#include "darksend.h" #include "main.h" #include "init.h" #include "util.h" #include "masternode.h" #include "instantx.h" #include #include #include #include #include #include using namespace std; using namespace boost; /** The main object for accessing darksend */ CDarkSendPool darkSendPool; /** A helper object for signing messages from masternodes */ CDarkSendSigner darkSendSigner; /** The current darksends in progress on the network */ std::vector vecDarksendQueue; /** Keep track of the used masternodes */ std::vector vecMasternodesUsed; // keep track of the scanning errors I've seen map mapDarksendBroadcastTxes; // CActiveMasternode activeMasternode; // count peers we've requested the list from int RequestedMasterNodeList = 0; /* *** BEGIN DARKSEND MAGIC - DARKCOIN ********** Copyright 2014, Darkcoin Developers eduffield - evan@darkcoin.io */ void ProcessMessageDarksend(CNode* pfrom, std::string& strCommand, CDataStream& vRecv) { if (strCommand == "dsf") { //DarkSend Final tx if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if(darkSendPool.submittedToMasternode != pfrom->addr){ //LogPrintf("dsc - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; CTransaction txNew; vRecv >> sessionID >> txNew; if(darkSendPool.sessionID != sessionID){ if (fDebug) LogPrintf("dsf - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } //check to see if input is spent already? (and probably not confirmed) darkSendPool.SignFinalTransaction(txNew, pfrom); } else if (strCommand == "dsc") { //DarkSend Complete if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if(darkSendPool.submittedToMasternode != pfrom->addr){ //LogPrintf("dsc - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; bool error; std::string lastMessage; vRecv >> sessionID >> error >> lastMessage; if(darkSendPool.sessionID != sessionID){ if (fDebug) LogPrintf("dsc - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } darkSendPool.CompletedTransaction(error, lastMessage); } else if (strCommand == "dsa") { //DarkSend Acceptable if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { std::string strError = "incompatible version"; LogPrintf("dsa -- incompatible version! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } if(!fMasterNode){ std::string strError = "not a masternode"; LogPrintf("dsa -- not a masternode! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } int nDenom; CTransaction txCollateral; vRecv >> nDenom >> txCollateral; std::string error = ""; int mn = GetMasternodeByVin(activeMasternode.vin); if(mn == -1){ std::string strError = "Not in the masternode list"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } if(darkSendPool.sessionUsers == 0) { if(darkSendMasterNodes[mn].nLastDsq != 0 && darkSendMasterNodes[mn].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ //LogPrintf("dsa -- last dsq too recent, must wait. %s \n", darkSendMasterNodes[mn].addr.ToString().c_str()); std::string strError = "Last darksend was too recent"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, strError); return; } } if(!darkSendPool.IsCompatibleWithSession(nDenom, txCollateral, error)) { LogPrintf("dsa -- not compatible with existing transactions! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } else { LogPrintf("dsa -- is compatible, please submit! \n"); pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_ACCEPTED, error); return; } } else if (strCommand == "dsq") { //DarkSend Queue if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } CDarksendQueue dsq; vRecv >> dsq; CService addr; if(!dsq.GetAddress(addr)) return; if(!dsq.CheckSignature()) return; if(dsq.IsExpired()) return; int mn = GetMasternodeByVin(dsq.vin); if(mn == -1) return; // if the queue is ready, submit if we can if(dsq.ready) { if(darkSendPool.submittedToMasternode != addr){ LogPrintf("dsq - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } if (fDebug) LogPrintf("darksend queue is ready - %s\n", addr.ToString().c_str()); darkSendPool.DoAutomaticDenominating(false, true); } else { BOOST_FOREACH(CDarksendQueue q, vecDarksendQueue){ if(q.vin == dsq.vin) return; } if(fDebug) LogPrintf("dsq last %d last2 %d count %d\n", darkSendMasterNodes[mn].nLastDsq, darkSendMasterNodes[mn].nLastDsq + (int)darkSendMasterNodes.size()/5, darkSendPool.nDsqCount); //don't allow a few nodes to dominate the queuing process if(darkSendMasterNodes[mn].nLastDsq != 0 && darkSendMasterNodes[mn].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ if(fDebug) LogPrintf("dsq -- masternode sending too many dsq messages. %s \n", darkSendMasterNodes[mn].addr.ToString().c_str()); return; } darkSendPool.nDsqCount++; darkSendMasterNodes[mn].nLastDsq = darkSendPool.nDsqCount; darkSendMasterNodes[mn].allowFreeTx = true; if(fDebug) LogPrintf("dsq - new darksend queue object - %s\n", addr.ToString().c_str()); vecDarksendQueue.push_back(dsq); dsq.Relay(); dsq.time = GetTime(); } } else if (strCommand == "dsi") { //DarkSend vIn std::string error = ""; if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { LogPrintf("dsi -- incompatible version! \n"); error = "incompatible version"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!fMasterNode){ LogPrintf("dsi -- not a masternode! \n"); error = "not a masternode"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } std::vector in; int64_t nAmount; CTransaction txCollateral; std::vector out; vRecv >> in >> nAmount >> txCollateral >> out; //do we have enough users in the current session? if(!darkSendPool.IsSessionReady()){ LogPrintf("dsi -- session not complete! \n"); error = "session not complete!"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } //do we have the same denominations as the current session? if(!darkSendPool.IsCompatibleWithEntries(out)) { LogPrintf("dsi -- not compatible with existing transactions! \n"); error = "not compatible with existing transactions"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } //check it like a transaction { int64_t nValueIn = 0; int64_t nValueOut = 0; bool missingTx = false; CValidationState state; CTransaction tx; BOOST_FOREACH(const CTxOut o, out){ nValueOut += o.nValue; tx.vout.push_back(o); if(o.scriptPubKey.size() != 25){ LogPrintf("dsi - non-standard pubkey detected! %s\n", o.scriptPubKey.ToString().c_str()); error = "non-standard pubkey detected"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!o.scriptPubKey.IsNormalPaymentScript()){ LogPrintf("dsi - invalid script! %s\n", o.scriptPubKey.ToString().c_str()); error = "invalid script detected"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } BOOST_FOREACH(const CTxIn i, in){ tx.vin.push_back(i); if(fDebug) LogPrintf("dsi -- tx in %s\n", i.ToString().c_str()); CTransaction tx2; uint256 hash; if(GetTransaction(i.prevout.hash, tx2, hash, true)){ if(tx2.vout.size() > i.prevout.n) { nValueIn += tx2.vout[i.prevout.n].nValue; } } else{ missingTx = true; } } if (nValueIn > DARKSEND_POOL_MAX) { LogPrintf("dsi -- more than darksend pool max! %s\n", tx.ToString().c_str()); error = "more than darksed pool max"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!missingTx){ if (nValueIn-nValueOut > nValueIn*.01) { LogPrintf("dsi -- fees are too high! %s\n", tx.ToString().c_str()); error = "transaction fees are too high"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } else { LogPrintf("dsi -- missing input tx! %s\n", tx.ToString().c_str()); error = "missing