| blob | 2ef3299c272e25829f9729ede80616f18c6b5141 |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
33 #include <assert.h>
35 #include <boost/algorithm/string/replace.hpp>
36 #include <boost/thread.hpp>
39 /** Transaction fee set by the user */
48 /**
49 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
50 * Override with -mintxfee
51 */
53 /**
54 * If fee estimation does not have enough data to provide estimates, use this fee instead.
55 * Has no effect if not using fee estimation
56 * Override with -fallbackfee
57 */
62 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
64 /** @defgroup mapWallet
65 *
66 * @{
67 */
69 struct CompareValueOnly
70 {
73 {
75 }
76 };
79 {
80 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
81 }
89 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
92 txnouttype type;
98 }
99 }
104 }
107 CScript script;
110 }
113 };
116 {
122 }
125 {
127 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
129 CKey secret;
131 // Create new metadata
135 // use HD key derivation if HD was enabled during wallet creation
137 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
140 }
142 // Compressed public keys were introduced in version 0.6.0
145 }
155 }
157 }
159 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
160 {
161 // for now we use a fixed keypath scheme of m/0'/0'/k
168 // try to get the master key
174 // derive m/0'
175 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
178 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
182 // derive child key at next index, skip keys already known to the wallet
184 // always derive hardened keys
185 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
186 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
191 }
196 }
200 // update the chain model in the database
203 }
205 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
206 {
209 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
210 // which is overridden below. To avoid flushes, the database handle is
211 // tunneled through to it.
215 }
219 }
222 // check if we need to remove from watch-only
223 CScript script;
227 }
231 }
237 }
239 }
242 {
245 }
249 {
252 {
256 vchCryptedSecret,
258 else
260 vchCryptedSecret,
262 }
263 }
266 {
271 }
273 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
274 {
276 }
278 /**
279 * Update wallet first key creation time. This should be called whenever keys
280 * are added to the wallet, with the oldest key creation time.
281 */
283 {
286 // Cannot determine birthday information, so set the wallet birthday to
287 // the beginning of time.
291 }
292 }
295 {
299 }
302 {
303 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
304 * that never can be redeemed. However, old wallets may still contain
305 * these. Do not add them to the wallet and warn. */
307 {
309 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
312 }
315 }
318 {
325 }
328 {
331 }
334 {
344 }
347 {
349 }
352 {
353 CCrypter crypter;
354 CKeyingMaterial _vMasterKey;
356 {
359 {
360 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
366 }
367 }
369 }
371 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
372 {
375 {
379 CCrypter crypter;
380 CKeyingMaterial _vMasterKey;
382 {
383 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
388 {
390 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
391 pMasterKey.second.nDeriveIterations = pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime)));
394 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
395 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
400 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
402 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
410 }
411 }
412 }
415 }
418 {
421 }
423 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
424 {
429 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
438 {
444 }
447 }
450 {
452 // cannot downgrade below current version
459 }
462 {
474 {
480 }
482 }
485 {
489 }
492 {
494 }
497 {
503 // Keep track of each wallet absolute path to detect duplicates.
508 return InitError(strprintf(_("Error loading wallet %s. -wallet parameter must only specify a filename (not a path)."), walletFile));
509 }
512 return InitError(strprintf(_("Error loading wallet %s. Invalid characters in -wallet filename."), walletFile));
513 }
517 if (fs::exists(wallet_path) && (!fs::is_regular_file(wallet_path) || fs::is_symlink(wallet_path))) {
518 return InitError(strprintf(_("Error loading wallet %s. -wallet filename must be a regular file."), walletFile));
519 }
522 return InitError(strprintf(_("Error loading wallet %s. Duplicate -wallet filename specified."), walletFile));
523 }
528 }
531 // Recover readable keypairs:
532 CWallet dummyWallet;
534 if (!CWalletDB::Recover(walletFile, (void *)&dummyWallet, CWalletDB::RecoverKeysOnlyFilter, backup_filename)) {
536 }
537 }
540 bool dbV = CWalletDB::VerifyDatabaseFile(walletFile, GetDataDir().string(), strWarning, strError);
543 }
547 }
548 }
551 }
554 {
555 // We want all the wallet transactions in range to have the same metadata as
556 // the oldest (smallest nOrderPos).
557 // So: find smallest nOrderPos:
562 {
566 {
569 }
570 }
571 // Now copy data from copyFrom to rest:
573 {
580 // fTimeReceivedIsTxTime not copied on purpose
581 // nTimeReceived not copied on purpose
585 // nOrderPos not copied on purpose
586 // cached members not copied on purpose
587 }
588 }
590 /**
591 * Outpoint is spent if any non-conflicted transaction
592 * spends it:
593 */
595 {
601 {
608 }
609 }
611 }
614 {
620 }
624 {
632 }
635 {
639 CKeyingMaterial _vMasterKey;
644 CMasterKey kMasterKey;
649 CCrypter crypter;
651 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
655 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
656 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
663 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
668 {
677 }
681 {
684 // We now probably have half of our keys encrypted in memory, and half not...
685 // die and let the user reload the unencrypted wallet.
687 }
689 // Encryption was introduced in version 0.4.0
694 // We now have keys encrypted in memory, but not on disk...
695 // die to avoid confusion and let the user reload the unencrypted wallet.
