| blob | 3f1de5714caf4dd25ef3318f7064c46a8f629cd4 |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
34 #include <assert.h>
36 #include <boost/algorithm/string/replace.hpp>
37 #include <boost/thread.hpp>
40 /** Transaction fee set by the user */
49 /**
50 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
51 * Override with -mintxfee
52 */
54 /**
55 * If fee estimation does not have enough data to provide estimates, use this fee instead.
56 * Has no effect if not using fee estimation
57 * Override with -fallbackfee
58 */
63 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
65 /** @defgroup mapWallet
66 *
67 * @{
68 */
70 struct CompareValueOnly
71 {
74 {
76 }
77 };
80 {
81 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
82 }
90 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
93 txnouttype type;
99 }
100 }
105 }
108 CScript script;
111 }
114 };
117 {
123 }
126 {
128 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
130 CKey secret;
132 // Create new metadata
136 // use HD key derivation if HD was enabled during wallet creation
138 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
141 }
143 // Compressed public keys were introduced in version 0.6.0
146 }
156 }
158 }
160 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
161 {
162 // for now we use a fixed keypath scheme of m/0'/0'/k
169 // try to get the master key
175 // derive m/0'
176 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
179 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
183 // derive child key at next index, skip keys already known to the wallet
185 // always derive hardened keys
186 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
187 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
192 }
197 }
201 // update the chain model in the database
204 }
206 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
207 {
210 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
211 // which is overridden below. To avoid flushes, the database handle is
212 // tunneled through to it.
216 }
220 }
223 // check if we need to remove from watch-only
224 CScript script;
228 }
232 }
238 }
240 }
243 {
246 }
250 {
253 {
257 vchCryptedSecret,
259 else
261 vchCryptedSecret,
263 }
264 }
267 {
272 }
274 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
275 {
277 }
279 /**
280 * Update wallet first key creation time. This should be called whenever keys
281 * are added to the wallet, with the oldest key creation time.
282 */
284 {
287 // Cannot determine birthday information, so set the wallet birthday to
288 // the beginning of time.
292 }
293 }
296 {
300 }
303 {
304 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
305 * that never can be redeemed. However, old wallets may still contain
306 * these. Do not add them to the wallet and warn. */
308 {
310 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
313 }
316 }
319 {
326 }
329 {
332 }
335 {
345 }
348 {
350 }
353 {
354 CCrypter crypter;
355 CKeyingMaterial _vMasterKey;
357 {
360 {
361 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
367 }
368 }
370 }
372 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
373 {
376 {
380 CCrypter crypter;
381 CKeyingMaterial _vMasterKey;
383 {
384 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
389 {
391 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
392 pMasterKey.second.nDeriveIterations = pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime)));
395 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
396 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
401 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
403 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
411 }
412 }
413 }
416 }
419 {
422 }
424 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
425 {
430 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
439 {
445 }
448 }
451 {
453 // cannot downgrade below current version
460 }
463 {
475 {
481 }
483 }
486 {
490 }
493 {
495 }
498 {
504 // Keep track of each wallet absolute path to detect duplicates.
509 return InitError(strprintf(_("Error loading wallet %s. -wallet parameter must only specify a filename (not a path)."), walletFile));
510 }
513 return InitError(strprintf(_("Error loading wallet %s. Invalid characters in -wallet filename."), walletFile));
514 }
518 if (fs::exists(wallet_path) && (!fs::is_regular_file(wallet_path) || fs::is_symlink(wallet_path))) {
519 return InitError(strprintf(_("Error loading wallet %s. -wallet filename must be a regular file."), walletFile));
520 }
523 return InitError(strprintf(_("Error loading wallet %s. Duplicate -wallet filename specified."), walletFile));
524 }
529 }
532 // Recover readable keypairs:
533 CWallet dummyWallet;
535 if (!CWalletDB::Recover(walletFile, (void *)&dummyWallet, CWalletDB::RecoverKeysOnlyFilter, backup_filename)) {
537 }
538 }
541 bool dbV = CWalletDB::VerifyDatabaseFile(walletFile, GetDataDir().string(), strWarning, strError);
544 }
548 }
549 }
552 }
555 {
556 // We want all the wallet transactions in range to have the same metadata as
557 // the oldest (smallest nOrderPos).
558 // So: find smallest nOrderPos:
563 {
567 {
570 }
571 }
572 // Now copy data from copyFrom to rest:
574 {
581 // fTimeReceivedIsTxTime not copied on purpose
582 // nTimeReceived not copied on purpose
586 // nOrderPos not copied on purpose
587 // cached members not copied on purpose
588 }
589 }
591 /**
592 * Outpoint is spent if any non-conflicted transaction
593 * spends it:
594 */
596 {
602 {
609 }
610 }
612 }
615 {
621 }
625 {
633 }
636 {
640 CKeyingMaterial _vMasterKey;
645 CMasterKey kMasterKey;
650 CCrypter crypter;
652 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
656 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
657 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime))) / 2;
664 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
669 {
678 }
682 {
685 // We now probably have half of our keys encrypted in memory, and half not...
686 // die and let the user reload the unencrypted wallet.
688 }
690 // Encryption was introduced in version 0.4.0
695 // We now have keys encrypted in memory, but not on disk...
696 // die to avoid confusion and let the user reload the unencrypted wallet.
698 }
706 // if we are using HD, replace the HD master key (seed) with a new one
710 }
711 }
716 // Need to completely rewrite the wallet file; if we don't, bdb might keep
717 // bits of the unencrypted private key in slack space in the database file.
