Merge #631: Disallow encryption of watchonly wallets

hebasto · hebasto · commit 6d8707b21d3a · 2022-07-19T10:18:46.000+01:00
4c49541 Disallow encryption of watchonly wallets (Andrew Chow) Pull request description: Watchonly wallets do not have any private keys to encrypt. It does not make sense to encrypt such wallets, so disable the option to encrypt them. This avoids an assertion that can be hit when encrypting watchonly descriptor wallets. As our current behavior allows for encrypting watchonly wallets (no crash with legacy, crash, but still encrypted with descriptors), the new `NoKeys` status is only returned for unencrypted watchonly wallets. This allows any watchonly wallets that were previously encrypted to show the correct encryption status (they have encryption keys, and so should be indicated as being encrypted). ACKs for top commit: w0xlt: tACK 4c49541 hebasto: ACK 4c49541, tested on Ubuntu 22.04. Tree-SHA512: 054dba0a8c1343a0df17689508cd628a974555828955a3c8820bf020868b95a3df98c47253b0ffe2252765b020160bb76ea21647d76d59ba748b3b41c481f2ae
diff --git a/src/qt/bitcoingui.cpp b/src/qt/bitcoingui.cpp
@@ -1350,6 +1350,12 @@ void BitcoinGUI::setEncryptionStatus(int status)
 {
     switch(status)
     {
+    case WalletModel::NoKeys:
+        labelWalletEncryptionIcon->hide();
+        encryptWalletAction->setChecked(false);
+        changePassphraseAction->setEnabled(false);
+        encryptWalletAction->setEnabled(false);
+        break;
     case WalletModel::Unencrypted:
         labelWalletEncryptionIcon->hide();
         encryptWalletAction->setChecked(false);
diff --git a/src/qt/walletmodel.cpp b/src/qt/walletmodel.cpp
@@ -306,6 +306,11 @@ WalletModel::EncryptionStatus WalletModel::getEncryptionStatus() const
 {
     if(!m_wallet->isCrypted())
     {
+        // A previous bug allowed for watchonly wallets to be encrypted (encryption keys set, but nothing is actually encrypted).
+        // To avoid misrepresenting the encryption status of such wallets, we only return NoKeys for watchonly wallets that are unencrypted.
+        if (m_wallet->privateKeysDisabled()) {
+            return NoKeys;
+        }
         return Unencrypted;
     }
     else if(m_wallet->isLocked())
diff --git a/src/qt/walletmodel.h b/src/qt/walletmodel.h
@@ -71,6 +71,7 @@ class WalletModel : public QObject
 
     enum EncryptionStatus
     {
+        NoKeys,       // wallet->IsWalletFlagSet(WALLET_FLAG_DISABLE_PRIVATE_KEYS)
         Unencrypted,  // !wallet->IsCrypted()
         Locked,       // wallet->IsCrypted() && wallet->IsLocked()
         Unlocked      // wallet->IsCrypted() && !wallet->IsLocked()

Original file line number	Diff line number	Diff line change
`@@ -1350,6 +1350,12 @@ void BitcoinGUI::setEncryptionStatus(int status)`
`1350`	`1350`	`{`
`1351`	`1351`	`switch(status)`
`1352`	`1352`	`{`
	`1353`	`+ case WalletModel::NoKeys:`
	`1354`	`+ labelWalletEncryptionIcon->hide();`
	`1355`	`+ encryptWalletAction->setChecked(false);`
	`1356`	`+ changePassphraseAction->setEnabled(false);`
	`1357`	`+ encryptWalletAction->setEnabled(false);`
	`1358`	`+ break;`
`1353`	`1359`	`case WalletModel::Unencrypted:`
`1354`	`1360`	`labelWalletEncryptionIcon->hide();`
`1355`	`1361`	`encryptWalletAction->setChecked(false);`
Original file line number	Diff line number	Diff line change
`@@ -306,6 +306,11 @@ WalletModel::EncryptionStatus WalletModel::getEncryptionStatus() const`
`306`	`306`	`{`
`307`	`307`	`if(!m_wallet->isCrypted())`
`308`	`308`	`{`
	`309`	`+ // A previous bug allowed for watchonly wallets to be encrypted (encryption keys set, but nothing is actually encrypted).`
	`310`	`+ // To avoid misrepresenting the encryption status of such wallets, we only return NoKeys for watchonly wallets that are unencrypted.`
	`311`	`+ if (m_wallet->privateKeysDisabled()) {`
	`312`	`+ return NoKeys;`
	`313`	`+ }`
`309`	`314`	`return Unencrypted;`
`310`	`315`	`}`
`311`	`316`	`else if(m_wallet->isLocked())`
Original file line number	Diff line number	Diff line change
`@@ -71,6 +71,7 @@ class WalletModel : public QObject`
`71`	`71`
`72`	`72`	`enum EncryptionStatus`
`73`	`73`	`{`
	`74`	`+ NoKeys, // wallet->IsWalletFlagSet(WALLET_FLAG_DISABLE_PRIVATE_KEYS)`
`74`	`75`	`Unencrypted, // !wallet->IsCrypted()`
`75`	`76`	`Locked, // wallet->IsCrypted() && wallet->IsLocked()`
`76`	`77`	`Unlocked // wallet->IsCrypted() && !wallet->IsLocked()`