Refactor CWallet's inheritance chain #16227
Conversation
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
|
Rebased |
|
Rebased |
|
Looks like this doesn't compile with |
|
There were some lock order issues (I guess bad copy paste?) that I fixed.
Seems to be working for me now although I didn't actually do anything to try to fix it. Does it work for you now? |
|
You can see the failure here: https://travis-ci.org/bitcoin/bitcoin/jobs/549788027#L3052 (in the build step) |
|
Fixed those warnings. |
ryanofsky
left a comment
ryanofsky
left a comment
There was a problem hiding this comment.
utACK first seven commits (last commit seems harmless but not desirable). I left some comments, but feel free to ignore them. This PR is easy to understand and very nicely broken up. I confirmed the relevant parts are move only and that this doesn't change behavior.
- faa513ea3dc376a69d382b943e3b1358d8baed6d Add HaveKey and HaveCScript to SigningProvider (1/8)
- 4f1b9d808efab7562099a2d07c406aeb29e8516e Remove CKeyStore and squash into CBasicKeyStore (2/8)
- b8f6f3f25f9fd45d8659bfa15800c09bda951872 Remove HaveKey static function from keystore (3/8)
- ec83adc1aed0503c62d9a3cb397508097b2b95a0 scripted-diff: rename CBasicKeyStore to FillableSigningProvider (4/8)
- 39659203e9104fbce270d7dd62790e954d55f55d Move KeyOriginInfo to its own header file (5/8)
- a96967901b2b8b4a36a06b63581f28ae0ea3f145 Move various SigningProviders to signingprovider.{cpp,h} (6/8)
- 9a65a1e55ec5ac141c3b5a7e4d167f48712dc3cf Remove CCryptoKeyStore and move all of it's functionality into CWallet (7/8)
- 8ce8d6a3200921c960d41bca0ba5bf0ab176c5ee Move WatchOnly stuff from SigningProvider to CWallet (8/8)
src/keystore.cpp
Outdated
There was a problem hiding this comment.
In commit "Remove HaveKey static function from keystore" (b8f6f3f25f9fd45d8659bfa15800c09bda951872)
Would be good to mention why removing this doesnt' change behavior in the commit description (I'd assume because hd keys are always compressed).
There was a problem hiding this comment.
Actually, looking at it now, think this does actually change behavior. I think I will move this function into rpcwallet.cpp where it is used.
There was a problem hiding this comment.
nit: don't forget to rename the commit
src/script/signingprovider.h
Outdated
There was a problem hiding this comment.
In commit "Move WatchOnly stuff from SigningProvider to CWallet" (8ce8d6a3200921c960d41bca0ba5bf0ab176c5ee)
The changes in this commit seem undesirable and I don't understand the motivation for them. Why move watch only storage code away from script and key storage code that it's actually similar to, into the cwallet class which less related and more complicated? I could understand if this was actually simplifying something, for example by removing ability to store watch only keys alongside signing keys. But this doesn't seem to be simplifying anything.
I think i'd advise dropping this commit from the PR. Even if it is doing something useful (which it might be), it seems like it's going in the opposite direction as the other changes by splitting things up instead of consolidating.
There was a problem hiding this comment.
The point of this was that SigningProviders provide things for signing which watchonly things are not. Those are just scripts and keys that CWallet needs to know and are not related to the things that a SigningProvider needs to provide. So that's why I moved them into CWallet. Later these will get moved in the the LegacyScryptPubKeyManager.
There was a problem hiding this comment.
How does solvability play into this?
achow101
force-pushed
the
rm-keystores
branch
2 times, most recently
from
5110e8a to
ad2e52c
Compare
|
@achow101 per @MarcoFalke's request please see #16303 (comment) |
|
Fixed the include mentioned in #16303 |
l2a5b1
left a comment
l2a5b1
left a comment
There was a problem hiding this comment.
On a concept level I was wondering if it makes sense to:
- make
SigningProvidera "pure interface" (preferably defined in its own header file). - choose composition of
FillableSigningProviderover inheritance inCWallet.
The names of the SigningProvider subtypes didn't really resonate with me. Perhaps there are better alternatives. I am obviously nitpicking here.
src/script/signingprovider.h
Outdated
There was a problem hiding this comment.
Any thoughts on:
(1) turning SigningProvider into a "pure interface" that only declares pure virtual functions?