720 }
724 }
727 {
731 // Old wallets didn't have any defined order for transactions
732 // Probably a bad idea to change the output of this
734 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
737 TxItems txByTime;
739 for (std::map<uint256, CWalletTx>::iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
740 {
743 }
747 {
749 }
754 {
760 {
765 {
768 }
769 else
772 }
773 else
774 {
777 {
780 }
787 // Since we're changing the order, write it back
789 {
792 }
793 else
796 }
797 }
801 }
804 {
811 }
813 }
815 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
816 {
823 // Debit
824 CAccountingEntry debit;
833 // Credit
834 CAccountingEntry credit;
847 }
850 {
853 CAccount account;
860 // Check if the current key has been used
869 }
870 }
871 }
873 // Generate a new key
880 }
885 }
888 {
889 {
893 }
894 }
897 {
902 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
907 // Ensure for now that we're not overwriting data
918 }
923 }
926 {
933 // Inserts only if not already there, returns tx inserted or tx found
934 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
939 {
945 }
949 {
950 // Merge
952 {
955 }
956 // If no longer abandoned, update
958 {
961 }
963 {
966 }
968 {
971 }
972 }
974 //// debug print
975 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
977 // Write to disk
982 // Break debit/credit balance caches:
985 // Notify UI of new or updated transaction
988 // notify an external script when a wallet transaction comes in or is updated
992 {
995 }
998 }
1001 {
1014 }
1015 }
1016 }
1019 }
1021 /**
1022 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1023 * be set when the transaction was known to be included in a block. When
1024 * pIndex == nullptr, then wallet state is not updated in AddToWallet, but
1025 * notifications happen and cached balances are marked dirty.
1026 *
1027 * If fUpdate is true, existing transactions will be updated.
1028 * TODO: One exception to this is that the abandoned state is cleared under the
1029 * assumption that any further notification of a transaction that was considered
1030 * abandoned is an indication that it is not safe to be considered abandoned.
1031 * Abandoned state should probably be more carefully tracked via different
1032 * posInBlock signals or by checking mempool presence when necessary.
1033 */
1034 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1035 {
1037 {
1042 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1045 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1047 }
1049 }
1050 }
1051 }
1056 {
1057 /* Check if any keys in the wallet keypool that were supposed to be unused
1058 * have appeared in a new transaction. If so, remove those keys from the keypool.
1059 * This can happen when restoring an old wallet backup that does not contain
1060 * the mostly recently created transactions from newer versions of the wallet.
1061 */
1063 // loop though all outputs
1065 // extract addresses and check if they match with an unused keypool key
1071 LogPrintf("%s: Detected a used keypool key, mark all keypool key up to this key as used\n", __func__);
1076 }
1077 }
1078 }
1079 }
1083 // Get merkle branch if transaction was found in a block
1088 }
1089 }
1091 }
1094 {
1098 }
1101 {
1109 // Can't mark abandoned if confirmed or in mempool
1114 }
1125 // If the orig tx was not in block, none of its spends can be
1127 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1129 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1136 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1141 }
1142 iter++;
1143 }
1144 // If a transaction changes 'conflicted' state, that changes the balance
1145 // available of the outputs it spends. So force those to be recomputed
1147 {
1150 }
1151 }
1152 }
1155 }
1158 {
1166 }
1167 }
1168 // If number of conflict confirms cannot be determined, this means
1169 // that the block is still unknown or not yet part of the main chain,
1170 // for example when loading the wallet during a reindex. Do nothing in that
1171 // case.
1175 // Do not flush the wallet here for performance reasons
1191 // Block is 'more conflicted' than current confirm; update.
1192 // Mark transaction as conflicted with this block.
1197 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1202 }
1203 iter++;
1204 }
1205 // If a transaction changes 'conflicted' state, that changes the balance
1206 // available of the outputs it spends. So force those to be recomputed
1208 {
1211 }
1212 }
1213 }
1214 }
1216 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1222 // If a transaction changes 'conflicted' state, that changes the balance
1223 // available of the outputs it spends. So force those to be
1224 // recomputed, also:
1226 {
1229 }
1230 }
1235 }
1237 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1239 // TODO: Temporarily ensure that mempool removals are notified before
1240 // connected transactions. This shouldn't matter, but the abandoned
1241 // state of transactions in our wallet is currently cleared when we
1242 // receive another notification and there is a race condition where
1243 // notification of a connected conflict might cause an outside process
1244 // to abandon a transaction and then have it inadvertently cleared by
1245 // the notification that the conflicted transaction was evicted.
1249 }
1252 }
1253 }
1260 }
1261 }
1266 {
1267 {
1271 {
1275 }
1276 }
1278 }
1280 // Note that this function doesn't distinguish between a 0-valued input,
1281 // and a not-"is mine" (according to the filter) input.
1283 {
1284 {
1288 {
1293 }
1294 }
1296 }
1299 {
1301 }
1304 {
1308 }
1311 {
1312 // TODO: fix handling of 'change' outputs. The assumption is that any
1313 // payment to a script that is ours, but is not in the address book
1314 // is change. That assumption is likely to break when we implement multisignature
1315 // wallets that return change back into a multi-signature-protected address;
1316 // a better way of identifying which outputs are 'the send' and which are
1317 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1318 // which output, if any, was change).
