aboutsummaryrefslogtreecommitdiff
path: root/src/wallet/wallet2.h (follow)
AgeCommit message (Collapse)AuthorFilesLines
2019-04-16Merge pull request #5445Riccardo Spagni1-4/+9
b18f0b10 wallet: new --offline option (moneromooo-monero)
2019-04-16Merge pull request #5418Riccardo Spagni1-2/+2
374f388d wallet_rpc_server: add a all flag to export_outputs (moneromooo-monero)
2019-04-15wallet: new --offline optionmoneromooo-monero1-4/+9
It will avoid connecting to a daemon (so useful for cold signing using a RPC wallet), and not perform DNS queries.
2019-04-15Merge pull request #5396Riccardo Spagni1-0/+2
b40392fb wallet2: add --no-dns flag (moneromooo-monero)
2019-04-15Merge pull request #5355Riccardo Spagni1-0/+3
c68fe787 device/trezor: add button pressed request (Dusan Klinec) 827f52ad wallet: API changes to enable passphrase entry (Dusan Klinec)
2019-04-11Merge pull request #5388Riccardo Spagni1-0/+2
0be5b2ee simplewallet: new unset_ring command (moneromooo-monero)
2019-04-11Merge pull request #5382Riccardo Spagni1-3/+3
c12b43cb wallet: add number of blocks required for the balance to fully unlock (moneromooo-monero) 3f1e9e84 wallet2: set confirmations to 0 for pool txes in proofs (moneromooo-monero) 36c037ec wallet_rpc_server: error out on getting the spend key from a hot wallet (moneromooo-monero) cd1eaff2 wallet_rpc_server: always fill out subaddr_indices in get_transfers (moneromooo-monero)
2019-04-11Merge pull request #5374Riccardo Spagni1-0/+9
a2561653 wallet: new option to start background mining (moneromooo-monero)
2019-04-11simplewallet: new net_stats commandmoneromooo-monero1-0/+3
displays total sent and received bytes
2019-04-10wallet_rpc_server: add a all flag to export_outputsmoneromooo-monero1-2/+2
if we don't want to export new outputs only
2019-04-07device/trezor: add button pressed requestDusan Klinec1-0/+3
2019-04-07Pass SSL arguments via one class and use shared_ptr instead of referenceLee Clagett1-8/+2
2019-04-06Change SSL certificate file list to OpenSSL builtin load_verify_locationLee Clagett1-2/+2
Specifying SSL certificates for peer verification does an exact match, making it a not-so-obvious alias for the fingerprints option. This changes the checks to OpenSSL which loads concatenated certificate(s) from a single file and does a certificate-authority (chain of trust) check instead. There is no drop in security - a compromised exact match fingerprint has the same worse case failure. There is increased security in allowing separate long-term CA key and short-term SSL server keys. This also removes loading of the system-default CA files if a custom CA file or certificate fingerprint is specified.
2019-04-06Merge pull request #5350Riccardo Spagni1-0/+1
050bb337 wallet2: factor the watchonly/multisig/etc fields on creation (moneromooo-monero)
2019-04-06Merge pull request #5347Riccardo Spagni1-0/+3
d45b85e1 wallet2: skip derivation precalc for blocks we know we'll skip (moneromooo-monero)
2019-04-04wallet: new option to start background miningmoneromooo-monero1-0/+9
The setup-background-mining option can be used to select background mining when a wallet loads. The user will be asked the first time the wallet is created.
2019-04-04wallet2: add --no-dns flagmoneromooo-monero1-0/+2
2019-04-02simplewallet: new unset_ring commandmoneromooo-monero1-0/+2
Useful when debugging, though not much for users
2019-04-01wallet: add number of blocks required for the balance to fully unlockmoneromooo-monero1-3/+3
2019-04-01Merge pull request #5319Riccardo Spagni1-0/+6
f825055d wallet_rpc_server: error out on getting the spend key from a hot wallet (moneromooo-monero) 67aa4adc wallet_rpc_server: add a set_daemon RPC (moneromooo-monero) 705acbac wallet2: init some variables to default values if loading old wallets (moneromooo-monero) f82bc29e wallet_rpc_server: always fill out subaddr_indices in get_transfers (moneromooo-monero) 01efdc6a wallet_rpc_server: set confirmations to 0 for pending/pool txes (moneromooo-monero)
2019-04-01wallet_rpc_server: add a set_daemon RPCmoneromooo-monero1-0/+6
2019-04-01Merge pull request #5333Riccardo Spagni1-1/+25
18faa6da wallet: add freeze/thaw/frozen commands (moneromooo-monero)
2019-04-01Merge pull request #5303Riccardo Spagni1-1/+1
0a6cb30d wallet: flush output cache upon reorg (moneromooo-monero)
2019-04-01Merge pull request #5298Riccardo Spagni1-2/+3
8fd7452b wallet: move light wallet RPC out of core RPC (moneromooo-monero)
2019-03-27wallet2: factor the watchonly/multisig/etc fields on creationmoneromooo-monero1-0/+1
There's half a dozen calls, and it's easy to miss some when adding a new field.
2019-03-25wallet2: skip derivation precalc for blocks we know we'll skipmoneromooo-monero1-0/+3
2019-03-25Added socks proxy (tor/i2pd/kovri) support to walletLee Clagett1-1/+3
2019-03-24Merge pull request #5277Riccardo Spagni1-4/+20
adf6d773 wallet: fix offline signing calling a daemon RPC (moneromooo-monero)
2019-03-22wallet: add freeze/thaw/frozen commandsmoneromooo-monero1-1/+25
These commands let one freeze outputs by key image, so they do not appear in balance, nor are considered when creating a transaction, etc This is helpful when receiving an output from a suspected spy, who might try to track your other outputs by seeing with what other outputs it gets spent. The frozen command may be used without parameters to list all currently frozen outputs.
