Pls see https://github.com/UdjinM6/dash/commits/pr3657

tl;dr:

1. 209f43f should be reverted cause it violates discard/dustrelay fee definitions
2. I think you messed up "finished" conditions (39a60562aa95ef2a4dbd6a49e00c2cc0f61957a5)
3. The rest is just some refactoring/cleanups.

1. 209f43f should be reverted cause it violates discard/dustrelay fee definitions

Isn't a partial revert like in 1365db1 enough? This way we can still say 100% sure that the same feerate is used for change dust consideration.

2. I think you messed up "finished" conditions (39a6056)

Ops, good catch!

3. The rest is just some refactoring/cleanups.

Picked them all 👍

@UdjinM6 While reviewing your suggestions more precisely i realized that your refactoring of GetAmountUsed() in 2b01a09 introduced a rounding bug. Reason it didn't respect fees in the beginning was to always have only one fee calculation with the total number of bytes. With it respecting fees you need to call GetFee() twice with subtotals in TryAddOutput and TryAddOutputs https://github.com/dashpay/dash/blob/2b01a09c6e8263095f316961a62b8bfa514ec487/src/privatesend/privatesend-util.cpp#L169-L172 First call is in GetAmountLeft() which calls GetAmountUsed() https://github.com/dashpay/dash/blob/2b01a09c6e8263095f316961a62b8bfa514ec487/src/privatesend/privatesend-util.cpp#L198-L206 This twice calling GetFee() results in a rounding error due to integer cutoffs here https://github.com/dashpay/dash/blob/2b01a09c6e8263095f316961a62b8bfa514ec487/src/policy/feerate.cpp#L28

Lets assume GetBytesTotal() == 200 and nBytesOutput == 34 and the feerate 1234 duff/KB

With 2b01a09 applied:
1234*200/1000 = 246,8 (246 in integer world)
1234*34/1000 = 41,956 (41 in integer world)
= 287 duffs fee

With the initial commits:
1234*234/1000 = 288,756 (288 in integer world)
= 288 duffs fee

With the force push i dropped 2b01a09, 7c30d5d, f90e626 again. The latter two because they bring no drawbacks but IMO without 2b01a09 it just brings more readability to keep them.. still feel free to complain again if you prefer to have them dropped for some reason. There are also the new commits 94529da, 3cb7d2d and 7502fcb

Makes sense. Still don't see a reason for CoinControl::m_discard_feerate though abbb195ff5.

Makes sense. Still don't see a reason for CoinControl::m_discard_feerate though abbb195.

Okaaay... just one more time a bit more detailed in case you didn't get the reasoning i have in mind for it: I can't say for sure that there is no chance for the code down in the deeps of GetDiscardRate() to give different results when it's called twice with some time elapsed in between, can you? So for me thats the reason to have CCoinControl::m_discard_rate as it makes sure we still use the same feerate in both cases (CTransactionBuilder::IsDust and CWallet::CreateTransaction). What may happen if the results are different is that CTransactionBuilder::Commit fails. Sure, then it tries it one more time but what if there is only one utxo left with a dust change, this continues to happen and the mixing starts to stuck because of it? I know, it sounds not very likely 😆 but at the end it's a potential unexpected scenario we could avoid with few lines of code. I rather prefer to prevent such edge cases if i know about them. But if you are sure that can't happen or if you think this is an acceptable case just give me your 👍 and i will drop it.

Oh, by 👍 I meant that it makes sense and I understand the reason now 🙈 pls ignore my previous suggestion and drop 5fb050b

Oh, by 👍 I meant that it makes sense and I understand the reason now 🙈 pls ignore my previous suggestion and drop 5fb050b

Ahhh ops, i took it as the "go drop it thumbs up" 😅

Pls see https://github.com/UdjinM6/dash/commits/pr3657 (starting with 703922203ecfa8f18a2c0c9ed853d91ab7c3fc368b19c551fd85840aeadeaf64f04ffe655cd6072f)

EDIT: tl;dr: change outputs should be handled automatically, size calculations need to be more precise, some minor tweaks (off-by-one, types, logs, comments)

Overall nice suggestions but im not a big fan of 703922203ecfa8f18a2c0c9ed853d91ab7c3fc36 yet, convince me :D

Why does it matter in this case if the change is not handled automatically? The idea of doing it manually was to have two outputs with the same amount in this case as this imo reduces potential false positive detection even more for the "make collateral amounts tx type".

