mirror of
https://github.com/btcpayserver/btcpayserver.git
synced 2025-02-22 22:25:28 +01:00
bec888da19
* Payjoin label fixes * When a payjoin label was applied, coin selection filter would not work * When a payjoin happened with a receive address wallet, the payjoin label was not applied * Coin selection shows when a utxo is currently reserved for a payjoin. Applies both to UI and to GF API * remove reserved label * Update BTCPayServer/Payments/PayJoin/PayJoinEndpointController.cs
644 lines
30 KiB
C#
644 lines
30 KiB
C#
using System;
|
|
using System.Collections.Generic;
|
|
using System.Diagnostics.CodeAnalysis;
|
|
using System.IO;
|
|
using System.Linq;
|
|
using System.Text;
|
|
using System.Threading.Tasks;
|
|
using BTCPayServer.BIP78.Sender;
|
|
using BTCPayServer.Data;
|
|
using BTCPayServer.Events;
|
|
using BTCPayServer.Filters;
|
|
using BTCPayServer.HostedServices;
|
|
using BTCPayServer.Logging;
|
|
using BTCPayServer.Payments.Bitcoin;
|
|
using BTCPayServer.Services;
|
|
using BTCPayServer.Services.Invoices;
|
|
using BTCPayServer.Services.Labels;
|
|
using BTCPayServer.Services.Stores;
|
|
using BTCPayServer.Services.Wallets;
|
|
using Microsoft.AspNetCore.Cors;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using NBitcoin;
|
|
using NBitcoin.Crypto;
|
|
using NBitcoin.DataEncoders;
|
|
using NBXplorer;
|
|
using NBXplorer.Models;
|
|
using Newtonsoft.Json.Linq;
|
|
using NicolasDorier.RateLimits;
|
|
|
|
namespace BTCPayServer.Payments.PayJoin
|
|
{
|
|
[Route("{cryptoCode}/" + PayjoinClient.BIP21EndpointKey)]
|
|
public class PayJoinEndpointController : ControllerBase
|
|
{
|
|
/// <summary>
|
|
/// This comparer sorts utxo in a deterministic manner
|
|
/// based on a random parameter.
|
|
/// When a UTXO is locked because used in a coinjoin, in might be unlocked
|
|
/// later if the coinjoin failed.
|
|
/// Such UTXO should be reselected in priority so we don't expose the other UTXOs.
|
|
/// By making sure this UTXO is almost always coming on the same order as before it was locked,
|
|
/// it will more likely be selected again.
|
|
/// </summary>
|
|
internal class UTXODeterministicComparer : IComparer<UTXO>
|
|
{
|
|
static UTXODeterministicComparer()
|
|
{
|
|
_Instance = new UTXODeterministicComparer(RandomUtils.GetUInt256());
|
|
}
|
|
|
|
public UTXODeterministicComparer(uint256 blind)
|
|
{
|
|
_blind = blind.ToBytes();
|
|
}
|
|
|
|
static readonly UTXODeterministicComparer _Instance;
|
|
private readonly byte[] _blind;
|
|
|
|
public static UTXODeterministicComparer Instance => _Instance;
|
|
public int Compare([AllowNull] UTXO x, [AllowNull] UTXO y)
|
|
{
|
|
ArgumentNullException.ThrowIfNull(x);
|
|
ArgumentNullException.ThrowIfNull(y);
|
|
Span<byte> tmpx = stackalloc byte[32];
|
|
Span<byte> tmpy = stackalloc byte[32];
|
|
x.Outpoint.Hash.ToBytes(tmpx);
|
|
y.Outpoint.Hash.ToBytes(tmpy);