697 }
705 // if we are using HD, replace the HD master key (seed) with a new one
709 }
710 }
715 // Need to completely rewrite the wallet file; if we don't, bdb might keep
716 // bits of the unencrypted private key in slack space in the database file.
719 }
723 }
726 {
730 // Old wallets didn't have any defined order for transactions
731 // Probably a bad idea to change the output of this
733 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
736 TxItems txByTime;
738 for (std::map<uint256, CWalletTx>::iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
739 {
742 }
746 {
748 }
753 {
759 {
764 {
767 }
768 else
771 }
772 else
773 {
776 {
779 }
786 // Since we're changing the order, write it back
788 {
791 }
792 else
795 }
796 }
800 }
803 {
810 }
812 }
814 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
815 {
822 // Debit
823 CAccountingEntry debit;
832 // Credit
833 CAccountingEntry credit;
846 }
849 {
852 CAccount account;
859 // Check if the current key has been used
868 }
869 }
870 }
872 // Generate a new key
879 }
884 }
887 {
888 {
892 }
893 }
896 {
901 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
906 // Ensure for now that we're not overwriting data
917 }
922 }
925 {
932 // Inserts only if not already there, returns tx inserted or tx found
933 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
938 {
944 }
948 {
949 // Merge
951 {
954 }
955 // If no longer abandoned, update
957 {
960 }
962 {
965 }
967 {
970 }
971 }
973 //// debug print
974 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
976 // Write to disk
981 // Break debit/credit balance caches:
984 // Notify UI of new or updated transaction
987 // notify an external script when a wallet transaction comes in or is updated
991 {
994 }
997 }
1000 {
1013 }
1014 }
1015 }
1018 }
1020 /**
1021 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1022 * be set when the transaction was known to be included in a block. When
1023 * pIndex == NULL, then wallet state is not updated in AddToWallet, but
1024 * notifications happen and cached balances are marked dirty.
1025 *
1026 * If fUpdate is true, existing transactions will be updated.
1027 * TODO: One exception to this is that the abandoned state is cleared under the
1028 * assumption that any further notification of a transaction that was considered
1029 * abandoned is an indication that it is not safe to be considered abandoned.
1030 * Abandoned state should probably be more carefully tracked via different
1031 * posInBlock signals or by checking mempool presence when necessary.
1032 */
1033 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1034 {
1036 {
1041 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1044 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1046 }
1048 }
1049 }
1050 }
1055 {
1058 // Get merkle branch if transaction was found in a block
1063 }
1064 }
1066 }
1069 {
1073 }
1076 {
1084 // Can't mark abandoned if confirmed or in mempool
1089 }
1100 // If the orig tx was not in block, none of its spends can be
1102 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1104 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1111 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1116 }
1117 iter++;
1118 }
1119 // If a transaction changes 'conflicted' state, that changes the balance
1120 // available of the outputs it spends. So force those to be recomputed
1122 {
1125 }
1126 }
1127 }
1130 }
1133 {
1141 }
1142 }
1143 // If number of conflict confirms cannot be determined, this means
1144 // that the block is still unknown or not yet part of the main chain,
1145 // for example when loading the wallet during a reindex. Do nothing in that
1146 // case.
1150 // Do not flush the wallet here for performance reasons
1166 // Block is 'more conflicted' than current confirm; update.
1167 // Mark transaction as conflicted with this block.
1172 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1177 }
1178 iter++;
1179 }
1180 // If a transaction changes 'conflicted' state, that changes the balance
1181 // available of the outputs it spends. So force those to be recomputed
1183 {
1186 }
1187 }
1188 }
1189 }
1191 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1197 // If a transaction changes 'conflicted' state, that changes the balance
1198 // available of the outputs it spends. So force those to be
1199 // recomputed, also:
1201 {
1204 }
1205 }
1210 }
1212 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1214 // TODO: Temporarily ensure that mempool removals are notified before
1215 // connected transactions. This shouldn't matter, but the abandoned
1216 // state of transactions in our wallet is currently cleared when we
1217 // receive another notification and there is a race condition where
1218 // notification of a connected conflict might cause an outside process
1219 // to abandon a transaction and then have it inadvertently cleared by
1220 // the notification that the conflicted transaction was evicted.
1224 }
1227 }
1228 }
1235 }
1236 }
1241 {
1242 {
1246 {
1250 }
1251 }
1253 }
1255 // Note that this function doesn't distinguish between a 0-valued input,
1256 // and a not-"is mine" (according to the filter) input.
1258 {
1259 {
1263 {
1268 }
1269 }
1271 }
1274 {
1276 }
1279 {
1283 }
1286 {
1287 // TODO: fix handling of 'change' outputs. The assumption is that any
1288 // payment to a script that is ours, but is not in the address book
1289 // is change. That assumption is likely to break when we implement multisignature
1290 // wallets that return change back into a multi-signature-protected address;
1291 // a better way of identifying which outputs are 'the send' and which are
1292 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1293 // which output, if any, was change).
1295 {
1296 CTxDestination address;
1303 }
1305 }
1308 {
1312 }
1315 {
1320 }
1323 {
1325 }
1328 {
1331 {
1335 }
1337 }
1340 {
1344 {
1356 }
1358 }
1361 {
1364 {
1368 }
1370 }
1373 {
1376 {
1380 }
1382 }
1385 {
1386 CKey key;
1392 // calculate the pubkey
1396 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1400 {
1403 // mem store the metadata
1406 // write the key&metadata to the database
1409 }
1412 }
1415 {
1417 // store the keyid (hash160) together with
1418 // the child index counter in the database
1419 // as a hdchain object
1420 CHDChain newHdChain;
1421 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1426 }
1429 {
1436 }
1439 {
1441 }
1444 {
1447 }
1450 {
1451 // Returns -1 if it wasn't being tracked
1453 {
1456 {
1457 // Generated block
1459 {
1463 }
1464 }
1465 else
1466 {
1467 // Did anyone request this transaction?