1320 {
1321 CTxDestination address;
1328 }
1330 }
1333 {
1337 }
1340 {
1345 }
1348 {
1350 }
1353 {
1356 {
1360 }
1362 }
1365 {
1369 {
1381 }
1383 }
1386 {
1389 {
1393 }
1395 }
1398 {
1401 {
1405 }
1407 }
1410 {
1411 CKey key;
1417 // calculate the pubkey
1421 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1425 {
1428 // mem store the metadata
1431 // write the key&metadata to the database
1434 }
1437 }
1440 {
1442 // store the keyid (hash160) together with
1443 // the child index counter in the database
1444 // as a hdchain object
1445 CHDChain newHdChain;
1446 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1451 }
1454 {
1461 }
1464 {
1466 }
1469 {
1472 }
1475 {
1476 // Returns -1 if it wasn't being tracked
1478 {
1481 {
1482 // Generated block
1484 {
1488 }
1489 }
1490 else
1491 {
1492 // Did anyone request this transaction?
1495 {
1498 // How about the block it's in?
1500 {
1504 else
1506 }
1507 }
1508 }
1509 }
1511 }
1514 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1515 {
1521 // Compute fee:
1524 {
1527 }
1529 // Sent/received.
1531 {
1534 // Only need to handle txouts if AT LEAST one of these is true:
1535 // 1) they debit from us (sent)
1536 // 2) the output is to us (received)
1538 {
1539 // Don't report 'change' txouts
1542 }
1546 // In either case, we need to get the destination address
1547 CTxDestination address;
1550 {
1554 }
1558 // If we are debited by the transaction, add the output as a "sent" entry
1562 // If we are receiving the output, add it as a "received" entry
1565 }
1567 }
1569 /**
1570 * Scan active chain for relevant transactions after importing keys. This should
1571 * be called whenever new keys are added to the wallet, with the oldest key
1572 * creation time.
1573 *
1574 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1575 * returned will be higher than startTime if relevant blocks could not be read.
1576 */
1578 {
1582 // Find starting block. May be null if nCreateTime is greater than the
1583 // highest blockchain timestamp, in which case there is nothing that needs
1584 // to be scanned.
1586 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1592 }
1593 }
1595 }
1597 /**
1598 * Scan the block chain (starting in pindexStart) for transactions
1599 * from or to us. If fUpdate is true, found transactions that already
1600 * exist in the wallet will be updated.
1601 *
1602 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1603 * possible (due to pruning or corruption), returns pointer to the most recent
1604 * block that could not be scanned.
1605 */
1607 {
1613 {
1618 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1622 {
1624 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1627 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1628 }
1630 CBlock block;
1634 }
1637 }
1639 }
1641 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1642 }
1646 }
1648 }
1651 {
1652 // If transactions aren't being broadcasted, don't let them into local mempool either
1658 // Sort pending wallet transactions based on their initial wallet insertion order
1660 {
1669 }
1670 }
1672 // Try to add wallet transactions to memory pool
1674 {
1678 CValidationState state;
1680 }
1681 }
1684 {
1687 {
1688 CValidationState state;
1689 /* GetDepthInMainChain already catches known conflicts. */
1695 {
1697 });
1699 }
1700 }
1701 }
1703 }
1706 {
1709 {
1713 }
1715 }
1718 {
1724 {
1727 else
1728 {
1732 }
1733 }
1735 {
1738 else
1739 {
1743 }
1744 }
1746 }
1749 {
1750 // Must wait until coinbase is safely deep enough in the chain before valuing it
1756 {
1757 // GetBalance can assume transactions in mapWallet won't change
1760 else
1761 {
1765 }
1766 }
1768 {
1771 else
1772 {
1776 }
1777 }
1779 }
1782 {
1784 {
1790 }
1793 }
1796 {
1800 // Must wait until coinbase is safely deep enough in the chain before valuing it
1810 {
1812 {
1817 }
1818 }
1823 }
1826 {
1828 {
1834 }
1837 }
1840 {
1844 // Must wait until coinbase is safely deep enough in the chain before valuing it
1853 {
1855 {
1860 }
1861 }
1866 }
1869 {
1875 }
1878 {
1881 }
1884 {
1885 // Quick answer in most cases
1896 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1900 // Trusted if all inputs are from us and are in the mempool:
1902 {
1903 // Transactions not sent by us: not trusted
1910 }
1912 }
1915 {
1921 }
1924 {
1929 // Sort them in chronological order
1932 {
1934 // Don't rebroadcast if newer than nTime:
1938 }
1940 {
1944 }
1946 }
1949 {
1950 // Do this infrequently and randomly to avoid giving away
1951 // that these are our transactions.
1959 // Only do it if there's been a new block since last time
1964 // Rebroadcast unconfirmed txes older than 5 minutes before the last
1965 // block was found:
1969 }
1976 /** @defgroup Actions
1977 *
1978 * @{
1979 */
1983 {
1985 {
1987 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
1988 {
1992 }
1993 }
1996 }
1999 {
2001 {
2003 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2004 {
2008 }
2009 }
2011 }
2014 {
2016 {
2018 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2019 {
2022 }
2023 }
2025 }
2028 {
2030 {
2032 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2033 {
2037 }
2038 }
2041 }
2044 {
2046 {
2048 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2049 {
2053 }
2054 }
2056 }
2059 {
2061 {
2063 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2064 {
2067 }
2068 }
2070 }
2072 // Calculate total balance in a different way from GetBalance. The biggest
2073 // difference is that GetBalance sums up all unspent TxOuts paying to the
2074 // wallet, while this sums up both spent and unspent TxOuts paying to the
2075 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2076 // also has fewer restrictions on which unconfirmed transactions are considered
2077 // trusted.
2078 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2079 {
2088 }
2090 // Loop through tx outputs and add incoming payments. For outgoing txs,
2091 // treat change outputs specially, as part of the amount debited.
