-
Notifications
You must be signed in to change notification settings - Fork 42
/
Copy pathwallet.go
355 lines (311 loc) · 18.6 KB
/
wallet.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
package wallet
import (
"errors"
"math/big"
"time"
"github.com/btcsuite/btcd/chaincfg/chainhash"
btc "github.com/btcsuite/btcutil"
hd "github.com/btcsuite/btcutil/hdkeychain"
)
// Wallet interface is used by openbazaar-go for both normal wallet operation (sending
// and receiving) as well as for handling multisig escrow payment as part of its order flow.
// The following is a very high level of the order flow and how it relates to the methods
// described by this interface.
// 1) The buyer clicks a button to place an order with a vendor. In addition to populating
// the order with all the relevant information, the buyer's node calls the `GenerateMultisigScript`
// interface method to generate an address and redeem script that is unique for the order.
// The order is then sent over to the vendor for evaluation.
//
// 2) The vendor receives the order, takes his public key as well as the key provided by the
// buyer and moderator and likewise calls `GenerateMultisigScript` and compares the returned
// address and redeem script to those provide by the buyer in the order to make sure the
// buyer provided valid information. He then sends a message to the buyer notifying that he
// has accepted the order.
//
// 3) The buyer can then either send funds into the multisig address using an external wallet
// or if he wishes to use the built-in wallet, he calls the `Spend` interface method and
// provides the multisig address as the destination.
//
// 4) After the buyer receives the goods he clicks the complete order button in the UI to
// leave a review and release the funds to the vendor. His node calls the `CreateMultisigSignature`
// interface method to generate a signature for the transaction releasing the funds. The signature is
// sent over to the vendor along with his review.
//
// 5) The vendor receives the review and the signature then calls `CreateMultisigSignature`
// himself to generate his signature on the transaction. We now have the two signatures necessary
// to release the funds. The vendor then calls the `Multisign` interface method and includes
// both signatures. The multisign function combines all the signatures into one valid transaction
// then broadcasts it to the network.
//
// The above example is only one possible order flow. There are other variants based on whether or
// not the vendor is online or offline and whether or not the buyer is doing a direct payment or
// escrowed payment.
type Wallet interface {
walletMustManager
walletMustKeysmither
walletMustBanker
walletCanBumpFee
}
var (
// ErrInsufficientFunds is returned when the wallet is unable to send the amount specified due to the balance being too low
ErrInsufficientFunds = errors.New("ERROR_INSUFFICIENT_FUNDS")
)
// WalletMustManuallyAssociateTransactionToOrder MUST be checked for by openbazaar-go to ensure
// that wallets which require manual association between transactions and orders are properly
// associated. If the interface is supported, AssociateTransactionToOrder must be called as
// early as is reasonable to ensure proper reporting of payment.
type WalletMustManuallyAssociateTransactionToOrder interface {
// AssociateTransactionWithOrder must be called for wallets which implement it to support
// wallet implementations which are not able to generate unique Addresses on a per-Order
// basis. It should be called as soon as the wallet transaction and referenceID are both
// known by the openbazaar-go node (which should be reported from the buyer to the vendor).
AssociateTransactionWithOrder(cb TransactionCallback)
}
type walletMustManager interface {
// Start is called when the openbazaar-go daemon starts up. At this point in time
// the wallet implementation should start syncing and/or updating balances, but
// not before.
Start()
// Close should cleanly disconnect from the wallet and finish writing
// anything it needs to to disk.
Close()
// CurrencyCode returns the currency code this wallet implements. For example, "BTC".
// When running on testnet a `T` should be prepended. For example "TBTC".
CurrencyCode() string
// ExchangeRates returns an ExchangeRates implementation which will provide
// fiat exchange rate data for this coin.
ExchangeRates() ExchangeRates
// AddWatchedAddresses adds an address to the wallet to get notifications back when coins
// are received or spent from it. These watch only addresses should be persisted between
// sessions and upon each startup the wallet should be made to listen for transactions
// involving them.
