#include "darksend.h" #include "main.h" #include "init.h" #include "util.h" #include "masternode.h" #include "instantx.h" #include #include #include #include #include #include using namespace std; using namespace boost; /** The main object for accessing darksend */ CDarkSendPool darkSendPool; /** A helper object for signing messages from masternodes */ CDarkSendSigner darkSendSigner; /** The current darksends in progress on the network */ std::vector vecDarksendQueue; /** Keep track of the used masternodes */ std::vector vecMasternodesUsed; // keep track of the scanning errors I've seen map mapDarksendBroadcastTxes; // CActiveMasternode activeMasternode; // count peers we've requested the list from int RequestedMasterNodeList = 0; /* *** BEGIN DARKSEND MAGIC - DARKCOIN ********** Copyright 2014, Darkcoin Developers eduffield - evan@darkcoin.io */ void ProcessMessageDarksend(CNode* pfrom, std::string& strCommand, CDataStream& vRecv) { if (strCommand == "dsf") { //DarkSend Final tx if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if((CNetAddr)darkSendPool.submittedToMasternode != (CNetAddr)pfrom->addr){ //LogPrintf("dsc - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; CTransaction txNew; vRecv >> sessionID >> txNew; if(darkSendPool.sessionID != sessionID){ if (fDebug) LogPrintf("dsf - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } //check to see if input is spent already? (and probably not confirmed) darkSendPool.SignFinalTransaction(txNew, pfrom); } else if (strCommand == "dsc") { //DarkSend Complete if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if((CNetAddr)darkSendPool.submittedToMasternode != (CNetAddr)pfrom->addr){ //LogPrintf("dsc - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; bool error; std::string lastMessage; vRecv >> sessionID >> error >> lastMessage; if(darkSendPool.sessionID != sessionID){ if (fDebug) LogPrintf("dsc - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } darkSendPool.CompletedTransaction(error, lastMessage); } else if (strCommand == "dsa") { //DarkSend Acceptable if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { std::string strError = "incompatible version"; LogPrintf("dsa -- incompatible version! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } if(!fMasterNode){ std::string strError = "not a masternode"; LogPrintf("dsa -- not a masternode! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } int nDenom; CTransaction txCollateral; vRecv >> nDenom >> txCollateral; std::string error = ""; int mn = GetMasternodeByVin(activeMasternode.vin); if(mn == -1){ std::string strError = "Not in the masternode list"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } if(darkSendPool.sessionUsers == 0) { if(vecMasternodes[mn].nLastDsq != 0 && vecMasternodes[mn].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ //LogPrintf("dsa -- last dsq too recent, must wait. %s \n", vecMasternodes[mn].addr.ToString().c_str()); std::string strError = "Last darksend was too recent"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } } if(!darkSendPool.IsCompatibleWithSession(nDenom, txCollateral, error)) { LogPrintf("dsa -- not compatible with existing transactions! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } else { LogPrintf("dsa -- is compatible, please submit! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_ACCEPTED, error); return; } } else if (strCommand == "dsq") { //DarkSend Queue if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } CDarksendQueue dsq; vRecv >> dsq; CService addr; if(!dsq.GetAddress(addr)) return; if(!dsq.CheckSignature()) return; if(dsq.IsExpired()) return; int mn = GetMasternodeByVin(dsq.vin); if(mn == -1) return; // if the queue is ready, submit if we can if(dsq.ready) { if((CNetAddr)darkSendPool.submittedToMasternode != (CNetAddr)addr){ LogPrintf("dsq - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } if (fDebug) LogPrintf("darksend queue is ready - %s\n", addr.ToString().c_str()); darkSendPool.PrepareDarksendDenominate(); } else { BOOST_FOREACH(CDarksendQueue q, vecDarksendQueue){ if(q.vin == dsq.vin) return; } if(fDebug) LogPrintf("dsq last %d last2 %d count %d\n", vecMasternodes[mn].nLastDsq, vecMasternodes[mn].nLastDsq + (int)vecMasternodes.size()/5, darkSendPool.nDsqCount); //don't allow a few nodes to dominate the queuing process if(vecMasternodes[mn].nLastDsq != 0 && vecMasternodes[mn].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ if(fDebug) LogPrintf("dsq -- masternode sending too many dsq messages. %s \n", vecMasternodes[mn].addr.ToString().c_str()); return; } darkSendPool.nDsqCount++; vecMasternodes[mn].nLastDsq = darkSendPool.nDsqCount; vecMasternodes[mn].allowFreeTx = true; if(fDebug) LogPrintf("dsq - new darksend queue object - %s\n", addr.ToString().c_str()); vecDarksendQueue.push_back(dsq); dsq.Relay(); dsq.time = GetTime(); } } else if (strCommand == "dsi") { //DarkSend vIn std::string error = ""; if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { LogPrintf("dsi -- incompatible version! \n"); error = "incompatible version"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!fMasterNode){ LogPrintf("dsi -- not a masternode! \n"); error = "not a masternode"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } std::vector in; int64_t nAmount; CTransaction txCollateral; std::vector out; vRecv >> in >> nAmount >> txCollateral >> out; //do we have enough users in the current session? if(!darkSendPool.IsSessionReady()){ LogPrintf("dsi -- session not complete! \n"); error = "session not complete!"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } //do we have the same denominations as the current session? if(!darkSendPool.IsCompatibleWithEntries(out)) { LogPrintf("dsi -- not compatible with existing transactions! \n"); error = "not compatible with existing transactions"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } //check it like a transaction { int64_t nValueIn = 0; int64_t nValueOut = 0; bool missingTx = false; CValidationState state; CTransaction tx; BOOST_FOREACH(const CTxOut o, out){ nValueOut += o.nValue; tx.vout.push_back(o); if(o.scriptPubKey.size() != 25){ LogPrintf("dsi - non-standard pubkey detected! %s\n", o.scriptPubKey.ToString().c_str()); error = "non-standard pubkey detected"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!o.scriptPubKey.IsNormalPaymentScript()){ LogPrintf("dsi - invalid script! %s\n", o.scriptPubKey.ToString().c_str()); error = "invalid script detected"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } BOOST_FOREACH(const CTxIn i, in){ tx.vin.push_back(i); if(fDebug) LogPrintf("dsi -- tx in %s\n", i.ToString().c_str()); CTransaction tx2; uint256 hash; if(GetTransaction(i.prevout.hash, tx2, hash, true)){ if(tx2.vout.size() > i.prevout.n) { nValueIn += tx2.vout[i.prevout.n].nValue; } } else{ missingTx = true; } } if (nValueIn > DARKSEND_POOL_MAX) { LogPrintf("dsi -- more than darksend pool max! %s\n", tx.ToString().c_str()); error = "more than darksed pool max"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!missingTx){ if (nValueIn-nValueOut > nValueIn*.01) { LogPrintf("dsi -- fees are too high! %s\n", tx.ToString().c_str()); error = "transaction fees are too high"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } else { LogPrintf("dsi -- missing input tx! %s\n", tx.ToString().c_str()); error = "missing input tx information"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!AcceptableInputs(mempool, state, tx)){ LogPrintf("dsi -- transaction not valid! \n"); error = "transaction not valid"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } if(darkSendPool.AddEntry(in, nAmount, txCollateral, out, error)){ pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_ACCEPTED, error); darkSendPool.Check(); RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } else { pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); } } else if (strCommand == "dssub") { //DarkSend Subscribe To if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if(!fMasterNode) return; std::string error = ""; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET, error); return; } else if (strCommand == "dssu") { //DarkSend status update if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if((CNetAddr)darkSendPool.submittedToMasternode != (CNetAddr)pfrom->addr){ //LogPrintf("dssu - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; int state; int entriesCount; int accepted; std::string error; vRecv >> sessionID >> state >> entriesCount >> accepted >> error; if(fDebug) LogPrintf("dssu - state: %i entriesCount: %i accepted: %i error: %s \n", state, entriesCount, accepted, error.c_str()); if((accepted != 1 && accepted != 0) && darkSendPool.sessionID != sessionID){ LogPrintf("dssu - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } darkSendPool.StatusUpdate(state, entriesCount, accepted, error, sessionID); } else if (strCommand == "dss") { //DarkSend Sign Final Tx if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } vector sigs; vRecv >> sigs; bool success = false; int count = 0; LogPrintf(" -- sigs count %d %d\n", (int)sigs.size(), count); BOOST_FOREACH(const CTxIn item, sigs) { if(darkSendPool.AddScriptSig(item)) success = true; if(fDebug) LogPrintf(" -- sigs count %d %d\n", (int)sigs.size(), count); count++; } if(success){ darkSendPool.Check(); RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } } } int randomizeList (int i) { return std::rand()%i;} // Recursively determine the rounds of a given input (How deep is the darksend chain for a given input) int GetInputDarksendRounds(CTxIn in, int rounds) { if(rounds >= 9) return rounds; std::string padding = ""; padding.insert(0, ((rounds+1)*5)+3, ' '); CWalletTx tx; if(pwalletMain->GetTransaction(in.prevout.hash,tx)){ // bounds check if(in.prevout.n >= tx.vout.size()) return -4; if(tx.vout[in.prevout.n].nValue == DARKSEND_FEE) return -3; if(rounds == 0){ //make sure the final output is non-denominate bool found = false; BOOST_FOREACH(int64_t d, darkSendDenominations) if(tx.vout[in.prevout.n].nValue == d) found = true; if(!found) { //LogPrintf(" - NOT DENOM\n"); return -2; } } bool found = false; BOOST_FOREACH(CTxOut out, tx.vout){ BOOST_FOREACH(int64_t d, darkSendDenominations) if(out.nValue == d) found = true; } if(!found) { //LogPrintf(" - NOT FOUND\n"); return rounds; } // find my vin and look that up BOOST_FOREACH(CTxIn in2, tx.vin) { if(pwalletMain->IsMine(in2)){ //LogPrintf("rounds :: %s %s %d NEXT\n", padding.c_str(), in.ToString().c_str(), rounds); int n = GetInputDarksendRounds(in2, rounds+1); if(n != -3) return n; } } } else { //LogPrintf("rounds :: %s %s %d NOTFOUND\n", padding.c_str(), in.ToString().c_str(), rounds); } return rounds-1; } void CDarkSendPool::Reset(){ cachedLastSuccess = 0; vecMasternodesUsed.clear(); UnlockCoins(); SetNull(); } void CDarkSendPool::SetNull(bool clearEverything){ finalTransaction.vin.clear(); finalTransaction.vout.clear(); entries.clear(); state = POOL_STATUS_ACCEPTING_ENTRIES; lastTimeChanged = GetTimeMillis(); entriesCount = 0; lastEntryAccepted = 0; countEntriesAccepted = 0; sessionUsers = 0; sessionDenom = 0; sessionFoundMasternode = false; sessionTries = 0; vecSessionCollateral.clear(); txCollateral = CTransaction(); if(clearEverything){ myEntries.clear(); if(fMasterNode){ sessionID = 1 + (rand() % 999999); } else { sessionID = 0; } } // -- seed random number generator (used for ordering output lists) unsigned int seed = 0; RAND_bytes((unsigned char*)&seed, sizeof(seed)); std::srand(seed); } bool CDarkSendPool::SetCollateralAddress(std::string strAddress){ CBitcoinAddress address; if (!address.SetString(strAddress)) { LogPrintf("CDarkSendPool::SetCollateralAddress - Invalid DarkSend collateral address\n"); return false; } collateralPubKey.SetDestination(address.Get()); return true; } // // Unlock coins after Darksend fails or succeeds // void CDarkSendPool::UnlockCoins(){ BOOST_FOREACH(CTxIn v, lockedCoins) pwalletMain->UnlockCoin(v.prevout); lockedCoins.clear(); } // // Check the Darksend progress and send client updates if a masternode // void CDarkSendPool::Check() { if(fDebug) LogPrintf("CDarkSendPool::Check()\n"); if(fDebug) LogPrintf("CDarkSendPool::Check() - entries count %lu\n", entries.size()); // If entries is full, then move on to the next phase if(state == POOL_STATUS_ACCEPTING_ENTRIES && (int)entries.size() >= GetMaxPoolTransactions()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- ACCEPTING OUTPUTS\n"); UpdateState(POOL_STATUS_FINALIZE_TRANSACTION); } // create the finalized transaction for distribution to the clients if(state == POOL_STATUS_FINALIZE_TRANSACTION && finalTransaction.vin.empty() && finalTransaction.vout.empty()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- FINALIZE TRANSACTIONS\n"); UpdateState(POOL_STATUS_SIGNING); if (fMasterNode) { // make our new transaction CTransaction txNew; for(unsigned int i = 0; i < entries.size(); i++){ BOOST_FOREACH(const CTxOut v, entries[i].vout) txNew.vout.push_back(v); BOOST_FOREACH(const CDarkSendEntryVin s, entries[i].sev) txNew.vin.push_back(s.vin); } // shuffle the outputs for improved anonymity std::random_shuffle ( txNew.vout.begin(), txNew.vout.end(), randomizeList); if(fDebug) LogPrintf("Transaction 1: %s\n", txNew.ToString().c_str()); SignFinalTransaction(txNew, NULL); // request signatures from clients RelayDarkSendFinalTransaction(sessionID, txNew); } } // collect signatures from clients // If we have all of the signatures, try to compile the transaction if(state == POOL_STATUS_SIGNING && SignaturesComplete()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- SIGNING\n"); UpdateState(POOL_STATUS_TRANSMISSION); CWalletTx txNew = CWalletTx(pwalletMain, finalTransaction); LOCK2(cs_main, pwalletMain->cs_wallet); { if (fMasterNode) { //only the main node is master atm if(fDebug) LogPrintf("Transaction 2: %s\n", txNew.ToString().c_str()); // See if the transaction is valid if (!txNew.AcceptToMemoryPool(true)) { LogPrintf("CDarkSendPool::Check() - CommitTransaction : Error: Transaction not valid\n"); SetNull(); pwalletMain->Lock(); // not much we can do in this case UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); RelayDarkSendCompletedTransaction(sessionID, true, "Transaction not valid, please try again"); return; } LogPrintf("CDarkSendPool::Check() -- IS MASTER -- TRANSMITTING DARKSEND\n"); // sign a message int64_t sigTime = GetAdjustedTime(); std::string strMessage = txNew.GetHash().ToString() + boost::lexical_cast(sigTime); std::string strError = ""; std::vector vchSig; CKey key2; CPubKey pubkey2; if(!darkSendSigner.SetKey(strMasterNodePrivKey, strError, key2, pubkey2)) { LogPrintf("Invalid masternodeprivkey: '%s'\n", strError.c_str()); exit(0); } if(!darkSendSigner.SignMessage(strMessage, strError, vchSig, key2)) { LogPrintf("CDarkSendPool::Check() - Sign message failed\n"); return; } if(!darkSendSigner.VerifyMessage(pubkey2, vchSig, strMessage, strError)) { LogPrintf("CDarkSendPool::Check() - Verify message