2097 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2099 }
2100 }
2102 // For outgoing txs, subtract amount debited.
2105 }
2106 }
2110 }
2113 }
2116 {
2125 }
2126 }
2128 }
2130 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2131 {
2134 {
2139 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); ++it)
2140 {
2154 // We should not consider coins which aren't at least in our mempool
2155 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2161 // We should not consider coins from transactions that are replacing
2162 // other transactions.
2163 //
2164 // Example: There is a transaction A which is replaced by bumpfee
2165 // transaction B. In this case, we want to prevent creation of
2166 // a transaction B' which spends an output of B.
2167 //
2168 // Reason: If transaction A were initially confirmed, transactions B
2169 // and B' would no longer be valid, so the user would have to create
2170 // a new transaction C to replace B'. However, in the case of a
2171 // one-block reorg, transactions B' and C might BOTH be accepted,
2172 // when the user only wanted one of them. Specifically, there could
2173 // be a 1-block reorg away from the chain where transactions A and C
2174 // were accepted to another chain where B, B', and C were all
2175 // accepted.
2178 }
2180 // Similarly, we should not consider coins from transactions that
2181 // have been replaced. In the example above, we would want to prevent
2182 // creation of a transaction A' spending an output of A, because if
2183 // transaction B were initially confirmed, conflicting with A and
2184 // A', we wouldn't want to the user to create a transaction D
2185 // intending to replace A', but potentially resulting in a scenario
2186 // where A, A', and D could all be accepted (instead of just B and
2187 // D, or just A and A' like the user would want).
2190 }
2194 }
2203 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint((*it).first, i)))
2216 }
2218 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2223 // Checks the sum amount of all UTXO's.
2229 }
2230 }
2232 // Checks the maximum number of UTXO's.
2235 }
2236 }
2237 }
2238 }
2239 }
2242 {
2243 // TODO: Add AssertLockHeld(cs_wallet) here.
2244 //
2245 // Because the return value from this function contains pointers to
2246 // CWalletTx objects, callers to this function really should acquire the
2247 // cs_wallet lock before calling it. However, the current caller doesn't
2248 // acquire this lock yet. There was an attempt to add the missing lock in
2249 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2250 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2251 // avoid adding some extra complexity to the Qt code.
2260 CTxDestination address;
2264 }
2265 }
2275 CTxDestination address;
2276 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2279 }
2280 }
2281 }
2282 }
2285 }
2288 {
2297 }
2300 }
2302 }
2304 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2306 {
2312 FastRandomContext insecure_rand;
2315 {
2320 {
2322 {
2323 //The solver here uses a randomized algorithm,
2324 //the randomness serves no real security purpose but is just
2325 //needed to prevent degenerate behavior and it is important
2326 //that the rng is fast. We do not use a constant random sequence,
2327 //because there may be some privacy improvement by making
2328 //the selection random.
2330 {
2334 {
2337 {
2340 }
2343 }
2344 }
2345 }
2346 }
2347 }
2348 }
2350 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2352 {
2356 // List of values less than target
2364 {
2381 {
2385 }
2387 {
2390 }
2392 {
2394 }
2395 }
2398 {
2400 {
2403 }
2405 }
2408 {
2414 }
2416 // Solve subset sum by stochastic approximation
2420 CAmount nBest;
2426 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2427 // or the next bigger coin is closer), return the bigger coin
2429 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2430 {
2433 }
2437 {
2440 }
2447 }
2448 }
2450 }
2451 }
2454 }
2456 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2457 {
2460 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2462 {
2464 {
2469 }
2471 }
2473 // calculate value from preset inputs and store them
2481 {
2484 {
2486 // Clearly invalid input, fail
2493 }
2495 // remove preset inputs from vCoins
2496 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2497 {
2500 else
2502 }
2504 size_t nMaxChainLength = std::min(gArgs.GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), gArgs.GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2505 bool fRejectLongChains = gArgs.GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2508 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2509 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2510 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2511 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2512 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2513 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2514 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2516 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2519 // add preset inputs to the total value selected
2523 }
2526 {
2529 // sign the new tx
2536 }
2539 SignatureData sigdata;
2540 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2542 }
2544 nIn++;
2545 }
2547 }
2549 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2550 {
2553 // Turn the txout set into a CRecipient vector
2555 {
2557 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2559 }
2567 CWalletTx wtx;
2568 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2570 }
2574 // we dont have the normal Create/Commit cycle, and dont want to risk reusing change,
2575 // so just remove the key from the keypool here.
2577 }
2579 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2583 // Add new txins (keeping original txin scriptSig/order)
2585 {
2587 {
2591 {
2594 }
2595 }
2596 }
2600 }
2603 {
2604 unsigned int highest_target = estimator.HighestTargetTracked(FeeEstimateHorizon::LONG_HALFLIFE);
2605 CFeeRate discard_rate = estimator.estimateSmartFee(highest_target, nullptr /* FeeCalculation */, false /* conservative */);
2606 // Don't let discard_rate be greater than longest possible fee estimate if we get a valid fee estimate
2607 discard_rate = (discard_rate == CFeeRate(0)) ? CWallet::m_discard_rate : std::min(discard_rate, CWallet::m_discard_rate);
2608 // Discard rate must be at least dustRelayFee
2611 }
2613 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2615 {
2620 {
2622 {
2625 }
2629 nSubtractFeeFromAmount++;
2630 }
2632 {
2635 }
2639 CMutableTransaction txNew;
2641 // Discourage fee sniping.