AddWatchedAddresses(addrs ...btc.Address) error
// AddTransactionListener is how openbazaar-go registers to receive a callback whenever
// a transaction is received that is relevant to this wallet or any of its watch only
// addresses. An address is considered relevant if any inputs or outputs match an address
// owned by this wallet, or being watched by the wallet via AddWatchedAddress method.
AddTransactionListener(func(TransactionCallback))
// IsDust returns whether the amount passed in is considered dust by network. This
// method is called when building payout transactions from the multisig to the various
// participants. If the amount that is supposed to be sent to a given party is below
// the dust threshold, openbazaar-go will not pay that party to avoid building a transaction
// that never confirms.
IsDust(amount big.Int) bool
// CurrentAddress returns an address suitable for receiving payments. `purpose` specifies
// whether the address should be internal or external. External addresses are typically
// requested when receiving funds from outside the wallet .Internal addresses are typically
// change addresses. For utxo based coins we expect this function will return the same
// address so long as that address is unused. Whenever the address receives a payment,
// CurrentAddress should start returning a new, unused address.
CurrentAddress(purpose KeyPurpose) btc.Address
// NewAddress returns a new, never-before-returned address. It is critical that it returns
// a never-before-returned address because this function is called when fetching an address
// for a direct payment order. In this case we expect the address to be unique for each order
// if it's not unique, it will cause problems as we can't determine which order the payment
// was for.
NewAddress(purpose KeyPurpose) btc.Address
// DecodeAddress parses the address string and return an address interface.
DecodeAddress(addr string) (btc.Address, error)
// ScriptToAddress takes a raw output script (the full script, not just a hash160) and
// returns the corresponding address. This should be considered deprecated as we
// intend to remove it once most people have upgraded, but for now it needs to remain.
ScriptToAddress(script []byte) (btc.Address, error)
// Balance returns the confirmed and unconfirmed aggregate balance for the wallet.
// For utxo based wallets, if a spend of confirmed coins is made, the resulting "change"
// should be also counted as confirmed even if the spending transaction is unconfirmed.
// The reason for this that if the spend never confirms, no coins will be lost to the wallet.
//
// The returned balances should be in the coin's base unit (for example: satoshis)
Balance() (confirmed, unconfirmed CurrencyValue)
// Transactions returns a list of transactions for this wallet.
Transactions() ([]Txn, error)
// GetTransaction return info on a specific transaction given the txid.
GetTransaction(txid chainhash.Hash) (Txn, error)
// ChainTip returns the best block hash and height of the blockchain.
ChainTip() (uint32, chainhash.Hash)
// ReSyncBlockchain is called in response to a user action to rescan transactions. API based
// wallets should do another scan of their addresses to find anything missing. Full node, or SPV
// wallets should rescan/re-download blocks starting at the fromTime.
ReSyncBlockchain(fromTime time.Time)
// GetConfirmations returns the number of confirmations and the height for a transaction.
GetConfirmations(txid chainhash.Hash) (confirms, atHeight uint32, err error)
}
type walletMustKeysmither interface {
// ChildKey generate a child key using the given chaincode. Each openbazaar-go node
// keeps a master key (an hd secp256k1 key) that it uses in multisig transactions.
// Rather than use the key directly (which would result in an on chain privacy leak),
// we create a random chaincode for each order (which is not made public) and a child
// key is derived from the master key using the chaincode. The child key for each party
// to the order (buyer, vendor, moderator) is what is used to create the multisig. This
// function leaves it up the wallet implementation to decide how to derive the child key
// so long as it's deterministic and uses the chaincode and the returned key is pseudorandom.
ChildKey(keyBytes []byte, chaincode []byte, isPrivateKey bool) (*hd.ExtendedKey, error)
// HasKey returns whether or not the wallet has the key for the given address. This method
// is called by openbazaar-go when validating payouts from multisigs. It makes sure the
// transaction that the other party(s) signed does indeed pay to an address that we
// control.
HasKey(addr btc.Address) bool
// GenerateMultisigScript should deterministically create a redeem script and address from the information provided.
// This method should be strictly limited to taking the input data, combining it to produce the redeem script and
// address and that's it. There is no need to interact with the network or make any transactions when this is called.