(2) isolating SigningProvider and define it in its own header file?
These changes could make sense because we are using SigningProvider as an interface.
There was a problem hiding this comment.
I think it is fine to leave it here. Making it a pure interface does make sense, but I don't think I will do that here.
src/wallet/wallet.h
Outdated
There was a problem hiding this comment.
In the spirit of this pull request it could make sense to choose composition of FillableSigningProvider over inheritance.
There was a problem hiding this comment.
We do that later with the rest of the restructure with the introduction of the ScriptPubKeyMan. I'm not sure that it makes sense to make it a member now rather than later where a bunch of things will also change.
There was a problem hiding this comment.
utACK f76c4819f6f37711f2b35562131ede4fe0438671
40da275a86d81a41b4a331efce33cd3e2074e592: Typo in commit message (it's should be its).
48f95eed20dae512a1ad62070d9d67771464ec74: Verified move-only.
I point out a number of include orderings; there are more; I left them there because it looked like attention was paid to this in some places.
There was a problem hiding this comment.
ACK f76c481
Nit: you can remove "Built on" from the description.
Maybe keep EncryptSecret, DecryptSecret and DecryptKey in wallet/crypter.cpp? It makes me slightly sad to see wallet/wallet.cpp grow.
I checked the scripted diff (to my surprise, it works on macOS).
git show [hash] --color-moved=dimmed-zebra is quite handy for some of these commits.
It could make sense to turn the last commit, which moves watch-only stuff to CWallet, into a separate PR. See this discussion.
src/keystore.cpp
Outdated
There was a problem hiding this comment.
nit: don't forget to rename the commit
src/script/signingprovider.cpp
Outdated
There was a problem hiding this comment.
This is only called directly after adding the privkey or watchonly key:
CCryptoKeyStore::AddCryptedKey
CBasicKeyStore::AddKeyPubKey
CBasicKeyStore::AddWatchOnly
perhaps leave a comment at the top of this function to the effect.
achow101
force-pushed
the
rm-keystores
branch
2 times, most recently
from
9ebe1f6 to
794ce1b
Compare
-BEGIN VERIFY SCRIPT- git grep -l "CBasicKeyStore" | xargs sed -i -e 's/CBasicKeyStore/FillableSigningProvider/g' -END VERIFY SCRIPT-
Moves all of the various SigningProviders out of sign.{cpp,h} and
keystore.{cpp,h}. As such, keystore.{cpp,h} is also removed.
Includes and the Makefile are updated to reflect this. Includes were largely
changed using:
git grep -l "keystore.h" | xargs sed -i -e 's;keystore.h;script/signingprovider.h;g'
Instead of having a separate CCryptoKeyStore that handles the encryption stuff, just roll it all into CWallet.
|
re-ACK 93ce4a0; it keeps |
| virtual bool AddKeyPubKey(const CKey &key, const CPubKey &pubkey) =0; | ||
|
|
||
| //! Check whether a key corresponding to a given address is present in the store. | ||
| virtual bool HaveKey(const CKeyID &address) const =0; |
There was a problem hiding this comment.
mu-nit: code commend above should be removed as well
src/script/signingprovider.cpp
Outdated
There was a problem hiding this comment.
This is only called directly after adding the privkey or watchonly key:
CCryptoKeyStore::AddCryptedKey
CBasicKeyStore::AddKeyPubKey
CBasicKeyStore::AddWatchOnly
perhaps leave a comment at the top of this function to the effect.