|
|
for (int i = 0; i < 32; i++)
|
|
{
|
|
if ((byte)(tmpx[i] ^ _blind[i]) < (byte)(tmpy[i] ^ _blind[i]))
|
|
{
|
|
return 1;
|
|
}
|
|
if ((byte)(tmpx[i] ^ _blind[i]) > (byte)(tmpy[i] ^ _blind[i]))
|
|
{
|
|
return -1;
|
|
}
|
|
}
|
|
return x.Outpoint.N.CompareTo(y.Outpoint.N);
|
|
}
|
|
}
|
|
private readonly BTCPayNetworkProvider _btcPayNetworkProvider;
|
|
private readonly InvoiceRepository _invoiceRepository;
|
|
private readonly ExplorerClientProvider _explorerClientProvider;
|
|
private readonly BTCPayWalletProvider _btcPayWalletProvider;
|
|
private readonly UTXOLocker _utxoLocker;
|
|
private readonly EventAggregator _eventAggregator;
|
|
private readonly NBXplorerDashboard _dashboard;
|
|
private readonly DelayedTransactionBroadcaster _broadcaster;
|
|
private readonly BTCPayServerEnvironment _env;
|
|
private readonly WalletReceiveService _walletReceiveService;
|
|
private readonly StoreRepository _storeRepository;
|
|
private readonly PaymentService _paymentService;
|
|
|
|
public Logs Logs { get; }
|
|
|
|
public PayJoinEndpointController(BTCPayNetworkProvider btcPayNetworkProvider,
|
|
InvoiceRepository invoiceRepository, ExplorerClientProvider explorerClientProvider,
|
|
BTCPayWalletProvider btcPayWalletProvider,
|
|
UTXOLocker utxoLocker,
|
|
EventAggregator eventAggregator,
|
|
NBXplorerDashboard dashboard,
|
|
DelayedTransactionBroadcaster broadcaster,
|
|
BTCPayServerEnvironment env,
|
|
WalletReceiveService walletReceiveService,
|
|
StoreRepository storeRepository,
|
|
PaymentService paymentService,
|
|
Logs logs)
|
|
{
|
|
_btcPayNetworkProvider = btcPayNetworkProvider;
|
|
_invoiceRepository = invoiceRepository;
|
|
_explorerClientProvider = explorerClientProvider;
|
|
_btcPayWalletProvider = btcPayWalletProvider;
|
|
_utxoLocker = utxoLocker;
|
|
_eventAggregator = eventAggregator;
|
|
_dashboard = dashboard;
|
|
_broadcaster = broadcaster;
|
|
_env = env;
|
|
_walletReceiveService = walletReceiveService;
|
|
_storeRepository = storeRepository;
|
|
_paymentService = paymentService;
|
|
Logs = logs;
|
|
}
|
|
|
|
[HttpPost("")]
|
|
[IgnoreAntiforgeryToken]
|
|
[EnableCors(CorsPolicies.All)]
|
|
[MediaTypeConstraint("text/plain")]
|
|
[RateLimitsFilter(ZoneLimits.PayJoin, Scope = RateLimitsScope.RemoteAddress)]
|
|
public async Task<IActionResult> Submit(string cryptoCode,
|
|
long? maxadditionalfeecontribution,
|
|
int? additionalfeeoutputindex,
|
|
decimal minfeerate = -1.0m,
|
|
bool disableoutputsubstitution = false,
|
|
int v = 1)
|
|
{
|
|
var network = _btcPayNetworkProvider.GetNetwork<BTCPayNetwork>(cryptoCode);
|
|
if (network == null)
|
|
return NotFound();
|
|
|
|
if (v != 1)
|
|
{
|
|
return BadRequest(new JObject
|
|
{
|
|
new JProperty("errorCode", "version-unsupported"),
|
|
new JProperty("supported", new JArray(1)),
|
|
new JProperty("message", "This version of payjoin is not supported.")