2019-03-21wallet: fix offline signing calling a daemon RPCmoneromooo-monero1-4/+20
2019-03-21wallet2: sanity check new tx before sendingmoneromooo-monero1-0/+4
We generate and check tx proofs and verify the amounts in those match what the original amounts were.
2019-03-21Merge pull request #5211Riccardo Spagni1-11/+16
c9b13fbb tests/trezor: HF9 and HF10 tests (Dusan Klinec) a1fd1d49 device/trezor: HF10 support added, wallet::API (Dusan Klinec) d74d26f2 crypto: hmac_keccak added (Dusan Klinec)
2019-03-20device/trezor: HF10 support added, wallet::APIDusan Klinec1-11/+16
- import only key images generated by cold signing process - wallet_api: trezor methods added - wallet: button request code added - const added to methods - wallet2::get_tx_key_device() tries to decrypt stored tx private keys using the device. - simplewallet supports get_tx_key and get_tx_proof on hw device using the get_tx_key feature - live refresh enables refresh with trezor i.e. computing key images on the fly. More convenient and efficient for users. - device: has_ki_live_refresh added - a thread is watching whether live refresh is being computed, if not for 30 seconds, it terminates the live refresh process - switches Trezor state
2019-03-19Merge pull request #5203Riccardo Spagni1-0/+1
8b514645 add multisig tx sets to describe_transfer rpc endpoint (spoke0)
2019-03-19Merge pull request #4889Riccardo Spagni1-1/+5
f42263eb wallet: adds rescan_bc option with preserving key images (Dusan Klinec)
2019-03-17Merge pull request #5061Riccardo Spagni1-1/+1
1f2930ce Update 2019 copyright (binaryFate)
2019-03-17wallet: flush output cache upon reorgmoneromooo-monero1-1/+1
Fixes output usage tracking
2019-03-15wallet: move light wallet RPC out of core RPCmoneromooo-monero1-2/+3
It's not nothing to do with it
2019-03-15wallet: adds rescan_bc option with preserving key imagesDusan Klinec1-1/+5
- enables to perform rescan_spent / ki sync with untrusted daemon. Spent check status involves RPC calls which require trusted daemon status as it leaks information. The new call performs soft reset while preserving key images thus a sequence: refresh, ki sync / import, rescan_bc keep_ki will correctly perform spent checking without need for trusted daemon. - useful to detect spent outputs with untrusted daemon on watch_only / multisig / hw-cold wallets after expensive key image sync. - cli: rescan_bc keep_ki
2019-03-14Merge pull request #4977Riccardo Spagni1-0/+2
5ea17909 device/trezor: debugging features, trezor tests (Dusan Klinec)
2019-03-05Update 2019 copyrightbinaryFate1-1/+1
2019-03-05add multisig tx sets to describe_transfer rpc endpointspoke01-0/+1
2019-03-05epee: add SSL supportMartijn Otto1-1/+2
RPC connections now have optional tranparent SSL. An optional private key and certificate file can be passed, using the --{rpc,daemon}-ssl-private-key and --{rpc,daemon}-ssl-certificate options. Those have as argument a path to a PEM format private private key and certificate, respectively. If not given, a temporary self signed certificate will be used. SSL can be enabled or disabled using --{rpc}-ssl, which accepts autodetect (default), disabled or enabled. Access can be restricted to particular certificates using the --rpc-ssl-allowed-certificates, which takes a list of paths to PEM encoded certificates. This can allow a wallet to connect to only the daemon they think they're connected to, by forcing SSL and listing the paths to the known good certificates. To generate long term certificates: openssl genrsa -out /tmp/KEY 4096 openssl req -new -key /tmp/KEY -out /tmp/REQ openssl x509 -req -days 999999 -sha256 -in /tmp/REQ -signkey /tmp/KEY -out /tmp/CERT /tmp/KEY is the private key, and /tmp/CERT is the certificate, both in PEM format. /tmp/REQ can be removed. Adjust the last command to set expiration date, etc, as needed. It doesn't make a whole lot of sense for monero anyway, since most servers will run with one time temporary self signed certificates anyway. SSL support is transparent, so all communication is done on the existing ports, with SSL autodetection. This means you can start using an SSL daemon now, but you should not enforce SSL yet or nothing will talk to you.
2019-03-05device/trezor: debugging features, trezor testsDusan Klinec1-0/+2
2019-03-04Merge pull request #4054Riccardo Spagni1-2/+6
24569454 epee: add SSL support (moneromooo-monero)
2019-03-03wallet2: fix mishandling rct outputs in coinbase txmoneromooo-monero1-1/+1
Reported by cutcoin
2019-02-02epee: add SSL supportmoneromooo-monero1-2/+6
RPC connections now have optional tranparent SSL. An optional private key and certificate file can be passed, using the --{rpc,daemon}-ssl-private-key and --{rpc,daemon}-ssl-certificate options. Those have as argument a path to a PEM format private private key and certificate, respectively. If not given, a temporary self signed certificate will be used. SSL can be enabled or disabled using --{rpc}-ssl, which accepts autodetect (default), disabled or enabled. Access can be restricted to particular certificates using the --rpc-ssl-allowed-certificates, which takes a list of paths to PEM encoded certificates. This can allow a wallet to connect to only the daemon they think they're connected to, by forcing SSL and listing the paths to the known good certificates. To generate long term certificates: openssl genrsa -out /tmp/KEY 4096 openssl req -new -key /tmp/KEY -out /tmp/REQ openssl x509 -req -days 999999 -sha256 -in /tmp/REQ -signkey /tmp/KEY -out /tmp/CERT /tmp/KEY is the private key, and /tmp/CERT is the certificate, both in PEM format. /tmp/REQ can be removed. Adjust the last command to set expiration date, etc, as needed. It doesn't make a whole lot of sense for monero anyway, since most servers will run with one time temporary self signed certificates anyway. SSL support is transparent, so all communication is done on the existing ports, with SSL autodetection. This means you can start using an SSL daemon now, but you should not enforce SSL yet or nothing will talk to you.
