dash/src/keystore.cpp

// Copyright (c) 2009-2010 Satoshi Nakamoto
// Copyright (c) 2009-2015 The Bitcoin Core developers
// Distributed under the MIT software license, see the accompanying
// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#include "keystore.h"

#include "key.h"
#include "pubkey.h"
#include "util.h"

bool CKeyStore::AddKey(const CKey &key) {
    return AddKeyPubKey(key, key.GetPubKey());
}

bool CBasicKeyStore::GetPubKey(const CKeyID &address, CPubKey &vchPubKeyOut) const
{
    CKey key;
    if (!GetKey(address, key)) {
        LOCK(cs_KeyStore);
        WatchKeyMap::const_iterator it = mapWatchKeys.find(address);
        if (it != mapWatchKeys.end()) {
            vchPubKeyOut = it->second;
            return true;
        }
        return false;
    }
    vchPubKeyOut = key.GetPubKey();
    return true;
}

bool CBasicKeyStore::AddKeyPubKey(const CKey& key, const CPubKey &pubkey)
{
    LOCK(cs_KeyStore);
    mapKeys[pubkey.GetID()] = key;
    return true;
}

bool CBasicKeyStore::AddCScript(const CScript& redeemScript)
{
    if (redeemScript.size() > MAX_SCRIPT_ELEMENT_SIZE)
        return error("CBasicKeyStore::AddCScript(): redeemScripts > %i bytes are invalid", MAX_SCRIPT_ELEMENT_SIZE);

    LOCK(cs_KeyStore);
    mapScripts[CScriptID(redeemScript)] = redeemScript;
    return true;
}

bool CBasicKeyStore::HaveCScript(const CScriptID& hash) const
{
    LOCK(cs_KeyStore);
    return mapScripts.count(hash) > 0;
}

bool CBasicKeyStore::GetCScript(const CScriptID &hash, CScript& redeemScriptOut) const
{
    LOCK(cs_KeyStore);
    ScriptMap::const_iterator mi = mapScripts.find(hash);
    if (mi != mapScripts.end())
    {
        redeemScriptOut = (*mi).second;
        return true;
    }
    return false;
}

static bool ExtractPubKey(const CScript &dest, CPubKey& pubKeyOut)
{
    //TODO: Use Solver to extract this?
    CScript::const_iterator pc = dest.begin();
    opcodetype opcode;
    std::vector<unsigned char> vch;
    if (!dest.GetOp(pc, opcode, vch) || vch.size() < 33 || vch.size() > 65)
        return false;
    pubKeyOut = CPubKey(vch);
    if (!pubKeyOut.IsFullyValid())
        return false;
    if (!dest.GetOp(pc, opcode, vch) || opcode != OP_CHECKSIG || dest.GetOp(pc, opcode, vch))
        return false;
    return true;
}

bool CBasicKeyStore::AddWatchOnly(const CScript &dest)
{
    LOCK(cs_KeyStore);
    setWatchOnly.insert(dest);
    CPubKey pubKey;
    if (ExtractPubKey(dest, pubKey))
        mapWatchKeys[pubKey.GetID()] = pubKey;
    return true;
}

bool CBasicKeyStore::RemoveWatchOnly(const CScript &dest)
{
    LOCK(cs_KeyStore);
    setWatchOnly.erase(dest);
    CPubKey pubKey;
    if (ExtractPubKey(dest, pubKey))
        mapWatchKeys.erase(pubKey.GetID());
    return true;
}

bool CBasicKeyStore::HaveWatchOnly(const CScript &dest) const
{
    LOCK(cs_KeyStore);
    return setWatchOnly.count(dest) > 0;
}

bool CBasicKeyStore::HaveWatchOnly() const
{
    LOCK(cs_KeyStore);
    return (!setWatchOnly.empty());
}