failed\n"); return; } if(!mapDarksendBroadcastTxes.count(txNew.GetHash())){ CDarksendBroadcastTx dstx; dstx.tx = txNew; dstx.vin = activeMasternode.vin; dstx.vchSig = vchSig; dstx.sigTime = sigTime; mapDarksendBroadcastTxes.insert(make_pair(txNew.GetHash(), dstx)); } // Broadcast the transaction to the network txNew.fTimeReceivedIsTxTime = true; txNew.RelayWalletTransaction(); // Tell the clients it was successful RelayDarkSendCompletedTransaction(sessionID, false, "Transaction Created Successfully"); // Randomly charge clients ChargeRandomFees(); } } } // move on to next phase, allow 3 seconds incase the masternode wants to send us anything else if((state == POOL_STATUS_TRANSMISSION && fMasterNode) || (state == POOL_STATUS_SIGNING && completedTransaction) ) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- COMPLETED -- RESETTING \n"); SetNull(true); UnlockCoins(); if(fMasterNode) RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); pwalletMain->Lock(); } // reset if we're here for 10 seconds if((state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) && GetTimeMillis()-lastTimeChanged >= 10000) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- RESETTING MESSAGE \n"); SetNull(true); if(fMasterNode) RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); UnlockCoins(); } } // // Charge clients a fee if they're abusive // // Why bother? Darksend uses collateral to ensure abuse to the process is kept to a minimum. // The submission and signing stages in darksend are completely separate. In the cases where // a client submits a transaction then refused to sign, there must be a cost. Otherwise they // would be able to do this over and over again and bring the mixing to a hault. // // How does this work? Messages to masternodes come in via "dsi", these require a valid collateral // transaction for the client to be able to enter the pool. This transaction is kept by the masternode // until the transaction is either complete or fails. // void CDarkSendPool::ChargeFees(){ if(fMasterNode) { //we don't need to charge collateral for every offence. int offences = 0; int r = rand()%100; if(r > 33) return; if(state == POOL_STATUS_ACCEPTING_ENTRIES){ BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { bool found = false; BOOST_FOREACH(const CDarkSendEntry& v, entries) { if(v.collateral == txCollateral) { found = true; } } // This queue entry didn't send us the promised transaction if(!found){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't send transaction). Found offence.\n"); offences++; } } } if(state == POOL_STATUS_SIGNING) { // who didn't sign? BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev) { if(!s.isSigSet){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't sign). Found offence\n"); offences++; } } } } r = rand()%100; int target = 0; //mostly offending? if(offences >= POOL_MAX_TRANSACTIONS-1 && r > 33) return; //everyone is an offender? That's not right if(offences >= POOL_MAX_TRANSACTIONS) return; //charge one of the offenders randomly if(offences > 1) target = 50; //pick random client to charge r = rand()%100; if(state == POOL_STATUS_ACCEPTING_ENTRIES){ BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { bool found = false; BOOST_FOREACH(const CDarkSendEntry& v, entries) { if(v.collateral == txCollateral) { found = true; } } // This queue entry didn't send us the promised transaction if(!found && r > target){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't send transaction). charging fees.\n"); CWalletTx wtxCollateral = CWalletTx(pwalletMain, txCollateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); return; } } } if(state == POOL_STATUS_SIGNING) { // who didn't sign? BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev) { if(!s.isSigSet && r > target){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't sign). charging fees.\n"); CWalletTx wtxCollateral = CWalletTx(pwalletMain, v.collateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); return; } } } } } } // charge the collateral randomly // - Darksend is completely free, to pay miners we randomly pay the collateral of users. void CDarkSendPool::ChargeRandomFees(){ if(fMasterNode) { int i = 0; BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { int r = rand()%1000; /* Collateral Fee Charges: Being that DarkSend has "no fees" we need to have some kind of cost associated with using it to stop abuse. Otherwise it could serve as an attack vector and allow endless transaction that would bloat Darkcoin and make it unusable. To stop these kinds of attacks 1 in 50 successful transactions are charged. This adds up to a cost of 0.002DRK per transaction on average. */ if(r <= 20) { LogPrintf("CDarkSendPool::ChargeRandomFees -- charging random fees. %u\n", i); CWalletTx wtxCollateral = CWalletTx(pwalletMain, txCollateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeRandomFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); } } } } // // Check for various timeouts (queue objects, darksend, etc) // void CDarkSendPool::CheckTimeout(){ // catching hanging sessions if(!fMasterNode) { if(state == POOL_STATUS_TRANSMISSION) { if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session complete -- Running Check()\n"); Check(); } } // check darksend queue objects for timeouts int c = 0; vector::iterator it; for(it=vecDarksendQueue.begin();it *vec = &myEntries; if(fMasterNode) vec = &entries; // check for a timeout and reset if needed vector::iterator it2; for(it2=vec->begin();it2end();it2++){ if((*it2).IsExpired()){ if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() : Removing expired entry - %d\n", c); vec->erase(it2); if(entries.size() == 0 && myEntries.size() == 0){ SetNull(true); UnlockCoins(); } if(fMasterNode){ RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } break; } c++; } if(GetTimeMillis()-lastTimeChanged >= (DARKSEND_QUEUE_TIMEOUT*1000)+addLagTime){ lastTimeChanged = GetTimeMillis(); ChargeFees(); // reset session information for the queue query stage (before entering a masternode, clients will send a queue request to make sure they're compatible denomination wise) sessionUsers = 0; sessionDenom = 0; sessionFoundMasternode = false; sessionTries = 0; vecSessionCollateral.clear(); UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); } } else if(GetTimeMillis()-lastTimeChanged >= (DARKSEND_QUEUE_TIMEOUT*1000)+addLagTime){ if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session timed out (30s) -- resetting\n"); SetNull(); UnlockCoins(); UpdateState(POOL_STATUS_ERROR); lastMessage = "Session timed out (30), please resubmit"; } if(state == POOL_STATUS_SIGNING && GetTimeMillis()-lastTimeChanged >= (DARKSEND_SIGNING_TIMEOUT*1000)+addLagTime ) { if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session timed out -- restting\n"); ChargeFees(); SetNull(); UnlockCoins(); //add my transactions to the new session UpdateState(POOL_STATUS_ERROR); lastMessage = "Signing timed out, please resubmit"; } } // check to see if the signature is valid bool CDarkSendPool::SignatureValid(const CScript& newSig, const CTxIn& newVin){ CTransaction txNew; txNew.vin.clear(); txNew.vout.clear(); int found = -1; CScript sigPubKey = CScript(); unsigned int i = 0; BOOST_FOREACH(CDarkSendEntry e, entries) { BOOST_FOREACH(const CTxOut out, e.vout) txNew.vout.push_back(out); BOOST_FOREACH(const CDarkSendEntryVin s, e.sev){ txNew.vin.push_back(s.vin); if(s.vin == newVin){ found = i; sigPubKey = s.vin.prevPubKey; } i++; } } if(found >= 0){ //might have to do this