|
|
});
|
|
}
|
|
|
|
await using var ctx = new PayjoinReceiverContext(_invoiceRepository, _explorerClientProvider.GetExplorerClient(network), _utxoLocker, Logs);
|
|
ObjectResult CreatePayjoinErrorAndLog(int httpCode, PayjoinReceiverWellknownErrors err, string debug)
|
|
{
|
|
ctx.Logs.Write($"Payjoin error: {debug}", InvoiceEventData.EventSeverity.Error);
|
|
return StatusCode(httpCode, CreatePayjoinError(err, debug));
|
|
}
|
|
var explorer = _explorerClientProvider.GetExplorerClient(network);
|
|
if (Request.ContentLength is long length)
|
|
{
|
|
if (length > 1_000_000)
|
|
return this.StatusCode(413,
|
|
CreatePayjoinError("payload-too-large", "The transaction is too big to be processed"));
|
|
}
|
|
else
|
|
{
|
|
return StatusCode(411,
|
|
CreatePayjoinError("missing-content-length",
|
|
"The http header Content-Length should be filled"));
|
|
}
|
|
|
|
string rawBody;
|
|
using (StreamReader reader = new StreamReader(Request.Body, Encoding.UTF8))
|
|
{
|
|
rawBody = (await reader.ReadToEndAsync()) ?? string.Empty;
|
|
}
|
|
|
|
FeeRate originalFeeRate = null;
|
|
bool psbtFormat = true;
|
|
|
|
if (PSBT.TryParse(rawBody, network.NBitcoinNetwork, out var psbt))
|
|
{
|
|
if (!psbt.IsAllFinalized())
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected", "The PSBT should be finalized"));
|
|
ctx.OriginalTransaction = psbt.ExtractTransaction();
|
|
}
|
|
// BTCPay Server implementation support a transaction instead of PSBT
|
|
else
|
|
{
|
|
psbtFormat = false;
|
|
if (!Transaction.TryParse(rawBody, network.NBitcoinNetwork, out var tx))
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected", "invalid transaction or psbt"));
|
|
ctx.OriginalTransaction = tx;
|
|
psbt = PSBT.FromTransaction(tx, network.NBitcoinNetwork);
|
|
psbt = (await explorer.UpdatePSBTAsync(new UpdatePSBTRequest() { PSBT = psbt })).PSBT;
|
|
for (int i = 0; i < tx.Inputs.Count; i++)
|
|
{
|
|
psbt.Inputs[i].FinalScriptSig = tx.Inputs[i].ScriptSig;
|
|
psbt.Inputs[i].FinalScriptWitness = tx.Inputs[i].WitScript;
|
|
}
|
|
}
|
|
|
|
FeeRate senderMinFeeRate = minfeerate >= 0.0m ? new FeeRate(minfeerate) : null;
|
|
Money allowedSenderFeeContribution = Money.Satoshis(maxadditionalfeecontribution is long t && t >= 0 ? t : 0);
|
|
|
|
var sendersInputType = psbt.GetInputsScriptPubKeyType();
|
|
if (psbt.CheckSanity() is var errors && errors.Count != 0)
|
|
{
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected", $"This PSBT is insane ({errors[0]})"));
|
|
}
|
|
if (!psbt.TryGetEstimatedFeeRate(out originalFeeRate))
|
|
{
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected",
|
|
"You need to provide Witness UTXO information to the PSBT."));
|
|
}
|
|
|
|
// This is actually not a mandatory check, but we don't want implementers
|
|
// to leak global xpubs
|
|
if (psbt.GlobalXPubs.Any())
|
|
{
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected",
|
|
"GlobalXPubs should not be included in the PSBT"));
|
|
}
|
|
|
|
if (psbt.Outputs.Any(o => o.HDKeyPaths.Count != 0) || psbt.Inputs.Any(o => o.HDKeyPaths.Count != 0))
|
|
{
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected",
|
|
"Keypath information should not be included in the PSBT"));
|
|
}
|
|
|
|
if (psbt.Inputs.Any(o => !o.IsFinalized()))
|
|
{
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected", "The PSBT Should be finalized"));
|
|
}
|
|
////////////
|
|
|
|
var mempool = await explorer.BroadcastAsync(ctx.OriginalTransaction, true);
|
|
if (!mempool.Success)
|
|
{
|
|
ctx.DoNotBroadcast();
|
|
return BadRequest(CreatePayjoinError("original-psbt-rejected",
|
|
$"Provided transaction isn't mempool eligible {mempool.RPCCodeMessage}"));
|
|
}
|
|
var enforcedLowR = ctx.OriginalTransaction.Inputs.All(IsLowR);
|
|