//
// Openbazaar-go will call this method in the following situations:
// 1) When the buyer places an order he passes in the relevant keys for each party to get back the address where
// the funds should be sent and the redeem script. The redeem script is saved in order (and openbazaar-go database).
//
// 2) The vendor calls this method when he receives and order so as to validate that the address they buyer is sending
// funds to is indeed correctly constructed. If this method fails to return the same values for the vendor as it
// did the buyer, the vendor will reject the order.
//
// 3) The moderator calls this function upon receiving a dispute so that he can validate the payment address for the
// order and make sure neither party is trying to maliciously lie about the details of the dispute to get the moderator
// to release the funds.
//
// Note that according to the order flow, this method is called by the buyer *before* the order is sent to the vendor,
// and before the vendor validates the order. Only after the buyer hears back from the vendor does the buyer send
// funds (either from an external wallet or via the `Spend` method) to the address specified in this method's return.
//
// `threshold` is the number of keys required to release the funds from the address. If `threshold` is two and len(keys)
// is three, this is a two of three multisig. If `timeoutKey` is not nil, then the script should allow the funds to
// be released with a signature from the `timeoutKey` after the `timeout` duration has passed.
// For example:
// OP_IF 2 <buyerPubkey> <vendorPubkey> <moderatorPubkey> 3 OP_ELSE <timeout> OP_CHECKSEQUENCEVERIFY <timeoutKey> OP_CHECKSIG OP_ENDIF
//
// If `timeoutKey` is nil then the a normal multisig without a timeout should be created.
GenerateMultisigScript(keys []hd.ExtendedKey, threshold int, timeout time.Duration, timeoutKey *hd.ExtendedKey) (addr btc.Address, redeemScript []byte, err error)
// CreateMultisigSignature should build a transaction using the given inputs and outputs and sign it with the
// provided key. A list of signatures (one for each input) should be returned.
//
// This method is called by openbazaar-go by each party whenever they decide to release the funds from escrow.
// This method should not actually move any funds or make any transactions, only create necessary signatures to
// do so. The caller will then take the signature and share it with the other parties. Once all parties have shared
// their signatures, the person who wants to release the funds collects them and uses them as an input to the
// `Multisign` method.
CreateMultisigSignature(ins []TransactionInput, outs []TransactionOutput, key *hd.ExtendedKey, redeemScript []byte, feePerByte big.Int) ([]Signature, error)
// Multisign collects all of the signatures generated by the `CreateMultisigSignature` function and builds a final
// transaction that can then be broadcast to the blockchain. The []byte return is the raw transaction. It should be
// broadcasted if `broadcast` is true. If the signatures combine and produce an invalid transaction then an error
// should be returned.
//
// This method is called by openbazaar-go by whichever party to the escrow is trying to release the funds only after
// all needed parties have signed using `CreateMultisigSignature` and have shared their signatures with each other.
Multisign(ins []TransactionInput, outs []TransactionOutput, sigs1 []Signature, sigs2 []Signature, redeemScript []byte, feePerByte big.Int, broadcast bool) ([]byte, error)
}
type walletMustBanker interface {
// GetFeePerByte returns the current fee per byte for the given fee level. There
// are three fee levels ― priority, normal, and economic.
//
//The returned value should be in the coin's base unit (for example: satoshis).
GetFeePerByte(feeLevel FeeLevel) big.Int
// Spend transfers the given amount of coins (in the coin's base unit. For example: in
// satoshis) to the given address using the provided fee level. Openbazaar-go calls
// this method in two places. 1) When the user requests a normal transfer from their
// wallet to another address. 2) When clicking 'pay from internal wallet' to fund
// an order the user just placed.
// It also includes a referenceID which basically refers to the order the spend will affect
//
// If spendAll is true the amount field will be ignored and all the funds in the wallet will
// be swept to the provided payment address. For most coins this entails subtracting the
// transaction fee from the total amount being sent rather than adding it on as is normally
// the case when spendAll is false.
Spend(amount big.Int, addr btc.Address, feeLevel FeeLevel, referenceID string, spendAll bool) (*chainhash.Hash, error)
// EstimateFee should return the estimate fee that will be required to make a transaction
// spending from the given inputs to the given outputs. FeePerByte is denominated in
// the coin's base unit (for example: satoshis).