1470 {
1473 // How about the block it's in?
1475 {
1479 else
1481 }
1482 }
1483 }
1484 }
1486 }
1489 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1490 {
1496 // Compute fee:
1499 {
1502 }
1504 // Sent/received.
1506 {
1509 // Only need to handle txouts if AT LEAST one of these is true:
1510 // 1) they debit from us (sent)
1511 // 2) the output is to us (received)
1513 {
1514 // Don't report 'change' txouts
1517 }
1521 // In either case, we need to get the destination address
1522 CTxDestination address;
1525 {
1529 }
1533 // If we are debited by the transaction, add the output as a "sent" entry
1537 // If we are receiving the output, add it as a "received" entry
1540 }
1542 }
1544 /**
1545 * Scan active chain for relevant transactions after importing keys. This should
1546 * be called whenever new keys are added to the wallet, with the oldest key
1547 * creation time.
1548 *
1549 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1550 * returned will be higher than startTime if relevant blocks could not be read.
1551 */
1553 {
1557 // Find starting block. May be null if nCreateTime is greater than the
1558 // highest blockchain timestamp, in which case there is nothing that needs
1559 // to be scanned.
1561 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1567 }
1568 }
1570 }
1572 /**
1573 * Scan the block chain (starting in pindexStart) for transactions
1574 * from or to us. If fUpdate is true, found transactions that already
1575 * exist in the wallet will be updated.
1576 *
1577 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1578 * possible (due to pruning or corruption), returns pointer to the most recent
1579 * block that could not be scanned.
1580 */
1582 {
1588 {
1593 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1597 {
1599 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1602 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1603 }
1605 CBlock block;
1609 }
1612 }
1614 }
1616 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1617 }
1621 }
1623 }
1626 {
1627 // If transactions aren't being broadcasted, don't let them into local mempool either
1633 // Sort pending wallet transactions based on their initial wallet insertion order
1635 {
1644 }
1645 }
1647 // Try to add wallet transactions to memory pool
1649 {
1653 CValidationState state;
1655 }
1656 }
1659 {
1662 {
1663 CValidationState state;
1664 /* GetDepthInMainChain already catches known conflicts. */
1670 {
1672 });
1674 }
1675 }
1676 }
1678 }
1681 {
1684 {
1688 }
1690 }
1693 {
1699 {
1702 else
1703 {
1707 }
1708 }
1710 {
1713 else
1714 {
1718 }
1719 }
1721 }
1724 {
1725 // Must wait until coinbase is safely deep enough in the chain before valuing it
1731 {
1732 // GetBalance can assume transactions in mapWallet won't change
1735 else
1736 {
1740 }
1741 }
1743 {
1746 else
1747 {
1751 }
1752 }
1754 }
1757 {
1759 {
1765 }
1768 }
1771 {
1775 // Must wait until coinbase is safely deep enough in the chain before valuing it
1785 {
1787 {
1792 }
1793 }
1798 }
1801 {
1803 {
1809 }
1812 }
1815 {
1819 // Must wait until coinbase is safely deep enough in the chain before valuing it
1828 {
1830 {
1835 }
1836 }
1841 }
1844 {
1850 }
1853 {
1856 }
1859 {
1860 // Quick answer in most cases
1871 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1875 // Trusted if all inputs are from us and are in the mempool:
1877 {
1878 // Transactions not sent by us: not trusted
1885 }
1887 }
1890 {
1896 }
1899 {
1903 // Sort them in chronological order
1906 {
1908 // Don't rebroadcast if newer than nTime:
1912 }
1914 {
1918 }
1920 }
1923 {
1924 // Do this infrequently and randomly to avoid giving away
1925 // that these are our transactions.
1933 // Only do it if there's been a new block since last time
1938 // Rebroadcast unconfirmed txes older than 5 minutes before the last
1939 // block was found:
1943 }
1950 /** @defgroup Actions
1951 *
1952 * @{
1953 */
1957 {
1959 {
1961 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1962 {
1966 }
1967 }
1970 }
1973 {
1975 {
1977 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1978 {
1982 }
1983 }
1985 }
1988 {
1990 {
1992 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1993 {
1996 }
1997 }
1999 }
2002 {
2004 {
2006 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2007 {
2011 }
2012 }
2015 }
2018 {
2020 {
2022 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2023 {
2027 }
2028 }
2030 }
2033 {
2035 {
2037 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2038 {
2041 }
2042 }
2044 }
2046 // Calculate total balance in a different way from GetBalance. The biggest
2047 // difference is that GetBalance sums up all unspent TxOuts paying to the
2048 // wallet, while this sums up both spent and unspent TxOuts paying to the
2049 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2050 // also has fewer restrictions on which unconfirmed transactions are considered
2051 // trusted.
2052 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2053 {
2062 }
2064 // Loop through tx outputs and add incoming payments. For outgoing txs,
2065 // treat change outputs specially, as part of the amount debited.