one input at a time? int n = found; txNew.vin[n].scriptSig = newSig; if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Sign with sig %s\n", newSig.ToString().substr(0,24).c_str()); if (!VerifyScript(txNew.vin[n].scriptSig, sigPubKey, txNew, n, SCRIPT_VERIFY_P2SH | SCRIPT_VERIFY_STRICTENC, 0)){ if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Signing - Error signing input %u\n", n); return false; } } if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Signing - Succesfully signed input\n"); return true; } // check to make sure the collateral provided by the client is valid bool CDarkSendPool::IsCollateralValid(const CTransaction& txCollateral){ if(txCollateral.vout.size() < 1) return false; if(txCollateral.nLockTime != 0) return false; int64_t nValueIn = 0; int64_t nValueOut = 0; bool missingTx = false; BOOST_FOREACH(const CTxOut o, txCollateral.vout){ nValueOut += o.nValue; if(!o.scriptPubKey.IsNormalPaymentScript()){ LogPrintf ("CDarkSendPool::IsCollateralValid - Invalid Script %s\n", txCollateral.ToString().c_str()); return false; } } BOOST_FOREACH(const CTxIn i, txCollateral.vin){ CTransaction tx2; uint256 hash; if(GetTransaction(i.prevout.hash, tx2, hash, true)){ if(tx2.vout.size() > i.prevout.n) { nValueIn += tx2.vout[i.prevout.n].nValue; } } else{ missingTx = true; } } if(missingTx){ if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - Unknown inputs in collateral transaction - %s\n", txCollateral.ToString().c_str()); return false; } //collateral transactions are required to pay out DARKSEND_COLLATERAL as a fee to the miners if(nValueIn-nValueOut < DARKSEND_COLLATERAL) { if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - did not include enough fees in transaction %d\n%s\n", nValueOut-nValueIn, txCollateral.ToString().c_str()); return false; } if(fDebug) LogPrintf("CDarkSendPool::IsCollateralValid %s\n", txCollateral.ToString().c_str()); CValidationState state; if(!AcceptableInputs(mempool, state, txCollateral)){ if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - didn't pass IsAcceptable\n"); return false; } return true; } // // Add a clients transaction to the pool // bool CDarkSendPool::AddEntry(const std::vector& newInput, const int64_t& nAmount, const CTransaction& txCollateral, const std::vector& newOutput, std::string& error){ if (!fMasterNode) return false; BOOST_FOREACH(CTxIn in, newInput) { if (in.prevout.IsNull() || nAmount < 0) { if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - input not valid!\n"); error = "input not valid"; sessionUsers--; return false; } } if (!IsCollateralValid(txCollateral)){ if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - collateral not valid!\n"); error = "collateral not valid"; sessionUsers--; return false; } if((int)entries.size() >= GetMaxPoolTransactions()){ if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - entries is full!\n"); error = "entries is full"; sessionUsers--; return false; } BOOST_FOREACH(CTxIn in, newInput) { if(fDebug) LogPrintf("looking for vin -- %s\n", in.ToString().c_str()); BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(s.vin == in) { if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - found in vin\n"); error = "already have that vin"; sessionUsers--; return false; } } } } if(state == POOL_STATUS_ACCEPTING_ENTRIES) { CDarkSendEntry v; v.Add(newInput, nAmount, txCollateral, newOutput); entries.push_back(v); if(fDebug) LogPrintf("CDarkSendPool::AddEntry -- adding %s\n", newInput[0].ToString().c_str()); error = ""; return true; } if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - can't accept new entry, wrong state!\n"); error = "wrong state"; sessionUsers--; return false; } bool CDarkSendPool::AddScriptSig(const CTxIn& newVin){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- new sig %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(s.vin.scriptSig == newVin.scriptSig) { LogPrintf("CDarkSendPool::AddScriptSig - already exists \n"); return false; } } } if(!SignatureValid(newVin.scriptSig, newVin)){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig - Invalid Sig\n"); return false; } if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- sig %s\n", newVin.ToString().c_str()); if(state == POOL_STATUS_SIGNING) { BOOST_FOREACH(CTxIn& vin, finalTransaction.vin){ if(newVin.prevout == vin.prevout && vin.nSequence == newVin.nSequence){ vin.scriptSig = newVin.scriptSig; vin.prevPubKey = newVin.prevPubKey; if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- adding to finalTransaction %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); } } for(unsigned int i = 0; i < entries.size(); i++){ if(entries[i].AddSig(newVin)){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- adding %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); return true; } } } LogPrintf("CDarkSendPool::AddScriptSig -- Couldn't set sig!\n" ); return false; } // check to make sure everything is signed bool CDarkSendPool::SignaturesComplete(){ BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(!s.isSigSet) return false; } } return true; } // // Execute a darksend denomination via a masternode. // This is only ran from clients // void CDarkSendPool::SendDarksendDenominate(std::vector& vin, std::vector& vout, int64_t amount){ if(darkSendPool.txCollateral == CTransaction()){ LogPrintf ("CDarksendPool:SendDarksendDenominate() - Darksend collateral not set"); return; } // lock the funds we're going to use BOOST_FOREACH(CTxIn in, txCollateral.vin) lockedCoins.push_back(in); BOOST_FOREACH(CTxIn in, vin) lockedCoins.push_back(in); //BOOST_FOREACH(CTxOut o, vout) // LogPrintf(" vout - %s\n", o.ToString().c_str()); // we should already be connected to a masternode if(!sessionFoundMasternode){ LogPrintf("CDarkSendPool::SendDarksendDenominate() - No masternode has been selected yet.\n"); UnlockCoins(); SetNull(true); return; } if (!CheckDiskSpace()) return; if(fMasterNode) { LogPrintf("CDarkSendPool::SendDarksendDenominate() - DarkSend from a masternode is not supported currently.\n"); return; } UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); LogPrintf("CDarkSendPool::SendDarksendDenominate() - Added transaction to pool.\n"); ClearLastMessage(); //check it against the memory pool to make sure it's valid { int64_t nValueOut = 0; CValidationState state; CTransaction tx; BOOST_FOREACH(const CTxOut o, vout){ nValueOut += o.nValue; tx.vout.push_back(o); } BOOST_FOREACH(const CTxIn i, vin){ tx.vin.push_back(i); if(fDebug) LogPrintf("dsi -- tx in %s\n", i.ToString().c_str()); } if(!AcceptableInputs(mempool, state, tx)){ LogPrintf("dsi -- transaction not valid! %s \n", tx.ToString().c_str()); return; } } // store our entry for later use CDarkSendEntry e; e.Add(vin, amount, txCollateral, vout); myEntries.push_back(e); // relay our entry to the master node RelayDarkSendIn(vin, amount, txCollateral, vout); Check(); } // Incoming message from masternode updating the progress of darksend // newAccepted: -1 mean's it'n not a "transaction accepted/not accepted" message, just a standard update // 0 means transaction was not accepted // 1 means transaction was accepted bool CDarkSendPool::StatusUpdate(int newState, int newEntriesCount, int newAccepted, std::string& error, int newSessionID){ if(fMasterNode) return false; if(state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) return false; UpdateState(newState); entriesCount = newEntriesCount; if(error.size() > 0) strAutoDenomResult = "Masternode: " + error; if(newAccepted != -1) { lastEntryAccepted = newAccepted; countEntriesAccepted += newAccepted; if(newAccepted == 0){ UpdateState(POOL_STATUS_ERROR); lastMessage = error; } if(newAccepted == 1) { sessionID = newSessionID; LogPrintf("CDarkSendPool::StatusUpdate - set sessionID to %d\n", sessionID); sessionFoundMasternode = true; } } if(newState == POOL_STATUS_ACCEPTING_ENTRIES){ if(newAccepted == 1){ LogPrintf("CDarkSendPool::StatusUpdate - entry accepted! \n"); sessionFoundMasternode = true; //wait for other users. Masternode will report when ready UpdateState(POOL_STATUS_QUEUE); } else if (newAccepted == 0 && sessionID == 0 && !sessionFoundMasternode) { LogPrintf("CDarkSendPool::StatusUpdate - entry not accepted by masternode \n"); UnlockCoins(); UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); DoAutomaticDenominating(); //try another masternode } if(sessionFoundMasternode) return true; } return true; } // // After we receive the finalized transaction from the masternode, we must // check it to make sure it's what we want, then sign it if we agree. // If we refuse to sign, it's possible we'll be charged collateral // bool CDarkSendPool::SignFinalTransaction(CTransaction& finalTransactionNew, CNode* node){ if(fDebug) LogPrintf("CDarkSendPool::AddFinalTransaction - Got Finalized Transaction\n"); if(!finalTransaction.vin.empty()){ LogPrintf("CDarkSendPool::AddFinalTransaction - Rejected Final Transaction!\n"); return false; } finalTransaction = finalTransactionNew; LogPrintf("CDarkSendPool::SignFinalTransaction %s\n", finalTransaction.ToString().c_str()); vector sigs; //make sure my inputs/outputs are present, otherwise refuse to sign BOOST_FOREACH(const CDarkSendEntry e, myEntries) { BOOST_FOREACH(const CDarkSendEntryVin s, e.sev) { /* Sign my transaction and all outputs */ int mine = -1; CScript prevPubKey = CScript(); CTxIn vin = CTxIn(); for(unsigned int i = 0; i < finalTransaction.vin.size(); i++){ if(finalTransaction.vin[i] == s.vin){ mine = i; prevPubKey = s.vin.prevPubKey; vin = s.vin; } } if(mine >= 0){ //might have to do this one input at a time? int foundOutputs = 0; int64_t nValue1 = 0; int64_t nValue2 = 0; for(unsigned int i = 0; i < finalTransaction.vout.size(); i++){ BOOST_FOREACH(const CTxOut o, e.vout) { if(finalTransaction.vout[i] == o){ foundOutputs++; nValue1 += finalTransaction.vout[i].nValue; } } } BOOST_FOREACH(const CTxOut o, e.vout) nValue2 += o.nValue; int targetOuputs = e.vout.size(); if(foundOutputs < targetOuputs || nValue1 != nValue2) { // in this case, something went wrong and we'll refuse to sign. It's possible we'll be charged collateral. But that's // better then signing if the transaction doesn't look like what we wanted. LogPrintf("CDarkSendPool::Sign - My entries are not correct! Refusing to sign. %d entries %d target. \n", foundOutputs, targetOuputs); return false; } if(fDebug) LogPrintf("CDarkSendPool::Sign - Signing my input %i\n", mine); if(!SignSignature(*pwalletMain, prevPubKey, finalTransaction, mine, int(SIGHASH_ALL|SIGHASH_ANYONECANPAY))) { // changes scriptSig if(fDebug) LogPrintf("CDarkSendPool::Sign - Unable to sign my own transaction! \n"); // not sure what to do here, it will timeout...? } sigs.push_back(finalTransaction.vin[mine]); if(fDebug) LogPrintf(" -- dss %d %d %s\n", mine, (int)sigs.size(), finalTransaction.vin[mine].scriptSig.ToString().c_str()); } } if(fDebug) LogPrintf("CDarkSendPool::Sign - txNew:\n%s", finalTransaction.ToString().c_str()); } // push all of our signatures to the masternode if(sigs.size() > 0 && node != NULL) node->PushMessage("dss", sigs); return true; } bool CDarkSendPool::GetBlockHash(uint256& hash, int nBlockHeight) { if(unitTest){ hash.SetHex("00000000001432b4910722303bff579d0445fa23325bdc34538bdb226718ba79"); return true; } const CBlockIndex *BlockLastSolved = chainActive.Tip(); const CBlockIndex *BlockReading = chainActive.Tip(); if (BlockLastSolved == NULL || BlockLastSolved->nHeight == 0) { return false; } //printf(" nBlockHeight2 %d %d\n", nBlockHeight, chainActive.Tip()->nHeight+1); for (unsigned int i = 1; BlockReading && BlockReading->nHeight > 0; i++) { if(BlockReading->nHeight == nBlockHeight) { hash = BlockReading->GetBlockHash(); return true; } if (BlockReading->pprev == NULL) { assert(BlockReading); break; } BlockReading = BlockReading->pprev; } return false; } //Get the last hash that matches the modulus given. Processed in reverse order bool CDarkSendPool::GetLastValidBlockHash(uint256& hash, int mod, int nBlockHeight) { if(unitTest){ hash.SetHex("00000000001432b4910722303bff579d0445fa23325bdc34538bdb226718ba79"); return true; } const CBlockIndex *BlockLastSolved = chainActive.Tip(); const CBlockIndex *BlockReading = chainActive.Tip(); if (BlockLastSolved == NULL || BlockLastSolved->nHeight == 0) { return false; } int nBlocksAgo = 0; if(nBlockHeight > 0) nBlocksAgo = (chainActive.Tip()->nHeight+1)-nBlockHeight; assert(nBlocksAgo >= 0); int n = 0; for (unsigned int i = 1; BlockReading && BlockReading->nHeight > 0; i++) { if(BlockReading->nHeight % mod == 0) { if(n >= nBlocksAgo){ hash = BlockReading->GetBlockHash(); return true; } n++; } if (BlockReading->pprev == NULL) { assert(BlockReading); break; } BlockReading = BlockReading->pprev; } return false; } void CDarkSendPool::NewBlock() { if(fDebug) LogPrintf("CDarkSendPool::NewBlock \n"); if(IsInitialBlockDownload()) return; masternodePayments.ProcessBlock(chainActive.Tip()->nHeight+10); if(!fEnableDarksend) return; if(!fMasterNode){ //denominate all non-denominated inputs every 25 minutes. if(chainActive.Tip()->nHeight % 10 == 0) UnlockCoins(); ProcessMasternodeConnections(); } } // Darksend transaction was completed (failed or successed) void CDarkSendPool::CompletedTransaction(bool error, std::string lastMessageNew) { if(fMasterNode) return; if(error){ LogPrintf("CompletedTransaction -- error \n"); UpdateState(POOL_STATUS_ERROR); } else { LogPrintf("CompletedTransaction -- success \n"); UpdateState(POOL_STATUS_SUCCESS); myEntries.clear(); // To avoid race conditions, we'll only let DS run once per block cachedLastSuccess = chainActive.Tip()->nHeight; splitUpInARow = 0; } lastMessage = lastMessageNew; completedTransaction = true; Check(); UnlockCoins(); } void CDarkSendPool::ClearLastMessage() { lastMessage = ""; } // // Passively run Darksend in the background to anonymize funds based on the given configuration. // // This does NOT run by default for daemons, only for QT. // bool CDarkSendPool::DoAutomaticDenominating(bool fDryRun, bool ready) { if(fMasterNode) return false; if(state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) return false; if(chainActive.Tip()->nHeight-cachedLastSuccess < minBlockSpacing) { LogPrintf("CDarkSendPool::DoAutomaticDenominating - Last successful darksend was too recent\n"); strAutoDenomResult = "Last successful darksend was too recent"; return false; } if(!fEnableDarksend) { if(fDebug) LogPrintf("CDarkSendPool::DoAutomaticDenominating - Darksend is disabled\n"); strAutoDenomResult = "Darksend is disabled"; return false; } if (!fDryRun && pwalletMain->IsLocked()){ strAutoDenomResult = "Wallet is locked"; return false; } if(darkSendPool.GetState() != POOL_STATUS_ERROR && darkSendPool.GetState() != POOL_STATUS_SUCCESS){ if(darkSendPool.GetMyTransactionCount() > 0){ return true; } } if(vecMasternodes.size() == 0){ if(fDebug) LogPrintf("CDarkSendPool::DoAutomaticDenominating - No masternodes detected\n"); strAutoDenomResult = "No masternodes detected"; return false; } sessionMinRounds = -2; //non