input tx information"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } if(!AcceptableInputs(mempool, state, tx)){ LogPrintf("dsi -- transaction not valid! \n"); error = "transaction not valid"; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); return; } } if(darkSendPool.AddEntry(in, nAmount, txCollateral, out, error)){ pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_ACCEPTED, error); darkSendPool.Check(); RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } else { pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_REJECTED, error); } } else if (strCommand == "dssub") { //DarkSend Subscribe To if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if(!fMasterNode) return; std::string error = ""; pfrom->PushMessage("dssu", darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET, error); //pfrom->fDisconnect = true; return; } else if (strCommand == "dssu") { //DarkSend status update if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } if(darkSendPool.submittedToMasternode != pfrom->addr){ //LogPrintf("dssu - message doesn't match current masternode - %s != %s\n", darkSendPool.submittedToMasternode.ToString().c_str(), pfrom->addr.ToString().c_str()); return; } int sessionID; int state; int entriesCount; int accepted; std::string error; vRecv >> sessionID >> state >> entriesCount >> accepted >> error; if(fDebug) LogPrintf("dssu - state: %i entriesCount: %i accepted: %i error: %s \n", state, entriesCount, accepted, error.c_str()); if((accepted != 1 && accepted != 0) && darkSendPool.sessionID != sessionID){ LogPrintf("dssu - message doesn't match current darksend session %d %d\n", darkSendPool.sessionID, sessionID); return; } darkSendPool.StatusUpdate(state, entriesCount, accepted, error, sessionID); } else if (strCommand == "dss") { //DarkSend Sign Final Tx if (pfrom->nVersion < darkSendPool.MIN_PEER_PROTO_VERSION) { return; } vector sigs; vRecv >> sigs; bool success = false; int count = 0; LogPrintf(" -- sigs count %d %d\n", (int)sigs.size(), count); BOOST_FOREACH(const CTxIn item, sigs) { if(darkSendPool.AddScriptSig(item)) success = true; if(fDebug) LogPrintf(" -- sigs count %d %d\n", (int)sigs.size(), count); count++; } if(success){ darkSendPool.Check(); RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } } } int randomizeList (int i) { return std::rand()%i;} // Recursively determine the rounds of a given input (How deep is the darksend chain for a given input) int GetInputDarksendRounds(CTxIn in, int rounds) { if(rounds >= 9) return rounds; std::string padding = ""; padding.insert(0, ((rounds+1)*5)+3, ' '); CWalletTx tx; if(pwalletMain->GetTransaction(in.prevout.hash,tx)){ // bounds check if(in.prevout.n >= tx.vout.size()) return -4; if(tx.vout[in.prevout.n].nValue == DARKSEND_FEE) return -3; if(rounds == 0){ //make sure the final output is non-denominate bool found = false; BOOST_FOREACH(int64_t d, darkSendDenominations) if(tx.vout[in.prevout.n].nValue == d) found = true; if(!found) { //LogPrintf(" - NOT DENOM\n"); return -2; } } bool found = false; BOOST_FOREACH(CTxOut out, tx.vout){ BOOST_FOREACH(int64_t d, darkSendDenominations) if(out.nValue == d) found = true; } if(!found) { //LogPrintf(" - NOT FOUND\n"); return rounds; } // find my vin and look that up BOOST_FOREACH(CTxIn in2, tx.vin) { if(pwalletMain->IsMine(in2)){ //LogPrintf("rounds :: %s %s %d NEXT\n", padding.c_str(), in.ToString().c_str(), rounds); int n = GetInputDarksendRounds(in2, rounds+1); if(n != -3) return n; } } } else { //LogPrintf("rounds :: %s %s %d NOTFOUND\n", padding.c_str(), in.ToString().c_str(), rounds); } return rounds-1; } void CDarkSendPool::SetNull(bool clearEverything){ finalTransaction.vin.clear(); finalTransaction.vout.clear(); entries.clear(); state = POOL_STATUS_ACCEPTING_ENTRIES; lastTimeChanged = GetTimeMillis(); entriesCount = 0; lastEntryAccepted = 0; countEntriesAccepted = 0; sessionUsers = 0; sessionDenom = 0; sessionFoundMasternode = false; sessionTries = 0; vecSessionCollateral.clear(); txCollateral = CTransaction(); if(clearEverything){ myEntries.clear(); if(fMasterNode){ sessionID = 1 + (rand() % 999999); } else { sessionID = 0; } } // -- seed random number generator (used for ordering output lists) unsigned int seed = 0; RAND_bytes((unsigned char*)&seed, sizeof(seed)); std::srand(seed); } bool CDarkSendPool::SetCollateralAddress(std::string strAddress){ CBitcoinAddress address; if (!address.SetString(strAddress)) { LogPrintf("CDarkSendPool::SetCollateralAddress - Invalid DarkSend collateral address\n"); return false; } collateralPubKey.SetDestination(address.Get()); return true; } // // Unlock coins after Darksend fails or succeeds // void CDarkSendPool::UnlockCoins(){ BOOST_FOREACH(CTxIn v, lockedCoins) pwalletMain->UnlockCoin(v.prevout); lockedCoins.clear(); } // // Check the Darksend progress and send client updates if a masternode // void CDarkSendPool::Check() { if(fDebug) LogPrintf("CDarkSendPool::Check()\n"); if(fDebug) LogPrintf("CDarkSendPool::Check() - entries count %lu\n", entries.size()); // If entries is full, then move on to the next phase if(state == POOL_STATUS_ACCEPTING_ENTRIES && (int)entries.size() >= GetMaxPoolTransactions()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- ACCEPTING OUTPUTS\n"); UpdateState(POOL_STATUS_FINALIZE_TRANSACTION); } // create the finalized transaction for distribution to the clients if(state == POOL_STATUS_FINALIZE_TRANSACTION && finalTransaction.vin.empty() && finalTransaction.vout.empty()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- FINALIZE TRANSACTIONS\n"); UpdateState(POOL_STATUS_SIGNING); if (fMasterNode) { // make our new transaction CTransaction txNew; for(unsigned int i = 0; i < entries.size(); i++){ BOOST_FOREACH(const CTxOut v, entries[i].vout) txNew.vout.push_back(v); BOOST_FOREACH(const CDarkSendEntryVin s, entries[i].sev) txNew.vin.push_back(s.vin); } // shuffle the outputs for improved anonymity std::random_shuffle ( txNew.vout.begin(), txNew.vout.end(), randomizeList); if(fDebug) LogPrintf("Transaction 1: %s\n", txNew.ToString().c_str()); SignFinalTransaction(txNew, NULL); // request signatures from clients RelayDarkSendFinalTransaction(sessionID, txNew); } } // collect signatures from clients // If we have all of the signatures, try to compile the transaction if(state == POOL_STATUS_SIGNING && SignaturesComplete()) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- SIGNING\n"); UpdateState(POOL_STATUS_TRANSMISSION); CWalletTx txNew = CWalletTx(pwalletMain, finalTransaction); LOCK2(cs_main, pwalletMain->cs_wallet); { if (fMasterNode) { //only the main node is master atm if(fDebug) LogPrintf("Transaction 2: %s\n", txNew.ToString().c_str()); // See if the transaction is valid if (!txNew.AcceptToMemoryPool(true)) { LogPrintf("CDarkSendPool::Check() - CommitTransaction : Error: Transaction not valid\n"); SetNull(); pwalletMain->Lock(); // not much we can do in this case UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); RelayDarkSendCompletedTransaction(sessionID, true, "Transaction not valid, please try again"); return; } LogPrintf("CDarkSendPool::Check() -- IS MASTER -- TRANSMITTING DARKSEND\n"); // sign a message int64_t sigTime = GetAdjustedTime(); std::string strMessage = txNew.GetHash().ToString() + boost::lexical_cast(sigTime); std::string strError = ""; std::vector vchSig; CKey key2; CPubKey