| blob | b9b4d8ddff703c4d5569ad2c46640b21f5dd24a7 |
1 // Copyright (c) 2009-2010 Satoshi Nakamoto
2 // Copyright (c) 2009-2016 The Bitcoin Core developers
3 // Distributed under the MIT software license, see the accompanying
4 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
6 #include <wallet/wallet.h>
8 #include <base58.h>
9 #include <checkpoints.h>
10 #include <chain.h>
11 #include <wallet/coincontrol.h>
12 #include <consensus/consensus.h>
13 #include <consensus/validation.h>
14 #include <fs.h>
15 #include <wallet/init.h>
16 #include <key.h>
17 #include <keystore.h>
18 #include <validation.h>
19 #include <net.h>
20 #include <policy/fees.h>
21 #include <policy/policy.h>
22 #include <policy/rbf.h>
23 #include <primitives/block.h>
24 #include <primitives/transaction.h>
25 #include <script/script.h>
26 #include <scheduler.h>
27 #include <timedata.h>
28 #include <txmempool.h>
29 #include <util.h>
30 #include <utilmoneystr.h>
31 #include <wallet/fees.h>
33 #include <assert.h>
34 #include <future>
36 #include <boost/algorithm/string/replace.hpp>
37 #include <boost/thread.hpp>
40 /** Transaction fee set by the user */
49 /**
50 * Fees smaller than this (in satoshi) are considered zero fee (for transaction creation)
51 * Override with -mintxfee
52 */
54 /**
55 * If fee estimation does not have enough data to provide estimates, use this fee instead.
56 * Has no effect if not using fee estimation
57 * Override with -fallbackfee
58 */
63 const uint256 CMerkleTx::ABANDON_HASH(uint256S("0000000000000000000000000000000000000000000000000000000000000001"));
65 /** @defgroup mapWallet
66 *
67 * @{
68 */
70 struct CompareValueOnly
71 {
74 {
76 }
77 };
80 {
81 return strprintf("COutput(%s, %d, %d) [%s]", tx->GetHash().ToString(), i, nDepth, FormatMoney(tx->tx->vout[i].nValue));
82 }
90 CAffectedKeysVisitor(const CKeyStore &keystoreIn, std::vector<CKeyID> &vKeysIn) : keystore(keystoreIn), vKeys(vKeysIn) {}
93 txnouttype type;
99 }
100 }
105 }
108 CScript script;
111 }
114 {
115 CScriptID id;
117 CScript script;
120 }
121 }
124 {
128 }
129 }
133 };
136 {
142 }
145 {
147 bool fCompressed = CanSupportFeature(FEATURE_COMPRPUBKEY); // default to compressed public keys if we want 0.6.0 wallets
149 CKey secret;
151 // Create new metadata
155 // use HD key derivation if HD was enabled during wallet creation
157 DeriveNewChildKey(walletdb, metadata, secret, (CanSupportFeature(FEATURE_HD_SPLIT) ? internal : false));
160 }
162 // Compressed public keys were introduced in version 0.6.0
165 }
175 }
177 }
179 void CWallet::DeriveNewChildKey(CWalletDB &walletdb, CKeyMetadata& metadata, CKey& secret, bool internal)
180 {
181 // for now we use a fixed keypath scheme of m/0'/0'/k
188 // try to get the master key
194 // derive m/0'
195 // use hardened derivation (child keys >= 0x80000000 are hardened after bip32)
198 // derive m/0'/0' (external chain) OR m/0'/1' (internal chain)
202 // derive child key at next index, skip keys already known to the wallet
204 // always derive hardened keys
205 // childIndex | BIP32_HARDENED_KEY_LIMIT = derive childIndex in hardened child-index-range
206 // example: 1 | BIP32_HARDENED_KEY_LIMIT == 0x80000001 == 2147483649
211 }
216 }
220 // update the chain model in the database
223 }
225 bool CWallet::AddKeyPubKeyWithDB(CWalletDB &walletdb, const CKey& secret, const CPubKey &pubkey)
226 {
229 // CCryptoKeyStore has no concept of wallet databases, but calls AddCryptedKey
230 // which is overridden below. To avoid flushes, the database handle is
231 // tunneled through to it.
235 }
239 }
242 // check if we need to remove from watch-only
243 CScript script;
247 }
251 }
257 }
259 }
262 {
265 }
269 {
272 {
276 vchCryptedSecret,
278 else
280 vchCryptedSecret,
282 }
283 }
286 {
291 }
294 {
299 }
301 bool CWallet::LoadCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret)
302 {
304 }
306 /**
307 * Update wallet first key creation time. This should be called whenever keys
308 * are added to the wallet, with the oldest key creation time.
309 */
311 {
314 // Cannot determine birthday information, so set the wallet birthday to
315 // the beginning of time.
319 }
320 }
323 {
327 }
330 {
331 /* A sanity check was added in pull #3843 to avoid adding redeemScripts
332 * that never can be redeemed. However, old wallets may still contain
333 * these. Do not add them to the wallet and warn. */
335 {
337 LogPrintf("%s: Warning: This wallet contains a redeemScript of size %i which exceeds maximum size %i thus can never be redeemed. Do not use address %s.\n",
340 }
343 }
346 {
353 }
356 {
359 }
362 {
372 }
375 {
377 }
380 {
381 CCrypter crypter;
382 CKeyingMaterial _vMasterKey;
384 {
387 {
388 if(!crypter.SetKeyFromPassphrase(strWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
394 }
395 }
397 }
399 bool CWallet::ChangeWalletPassphrase(const SecureString& strOldWalletPassphrase, const SecureString& strNewWalletPassphrase)
400 {
403 {
407 CCrypter crypter;
408 CKeyingMaterial _vMasterKey;
410 {
411 if(!crypter.SetKeyFromPassphrase(strOldWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
416 {
418 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
419 pMasterKey.second.nDeriveIterations = static_cast<unsigned int>(pMasterKey.second.nDeriveIterations * (100 / ((double)(GetTimeMillis() - nStartTime))));
422 crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod);
423 pMasterKey.second.nDeriveIterations = (pMasterKey.second.nDeriveIterations + static_cast<unsigned int>(pMasterKey.second.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime)))) / 2;
428 LogPrintf("Wallet passphrase changed to an nDeriveIterations of %i\n", pMasterKey.second.nDeriveIterations);
430 if (!crypter.SetKeyFromPassphrase(strNewWalletPassphrase, pMasterKey.second.vchSalt, pMasterKey.second.nDeriveIterations, pMasterKey.second.nDerivationMethod))
438 }
439 }
440 }
443 }
446 {
449 }
451 bool CWallet::SetMinVersion(enum WalletFeature nVersion, CWalletDB* pwalletdbIn, bool fExplicit)
452 {
457 // when doing an explicit upgrade, if we pass the max version permitted, upgrade all the way
466 {
472 }
475 }
478 {
480 // cannot downgrade below current version
487 }
490 {
502 {
508 }
510 }
513 {
517 }
520 {
522 }
525 {
526 // We want all the wallet transactions in range to have the same metadata as
527 // the oldest (smallest nOrderPos).