2019-01-28Merge pull request #5056Riccardo Spagni1-2/+2
8258a9e7 wallet: do not check txpool in background mode (moneromooo-monero)
2019-01-22add a bulletproof version, new bulletproof type, and rct configmoneromooo-monero1-1/+1
This makes it easier to modify the bulletproof format
2019-01-16wallet2: remember which output keys map to which key imagesmoneromooo-monero1-6/+14
This allows filling in transfer_details when a cold signed tx gets seen in a block next
2019-01-16Merge pull request #5027Riccardo Spagni1-0/+3
9092fc4b wallet: do not display daemon controlled text if untrusted (moneromooo-monero)
2019-01-16Merge pull request #5012Riccardo Spagni1-1/+1
d7354c78 wallet_rpc_server: add all field to export_key_images (moneromooo-monero)
2019-01-09wallet: do not check txpool in background modemoneromooo-monero1-2/+2
This avoids the constant message about needed to run refresh to enter a password. Also mention the txpool when asking for the password if the reason is a pool tx.
2018-12-31wallet2: speedup output trackingmoneromooo-monero1-3/+4
It can get heavy for large wallets
2018-12-31wallet: optionally keep track of owned outputs usesmoneromooo-monero1-1/+9
2018-12-30wallet: do not display daemon controlled text if untrustedmoneromooo-monero1-0/+3
2018-12-24wallet_rpc_server: add all field to export_key_imagesmoneromooo-monero1-1/+1
To use if you want all key images, not just the ones for recently imported outputs
2018-12-12MMS (Multisig Messaging System): Initial versionrbrunner71-1/+13
2018-12-12Merge pull request #4839Riccardo Spagni1-1/+32
d71f89e2 device/trezor: device/trezor: correct device initialization, status check (Dusan Klinec) 65b9bca7 device/trezor: python2 compatibility - bundle dependencies (Dusan Klinec) 9cf636af device/trezor: ask for KI sync on first refresh (Dusan Klinec) d21dad70 device: enable to use multiple independent device wallets (Dusan Klinec) 318cc784 device/trezor: passphrase entry on host (Dusan Klinec)
2018-12-04device/trezor: ask for KI sync on first refreshDusan Klinec1-1/+6
When doing a first refresh on HW-token based wallet KI sync is required if money were received. Received money may indicate wallet was already used before the restore I.e., some transaction could have been already sent from the wallet. The spent UTXO would not be detected as spent which could lead to double spending errors on submitting a new transaction. Thus if the wallet is HW-token based with the cold signing protocol and the first refresh detected received money the user is asked to perform the key image sync.
2018-12-04device: enable to use multiple independent device walletsDusan Klinec1-0/+4
- adds a new option `--hw-device-deriv-path` to the simple wallet. Enables to specify wallet derivation path / wallet code (path avoided so it can be misinterpreted as a file path). - devices can use different derivation mechanisms. Trezor uses standard SLIP-10 mechanism with fixed SLIP-44 prefix for Monero - Trezor: when empty, the default derivation mechanism is used with 44'/128'/0'. When entered the derivation path is 44'/128'/PATH. - Trezor: the path is always taken as elements are hardened (1<<31 bit turned on)
2018-12-04Merge pull request #4894Riccardo Spagni1-2/+2
aee7a4e3 wallet_rpc_server: do not use RPC data if the call failed (moneromooo-monero) 1a0733e5 windows_service: fix memory leak (moneromooo-monero) 0dac3c64 unit_tests: do not rethrow a copy of an exception (moneromooo-monero) 5d9915ab cryptonote: fix get_unit for non default settings (moneromooo-monero) d4f50cb1 remove some unused code (moneromooo-monero) 61163971 a few minor (but easy) performance tweaks (moneromooo-monero) 30023074 tests: slow_memmem now returns size_t (moneromooo-monero)
2018-12-04Merge pull request #4854Riccardo Spagni1-0/+2
bd98e99c Removed a lot of unnecessary includes (Martijn Otto)
2018-12-04Merge pull request #4845Riccardo Spagni1-2/+2
6732fc7f Fix issue 4793 - M/N multisig transaction signature (naughtyfox)
2018-11-29device/trezor: passphrase entry on hostDusan Klinec1-0/+22
- simple device callback object added. Device can request passphrase/PIN entry via the callback or notify user some action is required - callback is routed to wallet2, which routes the callback to i_wallet_callback so CLI or GUI wallets can support passphrase entry for HW tokens - wallet: device open needs wallet callback first - passphrase protected device needs wallet callback so user can enter passphrase
2018-11-23a few minor (but easy) performance tweaksmoneromooo-monero1-2/+2
Found by codacy.com
2018-11-20Fix issue 4793 - M/N multisig transaction signaturenaughtyfox1-2/+2
2018-11-15Removed a lot of unnecessary includesMartijn Otto1-0/+2
2018-11-14Merge pull request #4753Riccardo Spagni1-1/+1
157054b8 hardfork: initialize current_fork_index in ctor (moneromooo-monero) 2362baf7 network_throttle: initialize m_last_sample_time in ctor (moneromooo-monero) d9400f69 serializtion: add missing mainnet and stagenet fields for 0mq (moneromooo-monero) cbe0122b wallet2: initialize amount to 0 in tx_scan_info_t ctor (moneromooo-monero)
2018-11-06Merge pull request #4731Riccardo Spagni1-1/+1
f26ce08c wallet: add a non destructive blockchain rescan (moneromooo-monero)
2018-11-06Merge pull request #4728Riccardo Spagni1-1/+2
1f35de23 simplewallet: display locked/unlocked state in show_transfers (moneromooo-monero)
2018-11-04wallet2: only export necessary outputs and key imagesmoneromooo-monero1-6/+18
and disable annoying test that requires ridiculous amounts of skullduggery every time some format changes
2018-11-03wallet: add a non destructive blockchain rescanmoneromooo-monero1-1/+1
2018-11-02device/trezor: trezor support addedDusan Klinec1-2/+20