pubkey2; if(!darkSendSigner.SetKey(strMasterNodePrivKey, strError, key2, pubkey2)) { LogPrintf("Invalid masternodeprivkey: '%s'\n", strError.c_str()); exit(0); } if(!darkSendSigner.SignMessage(strMessage, strError, vchSig, key2)) { LogPrintf("CDarkSendPool::Check() - Sign message failed\n"); return; } if(!darkSendSigner.VerifyMessage(pubkey2, vchSig, strMessage, strError)) { LogPrintf("CDarkSendPool::Check() - Verify message failed\n"); return; } if(!mapDarksendBroadcastTxes.count(txNew.GetHash())){ CDarksendBroadcastTx dstx; dstx.tx = txNew; dstx.vin = activeMasternode.vin; dstx.vchSig = vchSig; dstx.sigTime = sigTime; mapDarksendBroadcastTxes.insert(make_pair(txNew.GetHash(), dstx)); } // Broadcast the transaction to the network txNew.fTimeReceivedIsTxTime = true; txNew.RelayWalletTransaction(); // Tell the clients it was successful RelayDarkSendCompletedTransaction(sessionID, false, "Transaction Created Successfully"); // Randomly charge clients ChargeRandomFees(); } } } // move on to next phase, allow 3 seconds incase the masternode wants to send us anything else if((state == POOL_STATUS_TRANSMISSION && fMasterNode) || (state == POOL_STATUS_SIGNING && completedTransaction) ) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- COMPLETED -- RESETTING \n"); SetNull(true); UnlockCoins(); if(fMasterNode) RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); pwalletMain->Lock(); } // reset if we're here for 10 seconds if((state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) && GetTimeMillis()-lastTimeChanged >= 10000) { if(fDebug) LogPrintf("CDarkSendPool::Check() -- RESETTING MESSAGE \n"); SetNull(true); if(fMasterNode) RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); UnlockCoins(); } } // // Charge clients a fee if they're abusive // // Why bother? Darksend uses collateral to ensure abuse to the process is kept to a minimum. // The submission and signing stages in darksend are completely separate. In the cases where // a client submits a transaction then refused to sign, there must be a cost. Otherwise they // would be able to do this over and over again and bring the mixing to a hault. // // How does this work? Messages to masternodes come in via "dsi", these require a valid collateral // transaction for the client to be able to enter the pool. This transaction is kept by the masternode // until the transaction is either complete or fails. // void CDarkSendPool::ChargeFees(){ if(fMasterNode) { //we don't need to charge collateral for every offence. int offences = 0; int r = rand()%100; if(r > 33) return; if(state == POOL_STATUS_ACCEPTING_ENTRIES){ BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { bool found = false; BOOST_FOREACH(const CDarkSendEntry& v, entries) { if(v.collateral == txCollateral) { found = true; } } // This queue entry didn't send us the promised transaction if(!found){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't send transaction). Found offence.\n"); offences++; } } } if(state == POOL_STATUS_SIGNING) { // who didn't sign? BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev) { if(!s.isSigSet){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't sign). Found offence\n"); offences++; } } } } r = rand()%100; int target = 0; //mostly offending? if(offences >= POOL_MAX_TRANSACTIONS-1 && r > 33) return; //everyone is an offender? That's not right if(offences >= POOL_MAX_TRANSACTIONS) return; //charge one of the offenders randomly if(offences > 1) target = 50; //pick random client to charge r = rand()%100; if(state == POOL_STATUS_ACCEPTING_ENTRIES){ BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { bool found = false; BOOST_FOREACH(const CDarkSendEntry& v, entries) { if(v.collateral == txCollateral) { found = true; } } // This queue entry didn't send us the promised transaction if(!found && r > target){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't send transaction). charging fees.\n"); CWalletTx wtxCollateral = CWalletTx(pwalletMain, txCollateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); return; } } } if(state == POOL_STATUS_SIGNING) { // who didn't sign? BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev) { if(!s.isSigSet && r > target){ LogPrintf("CDarkSendPool::ChargeFees -- found uncooperative node (didn't sign). charging fees.\n"); CWalletTx wtxCollateral = CWalletTx(pwalletMain, v.collateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); return; } } } } } } // charge the collateral randomly // - Darksend is completely free, to pay miners we randomly pay the collateral of users. void CDarkSendPool::ChargeRandomFees(){ if(fMasterNode) { int i = 0; BOOST_FOREACH(const CTransaction& txCollateral, vecSessionCollateral) { int r = rand()%1000; if(r <= 20) { LogPrintf("CDarkSendPool::ChargeRandomFees -- charging random fees. %u\n", i); CWalletTx wtxCollateral = CWalletTx(pwalletMain, txCollateral); // Broadcast if (!wtxCollateral.AcceptToMemoryPool(true)) { // This must not fail. The transaction has already been signed and recorded. LogPrintf("CDarkSendPool::ChargeRandomFees() : Error: Transaction not valid"); } wtxCollateral.RelayWalletTransaction(); } } } } // // Check for various timeouts (queue objects, darksend, etc) // void CDarkSendPool::CheckTimeout(){ // catching hanging sessions if(!fMasterNode) { if(state == POOL_STATUS_TRANSMISSION) { if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session complete -- Running Check()\n"); Check(); } } // check darksend queue objects for timeouts int c = 0; vector::iterator it; for(it=vecDarksendQueue.begin();it *vec = &myEntries; if(fMasterNode) vec = &entries; // check for a timeout and reset if needed vector::iterator it2; for(it2=vec->begin();it2end();it2++){ if((*it2).IsExpired()){ if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() : Removing expired entry - %d\n", c); vec->erase(it2); if(entries.size() == 0 && myEntries.size() == 0){ SetNull(true); UnlockCoins(); } if(fMasterNode){ RelayDarkSendStatus(darkSendPool.sessionID, darkSendPool.GetState(), darkSendPool.GetEntriesCount(), MASTERNODE_RESET); } break; } c++; } if(GetTimeMillis()-lastTimeChanged >= (DARKSEND_QUEUE_TIMEOUT*1000)+addLagTime){ lastTimeChanged = GetTimeMillis(); ChargeFees(); // reset session information for the queue query stage (before entering a masternode, clients will send a queue request to make sure they're compatible denomination wise) sessionUsers = 0; sessionDenom = 0; sessionFoundMasternode = false; sessionTries = 0; vecSessionCollateral.clear(); UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); } } else if(GetTimeMillis()-lastTimeChanged >= (DARKSEND_QUEUE_TIMEOUT*1000)+addLagTime){ if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session timed out (30s) -- resetting\n"); SetNull(); UnlockCoins(); UpdateState(POOL_STATUS_ERROR); lastMessage = "Session timed out (30), please resubmit"; } if(state == POOL_STATUS_SIGNING && GetTimeMillis()-lastTimeChanged >= (DARKSEND_SIGNING_TIMEOUT*1000)+addLagTime ) { if(fDebug) LogPrintf("CDarkSendPool::CheckTimeout() -- Session timed out -- restting\n"); ChargeFees(); SetNull(); UnlockCoins(); //add my transactions to the new session UpdateState(POOL_STATUS_ERROR); lastMessage = "Signing timed out, please resubmit"; } } // check to see if the signature is valid bool CDarkSendPool::SignatureValid(const CScript& newSig, const CTxIn& newVin){ CTransaction