528 // So: find smallest nOrderPos:
533 {
537 {
540 }
541 }
545 // Now copy data from copyFrom to rest:
547 {
555 // fTimeReceivedIsTxTime not copied on purpose
556 // nTimeReceived not copied on purpose
560 // nOrderPos not copied on purpose
561 // cached members not copied on purpose
562 }
563 }
565 /**
566 * Outpoint is spent if any non-conflicted transaction
567 * spends it:
568 */
570 {
576 {
583 }
584 }
586 }
589 {
595 }
599 {
608 }
611 {
615 CKeyingMaterial _vMasterKey;
620 CMasterKey kMasterKey;
625 CCrypter crypter;
627 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, 25000, kMasterKey.nDerivationMethod);
628 kMasterKey.nDeriveIterations = static_cast<unsigned int>(2500000 / ((double)(GetTimeMillis() - nStartTime)));
631 crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod);
632 kMasterKey.nDeriveIterations = (kMasterKey.nDeriveIterations + static_cast<unsigned int>(kMasterKey.nDeriveIterations * 100 / ((double)(GetTimeMillis() - nStartTime)))) / 2;
639 if (!crypter.SetKeyFromPassphrase(strWalletPassphrase, kMasterKey.vchSalt, kMasterKey.nDeriveIterations, kMasterKey.nDerivationMethod))
644 {
653 }
657 {
660 // We now probably have half of our keys encrypted in memory, and half not...
661 // die and let the user reload the unencrypted wallet.
663 }
665 // Encryption was introduced in version 0.4.0
670 // We now have keys encrypted in memory, but not on disk...
671 // die to avoid confusion and let the user reload the unencrypted wallet.
673 }
681 // if we are using HD, replace the HD master key (seed) with a new one
685 }
686 }
691 // Need to completely rewrite the wallet file; if we don't, bdb might keep
692 // bits of the unencrypted private key in slack space in the database file.
695 }
699 }
702 {
706 // Old wallets didn't have any defined order for transactions
707 // Probably a bad idea to change the output of this
709 // First: get all CWalletTx and CAccountingEntry into a sorted-by-time multimap.
712 TxItems txByTime;
715 {
718 }
722 {
724 }
729 {
735 {
740 {
743 }
744 else
747 }
748 else
749 {
752 {
755 }
762 // Since we're changing the order, write it back
764 {
767 }
768 else
771 }
772 }
776 }
779 {
786 }
788 }
790 bool CWallet::AccountMove(std::string strFrom, std::string strTo, CAmount nAmount, std::string strComment)
791 {
798 // Debit
799 CAccountingEntry debit;
808 // Credit
809 CAccountingEntry credit;
822 }
825 {
828 CAccount account;
835 // Check if the current key has been used
844 }
845 }
846 }
848 // Generate a new key
855 }
860 }
863 {
864 {
868 }
869 }
872 {
877 // There is a bug if MarkReplaced is not called on an existing wallet transaction.
882 // Ensure for now that we're not overwriting data
893 }
898 }
901 {
908 // Inserts only if not already there, returns tx inserted or tx found
909 std::pair<std::map<uint256, CWalletTx>::iterator, bool> ret = mapWallet.insert(std::make_pair(hash, wtxIn));
914 {
920 }
924 {
925 // Merge
927 {
930 }
931 // If no longer abandoned, update
933 {
936 }
938 {
941 }
943 {
946 }
947 // If we have a witness-stripped version of this transaction, and we
948 // see a new version with a witness, then we must be upgrading a pre-segwit
949 // wallet. Store the new version of the transaction with the witness,
950 // as the stripped-version must be invalid.
951 // TODO: Store all versions of the transaction, instead of just one.
955 }
956 }
958 //// debug print
959 LogPrintf("AddToWallet %s %s%s\n", wtxIn.GetHash().ToString(), (fInsertedNew ? "new" : ""), (fUpdated ? "update" : ""));
961 // Write to disk
966 // Break debit/credit balance caches:
969 // Notify UI of new or updated transaction
972 // notify an external script when a wallet transaction comes in or is updated
976 {
979 }
982 }
985 {
999 }
1000 }
1001 }
1004 }
1006 /**
1007 * Add a transaction to the wallet, or update it. pIndex and posInBlock should
1008 * be set when the transaction was known to be included in a block. When
1009 * pIndex == nullptr, then wallet state is not updated in AddToWallet, but
1010 * notifications happen and cached balances are marked dirty.
1011 *
1012 * If fUpdate is true, existing transactions will be updated.
1013 * TODO: One exception to this is that the abandoned state is cleared under the
1014 * assumption that any further notification of a transaction that was considered
1015 * abandoned is an indication that it is not safe to be considered abandoned.
1016 * Abandoned state should probably be more carefully tracked via different
1017 * posInBlock signals or by checking mempool presence when necessary.
1018 */
1019 bool CWallet::AddToWalletIfInvolvingMe(const CTransactionRef& ptx, const CBlockIndex* pIndex, int posInBlock, bool fUpdate)
1020 {
1022 {
1027 std::pair<TxSpends::const_iterator, TxSpends::const_iterator> range = mapTxSpends.equal_range(txin.prevout);
1030 LogPrintf("Transaction %s (in block %s) conflicts with wallet transaction %s (both spend %s:%i)\n", tx.GetHash().ToString(), pIndex->GetBlockHash().ToString(), range.first->second.ToString(), range.first->first.hash.ToString(), range.first->first.n);
1032 }
1034 }
1035 }
1036 }
1041 {
1042 /* Check if any keys in the wallet keypool that were supposed to be unused
1043 * have appeared in a new transaction. If so, remove those keys from the keypool.
1044 * This can happen when restoring an old wallet backup that does not contain
1045 * the mostly recently created transactions from newer versions of the wallet.
