Bitcoin ABC 0.26.3
P2P Digital Currency
Loading...
Searching...
No Matches
encrypt.cpp
Go to the documentation of this file.
1// Copyright (c) 2011-2021 The Bitcoin Core developers
2// Distributed under the MIT software license, see the accompanying
3// file COPYING or http://www.opensource.org/licenses/mit-license.php.
4
5#include <wallet/rpc/encrypt.h>
6
7#include <rpc/server.h>
8#include <rpc/util.h>
9#include <wallet/rpc/util.h>
10#include <wallet/wallet.h>
11
12RPCHelpMan walletpassphrase() {
13 return RPCHelpMan{
14 "walletpassphrase",
15 "Stores the wallet decryption key in memory for 'timeout' seconds.\n"
16 "This is needed prior to performing transactions related to private "
17 "keys such as sending bitcoins\n"
18 "\nNote:\n"
19 "Issuing the walletpassphrase command while the wallet is already "
20 "unlocked will set a new unlock\n"
21 "time that overrides the old one.\n",
22 {
23 {"passphrase", RPCArg::Type::STR, RPCArg::Optional::NO,
24 "The wallet passphrase"},
25 {"timeout", RPCArg::Type::NUM, RPCArg::Optional::NO,
26 "The time to keep the decryption key in seconds; capped at "
27 "100000000 (~3 years)."},
28 },
29 RPCResult{RPCResult::Type::NONE, "", ""},
30 RPCExamples{
31 "\nUnlock the wallet for 60 seconds\n" +
32 HelpExampleCli("walletpassphrase", "\"my pass phrase\" 60") +
33 "\nLock the wallet again (before 60 seconds)\n" +
34 HelpExampleCli("walletlock", "") + "\nAs a JSON-RPC call\n" +
35 HelpExampleRpc("walletpassphrase", "\"my pass phrase\", 60")},
36 [&](const RPCHelpMan &self, const Config &config,
37 const JSONRPCRequest &request) -> UniValue {
38 std::shared_ptr<CWallet> const wallet =
39 GetWalletForJSONRPCRequest(request);
40 if (!wallet) {
41 return NullUniValue;
42 }
43 CWallet *const pwallet = wallet.get();
44
45 int64_t nSleepTime;
46 int64_t relock_time;
47 // Prevent concurrent calls to walletpassphrase with the same
48 // wallet.
49 LOCK(pwallet->m_unlock_mutex);
50 {
51 LOCK(pwallet->cs_wallet);
52
53 if (!pwallet->IsCrypted()) {
54 throw JSONRPCError(
55 RPC_WALLET_WRONG_ENC_STATE,
56 "Error: running with an unencrypted wallet, but "
57 "walletpassphrase was called.");
58 }
59
60 // Note that the walletpassphrase is stored in request.params[0]
61 // which is not mlock()ed
62 SecureString strWalletPass;
63 strWalletPass.reserve(100);
64 // TODO: get rid of this .c_str() by implementing
65 // SecureString::operator=(std::string)
66 // Alternately, find a way to make request.params[0] mlock()'d
67 // to begin with.
68 strWalletPass = request.params[0].get_str().c_str();
69
70 // Get the timeout
71 nSleepTime = request.params[1].getInt<int64_t>();
72 // Timeout cannot be negative, otherwise it will relock
73 // immediately
74 if (nSleepTime < 0) {
75 throw JSONRPCError(RPC_INVALID_PARAMETER,
76 "Timeout cannot be negative.");
77 }
78 // Clamp timeout
79 // larger values trigger a macos/libevent bug?
80 constexpr int64_t MAX_SLEEP_TIME = 100000000;
81 if (nSleepTime > MAX_SLEEP_TIME) {
82 nSleepTime = MAX_SLEEP_TIME;
83 }
84
85 if (strWalletPass.empty()) {
86 throw JSONRPCError(RPC_INVALID_PARAMETER,
87 "passphrase can not be empty");
88 }
89
90 if (!pwallet->Unlock(strWalletPass)) {
91 throw JSONRPCError(
92 RPC_WALLET_PASSPHRASE_INCORRECT,
93 "Error: The wallet passphrase entered was incorrect.");
94 }
95
96 pwallet->TopUpKeyPool();
97
98 pwallet->nRelockTime = GetTime() + nSleepTime;
99 relock_time = pwallet->nRelockTime;
100 }
101
102 // rpcRunLater must be called without cs_wallet held otherwise a
103 // deadlock can occur. The deadlock would happen when RPCRunLater
104 // removes the previous timer (and waits for the callback to finish
105 // if already running) and the callback locks cs_wallet.