EstimateFee(ins []TransactionInput, outs []TransactionOutput, feePerByte big.Int) big.Int
// EstimateSpendFee should return the anticipated fee to transfer a given amount of coins
// out of the wallet at the provided fee level. Typically this involves building a
// transaction with enough inputs to cover the request amount and calculating the size
// of the transaction. It is OK, if a transaction comes in after this function is called
// that changes the estimated fee as it's only intended to be an estimate.
//
// All amounts should be in the coin's base unit (for example: satoshis).
EstimateSpendFee(amount big.Int, feeLevel FeeLevel) (big.Int, error)
// SweepAddress should sweep all the funds from the provided inputs into the provided `address` using the given
// `key`. If `address` is nil, the funds should be swept into an internal address own by this wallet.
// If the `redeemScript` is not nil, this should be treated as a multisig (p2sh) address and signed accordingly.
//
// This method is called by openbazaar-go in the following scenarios:
// 1) The buyer placed a direct order to a vendor who was offline. The buyer sent funds into a 1 of 2 multisig.
// Upon returning online the vendor accepts the order and calls SweepAddress to move the funds into his wallet.
//
// 2) Same as above but the buyer wishes to cancel the order before the vendor comes online. He calls SweepAddress
// to return the funds from the 1 of 2 multisig back into has wallet.
//
// 3) Same as above but rather than accepting the order, the vendor rejects it. When the buyer receives the reject
// message he calls SweepAddress to move the funds back into his wallet.
//
// 4) The timeout has expired on a 2 of 3 multisig. The vendor calls SweepAddress to claim the funds.
SweepAddress(ins []TransactionInput, address *btc.Address, key *hd.ExtendedKey, redeemScript *[]byte, feeLevel FeeLevel) (*chainhash.Hash, error)
}
type walletCanBumpFee interface {
// BumpFee should attempt to bump the fee on a given unconfirmed transaction (if possible) to
// try to get it confirmed and return the txid of the new transaction (if one exists).
// Since this method is only called in response to user action, it is acceptable to
// return an error if this functionality is not available in this wallet or on the network.
BumpFee(txid chainhash.Hash) (*chainhash.Hash, error)
}
type FeeLevel int
const (
PRIOIRTY FeeLevel = 0
NORMAL = 1
ECONOMIC = 2
FEE_BUMP = 3
SUPER_ECONOMIC = 4
)
// The end leaves on the HD wallet have only two possible values. External keys are those given
// to other people for the purpose of receiving transactions. These may include keys used for
// refund addresses. Internal keys are used only by the wallet, primarily for change addresses
// but could also be used for shuffling around UTXOs.
type KeyPurpose int
const (
EXTERNAL KeyPurpose = 0
INTERNAL = 1
)
// This callback is passed to any registered transaction listeners when a transaction is detected
// for the wallet.
type TransactionCallback struct {
Txid string
Outputs []TransactionOutput
Inputs []TransactionInput
Height int32
Timestamp time.Time
Value big.Int
WatchOnly bool
BlockTime time.Time
}
type TransactionOutput struct {
Address btc.Address
Value big.Int
Index uint32
OrderID string
}
type TransactionInput struct {
OutpointHash []byte
OutpointIndex uint32
LinkedAddress btc.Address
Value big.Int
OrderID string
}
// OpenBazaar uses p2sh addresses for escrow. This object can be used to store a record of a
// transaction going into or out of such an address. Incoming transactions should have a positive
// value and be market as spent when the UXTO is spent. Outgoing transactions should have a
// negative value. The spent field isn't relevant for outgoing transactions.
type TransactionRecord struct {
Txid string
Index uint32
Value big.Int
Address string
Spent bool
Timestamp time.Time
}
// This object contains a single signature for a multisig transaction. InputIndex specifies
// the index for which this signature applies.
type Signature struct {
InputIndex uint32
Signature []byte
}
// Errors
var (
ErrorDustAmount error = errors.New("amount is below network dust treshold")
)