txNew; txNew.vin.clear(); txNew.vout.clear(); int found = -1; CScript sigPubKey = CScript(); unsigned int i = 0; BOOST_FOREACH(CDarkSendEntry e, entries) { BOOST_FOREACH(const CTxOut out, e.vout) txNew.vout.push_back(out); BOOST_FOREACH(const CDarkSendEntryVin s, e.sev){ txNew.vin.push_back(s.vin); if(s.vin == newVin){ found = i; sigPubKey = s.vin.prevPubKey; } i++; } } if(found >= 0){ //might have to do this one input at a time? int n = found; txNew.vin[n].scriptSig = newSig; if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Sign with sig %s\n", newSig.ToString().substr(0,24).c_str()); if (!VerifyScript(txNew.vin[n].scriptSig, sigPubKey, txNew, n, SCRIPT_VERIFY_P2SH | SCRIPT_VERIFY_STRICTENC, 0)){ if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Signing - Error signing input %u\n", n); return false; } } if(fDebug) LogPrintf("CDarkSendPool::SignatureValid() - Signing - Succesfully signed input\n"); return true; } // check to make sure the collateral provided by the client is valid bool CDarkSendPool::IsCollateralValid(const CTransaction& txCollateral){ if(txCollateral.vout.size() < 1) return false; if(txCollateral.nLockTime != 0) return false; int64_t nValueIn = 0; int64_t nValueOut = 0; bool missingTx = false; CTransaction tx; BOOST_FOREACH(const CTxOut o, txCollateral.vout){ nValueOut += o.nValue; if(!o.scriptPubKey.IsNormalPaymentScript()){ LogPrintf ("CDarkSendPool::IsCollateralValid - Invalid Script %s\n", txCollateral.ToString().c_str()); return false; } } BOOST_FOREACH(const CTxIn i, txCollateral.vin){ CTransaction tx2; uint256 hash; if(GetTransaction(i.prevout.hash, tx2, hash, true)){ if(tx2.vout.size() > i.prevout.n) { nValueIn += tx2.vout[i.prevout.n].nValue; } } else{ missingTx = true; } } if(missingTx){ if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - Unknown inputs in collateral transaction - %s\n", txCollateral.ToString().c_str()); return false; } //collateral transactions are required to pay out DARKSEND_COLLATERAL as a fee to the miners if(nValueIn-nValueOut < DARKSEND_COLLATERAL) { if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - did not include enough fees in transaction %d\n%s\n", nValueOut-nValueIn, txCollateral.ToString().c_str()); return false; } if(fDebug) LogPrintf("CDarkSendPool::IsCollateralValid %s\n", txCollateral.ToString().c_str()); CWalletTx wtxCollateral = CWalletTx(pwalletMain, txCollateral); CValidationState state; if(AcceptableInputs(mempool, state, tx)){ if(fDebug) LogPrintf ("CDarkSendPool::IsCollateralValid - didn't pass IsAcceptable\n"); return false; } return true; } // // Add a clients transaction to the pool // bool CDarkSendPool::AddEntry(const std::vector& newInput, const int64_t& nAmount, const CTransaction& txCollateral, const std::vector& newOutput, std::string& error){ if (!fMasterNode) return false; BOOST_FOREACH(CTxIn in, newInput) { if (in.prevout.IsNull() || nAmount < 0) { if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - input not valid!\n"); error = "input not valid"; sessionUsers--; return false; } } if (!IsCollateralValid(txCollateral)){ if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - collateral not valid!\n"); error = "collateral not valid"; sessionUsers--; return false; } if((int)entries.size() >= GetMaxPoolTransactions()){ if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - entries is full!\n"); error = "entries is full"; sessionUsers--; return false; } BOOST_FOREACH(CTxIn in, newInput) { if(fDebug) LogPrintf("looking for vin -- %s\n", in.ToString().c_str()); BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(s.vin == in) { if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - found in vin\n"); error = "already have that vin"; sessionUsers--; return false; } } } } if(state == POOL_STATUS_ACCEPTING_ENTRIES) { CDarkSendEntry v; v.Add(newInput, nAmount, txCollateral, newOutput); entries.push_back(v); if(fDebug) LogPrintf("CDarkSendPool::AddEntry -- adding %s\n", newInput[0].ToString().c_str()); error = ""; return true; } if(fDebug) LogPrintf ("CDarkSendPool::AddEntry - can't accept new entry, wrong state!\n"); error = "wrong state"; sessionUsers--; return false; } bool CDarkSendPool::AddScriptSig(const CTxIn& newVin){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- new sig %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(s.vin.scriptSig == newVin.scriptSig) { LogPrintf("CDarkSendPool::AddScriptSig - already exists \n"); return false; } } } if(!SignatureValid(newVin.scriptSig, newVin)){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig - Invalid Sig\n"); return false; } if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- sig %s\n", newVin.ToString().c_str()); if(state == POOL_STATUS_SIGNING) { BOOST_FOREACH(CTxIn& vin, finalTransaction.vin){ if(newVin.prevout == vin.prevout && vin.nSequence == newVin.nSequence){ vin.scriptSig = newVin.scriptSig; vin.prevPubKey = newVin.prevPubKey; if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- adding to finalTransaction %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); } } for(unsigned int i = 0; i < entries.size(); i++){ if(entries[i].AddSig(newVin)){ if(fDebug) LogPrintf("CDarkSendPool::AddScriptSig -- adding %s\n", newVin.scriptSig.ToString().substr(0,24).c_str()); return true; } } } LogPrintf("CDarkSendPool::AddScriptSig -- Couldn't set sig!\n" ); return false; } // check to make sure everything is signed bool CDarkSendPool::SignaturesComplete(){ BOOST_FOREACH(const CDarkSendEntry v, entries) { BOOST_FOREACH(const CDarkSendEntryVin s, v.sev){ if(!s.isSigSet) return false; } } return true; } // // Execute a darksend denomination via a masternode. // This is only ran from clients // void CDarkSendPool::SendDarksendDenominate(std::vector& vin, std::vector& vout, int64_t amount){ if(darkSendPool.txCollateral == CTransaction()){ LogPrintf ("CDarksendPool:SendDarksendDenominate() - Darksend collateral not set"); return; } // lock the funds we're going to use BOOST_FOREACH(CTxIn in, txCollateral.vin) lockedCoins.push_back(in); BOOST_FOREACH(CTxIn in, vin) lockedCoins.push_back(in); //BOOST_FOREACH(CTxOut o, vout) // LogPrintf(" vout - %s\n", o.ToString().c_str()); // we should already be connected to a masternode if(!sessionFoundMasternode){ LogPrintf("CDarkSendPool::SendDarksendDenominate() - No masternode has been selected yet.\n"); UnlockCoins(); SetNull(true); return; } if (!CheckDiskSpace()) return; if(fMasterNode) { LogPrintf("CDarkSendPool::SendDarksendDenominate() - DarkSend from a masternode is not supported currently.\n"); return; } UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); LogPrintf("CDarkSendPool::SendDarksendDenominate() - Added transaction to pool.