A followup to #8992 which includes a number of additional changes.
The only addition of data to wallets is done in importprivkey with the normal IsWitnessEnabled and -prematurewalletwitness gating.
I can write up tests for these if I get concept ACKs.
I wrote and manually tested these by turning on p2sh-p2wpkh by default via getnewaddress, and seeing what failed. Rest of failures seem to involve no-witness-yet and related sigop counting errors.
276 | @@ -277,6 +277,16 @@ bool CBitcoinAddress::GetKeyID(CKeyID& keyID) const 277 | return true; 278 | } 279 | 280 | +bool CBitcoinAddress::GetScriptID(CScriptID& scriptID) const 281 | +{ 282 | + if (!IsValid() || vchVersion != Params().Base58Prefix(CChainParams::SCRIPT_ADDRESS)) 283 | + return false; 284 | + uint160 id; 285 | + memcpy(&id, &vchData[0], 20);
This is safe, but technically you are copying the vchData, which is specified to be zero_after_free memory, so you lose any guarantee that isn't somewhere in memory still.
You also may as well just directly use &scriptID (or scriptID.begin()) here rather than creating a temp.
Should at least replace &id with id.begin()` on this line to avoid making an assumption about the layout of uint160 objects.
134 | @@ -135,6 +135,12 @@ class DescribeAddressVisitor : public boost::static_visitor<UniValue> 135 | int nRequired; 136 | ExtractDestinations(subscript, whichType, addresses, nRequired); 137 | obj.push_back(Pair("script", GetTxnOutputType(whichType))); 138 | + CKeyID keyID; 139 | + CPubKey pubkey; 140 | + if (pwalletMain->GetWitnessKeyID(scriptID, keyID) && 141 | + pwalletMain->GetPubKey(keyID, pubkey) && pubkey.IsCompressed()) {
Curious when the pubkey.IsCompressed condition would not be true? Might be nice to note when the condition is expected in a comment. Alternately it might make more sense as an assertion if it's never expected, or as a separate JSON attribute like in the CKeyID handler above (line 123): obj.push_back(Pair("iscompressed", vchPubKey.IsCompressed()));
True an assert may make the most sense here. It really shouldn't happen, and if it is we want to find out as soon as possible to avoid loss of funds.
276 | @@ -277,6 +277,20 @@ bool CCryptoKeyStore::GetPubKey(const CKeyID &address, CPubKey& vchPubKeyOut) co 277 | return false; 278 | } 279 | 280 | +bool CCryptoKeyStore::GetWitnessKeyID(const CScriptID &scriptID, CKeyID &keyID) const
Unless I'm missing something, nothing in this function seems specific to the CCryptoKeyStore type as opposed to a more general type like CKeyStore. If this is the case, it might be better to make this a CKeyStore member or a standalone function taking a const CKeyStore&.
CKeyStore doesn't have access to keys if they're crypted.
A standalone function may make more sense, I'm really ambivalent about this.
Hmm, actually you're right, nothing in particular needs a CCryptoKeyStore. I thoroughly convinced myself otherwise previously somehow. Regardless, I'll divorce it from the keystore altogether.
282 | + CScript subscript; 283 | + int witnessVer = 0; 284 | + std::vector<unsigned char> witnessProgram; 285 | + if (!GetCScript(scriptID, subscript) || 286 | + !subscript.IsWitnessProgram(witnessVer, witnessProgram) || 287 | + witnessProgram.size() != 20) {
The size 20 check and explicit uint160 construction below seem like low level encoding details that are out of place here. Maybe this logic could go into to a new CScript method like: bool CScript::GetWitnessKeyID(CKeyID& keyID) or bool CScript::GetV0WitnessKeyID(uint160& keyID).
538 | @@ -539,11 +539,14 @@ UniValue dumpprivkey(const JSONRPCRequest& request) 539 | 540 | string strAddress = request.params[0].get_str(); 541 | CBitcoinAddress address; 542 | - if (!address.SetString(strAddress)) 543 | + if (!address.SetString(strAddress) || !address.IsValid())
This change makes the error message below somewhat inaccurate. Maybe replace "Invalid Bitcoin address" with string("Invalid Bitcoin address for network ") + Params().NetworkIDString() below.
1015 | @@ -1016,51 +1016,6 @@ UniValue addmultisigaddress(const JSONRPCRequest& request) 1016 | return CBitcoinAddress(innerID).ToString(); 1017 | } 1018 | 1019 | -class Witnessifier : public boost::static_visitor<bool>
Maybe note in commit description that this change is moveonly (no code changes).