2071 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2073 }
2074 }
2076 // For outgoing txs, subtract amount debited.
2079 }
2080 }
2084 }
2087 }
2090 {
2099 }
2100 }
2102 }
2104 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2105 {
2108 {
2113 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2114 {
2128 // We should not consider coins which aren't at least in our mempool
2129 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2135 // We should not consider coins from transactions that are replacing
2136 // other transactions.
2137 //
2138 // Example: There is a transaction A which is replaced by bumpfee
2139 // transaction B. In this case, we want to prevent creation of
2140 // a transaction B' which spends an output of B.
2141 //
2142 // Reason: If transaction A were initially confirmed, transactions B
2143 // and B' would no longer be valid, so the user would have to create
2144 // a new transaction C to replace B'. However, in the case of a
2145 // one-block reorg, transactions B' and C might BOTH be accepted,
2146 // when the user only wanted one of them. Specifically, there could
2147 // be a 1-block reorg away from the chain where transactions A and C
2148 // were accepted to another chain where B, B', and C were all
2149 // accepted.
2152 }
2154 // Similarly, we should not consider coins from transactions that
2155 // have been replaced. In the example above, we would want to prevent
2156 // creation of a transaction A' spending an output of A, because if
2157 // transaction B were initially confirmed, conflicting with A and
2158 // A', we wouldn't want to the user to create a transaction D
2159 // intending to replace A', but potentially resulting in a scenario
2160 // where A, A', and D could all be accepted (instead of just B and
2161 // D, or just A and A' like the user would want).
2164 }
2168 }
2177 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint((*it).first, i)))
2190 }
2192 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2197 // Checks the sum amount of all UTXO's.
2203 }
2204 }
2206 // Checks the maximum number of UTXO's.
2209 }
2210 }
2211 }
2212 }
2213 }
2216 {
2217 // TODO: Add AssertLockHeld(cs_wallet) here.
2218 //
2219 // Because the return value from this function contains pointers to
2220 // CWalletTx objects, callers to this function really should acquire the
2221 // cs_wallet lock before calling it. However, the current caller doesn't
2222 // acquire this lock yet. There was an attempt to add the missing lock in
2223 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2224 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2225 // avoid adding some extra complexity to the Qt code.
2234 CTxDestination address;
2238 }
2239 }
2249 CTxDestination address;
2250 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2253 }
2254 }
2255 }
2256 }
2259 }
2262 {
2271 }
2274 }
2276 }
2278 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2280 {
2286 FastRandomContext insecure_rand;
2289 {
2294 {
2296 {
2297 //The solver here uses a randomized algorithm,
2298 //the randomness serves no real security purpose but is just
2299 //needed to prevent degenerate behavior and it is important
2300 //that the rng is fast. We do not use a constant random sequence,
2301 //because there may be some privacy improvement by making
2302 //the selection random.
2304 {
2308 {
2311 {
2314 }
2317 }
2318 }
2319 }
2320 }
2321 }
2322 }
2324 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2326 {
2330 // List of values less than target
2338 {
2355 {
2359 }
2361 {
2364 }
2366 {
2368 }
2369 }
2372 {
2374 {
2377 }
2379 }
2382 {
2388 }
2390 // Solve subset sum by stochastic approximation
2394 CAmount nBest;
2400 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2401 // or the next bigger coin is closer), return the bigger coin
2403 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2404 {
2407 }
2411 {
2414 }
2421 }
2422 }
2424 }
2425 }
2428 }
2430 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2431 {
2434 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2436 {
2438 {
2443 }
2445 }
2447 // calculate value from preset inputs and store them
2455 {
2458 {
2460 // Clearly invalid input, fail
2467 }
2469 // remove preset inputs from vCoins
2470 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2471 {
2474 else
2476 }
2478 size_t nMaxChainLength = std::min(GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2479 bool fRejectLongChains = GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2482 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2483 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2484 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2485 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2486 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2487 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2488 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2490 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2493 // add preset inputs to the total value selected
2497 }
2500 {
2503 // sign the new tx
2510 }
2513 SignatureData sigdata;
2514 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2516 }
2518 nIn++;
2519 }
2521 }
2523 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2524 {
2527 // Turn the txout set into a CRecipient vector
2529 {
2531 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2533 }
2541 CWalletTx wtx;
2542 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2544 }
2548 // we dont have the normal Create/Commit cycle, and dont want to risk reusing change,
2549 // so just remove the key from the keypool here.
2551 }
2553 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2557 // Add new txins (keeping original txin scriptSig/order)
2559 {
2561 {
2565 {
2568 }
2569 }
2570 }
2574 }
2577 {
2578 unsigned int highest_target = estimator.HighestTargetTracked(FeeEstimateHorizon::LONG_HALFLIFE);
2579 CFeeRate discard_rate = estimator.estimateSmartFee(highest_target, nullptr /* FeeCalculation */, false /* conservative */);
2580 // Don't let discard_rate be greater than longest possible fee estimate if we get a valid fee estimate
2581 discard_rate = (discard_rate == CFeeRate(0)) ? CWallet::m_discard_rate : std::min(discard_rate, CWallet::m_discard_rate);
2582 // Discard rate must be at least dustRelayFee
2585 }
2587 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2589 {
2594 {
2596 {
2599 }
2603 nSubtractFeeFromAmount++;
2604 }
2606 {
2609 }
2613 CMutableTransaction txNew;
2615 // Discourage fee sniping.