106 AssertLockNotHeld(wallet->cs_wallet);
107 // Keep a weak pointer to the wallet so that it is possible to
108 // unload the wallet before the following callback is called. If a
109 // valid shared pointer is acquired in the callback then the wallet
110 // is still loaded.
111 std::weak_ptr<CWallet> weak_wallet = wallet;
112 pwallet->chain().rpcRunLater(
113 strprintf("lockwallet(%s)", pwallet->GetName()),
114 [weak_wallet, relock_time] {
115 if (auto shared_wallet = weak_wallet.lock()) {
116 LOCK(shared_wallet->cs_wallet);
117 // Skip if this is not the most recent rpcRunLater
118 // callback.
119 if (shared_wallet->nRelockTime != relock_time) {
120 return;
121 }
122 shared_wallet->Lock();
123 shared_wallet->nRelockTime = 0;
124 }
125 },
126 nSleepTime);
127
128 return NullUniValue;
129 },
130 };
131}
132
133RPCHelpMan walletpassphrasechange() {
134 return RPCHelpMan{
135 "walletpassphrasechange",
136 "Changes the wallet passphrase from 'oldpassphrase' to "
137 "'newpassphrase'.\n",
138 {
139 {"oldpassphrase", RPCArg::Type::STR, RPCArg::Optional::NO,
140 "The current passphrase"},
141 {"newpassphrase", RPCArg::Type::STR, RPCArg::Optional::NO,
142 "The new passphrase"},
143 },
144 RPCResult{RPCResult::Type::NONE, "", ""},
145 RPCExamples{HelpExampleCli("walletpassphrasechange",
146 "\"old one\" \"new one\"") +
147 HelpExampleRpc("walletpassphrasechange",
148 "\"old one\", \"new one\"")},
149 [&](const RPCHelpMan &self, const Config &config,
150 const JSONRPCRequest &request) -> UniValue {
151 std::shared_ptr<CWallet> const wallet =
152 GetWalletForJSONRPCRequest(request);
153 if (!wallet) {
154 return NullUniValue;
155 }
156 CWallet *const pwallet = wallet.get();
157
158 LOCK(pwallet->cs_wallet);
159
160 if (!pwallet->IsCrypted()) {
161 throw JSONRPCError(
162 RPC_WALLET_WRONG_ENC_STATE,
163 "Error: running with an unencrypted wallet, but "
164 "walletpassphrasechange was called.");
165 }
166
167 // TODO: get rid of these .c_str() calls by implementing
168 // SecureString::operator=(std::string)
169 // Alternately, find a way to make request.params[0] mlock()'d to
170 // begin with.
171 SecureString strOldWalletPass;
172 strOldWalletPass.reserve(100);
173 strOldWalletPass = request.params[0].get_str().c_str();
174
175 SecureString strNewWalletPass;
176 strNewWalletPass.reserve(100);
177 strNewWalletPass = request.params[1].get_str().c_str();
178
179 if (strOldWalletPass.empty() || strNewWalletPass.empty()) {
180 throw JSONRPCError(RPC_INVALID_PARAMETER,
181 "passphrase can not be empty");
182 }
183
184 if (!pwallet->ChangeWalletPassphrase(strOldWalletPass,
185 strNewWalletPass)) {
186 throw JSONRPCError(
187 RPC_WALLET_PASSPHRASE_INCORRECT,
188 "Error: The wallet passphrase entered was incorrect.");
189 }
190
191 return NullUniValue;
192 },
193 };
194}
195
196RPCHelpMan walletlock() {
197 return RPCHelpMan{
198 "walletlock",
199 "Removes the wallet encryption key from memory, locking the wallet.\n"
200 "After calling this method, you will need to call walletpassphrase "
201 "again\n"
202 "before being able to call any methods which require the wallet to be "
203 "unlocked.\n",
204 {},
205 RPCResult{RPCResult::Type::NONE, "", ""},
206 RPCExamples{
207 "\nSet the passphrase for 2 minutes to perform a transaction\n" +
208 HelpExampleCli("walletpassphrase", "\"my pass phrase\" 120") +
209 "\nPerform a send (requires passphrase set)\n" +
210 HelpExampleCli("sendtoaddress",
211 "\"1M72Sfpbz1BPpXFHz9m3CdqATR44Jvaydd\" 1.0") +
212 "\nClear the passphrase since we are done before 2 minutes is "
213 "up\n" +
214 HelpExampleCli("walletlock", "") + "\nAs a JSON-RPC call\n" +
215 HelpExampleRpc("walletlock", "")},
216 [&](const RPCHelpMan &self, const Config &config,
217 const JSONRPCRequest &request) -> UniValue {
218 std::shared_ptr<CWallet> const wallet =