2018-10-29wallet2: initialize amount to 0 in tx_scan_info_t ctormoneromooo-monero1-1/+1
It seems the more prudent thing to do here. It will not catch attempts to use that value before it is initialized when using ASAN or valgrind, but in a case where it does, it will have smaller repercussions. So it seems appropriate in this particular case. Coverity 182498
2018-10-25simplewallet: display locked/unlocked state in show_transfersmoneromooo-monero1-1/+2
it doesn't display the details, which are already displayed in show_transfer
2018-10-07Merge pull request #4036Riccardo Spagni1-0/+17
9acf42d3 Multisig M/N functionality core tests added (naughtyfox) 9f3963e8 Arbitrary M/N multisig schemes: * support in wallet2 * support in monero-wallet-cli * support in monero-wallet-rpc * support in wallet api * support in monero-gen-trusted-multisig * unit tests for multisig wallets creation (naughtyfox)
2018-10-01Arbitrary M/N multisig schemes:naughtyfox1-0/+17
* support in wallet2 * support in monero-wallet-cli * support in monero-wallet-rpc * support in wallet api * support in monero-gen-trusted-multisig * unit tests for multisig wallets creation
2018-10-01wallet: fix --generate-from-json using wrong passwordmoneromooo-monero1-1/+1
2018-09-29Merge pull request #4333Riccardo Spagni1-0/+5
73403004 add --block-notify to monerod and --tx-notify to monero-wallet-{cli,rpc} (moneromooo-monero)
2018-09-29Merge pull request #4458Riccardo Spagni1-1/+1
921b0fb1 use default create_address_file argument (m2049r)
2018-09-21Merge pull request #4401Riccardo Spagni1-3/+3
66901901 README: harmonize command formatting inside README.md (Andrea) 8cd98408 disable AES on s390x architecture (Tuan M. Hoang) 4ed30bab wallet: implement coin splitting for sweep_* 'outputs' option (whythat) 24f52396 wallet: add 'outputs' option for sweep_* commands (whythat) 52e19d69 README: Compile boost with cxxflags=-fPIC cflags=-fPIC (Italocoin Project) 0c77523d README: fill in libsodium package name for Arch (phloatingman)
2018-09-19query backing devicem2049r1-2/+4
2018-09-18Merge pull request #4302Riccardo Spagni1-2/+2
ba8dd347 api/wallet: properly disable key encryption (stoffu)
2018-09-18wallet: add 'outputs' option for sweep_* commandswhythat1-3/+3
'outputs' option allows to specify the number of separate outputs of smaller denomination that will be created by sweep operation. rebased by moneromooo
2018-09-17api/wallet: properly disable key encryptionstoffu1-2/+2
2018-09-14hw_device: support for multiple devices added [for review]Dusan Klinec1-0/+5
- device name is a new wallet property - full device name is now a bit more structured so we can address particular device vendor + device path. Example: 'Ledger', 'Trezor:udp', 'Trezor:udp:127.0.0.1:21324', 'Trezor:bridge:usb01'. The part before ':' identifies HW device implementation, the optional part after ':' is device path to look for. - new --hw-device parameter added to the wallet, can name the hardware device - device reconnect added
2018-09-14Merge pull request #4324Riccardo Spagni1-10/+16
44259e56 wallet: ask-password can now ask without encrypting the secret spend key (moneromooo-monero)
2018-09-14wallet: ask-password can now ask without encrypting the secret spend keymoneromooo-monero1-10/+16
2018-09-14Merge pull request #4332Riccardo Spagni1-1/+5
20171746 wallet2: factor the creation of a new wallet keys file (moneromooo-monero) be6acfd5 wallet2: factor new blockchain setup (moneromooo-monero)
2018-09-14Merge pull request #4253Riccardo Spagni1-201/+0
be001326 remove obsolete daemon selection of fake outs and old tx construction (moneromooo-monero)
2018-09-14remove obsolete daemon selection of fake outs and old tx constructionmoneromooo-monero1-201/+0
2018-09-14Merge pull request #4260Riccardo Spagni1-4/+4
a54dbaee blockchain_blackball: add --force-chain-reaction-pass flag (moneromooo-monero) 44439c32 record blackballs as amount/offset, and add export ability (moneromooo-monero) 4bce935b blockchain_blackball: more optimizations (moneromooo-monero) b66ba783 blockchain_blackball: do not process duplicate blockchains parts (moneromooo-monero) 639a3c01 blockchain_blackball: make it clear secondary passes are not incremental (moneromooo-monero) eb8a51be blockchain_blackball: detect spent outputs by partial ring reuse (moneromooo-monero) d6d276c6 blockchain_blackball: fix chain reaction phase in incremental mode (moneromooo-monero) 2b2a681b blockchain_blackball: avoid false positives for different amounts (moneromooo-monero) 80e4fef3 blockchain_blackball: set transaction looping txn to read only (moneromooo-monero) 4801d6b5 blockchain_blackball: add stats (moneromooo-monero) 846190fd blockchain_blackball: support pre-v2 databases (moneromooo-monero) daa6cc7d blockchain_blackball: use LMDB for the cache (moneromooo-monero) 50cb370d ringdb: allow blackballing many outputs at once (moneromooo-monero)
2018-09-11v8: per byte fee, pad bulletproofs, fixed 11 ring sizemoneromooo-monero1-13/+11
2018-09-11bulletproofs: add multi output bulletproofs to rctmoneromooo-monero1-2/+2
2018-09-10record blackballs as amount/offset, and add export abilitymoneromooo-monero1-4/+4
2018-09-03wallet2: factor the creation of a new wallet keys filemoneromooo-monero1-1/+3
2018-09-03wallet2: factor new blockchain setupmoneromooo-monero1-0/+2
2018-08-23wallet: store trusted-daemon flag in wallet2stoffu1-20/+24
2018-08-16store secret keys encrypted where possiblemoneromooo-monero1-18/+39
The secret spend key is kept encrypted in memory, and decrypted on the fly when needed. Both spend and view secret keys are kept encrypted in a JSON field in the keys file. This avoids leaving the keys in memory due to being manipulated by the JSON I/O API.