var paymentMethodId = new PaymentMethodId(network.CryptoCode, PaymentTypes.BTCLike);
|
|
bool paidSomething = false;
|
|
Money due = null;
|
|
Dictionary<OutPoint, UTXO> selectedUTXOs = new Dictionary<OutPoint, UTXO>();
|
|
PSBTOutput originalPaymentOutput = null;
|
|
BitcoinAddress paymentAddress = null;
|
|
KeyPath paymentAddressIndex = null;
|
|
InvoiceEntity invoice = null;
|
|
DerivationSchemeSettings derivationSchemeSettings = null;
|
|
WalletId walletId = null;
|
|
foreach (var output in psbt.Outputs)
|
|
{
|
|
var walletReceiveMatch =
|
|
_walletReceiveService.GetByScriptPubKey(network.CryptoCode, output.ScriptPubKey);
|
|
if (walletReceiveMatch is null)
|
|
{
|
|
|
|
var key = output.ScriptPubKey.Hash + "#" + network.CryptoCode.ToUpperInvariant();
|
|
invoice = (await _invoiceRepository.GetInvoicesFromAddresses(new[] { key })).FirstOrDefault();
|
|
if (invoice is null)
|
|
continue;
|
|
derivationSchemeSettings = invoice
|
|
.GetSupportedPaymentMethod<DerivationSchemeSettings>(paymentMethodId)
|
|
.SingleOrDefault();
|
|
walletId = new WalletId(invoice.StoreId, network.CryptoCode.ToUpperInvariant());
|
|
}
|
|
else
|
|
{
|
|
var store = await _storeRepository.FindStore(walletReceiveMatch.Item1.StoreId);
|
|
derivationSchemeSettings = store.GetDerivationSchemeSettings(_btcPayNetworkProvider,
|
|
walletReceiveMatch.Item1.CryptoCode);
|
|
|
|
walletId = walletReceiveMatch.Item1;
|
|
}
|
|
|
|
if (derivationSchemeSettings is null)
|
|
continue;
|
|
var receiverInputsType = derivationSchemeSettings.AccountDerivation.ScriptPubKeyType();
|
|
if (receiverInputsType == ScriptPubKeyType.Legacy)
|
|
{
|
|
//this should never happen, unless the store owner changed the wallet mid way through an invoice
|
|
return CreatePayjoinErrorAndLog(503, PayjoinReceiverWellknownErrors.Unavailable, "Our wallet does not support payjoin");
|
|
}
|
|
if (sendersInputType is ScriptPubKeyType t1 && t1 != receiverInputsType)
|
|
{
|
|
return CreatePayjoinErrorAndLog(503, PayjoinReceiverWellknownErrors.Unavailable, "We do not have any UTXO available for making a payjoin with the sender's inputs type");
|
|
}
|
|
|
|
if (walletReceiveMatch is null)
|
|
{
|
|
var paymentMethod = invoice.GetPaymentMethod(paymentMethodId);
|
|
var paymentDetails =
|
|
paymentMethod.GetPaymentMethodDetails() as Payments.Bitcoin.BitcoinLikeOnChainPaymentMethod;
|
|
if (paymentDetails is null || !paymentDetails.PayjoinEnabled)
|
|
continue;
|
|
paidSomething = true;
|
|
due = paymentMethod.Calculate().TotalDue - output.Value;
|
|
if (due > Money.Zero)
|
|
{
|
|
break;
|
|
}
|
|
|
|
paymentAddress = paymentDetails.GetDepositAddress(network.NBitcoinNetwork);
|
|
paymentAddressIndex = paymentDetails.KeyPath;
|
|
|
|
if (invoice.GetAllBitcoinPaymentData(false).Any())
|
|
{
|
|
ctx.DoNotBroadcast();
|
|
return UnprocessableEntity(CreatePayjoinError("already-paid",
|
|
$"The invoice this PSBT is paying has already been partially or completely paid"));
|
|
}
|
|
}
|
|
else
|
|
{
|
|
paidSomething = true;
|
|
due = Money.Zero;
|
|
paymentAddress = walletReceiveMatch.Item2.Address;
|
|
paymentAddressIndex = walletReceiveMatch.Item2.KeyPath;
|
|
}
|
|
|
|
|
|
if (!await _utxoLocker.TryLockInputs(ctx.OriginalTransaction.Inputs.Select(i => i.PrevOut).ToArray()))
|
|
{
|
|
// We do not broadcast, since we might double spend a delayed transaction of a previous payjoin
|
|
ctx.DoNotBroadcast();
|
|
return CreatePayjoinErrorAndLog(503, PayjoinReceiverWellknownErrors.Unavailable, "Some of those inputs have already been used to make another payjoin transaction");
|
|
}
|
|
|
|
var utxos = (await explorer.GetUTXOsAsync(derivationSchemeSettings.AccountDerivation))
|
|
.GetUnspentUTXOs(false);
|
|
// In case we are paying ourselves, be need to make sure
|
|
// we can't take spent outpoints.