1046 */
1048 // loop though all outputs
1050 // extract addresses and check if they match with an unused keypool key
1056 LogPrintf("%s: Detected a used keypool key, mark all keypool key up to this key as used\n", __func__);
1061 }
1062 }
1063 }
1064 }
1068 // Get merkle branch if transaction was found in a block
1073 }
1074 }
1076 }
1079 {
1083 }
1086 {
1094 // Can't mark abandoned if confirmed or in mempool
1100 }
1112 // If the orig tx was not in block, none of its spends can be
1114 // if (currentconfirm < 0) {Tx and spends are already conflicted, no need to abandon}
1116 // If the orig tx was not in block/mempool, none of its spends can be in mempool
1123 // Iterate over all its outputs, and mark transactions in the wallet that spend them abandoned too
1128 }
1129 iter++;
1130 }
1131 // If a transaction changes 'conflicted' state, that changes the balance
1132 // available of the outputs it spends. So force those to be recomputed
1134 {
1138 }
1139 }
1140 }
1141 }
1144 }
1147 {
1155 }
1156 }
1157 // If number of conflict confirms cannot be determined, this means
1158 // that the block is still unknown or not yet part of the main chain,
1159 // for example when loading the wallet during a reindex. Do nothing in that
1160 // case.
1164 // Do not flush the wallet here for performance reasons
1181 // Block is 'more conflicted' than current confirm; update.
1182 // Mark transaction as conflicted with this block.
1187 // Iterate over all its outputs, and mark transactions in the wallet that spend them conflicted too
1192 }
1193 iter++;
1194 }
1195 // If a transaction changes 'conflicted' state, that changes the balance
1196 // available of the outputs it spends. So force those to be recomputed
1201 }
1202 }
1203 }
1204 }
1205 }
1207 void CWallet::SyncTransaction(const CTransactionRef& ptx, const CBlockIndex *pindex, int posInBlock) {
1213 // If a transaction changes 'conflicted' state, that changes the balance
1214 // available of the outputs it spends. So force those to be
1215 // recomputed, also:
1220 }
1221 }
1222 }
1231 }
1232 }
1239 }
1240 }
1242 void CWallet::BlockConnected(const std::shared_ptr<const CBlock>& pblock, const CBlockIndex *pindex, const std::vector<CTransactionRef>& vtxConflicted) {
1244 // TODO: Temporarily ensure that mempool removals are notified before
1245 // connected transactions. This shouldn't matter, but the abandoned
1246 // state of transactions in our wallet is currently cleared when we
1247 // receive another notification and there is a race condition where
1248 // notification of a connected conflict might cause an outside process
1249 // to abandon a transaction and then have it inadvertently cleared by
1250 // the notification that the conflicted transaction was evicted.
1255 }
1259 }
1262 }
1269 }
1270 }
1278 {
1279 // Skip the queue-draining stuff if we know we're caught up with
1280 // chainActive.Tip()...
1281 // We could also take cs_wallet here, and call m_last_block_processed
1282 // protected by cs_wallet instead of cs_main, but as long as we need
1283 // cs_main here anyway, its easier to just call it cs_main-protected.
1289 }
1290 }
1292 // ...otherwise put a callback in the validation interface queue and wait
1293 // for the queue to drain enough to execute it (indicating we are caught up
1294 // at least with the time we entered this function).
1299 });
1301 }
1305 {
1306 {
1310 {
1314 }
1315 }
1317 }
1319 // Note that this function doesn't distinguish between a 0-valued input,
1320 // and a not-"is mine" (according to the filter) input.
1322 {
1323 {
1327 {
1332 }
1333 }
1335 }
1338 {
1340 }
1343 {
1347 }
1350 {
1351 // TODO: fix handling of 'change' outputs. The assumption is that any
1352 // payment to a script that is ours, but is not in the address book
1353 // is change. That assumption is likely to break when we implement multisignature
1354 // wallets that return change back into a multi-signature-protected address;
1355 // a better way of identifying which outputs are 'the send' and which are
1356 // 'the change' will need to be implemented (maybe extend CWalletTx to remember
1357 // which output, if any, was change).
1359 {
1360 CTxDestination address;
1367 }
1369 }
1372 {
1376 }
1379 {
1384 }
1387 {
1389 }
1392 {
1395 {
1399 }
1401 }
1404 {
1408 {
1420 }
1422 }
1425 {
1428 {
1432 }
1434 }
1437 {
1440 {
1444 }
1446 }
1449 {
1450 CKey key;
1456 // calculate the pubkey
1460 // set the hd keypath to "m" -> Master, refers the masterkeyid to itself
1464 {
1467 // mem store the metadata
1470 // write the key&metadata to the database
1473 }
1476 }
1479 {
1481 // store the keyid (hash160) together with
1482 // the child index counter in the database
1483 // as a hdchain object
1484 CHDChain newHdChain;
1485 newHdChain.nVersion = CanSupportFeature(FEATURE_HD_SPLIT) ? CHDChain::VERSION_HD_CHAIN_SPLIT : CHDChain::VERSION_HD_BASE;
1490 }
1493 {
1500 }
1503 {
1505 }
1508 {
1511 }
1514 {
1515 // Returns -1 if it wasn't being tracked
1517 {
1520 {
1521 // Generated block
1523 {
1527 }
1528 }
1529 else
1530 {
1531 // Did anyone request this transaction?
1534 {
1537 // How about the block it's in?
1539 {
1543 else
1545 }
1546 }
1547 }
1548 }
1550 }
1553 std::list<COutputEntry>& listSent, CAmount& nFee, std::string& strSentAccount, const isminefilter& filter) const
1554 {
1560 // Compute fee:
1563 {
1566 }
1568 // Sent/received.
1570 {
1573 // Only need to handle txouts if AT LEAST one of these is true:
1574 // 1) they debit from us (sent)
1575 // 2) the output is to us (received)
1577 {
1578 // Don't report 'change' txouts
1581 }
1585 // In either case, we need to get the destination address
1586 CTxDestination address;
1589 {
1593 }
1597 // If we are debited by the transaction, add the output as a "sent" entry
1601 // If we are receiving the output, add it as a "received" entry
1604 }
1606 }
1608 /**
1609 * Scan active chain for relevant transactions after importing keys. This should
1610 * be called whenever new keys are added to the wallet, with the oldest key
1611 * creation time.
1612 *
1613 * @return Earliest timestamp that could be successfully scanned from. Timestamp
1614 * returned will be higher than startTime if relevant blocks could not be read.
1615 */
1617 {
1621 // Find starting block. May be null if nCreateTime is greater than the
1622 // highest blockchain timestamp, in which case there is nothing that needs
1623 // to be scanned.
1625 LogPrintf("%s: Rescanning last %i blocks\n", __func__, startBlock ? chainActive.Height() - startBlock->nHeight + 1 : 0);
1631 }
1632 }
1634 }
1636 /**
1637 * Scan the block chain (starting in pindexStart) for transactions
1638 * from or to us. If fUpdate is true, found transactions that already
1639 * exist in the wallet will be updated.
1640 *
1641 * Returns null if scan was successful. Otherwise, if a complete rescan was not
1642 * possible (due to pruning or corruption), returns pointer to the most recent
1643 * block that could not be scanned.