\n"); ClearLastMessage(); //check it against the memory pool to make sure it's valid { int64_t nValueOut = 0; CValidationState state; CTransaction tx; BOOST_FOREACH(const CTxOut o, vout){ nValueOut += o.nValue; tx.vout.push_back(o); } BOOST_FOREACH(const CTxIn i, vin){ tx.vin.push_back(i); if(fDebug) LogPrintf("dsi -- tx in %s\n", i.ToString().c_str()); } if(!AcceptableInputs(mempool, state, tx)){ LogPrintf("dsi -- transaction not valid! %s \n", tx.ToString().c_str()); return; } } // store our entry for later use CDarkSendEntry e; e.Add(vin, amount, txCollateral, vout); myEntries.push_back(e); // relay our entry to the master node RelayDarkSendIn(vin, amount, txCollateral, vout); Check(); } // Incoming message from masternode updating the progress of darksend // newAccepted: -1 mean's it'n not a "transaction accepted/not accepted" message, just a standard update // 0 means transaction was not accepted // 1 means transaction was accepted bool CDarkSendPool::StatusUpdate(int newState, int newEntriesCount, int newAccepted, std::string& error, int newSessionID){ if(fMasterNode) return false; if(state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) return false; UpdateState(newState); entriesCount = newEntriesCount; if(newAccepted != -1) { lastEntryAccepted = newAccepted; countEntriesAccepted += newAccepted; if(newAccepted == 0){ UpdateState(POOL_STATUS_ERROR); lastMessage = error; } if(newAccepted == 1) { sessionID = newSessionID; LogPrintf("CDarkSendPool::StatusUpdate - set sessionID to %d\n", sessionID); sessionFoundMasternode = true; } } if(newState == POOL_STATUS_ACCEPTING_ENTRIES){ if(newAccepted == 1){ LogPrintf("CDarkSendPool::StatusUpdate - entry accepted! \n"); sessionFoundMasternode = true; //wait for other users. Masternode will report when ready UpdateState(POOL_STATUS_QUEUE); } else if (newAccepted == 0 && sessionID == 0 && !sessionFoundMasternode) { LogPrintf("CDarkSendPool::StatusUpdate - entry not accepted by masternode \n"); UnlockCoins(); UpdateState(POOL_STATUS_ACCEPTING_ENTRIES); DoAutomaticDenominating(); //try another masternode } if(sessionFoundMasternode) return true; } return true; } // // After we receive the finalized transaction from the masternode, we must // check it to make sure it's what we want, then sign it if we agree. // If we refuse to sign, it's possible we'll be charged collateral // bool CDarkSendPool::SignFinalTransaction(CTransaction& finalTransactionNew, CNode* node){ if(fDebug) LogPrintf("CDarkSendPool::AddFinalTransaction - Got Finalized Transaction\n"); if(!finalTransaction.vin.empty()){ LogPrintf("CDarkSendPool::AddFinalTransaction - Rejected Final Transaction!\n"); return false; } finalTransaction = finalTransactionNew; LogPrintf("CDarkSendPool::SignFinalTransaction %s\n", finalTransaction.ToString().c_str()); vector sigs; //make sure my inputs/outputs are present, otherwise refuse to sign BOOST_FOREACH(const CDarkSendEntry e, myEntries) { BOOST_FOREACH(const CDarkSendEntryVin s, e.sev) { /* Sign my transaction and all outputs */ int mine = -1; CScript prevPubKey = CScript(); CTxIn vin = CTxIn(); for(unsigned int i = 0; i < finalTransaction.vin.size(); i++){ if(finalTransaction.vin[i] == s.vin){ mine = i; prevPubKey = s.vin.prevPubKey; vin = s.vin; } } if(mine >= 0){ //might have to do this one input at a time? int foundOutputs = 0; int64_t nValue1 = 0; int64_t nValue2 = 0; for(unsigned int i = 0; i < finalTransaction.vout.size(); i++){ BOOST_FOREACH(const CTxOut o, e.vout) { if(finalTransaction.vout[i] == o){ foundOutputs++; nValue1 += finalTransaction.vout[i].nValue; } } } BOOST_FOREACH(const CTxOut o, e.vout) nValue2 += o.nValue; int targetOuputs = e.vout.size(); if(foundOutputs < targetOuputs || nValue1 != nValue2) { // in this case, something went wrong and we'll refuse to sign. It's possible we'll be charged collateral. But that's // better then signing if the transaction doesn't look like what we wanted. LogPrintf("CDarkSendPool::Sign - My entries are not correct! Refusing to sign. %d entries %d target. \n", foundOutputs, targetOuputs); return false; } if(fDebug) LogPrintf("CDarkSendPool::Sign - Signing my input %i\n", mine); if(!SignSignature(*pwalletMain, prevPubKey, finalTransaction, mine, int(SIGHASH_ALL|SIGHASH_ANYONECANPAY))) { // changes scriptSig if(fDebug) LogPrintf("CDarkSendPool::Sign - Unable to sign my own transaction! \n"); // not sure what to do here, it will timeout...? } sigs.push_back(finalTransaction.vin[mine]); if(fDebug) LogPrintf(" -- dss %d %d %s\n", mine, (int)sigs.size(), finalTransaction.vin[mine].scriptSig.ToString().c_str()); } } if(fDebug) LogPrintf("CDarkSendPool::Sign - txNew:\n%s", finalTransaction.ToString().c_str()); } // push all of our signatures to the masternode if(sigs.size() > 0 && node != NULL) node->PushMessage("dss", sigs); return true; } bool CDarkSendPool::GetBlockHash(uint256& hash, int nBlockHeight) { if(unitTest){ hash.SetHex("00000000001432b4910722303bff579d0445fa23325bdc34538bdb226718ba79"); return true; } const CBlockIndex *BlockLastSolved = chainActive.Tip(); const CBlockIndex *BlockReading = chainActive.Tip(); if (BlockLastSolved == NULL || BlockLastSolved->nHeight == 0) { return false; } //printf(" nBlockHeight2 %d %d\n", nBlockHeight, chainActive.Tip()->nHeight+1); for (unsigned int i = 1; BlockReading && BlockReading->nHeight > 0; i++) { if(BlockReading->nHeight == nBlockHeight) { hash = BlockReading->GetBlockHash(); return true; } if (BlockReading->pprev == NULL) { assert(BlockReading); break; } BlockReading = BlockReading->pprev; } return false; } //Get the last hash that matches the modulus given. Processed in reverse order bool CDarkSendPool::GetLastValidBlockHash(uint256& hash, int mod, int nBlockHeight) { if(unitTest){ hash.SetHex("00000000001432b4910722303bff579d0445fa23325bdc34538bdb226718ba79"); return true; } const CBlockIndex *BlockLastSolved = chainActive.Tip(); const CBlockIndex *BlockReading = chainActive.Tip(); if (BlockLastSolved == NULL || BlockLastSolved->nHeight == 0) { return false; } int nBlocksAgo = 0; if(nBlockHeight > 0) nBlocksAgo = (chainActive.Tip()->nHeight+1)-nBlockHeight; assert(nBlocksAgo >= 0); int n = 0; for (unsigned int i = 1; BlockReading && BlockReading->nHeight > 0; i++) { if(BlockReading->nHeight % mod == 0) { if(n >= nBlocksAgo){ hash = BlockReading->GetBlockHash(); return true; } n++; } if (BlockReading->pprev == NULL) { assert(BlockReading); break; } BlockReading = BlockReading->pprev; } return false; } void CDarkSendPool::NewBlock() { if(fDebug) LogPrintf("CDarkSendPool::NewBlock \n"); if(IsInitialBlockDownload()) return; masternodePayments.ProcessBlock(chainActive.Tip()->nHeight+10); if(!fEnableDarksend) return; if(!fMasterNode){ //denominate all non-denominated inputs every 25 minutes. if(chainActive.Tip()->nHeight % 10 == 0) UnlockCoins(); ProcessMasternodeConnections(); } } // Darksend transaction was completed (failed or successed) void CDarkSendPool::CompletedTransaction(bool error, std::string lastMessageNew) { if(fMasterNode) return; if(error){ LogPrintf("CompletedTransaction -- error \n"); UpdateState(POOL_STATUS_ERROR); } else { LogPrintf("CompletedTransaction -- success \n"); UpdateState(POOL_STATUS_SUCCESS); myEntries.clear(); // To avoid race conditions, we'll only let DS run once per block cachedLastSuccess = chainActive.Tip()->nHeight; splitUpInARow = 0; } lastMessage = lastMessageNew; completedTransaction = true; Check(); UnlockCoins(); } void CDarkSendPool::ClearLastMessage() { lastMessage = ""; } // // Passively run Darksend in the background to anonymize funds based on the given configuration. // // This does NOT run by default for daemons, only for QT. // bool CDarkSendPool::DoAutomaticDenominating(bool fDryRun, bool ready) { if(fMasterNode) return false; if(state == POOL_STATUS_ERROR || state == POOL_STATUS_SUCCESS) return false; if(chainActive.Tip()->nHeight-cachedLastSuccess < minBlockSpacing) { LogPrintf("CDarkSendPool::DoAutomaticDenominating - Last successful darksend was too recent\n"); return