2642 //
2643 // For a large miner the value of the transactions in the best block and
2644 // the mempool can exceed the cost of deliberately attempting to mine two
2645 // blocks to orphan the current best block. By setting nLockTime such that
2646 // only the next block can include the transaction, we discourage this
2647 // practice as the height restricted and limited blocksize gives miners
2648 // considering fee sniping fewer options for pulling off this attack.
2649 //
2650 // A simple way to think about this is from the wallet's point of view we
2651 // always want the blockchain to move forward. By setting nLockTime this
2652 // way we're basically making the statement that we only want this
2653 // transaction to appear in the next block; we don't want to potentially
2654 // encourage reorgs by allowing transactions to appear at lower heights
2655 // than the next block in forks of the best chain.
2656 //
2657 // Of course, the subsidy is high enough, and transaction volume low
2658 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2659 // now we ensure code won't be written that makes assumptions about
2660 // nLockTime that preclude a fix later.
2663 // Secondly occasionally randomly pick a nLockTime even further back, so
2664 // that transactions that are delayed after signing for whatever reason,
2665 // e.g. high-latency mix networks and some CoinJoin implementations, have
2666 // better privacy.
2672 FeeCalculation feeCalc;
2674 {
2677 {
2681 // Create change script that will be used if we need change
2682 // TODO: pass in scriptChange instead of reservekey so
2683 // change transaction isn't always pay-to-bitcoin-address
2684 CScript scriptChange;
2686 // coin control: send change to custom address
2690 // Note: We use a new key here to keep it from being obvious which side is the change.
2691 // The drawback is that by not reusing a previous key, the change may be lost if a
2692 // backup is restored, if the backup doesn't have the new private key for the change.
2693 // If we reused the old key, it would be possible to add code to look for and
2694 // rediscover unknown transactions that were written with keys of ours to recover
2695 // post-backup change.
2697 // Reserve a new key pair from key pool
2698 CPubKey vchPubKey;
2702 {
2705 }
2708 }
2716 // Start with no fee and loop until there is enough fee
2718 {
2728 // vouts to the payees
2730 {
2734 {
2735 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2738 {
2741 }
2742 }
2745 {
2747 {
2750 else
2751 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2752 }
2753 else
2756 }
2758 }
2760 // Choose coins to use
2765 {
2768 }
2769 }
2774 {
2775 // Fill a vout to ourself
2778 // Never create dust outputs; if we would, just
2779 // add the dust to the fee.
2781 {
2784 }
2785 else
2786 {
2788 {
2789 // Insert change txn at random position:
2791 }
2793 {
2796 }
2800 }
2803 }
2805 // Fill vin
2806 //
2807 // Note how the sequence number is set to non-maxint so that
2808 // the nLockTime set above actually works.
2809 //
2810 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2811 // we use the highest possible value in that range (maxint-2)
2812 // to avoid conflicting with other possible uses of nSequence,
2813 // and in the spirit of "smallest possible change from prior
2814 // behavior."
2815 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2818 nSequence));
2820 // Fill in dummy signatures for fee calculation.
2824 }
2828 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2832 }
2836 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2837 // because we must be at the maximum allowed fee.
2839 {
2842 }
2845 // Reduce fee to only the needed amount if possible. This
2846 // prevents potential overpayment in fees if the coins
2847 // selected to meet nFeeNeeded result in a transaction that
2848 // requires less fee than the prior iteration.
2850 // If we have no change and a big enough excess fee, then
2851 // try to construct transaction again only without picking
2852 // new inputs. We now know we only need the smaller fee
2853 // (because of reduced tx size) and so we should add a
2854 // change output. Only try this once.
2855 CAmount fee_needed_for_change = GetMinimumFee(change_prototype_size, coin_control, ::mempool, ::feeEstimator, nullptr);
2858 if (nFeeRet > nFeeNeeded + max_excess_fee && nChangePosInOut == -1 && nSubtractFeeFromAmount == 0 && pick_new_inputs) {
2862 }
2864 // If we have change output already, just increase it
2870 }
2872 }
2874 // This shouldn't happen, we should have had enough excess
2875 // fee to pay for the new output and still meet nFeeNeeded
2876 // Or we should have just subtracted fee from recipients and
2877 // nFeeNeeded should not have changed
2880 }
2882 // Try to reduce change to include necessary fee
2886 // Only reduce change if remaining amount is still a large enough output.
2891 }
2892 }
2894 // If subtracting fee from recipients, we now know what fee we
2895 // need to subtract, we have no reason to reselect inputs
2898 }
2900 // Include more fee and try again.
2903 }
2904 }
2906 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2909 {
2913 {
2915 SignatureData sigdata;
2917 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2918 {
2923 }
2925 nIn++;
2926 }
2927 }
2929 // Embed the constructed transaction data in wtxNew.
2932 // Limit size
2934 {
2937 }
2938 }
2941 // Lastly, ensure this tx will pass the mempool's chain limits
2942 LockPoints lp;
2946 size_t nLimitAncestorSize = gArgs.GetArg("-limitancestorsize", DEFAULT_ANCESTOR_SIZE_LIMIT)*1000;
2948 size_t nLimitDescendantSize = gArgs.GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2950 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2953 }
2954 }
2956 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2957 nFeeRet, nBytes, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2959 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2960 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
2962 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
2963 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
2965 }
2967 /**
2968 * Call after CreateTransaction unless you want to abort
2969 */
2970 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
2971 {
2972 {
2975 {
2976 // Take key pair from key pool so it won't be used again
2979 // Add tx to wallet, because if it has change it's also ours,
2980 // otherwise just for transaction history.