2018-08-16wallet: wipe seed from memory where appropriatemoneromooo-monero1-4/+7
2018-08-16wallet2: make --restricted-rpc available for wallet RPC onlystoffu1-3/+1
2018-08-15Merge pull request #4188luigi11111-0/+1
a3fe1c5 simplewallet: add set_tx_key for importing tx keys from 3rd party wallets (stoffu)
2018-08-15Merge pull request #4170luigi11111-0/+1
1c6cfd3 wallet-rpc: add get_address_index command (stoffu)
2018-08-15Merge pull request #4153luigi11111-2/+10
37f0799 wallet: distinguish coinbase from other txes in show_transfers (moneromooo-monero)
2018-08-15Merge pull request #4103luigi11111-2/+3
bcab579 wallet: allow adjusting number of rounds for the key derivation function (stoffu)
2018-08-15Merge pull request #3528luigi11111-1/+1
34d4b79 wallet2: use a gamma distribution to pick fake outs (moneromooo-monero)
2018-08-08wallet: allow adjusting number of rounds for the key derivation functionstoffu1-2/+3
2018-08-03wallet: distinguish coinbase from other txes in show_transfersmoneromooo-monero1-2/+10
2018-07-31wallet-rpc: add get_address_index commandstoffu1-0/+1
2018-07-30simplewallet: add set_tx_key for importing tx keys from 3rd party walletsstoffu1-0/+1
2018-07-27Merge pull request #4091luigi11111-1/+4
a4272de wallet2: unlock keys file before calling verify_password (needed for Windows) (stoffu)
2018-07-19Merge pull request #4087luigi11111-1/+1
d6440ab wallet2: recover from index out of hashchain bounds error (moneromooo-monero)
2018-07-19Merge pull request #4071luigi11111-0/+3
d6d78f1 Allow fractional outputs to be ignored (stoffu)
2018-07-16wallet2: recover from index out of hashchain bounds errormoneromooo-monero1-1/+1
This can happen when there's a very large reorg on the daemon (ie, on testnet)
2018-07-08wallet2: ensure outputs are processed only oncemoneromooo-monero1-0/+1
This should be proof against any way one might get to multiple processing, such as generating the same derivation from the same pubkey, etc
2018-07-03wallet2: use a gamma distribution to pick fake outsmoneromooo-monero1-1/+1
as per "An Empirical Analysis of Linkability in the Monero Blockchain", by Miller et al.
2018-07-03wallet2: unlock keys file before calling verify_password (needed for Windows)stoffu1-1/+4
Also added notes to WalletManager::verifyWalletPassword (which afaik seems unused by anyone at the moment) regarding the need to unlock the keys file beforehand.
2018-07-03Allow fractional outputs to be ignoredstoffu1-0/+3
2018-06-28wallet: prevent the same wallet file from being opened by multiple processesstoffu1-0/+1
2018-06-27Merge pull request #3907luigi11111-1/+9
dcbc17e wallet: include a suggested number of confirmations based on amount (moneromooo-monero)
2018-06-27Merge pull request #3998luigi11111-5/+6
8db23df wallet: on first refresh, start off with a quantized height (moneromooo-monero)
2018-06-27Merge pull request #3991luigi11111-0/+1
798dfcf wallet: allow unspendable unmixable outputs to be discarded (stoffu)
2018-06-27wallet: include a suggested number of confirmations based on amountmoneromooo-monero1-1/+9
This is based on how much an attacking miner stands to lose in block rewardy by mining a private chain which double spends a payment. This is not foolproof, since mining is based on luck, and breaks down as the attacking miner nears 50% of the network hash rate, and the estimation is based on a constant block reward.
2018-06-27Merge pull request #3716luigi11111-8/+47
a2b557f 6795bd0 209ec96 ed2c81e a830db2 57ea902 31a895e ba8331c f7f1917 41be339 f025ae9 ef2cb63 dcfd299 5d3e702 2704624 2771a18 0e4c7d0 (moneromooo-monero)
2018-06-26wallet2: cache ringdb key while refreshingmoneromooo-monero1-0/+14
Speeds up syncing with a lot of outgoing outputs as key generation runs Cryptonight.
2018-06-26wallet2: remove old blockchain size cache hackmoneromooo-monero1-2/+1
2018-06-26wallet2: speedup refreshmoneromooo-monero1-2/+20
key derivation and checking for incoming outputs are threaded in batch before adding blocks to the local blockchain. Other minor bits and bobs are also cached.
2018-06-26wallet2: avoid re-parsing blocks when refreshing in a loopmoneromooo-monero1-1/+1
2018-06-26wallet2: parse blocks in the RPC thread, not the processing threadmoneromooo-monero1-2/+10
Processing typically is the bottleneck
2018-06-26replace std::list with std::vector on some hot pathsmoneromooo-monero1-4/+4
also use reserve where appropriate
2018-06-25Merge pull request #3955luigi11111-1/+7
d7a6b72 wallet2: fix bulletproof cold signing (moneromooo-monero)
2018-06-16Merge pull request #3804luigi11111-0/+1
89e51ec simple-wallet-cli: Add warnings about inaccurate balances to to watch-only wallet (jcktm)
2018-06-16Merge pull request #3780luigi11111-0/+7
9c2a7b4 wallet-rpc: watch-only and cold wallet features added (ph4r05)
2018-06-13wallet: on first refresh, start off with a quantized heightmoneromooo-monero1-5/+6
for privacy reasons, so an untrusted node can't easily track wallets from IP address to IP address, etc. The granularity is 1024 blocks, which is about a day and a half.