1644 *
1645 * If pindexStop is not a nullptr, the scan will stop at the block-index
1646 * defined by pindexStop
1647 */
1648 CBlockIndex* CWallet::ScanForWalletTransactions(CBlockIndex* pindexStart, CBlockIndex* pindexStop, bool fUpdate)
1649 {
1655 }
1659 {
1664 ShowProgress(_("Rescanning..."), 0); // show rescan progress in GUI as dialog or on splashscreen, if -rescan on startup
1668 {
1670 ShowProgress(_("Rescanning..."), std::max(1, std::min(99, (int)((GuessVerificationProgress(chainParams.TxData(), pindex) - dProgressStart) / (dProgressTip - dProgressStart) * 100))));
1673 LogPrintf("Still rescanning. At block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1674 }
1676 CBlock block;
1680 }
1683 }
1686 }
1688 }
1690 LogPrintf("Rescan aborted at block %d. Progress=%f\n", pindex->nHeight, GuessVerificationProgress(chainParams.TxData(), pindex));
1691 }
1695 }
1697 }
1700 {
1701 // If transactions aren't being broadcasted, don't let them into local mempool either
1707 // Sort pending wallet transactions based on their initial wallet insertion order
1709 {
1718 }
1719 }
1721 // Try to add wallet transactions to memory pool
1724 CValidationState state;
1726 }
1727 }
1730 {
1733 {
1734 CValidationState state;
1735 /* GetDepthInMainChain already catches known conflicts. */
1741 {
1743 });
1745 }
1746 }
1747 }
1749 }
1752 {
1755 {
1759 }
1761 }
1764 {
1770 {
1773 else
1774 {
1778 }
1779 }
1781 {
1784 else
1785 {
1789 }
1790 }
1792 }
1795 {
1796 // Must wait until coinbase is safely deep enough in the chain before valuing it
1802 {
1803 // GetBalance can assume transactions in mapWallet won't change
1806 else
1807 {
1811 }
1812 }
1814 {
1817 else
1818 {
1822 }
1823 }
1825 }
1828 {
1830 {
1836 }
1839 }
1842 {
1846 // Must wait until coinbase is safely deep enough in the chain before valuing it
1856 {
1858 {
1863 }
1864 }
1869 }
1872 {
1874 {
1880 }
1883 }
1886 {
1890 // Must wait until coinbase is safely deep enough in the chain before valuing it
1899 {
1901 {
1906 }
1907 }
1912 }
1915 {
1921 }
1924 {
1926 }
1929 {
1930 // Quick answer in most cases
1941 // Don't trust unconfirmed transactions from us unless they are in the mempool.
1945 // Trusted if all inputs are from us and are in the mempool:
1947 {
1948 // Transactions not sent by us: not trusted
1955 }
1957 }
1960 {
1966 }
1969 {
1974 // Sort them in chronological order
1977 {
1979 // Don't rebroadcast if newer than nTime:
1983 }
1985 {
1989 }
1991 }
1994 {
1995 // Do this infrequently and randomly to avoid giving away
1996 // that these are our transactions.
2004 // Only do it if there's been a new block since last time
2009 // Rebroadcast unconfirmed txes older than 5 minutes before the last
2010 // block was found:
2014 }
2021 /** @defgroup Actions
2022 *
2023 * @{
2024 */
2028 {
2030 {
2033 {
2037 }
2038 }
2041 }
2044 {
2046 {
2049 {
2053 }
2054 }
2056 }
2059 {
2061 {
2064 {
2067 }
2068 }
2070 }
2073 {
2075 {
2078 {
2082 }
2083 }
2086 }
2089 {
2091 {
2094 {
2098 }
2099 }
2101 }
2104 {
2106 {
2109 {
2112 }
2113 }
2115 }
2117 // Calculate total balance in a different way from GetBalance. The biggest
2118 // difference is that GetBalance sums up all unspent TxOuts paying to the
2119 // wallet, while this sums up both spent and unspent TxOuts paying to the
2120 // wallet, and then subtracts the values of TxIns spending from the wallet. This
2121 // also has fewer restrictions on which unconfirmed transactions are considered
2122 // trusted.
2123 CAmount CWallet::GetLegacyBalance(const isminefilter& filter, int minDepth, const std::string* account) const
2124 {
2133 }
2135 // Loop through tx outputs and add incoming payments. For outgoing txs,
2136 // treat change outputs specially, as part of the amount debited.
2142 } else if (IsMine(out) & filter && depth >= minDepth && (!account || *account == GetAccountName(out.scriptPubKey))) {
2144 }
2145 }
2147 // For outgoing txs, subtract amount debited.
2150 }
2151 }
2155 }
2158 }
2161 {
2170 }
2171 }
2173 }
2175 void CWallet::AvailableCoins(std::vector<COutput> &vCoins, bool fOnlySafe, const CCoinControl *coinControl, const CAmount &nMinimumAmount, const CAmount &nMaximumAmount, const CAmount &nMinimumSumAmount, const uint64_t &nMaximumCount, const int &nMinDepth, const int &nMaxDepth) const
2176 {
2179 {
2185 {
2199 // We should not consider coins which aren't at least in our mempool
2200 // It's possible for these to be conflicted via ancestors which we may never be able to detect
2206 // We should not consider coins from transactions that are replacing
2207 // other transactions.
2208 //
2209 // Example: There is a transaction A which is replaced by bumpfee
2210 // transaction B. In this case, we want to prevent creation of
2211 // a transaction B' which spends an output of B.
2212 //
2213 // Reason: If transaction A were initially confirmed, transactions B
2214 // and B' would no longer be valid, so the user would have to create
2215 // a new transaction C to replace B'. However, in the case of a
2216 // one-block reorg, transactions B' and C might BOTH be accepted,
2217 // when the user only wanted one of them. Specifically, there could
2218 // be a 1-block reorg away from the chain where transactions A and C
2219 // were accepted to another chain where B, B', and C were all
2220 // accepted.
2223 }
2225 // Similarly, we should not consider coins from transactions that
2226 // have been replaced. In the example above, we would want to prevent
2227 // creation of a transaction A' spending an output of A, because if
2228 // transaction B were initially confirmed, conflicting with A and
2229 // A', we wouldn't want to the user to create a transaction D
2230 // intending to replace A', but potentially resulting in a scenario
2231 // where A, A', and D could all be accepted (instead of just B and
2232 // D, or just A and A' like the user would want).
2235 }
2239 }
2248 if (coinControl && coinControl->HasSelected() && !coinControl->fAllowOtherInputs && !coinControl->IsSelected(COutPoint(entry.first, i)))
2261 }
2263 bool fSpendableIn = ((mine & ISMINE_SPENDABLE) != ISMINE_NO) || (coinControl && coinControl->fAllowWatchOnly && (mine & ISMINE_WATCH_SOLVABLE) != ISMINE_NO);
2268 // Checks the sum amount of all UTXO's.