2616 //
2617 // For a large miner the value of the transactions in the best block and
2618 // the mempool can exceed the cost of deliberately attempting to mine two
2619 // blocks to orphan the current best block. By setting nLockTime such that
2620 // only the next block can include the transaction, we discourage this
2621 // practice as the height restricted and limited blocksize gives miners
2622 // considering fee sniping fewer options for pulling off this attack.
2623 //
2624 // A simple way to think about this is from the wallet's point of view we
2625 // always want the blockchain to move forward. By setting nLockTime this
2626 // way we're basically making the statement that we only want this
2627 // transaction to appear in the next block; we don't want to potentially
2628 // encourage reorgs by allowing transactions to appear at lower heights
2629 // than the next block in forks of the best chain.
2630 //
2631 // Of course, the subsidy is high enough, and transaction volume low
2632 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2633 // now we ensure code won't be written that makes assumptions about
2634 // nLockTime that preclude a fix later.
2637 // Secondly occasionally randomly pick a nLockTime even further back, so
2638 // that transactions that are delayed after signing for whatever reason,
2639 // e.g. high-latency mix networks and some CoinJoin implementations, have
2640 // better privacy.
2646 FeeCalculation feeCalc;
2648 {
2651 {
2655 // Create change script that will be used if we need change
2656 // TODO: pass in scriptChange instead of reservekey so
2657 // change transaction isn't always pay-to-bitcoin-address
2658 CScript scriptChange;
2660 // coin control: send change to custom address
2664 // Note: We use a new key here to keep it from being obvious which side is the change.
2665 // The drawback is that by not reusing a previous key, the change may be lost if a
2666 // backup is restored, if the backup doesn't have the new private key for the change.
2667 // If we reused the old key, it would be possible to add code to look for and
2668 // rediscover unknown transactions that were written with keys of ours to recover
2669 // post-backup change.
2671 // Reserve a new key pair from key pool
2672 CPubKey vchPubKey;
2676 {
2679 }
2682 }
2690 // Start with no fee and loop until there is enough fee
2692 {
2702 // vouts to the payees
2704 {
2708 {
2709 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2712 {
2715 }
2716 }
2719 {
2721 {
2724 else
2725 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2726 }
2727 else
2730 }
2732 }
2734 // Choose coins to use
2739 {
2742 }
2743 }
2748 {
2749 // Fill a vout to ourself
2752 // Never create dust outputs; if we would, just
2753 // add the dust to the fee.
2755 {
2758 }
2759 else
2760 {
2762 {
2763 // Insert change txn at random position:
2765 }
2767 {
2770 }
2774 }
2777 }
2779 // Fill vin
2780 //
2781 // Note how the sequence number is set to non-maxint so that
2782 // the nLockTime set above actually works.
2783 //
2784 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2785 // we use the highest possible value in that range (maxint-2)
2786 // to avoid conflicting with other possible uses of nSequence,
2787 // and in the spirit of "smallest possible change from prior
2788 // behavior."
2789 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2792 nSequence));
2794 // Fill in dummy signatures for fee calculation.
2798 }
2802 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2806 }
2810 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2811 // because we must be at the maximum allowed fee.
2813 {
2816 }
2819 // Reduce fee to only the needed amount if possible. This
2820 // prevents potential overpayment in fees if the coins
2821 // selected to meet nFeeNeeded result in a transaction that
2822 // requires less fee than the prior iteration.
2824 // TODO: The case where nSubtractFeeFromAmount > 0 remains
2825 // to be addressed because it requires returning the fee to
2826 // the payees and not the change output.
2828 // If we have no change and a big enough excess fee, then
2829 // try to construct transaction again only without picking
2830 // new inputs. We now know we only need the smaller fee
2831 // (because of reduced tx size) and so we should add a
2832 // change output. Only try this once.
2833 CAmount fee_needed_for_change = GetMinimumFee(change_prototype_size, coin_control, ::mempool, ::feeEstimator, nullptr);
2836 if (nFeeRet > nFeeNeeded + max_excess_fee && nChangePosInOut == -1 && nSubtractFeeFromAmount == 0 && pick_new_inputs) {
2840 }
2842 // If we have change output already, just increase it
2848 }
2850 }
2852 // This shouldn't happen, we should have had enough excess
2853 // fee to pay for the new output and still meet nFeeNeeded
2856 }
2858 // Try to reduce change to include necessary fee
2862 // Only reduce change if remaining amount is still a large enough output.
2867 }
2868 }
2870 // Include more fee and try again.
2873 }
2874 }
2876 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2879 {
2883 {
2885 SignatureData sigdata;
2887 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2888 {
2893 }
2895 nIn++;
2896 }
2897 }
2899 // Embed the constructed transaction data in wtxNew.
2902 // Limit size
2904 {
2907 }
2908 }
2911 // Lastly, ensure this tx will pass the mempool's chain limits
2912 LockPoints lp;
2918 size_t nLimitDescendantSize = GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2920 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2923 }
2924 }
2926 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2927 nFeeRet, nBytes, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2929 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2930 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
2932 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
2933 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
2935 }
2937 /**
2938 * Call after CreateTransaction unless you want to abort
2939 */
2940 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
2941 {
2942 {
2945 {
2946 // Take key pair from key pool so it won't be used again
2949 // Add tx to wallet, because if it has change it's also ours,
2950 // otherwise just for transaction history.