Edit: Also there is no "Make sure its not denominated" anymore for the change if its done automatically as the amount is not set through getAdjustedAmount

Why does it matter in this case if the change is not handled automatically?

Added f6f0f8ac72. Try mixing with --paytxfee=0.001 for example and you'll see that it fails without 7039222 - when feerate is much greater than discard feerate, wallet tries to create new change output in such cases and fails with "not enough funds".

Also there is no "Make sure its not denominated" anymore for the change if its done automatically as the amount is not set through getAdjustedAmount.

Right, it's not really used after 7039222 (wasn't ever needed in case3, the smallest denom is 10x larger than GetCollateralAmount) and it can be dropped together with UpdateAmount ced2939491.

Nice catch with the extra byte due to the compact serialize size 👍 I added some commits related to that to wrap it up a bit and to also respect this when trying to add outputs in TryAddOutput and TryAddOutputs. Let me know what you think.

8b19c551fd85840aeadeaf64f04ffe655cd6072f is also a good catch! But i modified it a bit in 05ee734, thoughts?

And i picked the others except 703922203ecfa8f18a2c0c9ed853d91ab7c3fc36. But i will have a better look at it and your points again later if i get the chance or tomorrow!

Added f6f0f8a, ee0e3ee, e42c43f
Dropped 8d4dcd2 (moved it into a4620e4), 6801983 (not longer needed if #3668 gets merged), part of dfebc25

@UdjinM6 are you good now with #3668 instead of 7039222?

Rebased on develop + e755205

see https://github.com/PastaPastaPasta/dash/commits/pr_3657

Picked 87b7431, 2543a4c and bcdcb13 (squashed the 3 typo commits) 👍

About the others:

71d49f9bd57dc0937358001f5638f1c506b114dc and 6c34988801d640a91d624a3ab8cc7ae70ab0cf58: does it really bring any improvement / make a difference to use explicit casts there? IMO this just blows it up unnecessarily. We will never reach anything near INT_MAX in any of those cases, do we?

eaeb50e7a61dd6125f9cde76977e76770fed29be: why?

see https://github.com/PastaPastaPasta/dash/commits/pr_3657

Picked 87b7431, 2543a4c and bcdcb13 (squashed the 3 typo commits) +1

About the others:

71d49f9 and 6c34988: does it really bring any improvement / make a difference to use explicit casts there? IMO this just blows it up unnecessarily. We will never reach anything near INT_MAX in any of those cases, do we?

eaeb50e: why?

eaeb50e resolves a clang-tidy warning

71d49f9#diff-7d55c5a40c548772705e07a8dff7a49eR188-R189 L189 specifically resolves a clang-tidy, and the rest imo it's good standard to validate when going from unsigned int -> int or long -> int or really any narrowing conversion, that we aren't having something weird happen. I think the explicit cast on L249 also resolves clang-tidy warning

6c34988 resolves clang-tidy warning

Ok, seems like im just not a big fan of some of those clang-tidy recommendations lol.. not the first time i noticed that haha.. and i really wonder if we should always follow them.. especially eaeb50e is one i can't understand at all 😆 anyway, they don't do anything bad so i just picked them.

Ok, seems like im just not a big fan of some of those clang-tidy recommendations lol.. not the first time i noticed that haha.. and i really wonder if we should always follow them.. especially eaeb50e is one i can't understand at all laughing anyway, they don't do anything bad so i just picked them.

see https://stackoverflow.com/a/46292715

see https://stackoverflow.com/a/46292715

It's not that i didn't get that it doesn't make a difference :D I just don't see the point why clang-tidy prefers to introduce inconsistencies between declaration and definition. I mean

static CAmount GetAmountLeft(CAmount, CAmount, CAmount);

also works, but you also don't leave variable names out of the declaration only because they are ignored by the compiler and they don't have an impact on the definition, or is this also something clang-tidy recommends?

see https://stackoverflow.com/a/46292715

It's not that i didn't get that it doesn't make a difference :D I just don't see the point why clang-tidy prefers to introduce inconsistencies between declaration and definition. I mean

static CAmount GetAmountLeft(CAmount, CAmount, CAmount);

also works, but you also don't leave variable names out of the declaration only because they are ignored by the compiler and they don't have an impact on the definition, or is this also something clang-tidy recommends?

Seems like most of the thought process is the fact that something is const doesn't change how someone is going to call that function, whereas knowing the names is pretty valuable

I think I'm ready to ACK once those comments become doxygen