denominated funds are rounds of less than 0 sessionMaxRounds = 2; // ** find the coins we'll use std::vector vCoins; int64_t nValueMin = 0.01*COIN; int64_t nValueMax = DARKSEND_POOL_MAX; int64_t nValueIn = 0; int maxAmount = DARKSEND_POOL_MAX/COIN; int64_t lowestDenom = COIN*0.1; // If we can find only denominated funds, switch to only-denom mode if (!pwalletMain->SelectCoinsDark(nValueMin, maxAmount*COIN, vCoins, nValueIn, -2, 2) && pwalletMain->SelectCoinsDark(nValueMin, maxAmount*COIN, vCoins, nValueIn, 0, nDarksendRounds)) { sessionMinRounds = 0; sessionMaxRounds = nDarksendRounds; } //if we're set to less than a thousand, don't submit for than that to the pool if(nAnonymizeDarkcoinAmount < DARKSEND_POOL_MAX/COIN) maxAmount = nAnonymizeDarkcoinAmount; int64_t balanceNeedsAnonymized = pwalletMain->GetBalance() - pwalletMain->GetAnonymizedBalance(); if(balanceNeedsAnonymized > maxAmount*COIN) balanceNeedsAnonymized= maxAmount*COIN; if(balanceNeedsAnonymized < lowestDenom || (vecDisabledDenominations.size() > 0 && balanceNeedsAnonymized < COIN*10)){ LogPrintf("DoAutomaticDenominating : No funds detected in need of denominating \n"); strAutoDenomResult = "No funds detected in need of denominating"; return false; } // if the balance is more the pool max, take the pool max if(balanceNeedsAnonymized > nValueMax) { balanceNeedsAnonymized = nValueMax; } // select coins that should be given to the pool if (!pwalletMain->SelectCoinsDark(nValueMin, maxAmount*COIN, vCoins, nValueIn, sessionMinRounds, sessionMaxRounds)) { nValueIn = 0; vCoins.clear(); // look for inputs larger than the max amount, if we find anything we need to split it up if (pwalletMain->SelectCoinsDark(maxAmount*COIN, 9999999*COIN, vCoins, nValueIn, sessionMinRounds, sessionMaxRounds)) { if(!fDryRun) SplitUpMoney(); return true; } LogPrintf("DoAutomaticDenominating : No funds detected in need of denominating (2)\n"); strAutoDenomResult = "No funds detected in need of denominating (2)"; return false; } // the darksend pool can only take 2.5DRK minimum if(nValueIn < lowestDenom || (vecDisabledDenominations.size() > 0 && nValueIn < COIN*10) ){ //simply look for non-denominated coins if (pwalletMain->SelectCoinsDark(maxAmount*COIN, 9999999*COIN, vCoins, nValueIn, sessionMinRounds, sessionMaxRounds)) { if(!fDryRun) SplitUpMoney(); return true; } LogPrintf("DoAutomaticDenominating : Too little to denominate \n"); strAutoDenomResult = "Too little to denominate"; return false; } //check to see if we have the fee sized inputs, it requires these if(!pwalletMain->HasDarksendFeeInputs()){ if(!fDryRun) SplitUpMoney(true); return true; } if(fDryRun) return true; if(vecDisabledDenominations.size() == 0){ //if we have 20x 0.1DRk and 1DRK inputs, we can start just anonymizing 10DRK inputs. if(pwalletMain->CountInputsWithAmount((1 * COIN)+1) >= 20 && pwalletMain->CountInputsWithAmount((.1 * COIN)+1) >= 20){ vecDisabledDenominations.push_back((1 * COIN)+1); vecDisabledDenominations.push_back((.1 * COIN)+1); } } // initial phase, find a masternode if(!sessionFoundMasternode){ int nUseQueue = rand()%100; sessionTotalValue = pwalletMain->GetTotalValue(vCoins); //randomize the amounts we mix if(sessionTotalValue > maxAmount*COIN) sessionTotalValue = maxAmount*COIN; double fDarkcoinSubmitted = (sessionTotalValue / CENT); LogPrintf("Submitting Darksend for %f DRK CENT\n", fDarkcoinSubmitted); if(pwalletMain->GetDenominatedBalance(true, true) > 0){ //get denominated unconfirmed inputs LogPrintf("DoAutomaticDenominating -- Found unconfirmed denominated outputs, will wait till they confirm to continue.\n"); strAutoDenomResult = "Found unconfirmed denominated outputs, will wait till they confirm to continue."; return false; } //don't use the queues all of the time for mixing if(nUseQueue > 33){ // Look through the queues and see if anything matches BOOST_FOREACH(CDarksendQueue& dsq, vecDarksendQueue){ CService addr; if(dsq.time == 0) continue; if(!dsq.GetAddress(addr)) continue; if(dsq.IsExpired()) continue; int protocolVersion; if(!dsq.GetProtocolVersion(protocolVersion)) continue; if(protocolVersion < MIN_PEER_PROTO_VERSION) continue; //don't reuse masternodes BOOST_FOREACH(CTxIn usedVin, vecMasternodesUsed){ if(dsq.vin == usedVin) { continue; } } // Try to match their denominations if possible if (!pwalletMain->SelectCoinsByDenominations(dsq.nDenom, nValueMin, maxAmount*COIN, vCoins, nValueIn, -2, 2)){ if (!pwalletMain->SelectCoinsByDenominations(dsq.nDenom, nValueMin, maxAmount*COIN, vCoins, nValueIn, 2, nDarksendRounds)){ LogPrintf("DoAutomaticDenominating - Couldn't match denominations\n"); continue; } sessionMinRounds = 2; sessionMaxRounds = nDarksendRounds; } else { sessionMinRounds = -2; sessionMaxRounds = 2; } // connect to masternode and submit the queue request if(ConnectNode((CAddress)addr, NULL, true)){ submittedToMasternode = addr; LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if((CNetAddr)pnode->addr != (CNetAddr)submittedToMasternode) continue; std::string strReason; if(txCollateral == CTransaction()){ if(!pwalletMain->CreateCollateralTransaction(txCollateral, strReason)){ LogPrintf("DoAutomaticDenominating -- dsa error:%s\n", strReason.c_str()); return false; } } vecMasternodesUsed.push_back(dsq.vin); sessionDenom = dsq.nDenom; pnode->PushMessage("dsa", sessionDenom, txCollateral); LogPrintf("DoAutomaticDenominating --- connected (from queue), sending dsa for %d %d - %s\n", sessionDenom, GetDenominationsByAmount(sessionTotalValue), pnode->addr.ToString().c_str()); strAutoDenomResult = ""; return true; } } else { LogPrintf("DoAutomaticDenominating --- error connecting \n"); strAutoDenomResult = "Error connecting to masternode"; return DoAutomaticDenominating(); } dsq.time = 0; //remove node } } // otherwise, try one randomly if(sessionTries++ < 10){ //pick a random masternode to use int max_value = vecMasternodes.size(); if(max_value <= 0) return false; int i = (rand() % max_value); //don't reuse masternodes BOOST_FOREACH(CTxIn usedVin, vecMasternodesUsed) { if(vecMasternodes[i].vin == usedVin){ return DoAutomaticDenominating(); } } if(vecMasternodes[i].protocolVersion < MIN_PEER_PROTO_VERSION) { return DoAutomaticDenominating(); } if(vecMasternodes[i].nLastDsq != 0 && vecMasternodes[i].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ return DoAutomaticDenominating(); } lastTimeChanged = GetTimeMillis(); LogPrintf("DoAutomaticDenominating -- attempt %d connection to masternode %s\n", sessionTries, vecMasternodes[i].addr.ToString().c_str()); if(ConnectNode((CAddress)vecMasternodes[i].addr, NULL, true)){ submittedToMasternode = vecMasternodes[i].addr; LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if((CNetAddr)pnode->addr != (CNetAddr)vecMasternodes[i].addr) continue; std::string strReason; if(txCollateral == CTransaction()){ if(!pwalletMain->CreateCollateralTransaction(txCollateral, strReason)){ LogPrintf("DoAutomaticDenominating -- dsa error:%s\n", strReason.c_str()); return false; } } vecMasternodesUsed.push_back(vecMasternodes[i].vin); if(sessionMinRounds >= 0){ //use same denominations std::vector vecAmounts; pwalletMain->ConvertList(vCoins, vecAmounts); sessionDenom = GetDenominationsByAmounts(vecAmounts); } else { //use all possible denominations sessionDenom = GetDenominationsByAmount(sessionTotalValue); } pnode->PushMessage("dsa", sessionDenom, txCollateral); LogPrintf("DoAutomaticDenominating --- connected, sending dsa for %d - denom %d\n", sessionDenom, GetDenominationsByAmount(sessionTotalValue)); strAutoDenomResult = ""; return true; } } else { LogPrintf("DoAutomaticDenominating --- error connecting \n"); return DoAutomaticDenominating(); } } else { strAutoDenomResult = "No compatible masternode found"; return false; } } strAutoDenomResult = ""; if(!ready) return true; if(sessionDenom == 0) return true; return false; } bool CDarkSendPool::PrepareDarksendDenominate() { // Submit transaction to the pool if we get here, use sessionDenom so we use the same amount of money std::string strError = pwalletMain->PrepareDarksendDenominate(sessionMinRounds, sessionMaxRounds); LogPrintf("DoAutomaticDenominating : Running darksend denominate. Return '%s'\n", strError.c_str()); if(strError == "") return true; strAutoDenomResult = strError; LogPrintf("DoAutomaticDenominating : Error running denominate, %s\n", strError.c_str()); return false; } bool CDarkSendPool::SendRandomPaymentToSelf() { int64_t nBalance = pwalletMain->GetBalance(); int64_t nPayment = (nBalance*0.35) + (rand() % nBalance); if(nPayment > nBalance) nPayment = nBalance-(0.1*COIN); // make our change address CReserveKey reservekey(pwalletMain); CScript scriptChange; CPubKey vchPubKey; assert(reservekey.GetReservedKey(vchPubKey)); // should never fail, as we just unlocked scriptChange.SetDestination(vchPubKey.GetID()); CWalletTx wtx; int64_t nFeeRet = 0; std::string strFail = ""; vector< pair > vecSend; // ****** Add fees ************ / vecSend.push_back(make_pair(scriptChange, nPayment)); CCoinControl *coinControl=NULL; bool success = pwalletMain->CreateTransaction(vecSend, wtx, reservekey, nFeeRet, strFail, coinControl, ONLY_DENOMINATED); if(!success){ LogPrintf("SendRandomPaymentToSelf: Error - %s\n", strFail.c_str()); return false; } pwalletMain->CommitTransaction(wtx, reservekey); LogPrintf("SendRandomPaymentToSelf Success: tx %s\n", wtx.GetHash().GetHex().c_str()); return true; } // Split up large inputs or create fee sized inputs bool CDarkSendPool::SplitUpMoney(bool justCollateral) { if((chainActive.Tip()->nHeight - lastSplitUpBlock) < 10){ LogPrintf("SplitUpMoney - Too soon to split up again\n"); return false; } if(splitUpInARow >= 2){ LogPrintf("Error: Darksend SplitUpMoney was called multiple times in a row. This should not happen. Please submit a detailed explanation of the steps it took to create this error and submit to evan@darkcoin.io. \n"); fEnableDarksend = false; return false; } int64_t nTotalBalance = pwalletMain->GetDenominatedBalance(false); if(justCollateral && nTotalBalance > 1*COIN) nTotalBalance = 1*COIN; int64_t nTotalOut = 0; lastSplitUpBlock = chainActive.Tip()->nHeight; LogPrintf("DoAutomaticDenominating: Split up large input (justCollateral %d):\n", justCollateral); LogPrintf(" -- nTotalBalance %d\n", nTotalBalance); LogPrintf(" -- denom %d \n", pwalletMain->GetDenominatedBalance(false)); // make our change address CReserveKey reservekey(pwalletMain); CScript scriptChange; CPubKey vchPubKey; assert(reservekey.GetReservedKey(vchPubKey)); // should never fail, as we just unlocked scriptChange.SetDestination(vchPubKey.GetID()); CWalletTx wtx; int64_t nFeeRet = 0; std::string strFail = ""; vector< pair > vecSend; int64_t a = 1*COIN; // ****** Add fees ************ / vecSend.push_back(make_pair(scriptChange, (DARKSEND_COLLATERAL*2)+DARKSEND_FEE)); nTotalOut += (DARKSEND_COLLATERAL*2)+DARKSEND_FEE; vecSend.push_back(make_pair(scriptChange, (DARKSEND_COLLATERAL*2)+DARKSEND_FEE)); nTotalOut += (DARKSEND_COLLATERAL*2)+DARKSEND_FEE; // ****** Add outputs in bases of two from 1 darkcoin *** / if(!justCollateral){ bool continuing = true; while(continuing){ if(nTotalOut + a < nTotalBalance){ //LogPrintf(" nTotalOut %d, added %d\n", nTotalOut, a); vecSend.push_back(make_pair(scriptChange, a)); nTotalOut += a; } else { continuing = false; } a = a * 2; } } if((justCollateral && nTotalOut <= 0.1*COIN) || vecSend.size() < 1) { LogPrintf("SplitUpMoney: Not enough outputs to make a transaction\n"); return false; } if((!justCollateral && nTotalOut <= 1*COIN) || vecSend.size() < 1){ LogPrintf("SplitUpMoney: Not enough outputs to make a transaction\n"); return false; } CCoinControl *coinControl=NULL; bool success = pwalletMain->CreateTransaction(vecSend, wtx, reservekey, nFeeRet, strFail, coinControl, justCollateral ? ALL_COINS : ONLY_NONDENOMINATED); if(!success){ LogPrintf("SplitUpMoney: Error - %s\n", strFail.c_str()); return false; } pwalletMain->CommitTransaction(wtx, reservekey); LogPrintf("SplitUpMoney Success: tx %s\n", wtx.GetHash().GetHex().c_str()); splitUpInARow++; return true; } bool CDarkSendPool::IsCompatibleWithEntries(std::vector vout) { BOOST_FOREACH(const CDarkSendEntry v, entries) { LogPrintf(" IsCompatibleWithEntries %d %d\n", GetDenominations(vout), GetDenominations(v.vout)); /* BOOST_FOREACH(CTxOut o1, vout) LogPrintf(" vout 1 - %s\n", o1.ToString().c_str()); BOOST_FOREACH(CTxOut o2, v.vout) LogPrintf(" vout 2 - %s\n", o2.ToString().c_str()); */ if(GetDenominations(vout) != GetDenominations(v.vout)) return false; } return true; } bool CDarkSendPool::IsCompatibleWithSession(int64_t nDenom, CTransaction txCollateral, std::string& strReason) { LogPrintf("CDarkSendPool::IsCompatibleWithSession - sessionDenom %d sessionUsers %d\n", sessionDenom, sessionUsers); if (!unitTest && !IsCollateralValid(txCollateral)){ if(fDebug) LogPrintf ("CDarkSendPool::IsCompatibleWithSession - collateral not valid!\n"); strReason = "collateral not valid"; return false; } if(sessionUsers < 0) sessionUsers = 0; if(sessionUsers == 0) { sessionDenom = nDenom; sessionUsers++; lastTimeChanged = GetTimeMillis(); entries.clear(); if(!unitTest){ //broadcast that I'm accepting entries, only if it's the first entry though CDarksendQueue dsq; dsq.nDenom = nDenom; dsq.vin = activeMasternode.vin; dsq.time = GetTime(); dsq.Sign(); dsq.Relay(); } UpdateState(POOL_STATUS_QUEUE); vecSessionCollateral.push_back(txCollateral); return true; } if((state != POOL_STATUS_ACCEPTING_ENTRIES && state != POOL_STATUS_QUEUE) || sessionUsers >= GetMaxPoolTransactions()){ if((state != POOL_STATUS_ACCEPTING_ENTRIES && state != POOL_STATUS_QUEUE)) strReason = "incompatible mode"; if(sessionUsers >= GetMaxPoolTransactions()) strReason = "masternode queue is full"; LogPrintf("CDarkSendPool::IsCompatibleWithSession - incompatible mode, return false %d %d\n", state != POOL_STATUS_ACCEPTING_ENTRIES, sessionUsers >= GetMaxPoolTransactions()); return false; } if(nDenom != sessionDenom) { strReason = "no matching denominations found for mixing"; return false; } LogPrintf("CDarkSendPool::IsCompatibleWithSession - compatible\n"); sessionUsers++; lastTimeChanged = GetTimeMillis(); vecSessionCollateral.push_back(txCollateral); return true; } //create a nice string to show the denominations void CDarkSendPool::GetDenominationsToString(int nDenom, std::string& strDenom){ // Function returns as follows: // // bit 0 - 100DRK+1 ( bit on if present ) // bit 1 - 10DRK+1 // bit 2 - 1DRK+1 // bit 3 - .1DRK+1 // bit 3 - non-denom strDenom = ""; if(nDenom & (1 << 0)) { if(strDenom.size() > 0) strDenom += "+"; strDenom += "100"; } if(nDenom & (1 << 1)) { if(strDenom.size() > 0) strDenom += "+"; strDenom += "10"; } if(nDenom & (1 << 2)) { if(strDenom.size() > 0) strDenom += "+"; strDenom += "1"; } if(nDenom & (1 << 3)) { if(strDenom.size() > 0) strDenom += "+"; strDenom += "0.1"; } if(nDenom & (1 << 4)) { if(strDenom.size() > 0) strDenom += "+"; strDenom += "ND"; } } // return a bitshifted integer representing the denominations in