|
|
var prevOuts = ctx.OriginalTransaction.Inputs.Select(o => o.PrevOut).ToHashSet();
|
|
utxos = utxos.Where(u => !prevOuts.Contains(u.Outpoint)).ToArray();
|
|
Array.Sort(utxos, UTXODeterministicComparer.Instance);
|
|
foreach (var utxo in (await SelectUTXO(network, utxos, psbt.Inputs.Select(input => input.WitnessUtxo.Value.ToDecimal(MoneyUnit.BTC)), output.Value.ToDecimal(MoneyUnit.BTC),
|
|
psbt.Outputs.Where(psbtOutput => psbtOutput.Index != output.Index).Select(psbtOutput => psbtOutput.Value.ToDecimal(MoneyUnit.BTC)))).selectedUTXO)
|
|
{
|
|
selectedUTXOs.Add(utxo.Outpoint, utxo);
|
|
}
|
|
ctx.LockedUTXOs = selectedUTXOs.Select(u => u.Key).ToArray();
|
|
originalPaymentOutput = output;
|
|
break;
|
|
}
|
|
|
|
if (!paidSomething)
|
|
{
|
|
return BadRequest(CreatePayjoinError("invoice-not-found",
|
|
"This transaction does not pay any invoice with payjoin"));
|
|
}
|
|
|
|
if (due is null || due > Money.Zero)
|
|
{
|
|
return BadRequest(CreatePayjoinError("invoice-not-fully-paid",
|
|
"The transaction must pay the whole invoice"));
|
|
}
|
|
|
|
if (selectedUTXOs.Count == 0)
|
|
{
|
|
return CreatePayjoinErrorAndLog(503, PayjoinReceiverWellknownErrors.Unavailable, "We do not have any UTXO available for contributing to a payjoin");
|
|
}
|
|
|
|
var originalPaymentValue = originalPaymentOutput.Value;
|
|
await _broadcaster.Schedule(DateTimeOffset.UtcNow + TimeSpan.FromMinutes(2.0), ctx.OriginalTransaction, network);
|
|
|
|
//check if wallet of store is configured to be hot wallet
|
|
var extKeyStr = await explorer.GetMetadataAsync<string>(
|
|
derivationSchemeSettings.AccountDerivation,
|
|
WellknownMetadataKeys.AccountHDKey);
|
|
if (extKeyStr == null)
|
|
{
|
|
// This should not happen, as we check the existance of private key before creating invoice with payjoin
|
|
return CreatePayjoinErrorAndLog(503, PayjoinReceiverWellknownErrors.Unavailable, "The HD Key of the store changed");
|
|
}
|
|
|
|
Money contributedAmount = Money.Zero;
|
|
var newTx = ctx.OriginalTransaction.Clone();
|
|
var ourNewOutput = newTx.Outputs[originalPaymentOutput.Index];
|
|
HashSet<TxOut> isOurOutput = new HashSet<TxOut>();
|
|
isOurOutput.Add(ourNewOutput);
|
|
TxOut feeOutput =
|
|
additionalfeeoutputindex is int feeOutputIndex &&
|
|
maxadditionalfeecontribution is long v3 &&
|
|
v3 >= 0 &&
|
|
feeOutputIndex >= 0
|
|
&& feeOutputIndex < newTx.Outputs.Count
|
|
&& !isOurOutput.Contains(newTx.Outputs[feeOutputIndex])
|
|
? newTx.Outputs[feeOutputIndex] : null;
|
|
int senderInputCount = newTx.Inputs.Count;
|
|
foreach (var selectedUTXO in selectedUTXOs.Select(o => o.Value))
|
|
{
|
|
contributedAmount += (Money)selectedUTXO.Value;
|
|
var newInput = newTx.Inputs.Add(selectedUTXO.Outpoint);
|
|
newInput.Sequence = newTx.Inputs[(int)(RandomUtils.GetUInt32() % senderInputCount)].Sequence;
|
|
}
|
|
ourNewOutput.Value += contributedAmount;
|
|
var minRelayTxFee = this._dashboard.Get(network.CryptoCode).Status.BitcoinStatus?.MinRelayTxFee ??