2274 }
2275 }
2277 // Checks the maximum number of UTXO's.
2280 }
2281 }
2282 }
2283 }
2284 }
2287 {
2288 // TODO: Add AssertLockHeld(cs_wallet) here.
2289 //
2290 // Because the return value from this function contains pointers to
2291 // CWalletTx objects, callers to this function really should acquire the
2292 // cs_wallet lock before calling it. However, the current caller doesn't
2293 // acquire this lock yet. There was an attempt to add the missing lock in
2294 // https://github.com/bitcoin/bitcoin/pull/10340, but that change has been
2295 // postponed until after https://github.com/bitcoin/bitcoin/pull/10244 to
2296 // avoid adding some extra complexity to the Qt code.
2305 CTxDestination address;
2309 }
2310 }
2320 CTxDestination address;
2321 if (ExtractDestination(FindNonChangeParentOutput(*it->second.tx, output.n).scriptPubKey, address)) {
2324 }
2325 }
2326 }
2327 }
2330 }
2333 {
2342 }
2345 }
2347 }
2349 static void ApproximateBestSubset(const std::vector<CInputCoin>& vValue, const CAmount& nTotalLower, const CAmount& nTargetValue,
2351 {
2357 FastRandomContext insecure_rand;
2360 {
2365 {
2367 {
2368 //The solver here uses a randomized algorithm,
2369 //the randomness serves no real security purpose but is just
2370 //needed to prevent degenerate behavior and it is important
2371 //that the rng is fast. We do not use a constant random sequence,
2372 //because there may be some privacy improvement by making
2373 //the selection random.
2375 {
2379 {
2382 {
2385 }
2388 }
2389 }
2390 }
2391 }
2392 }
2393 }
2395 bool CWallet::SelectCoinsMinConf(const CAmount& nTargetValue, const int nConfMine, const int nConfTheirs, const uint64_t nMaxAncestors, std::vector<COutput> vCoins,
2397 {
2401 // List of values less than target
2409 {
2426 {
2430 }
2432 {
2435 }
2437 {
2439 }
2440 }
2443 {
2445 {
2448 }
2450 }
2453 {
2459 }
2461 // Solve subset sum by stochastic approximation
2465 CAmount nBest;
2471 // If we have a bigger coin and (either the stochastic approximation didn't find a good solution,
2472 // or the next bigger coin is closer), return the bigger coin
2474 ((nBest != nTargetValue && nBest < nTargetValue + MIN_CHANGE) || coinLowestLarger->txout.nValue <= nBest))
2475 {
2478 }
2482 {
2485 }
2492 }
2493 }
2495 }
2496 }
2499 }
2501 bool CWallet::SelectCoins(const std::vector<COutput>& vAvailableCoins, const CAmount& nTargetValue, std::set<CInputCoin>& setCoinsRet, CAmount& nValueRet, const CCoinControl* coinControl) const
2502 {
2505 // coin control -> return all selected outputs (we want all selected to go into the transaction for sure)
2507 {
2509 {
2514 }
2516 }
2518 // calculate value from preset inputs and store them
2526 {
2529 {
2531 // Clearly invalid input, fail
2538 }
2540 // remove preset inputs from vCoins
2541 for (std::vector<COutput>::iterator it = vCoins.begin(); it != vCoins.end() && coinControl && coinControl->HasSelected();)
2542 {
2545 else
2547 }
2549 size_t nMaxChainLength = std::min(gArgs.GetArg("-limitancestorcount", DEFAULT_ANCESTOR_LIMIT), gArgs.GetArg("-limitdescendantcount", DEFAULT_DESCENDANT_LIMIT));
2550 bool fRejectLongChains = gArgs.GetBoolArg("-walletrejectlongchains", DEFAULT_WALLET_REJECT_LONG_CHAINS);
2553 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 6, 0, vCoins, setCoinsRet, nValueRet) ||
2554 SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 1, 1, 0, vCoins, setCoinsRet, nValueRet) ||
2555 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, 2, vCoins, setCoinsRet, nValueRet)) ||
2556 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::min((size_t)4, nMaxChainLength/3), vCoins, setCoinsRet, nValueRet)) ||
2557 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength/2, vCoins, setCoinsRet, nValueRet)) ||
2558 (bSpendZeroConfChange && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, nMaxChainLength, vCoins, setCoinsRet, nValueRet)) ||
2559 (bSpendZeroConfChange && !fRejectLongChains && SelectCoinsMinConf(nTargetValue - nValueFromPresetInputs, 0, 1, std::numeric_limits<uint64_t>::max(), vCoins, setCoinsRet, nValueRet));
2561 // because SelectCoinsMinConf clears the setCoinsRet, we now add the possible inputs to the coinset
2564 // add preset inputs to the total value selected
2568 }
2571 {
2574 // sign the new tx
2581 }
2584 SignatureData sigdata;
2585 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, amount, SIGHASH_ALL), scriptPubKey, sigdata)) {
2587 }
2589 nIn++;
2590 }
2592 }
2594 bool CWallet::FundTransaction(CMutableTransaction& tx, CAmount& nFeeRet, int& nChangePosInOut, std::string& strFailReason, bool lockUnspents, const std::set<int>& setSubtractFeeFromOutputs, CCoinControl coinControl)
2595 {
2598 // Turn the txout set into a CRecipient vector
2600 {
2602 CRecipient recipient = {txOut.scriptPubKey, txOut.nValue, setSubtractFeeFromOutputs.count(idx) == 1};
2604 }
2612 CWalletTx wtx;
2613 if (!CreateTransaction(vecSend, wtx, reservekey, nFeeRet, nChangePosInOut, strFailReason, coinControl, false)) {
2615 }
2619 // we don't have the normal Create/Commit cycle, and don't want to risk reusing change,
2620 // so just remove the key from the keypool here.
2622 }
2624 // Copy output sizes from new transaction; they may have had the fee subtracted from them
2628 // Add new txins (keeping original txin scriptSig/order)
2630 {
2632 {
2636 {
2639 }
2640 }
2641 }
2645 }
2647 bool CWallet::CreateTransaction(const std::vector<CRecipient>& vecSend, CWalletTx& wtxNew, CReserveKey& reservekey, CAmount& nFeeRet,
2649 {
2654 {
2656 {
2659 }
2663 nSubtractFeeFromAmount++;
2664 }
2666 {
2669 }
2673 CMutableTransaction txNew;
2675 // Discourage fee sniping.
2676 //
2677 // For a large miner the value of the transactions in the best block and
2678 // the mempool can exceed the cost of deliberately attempting to mine two
2679 // blocks to orphan the current best block. By setting nLockTime such that
2680 // only the next block can include the transaction, we discourage this
2681 // practice as the height restricted and limited blocksize gives miners
2682 // considering fee sniping fewer options for pulling off this attack.