2953 // Notify that old coins are spent
2955 {
2959 }
2960 }
2962 // Track how many getdata requests our transaction gets
2966 {
2967 // Broadcast
2969 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
2970 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
2973 }
2974 }
2975 }
2977 }
2979 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
2982 }
2985 {
2989 }
2992 {
2995 }
3002 }
3005 {
3007 }
3009 CAmount CWallet::GetMinimumFee(unsigned int nTxBytes, const CCoinControl& coin_control, const CTxMemPool& pool, const CBlockPolicyEstimator& estimator, FeeCalculation *feeCalc)
3010 {
3011 /* User control of how to calculate fee uses the following parameter precedence:
3012 1. coin_control.m_feerate
3013 2. coin_control.m_confirm_target
3014 3. payTxFee (user-set global variable)
3015 4. nTxConfirmTarget (user-set global variable)
3016 The first parameter that is set is used.
3017 */
3018 CAmount fee_needed;
3022 // Allow to override automatic min/max check over coin control instance
3024 }
3025 else if (!coin_control.m_confirm_target && ::payTxFee != CFeeRate(0)) { // 3. TODO: remove magic value of 0 for global payTxFee
3028 }
3030 // We will use smart fee estimation
3031 unsigned int target = coin_control.m_confirm_target ? *coin_control.m_confirm_target : ::nTxConfirmTarget;
3032 // By default estimates are economical iff we are signaling opt-in-RBF
3034 // Allow to override the default fee estimate mode over the CoinControl instance
3036 else if (coin_control.m_fee_mode == FeeEstimateMode::ECONOMICAL) conservative_estimate = false;
3038 fee_needed = estimator.estimateSmartFee(target, feeCalc, conservative_estimate).GetFee(nTxBytes);
3040 // if we don't have enough data for estimateSmartFee, then use fallbackFee
3043 }
3044 // Obey mempool min fee when using smart fee estimation
3045 CAmount min_mempool_fee = pool.GetMinFee(GetArg("-maxmempool", DEFAULT_MAX_MEMPOOL_SIZE) * 1000000).GetFee(nTxBytes);
3049 }
3050 }
3052 // prevent user from paying a fee below minRelayTxFee or minTxFee
3057 }
3058 // But always obey the maximum
3062 }
3064 }
3070 {
3074 {
3076 {
3080 // Note: can't top-up keypool here, because wallet is locked.
3081 // User will be prompted to unlock wallet the next operation
3082 // that requires a new key.
3083 }
3084 }
3093 }
3096 {
3104 {
3106 {
3109 // Note: can't top-up keypool here, because wallet is locked.
3110 // User will be prompted to unlock wallet the next operation
3111 // that requires a new key.
3112 }
3113 }
3122 }
3125 {
3129 {
3131 {
3135 // Note: can't top-up keypool here, because wallet is locked.
3136 // User will be prompted to unlock wallet the next operation
3137 // that requires a new key.
3138 }
3139 }
3145 }
3148 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3149 {
3151 {
3158 }
3161 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(CBitcoinAddress(address).ToString(), strPurpose))
3164 }
3167 {
3168 {
3171 // Delete destdata tuples associated with address
3174 {
3176 }
3178 }
3180 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3184 }
3187 {
3188 CTxDestination address;
3193 }
3194 }
3195 // A scriptPubKey that doesn't have an entry in the address book is
3196 // associated with the default account ("").
3199 }
3202 {
3207 }
3209 /**
3210 * Mark old keypool keys as used,
3211 * and generate all new keys
3212 */
3214 {
3215 {
3221 }
3226 }
3231 }
3233 }
3235 }
3238 {
3241 }
3244 {
3249 }
3252 // If no metadata exists yet, create a default with the pool key's
3253 // creation time. Note that this may be overwritten by actually
3254 // stored metadata for that key later, which is fine.
3258 }
3261 {
3262 {
3268 // Top up key pool
3272 else
3275 // count amount of available keys (internal, external)
3276 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3277 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3278 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3281 {
3282 // don't create extra internal keys
3284 }
3288 {
3291 }
3293 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3298 }
3304 }
3305 }
3307 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3308 }
3309 }
3311 }
3313 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3314 {
3317 {
3323 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3326 // Get the oldest key
3337 }
3340 }
3343 }
3347 }
3348 }
3351 {
3352 // Remove from key pool
3356 }
3359 {
3360 // Return to key pool
3361 {
3367 }
3368 }
3370 }
3373 {
3374 CKeyPool keypool;
3375 {
3380 {
3385 }
3388 }
3390 }
3392 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3395 }
3397 CKeyPool keypool;
3401 }
3404 }
3407 {
3412 // load oldest key from keypool, get time and return
3416 }
3419 }
3422 {
3425 {
3428 {
3442 {
3443 CTxDestination addr;
3454 }
3455 }
3456 }
3459 }
3462 {
3468 {
3472 {
3474 // group all input addresses with each other
3476 {
3477 CTxDestination address;
3480 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3484 }
3486 // group change with input addresses
3488 {
3491 {
3492 CTxDestination txoutAddr;
3496 }
3497 }
3499 {
3502 }
3503 }
3505 // group lone addrs by themselves
3508 {
3509 CTxDestination address;
3515 }
3516 }
3518 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3519 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3521 {
3522 // make a set of all the groups hit by this new group
3529 // merge all hit groups into a new single group and delete old groups
3532 {
3536 }
3539 // update setmap
3542 }
3546 {
3549 }
3552 }
3555 {
3559 {
3564 }
3566 }
3569 {
3571 {
3572 CKeyPool keypool;
3578 }
3580 }
3584 }
3587 {
3592 }
3595 {
3598 }
3601 }
3603 static void LoadReserveKeysToSet(std::set<CKeyID>& setAddress, const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3605 {
3606 CKeyPool keypool;
3612 }
3613 }
3616 {
3628 }
3629 }
3630 }
3633 {
3635 CPubKey pubkey;
3641 }
3644 {
3647 }
3650 {
3653 }
3656 {
3659 }
3662 {
3667 }
3670 {
3676 }
3677 }
3685 // get birth times for keys with metadata
3689 }
3690 }
3692 // map in which we'll infer heights of other keys
3693 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3700 }
3703 // if there are no such keys, we're done
3707 // find first block that affects those keys, if there are any left
3709 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); it++) {
3710 // iterate over all wallet transactions...