|
|
new FeeRate(1.0m);
|
|
|
|
// Remove old signatures as they are not valid anymore
|
|
foreach (var input in newTx.Inputs)
|
|
{
|
|
input.WitScript = WitScript.Empty;
|
|
}
|
|
|
|
Money ourFeeContribution = Money.Zero;
|
|
// We need to adjust the fee to keep a constant fee rate
|
|
var txBuilder = network.NBitcoinNetwork.CreateTransactionBuilder();
|
|
var coins = psbt.Inputs.Select(i => i.GetSignableCoin())
|
|
.Concat(selectedUTXOs.Select(o => o.Value.AsCoin(derivationSchemeSettings.AccountDerivation))).ToArray();
|
|
|
|
txBuilder.AddCoins(coins);
|
|
Money expectedFee = txBuilder.EstimateFees(newTx, originalFeeRate);
|
|
Money actualFee = newTx.GetFee(txBuilder.FindSpentCoins(newTx));
|
|
Money additionalFee = expectedFee - actualFee;
|
|
if (additionalFee > Money.Zero)
|
|
{
|
|
// If the user overpaid, taking fee on our output (useful if sender dump a full UTXO for privacy)
|
|
for (int i = 0; i < newTx.Outputs.Count && additionalFee > Money.Zero && due < Money.Zero && !invoice.IsUnsetTopUp(); i++)
|
|
{
|
|
if (disableoutputsubstitution)
|
|
break;
|
|
if (isOurOutput.Contains(newTx.Outputs[i]))
|
|
{
|
|
var outputContribution = Money.Min(additionalFee, -due);
|
|
outputContribution = Money.Min(outputContribution,
|
|
newTx.Outputs[i].Value - newTx.Outputs[i].GetDustThreshold());
|
|
newTx.Outputs[i].Value -= outputContribution;
|
|
additionalFee -= outputContribution;
|
|
due += outputContribution;
|
|
ourFeeContribution += outputContribution;
|
|
}
|
|
}
|
|
|
|
// The rest, we take from user's change
|
|
if (feeOutput != null)
|
|
{
|
|
var outputContribution = Money.Min(additionalFee, feeOutput.Value);
|
|
outputContribution = Money.Min(outputContribution,
|
|
feeOutput.Value - feeOutput.GetDustThreshold());
|
|
outputContribution = Money.Min(outputContribution, allowedSenderFeeContribution);
|
|
feeOutput.Value -= outputContribution;
|
|
additionalFee -= outputContribution;
|
|
allowedSenderFeeContribution -= outputContribution;
|
|
}
|
|
|
|
if (additionalFee > Money.Zero)
|
|
{
|
|
// We could not pay fully the additional fee, however, as long as
|
|
// we are not under the relay fee, it should be OK.
|
|
var newVSize = txBuilder.EstimateSize(newTx, true);
|
|
var newFeePaid = newTx.GetFee(txBuilder.FindSpentCoins(newTx));
|
|
if (new FeeRate(newFeePaid, newVSize) < (senderMinFeeRate ?? minRelayTxFee))
|
|
{
|
|
return CreatePayjoinErrorAndLog(422, PayjoinReceiverWellknownErrors.NotEnoughMoney, "Not enough money is sent to pay for the additional payjoin inputs");
|
|
}
|
|
}
|
|
}
|
|
|
|
var accountKey = ExtKey.Parse(extKeyStr, network.NBitcoinNetwork);
|
|
var newPsbt = PSBT.FromTransaction(newTx, network.NBitcoinNetwork);
|
|
foreach (var selectedUtxo in selectedUTXOs.Select(o => o.Value))
|
|
{
|
|
var signedInput = newPsbt.Inputs.FindIndexedInput(selectedUtxo.Outpoint);
|
|
var coin = selectedUtxo.AsCoin(derivationSchemeSettings.AccountDerivation);
|
|
signedInput.UpdateFromCoin(coin);
|
|
var privateKey = accountKey.Derive(selectedUtxo.KeyPath).PrivateKey;
|
|
signedInput.PSBT.Settings.SigningOptions = new SigningOptions()
|
|
{
|
|
EnforceLowR = enforcedLowR
|
|
};
|
|
signedInput.Sign(privateKey);
|
|
signedInput.FinalizeInput();
|
|
newTx.Inputs[signedInput.Index].WitScript = newPsbt.Inputs[(int)signedInput.Index].FinalScriptWitness;
|
|
}
|
|
|
|
// Add the transaction to the payments with a confirmation of -1.