2683 //
2684 // A simple way to think about this is from the wallet's point of view we
2685 // always want the blockchain to move forward. By setting nLockTime this
2686 // way we're basically making the statement that we only want this
2687 // transaction to appear in the next block; we don't want to potentially
2688 // encourage reorgs by allowing transactions to appear at lower heights
2689 // than the next block in forks of the best chain.
2690 //
2691 // Of course, the subsidy is high enough, and transaction volume low
2692 // enough, that fee sniping isn't a problem yet, but by implementing a fix
2693 // now we ensure code won't be written that makes assumptions about
2694 // nLockTime that preclude a fix later.
2697 // Secondly occasionally randomly pick a nLockTime even further back, so
2698 // that transactions that are delayed after signing for whatever reason,
2699 // e.g. high-latency mix networks and some CoinJoin implementations, have
2700 // better privacy.
2706 FeeCalculation feeCalc;
2707 CAmount nFeeNeeded;
2709 {
2712 {
2716 // Create change script that will be used if we need change
2717 // TODO: pass in scriptChange instead of reservekey so
2718 // change transaction isn't always pay-to-bitcoin-address
2719 CScript scriptChange;
2721 // coin control: send change to custom address
2725 // Note: We use a new key here to keep it from being obvious which side is the change.
2726 // The drawback is that by not reusing a previous key, the change may be lost if a
2727 // backup is restored, if the backup doesn't have the new private key for the change.
2728 // If we reused the old key, it would be possible to add code to look for and
2729 // rediscover unknown transactions that were written with keys of ours to recover
2730 // post-backup change.
2732 // Reserve a new key pair from key pool
2733 CPubKey vchPubKey;
2737 {
2740 }
2743 }
2751 // Start with no fee and loop until there is enough fee
2753 {
2763 // vouts to the payees
2765 {
2769 {
2771 txout.nValue -= nFeeRet / nSubtractFeeFromAmount; // Subtract fee equally from each selected recipient
2774 {
2777 }
2778 }
2781 {
2783 {
2786 else
2787 strFailReason = _("The transaction amount is too small to send after the fee has been deducted");
2788 }
2789 else
2792 }
2794 }
2796 // Choose coins to use
2801 {
2804 }
2805 }
2810 {
2811 // Fill a vout to ourself
2814 // Never create dust outputs; if we would, just
2815 // add the dust to the fee.
2817 {
2820 }
2821 else
2822 {
2824 {
2825 // Insert change txn at random position:
2827 }
2829 {
2832 }
2836 }
2839 }
2841 // Fill vin
2842 //
2843 // Note how the sequence number is set to non-maxint so that
2844 // the nLockTime set above actually works.
2845 //
2846 // BIP125 defines opt-in RBF as any nSequence < maxint-1, so
2847 // we use the highest possible value in that range (maxint-2)
2848 // to avoid conflicting with other possible uses of nSequence,
2849 // and in the spirit of "smallest possible change from prior
2850 // behavior."
2851 const uint32_t nSequence = coin_control.signalRbf ? MAX_BIP125_RBF_SEQUENCE : (CTxIn::SEQUENCE_FINAL - 1);
2854 nSequence));
2856 // Fill in dummy signatures for fee calculation.
2860 }
2864 // Remove scriptSigs to eliminate the fee calculation dummy signatures
2868 }
2872 // If we made it here and we aren't even able to meet the relay fee on the next pass, give up
2873 // because we must be at the maximum allowed fee.
2875 {
2878 }
2881 // Reduce fee to only the needed amount if possible. This
2882 // prevents potential overpayment in fees if the coins
2883 // selected to meet nFeeNeeded result in a transaction that
2884 // requires less fee than the prior iteration.
2886 // If we have no change and a big enough excess fee, then
2887 // try to construct transaction again only without picking
2888 // new inputs. We now know we only need the smaller fee
2889 // (because of reduced tx size) and so we should add a
2890 // change output. Only try this once.
2892 unsigned int tx_size_with_change = nBytes + change_prototype_size + 2; // Add 2 as a buffer in case increasing # of outputs changes compact size
2893 CAmount fee_needed_with_change = GetMinimumFee(tx_size_with_change, coin_control, ::mempool, ::feeEstimator, nullptr);
2899 }
2900 }
2902 // If we have change output already, just increase it
2908 }
2910 }
2912 // This shouldn't happen, we should have had enough excess
2913 // fee to pay for the new output and still meet nFeeNeeded
2914 // Or we should have just subtracted fee from recipients and
2915 // nFeeNeeded should not have changed
2918 }
2920 // Try to reduce change to include necessary fee
2924 // Only reduce change if remaining amount is still a large enough output.
2929 }
2930 }
2932 // If subtracting fee from recipients, we now know what fee we
2933 // need to subtract, we have no reason to reselect inputs
2936 }
2938 // Include more fee and try again.
2941 }
2942 }
2944 if (nChangePosInOut == -1) reservekey.ReturnKey(); // Return any reserved key if we don't have change
2947 {
2951 {
2953 SignatureData sigdata;
2955 if (!ProduceSignature(TransactionSignatureCreator(this, &txNewConst, nIn, coin.txout.nValue, SIGHASH_ALL), scriptPubKey, sigdata))
2956 {
2961 }
2963 nIn++;
2964 }
2965 }
2967 // Embed the constructed transaction data in wtxNew.
2970 // Limit size
2972 {
2975 }
2976 }
2979 // Lastly, ensure this tx will pass the mempool's chain limits
2980 LockPoints lp;
2984 size_t nLimitAncestorSize = gArgs.GetArg("-limitancestorsize", DEFAULT_ANCESTOR_SIZE_LIMIT)*1000;
2986 size_t nLimitDescendantSize = gArgs.GetArg("-limitdescendantsize", DEFAULT_DESCENDANT_SIZE_LIMIT)*1000;
2988 if (!mempool.CalculateMemPoolAncestors(entry, setAncestors, nLimitAncestors, nLimitAncestorSize, nLimitDescendants, nLimitDescendantSize, errString)) {
2991 }
2992 }
2994 LogPrintf("Fee Calculation: Fee:%d Bytes:%u Needed:%d Tgt:%d (requested %d) Reason:\"%s\" Decay %.5f: Estimation: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out) Fail: (%g - %g) %.2f%% %.1f/(%.1f %d mem %.1f out)\n",
2995 nFeeRet, nBytes, nFeeNeeded, feeCalc.returnedTarget, feeCalc.desiredTarget, StringForFeeReason(feeCalc.reason), feeCalc.est.decay,
2997 100 * feeCalc.est.pass.withinTarget / (feeCalc.est.pass.totalConfirmed + feeCalc.est.pass.inMempool + feeCalc.est.pass.leftMempool),
2998 feeCalc.est.pass.withinTarget, feeCalc.est.pass.totalConfirmed, feeCalc.est.pass.inMempool, feeCalc.est.pass.leftMempool,
3000 100 * feeCalc.est.fail.withinTarget / (feeCalc.est.fail.totalConfirmed + feeCalc.est.fail.inMempool + feeCalc.est.fail.leftMempool),
3001 feeCalc.est.fail.withinTarget, feeCalc.est.fail.totalConfirmed, feeCalc.est.fail.inMempool, feeCalc.est.fail.leftMempool);
3003 }
3005 /**
3006 * Call after CreateTransaction unless you want to abort
3007 */
3008 bool CWallet::CommitTransaction(CWalletTx& wtxNew, CReserveKey& reservekey, CConnman* connman, CValidationState& state)
3009 {
3010 {
3013 {
3014 // Take key pair from key pool so it won't be used again
3017 // Add tx to wallet, because if it has change it's also ours,
3018 // otherwise just for transaction history.