2983 // Notify that old coins are spent
2985 {
2989 }
2990 }
2992 // Track how many getdata requests our transaction gets
2996 {
2997 // Broadcast
2999 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
3000 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
3003 }
3004 }
3005 }
3007 }
3009 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
3012 }
3015 {
3019 }
3022 {
3025 }
3032 }
3035 {
3037 }
3039 CAmount CWallet::GetMinimumFee(unsigned int nTxBytes, const CCoinControl& coin_control, const CTxMemPool& pool, const CBlockPolicyEstimator& estimator, FeeCalculation *feeCalc)
3040 {
3041 /* User control of how to calculate fee uses the following parameter precedence:
3042 1. coin_control.m_feerate
3043 2. coin_control.m_confirm_target
3044 3. payTxFee (user-set global variable)
3045 4. nTxConfirmTarget (user-set global variable)
3046 The first parameter that is set is used.
3047 */
3048 CAmount fee_needed;
3052 // Allow to override automatic min/max check over coin control instance
3054 }
3055 else if (!coin_control.m_confirm_target && ::payTxFee != CFeeRate(0)) { // 3. TODO: remove magic value of 0 for global payTxFee
3058 }
3060 // We will use smart fee estimation
3061 unsigned int target = coin_control.m_confirm_target ? *coin_control.m_confirm_target : ::nTxConfirmTarget;
3062 // By default estimates are economical iff we are signaling opt-in-RBF
3064 // Allow to override the default fee estimate mode over the CoinControl instance
3066 else if (coin_control.m_fee_mode == FeeEstimateMode::ECONOMICAL) conservative_estimate = false;
3068 fee_needed = estimator.estimateSmartFee(target, feeCalc, conservative_estimate).GetFee(nTxBytes);
3070 // if we don't have enough data for estimateSmartFee, then use fallbackFee
3073 }
3074 // Obey mempool min fee when using smart fee estimation
3075 CAmount min_mempool_fee = pool.GetMinFee(gArgs.GetArg("-maxmempool", DEFAULT_MAX_MEMPOOL_SIZE) * 1000000).GetFee(nTxBytes);
3079 }
3080 }
3082 // prevent user from paying a fee below minRelayTxFee or minTxFee
3087 }
3088 // But always obey the maximum
3092 }
3094 }
3100 {
3104 {
3106 {
3111 // Note: can't top-up keypool here, because wallet is locked.
3112 // User will be prompted to unlock wallet the next operation
3113 // that requires a new key.
3114 }
3115 }
3124 }
3127 {
3135 {
3137 {
3141 // Note: can't top-up keypool here, because wallet is locked.
3142 // User will be prompted to unlock wallet the next operation
3143 // that requires a new key.
3144 }
3145 }
3154 }
3157 {
3161 {
3163 {
3168 // Note: can't top-up keypool here, because wallet is locked.
3169 // User will be prompted to unlock wallet the next operation
3170 // that requires a new key.
3171 }
3172 }
3178 }
3181 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3182 {
3184 {
3191 }
3194 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(CBitcoinAddress(address).ToString(), strPurpose))
3197 }
3200 {
3201 {
3204 // Delete destdata tuples associated with address
3207 {
3209 }
3211 }
3213 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3217 }
3220 {
3221 CTxDestination address;
3226 }
3227 }
3228 // A scriptPubKey that doesn't have an entry in the address book is
3229 // associated with the default account ("").
3232 }
3235 {
3240 }
3242 /**
3243 * Mark old keypool keys as used,
3244 * and generate all new keys
3245 */
3247 {
3248 {
3254 }
3259 }
3266 }
3268 }
3270 }
3273 {
3276 }
3279 {
3285 }
3289 // If no metadata exists yet, create a default with the pool key's
3290 // creation time. Note that this may be overwritten by actually
3291 // stored metadata for that key later, which is fine.
3295 }
3298 {
3299 {
3305 // Top up key pool
3309 else
3312 // count amount of available keys (internal, external)
3313 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3314 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3315 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3318 {
3319 // don't create extra internal keys
3321 }
3325 {
3328 }
3330 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3336 }
3342 }
3344 }
3346 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3347 }
3348 }
3350 }
3352 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3353 {
3356 {
3362 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3365 // Get the oldest key
3376 }
3379 }
3382 }
3387 }
3388 }
3391 {
3392 // Remove from key pool
3396 }
3399 {
3400 // Return to key pool
3401 {
3407 }
3409 }
3411 }
3414 {
3415 CKeyPool keypool;
3416 {
3421 {
3426 }
3429 }
3431 }
3433 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3436 }
3438 CKeyPool keypool;
3442 }
3445 }
3448 {
3453 // load oldest key from keypool, get time and return
3457 }
3460 }
3463 {
3466 {
3469 {
3483 {
3484 CTxDestination addr;
3495 }
3496 }
3497 }
3500 }
3503 {
3509 {
3513 {
3515 // group all input addresses with each other
3517 {
3518 CTxDestination address;
3521 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3525 }
3527 // group change with input addresses
3529 {
3532 {
3533 CTxDestination txoutAddr;
3537 }
3538 }
3540 {
3543 }
3544 }
3546 // group lone addrs by themselves
3549 {
3550 CTxDestination address;
3556 }
3557 }
3559 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3560 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3562 {
3563 // make a set of all the groups hit by this new group
3570 // merge all hit groups into a new single group and delete old groups
3573 {
3577 }
3580 // update setmap
3583 }
3587 {
3590 }
3593 }
3596 {
3600 {
3605 }
3607 }
3610 {
3612 {
3613 CKeyPool keypool;
3619 }
3621 }
3625 }
3628 {
3633 }
3636 {
3639 }
3642 }
3645 {
3657 CKeyPool keypool;
3660 }
3663 }
3664 }
3667 {
3668 return setExternalKeyPool.size() >= min_keys && (setInternalKeyPool.size() >= min_keys || !CanSupportFeature(FEATURE_HD_SPLIT));
3669 }
3672 {
3674 CPubKey pubkey;
3680 }
3683 {
3686 }
3689 {
3692 }
3695 {
3698 }
3701 {
3706 }
3709 {
3715 }
3716 }
3724 // get birth times for keys with metadata
3728 }
3729 }
3731 // map in which we'll infer heights of other keys
3732 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3739 }
3742 // if there are no such keys, we're done
3746 // find first block that affects those keys, if there are any left
3748 for (std::map<uint256, CWalletTx>::const_iterator it = mapWallet.begin(); it != mapWallet.end(); it++) {
3749 // iterate over all wallet transactions...