2018-06-13wallet: allow unspendable unmixable outputs to be discardedstoffu1-0/+1
2018-06-08Merge pull request #3598luigi11111-0/+16
b21bc00 Wallet: added methods to sign and verify arbitrary message with multisig public signer's key (libwallet & wallet api) (naughtyfox)
2018-06-07wallet2: fix bulletproof cold signingmoneromooo-monero1-1/+7
Cold signing was always using Borromean range proofs, causing a larger tx, and an incorrect fee
2018-06-03wallet-rpc: watch-only and cold wallet features addedDusan Klinec1-0/+7
- unsigned_txset, signed_txset in transfer / submit_transfer / sign_transfer - export_outputs, import_outputs Squashed commits: [f4d9f3d4] wallet-rpc: do_not_relay removed from submit_transfer [5b16a86f] wallet-rpc: review-fix - method signature changes, renaming [b7fbb10a] wallet-rpc: naming fixes (unsigned vs signed), consts renamed [8c7d2727] wallet-rpc: sign_transfer added [481d024a] wallet2: sign_tx splitted to work with strings and structs, more granular [2a474db9] wallet-rpc: wallet2::load_unsigned_tx split to load from str, file [b1e3a018] wallet-rpc: review fix, load_tx_from_str variable rename [1f6373be] wallet-rpc: review fix: save_tx_to_{str,file} [2a08eafc] wallet-rpc: review comments fixes - redundant this removed from wallet2.cpp - load_tx_from_str, load_tx_from_file [43498052] wallet-rpc: submit_transfer added [9c45d1ad] wallet-rpc: watch_only check, return unsigned_txset [62831396] wallet2: added string variants to load_tx, save_tx - analogously to save_multisig_tx - required for monero-wallet-rpc to support watch-only wallet
2018-05-31Merge pull request #3489luigi11111-0/+1
47fdb74 WalletApi: getMultisigInfo entry for gui wallets... (naughtyfox) 47fdb74 Refactored: work with wallet api statuses to make setting and getting operations atomic along with error strings (naughtyfox)
2018-05-29Merge pull request #3405luigi11111-13/+15
80d2f80 wallet2: Update function parameter documentation (leonklingele)
2018-05-15simple-wallet-cli: Add warnings about inaccurate balances to to watch-only ↵jcktm1-0/+1
wallet
2018-04-25Wallet: added methods to sign and verify arbitrary message with multisig ↵naughtyfox1-0/+16
public signer's key (libwallet & wallet api)
2018-04-12Merge pull request #3534Riccardo Spagni1-0/+3
eecfb57d wallet: warn if not using the default ring size (moneromooo-monero)
2018-03-31wallet: warn if not using the default ring sizemoneromooo-monero1-0/+3
2018-03-28WalletApi: getMultisigInfo entry for gui walletsnaughtyfox1-0/+1
WalletApi: makeMultisig call introduced WalletApi: finalizeMultisig call introduced WalletApi: new calls exportMultisigImages and importMultisigImages WalletApi: method to return multisig wallet creation state WalletApi: create multisig transaction, sign multisig transaction, commit transaction and get multisig data are added WalletApi: identation and style fixes
2018-03-21wallet: catch exceptions dealing with ringdb and warnmoneromooo-monero1-1/+1
2018-03-17wallet: make the segregation height settablemoneromooo-monero1-0/+5
via user setting first, then DNS TXT record, hardcoded fallback
2018-03-16Add command line option allowing to restrict the default sub-address ↵stoffu1-0/+1
lookahead in order to avoid so looooong time of set-up when creating a HW based wallet.
2018-03-16wallet: more user friendly print_ringmoneromooo-monero1-3/+12
It can now take a txid (to display rings for all its inputs), and will print rings in a format that set_ring understands
2018-03-16wallet: add a set_ring commandmoneromooo-monero1-0/+1
This is so one can set rings for spent key images in case the attackers don't merge the ring matching patch set.
2018-03-16wallet: make ringdb an object with database statemoneromooo-monero1-6/+10
2018-03-16wallet: add an output blackball list to avoid using those in ringsmoneromooo-monero1-0/+5
2018-03-16wallet: key reuse mitigation optionsmoneromooo-monero1-0/+6
If a pre-fork output is spent on both Monero and attack chain, any post-fork output can be deduced to be a fake output, thereby decreasing the effective ring size. The segregate-per-fork-outputs option, on by default, allows selecting only pre-fork outputs in this case, so that the same ring can be used when spending it on the other side, which does not decrease the effective ring size. This is intended to be SET when intending to spend Monero on the attack fork, and to be UNSET if not intending to spend Monero on the attack fork (since it leaks the fact that the output being spent is pre-fork). If the user is not certain yet whether they will spend pre-fork outputs on a key reusing fork, the key-reuse-mitigation2 option should be SET instead. If you use this option and intend to spend Monero on both forks, then spend real Monero first.
2018-03-16wallet: add shared ring databasemoneromooo-monero1-1/+16
This maps key images to rings, so that different forks can reuse the rings by key image. This avoids revealing the real inputs like would happen if two forks spent the same outputs with different rings. This database is meant to be shared with all Monero forks which don't bother making a new chain, putting users' privacy at risk in the process. It is placed in a shared data directory by default ($HOME/.shared-ringdb on UNIX like systems). You may use --shared-ringdb-dir to override this location, and should then do so for all Monero forks for them to share the database.