3021 // Notify that old coins are spent
3023 {
3027 }
3028 }
3030 // Track how many getdata requests our transaction gets
3033 // Get the inserted-CWalletTx from mapWallet so that the
3034 // fInMempool flag is cached properly
3038 {
3039 // Broadcast
3041 LogPrintf("CommitTransaction(): Transaction cannot be broadcast immediately, %s\n", state.GetRejectReason());
3042 // TODO: if we expect the failure to be long term or permanent, instead delete wtx from the wallet and return failure.
3045 }
3046 }
3047 }
3049 }
3051 void CWallet::ListAccountCreditDebit(const std::string& strAccount, std::list<CAccountingEntry>& entries) {
3054 }
3057 {
3061 }
3064 {
3067 }
3074 }
3077 {
3083 {
3085 {
3089 // Note: can't top-up keypool here, because wallet is locked.
3090 // User will be prompted to unlock wallet the next operation
3091 // that requires a new key.
3092 }
3093 }
3095 // This wallet is in its first run if all of these are empty
3096 fFirstRunRet = mapKeys.empty() && mapCryptedKeys.empty() && mapWatchKeys.empty() && setWatchOnly.empty() && mapScripts.empty();
3104 }
3107 {
3114 {
3116 {
3120 // Note: can't top-up keypool here, because wallet is locked.
3121 // User will be prompted to unlock wallet the next operation
3122 // that requires a new key.
3123 }
3124 }
3133 }
3136 {
3139 {
3141 {
3146 // Note: can't top-up keypool here, because wallet is locked.
3147 // User will be prompted to unlock wallet the next operation
3148 // that requires a new key.
3149 }
3150 }
3156 }
3159 bool CWallet::SetAddressBook(const CTxDestination& address, const std::string& strName, const std::string& strPurpose)
3160 {
3162 {
3169 }
3172 if (!strPurpose.empty() && !CWalletDB(*dbw).WritePurpose(EncodeDestination(address), strPurpose))
3175 }
3178 {
3179 {
3182 // Delete destdata tuples associated with address
3185 {
3187 }
3189 }
3191 NotifyAddressBookChanged(this, address, "", ::IsMine(*this, address) != ISMINE_NO, "", CT_DELETED);
3195 }
3198 {
3199 CTxDestination address;
3204 }
3205 }
3206 // A scriptPubKey that doesn't have an entry in the address book is
3207 // associated with the default account ("").
3210 }
3212 /**
3213 * Mark old keypool keys as used,
3214 * and generate all new keys
3215 */
3217 {
3218 {
3224 }
3229 }
3236 }
3238 }
3240 }
3243 {
3246 }
3249 {
3255 }
3259 // If no metadata exists yet, create a default with the pool key's
3260 // creation time. Note that this may be overwritten by actually
3261 // stored metadata for that key later, which is fine.
3265 }
3268 {
3269 {
3275 // Top up key pool
3279 else
3282 // count amount of available keys (internal, external)
3283 // make sure the keypool of external and internal keys fits the user selected target (-keypool)
3284 int64_t missingExternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setExternalKeyPool.size(), (int64_t) 0);
3285 int64_t missingInternal = std::max(std::max((int64_t) nTargetSize, (int64_t) 1) - (int64_t)setInternalKeyPool.size(), (int64_t) 0);
3288 {
3289 // don't create extra internal keys
3291 }
3295 {
3298 }
3300 assert(m_max_keypool_index < std::numeric_limits<int64_t>::max()); // How in the hell did you use so many keys?
3306 }
3312 }
3314 }
3316 LogPrintf("keypool added %d keys (%d internal), size=%u (%u internal)\n", missingInternal + missingExternal, missingInternal, setInternalKeyPool.size() + setExternalKeyPool.size(), setInternalKeyPool.size());
3317 }
3318 }
3320 }
3322 void CWallet::ReserveKeyFromKeyPool(int64_t& nIndex, CKeyPool& keypool, bool fRequestedInternal)
3323 {
3326 {
3332 bool fReturningInternal = IsHDEnabled() && CanSupportFeature(FEATURE_HD_SPLIT) && fRequestedInternal;
3335 // Get the oldest key
3346 }
3349 }
3352 }
3357 }
3358 }
3361 {
3362 // Remove from key pool
3366 }
3369 {
3370 // Return to key pool
3371 {
3377 }
3379 }
3381 }
3384 {
3385 CKeyPool keypool;
3386 {
3391 {
3396 }
3399 }
3401 }
3403 static int64_t GetOldestKeyTimeInPool(const std::set<int64_t>& setKeyPool, CWalletDB& walletdb) {
3406 }
3408 CKeyPool keypool;
3412 }
3415 }
3418 {
3423 // load oldest key from keypool, get time and return
3427 }
3430 }
3433 {
3436 {
3439 {
3453 {
3454 CTxDestination addr;
3465 }
3466 }
3467 }
3470 }
3473 {
3479 {
3483 {
3485 // group all input addresses with each other
3487 {
3488 CTxDestination address;
3491 if(!ExtractDestination(mapWallet[txin.prevout.hash].tx->vout[txin.prevout.n].scriptPubKey, address))
3495 }
3497 // group change with input addresses
3499 {
3502 {
3503 CTxDestination txoutAddr;
3507 }
3508 }
3510 {
3513 }
3514 }
3516 // group lone addrs by themselves
3519 {
3520 CTxDestination address;
3526 }
3527 }
3529 std::set< std::set<CTxDestination>* > uniqueGroupings; // a set of pointers to groups of addresses
3530 std::map< CTxDestination, std::set<CTxDestination>* > setmap; // map addresses to the unique group containing it
3532 {
3533 // make a set of all the groups hit by this new group
3540 // merge all hit groups into a new single group and delete old groups
3543 {
3547 }
3550 // update setmap
3553 }
3557 {
3560 }
3563 }
3566 {
3570 {
3575 }
3577 }
3580 {
3582 {
3583 CKeyPool keypool;
3589 }
3591 }
3595 }
3598 {
3603 }
3606 {
3609 }
3612 }
3615 {
3627 CKeyPool keypool;
3630 }
3634 }
3635 }
3638 {
3640 CPubKey pubkey;
3646 }
3649 {
3652 }
3655 {
3658 }
3661 {
3664 }
3667 {
3672 }
3675 {
3681 }
3682 }
3690 // get birth times for keys with metadata
3694 }
3695 }
3697 // map in which we'll infer heights of other keys
3698 CBlockIndex *pindexMax = chainActive[std::max(0, chainActive.Height() - 144)]; // the tip can be reorganized; use a 144-block safety margin
3703 }
3705 // if there are no such keys, we're done
3709 // find first block that affects those keys, if there are any left
3712 // iterate over all wallet transactions...