985 | @@ -986,4 +986,49 @@ class CAccount 986 | } 987 | }; 988 | 989 | +class Witnessifier : public boost::static_visitor<bool>
It might be easier for callers if instead of exposing the Witnessifier class in wallet.h, you expose a simpler function that can be called by both importprivkey and addwitnessaddress and hides all the boost visitor implementation details:
bool AddWitnessCScript(CTxDestination dest, CScriptID &id);
This could even be a CWallet member function.
Sounds like a good refactor for another PR, especially if I get rid of importprivkey commit. I'll drop this commit as well otherwise.
132 | @@ -133,6 +133,14 @@ UniValue importprivkey(const JSONRPCRequest& request) 133 | pwalletMain->MarkDirty(); 134 | pwalletMain->SetAddressBook(vchAddress, strLabel, "receive"); 135 | 136 | + if (IsWitnessEnabled(chainActive.Tip(), Params().GetConsensus()) || GetBoolArg("-walletprematurewitness", false)) { 137 | + Witnessifier w;
This block of code seems very similar to code in addwitnessaddress:
except this ignores the apply_visitor return value and passes a nonempty strlabel to SetAddressBook. Can both places be changed to call a common function?
Also is it ok to ignore the apply_visitor return value here? Consider adding a comment explaining why if it is ok.
Not sure I should over-optimize this for 2 instances. Although I'm also getting concerned about the logic in this commit.
getnewaddress and it seems unsafe for the same reason here. It might make more sense to simply tell the user to importprivkey, then addwitnessaddress. That is literally equivalent.In future wallet updates when getnewaddress is flipped to nested p2sh using some command line init variable, we can have this flip as well, or simply add both as a precaution.
Unless there is a strong counter-argument here I think I should just delete this commit.
132 | @@ -133,6 +133,14 @@ UniValue importprivkey(const JSONRPCRequest& request) 133 | pwalletMain->MarkDirty(); 134 | pwalletMain->SetAddressBook(vchAddress, strLabel, "receive"); 135 | 136 | + if (IsWitnessEnabled(chainActive.Tip(), Params().GetConsensus()) || GetBoolArg("-walletprematurewitness", false)) {
Would it be useful to callers to have an error message in the case where an update to the address book is skipped because this condition is false? Either way an explanatory comment might be good here.
Why do you need GetWitnessKeyID in keystore? That doesn't seem to be something that belongs in the interface, and could just be implemented on top in the signing logic.
@sipa it certainly does not need to be there and is likely inappropriate. I'm not sure exactly where to put it: Will require access to a wallet, and is used in rpcmisc, rpcdump, and rpcwallet.cpp.
It only needs access to a keystore, no? Not to a wallet.
@sipa yes, I misspoke
Moved GetWitnessKeyID outside of Keystore and addressed some nits.
Concept ACK
389 | + //Failure here could mean address is any other type of p2sh 390 | + if (scriptID != nestedScriptID) { 391 | + throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, "Given P2SH address does not match the signature."); 392 | + } 393 | + } 394 | +
I'm not sure we want to extend the current message signing to new address formats as-is. Maybe better to leave this out for now...
211 | @@ -204,7 +212,8 @@ UniValue validateaddress(const JSONRPCRequest& request) 212 | if (pwalletMain && pwalletMain->mapAddressBook.count(dest)) 213 | ret.push_back(Pair("account", pwalletMain->mapAddressBook[dest].name)); 214 | CKeyID keyID; 215 | - if (pwalletMain && address.GetKeyID(keyID) && pwalletMain->mapKeyMetadata.count(keyID) && !pwalletMain->mapKeyMetadata[keyID].hdKeypath.empty()) 216 | + CScriptID scriptID; 217 | + if (pwalletMain && (address.GetKeyID(keyID) || (address.GetScriptID(scriptID) && GetWitnessKeyID(pwalletMain, scriptID, keyID))) && pwalletMain->mapKeyMetadata.count(keyID) && !pwalletMain->mapKeyMetadata[keyID].hdKeypath.empty())
A bit hard to interpret this line. Maybe
if (pwalletMain &&
(address.GetKeyID(keyID) || (address.GetScriptID(scriptID) && GetWitnessKeyID(pwalletMain, scriptID, keyID))) &&
pwalletMain->mapKeyMetadata.count(keyID) &&
!pwalletMain->mapKeyMetadata[keyID].hdKeypath.empty())
I also think a simple inline method like
inline bool FetchWalletKeyID(CWallet* pwallet, const CBitcoinAddress& address, CKeyID& keyID)
{
CScriptID scriptID;
return pwallet && (address.GetKeyID(keyID) || (address.GetScriptID(scriptID) && GetWitnessKeyID(pwallet, scriptID, keyID)));
}
would help, as it would reduce the above to
if (FetchWalletKeyID(pwalletMain, address, keyID) &&
pwalletMain->mapKeyMetadata.count(keyID) &&
!pwalletMain->mapKeyMetadata[keyID].hdKeypath.empty())
Also see line 255 below.