false; } if(!fEnableDarksend) { if(fDebug) LogPrintf("CDarkSendPool::DoAutomaticDenominating - Darksend is disabled\n"); return false; } if (!fDryRun && pwalletMain->IsLocked()){ return false; } if(darkSendPool.GetState() != POOL_STATUS_ERROR && darkSendPool.GetState() != POOL_STATUS_SUCCESS){ if(darkSendPool.GetMyTransactionCount() > 0){ return true; } } // ** find the coins we'll use std::vector vCoins; int64_t nValueMin = 0.01*COIN; int64_t nValueMax = DARKSEND_POOL_MAX; int64_t nValueIn = 0; int minRounds = -2; //non denominated funds are rounds of less than 0 int maxRounds = 2; int maxAmount = DARKSEND_POOL_MAX/COIN; bool hasFeeInput = false; // if we have more denominated funds (of any maturity) than the nAnonymizeDarkcoinAmount, we should use use those if(pwalletMain->GetDenominatedBalance(true) >= nAnonymizeDarkcoinAmount*COIN || pwalletMain->GetDenominatedBalance(true) >= pwalletMain->GetBalance()*.9) { minRounds = 0; maxRounds = nDarksendRounds; } //if we're set to less than a thousand, don't submit for than that to the pool if(nAnonymizeDarkcoinAmount < DARKSEND_POOL_MAX/COIN) maxAmount = nAnonymizeDarkcoinAmount; int64_t balanceNeedsAnonymized = pwalletMain->GetBalance() - pwalletMain->GetAnonymizedBalance(); if(balanceNeedsAnonymized > maxAmount*COIN) balanceNeedsAnonymized= maxAmount*COIN; if(balanceNeedsAnonymized < COIN*2.5 || (vecDisabledDenominations.size() > 0 && balanceNeedsAnonymized < COIN*12.5)){ LogPrintf("DoAutomaticDenominating : No funds detected in need of denominating \n"); return false; } // if the balance is more the pool max, take the pool max if(balanceNeedsAnonymized > nValueMax) { balanceNeedsAnonymized = nValueMax; } // select coins that should be given to the pool if (!pwalletMain->SelectCoinsDark(nValueMin, maxAmount*COIN, vCoins, nValueIn, minRounds, maxRounds, hasFeeInput)) { nValueIn = 0; vCoins.clear(); // look for inputs larger than the max amount, if we find anything we need to split it up if (pwalletMain->SelectCoinsDark(maxAmount*COIN, 9999999*COIN, vCoins, nValueIn, minRounds, maxRounds, hasFeeInput)) { if(!fDryRun) SplitUpMoney(); return true; } LogPrintf("DoAutomaticDenominating : No funds detected in need of denominating (2)\n"); return false; } // the darksend pool can only take 2.5DRK minimum if(nValueIn < COIN*2.5 || (vecDisabledDenominations.size() > 0 && nValueIn < COIN*12.5) ){ //simply look for non-denominated coins if (pwalletMain->SelectCoinsDark(maxAmount*COIN, 9999999*COIN, vCoins, nValueIn, minRounds, maxRounds, hasFeeInput)) { if(!fDryRun) SplitUpMoney(); return true; } LogPrintf("DoAutomaticDenominating : Too little to denominate \n"); return false; } //check to see if we have the fee sized inputs, it requires these if(!pwalletMain->HasDarksendFeeInputs()){ if(!fDryRun) SplitUpMoney(true); return true; } if(fDryRun) return true; if(vecDisabledDenominations.size() == 0){ //if we have 20x 0.1DRk and 1DRK inputs, we can start just anonymizing 10DRK inputs. if(pwalletMain->CountInputsWithAmount((1 * COIN)+1) >= 20 && pwalletMain->CountInputsWithAmount((.1 * COIN)+1) >= 20){ vecDisabledDenominations.push_back((1 * COIN)+1); vecDisabledDenominations.push_back((.1 * COIN)+1); } } // initial phase, find a masternode if(!sessionFoundMasternode){ int nUseQueue = rand()%100; sessionTotalValue = pwalletMain->GetTotalValue(vCoins); //randomize the amounts we mix // if we have minRounds set, or if our non-demon is less than 5% of denom coins if(minRounds == 0 || pwalletMain->GetDenominatedBalance(true) * 0.05 > pwalletMain->GetDenominatedBalance(false)) { for(int a = 0; a < 10; a++){ //try 10 amounts and see if we match a queue int r = (rand()%(maxAmount-(nValueMin/COIN)))+(nValueMin/COIN); vCoins.clear(); nValueIn = 0; if (pwalletMain->SelectCoinsDark(nValueMin, r*COIN, vCoins, nValueIn, minRounds, maxRounds, hasFeeInput)){ sessionTotalValue = pwalletMain->GetTotalValue(vCoins); // if it's in the queue, take it if(nUseQueue > 33 && vecDarksendQueue.size() > 0){ BOOST_FOREACH(CDarksendQueue& dsq, vecDarksendQueue){ CService addr; if(dsq.time == 0) continue; if(!dsq.GetAddress(addr)) continue; std::vector vecAmounts; pwalletMain->ConvertList(vCoins, vecAmounts); if(dsq.nDenom == GetDenominationsByAmounts(vecAmounts)) { break; } } } else { break; } } } } if(sessionTotalValue > maxAmount*COIN) sessionTotalValue = maxAmount*COIN; double fDarkcoinSubmitted = sessionTotalValue / COIN; LogPrintf("Submiting Darksend for %f DRK\n", fDarkcoinSubmitted); if(pwalletMain->GetDenominatedBalance(true, true) > 0){ //get denominated unconfirmed inputs LogPrintf("DoAutomaticDenominating -- Found unconfirmed denominated outputs, will wait till they confirm to continue.\n"); return false; } //don't use the queues all of the time for mixing if(nUseQueue > 33){ // Look through the queues and see if anything matches BOOST_FOREACH(CDarksendQueue& dsq, vecDarksendQueue){ CService addr; if(dsq.time == 0) continue; if(!dsq.GetAddress(addr)) continue; if(dsq.IsExpired()) continue; int protocolVersion; if(!dsq.GetProtocolVersion(protocolVersion)) continue; if(protocolVersion < MIN_PEER_PROTO_VERSION) continue; //don't reuse masternodes BOOST_FOREACH(CTxIn usedVin, vecMasternodesUsed){ if(dsq.vin == usedVin) { continue; } } // If we don't match the denominations, we don't want to submit our inputs if(dsq.nDenom != GetDenominationsByAmount(sessionTotalValue)) { if(fDebug) LogPrintf(" dsq.nDenom != GetDenominationsByAmount %d %d \n", dsq.nDenom, GetDenominationsByAmount(sessionTotalValue)); continue; } dsq.time = 0; //remove node // connect to masternode and submit the queue request if(ConnectNode((CAddress)addr, NULL, true)){ submittedToMasternode = addr; LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if(submittedToMasternode != pnode->addr) continue; std::string strReason; if(txCollateral == CTransaction()){ if(!pwalletMain->CreateCollateralTransaction(txCollateral, strReason)){ LogPrintf("DoAutomaticDenominating -- dsa error:%s\n", strReason.c_str()); return false; } } vecMasternodesUsed.push_back(dsq.vin); if(minRounds >= 0){ //use same denominations std::vector vecAmounts; pwalletMain->ConvertList(vCoins, vecAmounts); sessionDenom = GetDenominationsByAmounts(vecAmounts); } else { //use all possible denominations sessionDenom = GetDenominationsByAmount(sessionTotalValue); } pnode->PushMessage("dsa", sessionDenom, txCollateral); LogPrintf("DoAutomaticDenominating --- connected (from queue), sending dsa for %d %d - %s\n", sessionDenom, GetDenominationsByAmount(sessionTotalValue), pnode->addr.ToString().c_str()); return true; } } else { LogPrintf("DoAutomaticDenominating --- error connecting \n"); return DoAutomaticDenominating(); } } } // otherwise, try one randomly if(sessionTries++ < 10){ //pick a random masternode to use int max_value = darkSendMasterNodes.size(); if(max_value <= 0) return false; int i = (rand() % max_value); //don't reuse masternodes BOOST_FOREACH(CTxIn usedVin, vecMasternodesUsed) { if(darkSendMasterNodes[i].vin == usedVin){ return DoAutomaticDenominating(); } } if(darkSendMasterNodes[i].protocolVersion < MIN_PEER_PROTO_VERSION) { return DoAutomaticDenominating(); } if(darkSendMasterNodes[i].nLastDsq != 0 && darkSendMasterNodes[i].nLastDsq + CountMasternodesAboveProtocol(darkSendPool.MIN_PEER_PROTO_VERSION)/5 > darkSendPool.nDsqCount){ return DoAutomaticDenominating(); } lastTimeChanged = GetTimeMillis(); LogPrintf("DoAutomaticDenominating -- attempt %d connection to masternode %s\n", sessionTries, darkSendMasterNodes[i].addr.ToString().c_str()); if(ConnectNode((CAddress)darkSendMasterNodes[i].addr, NULL, true)){ submittedToMasternode = darkSendMasterNodes[i].addr; LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if(darkSendMasterNodes[i].addr != pnode->addr) continue; std::string strReason; if(txCollateral == CTransaction()){ if(!pwalletMain->CreateCollateralTransaction(txCollateral, strReason)){ LogPrintf("DoAutomaticDenominating -- dsa error:%s\n", strReason.c_str()); return false; } } vecMasternodesUsed.push_back(darkSendMasterNodes[i].vin); if(minRounds >= 0){ //use same denominations std::vector vecAmounts; pwalletMain->ConvertList(vCoins, vecAmounts); sessionDenom = GetDenominationsByAmounts(vecAmounts); } else { //use all possible denominations sessionDenom = GetDenominationsByAmount(sessionTotalValue); } pnode->PushMessage("dsa", sessionDenom, txCollateral); LogPrintf("DoAutomaticDenominating --- connected, sending dsa for %d - denom %d\n", sessionDenom, GetDenominationsByAmount(sessionTotalValue)); return true; } } else { LogPrintf("DoAutomaticDenominating --- error connecting \n"); return DoAutomaticDenominating(); } } else { return false; } } if(!ready) return true; if(sessionDenom == 0) return true; // Submit transaction to the pool if we get here, use sessionDenom so we use the same amount of money std::string strError = pwalletMain->PrepareDarksendDenominate(minRounds, maxRounds, sessionTotalValue); LogPrintf("DoAutomaticDenominating : Running darksend denominate. Return '%s'\n", strError.c_str()); if(strError == "") return true; LogPrintf("DoAutomaticDenominating : Error running denominate, %s\n", strError.c_str()); return false; } bool CDarkSendPool::SendRandomPaymentToSelf() { int64_t nBalance = pwalletMain->GetBalance(); int64_t nPayment = (nBalance*0.35) + (rand() % nBalance); if(nPayment > nBalance) nPayment = nBalance-(0.1*COIN); // make our change address CReserveKey reservekey(pwalletMain); CScript scriptChange; CPubKey vchPubKey; assert(reservekey.GetReservedKey(vchPubKey)); // should never fail, as we just unlocked scriptChange.SetDestination(vchPubKey.GetID()); CWalletTx wtx; int64_t nFeeRet = 0; std::string strFail = ""; vector< pair > vecSend; // ****** Add fees ************ / vecSend.push_back(make_pair(scriptChange, nPayment)); CCoinControl *coinControl=NULL; bool success = pwalletMain->CreateTransaction(vecSend, wtx, reservekey, nFeeRet, strFail, coinControl, ONLY_DENOMINATED); if(!success){ LogPrintf("SendRandomPaymentToSelf: Error - %s\n", strFail.c_str()); return false; } pwalletMain->CommitTransaction(wtx, reservekey); LogPrintf("SendRandomPaymentToSelf Success: tx %s\n", wtx.GetHash().GetHex().c_str()); return true; } // Split up large inputs or create fee sized inputs bool CDarkSendPool::SplitUpMoney(bool justCollateral) { if((chainActive.Tip()->nHeight - lastSplitUpBlock) < 10){ LogPrintf("SplitUpMoney - Too soon to split up again\n"); return false; } if(splitUpInARow >= 2){ LogPrintf("Error: Darksend SplitUpMoney was called multiple times in a row. This should not happen. Please submit a detailed explanation of the steps it took to create this error and submit to evan@darkcoin.io. \n"); fEnableDarksend = false; return false; } int64_t nTotalBalance = pwalletMain->GetDenominatedBalance(false); if(justCollateral && nTotalBalance > 1*COIN) nTotalBalance = 1*COIN; int64_t nTotalOut = 0; lastSplitUpBlock = chainActive.Tip()->nHeight; LogPrintf("DoAutomaticDenominating: Split up large input (justCollateral %d):\n", justCollateral); LogPrintf(" -- nTotalBalance %d\n", nTotalBalance); LogPrintf(" -- denom %d \n", pwalletMain->GetDenominatedBalance(false)); // make our change address CReserveKey reservekey(pwalletMain); CScript scriptChange; CPubKey vchPubKey; assert(reservekey.GetReservedKey(vchPubKey)); // should never fail, as we just unlocked scriptChange.SetDestination(vchPubKey.GetID()); CWalletTx wtx; int64_t nFeeRet = 0; std::string strFail = ""; vector< pair > vecSend; int64_t a = 1*COIN; // ****** Add fees ************ / vecSend.push_back(make_pair(scriptChange, (DARKSEND_COLLATERAL*5)+DARKSEND_FEE)); nTotalOut += (DARKSEND_COLLATERAL*5)+DARKSEND_FEE; vecSend.push_back(make_pair(scriptChange, (DARKSEND_COLLATERAL*5)+DARKSEND_FEE)); nTotalOut += (DARKSEND_COLLATERAL*5)+DARKSEND_FEE; // ****** Add outputs in bases of two from 1 darkcoin *** / if(!justCollateral){ bool continuing = true; while(continuing){ if(nTotalOut + a < nTotalBalance){ //LogPrintf(" nTotalOut %d, added %d\n", nTotalOut, a); vecSend.push_back(make_pair(scriptChange, a)); nTotalOut += a; } else { continuing = false; } a = a * 2; } } if((justCollateral && nTotalOut <= 0.1*COIN) || vecSend.size() < 1) { LogPrintf("SplitUpMoney: Not enough outputs to make a transaction\n"); return false; } if((!justCollateral && nTotalOut <= 1.1*COIN) || vecSend.size() < 1){ LogPrintf("SplitUpMoney: Not enough outputs to make a transaction\n"); return false; } CCoinControl *coinControl=NULL; bool success = pwalletMain->CreateTransaction(vecSend, wtx, reservekey, nFeeRet, strFail, coinControl, justCollateral ? ALL_COINS : ONLY_NONDENOMINATED); if(!success){ LogPrintf("SplitUpMoney: Error - %s\n", strFail.c_str()); return false; } pwalletMain->CommitTransaction(wtx, reservekey); LogPrintf("SplitUpMoney Success: tx %s\n", wtx.GetHash().GetHex().c_str()); splitUpInARow++; return true; } bool CDarkSendPool::IsCompatibleWithEntries(std::vector vout) { BOOST_FOREACH(const CDarkSendEntry v, entries) { LogPrintf(" IsCompatibleWithEntries %d %d\n", GetDenominations(vout), GetDenominations(v.vout)); /* BOOST_FOREACH(CTxOut o1, vout) LogPrintf(" vout 1 - %s\n", o1.ToString().c_str()); BOOST_FOREACH(CTxOut o2, v.vout) LogPrintf(" vout 2 - %s\n", o2.ToString().c_str()); */ if(GetDenominations(vout) != GetDenominations(v.vout)) return false; } return true; } bool CDarkSendPool::IsCompatibleWithSession(int64_t nDenom, CTransaction txCollateral, std::string& strReason) { LogPrintf("CDarkSendPool::IsCompatibleWithSession - sessionDenom %d sessionUsers %d\n", sessionDenom, sessionUsers); if (!unitTest && !IsCollateralValid(txCollateral)){ if(fDebug) LogPrintf ("CDarkSendPool::IsCompatibleWithSession - collateral not valid!