bool CBasicKeyStore::GetHDChain(CHDChain& hdChainRet) const
{
    hdChainRet = hdChain;
    return !hdChain.IsNull();
}
Unify copyright notices. To a variation on: // Copyright (c) 2009-2010 Satoshi Nakamoto // Copyright (c) 2011 The Bitcoin developers 2011-08-09 13:27:58 +02:00			`// Copyright (c) 2009-2010 Satoshi Nakamoto`
Bump copyright headers to 2015 - Bump copyright headers to 2015 - [devtools] Rewrite fix-copyright-headers.py - [devtools] Use git pretty-format for year parsing Github-Pull: #7205 Rebased-From: fa6ad855e9159b2247da4fa0054f32fa181499ab fa24439ff3d8ab5b9efaf66ef4dae6713b88cb35 fa71669452e57039e4270fd2b33a0e0e1635b813 2015-12-13 14:51:43 +01:00			`// Copyright (c) 2009-2015 The Bitcoin Core developers`
Update comments in keystore to be doxygen compatible 2014-10-26 09:35:06 +01:00			`// Distributed under the MIT software license, see the accompanying`
Update License in File Headers I originally created a pull to replace the "COPYING" in crypter.cpp and crypter.h, but it turned out that COPYING was actually the correct file. 2012-05-18 16:02:28 +02:00			`// file COPYING or http://www.opensource.org/licenses/mit-license.php.`
move wallet code to separate file This introduces two new source files, keystore.cpp and wallet.cpp with corresponding headers. Code is moved from main and db, in a preparation for a follow-up commit which introduces the classes CWallet and CKeyStore. 2011-06-01 18:27:05 +02:00
Remove headers.h 2012-04-15 22:10:54 +02:00			`#include "keystore.h"`
Cleanup code using forward declarations. Use misc methods of avoiding unnecesary header includes. Replace int typedefs with int##_t from stdint.h. Replace PRI64[xdu] with PRI[xdu]64 from inttypes.h. Normalize QT_VERSION ifs where possible. Resolve some indirect dependencies as direct ones. Remove extern declarations from .cpp files. 2013-04-13 07:13:08 +02:00
			`#include "key.h"`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`#include "pubkey.h"`
Split up util.cpp/h Split up util.cpp/h into: - string utilities (hex, base32, base64): no internal dependencies, no dependency on boost (apart from foreach) - money utilities (parsesmoney, formatmoney) - time utilities (gettime*, sleep, format date): - and the rest (logging, argument parsing, config file parsing) The latter is basically the environment and OS handling, and is stripped of all utility functions, so we may want to rename it to something else than util.cpp/h for clarity (Matt suggested osinterface). Breaks dependency of sha256.cpp on all the things pulled in by util. 2014-08-21 16:11:09 +02:00			`#include "util.h"`
move wallet code to separate file This introduces two new source files, keystore.cpp and wallet.cpp with corresponding headers. Code is moved from main and db, in a preparation for a follow-up commit which introduces the classes CWallet and CKeyStore. 2011-06-01 18:27:05 +02:00
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`bool CKeyStore::AddKey(const CKey &key) {`
			`return AddKeyPubKey(key, key.GetPubKey());`
			`}`

			`bool CBasicKeyStore::GetPubKey(const CKeyID &address, CPubKey &vchPubKeyOut) const`
get rid of mapPubKeys Make CKeyStore's interface work on uint160's instead of pubkeys, so no separate global mapPubKeys is necessary anymore. 2011-07-05 16:42:32 +02:00			`{`
			`CKey key;`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`if (!GetKey(address, key)) {`
Merge bug fixes (#1260) * Fix for incorrect locking in GetPubKey() (keystore.cpp) * Fix Cmd-Q / Menu Quit shutdown on OSX * Addition of ImmatureCreditCached to MarkDirty() To protect against possible invalidation and to bring conformity to the code. 2017-01-13 15:02:33 +01:00			`LOCK(cs_KeyStore);`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`WatchKeyMap::const_iterator it = mapWatchKeys.find(address);`
			`if (it != mapWatchKeys.end()) {`
			`vchPubKeyOut = it->second;`
			`return true;`
			`}`
get rid of mapPubKeys Make CKeyStore's interface work on uint160's instead of pubkeys, so no separate global mapPubKeys is necessary anymore. 2011-07-05 16:42:32 +02:00			`return false;`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`}`
get rid of mapPubKeys Make CKeyStore's interface work on uint160's instead of pubkeys, so no separate global mapPubKeys is necessary anymore. 2011-07-05 16:42:32 +02:00			`vchPubKeyOut = key.GetPubKey();`
			`return true;`
			`}`

CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`bool CBasicKeyStore::AddKeyPubKey(const CKey& key, const CPubKey &pubkey)`
move wallet code to separate file This introduces two new source files, keystore.cpp and wallet.cpp with corresponding headers. Code is moved from main and db, in a preparation for a follow-up commit which introduces the classes CWallet and CKeyStore. 2011-06-01 18:27:05 +02:00			`{`
CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`LOCK(cs_KeyStore);`
			`mapKeys[pubkey.GetID()] = key;`
Prepare codebase for Encrypted Keys. 2011-06-25 14:57:32 +02:00			`return true;`
			`}`

Replace OP_EVAL (BIP 12) with Pay-to-script-hash (BIP 16). 2012-01-05 03:40:52 +01:00			`bool CBasicKeyStore::AddCScript(const CScript& redeemScript)`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`{`
Check redeemScript size does not exceed 520 byte limit redeemScripts >520bytes can't be spent due to the MAX_SCRIPT_ELEMENT_SIZE limit; previously the addmultisigaddress and createmultisig RPC calls would let you violate that limit unknowingly. Also made the wallet code itself check the redeemScript prior to adding it to the wallet, which in the (rare) instance that a user has added an invalid oversized redeemScript to their wallet causes an error on startup. The affected key isn't added to the wallet; other keys are unaffected. 2014-03-11 03:43:15 +01:00			`if (redeemScript.size() > MAX_SCRIPT_ELEMENT_SIZE)`
Remove whitespaces before double colon in errors and logs 2015-01-08 11:44:25 +01:00			`return error("CBasicKeyStore::AddCScript(): redeemScripts > %i bytes are invalid", MAX_SCRIPT_ELEMENT_SIZE);`
Check redeemScript size does not exceed 520 byte limit redeemScripts >520bytes can't be spent due to the MAX_SCRIPT_ELEMENT_SIZE limit; previously the addmultisigaddress and createmultisig RPC calls would let you violate that limit unknowingly. Also made the wallet code itself check the redeemScript prior to adding it to the wallet, which in the (rare) instance that a user has added an invalid oversized redeemScript to their wallet causes an error on startup. The affected key isn't added to the wallet; other keys are unaffected. 2014-03-11 03:43:15 +01:00
CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`LOCK(cs_KeyStore);`
script: move CScriptID to standard.h and add a ctor for creating them from CScripts This allows for a reversal of the current behavior. This: CScript foo; CScriptID bar(foo.GetID()); Becomes: CScript foo; CScriptID bar(foo); This way, CScript is no longer dependent on CScriptID or Hash(); 2014-09-25 04:24:46 +02:00			`mapScripts[CScriptID(redeemScript)] = redeemScript;`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`return true;`
			`}`

Refactor: split CKeyID/CScriptID/CTxDestination from CBitcoinAddress This introduces internal types: * CKeyID: reference (hash160) of a key * CScriptID: reference (hash160) of a script * CTxDestination: a boost::variant of the former two CBitcoinAddress is retrofitted to be a Base58 encoding of a CTxDestination. This allows all internal code to only use the internal types, and only have RPC and GUI depend on the base58 code. Furthermore, the header dependencies are a lot saner now. base58.h is at the top (right below rpc and gui) instead of at the bottom. For the rest: wallet -> script -> keystore -> key. Only keystore still requires a forward declaration of CScript. Solving that would require splitting script into two layers. 2012-05-14 23:44:52 +02:00			`bool CBasicKeyStore::HaveCScript(const CScriptID& hash) const`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`{`
CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`LOCK(cs_KeyStore);`
			`return mapScripts.count(hash) > 0;`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`}`

Refactor: split CKeyID/CScriptID/CTxDestination from CBitcoinAddress This introduces internal types: * CKeyID: reference (hash160) of a key * CScriptID: reference (hash160) of a script * CTxDestination: a boost::variant of the former two CBitcoinAddress is retrofitted to be a Base58 encoding of a CTxDestination. This allows all internal code to only use the internal types, and only have RPC and GUI depend on the base58 code. Furthermore, the header dependencies are a lot saner now. base58.h is at the top (right below rpc and gui) instead of at the bottom. For the rest: wallet -> script -> keystore -> key. Only keystore still requires a forward declaration of CScript. Solving that would require splitting script into two layers. 2012-05-14 23:44:52 +02:00			`bool CBasicKeyStore::GetCScript(const CScriptID &hash, CScript& redeemScriptOut) const`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`{`
CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`LOCK(cs_KeyStore);`
			`ScriptMap::const_iterator mi = mapScripts.find(hash);`
			`if (mi != mapScripts.end())`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`{`
CSecret/CKey -> CKey/CPubKey split/refactor 2013-05-01 06:52:05 +02:00			`redeemScriptOut = (*mi).second;`
			`return true;`
OP_EVAL implementation OP_EVAL is a new opcode that evaluates an item on the stack as a script. It enables a new type of bitcoin address that needs an arbitrarily complex script to redeem. 2011-10-03 19:05:43 +02:00			`}`
			`return false;`
			`}`

Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`static bool ExtractPubKey(const CScript &dest, CPubKey& pubKeyOut)`
			`{`
			`//TODO: Use Solver to extract this?`
			`CScript::const_iterator pc = dest.begin();`
			`opcodetype opcode;`
			`std::vector<unsigned char> vch;`
			`if (!dest.GetOp(pc, opcode, vch) \|\| vch.size() < 33 \|\| vch.size() > 65)`
			`return false;`
			`pubKeyOut = CPubKey(vch);`
			`if (!pubKeyOut.IsFullyValid())`
			`return false;`
			`if (!dest.GetOp(pc, opcode, vch) \|\| opcode != OP_CHECKSIG \|\| dest.GetOp(pc, opcode, vch))`
			`return false;`
			`return true;`
			`}`

Use script matching rather than destination matching for watch-only. This changes the keystore data format, wallet format and IsMine logic to detect watch-only outputs based on direct script matching rather than first trying to convert outputs to destinations (addresses). The reason is that we don't know how the software that has the spending keys works. It may support the same types of scripts as us, but that is not guaranteed. Furthermore, it removes the ambiguity between addresses used as identifiers for output scripts or identifiers for public keys. One practical implication is that adding a normal pay-to-pubkey-hash address via importaddress will not cause payments to the corresponding full public key to be detected as IsMine. If that is wanted, add those scripts directly (importaddress now also accepts any hex-encoded script). Conflicts: src/wallet.cpp 2014-06-09 21:11:59 +02:00			`bool CBasicKeyStore::AddWatchOnly(const CScript &dest)`
Add support for watch-only addresses Changes: * Add Add/Have WatchOnly methods to CKeyStore, and implementations in CBasicKeyStore. * Add similar methods to CWallet, and support entries for it in CWalletDB. * Make IsMine in script/wallet return a new enum 'isminetype', rather than a boolean. This allows distinguishing between spendable and unspendable coins. * Add a field fSpendable to COutput (GetAvailableCoins' return type). * Mark watchonly coins in listunspent as 'watchonly': true. * Add 'watchonly' to validateaddress, suppressing script/pubkey/... in this case. Based on a patch by Eric Lombrozo. Conflicts: src/qt/walletmodel.cpp src/rpcserver.cpp src/wallet.cpp 2013-07-26 01:06:01 +02:00			`{`
			`LOCK(cs_KeyStore);`
			`setWatchOnly.insert(dest);`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`CPubKey pubKey;`
			`if (ExtractPubKey(dest, pubKey))`
			`mapWatchKeys[pubKey.GetID()] = pubKey;`
Add support for watch-only addresses Changes: * Add Add/Have WatchOnly methods to CKeyStore, and implementations in CBasicKeyStore. * Add similar methods to CWallet, and support entries for it in CWalletDB. * Make IsMine in script/wallet return a new enum 'isminetype', rather than a boolean. This allows distinguishing between spendable and unspendable coins. * Add a field fSpendable to COutput (GetAvailableCoins' return type). * Mark watchonly coins in listunspent as 'watchonly': true. * Add 'watchonly' to validateaddress, suppressing script/pubkey/... in this case. Based on a patch by Eric Lombrozo. Conflicts: src/qt/walletmodel.cpp src/rpcserver.cpp src/wallet.cpp 2013-07-26 01:06:01 +02:00			`return true;`
			`}`

[Wallet] Watch-only fixes 2014-07-26 21:05:11 +02:00			`bool CBasicKeyStore::RemoveWatchOnly(const CScript &dest)`
			`{`
			`LOCK(cs_KeyStore);`
			`setWatchOnly.erase(dest);`
Add logic to track pubkeys as watch-only, not just scripts 2015-06-10 10:04:08 +02:00			`CPubKey pubKey;`
			`if (ExtractPubKey(dest, pubKey))`
			`mapWatchKeys.erase(pubKey.GetID());`
[Wallet] Watch-only fixes 2014-07-26 21:05:11 +02:00			`return true;`
			`}`

