Restore Send button when using external signer #555
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Concept ACK. I've verified that no new or changed strings are presented. |
promag
reviewed
Feb 22, 2022
src/qt/sendcoinsdialog.cpp
Outdated
| // Copy PSBT to clipboard and offer to save | ||
| presentPSBT(psbtx); | ||
| } else { // Send clicked | ||
| assert(!model->wallet().privateKeysDisabled() || model->wallet().hasExternalSigner()); | ||
| bool complete = false; |
There was a problem hiding this comment.
I think it makes more sense to refactor this to:
bool broadcast = true;
if (model->wallet().hasExternalSigner()) {
// ...
bool complete;
send_failure = !signWithExternalSigner(psbtx, mtx, complete);
if (complete) {
// ...
} else {
// ...
broadcast = false
}
}
if (broadcast) {
// ...
}This commit does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change
Sjors
force-pushed
the
2022/02/send_button
branch
from
a49bb0c to
33d165d
Compare
|
Addressed @promag's feedback. |
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
promag
reviewed
Mar 6, 2022
src/qt/sendcoinsdialog.cpp
Outdated
| @@ -502,19 +502,34 @@ void SendCoinsDialog::sendButtonClicked([[maybe_unused]] bool checked) | |||
| } | |||
|
|
|||
| bool send_failure = false; | |||
| if (retval == QMessageBox::Save) { | |||
| bool broadcast = true; | |||
There was a problem hiding this comment.
diff --git a/src/qt/sendcoinsdialog.cpp b/src/qt/sendcoinsdialog.cpp
index c420aa3581..87a0e4a098 100644
--- a/src/qt/sendcoinsdialog.cpp
+++ b/src/qt/sendcoinsdialog.cpp
@@ -502,7 +502,6 @@ void SendCoinsDialog::sendButtonClicked([[maybe_unused]] bool checked)
}
bool send_failure = false;
- bool broadcast = true;
if (retval == QMessageBox::Save) { // Create Unsigned clicked
CMutableTransaction mtx = CMutableTransaction{*(m_current_transaction->getWtx())};
PartiallySignedTransaction psbtx(mtx);
@@ -510,11 +509,13 @@ void SendCoinsDialog::sendButtonClicked([[maybe_unused]] bool checked)
presentPSBT(psbtx);
} else { // Send clicked
assert(!model->wallet().privateKeysDisabled() || model->wallet().hasExternalSigner());
+ bool broadcast = true;
if (model->wallet().hasExternalSigner()) {
CMutableTransaction mtx = CMutableTransaction{*(m_current_transaction->getWtx())};
PartiallySignedTransaction psbtx(mtx);
bool complete = false;
send_failure = !signWithExternalSigner(psbtx, mtx, complete);
+ broadcast = complete;
// A transaction signed with an external signer is not always complete,
// e.g. in a multisig wallet.
if (complete) {
@@ -523,7 +524,6 @@ void SendCoinsDialog::sendButtonClicked([[maybe_unused]] bool checked)
m_current_transaction->setWtx(tx);
} else if (!send_failure) {
presentPSBT(psbtx);
- broadcast = false;
}
}There was a problem hiding this comment.
If the user rejects the transaction then complete = false and it will present the PSBT. We can't tell the difference between rejection and failure, so that's difficult to avoid. I don't see how this patch would change that.
There was a problem hiding this comment.
If user rejects then complete = false and send_failure = true, so it doesn't presentPSBT() and because
broadcast = true it calls model->sendCoins()
There was a problem hiding this comment.
I see. I restructured this code and fix a bit...
There was a problem hiding this comment.
Thanks, LGTM, will re-test.
Sjors
changed the title
|
Concept ACK |
Sjors
force-pushed
the
2022/02/send_button
branch
2 times, most recently
from
4ed2a3b to
86e3e2c
Compare
|
Concept ACK |
promag
approved these changes
Mar 11, 2022
luke-jr
reviewed
Mar 14, 2022
| bool complete = false; | ||
| // Always fill without signing first. This prevents an external signer | ||
| // from being called prematurely and is not expensive. | ||
| TransactionError err = model->wallet().fillPSBT(SIGHASH_ALL, false /* sign */, true /* bip32derivs */, nullptr, psbtx, complete); |
There was a problem hiding this comment.
e1c1c61 claims "Does not change behavior.", yet this is no longer done for wallets without an external signer.