|
utACK 93ce4a0 easy to follow |
|
code review ACK 93ce4a0 |
93ce4a0 Move WatchOnly stuff from SigningProvider to CWallet (Andrew Chow) 8f5b81e Remove CCryptoKeyStore and move all of it's functionality into CWallet (Andrew Chow) 37a79a4 Move various SigningProviders to signingprovider.{cpp,h} (Andrew Chow) 16f8096 Move KeyOriginInfo to its own header file (Andrew Chow) d9becff scripted-diff: rename CBasicKeyStore to FillableSigningProvider (Andrew Chow) a913e3f Move HaveKey static function from keystore to rpcwallet where it is used (Andrew Chow) c7797ec Remove CKeyStore and squash into CBasicKeyStore (Andrew Chow) 1b699a5 Add HaveKey and HaveCScript to SigningProvider (Andrew Chow) Pull request description: This PR compresses the `CWallet` chain of inheritance from 5 classes to 3 classes. `CBasicKeyStore` is renamed to `FillableSigningProvider` and some parts of it (the watchonly parts) are moved into `CWallet`. `CKeyStore` and `CCrypoKeyStore` are completely removed. `CKeyStore`'s `Have*` functions are moved into `SigningProvider` and the `Add*` moved into `FillableSigningProvider`, thus allowing it to go away entirely. `CCryptoKeyStore`'s functionality is moved into `CWallet`. The new inheritance chain is: ``` SigningProvider -> FillableSigningProvider -> CWallet ``` `SigningProvider` now is the class the provides keys and scripts and indicates whether keys and scripts are present. `FillableSigningProvider` allows keys and scripts to be added to the signing provider via `Add*` functions. `CWallet` handles all of the watchonly stuff (`AddWatchOnly`, `HaveWatchOnly`, `RemoveWatchOnly` which were previously in `CKeyStore`) and key encryption (previously in `CCryptoKeyStore`). Implements the 2nd [prerequisite](https://github.com/bitcoin-core/bitcoin-devwiki/wiki/Wallet-Class-Structure-Changes#cwallet-subclass-stack) from the wallet restructure. ACKs for top commit: Sjors: re-ACK 93ce4a0; it keeps `EncryptSecret`, `DecryptSecret` and `DecryptKey` in `wallet/crypter.cpp`, but makes them not static. It improves alphabetical includes, reorders some function definitions, fixes commit message, brings back lost code comment. instagibbs: utACK 93ce4a0 Tree-SHA512: 393dfd0623ad2dac38395eb89b862424318d6072f0b7083c92a0d207fd032c48b284f5f2cb13bc492f34557de350c5fee925da02e47daf011c5c6930a721b6d3
93ce4a0 Move WatchOnly stuff from SigningProvider to CWallet (Andrew Chow) 8f5b81e Remove CCryptoKeyStore and move all of it's functionality into CWallet (Andrew Chow) 37a79a4 Move various SigningProviders to signingprovider.{cpp,h} (Andrew Chow) 16f8096 Move KeyOriginInfo to its own header file (Andrew Chow) d9becff scripted-diff: rename CBasicKeyStore to FillableSigningProvider (Andrew Chow) a913e3f Move HaveKey static function from keystore to rpcwallet where it is used (Andrew Chow) c7797ec Remove CKeyStore and squash into CBasicKeyStore (Andrew Chow) 1b699a5 Add HaveKey and HaveCScript to SigningProvider (Andrew Chow) Pull request description: This PR compresses the `CWallet` chain of inheritance from 5 classes to 3 classes. `CBasicKeyStore` is renamed to `FillableSigningProvider` and some parts of it (the watchonly parts) are moved into `CWallet`. `CKeyStore` and `CCrypoKeyStore` are completely removed. `CKeyStore`'s `Have*` functions are moved into `SigningProvider` and the `Add*` moved into `FillableSigningProvider`, thus allowing it to go away entirely. `CCryptoKeyStore`'s functionality is moved into `CWallet`. The new inheritance chain is: ``` SigningProvider -> FillableSigningProvider -> CWallet ``` `SigningProvider` now is the class the provides keys and scripts and indicates whether keys and scripts are present. `FillableSigningProvider` allows keys and scripts to be added to the signing provider via `Add*` functions. `CWallet` handles all of the watchonly stuff (`AddWatchOnly`, `HaveWatchOnly`, `RemoveWatchOnly` which were previously in `CKeyStore`) and key encryption (previously in `CCryptoKeyStore`). Implements the 2nd [prerequisite](https://github.com/bitcoin-core/bitcoin-devwiki/wiki/Wallet-Class-Structure-Changes#cwallet-subclass-stack) from the wallet restructure. ACKs for top commit: Sjors: re-ACK 93ce4a0; it keeps `EncryptSecret`, `DecryptSecret` and `DecryptKey` in `wallet/crypter.cpp`, but makes them not static. It improves alphabetical includes, reorders some function definitions, fixes commit message, brings back lost code comment. instagibbs: utACK bitcoin@93ce4a0 Tree-SHA512: 393dfd0623ad2dac38395eb89b862424318d6072f0b7083c92a0d207fd032c48b284f5f2cb13bc492f34557de350c5fee925da02e47daf011c5c6930a721b6d3