Use script matching rather than destination matching for watch-only. This changes the keystore data format, wallet format and IsMine logic to detect watch-only outputs based on direct script matching rather than first trying to convert outputs to destinations (addresses). The reason is that we don't know how the software that has the spending keys works. It may support the same types of scripts as us, but that is not guaranteed. Furthermore, it removes the ambiguity between addresses used as identifiers for output scripts or identifiers for public keys. One practical implication is that adding a normal pay-to-pubkey-hash address via importaddress will not cause payments to the corresponding full public key to be detected as IsMine. If that is wanted, add those scripts directly (importaddress now also accepts any hex-encoded script). Conflicts: src/wallet.cpp 2014-06-09 21:11:59 +02:00			`bool CBasicKeyStore::HaveWatchOnly(const CScript &dest) const`
Add support for watch-only addresses Changes: * Add Add/Have WatchOnly methods to CKeyStore, and implementations in CBasicKeyStore. * Add similar methods to CWallet, and support entries for it in CWalletDB. * Make IsMine in script/wallet return a new enum 'isminetype', rather than a boolean. This allows distinguishing between spendable and unspendable coins. * Add a field fSpendable to COutput (GetAvailableCoins' return type). * Mark watchonly coins in listunspent as 'watchonly': true. * Add 'watchonly' to validateaddress, suppressing script/pubkey/... in this case. Based on a patch by Eric Lombrozo. Conflicts: src/qt/walletmodel.cpp src/rpcserver.cpp src/wallet.cpp 2013-07-26 01:06:01 +02:00			`{`
			`LOCK(cs_KeyStore);`
			`return setWatchOnly.count(dest) > 0;`
			`}`
Add boolean HaveWatchonly and signal NotifyWatchonlyChanged 2014-07-26 21:05:11 +02:00
			`bool CBasicKeyStore::HaveWatchOnly() const`
			`{`
			`LOCK(cs_KeyStore);`
			`return (!setWatchOnly.empty());`
			`}`
HD wallet (#1405) * HD wallet Minimal set of changes (no refactoring) backported from Bitcoin upstream to make HD wallets work in Dash 0.12.1.x+ * minimal bip44 (hardcoded account and change) * minimal bip39 Additional cmd-line options for new wallet: -mnemonic -mnemonicpassphrase * Do not recreate HD wallet on encryption Adjusted keypool.py test * Do not store any private keys for hd wallet besides the master one Derive all keys on the fly. Original idea/implementation - btc PR9298, backported and improved * actually use bip39 * pbkdf2 test * backport wallet-hd.py test * Allow specifying hd seed, add dumphdseed rpc, fix bugs - -hdseed cmd-line param to specify HD seed on wallet creation - dumphdseed rpc to dump HD seed - allow seed of any size - fix dumpwallet rpc bug (wasn't decrypting HD seed) - print HD seed and extended public masterkey on dumpwallet * top up keypool on HD wallet encryption * split HD chain: external/internal * add missing cs_wallet lock in init.cpp * fix `const char ` issues (use strings) default mnemonic passphrase is an empty string in all cases * store mnemonic/mnemonicpassphrase replace dumphdseed with dumphdinfo * Add fCrypted flag to CHDChain * prepare internal structures for multiple HD accounts (plus some code cleanup) * use secure allocator for storing sensitive HD data * use secure strings for mnemonic(passphrase) * small fix in GenerateNewHDChain * use 24 words for mnemonic by default * make sure mnemonic passphrase provided by user does not exceed 256 symbols * more usage of secure allocators and memory_cleanse * code cleanup * rename: CSecureVector -> SecureVector * add missing include * fix warning in rpcdump.cpp * refactor mnemonic_check (also fix a bug) * move bip39 functions to CMnemonic * Few fixes for CMnemonic: - use `SecureVector` for data, bits, seed - `Check` should return bool * init vectors with desired size where possible 2017-05-29 13:51:40 +02:00
			`bool CBasicKeyStore::GetHDChain(CHDChain& hdChainRet) const`
			`{`
			`hdChainRet = hdChain;`
			`return !hdChain.IsNull();`
			`}`