There was a problem hiding this comment.
Good point. I moved this out of the helper function.
It leads to some duplication in 0538614, but it's probably better to preserve the behavior. It might even useful, though I'm a bit rusty on what PSBT filling does on top of what the wallet already does.
There was a problem hiding this comment.
Yes, as a potential follow-up it looks like this code block could be potentially de-duped by extracting to a helper method that returns psbtx and mtx.
CMutableTransaction mtx = CMutableTransaction{*(m_current_transaction->getWtx())};
PartiallySignedTransaction psbtx(mtx);
bool complete = false;
TransactionError err = model->wallet().fillPSBT(SIGHASH_ALL, /*sign=*/false, /*bip32derivs=*/true, /*n_signed=*/nullptr, psbtx, complete);
assert(!complete);
assert(err == TransactionError::OK);(and TransactionError err could be const)
There was a problem hiding this comment.
I'm going to avoid touching this now, but I agree it would be good to move into a helper.
Sjors
force-pushed
the
2022/02/send_button
branch
from
86e3e2c to
225794f
Compare
Sjors
force-pushed
the
2022/02/send_button
branch
2 times, most recently
from
347871f to
0538614
Compare
luke-jr
suggested changes
Mar 15, 2022
src/qt/sendcoinsdialog.cpp
Outdated
| bool SendCoinsDialog::signWithExternalSigner(PartiallySignedTransaction& psbtx, CMutableTransaction& mtx, bool& complete) { | ||
| TransactionError err; | ||
| try { | ||
| err = model->wallet().fillPSBT(SIGHASH_ALL, /*sign=*/false, /*bip32derivs=*/true, /*n_signed=*/nullptr, psbtx, complete); |
There was a problem hiding this comment.
sign was true here - why was it changed to false?
There was a problem hiding this comment.
Yikes, I broke that during the style fix.
(fixed and re-tested on device this time)
Does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change
Before this change the send confirmation dialog would keep the Send option disabled. The Create Unsigned choice would actually send. This is potentially confusing. With this change the Create Unsigned button will not attempt to sign and always produce a PSBT. The Send button will attempt to sign, and only return a PSBT if more signatures are needed. When using an external signer, the Create Unsigned option only appears when PSBT controls are enabled in the wallet settings. This commit maintains the pre-existing behavior of filling the PSBT (without signing) even when not using an external signer. Closes bitcoin-core#551 Co-authored-by: Jon Atack <jon@atack.com>
Sjors
force-pushed
the
2022/02/send_button
branch
from
0538614 to
2efdfb8
Compare
luke-jr
approved these changes
Mar 16, 2022
|
utACK 2efdfb8 diff review since my last review, code re-review, rebased to current master, verified clean debug build of each commit |
hebasto
pushed a commit
to hebasto/bitcoin
that referenced
this pull request
Mar 17, 2022
This commit does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Github-Pull: bitcoin-core/gui#555 Rebased-From: 026b5b4
hebasto
pushed a commit
to hebasto/bitcoin
that referenced
this pull request
Mar 17, 2022
Does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Github-Pull: bitcoin-core/gui#555 Rebased-From: 4b5a6cd
hebasto
pushed a commit
to hebasto/bitcoin
that referenced
this pull request
Mar 17, 2022
Before this change the send confirmation dialog would keep the Send option disabled. The Create Unsigned choice would actually send. This is potentially confusing. With this change the Create Unsigned button will not attempt to sign and always produce a PSBT. The Send button will attempt to sign, and only return a PSBT if more signatures are needed. When using an external signer, the Create Unsigned option only appears when PSBT controls are enabled in the wallet settings. This commit maintains the pre-existing behavior of filling the PSBT (without signing) even when not using an external signer. Closes bitcoin#551 Co-authored-by: Jon Atack <jon@atack.com> Github-Pull: bitcoin-core/gui#555 Rebased-From: 2efdfb8
|
Backported in bitcoin/bitcoin#24596. |
|
It might be good to have another tested ACK of the latest push. |
sidhujag
pushed a commit
to syscoin/syscoin
that referenced
this pull request
Mar 18, 2022
maflcko