3753 // ... which are already in a block
3756 // iterate over all their outputs
3759 // ... and all their affected keys
3763 }
3765 }
3766 }
3767 }
3769 // Extract block timestamps for those keys
3770 for (std::map<CKeyID, CBlockIndex*>::const_iterator it = mapKeyFirstBlock.begin(); it != mapKeyFirstBlock.end(); it++)
3771 mapKeyBirth[it->first] = it->second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3772 }
3774 /**
3775 * Compute smart timestamp for a transaction being added to the wallet.
3776 *
3777 * Logic:
3778 * - If sending a transaction, assign its timestamp to the current time.
3779 * - If receiving a transaction outside a block, assign its timestamp to the
3780 * current time.
3781 * - If receiving a block with a future timestamp, assign all its (not already
3782 * known) transactions' timestamps to the current time.
3783 * - If receiving a block with a past timestamp, before the most recent known
3784 * transaction (that we care about), assign all its (not already known)
3785 * transactions' timestamps to the same timestamp as that most-recent-known
3786 * transaction.
3787 * - If receiving a block with a past timestamp, but after the most recent known
3788 * transaction, assign all its (not already known) transactions' timestamps to
3789 * the block time.
3790 *
3791 * For more information see CWalletTx::nTimeSmart,
3792 * https://bitcointalk.org/?topic=54527, or
3793 * https://github.com/bitcoin/bitcoin/pull/1393.
3794 */
3796 {
3803 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3810 }
3817 }
3820 }
3825 }
3827 }
3828 }
3833 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3834 }
3835 }
3837 }
3839 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3840 {
3846 }
3849 {
3853 }
3855 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3856 {
3859 }
3861 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3862 {
3865 {
3868 {
3872 }
3873 }
3875 }
3878 {
3885 }
3886 }
3887 }
3889 }
3892 {
3894 strUsage += HelpMessageOpt("-disablewallet", _("Do not load the wallet and disable wallet RPC calls"));
3895 strUsage += HelpMessageOpt("-keypool=<n>", strprintf(_("Set key pool size to <n> (default: %u)"), DEFAULT_KEYPOOL_SIZE));
3896 strUsage += HelpMessageOpt("-fallbackfee=<amt>", strprintf(_("A fee rate (in %s/kB) that will be used when fee estimation has insufficient data (default: %s)"),
3898 strUsage += HelpMessageOpt("-discardfee=<amt>", strprintf(_("The fee rate (in %s/kB) that indicates your tolerance for discarding change by adding it to the fee (default: %s). "
3899 "Note: An output is discarded if it is dust at this rate, but we will always discard up to the dust relay fee and a discard fee above that is limited by the fee estimate for the longest target"),
3901 strUsage += HelpMessageOpt("-mintxfee=<amt>", strprintf(_("Fees (in %s/kB) smaller than this are considered zero fee for transaction creation (default: %s)"),
3903 strUsage += HelpMessageOpt("-paytxfee=<amt>", strprintf(_("Fee (in %s/kB) to add to transactions you send (default: %s)"),
3905 strUsage += HelpMessageOpt("-rescan", _("Rescan the block chain for missing wallet transactions on startup"));
3906 strUsage += HelpMessageOpt("-salvagewallet", _("Attempt to recover private keys from a corrupt wallet on startup"));
3907 strUsage += HelpMessageOpt("-spendzeroconfchange", strprintf(_("Spend unconfirmed change when sending transactions (default: %u)"), DEFAULT_SPEND_ZEROCONF_CHANGE));
3908 strUsage += HelpMessageOpt("-txconfirmtarget=<n>", strprintf(_("If paytxfee is not set, include enough fee so transactions begin confirmation on average within n blocks (default: %u)"), DEFAULT_TX_CONFIRM_TARGET));
3909 strUsage += HelpMessageOpt("-usehd", _("Use hierarchical deterministic key generation (HD) after BIP32. Only has effect during wallet creation/first start") + " " + strprintf(_("(default: %u)"), DEFAULT_USE_HD_WALLET));
3910 strUsage += HelpMessageOpt("-walletrbf", strprintf(_("Send transactions with full-RBF opt-in enabled (default: %u)"), DEFAULT_WALLET_RBF));
3912 strUsage += HelpMessageOpt("-wallet=<file>", _("Specify wallet file (within data directory)") + " " + strprintf(_("(default: %s)"), DEFAULT_WALLET_DAT));
3913 strUsage += HelpMessageOpt("-walletbroadcast", _("Make the wallet broadcast transactions") + " " + strprintf(_("(default: %u)"), DEFAULT_WALLETBROADCAST));
3914 strUsage += HelpMessageOpt("-walletnotify=<cmd>", _("Execute command when a wallet transaction changes (%s in cmd is replaced by TxID)"));
3915 strUsage += HelpMessageOpt("-zapwallettxes=<mode>", _("Delete all wallet transactions and only recover those parts of the blockchain through -rescan on startup") +