|
|
// This will make the invoice paid even if the user do not
|
|
// broadcast the payjoin.
|
|
var originalPaymentData = new BitcoinLikePaymentData(paymentAddress,
|
|
originalPaymentOutput.Value,
|
|
new OutPoint(ctx.OriginalTransaction.GetHash(), originalPaymentOutput.Index),
|
|
ctx.OriginalTransaction.RBF, paymentAddressIndex);
|
|
originalPaymentData.ConfirmationCount = -1;
|
|
originalPaymentData.PayjoinInformation = new PayjoinInformation()
|
|
{
|
|
CoinjoinTransactionHash = GetExpectedHash(newPsbt, coins),
|
|
CoinjoinValue = originalPaymentValue - ourFeeContribution,
|
|
ContributedOutPoints = selectedUTXOs.Select(o => o.Key).ToArray()
|
|
};
|
|
if (invoice != null)
|
|
{
|
|
var payment = await _paymentService.AddPayment(invoice.Id, DateTimeOffset.UtcNow, originalPaymentData, network, true);
|
|
if (payment is null)
|
|
{
|
|
return UnprocessableEntity(CreatePayjoinError("already-paid",
|
|
$"The original transaction has already been accounted"));
|
|
}
|
|
_eventAggregator.Publish(new InvoiceEvent(invoice, InvoiceEvent.ReceivedPayment) { Payment = payment });
|
|
}
|
|
|
|
await _btcPayWalletProvider.GetWallet(network).SaveOffchainTransactionAsync(ctx.OriginalTransaction);
|
|
var labels = selectedUTXOs.GroupBy(pair => pair.Key.Hash).Select(utxo =>
|
|
new KeyValuePair<uint256, List<(string color, Label label)>>(utxo.Key,
|
|
new List<(string color, Label label)>()
|
|
{
|
|
UpdateTransactionLabel.PayjoinExposedLabelTemplate(invoice?.Id)
|
|
}))
|
|
.ToDictionary(pair => pair.Key, pair => pair.Value);
|
|
|
|
labels.Add(originalPaymentData.PayjoinInformation.CoinjoinTransactionHash, new List<(string color, Label label)>()
|
|
{
|
|
UpdateTransactionLabel.PayjoinLabelTemplate()
|
|
});
|
|
_eventAggregator.Publish(new UpdateTransactionLabel()
|
|
{
|
|
WalletId = walletId,
|
|
TransactionLabels = labels
|
|
});
|
|
ctx.Success();
|
|
// BTCPay Server support PSBT set as hex
|
|
if (psbtFormat && HexEncoder.IsWellFormed(rawBody))
|
|
{
|
|
return Ok(newPsbt.ToHex());
|
|
}
|
|
else if (psbtFormat)
|
|
{
|
|
return Ok(newPsbt.ToBase64());
|
|
}
|
|
// BTCPay Server should returns transaction if received transaction
|
|
else
|
|
return Ok(newTx.ToHex());
|
|
}
|
|
|
|
private uint256 GetExpectedHash(PSBT psbt, Coin[] coins)
|
|
{
|
|
psbt = psbt.Clone();
|
|
psbt.AddCoins(coins);
|
|
if (!psbt.TryGetFinalizedHash(out var hash))
|
|
throw new InvalidOperationException("Unable to get the finalized hash");
|
|
return hash;
|
|
}
|
|
|
|
private JObject CreatePayjoinError(string errorCode, string friendlyMessage)
|
|
{
|
|
var o = new JObject();
|
|
o.Add(new JProperty("errorCode", errorCode));
|
|
o.Add(new JProperty("message", friendlyMessage));
|
|
return o;
|
|
}
|
|
|
|
private JObject CreatePayjoinError(PayjoinReceiverWellknownErrors error, string debug)
|
|
{
|
|
var o = new JObject();
|
|
o.Add(new JProperty("errorCode", PayjoinReceiverHelper.GetErrorCode(error)));
|
|
if (string.IsNullOrEmpty(debug) || !_env.IsDeveloping)