\n"); strReason = "collateral not valid"; return false; } if(sessionUsers < 0) sessionUsers = 0; if(sessionUsers == 0) { sessionDenom = nDenom; sessionUsers++; lastTimeChanged = GetTimeMillis(); entries.clear(); if(!unitTest){ //broadcast that I'm accepting entries, only if it's the first entry though CDarksendQueue dsq; dsq.nDenom = nDenom; dsq.vin = activeMasternode.vin; dsq.time = GetTime(); dsq.Sign(); dsq.Relay(); } UpdateState(POOL_STATUS_QUEUE); vecSessionCollateral.push_back(txCollateral); return true; } if((state != POOL_STATUS_ACCEPTING_ENTRIES && state != POOL_STATUS_QUEUE) || sessionUsers >= GetMaxPoolTransactions()){ if((state != POOL_STATUS_ACCEPTING_ENTRIES && state != POOL_STATUS_QUEUE)) strReason = "incompatible mode"; if(sessionUsers >= GetMaxPoolTransactions()) strReason = "masternode queue is full"; LogPrintf("CDarkSendPool::IsCompatibleWithSession - incompatible mode, return false %d %d\n", state != POOL_STATUS_ACCEPTING_ENTRIES, sessionUsers >= GetMaxPoolTransactions()); return false; } if(nDenom != sessionDenom) { strReason = "no matching denominations found for mixing"; return false; } LogPrintf("CDarkSendPool::IsCompatibleWithSession - compatible\n"); sessionUsers++; lastTimeChanged = GetTimeMillis(); vecSessionCollateral.push_back(txCollateral); return true; } // return a bitshifted integer representing the denominations in this list int CDarkSendPool::GetDenominations(const std::vector& vout){ std::vector > denomUsed; // make a list of denominations, with zero uses BOOST_FOREACH(int64_t d, darkSendDenominations) denomUsed.push_back(make_pair(d, 0)); // look for denominations and update uses to 1 bool found_non_denom = false; BOOST_FOREACH(CTxOut out, vout){ bool found = false; BOOST_FOREACH (PAIRTYPE(int64_t, int)& s, denomUsed){ if (out.nValue == s.first){ s.second = 1; found = true; } } if(!found) found_non_denom = true; } //if other inputs are in here, flip the last bit if(found_non_denom){ denomUsed.push_back(make_pair(0, 1)); } int denom = 0; int c = 0; // if the denomination is used, shift the bit on. // then move to the next BOOST_FOREACH (PAIRTYPE(int64_t, int)& s, denomUsed) denom |= s.second << c++; // Function returns as follows: // // bit 0 - 500DRK+1 ( bit on if present ) // bit 1 - 100DRK+1 // bit 2 - 10DRK+1 // bit 3 - 1DRK+1 // bit 4 - fee // bit 5 - other sizes return denom; } int CDarkSendPool::GetDenominationsByAmounts(std::vector& vecAmount){ CScript e = CScript(); std::vector vout1; // Make outputs by looping through denominations, from small to large BOOST_REVERSE_FOREACH(int64_t v, vecAmount){ int nOutputs = 0; CTxOut o(v, e); vout1.push_back(o); nOutputs++; } return GetDenominations(vout1); } int CDarkSendPool::GetDenominationsByAmount(int64_t nAmount){ CScript e = CScript(); int64_t nValueLeft = nAmount; std::vector vout1; // Make outputs by looping through denominations, from small to large BOOST_REVERSE_FOREACH(int64_t v, darkSendDenominations){ int nOutputs = 0; if(std::find(vecDisabledDenominations.begin(), vecDisabledDenominations.end(), v) != vecDisabledDenominations.end()) continue; // add each output up to 10 times until it can't be added again while(nValueLeft - v >= 0 && nOutputs <= 10) { CTxOut o(v, e); vout1.push_back(o); nValueLeft -= v; nOutputs++; } } //add non-denom left overs as change if(nValueLeft > 0){ CTxOut o(nValueLeft, e); vout1.push_back(o); } return GetDenominations(vout1); } bool CDarkSendSigner::IsVinAssociatedWithPubkey(CTxIn& vin, CPubKey& pubkey){ CScript payee2; payee2.SetDestination(pubkey.GetID()); CTransaction txVin; uint256 hash; if(GetTransaction(vin.prevout.hash, txVin, hash, true)){ BOOST_FOREACH(CTxOut out, txVin.vout){ if(out.nValue == 1000*COIN){ if(out.scriptPubKey == payee2) return true; } } } return false; } bool CDarkSendSigner::SetKey(std::string strSecret, std::string& errorMessage, CKey& key, CPubKey& pubkey){ CBitcoinSecret vchSecret; bool fGood = vchSecret.SetString(strSecret); if (!fGood) { errorMessage = "Invalid private key"; return false; } key = vchSecret.GetKey(); pubkey = key.GetPubKey(); return true; } bool CDarkSendSigner::SignMessage(std::string strMessage, std::string& errorMessage, vector& vchSig, CKey key) { CHashWriter ss(SER_GETHASH, 0); ss << strMessageMagic; ss << strMessage; if (!key.SignCompact(ss.GetHash(), vchSig)) { errorMessage = "Sign failed"; return false; } return true; } bool CDarkSendSigner::VerifyMessage(CPubKey pubkey, vector& vchSig, std::string strMessage, std::string& errorMessage) { CHashWriter ss(SER_GETHASH, 0); ss << strMessageMagic; ss << strMessage; CPubKey pubkey2; if (!pubkey2.RecoverCompact(ss.GetHash(), vchSig)) { errorMessage = "Error recovering pubkey"; return false; } return (pubkey2.GetID() == pubkey.GetID()); } bool CDarksendQueue::Sign() { if(!fMasterNode) return false; std::string strMessage = vin.ToString() + boost::lexical_cast(nDenom) + boost::lexical_cast(time) + boost::lexical_cast(ready); CKey key2; CPubKey pubkey2; std::string errorMessage = ""; if(!darkSendSigner.SetKey(strMasterNodePrivKey, errorMessage, key2, pubkey2)) { LogPrintf("Invalid masternodeprivkey: '%s'\n", errorMessage.c_str()); exit(0); } if(!darkSendSigner.SignMessage(strMessage, errorMessage, vchSig, key2)) { LogPrintf("CDarksendQueue():Relay - Sign message failed"); return false; } if(!darkSendSigner.VerifyMessage(pubkey2, vchSig, strMessage, errorMessage)) { LogPrintf("CDarksendQueue():Relay - Verify message failed"); return false; } return true; } bool CDarksendQueue::Relay() { LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes){ // always relay to everyone pnode->PushMessage("dsq", (*this)); } return true; } bool CDarksendQueue::CheckSignature() { BOOST_FOREACH(CMasterNode& mn, darkSendMasterNodes) { if(mn.vin == vin) { std::string strMessage = vin.ToString() + boost::lexical_cast(nDenom) + boost::lexical_cast(time) + boost::lexical_cast(ready); std::string errorMessage = ""; if(!darkSendSigner.VerifyMessage(mn.pubkey2, vchSig, strMessage, errorMessage)){ return error("CDarksendQueue::CheckSignature() - Got bad masternode address signature %s \n", vin.ToString().c_str()); } return true; } } return false; } void ThreadCheckDarkSendPool() { // Make this thread recognisable as the wallet flushing thread RenameThread("bitcoin-darksend"); unsigned int c = 0; std::string errorMessage; while (true) { c++; MilliSleep(1000); //LogPrintf("ThreadCheckDarkSendPool::check timeout\n"); darkSendPool.CheckTimeout(); if(c % 60 == 0){ vector::iterator it = darkSendMasterNodes.begin(); while(it != darkSendMasterNodes.end()){ (*it).Check(); if((*it).enabled == 4 || (*it).enabled == 3){ LogPrintf("Removing inactive masternode %s\n", (*it).addr.ToString().c_str()); it = darkSendMasterNodes.erase(it); } else { ++it; } } masternodePayments.CleanPaymentList(); CleanTransactionLocksList(); } //try to sync the masternode list and payment list every 20 seconds if(c % 5 == 0 && RequestedMasterNodeList <= 2){ bool fIsInitialDownload = IsInitialBlockDownload(); if(!fIsInitialDownload) { LOCK(cs_vNodes); BOOST_FOREACH(CNode* pnode, vNodes) { if (pnode->nVersion >= darkSendPool.MIN_PEER_PROTO_VERSION) { //keep track of who we've asked for the list if(pnode->HasFulfilledRequest("mnsync")) continue; pnode->FulfilledRequest("mnsync"); LogPrintf("Successfully synced, asking for Masternode list and payment list\n"); pnode->PushMessage("dseg", CTxIn()); //request full mn list pnode->PushMessage("mnget"); //sync payees RequestedMasterNodeList++; } } } } if(c % MASTERNODE_PING_SECONDS == 0){ activeMasternode.ManageStatus(); } if(c % 60 == 0){ //if we've used 1/5 of the masternode list, then clear the list. if((int)vecMasternodesUsed.size() > (int)darkSendMasterNodes.size() / 5) vecMasternodesUsed.clear(); } //auto denom every 2.5 minutes (liquidity provides try less often) if(c % 60*(nLiquidityProvider+1) == 0){ if(nLiquidityProvider!=0){ int nRand = rand() % (101+nLiquidityProvider); //about 1/100 chance of starting over after 4 rounds. if(nRand == 50+nLiquidityProvider && pwalletMain->GetAverageAnonymizedRounds() > 8){ darkSendPool.SendRandomPaymentToSelf(); int nLeftToAnon = ((pwalletMain->GetBalance() - pwalletMain->GetAnonymizedBalance())/COIN)-3; if(nLeftToAnon > 999) nLeftToAnon = 999; nAnonymizeDarkcoinAmount = (rand() % nLeftToAnon)+3; } else { darkSendPool.DoAutomaticDenominating(); } } else { darkSendPool.DoAutomaticDenominating(); } } } }