3916 " " + _("(1 = keep tx meta data e.g. account owner and payment request information, 2 = drop tx meta data)"));
3919 {
3922 strUsage += HelpMessageOpt("-dblogsize=<n>", strprintf("Flush wallet database activity from memory to disk log every <n> megabytes (default: %u)", DEFAULT_WALLET_DBLOGSIZE));
3923 strUsage += HelpMessageOpt("-flushwallet", strprintf("Run a thread to flush wallet periodically (default: %u)", DEFAULT_FLUSHWALLET));
3924 strUsage += HelpMessageOpt("-privdb", strprintf("Sets the DB_PRIVATE flag in the wallet db environment (default: %u)", DEFAULT_WALLET_PRIVDB));
3925 strUsage += HelpMessageOpt("-walletrejectlongchains", strprintf(_("Wallet will not create transactions that violate mempool chain limits (default: %u)"), DEFAULT_WALLET_REJECT_LONG_CHAINS));
3926 }
3929 }
3932 {
3933 // needed to restore wallet transaction meta data after -zapwallettxes
3945 }
3946 }
3956 {
3960 }
3962 {
3965 walletFile));
3966 }
3968 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3970 }
3972 {
3973 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3975 }
3979 }
3980 }
3983 {
3986 {
3990 }
3991 else
3994 {
3997 }
3999 }
4002 {
4003 // Create new keyUser and set as default key
4006 // ensure this wallet.dat can only be opened by clients supporting HD with chain split
4009 // generate a new master key
4013 }
4014 CPubKey newDefaultKey;
4020 }
4021 }
4024 }
4028 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
4030 }
4032 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
4034 }
4035 }
4041 // Try to top up keypool. No-op if the wallet is locked.
4046 {
4048 CBlockLocator locator;
4051 }
4053 {
4054 //We can't rescan beyond non-pruned blocks, stop and throw an error
4055 //this might happen if a user uses an old wallet within a pruned node
4056 // or if he ran -disablewallet for a longer time, then decided to re-enable
4058 {
4060 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
4064 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
4066 }
4067 }
4070 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
4072 // No need to read and scan block if block was created before
4073 // our wallet birthday (as adjusted for block time variability)
4074 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
4076 }
4084 // Restore wallet transaction metadata after -zapwallettxes=1
4086 {
4090 {
4094 {
4105 }
4106 }
4107 }
4108 }
4109 walletInstance->SetBroadcastTransactions(gArgs.GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4111 {
4116 }
4119 }
4122 {
4126 }
4132 }
4134 }
4137 }
4142 {
4143 // Add wallet transactions that aren't already in a block to mempool
4144 // Do this here as mempool requires genesis block to be loaded
4147 // Run a thread to flush wallet periodically
4150 }
4151 }
4154 {
4161 if (gArgs.GetBoolArg("-blocksonly", DEFAULT_BLOCKSONLY) && gArgs.SoftSetBoolArg("-walletbroadcast", false)) {
4162 LogPrintf("%s: parameter interaction: -blocksonly=1 -> setting -walletbroadcast=0\n", __func__);
4163 }
4168 }
4169 // Rewrite just private keys: rescan to find transactions
4172 }
4173 }
4176 // -zapwallettxes implies dropping the mempool on startup
4178 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -persistmempool=0\n", __func__, zapwallettxes);
4179 }
4181 // -zapwallettxes implies a rescan
4185 }
4187 LogPrintf("%s: parameter interaction: -zapwallettxes=%s -> setting -rescan=1\n", __func__, zapwallettxes);
4188 }
4189 }
4194 }
4195 }
4200 return InitError(_("Rescans are not possible in pruned mode. You will need to use -reindex which will download the whole blockchain again."));
4207 {
4215 }
4217 {
4220 return InitError(strprintf(_("Invalid amount for -fallbackfee=<amount>: '%s'"), gArgs.GetArg("-fallbackfee", "")));
4225 }
4227 {
4230 return InitError(strprintf(_("Invalid amount for -discardfee=<amount>: '%s'"), gArgs.GetArg("-discardfee", "")));
4233 _("This is the transaction fee you may discard if change is smaller than dust at this level"));
4235 }
4237 {
4247 {
4248 return InitError(strprintf(_("Invalid amount for -paytxfee=<amount>: '%s' (must be at least %s)"),
4250 }
4251 }
4253 {
4258 InitWarning(_("-maxtxfee is set very high! Fees this large could be paid on a single transaction."));
4261 {
4262 return InitError(strprintf(_("Invalid amount for -maxtxfee=<amount>: '%s' (must be at least the minrelay fee of %s to prevent stuck transactions)"),
4264 }
4265 }
4267 bSpendZeroConfChange = gArgs.GetBoolArg("-spendzeroconfchange", DEFAULT_SPEND_ZEROCONF_CHANGE);
4271 }
4274 {
4276 }
4279 {
4282 }
4285 {
4289 }
4292 {
4295 }
4298 {
4299 // Update the tx's hashBlock
4302 // set the position of the transaction in the block
4304 }
4307 {
4313 // Find the block it claims to be in
4323 }
4326 {
4330 }
4334 {
4336 }