Summary: bitcoin/bitcoin@1b699a5 --- Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check Reviewers: #bitcoin_abc, deadalnix, nakihito Reviewed By: #bitcoin_abc, deadalnix, nakihito Differential Revision: https://reviews.bitcoinabc.org/D6553
Summary: bitcoin/bitcoin@c7797ec --- Depends on D6553 Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check Reviewers: #bitcoin_abc, nakihito Reviewed By: nakihito Differential Revision: https://reviews.bitcoinabc.org/D6554
…cwallet where it is used Summary: bitcoin/bitcoin@a913e3f --- Depends on D6554 Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check Reviewers: #bitcoin_abc, nakihito Reviewed By: nakihito Differential Revision: https://reviews.bitcoinabc.org/D6555
…SigningProvider Summary: -BEGIN VERIFY SCRIPT- git grep -l "CBasicKeyStore" | xargs sed -i -e 's/CBasicKeyStore/FillableSigningProvider/g' -END VERIFY SCRIPT- bitcoin/bitcoin@d9becff --- Depends on D6555 Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check-all Reviewers: #bitcoin_abc, nakihito Reviewed By: nakihito Differential Revision: https://reviews.bitcoinabc.org/D6556
Summary: bitcoin/bitcoin@16f8096 --- Depends on D6556 Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check Reviewers: #bitcoin_abc, nakihito Reviewed By: nakihito Differential Revision: https://reviews.bitcoinabc.org/D6557
….{cpp,h}
Summary:
Moves all of the various SigningProviders out of sign.{cpp,h} and
keystore.{cpp,h}. As such, keystore.{cpp,h} is also removed.
Includes and the Makefile are updated to reflect this. Includes were largely
changed using:
git grep -l "keystore.h" | xargs sed -i -e 's;keystore.h;script/signingprovider.h;g'
bitcoin/bitcoin@37a79a4
---
Depends on D6557
Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]]
Test Plan:
In CMake build dir:
ninja check-all
In autotools build dir:
make check-recursive
./test/functional/test_runner.py
Reviewers: #bitcoin_abc, nakihito
Reviewed By: nakihito
Subscribers: nakihito
Differential Revision: https://reviews.bitcoinabc.org/D6558
…tionality into CWallet Summary: Instead of having a separate CCryptoKeyStore that handles the encryption stuff, just roll it all into CWallet. bitcoin/bitcoin@8f5b81e --- Depends on D6558 Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check-all Reviewers: #bitcoin_abc, deadalnix Reviewed By: #bitcoin_abc, deadalnix Differential Revision: https://reviews.bitcoinabc.org/D6560
…llet Summary: bitcoin/bitcoin@93ce4a0?file-filters%5B%5D=.h#diff-12635a58447c65585f51d32b7e04075bR1051 --- Depends on D6560 Concludes backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check-all Reviewers: #bitcoin_abc, nakihito Reviewed By: nakihito Subscribers: nakihito Differential Revision: https://reviews.bitcoinabc.org/D6561
Summary: bitcoin/bitcoin@1b699a5 --- Partial backport of Core [[bitcoin/bitcoin#16227 | PR16227]] Test Plan: ninja check Reviewers: #bitcoin_abc, deadalnix, nakihito Reviewed By: #bitcoin_abc, deadalnix, nakihito Differential Revision: https://reviews.bitcoinabc.org/D6553
10 participants
This PR compresses the
CWalletchain of inheritance from 5 classes to 3 classes.CBasicKeyStoreis renamed toFillableSigningProviderand some parts of it (the watchonly parts) are moved intoCWallet.CKeyStoreandCCrypoKeyStoreare completely removed.CKeyStore'sHave*functions are moved intoSigningProviderand theAdd*moved intoFillableSigningProvider, thus allowing it to go away entirely.CCryptoKeyStore's functionality is moved intoCWallet. The new inheritance chain is:SigningProvidernow is the class the provides keys and scripts and indicates whether keys and scripts are present.FillableSigningProviderallows keys and scripts to be added to the signing provider viaAdd*functions.CWallethandles all of the watchonly stuff (AddWatchOnly,HaveWatchOnly,RemoveWatchOnlywhich were previously inCKeyStore) and key encryption (previously inCCryptoKeyStore).Implements the 2nd prerequisite from the wallet restructure.