|
|
{
|
|
o.Add(new JProperty("message", PayjoinReceiverHelper.GetMessage(error)));
|
|
}
|
|
else
|
|
{
|
|
o.Add(new JProperty("message", debug));
|
|
}
|
|
return o;
|
|
}
|
|
|
|
public enum PayjoinUtxoSelectionType
|
|
{
|
|
Unavailable,
|
|
HeuristicBased,
|
|
Ordered
|
|
}
|
|
[NonAction]
|
|
public async Task<(UTXO[] selectedUTXO, PayjoinUtxoSelectionType selectionType)> SelectUTXO(BTCPayNetwork network, UTXO[] availableUtxos, IEnumerable<decimal> otherInputs, decimal mainPaymentOutput,
|
|
IEnumerable<decimal> otherOutputs)
|
|
{
|
|
if (availableUtxos.Length == 0)
|
|
return (Array.Empty<UTXO>(), PayjoinUtxoSelectionType.Unavailable);
|
|
// Assume the merchant wants to get rid of the dust
|
|
HashSet<OutPoint> locked = new HashSet<OutPoint>();
|
|
// We don't want to make too many db roundtrip which would be inconvenient for the sender
|
|
int maxTries = 30;
|
|
int currentTry = 0;
|
|
// UIH = "unnecessary input heuristic", basically "a wallet wouldn't choose more utxos to spend in this scenario".
|
|
//
|
|
// "UIH1" : one output is smaller than any input. This heuristically implies that that output is not a payment, and must therefore be a change output.
|
|
//
|
|
// "UIH2": one input is larger than any output. This heuristically implies that no output is a payment, or, to say it better, it implies that this is not a normal wallet-created payment, it's something strange/exotic.
|
|
//src: https://gist.github.com/AdamISZ/4551b947789d3216bacfcb7af25e029e#gistcomment-2796539
|
|
|
|
foreach (var availableUtxo in availableUtxos)
|
|
{
|
|
if (currentTry >= maxTries)
|
|
break;
|
|
|
|
var invalid = false;
|
|
foreach (var input in otherInputs.Concat(new[] { availableUtxo.Value.GetValue(network) }))
|
|
{
|
|
var computedOutputs =
|
|
otherOutputs.Concat(new[] { mainPaymentOutput + availableUtxo.Value.GetValue(network) });
|
|
if (computedOutputs.Any(output => input > output))
|
|
{
|
|
//UIH 1 & 2
|
|
invalid = true;
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (invalid)
|
|
{
|
|
continue;
|
|
}
|
|
if (await _utxoLocker.TryLock(availableUtxo.Outpoint))
|
|
{
|
|
return (new[] { availableUtxo }, PayjoinUtxoSelectionType.HeuristicBased);
|
|
}
|
|
|
|
locked.Add(availableUtxo.Outpoint);
|
|
currentTry++;
|
|
}
|
|
foreach (var utxo in availableUtxos.Where(u => !locked.Contains(u.Outpoint)))
|
|
{
|
|
if (currentTry >= maxTries)
|
|
break;
|
|
if (await _utxoLocker.TryLock(utxo.Outpoint))
|
|
{
|
|
return (new[] { utxo }, PayjoinUtxoSelectionType.Ordered);
|
|
}
|
|
currentTry++;
|
|
}
|
|
return (Array.Empty<UTXO>(), PayjoinUtxoSelectionType.Unavailable);
|
|
}
|
|
private static bool IsLowR(TxIn txin)
|
|
{
|
|
IEnumerable<byte[]> pushes = txin.WitScript.PushCount > 0 ? txin.WitScript.Pushes :
|
|
txin.ScriptSig.IsPushOnly ? txin.ScriptSig.ToOps().Select(o => o.PushData) :
|
|
Array.Empty<byte[]>();
|
|
return pushes.Where(p => ECDSASignature.IsValidDER(p)).All(p => p.Length <= 71);
|
|
}
|
|
}
|
|
}
|