2018-03-16add RPC to get a histogram of outputs of a given amountmoneromooo-monero1-0/+2
2018-03-15wallet2+cli+rpc: eliminate redundant m_http_client from cli/rpc and delegate ↵stoffu1-0/+19
calls to wallet2
2018-03-14wallet2: Update function parameter documentationLeon Klingele1-13/+15
This completes and fixes various parameters docs
2018-03-14Merge pull request #3369Riccardo Spagni1-1/+1
1979d53d wallet: fixes and tweaks to the save_watch_only command (moneromooo-monero)
2018-03-10wallet2 / simplewallet: Must opt-in to create '.address.txt' files for new ↵Leon Klingele1-20/+24
wallets Previously, a file containing the unencrypted Monero address was created by default in the wallet's directory. This file might pose as a privacy risk. The creation of this file is now opt-in and can be enabled by providing --create-address-file
2018-03-07wallet: fixes and tweaks to the save_watch_only commandmoneromooo-monero1-1/+1
- save the new keys file as FOO-watchonly.keys, not FOO.keys-watchonly - catch any exception (eg, I/O errors) and error out - print the new keys filename in simplewallet
2018-03-05Stagenetstoffu1-5/+6
2018-03-04Code modifications to integrate Ledger HW device into monero-wallet-cli.cslashm1-1/+11
The basic approach it to delegate all sensitive data (master key, secret ephemeral key, key derivation, ....) and related operations to the device. As device has low memory, it does not keep itself the values (except for view/spend keys) but once computed there are encrypted (with AES are equivalent) and return back to monero-wallet-cli. When they need to be manipulated by the device, they are decrypted on receive. Moreover, using the client for storing the value in encrypted form limits the modification in the client code. Those values are transfered from one C-structure to another one as previously. The code modification has been done with the wishes to be open to any other hardware wallet. To achieve that a C++ class hw::Device has been introduced. Two initial implementations are provided: the "default", which remaps all calls to initial Monero code, and the "Ledger", which delegates all calls to Ledger device.
2018-02-20Merge pull request #3247Riccardo Spagni1-2/+3
89ad162a wallet2: remove unused m_subaddresses_inv (moneromooo-monero) f2c4c399 wallet2: speed up subaddress generation (by about a third) (moneromooo-monero)
2018-02-16wallet2: remove unused m_subaddresses_invmoneromooo-monero1-2/+2
2018-02-16wallet2: speed up subaddress generation (by about a third)moneromooo-monero1-0/+1
2018-02-16Merge pull request #3175Riccardo Spagni1-0/+6
3be98036 wallet-cli: Do not ask for scan_from_height if it explicitly is set to zero. (Maximilian Lupke)
2018-01-28wallet: automatically use low priority if safe (no backlog & recent blocks ↵stoffu1-0/+4
not full)
2018-01-28wallet2: split estimate_backlog to allow for raw fee levelsmoneromooo-monero1-0/+1
2018-01-27Merge pull request #3141Riccardo Spagni1-20/+18
3160a930 wallet2: remove {set|get}_default_decimal_point and use the same funcs under cryptonote:: instead (stoffu) 7d1088d3 wallet2: make scan_output const and omit keys arg (stoffu) bc1ee2c2 wallet2: make member functions const when possible (stoffu)
2018-01-27Merge pull request #3118Riccardo Spagni1-0/+3
ca336c62 simplewallet: check file overwrite when exporting stuff (stoffu)
2018-01-27Merge pull request #3113Riccardo Spagni1-1/+8
ffc2e570 wallet rpc: show fees when querying incoming transfers (stoffu)
2018-01-26Update 2018 copyrightxmr-eric1-1/+1
2018-01-26wallet2: remove {set|get}_default_decimal_point and use the same funcs under ↵stoffu1-2/+0
cryptonote:: instead
2018-01-26wallet2: make scan_output const and omit keys argstoffu1-1/+1
2018-01-26wallet2: make member functions const when possiblestoffu1-17/+17
2018-01-26wallet rpc: show fees when querying incoming transfersstoffu1-1/+8
2018-01-26simplewallet: check file overwrite when exporting stuffstoffu1-0/+3
2018-01-24wallet-cli: Do not ask for scan_from_height if it explicitly is set to zero.Maximilian Lupke1-0/+6
Fixes #3080
2018-01-10Reserve proofstoffu1-0/+42
2018-01-02Merge pull request #2960Riccardo Spagni1-0/+10
5cbcf0aa wallet: support for multisig seeds (moneromooo-monero)
2017-12-25Add a chacha20 variant to go with chacha8moneromooo-monero1-4/+4
2017-12-20wallet: support for multisig seedsmoneromooo-monero1-0/+10
They are hex rather than words, because they are a lot longer than "normal" seeds, as they have to embed a lot more information
2017-12-18Account taggingstoffu1-1/+23
2017-12-17wallet: factor multisig info parsingmoneromooo-monero1-0/+8
2017-12-17wallet: use raw encrypted data in multisig import/export RPCmoneromooo-monero1-2/+2
2017-12-17wallet: add multisig sign/submit RPCmoneromooo-monero1-0/+6
2017-12-17wallet2: fix slow multisig unit tests with subaddress patchmoneromooo-monero1-5/+3
While there, move the wallet2 ctor to the cpp file as it's a huge amount of init list now, and remove an unused one.