219 GetWalletForJSONRPCRequest(request);
220 if (!wallet) {
221 return NullUniValue;
222 }
223 CWallet *const pwallet = wallet.get();
224
225 LOCK(pwallet->cs_wallet);
226
227 if (!pwallet->IsCrypted()) {
228 throw JSONRPCError(
229 RPC_WALLET_WRONG_ENC_STATE,
230 "Error: running with an unencrypted wallet, but "
231 "walletlock was called.");
232 }
233
234 pwallet->Lock();
235 pwallet->nRelockTime = 0;
236
237 return NullUniValue;
238 },
239 };
240}
241
242RPCHelpMan encryptwallet() {
243 return RPCHelpMan{
244 "encryptwallet",
245 "Encrypts the wallet with 'passphrase'. This is for first time "
246 "encryption.\n"
247 "After this, any calls that interact with private keys such as sending "
248 "or signing \n"
249 "will require the passphrase to be set prior the making these calls.\n"
250 "Use the walletpassphrase call for this, and then walletlock call.\n"
251 "If the wallet is already encrypted, use the walletpassphrasechange "
252 "call.\n",
253 {
254 {"passphrase", RPCArg::Type::STR, RPCArg::Optional::NO,
255 "The pass phrase to encrypt the wallet with. It must be at least "
256 "1 character, but should be long."},
257 },
258 RPCResult{RPCResult::Type::STR, "",
259 "A string with further instructions"},
260 RPCExamples{
261 "\nEncrypt your wallet\n" +
262 HelpExampleCli("encryptwallet", "\"my pass phrase\"") +
263 "\nNow set the passphrase to use the wallet, such as for signing "
264 "or sending bitcoin\n" +
265 HelpExampleCli("walletpassphrase", "\"my pass phrase\"") +
266 "\nNow we can do something like sign\n" +
267 HelpExampleCli("signmessage", "\"address\" \"test message\"") +
268 "\nNow lock the wallet again by removing the passphrase\n" +
269 HelpExampleCli("walletlock", "") + "\nAs a JSON-RPC call\n" +
270 HelpExampleRpc("encryptwallet", "\"my pass phrase\"")},
271 [&](const RPCHelpMan &self, const Config &config,
272 const JSONRPCRequest &request) -> UniValue {
273 std::shared_ptr<CWallet> const wallet =
274 GetWalletForJSONRPCRequest(request);
275 if (!wallet) {
276 return NullUniValue;
277 }
278 CWallet *const pwallet = wallet.get();
279
280 LOCK(pwallet->cs_wallet);
281
282 if (pwallet->IsWalletFlagSet(WALLET_FLAG_DISABLE_PRIVATE_KEYS)) {
283 throw JSONRPCError(RPC_WALLET_ENCRYPTION_FAILED,
284 "Error: wallet does not contain private "
285 "keys, nothing to encrypt.");
286 }
287
288 if (pwallet->IsCrypted()) {
289 throw JSONRPCError(
290 RPC_WALLET_WRONG_ENC_STATE,
291 "Error: running with an encrypted wallet, but "
292 "encryptwallet was called.");
293 }
294
295 // TODO: get rid of this .c_str() by implementing
296 // SecureString::operator=(std::string)
297 // Alternately, find a way to make request.params[0] mlock()'d to
298 // begin with.
299 SecureString strWalletPass;
300 strWalletPass.reserve(100);
301 strWalletPass = request.params[0].get_str().c_str();
302
303 if (strWalletPass.empty()) {
304 throw JSONRPCError(RPC_INVALID_PARAMETER,
305 "passphrase can not be empty");
306 }
307
308 if (!pwallet->EncryptWallet(strWalletPass)) {
309 throw JSONRPCError(RPC_WALLET_ENCRYPTION_FAILED,
310 "Error: Failed to encrypt the wallet.");
311 }
312
313 return "wallet encrypted; The keypool has been flushed and a new "
314 "HD seed "
315 "was generated (if you are using HD). You need to make a "
316 "new "
317 "backup.";
318 },
319 };
320}
321
322Span<const CRPCCommand> GetWalletEncryptRPCCommands() {
323 // clang-format off
324 static const CRPCCommand commands[] = {
325 // category actor (function)
326 // ------------------ ----------------------
327 { "wallet", encryptwallet, },
328 { "wallet", walletlock, },
329 { "wallet", walletpassphrase, },
330 { "wallet", walletpassphrasechange, },
331 };
332 // clang-format on
333
334 return commands;
335}
CWallet
A CWallet maintains a set of transactions and balances, and provides the ability to create new transa...