pushed a commit
to bitcoin/bitcoin
that referenced
this pull request
Mar 24, 2022
70f2c57 options: flip listenonion to false if not listening (Vasil Dimov) 642f272 gui: restore Send for external signer (Sjors Provoost) 9406946 refactor: helper function signWithExternalSigner() (Sjors Provoost) fc421d4 move-only: helper function to present PSBT (Sjors Provoost) Pull request description: Backports from the GUI repo: - bitcoin-core/gui#555 - bitcoin-core/gui#568 ACKs for top commit: Sjors: utACK 70f2c57 gruve-p: ACK 70f2c57 Tree-SHA512: 883c442f8b789a9d11c949179e4382843cbb979a89a625bef3f481c7070421681d9db2af0e5b2449abca362c8ba05cf61db5893aeb6a9237b02088c2fb71e93e
fujicoin
pushed a commit
to fujicoin/fujicoin-23.0
that referenced
this pull request
Mar 25, 2022
This commit does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Conflicts: src/qt/sendcoinsdialog.cpp Github-Pull: bitcoin-core/gui#555 Rebased-From: 026b5b4523317fdefc69cf5cec55f76f18ad0c0a
fujicoin
pushed a commit
to fujicoin/fujicoin-23.0
that referenced
this pull request
Mar 25, 2022
Does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Github-Pull: bitcoin-core/gui#555 Rebased-From: 4b5a6cd14967b8ec3cb525e4cb18628de6c15091
fujicoin
pushed a commit
to fujicoin/fujicoin-23.0
that referenced
this pull request
Mar 25, 2022
Before this change the send confirmation dialog would keep the Send option disabled. The Create Unsigned choice would actually send. This is potentially confusing. With this change the Create Unsigned button will not attempt to sign and always produce a PSBT. The Send button will attempt to sign, and only return a PSBT if more signatures are needed. When using an external signer, the Create Unsigned option only appears when PSBT controls are enabled in the wallet settings. This commit maintains the pre-existing behavior of filling the PSBT (without signing) even when not using an external signer. Closes #551 Co-authored-by: Jon Atack <jon@atack.com> Github-Pull: bitcoin-core/gui#555 Rebased-From: 2efdfb88aab6496dcf2b98e0de30635bc6bade85
backpacker69
pushed a commit
to peercoin/peercoin
that referenced
this pull request
Jan 18, 2023
This commit does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Github-Pull: bitcoin-core/gui#555 Rebased-From: 026b5b4523317fdefc69cf5cec55f76f18ad0c0a
backpacker69
pushed a commit
to peercoin/peercoin
that referenced
this pull request
Jan 18, 2023
Does not change behavior. Review hint: git show --color-moved --color-moved-ws=allow-indentation-change Github-Pull: bitcoin-core/gui#555 Rebased-From: 4b5a6cd14967b8ec3cb525e4cb18628de6c15091
backpacker69
pushed a commit
to peercoin/peercoin
that referenced
this pull request
Jan 18, 2023
Before this change the send confirmation dialog would keep the Send option disabled. The Create Unsigned choice would actually send. This is potentially confusing. With this change the Create Unsigned button will not attempt to sign and always produce a PSBT. The Send button will attempt to sign, and only return a PSBT if more signatures are needed. When using an external signer, the Create Unsigned option only appears when PSBT controls are enabled in the wallet settings. This commit maintains the pre-existing behavior of filling the PSBT (without signing) even when not using an external signer. Closes #551 Co-authored-by: Jon Atack <jon@atack.com> Github-Pull: bitcoin-core/gui#555 Rebased-From: 2efdfb88aab6496dcf2b98e0de30635bc6bade85
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #551
For the simplest use case of a wallet with one external signer and "PSBT Controls" disabled in settings (the default), the send dialog will behave the same as when using a wallet with private keys. I.e. there's no "Create Unsigned" button.
When PSBT controls are turned on, you can now actually make a PSBT with signing it; before this PR that button would trigger a sign event and would broadcast the transaction.
In case a multisig, the Send button will sign on the device, and then fall back to presenting a PSBT (same behavior as before #441).
This PR starts with two refactoring commits to move some stuff into a helper function for improved readability in general, and to make the main commit easier to review.