2017-12-17make multisig work with subaddressesmoneromooo-monero1-1/+0
Thanks to kenshi84 for help getting this work
2017-12-17wallet: guard against partly initialized multisig walletmoneromooo-monero1-1/+1
2017-12-17add multisig core test and factor multisig building blocksmoneromooo-monero1-1/+5
2017-12-17N-1/N multisigmoneromooo-monero1-27/+83
2017-12-17multisig address generation RPCmoneromooo-monero1-1/+3
2017-12-17Add N/N multisig tx generation and signingmoneromooo-monero1-7/+93
Scheme by luigi1111: Multisig for RingCT on Monero 2 of 2 User A (coordinator): Spendkey b,B Viewkey a,A (shared) User B: Spendkey c,C Viewkey a,A (shared) Public Address: C+B, A Both have their own watch only wallet via C+B, a A will coordinate spending process (though B could easily as well, coordinator is more needed for more participants) A and B watch for incoming outputs B creates "half" key images for discovered output D: I2_D = (Hs(aR)+c) * Hp(D) B also creates 1.5 random keypairs (one scalar and 2 pubkeys; one on base G and one on base Hp(D)) for each output, storing the scalar(k) (linked to D), and sending the pubkeys with I2_D. A also creates "half" key images: I1_D = (Hs(aR)+b) * Hp(D) Then I_D = I1_D + I2_D Having I_D allows A to check spent status of course, but more importantly allows A to actually build a transaction prefix (and thus transaction). A builds the transaction until most of the way through MLSAG_Gen, adding the 2 pubkeys (per input) provided with I2_D to his own generated ones where they are needed (secret row L, R). At this point, A has a mostly completed transaction (but with an invalid/incomplete signature). A sends over the tx and includes r, which allows B (with the recipient's address) to verify the destination and amount (by reconstructing the stealth address and decoding ecdhInfo). B then finishes the signature by computing ss[secret_index][0] = ss[secret_index][0] + k - cc[secret_index]*c (secret indices need to be passed as well). B can then broadcast the tx, or send it back to A for broadcasting. Once B has completed the signing (and verified the tx to be valid), he can add the full I_D to his cache, allowing him to verify spent status as well. NOTE: A and B *must* present key A and B to each other with a valid signature proving they know a and b respectively. Otherwise, trickery like the following becomes possible: A creates viewkey a,A, spendkey b,B, and sends a,A,B to B. B creates a fake key C = zG - B. B sends C back to A. The combined spendkey C+B then equals zG, allowing B to spend funds at any time! The signature fixes this, because B does not know a c corresponding to C (and thus can't produce a signature). 2 of 3 User A (coordinator) Shared viewkey a,A "spendkey" j,J User B "spendkey" k,K User C "spendkey" m,M A collects K and M from B and C B collects J and M from A and C C collects J and K from A and B A computes N = nG, n = Hs(jK) A computes O = oG, o = Hs(jM) B anc C compute P = pG, p = Hs(kM) || Hs(mK) B and C can also compute N and O respectively if they wish to be able to coordinate Address: N+O+P, A The rest follows as above. The coordinator possesses 2 of 3 needed keys; he can get the other needed part of the signature/key images from either of the other two. Alternatively, if secure communication exists between parties: A gives j to B B gives k to C C gives m to A Address: J+K+M, A 3 of 3 Identical to 2 of 2, except the coordinator must collect the key images from both of the others. The transaction must also be passed an additional hop: A -> B -> C (or A -> C -> B), who can then broadcast it or send it back to A. N-1 of N Generally the same as 2 of 3, except participants need to be arranged in a ring to pass their keys around (using either the secure or insecure method). For example (ignoring viewkey so letters line up): [4 of 5] User: spendkey A: a B: b C: c D: d E: e a -> B, b -> C, c -> D, d -> E, e -> A Order of signing does not matter, it just must reach n-1 users. A "remaining keys" list must be passed around with the transaction so the signers know if they should use 1 or both keys. Collecting key image parts becomes a little messy, but basically every wallet sends over both of their parts with a tag for each. Thia way the coordinating wallet can keep track of which images have been added and which wallet they come from. Reasoning: 1. The key images must be added only once (coordinator will get key images for key a from both A and B, he must add only one to get the proper key actual key image) 2. The coordinator must keep track of which helper pubkeys came from which wallet (discussed in 2 of 2 section). The coordinator must choose only one set to use, then include his choice in the "remaining keys" list so the other wallets know which of their keys to use. You can generalize it further to N-2 of N or even M of N, but I'm not sure there's legitimate demand to justify the complexity. It might also be straightforward enough to support with minimal changes from N-1 format. You basically just give each user additional keys for each additional "-1" you desire. N-2 would be 3 keys per user, N-3 4 keys, etc. The process is somewhat cumbersome: To create a N/N multisig wallet: - each participant creates a normal wallet - each participant runs "prepare_multisig", and sends the resulting string to every other participant - each participant runs "make_multisig N A B C D...", with N being the threshold and A B C D... being the strings received from other participants (the threshold must currently equal N) As txes are received, participants' wallets will need to synchronize so that those new outputs may be spent: - each participant runs "export_multisig FILENAME", and sends the FILENAME file to every other participant - each participant runs "import_multisig A B C D...", with A B C D... being the filenames received from other participants Then, a transaction may be initiated: - one of the participants runs "transfer ADDRESS AMOUNT" - this partly signed transaction will be written to the "multisig_monero_tx" file - the initiator sends this file to another participant - that other participant runs "sign_multisig multisig_monero_tx" - the resulting transaction is written to the "multisig_monero_tx" file again - if the threshold was not reached, the file must be sent to another participant, until enough have signed - the last participant to sign runs "submit_multisig multisig_monero_tx" to relay the transaction to the Monero network
2017-12-17wallet: add multisig key generationmoneromooo-monero1-1/+21
Scheme by luigi1111
2017-12-16move includes around to lessen overall loadmoneromooo-monero1-2/+0
2017-12-16Merge pull request #2860Riccardo Spagni1-12/+12
3dffe71b new wipeable_string class to replace std::string passphrases (moneromooo-monero) 7a2a5741 utils: initialize easylogging++ in on_startup (moneromooo-monero) 54950829 use memwipe in a few relevant places (moneromooo-monero) 000666ff add a memwipe function (moneromooo-monero)
2017-12-08add bulletproofs from v7 on testnetmoneromooo-monero1-1/+1
2017-12-02Merge pull request #2833Riccardo Spagni1-0/+1
b0426d4c Fixes #759 Add sanity check on restore height (Cifrado)
2017-11-27new wipeable_string class to replace std::string passphrasesmoneromooo-monero1-12/+12