3716 // ... which are already in a block
3719 // iterate over all their outputs
3722 // ... and all their affected keys
3726 }
3728 }
3729 }
3730 }
3732 // Extract block timestamps for those keys
3734 mapKeyBirth[entry.first] = entry.second->GetBlockTime() - TIMESTAMP_WINDOW; // block times can be 2h off
3735 }
3737 /**
3738 * Compute smart timestamp for a transaction being added to the wallet.
3739 *
3740 * Logic:
3741 * - If sending a transaction, assign its timestamp to the current time.
3742 * - If receiving a transaction outside a block, assign its timestamp to the
3743 * current time.
3744 * - If receiving a block with a future timestamp, assign all its (not already
3745 * known) transactions' timestamps to the current time.
3746 * - If receiving a block with a past timestamp, before the most recent known
3747 * transaction (that we care about), assign all its (not already known)
3748 * transactions' timestamps to the same timestamp as that most-recent-known
3749 * transaction.
3750 * - If receiving a block with a past timestamp, but after the most recent known
3751 * transaction, assign all its (not already known) transactions' timestamps to
3752 * the block time.
3753 *
3754 * For more information see CWalletTx::nTimeSmart,
3755 * https://bitcointalk.org/?topic=54527, or
3756 * https://github.com/bitcoin/bitcoin/pull/1393.
3757 */
3759 {
3766 // Tolerate times up to the last timestamp in the wallet not more than 5 minutes into the future
3773 }
3780 }
3783 }
3788 }
3790 }
3791 }
3796 LogPrintf("%s: found %s in block %s not in index\n", __func__, wtx.GetHash().ToString(), wtx.hashBlock.ToString());
3797 }
3798 }
3800 }
3802 bool CWallet::AddDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3803 {
3809 }
3812 {
3816 }
3818 bool CWallet::LoadDestData(const CTxDestination &dest, const std::string &key, const std::string &value)
3819 {
3822 }
3824 bool CWallet::GetDestData(const CTxDestination &dest, const std::string &key, std::string *value) const
3825 {
3828 {
3831 {
3835 }
3836 }
3838 }
3841 {
3848 }
3849 }
3850 }
3852 }
3855 {
3856 // needed to restore wallet transaction meta data after -zapwallettxes
3868 }
3869 }
3879 {
3883 }
3885 {
3888 walletFile));
3889 }
3891 InitError(strprintf(_("Error loading %s: Wallet requires newer version of %s"), walletFile, _(PACKAGE_NAME)));
3893 }
3895 {
3896 InitError(strprintf(_("Wallet needed to be rewritten: restart %s to complete"), _(PACKAGE_NAME)));
3898 }
3902 }
3903 }
3906 {
3909 {
3913 }
3914 else
3917 {
3920 }
3922 }
3925 {
3926 // ensure this wallet.dat can only be opened by clients supporting HD with chain split and expects no default key
3928 InitError(strprintf(_("Error creating %s: You can't create non-HD wallets with this version."), walletFile));
3930 }
3933 // generate a new master key
3938 // Top up the keypool
3942 }
3945 }
3949 InitError(strprintf(_("Error loading %s: You can't disable HD on an already existing HD wallet"), walletFile));
3951 }
3953 InitError(strprintf(_("Error loading %s: You can't enable HD on an already existing non-HD wallet"), walletFile));
3955 }
3956 }
3960 // Try to top up keypool. No-op if the wallet is locked.
3965 {
3967 CBlockLocator locator;
3970 }
3976 {
3977 //We can't rescan beyond non-pruned blocks, stop and throw an error
3978 //this might happen if a user uses an old wallet within a pruned node
3979 // or if he ran -disablewallet for a longer time, then decided to re-enable
3981 {
3983 while (block && block->pprev && (block->pprev->nStatus & BLOCK_HAVE_DATA) && block->pprev->nTx > 0 && pindexRescan != block)
3987 InitError(_("Prune: last wallet synchronisation goes beyond pruned data. You need to -reindex (download the whole blockchain again in case of pruned node)"));
3989 }
3990 }
3993 LogPrintf("Rescanning last %i blocks (from block %i)...\n", chainActive.Height() - pindexRescan->nHeight, pindexRescan->nHeight);
3995 // No need to read and scan block if block was created before
3996 // our wallet birthday (as adjusted for block time variability)
3997 while (pindexRescan && walletInstance->nTimeFirstKey && (pindexRescan->GetBlockTime() < (walletInstance->nTimeFirstKey - TIMESTAMP_WINDOW))) {
3999 }
4007 // Restore wallet transaction metadata after -zapwallettxes=1
4009 {
4013 {
4017 {
4028 }
4029 }
4030 }
4031 }
4032 walletInstance->SetBroadcastTransactions(gArgs.GetBoolArg("-walletbroadcast", DEFAULT_WALLETBROADCAST));
4034 {
4039 }
4042 }
4047 {
4048 // Add wallet transactions that aren't already in a block to mempool
4049 // Do this here as mempool requires genesis block to be loaded
4052 // Run a thread to flush wallet periodically
4055 }
4056 }
4059 {
4061 }
4064 {
4067 }
4070 {
4074 }
4077 {
4080 }
4083 {
4084 // Update the tx's hashBlock
4087 // set the position of the transaction in the block
4089 }
4092 {
4098 // Find the block it claims to be in
4108 }
4111 {
4115 }
4119 {
4120 // Quick check to avoid re-setting fInMempool to false
4123 }
4125 // We must set fInMempool here - while it will be re-set to true by the
4126 // entered-mempool callback, if we did not there would be a race where a
4127 // user could call sendmoney in a loop and hit spurious out of funds errors
4128 // because we think that the transaction they just generated's change is
4129 // unavailable as we're not yet aware its in mempool.
4134 }