3714 // ... which are already in a block
3717 // iterate over all their outputs
3720 // ... and all their affected keys
3724 }
3726 }
3727 }
3728 }
3730 // Extract block timestamps for those keys
3731 for (std::map<CKeyID, CBlockIndex*>::const_iterator it = mapKeyFirstBlock.begin(); it != mapKeyFirstBlock.end(); it++)
3732 mapKeyBirth[it->first] = it->second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3733 }
3735 /**
3736 * Compute smart timestamp for a transaction being added to the wallet.
3737 *
3738 * Logic:
3739 * - If sending a transaction, assign its timestamp to the current time.
3740 * - If receiving a transaction outside a block, assign its timestamp to the
3741 * current time.
3742 * - If receiving a block with a future timestamp, assign all its (not already
3743 * known) transactions' timestamps to the current time.
3744 * - If receiving a block with a past timestamp, before the most recent known
3745 * transaction (that we care about), assign all its (not already known)
3746 * transactions' timestamps to the same timestamp as that most-recent-known
3747 * transaction.
3748 * - If receiving a block with a past timestamp, but after the most recent known
3749 * transaction, assign all its (not already known) transactions' timestamps to
3750 * the block time.
3751 *
3752 * For more information see CWalletTx::nTimeSmart,
3753 * https://bitcointalk.org/?topic=54527, or
3754 * https://github.com/bitcoin/bitcoin/pull/1393.
3755 */
3757 {
3764 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3771 }
3778 }
3781 }
3786 }
3788 }
3789 }
3794 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3795 }
3796 }
3798 }
3800 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3801 {
3807 }
3810 {
3814 }
3816 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3817 {
3820 }
3822 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3823 {
3826 {
3829 {
3833 }
3834 }
3836 }
3839 {
3846 }
3847 }
3848 }
3850 }
3853 {
3855 strUsage += HelpMessageOpt("-disablewallet", _("Do not load the wallet and disable wallet RPC calls"));
3856 strUsage += HelpMessageOpt("-keypool=<n>", strprintf(_("Set key pool size to <n> (default: %u)"), DEFAULT_KEYPOOL_SIZE));
3857 strUsage += HelpMessageOpt("-fallbackfee=<amt>", strprintf(_("A fee rate (in %s/kB) that will be used when fee estimation has insufficient data (default: %s)"),
3859 strUsage += HelpMessageOpt("-discardfee=<amt>", strprintf(_("The fee rate (in %s/kB) that indicates your tolerance for discarding change by adding it to the fee (default: %s). "
3860 "Note: An output is discarded if it is dust at this rate, but we will always discard up to the dust relay fee and a discard fee above that is limited by the fee estimate for the longest target"),
3862 strUsage += HelpMessageOpt("-mintxfee=<amt>", strprintf(_("Fees (in %s/kB) smaller than this are considered zero fee for transaction creation (default: %s)"),
3864 strUsage += HelpMessageOpt("-paytxfee=<amt>", strprintf(_("Fee (in %s/kB) to add to transactions you send (default: %s)"),
3866 strUsage += HelpMessageOpt("-rescan", _("Rescan the block chain for missing wallet transactions on startup"));
3867 strUsage += HelpMessageOpt("-salvagewallet", _("Attempt to recover private keys from a corrupt wallet on startup"));
3868 strUsage += HelpMessageOpt("-spendzeroconfchange", strprintf(_("Spend unconfirmed change when sending transactions (default: %u)"), DEFAULT_SPEND_ZEROCONF_CHANGE));
3869 strUsage += HelpMessageOpt("-txconfirmtarget=<n>", strprintf(_("If paytxfee is not set, include enough fee so transactions begin confirmation on average within n blocks (default: %u)"), DEFAULT_TX_CONFIRM_TARGET));
3870 strUsage += HelpMessageOpt("-usehd", _("Use hierarchical deterministic key generation (HD) after BIP32. Only has effect during wallet creation/first start") + " " + strprintf(_("(default: %u)"), DEFAULT_USE_HD_WALLET));
3871 strUsage += HelpMessageOpt("-walletrbf", strprintf(_("Send transactions with full-RBF opt-in enabled (default: %u)"), DEFAULT_WALLET_RBF));
3873 strUsage += HelpMessageOpt("-wallet=<file>", _("Specify wallet file (within data directory)") + " " + strprintf(_("(default: %s)"), DEFAULT_WALLET_DAT));
3874 strUsage += HelpMessageOpt("-walletbroadcast", _("Make the wallet broadcast transactions") + " " + strprintf(_("(default: %u)"), DEFAULT_WALLETBROADCAST));
3875 strUsage += HelpMessageOpt("-walletnotify=<cmd>", _("Execute command when a wallet transaction changes (%s in cmd is replaced by TxID)"));
3876 strUsage += HelpMessageOpt("-zapwallettxes=<mode>", _("Delete all wallet transactions and only recover those parts of the blockchain through -rescan on startup") +
