and scan block if block was created before
4069 // our wallet birthday (as adjusted for block time variability)
4070 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
4072 }
4080 // Restore wallet transaction metadata after -zapwallettxes=1
4082 {
4086 {
4090 {
4101 }
4102 }
4103 }
4104 }
4105 walletInstance->SetBroadcastTransactions(gArgs.GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4107 {
4112 }
4115 }
4118 {
4122 }
4128 }
4130 }
4133 }
4138 {
4139 // Add wallet transactions that aren't already in a block to mempool
4140 // Do this here as mempool requires genesis block to be loaded
4143 // Run a thread to flush wallet periodically
4146 }
4147 }
4150 {
4157 if (gArgs.GetBoolArg("-blocksonly", DEFAULT_BLOCKSONLY) && gArgs.SoftSetBoolArg("-walletbroadcast", false)) {
4158 LogPrintf("%s: parameter interaction: -blocksonly=1 -> setting -walletbroadcast=0\n", __func__);
4159 }
4164 }
4165 // Rewrite just private keys: rescan to find transactions
4168 }
4169 }
4172 // -zapwallettxes implies dropping the mempool on startup
4174 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -persistmempool=0\n", __func__, zapwallettxes);
4175 }
4177 // -zapwallettxes implies a rescan
4181 }
4183 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -rescan=1\n", __func__, zapwallettxes);
4184 }
4185 }
4190 }
4191 }
4196 return InitError(_("Rescans are not possible in pruned mode. You will need to use -reindex which will download the whole blockchain again."));
4203 {
4211 }
4213 {
4216 return InitError(strprintf(_("Invalid amount for -fallbackfee=<amount>: '%s'"), gArgs.GetArg("-fallbackfee", "")));
4221 }
4223 {
4226 return InitError(strprintf(_("Invalid amount for -discardfee=<amount>: '%s'"), gArgs.GetArg("-discardfee", "")));
4229 _("This is the transaction fee you may discard if change is smaller than dust at this level"));
4231 }
4233 {
4243 {
4244 return InitError(strprintf(_("Invalid amount for -paytxfee=<amount>: '%s' (must be at least %s)"),
4246 }
4247 }
4249 {
4254 InitWarning(_("-maxtxfee is set very high! Fees this large could be paid on a single transaction."));
4257 {
4258 return InitError(strprintf(_("Invalid amount for -maxtxfee=<amount>: '%s' (must be at least the minrelay fee of %s to prevent stuck transactions)"),
4260 }
4261 }
4263 bSpendZeroConfChange = gArgs.GetBoolArg("-spendzeroconfchange", DEFAULT_SPEND_ZEROCONF_CHANGE);
4267 }
4270 {
4272 }
4275 {
4278 }
4281 {
4285 }
4288 {
4291 }
4294 {
4295 // Update the tx's hashBlock
4298 // set the position of the transaction in the block
4300 }
4303 {
4309 // Find the block it claims to be in
4319 }
4322 {
4326 }
4330 {
4332 }