Definition wallet.h:254
CWallet::Lock
bool Lock()
Definition wallet.cpp:3155
CWallet::m_unlock_mutex
Mutex m_unlock_mutex
Definition wallet.h:566
CWallet::cs_wallet
RecursiveMutex cs_wallet
Definition wallet.h:389
CWallet::Unlock
bool Unlock(const CKeyingMaterial &vMasterKeyIn, bool accept_no_keys=false)
Definition wallet.cpp:3174
CWallet::chain
interfaces::Chain & chain() const
Interface for accessing chain state.
Definition wallet.h:448
CWallet::GetName
const std::string & GetName() const
Get a name for this wallet for logging/debugging purposes.
Definition wallet.h:401
CWallet::IsCrypted
bool IsCrypted() const
Definition wallet.cpp:3143
Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition span.h:93
interfaces::Chain::rpcRunLater
virtual void rpcRunLater(const std::string &name, std::function< void()> fn, int64_t seconds)=0
Run function after given number of seconds.
walletpassphrasechange
RPCHelpMan walletpassphrasechange()
Definition encrypt.cpp:133
GetWalletEncryptRPCCommands
Span< const CRPCCommand > GetWalletEncryptRPCCommands()
Definition encrypt.cpp:322
encryptwallet
RPCHelpMan encryptwallet()
Definition encrypt.cpp:242
walletlock
RPCHelpMan walletlock()
Definition encrypt.cpp:196
walletpassphrase
RPCHelpMan walletpassphrase()
Definition encrypt.cpp:12
CWallet::TopUpKeyPool
bool TopUpKeyPool(unsigned int kpSize=0)
Definition wallet.cpp:2322
CWallet::ChangeWalletPassphrase
bool ChangeWalletPassphrase(const SecureString &strOldWalletPassphrase, const SecureString &strNewWalletPassphrase)
Definition wallet.cpp:446
CWallet::EncryptWallet
bool EncryptWallet(const SecureString &strWalletPassphrase)
Definition wallet.cpp:706
CWallet::IsWalletFlagSet
bool IsWalletFlagSet(uint64_t flag) const override
Check if a certain wallet flag is set.
Definition wallet.cpp:1517
GetRand
T GetRand(T nMax=std::numeric_limits< T >::max()) noexcept
Generate a uniform random integer of type T in the range [0..nMax) nMax defaults to std::numeric_limi...
Definition random.h:85
JSONRPCError
UniValue JSONRPCError(int code, const std::string &message)
Definition request.cpp:58
RPC_WALLET_WRONG_ENC_STATE
@ RPC_WALLET_WRONG_ENC_STATE
Command given in wrong wallet encryption state (encrypting an encrypted wallet etc....
Definition protocol.h:103
RPC_WALLET_ENCRYPTION_FAILED
@ RPC_WALLET_ENCRYPTION_FAILED
Failed to encrypt the wallet.
Definition protocol.h:105
RPC_INVALID_PARAMETER
@ RPC_INVALID_PARAMETER
Invalid, missing or duplicate parameter.
Definition protocol.h:46
RPC_WALLET_PASSPHRASE_INCORRECT
@ RPC_WALLET_PASSPHRASE_INCORRECT
The wallet passphrase entered was incorrect.
Definition protocol.h:100
HelpExampleCli
std::string HelpExampleCli(const std::string &methodname, const std::string &args)
Definition util.cpp:150
HelpExampleRpc
std::string HelpExampleRpc(const std::string &methodname, const std::string &args)
Definition util.cpp:167
SecureString
std::basic_string< char, std::char_traits< char >, secure_allocator< char > > SecureString
Definition secure.h:55
RPCArg::Optional::NO
@ NO
Required arg.
AssertLockNotHeld
#define AssertLockNotHeld(cs)
Definition sync.h:163
LOCK
#define LOCK(cs)
Definition sync.h:306
GetTime
int64_t GetTime()
DEPRECATED Use either ClockType::now() or Now<TimePointType>() if a cast is needed.
Definition time.cpp:109
strprintf
#define strprintf
Format arguments and return the string or write to given std::ostream (see tinyformat::format doc for...
Definition tinyformat.h:1202
NullUniValue
const UniValue NullUniValue
Definition univalue.cpp:16
GetWalletForJSONRPCRequest
std::shared_ptr< CWallet > GetWalletForJSONRPCRequest(const JSONRPCRequest &request)
Figures out what wallet, if any, to use for a JSONRPCRequest.
Definition util.cpp:63
WALLET_FLAG_DISABLE_PRIVATE_KEYS
@ WALLET_FLAG_DISABLE_PRIVATE_KEYS
Definition walletutil.h:55
Generated on Tue Oct 22 2024 02:39:37 for Bitcoin ABC by doxygen 1.9.8