276 | - keyID = CKeyID(id); 277 | + memcpy(keyID.begin(), &vchData[0], 20); 278 | + return true; 279 | +} 280 | + 281 | +bool CBitcoinAddress::GetScriptID(CScriptID& scriptID) const
I know this is done a lot elsewhere, but I think Get prefixed methods should return the result, not store it in a by-ref parameter. It's super easy to get confused especially with lines like if (GetX(y)) ..., where you presume it's some operation based on y returning an x, when in reality y is set and something else is returned.
Maybe use a different verb like FetchScriptID or MakeScriptID to hint at the difference.
3739 | @@ -3740,3 +3740,17 @@ bool CMerkleTx::AcceptToMemoryPool(const CAmount& nAbsurdFee, CValidationState& 3740 | { 3741 | return ::AcceptToMemoryPool(mempool, state, *this, true, NULL, false, nAbsurdFee); 3742 | } 3743 | + 3744 | +bool GetWitnessKeyID(const CKeyStore* store, const CScriptID &scriptID, CKeyID &keyID)
See previous comment regarding Get prefix.
250 | @@ -242,7 +251,8 @@ CScript _createmultisig_redeemScript(const UniValue& params) 251 | if (pwalletMain && address.IsValid()) 252 | { 253 | CKeyID keyID; 254 | - if (!address.GetKeyID(keyID)) 255 | + CScriptID scriptID; 256 | + if (!address.GetKeyID(keyID) && (!address.GetScriptID(scriptID) || !GetWitnessKeyID(pwalletMain, scriptID, keyID)))
Assuming an inline method as described on line 216 is added,
if (!address.GetKeyID(keyID) && (!address.GetScriptID(scriptID) || !GetWitnessKeyID(pwalletMain, scriptID, keyID)))
->
if (!FetchWalletKeyID(pwalletMain, address, keyID))
541 | @@ -542,8 +542,11 @@ UniValue dumpprivkey(const JSONRPCRequest& request) 542 | if (!address.SetString(strAddress)) 543 | throw JSONRPCError(RPC_INVALID_ADDRESS_OR_KEY, "Invalid Bitcoin address"); 544 | CKeyID keyID; 545 | - if (!address.GetKeyID(keyID)) 546 | + CScriptID scriptID; 547 | + if ((!address.GetScriptID(scriptID) || !GetWitnessKeyID(pwalletMain, scriptID, keyID)) && 548 | + !address.GetKeyID(keyID)) {
If I read this right, the logic is the same as previous two cases, except you are preferring witness style fetch over address.GetKeyID fetch. If this is not done for a specific reason, you can
if (!FetchWalletKeyID(pwalletMain, address, keyID)) {
519 | @@ -520,7 +520,8 @@ UniValue signmessage(const JSONRPCRequest& request) 520 | throw JSONRPCError(RPC_TYPE_ERROR, "Invalid address"); 521 | 522 | CKeyID keyID; 523 | - if (!addr.GetKeyID(keyID)) 524 | + CScriptID scriptID; 525 | + if (!addr.GetKeyID(keyID) && (!addr.GetScriptID(scriptID) || !GetWitnessKeyID(pwalletMain, scriptID, keyID)))
if (!FetchWalletKeyID(pwalletMain, addr, keyID))
I'm going to close this.
Segwit activation is a bit away so there's not much rush for this code, and we're expecting a new address format regardless so we'll likely only be supporting that.
we're expecting a new address format regardless so we'll likely only be supporting that.
Unlikely. Current wallets, even 0.15, can't send to bech32, so we'll need to support P2SH-wrapped addresses at least initially.
Re-opening since segwit is actually activating.
oops, @luke-jr opened his own pared-down copy, closing