this list int CDarkSendPool::GetDenominations(const std::vector& vout){ std::vector > denomUsed; // make a list of denominations, with zero uses BOOST_FOREACH(int64_t d, darkSendDenominations) denomUsed.push_back(make_pair(d, 0)); // look for denominations and update uses to 1 bool found_non_denom = false; BOOST_FOREACH(CTxOut out, vout){ bool found = false; BOOST_FOREACH (PAIRTYPE(int64_t, int)& s, denomUsed){ if (out.nValue == s.first){ s.second = 1; found = true; } } if(!found) found_non_denom = true; } //if other inputs are in here, flip the last bit if(found_non_denom){ denomUsed.push_back(make_pair(0, 1)); } int denom = 0; int c = 0; // if the denomination is used, shift the bit on. // then move to the next BOOST_FOREACH (PAIRTYPE(int64_t, int)& s, denomUsed) denom |= s.second << c++; // Function returns as follows: // // bit 0 - 100DRK+1 ( bit on if present ) // bit 1 - 10DRK+1 // bit 2 - 1DRK+1 // bit 3 - .1DRK+1 // bit 4 - non-denom return denom; } int CDarkSendPool::GetDenominationsByAmounts(std::vector& vecAmount){ CScript e = CScript(); std::vector vout1; // Make outputs by looping through denominations, from small to large BOOST_REVERSE_FOREACH(int64_t v, vecAmount){ int nOutputs = 0; CTxOut o(v, e); vout1.push_back(o); nOutputs++; } return GetDenominations(vout1); } int CDarkSendPool::GetDenominationsByAmount(int64_t nAmount, int nDenomTarget){ CScript e = CScript(); int64_t nValueLeft = nAmount; std::vector vout1; // Make outputs by looping through denominations, from small to large BOOST_REVERSE_FOREACH(int64_t v, darkSendDenominations){ if(nDenomTarget != 0){ bool fAccepted = false; if((nDenomTarget & (1 << 0)) && v == ((100*COIN)+1)) {fAccepted = true;} else if((nDenomTarget & (1 << 1)) && v == ((10*COIN)+1)) {fAccepted = true;} else if((nDenomTarget & (1 << 2)) && v == ((1*COIN)+1)) {fAccepted = true;} else if((nDenomTarget & (1 << 3)) && v == ((.1*COIN)+1)) {fAccepted = true;} if(!fAccepted) continue; } int nOutputs = 0; if(std::find(vecDisabledDenominations.begin(), vecDisabledDenominations.end(), v) != vecDisabledDenominations.end()) continue; // add each output up to 10 times until it can't be added again while(nValueLeft - v >= 0 && nOutputs <= 10) { CTxOut o(v, e); vout1.push_back(o); nValueLeft -= v; nOutputs++; } } //add non-denom left overs as change if(nValueLeft > 0){ CTxOut o(nValueLeft, e); vout1.push_back(o); } return GetDenominations(vout1); } bool CDarkSendSigner::IsVinAssociatedWithPubkey(CTxIn& vin, CPubKey& pubkey){ CScript payee2; payee2.SetDestination(pubkey.GetID()); CTransaction txVin; uint256 hash; if(GetTransaction(vin.prevout.hash, txVin, hash, true)){ BOOST_FOREACH(CTxOut out, txVin.vout){ if(out.nValue == 1000*COIN){ if(out.scriptPubKey == payee2) return true; } } } return false; } bool CDarkSendSigner::SetKey(std::string strSecret, std::string& errorMessage, CKey& key, CPubKey& pubkey){ CBitcoinSecret vchSecret; bool fGood = vchSecret.SetString(strSecret); if (!fGood) { errorMessage = "Invalid private key"; return false; } key = vchSecret.GetKey(); pubkey = key.GetPubKey(); return true; } bool CDarkSendSigner::SignMessage(std::string strMessage, std::string& errorMessage, vector& vchSig, CKey key) { CHashWriter ss(SER_GETHASH, 0); ss << strMessageMagic; ss << strMessage; if (!key.SignCompact(ss.GetHash(), vchSig)) { errorMessage = "Sign failed"; return false; } return true; } bool CDarkSendSigner::VerifyMessage(CPubKey pubkey, vector& vchSig, std::string strMessage, std::string& errorMessage) { CHashWriter ss(SER_GETHASH, 0); ss << strMessageMagic; ss << strMessage; CPubKey pubkey2; if (!pubkey2.RecoverCompact(ss.GetHash(), vchSig)) { errorMessage = "Error recovering pubkey"; return false; } return (pubkey2.GetID() == pubkey.GetID()); } bool CDarksendQueue::Sign() { if(!fMasterNode) return false; std::string strMessage = vin.ToString() + boost::lexical_cast(nDenom) + boost::lexical_cast(time) + boost::lexical_cast(ready); CKey key2; CPubKey pubkey2; std::string errorMessage = ""; if(!darkSendSigner.SetKey(strMasterNodePrivKey, errorMessage, key2, pubkey2)) { LogPrintf("Invalid masternodeprivkey: '%s'\n", errorMessage.c_str()); exit(0); } if(!darkSendSigner.SignMessage(strMessage, errorMessage, vchSig, key2)) { LogPrintf("CDarksendQueue():Relay - Sign message failed"); return false; } if(!darkSendSigner.VerifyMessage(pubkey2, vchSig, strMessage, errorMessage)) { LogPrintf("CDarksendQueue():Relay - Verify message failed"); return false; } return true; } bool CDarksendQueue::Relay() { LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes){ // always relay to everyone pnode->PushMessage("dsq", (*this)); } return true; } bool CDarksendQueue::CheckSignature() { BOOST_FOREACH(CMasterNode& mn, vecMasternodes) { if(mn.vin == vin) { std::string strMessage = vin.ToString() + boost::lexical_cast(nDenom) + boost::lexical_cast(time) + boost::lexical_cast(ready); std::string errorMessage = ""; if(!darkSendSigner.VerifyMessage(mn.pubkey2, vchSig, strMessage, errorMessage)){ return error("CDarksendQueue::CheckSignature() - Got bad masternode address signature %s \n", vin.ToString().c_str()); } return true; } } return false; } void ThreadCheckDarkSendPool() { // Make this thread recognisable as the wallet flushing thread RenameThread("bitcoin-darksend"); unsigned int c = 0; std::string errorMessage; while (true) { c++; MilliSleep(1000); //LogPrintf("ThreadCheckDarkSendPool::check timeout\n"); darkSendPool.CheckTimeout(); if(c % 60 == 0){ vector::iterator it = vecMasternodes.begin(); //check them separately while(it != vecMasternodes.end()){ (*it).Check(); ++it; } //remove inactive it = vecMasternodes.begin(); while(it != vecMasternodes.end()){ if((*it).enabled == 4 || (*it).enabled == 3){ LogPrintf("Removing inactive masternode %s\n", (*it).addr.ToString().c_str()); it = vecMasternodes.erase(it); } else { ++it; } } masternodePayments.CleanPaymentList(); CleanTransactionLocksList(); } //try to sync the masternode list and payment list every 20 seconds if(c % 5 == 0 && RequestedMasterNodeList <= 2){ bool fIsInitialDownload = IsInitialBlockDownload(); if(!fIsInitialDownload) { LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if (pnode->nVersion >= darkSendPool.MIN_PEER_PROTO_VERSION) { //keep track of who we've asked for the list if(pnode->HasFulfilledRequest("mnsync")) continue; pnode->FulfilledRequest("mnsync"); LogPrintf("Successfully synced, asking for Masternode list and payment list\n"); pnode->PushMessage("dseg", CTxIn()); //request full mn list pnode->PushMessage("mnget"); //sync payees RequestedMasterNodeList++; } } } } if(c % MASTERNODE_PING_SECONDS == 0){ activeMasternode.ManageStatus(); } if(c % 60 == 0){ //if we've used 1/5 of the masternode list, then clear the list. if((int)vecMasternodesUsed.size() > (int)vecMasternodes.size() / 5) vecMasternodesUsed.clear(); } //auto denom every 2.5 minutes (liquidity provides try less often) if(c % 60*(nLiquidityProvider+1) == 0){ if(nLiquidityProvider!=0){ int nRand = rand() % (101+nLiquidityProvider); //about 1/100 chance of starting over after 4 rounds. if(nRand == 50+nLiquidityProvider && pwalletMain->GetAverageAnonymizedRounds() > 8){ darkSendPool.SendRandomPaymentToSelf(); int nLeftToAnon = ((pwalletMain->GetBalance() - pwalletMain->GetAnonymizedBalance())/COIN)-3; if(nLeftToAnon > 999) nLeftToAnon = 999; nAnonymizeDarkcoinAmount = (rand() % nLeftToAnon)+3; } else { darkSendPool.DoAutomaticDenominating(); } } else { darkSendPool.DoAutomaticDenominating(); } } } }