3877 " " + _("(1 = keep tx meta data e.g. account owner and payment request information, 2 = drop tx meta data)"));
3880 {
3883 strUsage += HelpMessageOpt("-dblogsize=<n>", strprintf("Flush wallet database activity from memory to disk log every <n> megabytes (default: %u)", DEFAULT_WALLET_DBLOGSIZE));
3884 strUsage += HelpMessageOpt("-flushwallet", strprintf("Run a thread to flush wallet periodically (default: %u)", DEFAULT_FLUSHWALLET));
3885 strUsage += HelpMessageOpt("-privdb", strprintf("Sets the DB_PRIVATE flag in the wallet db environment (default: %u)", DEFAULT_WALLET_PRIVDB));
3886 strUsage += HelpMessageOpt("-walletrejectlongchains", strprintf(_("Wallet will not create transactions that violate mempool chain limits (default: %u)"), DEFAULT_WALLET_REJECT_LONG_CHAINS));
3887 }
3890 }
3893 {
3894 // needed to restore wallet transaction meta data after -zapwallettxes
3906 }
3910 }
3920 {
3924 }
3926 {
3929 walletFile));
3930 }
3932 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3934 }
3936 {
3937 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3939 }
3943 }
3944 }
3947 {
3950 {
3954 }
3955 else
3958 {
3961 }
3963 }
3966 {
3967 // Create new keyUser and set as default key
3970 // ensure this wallet.dat can only be opened by clients supporting HD with chain split
3973 // generate a new master key
3977 }
3978 CPubKey newDefaultKey;
3984 }
3985 }
3988 }
3992 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
3994 }
3996 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
3998 }
3999 }
4007 {
4009 CBlockLocator locator;
4012 }
4014 {
4015 //We can't rescan beyond non-pruned blocks, stop and throw an error
4016 //this might happen if a user uses an old wallet within a pruned node
4017 // or if he ran -disablewallet for a longer time, then decided to re-enable
4019 {
4021 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
4025 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
4027 }
4028 }
4031 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
4033 // No need to read and scan block if block was created before
4034 // our wallet birthday (as adjusted for block time variability)
4035 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
4037 }
4045 // Restore wallet transaction metadata after -zapwallettxes=1
4047 {
4051 {
4055 {
4066 }
4067 }
4068 }
4069 }
4070 walletInstance->SetBroadcastTransactions(GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4072 {
4077 }
4080 }
4083 {
4087 }
4093 }
4095 }
4098 }
4103 {
4104 // Add wallet transactions that aren't already in a block to mempool
4105 // Do this here as mempool requires genesis block to be loaded
4108 // Run a thread to flush wallet periodically
4111 }
4112 }
4115 {
4122 if (GetBoolArg("-blocksonly", DEFAULT_BLOCKSONLY) && SoftSetBoolArg("-walletbroadcast", false)) {
4123 LogPrintf("%s: parameter interaction: -blocksonly=1 -> setting -walletbroadcast=0\n", __func__);
4124 }
4129 }
4130 // Rewrite just private keys: rescan to find transactions
4133 }
4134 }
4137 // -zapwallettxes implies dropping the mempool on startup
4139 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -persistmempool=0\n", __func__, zapwallettxes);
4140 }
4142 // -zapwallettxes implies a rescan
4146 }
4148 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -rescan=1\n", __func__, zapwallettxes);
4149 }
4150 }
4155 }
4156 }
4161 return InitError(_("Rescans are not possible in pruned mode. You will need to use -reindex which will download the whole blockchain again."));
4168 {
4176 }
4178 {
4181 return InitError(strprintf(_("Invalid amount for -fallbackfee=<amount>: '%s'"), GetArg("-fallbackfee", "")));
4186 }
4188 {
4191 return InitError(strprintf(_("Invalid amount for -discardfee=<amount>: '%s'"), GetArg("-discardfee", "")));
4194 _("This is the transaction fee you may discard if change is smaller than dust at this level"));
4196 }
4198 {
4208 {
4209 return InitError(strprintf(_("Invalid amount for -paytxfee=<amount>: '%s' (must be at least %s)"),
4211 }
4212 }
4214 {
4219 InitWarning(_("-maxtxfee is set very high! Fees this large could be paid on a single transaction."));
4222 {
4223 return InitError(strprintf(_("Invalid amount for -maxtxfee=<amount>: '%s' (must be at least the minrelay fee of %s to prevent stuck transactions)"),
4225 }
4226 }
4232 }
4235 {
4237 }
4240 {
4243 }
4246 {
4250 }
4253 {
4256 }
4259 {
4260 // Update the tx's hashBlock
4263 // set the position of the transaction in the block
4265 }
4268 {
4274 // Find the block it claims to be in
4284 }
4287 {
4291 }
4295 {
4297 }