wallet: Don't allow an HDSeed to be overwritten

We can maybe relax this restriction later once we have worked out the UX implications.
2018-09-03 10:45:17 +01:00
parent 4c1a26fb60
commit b33a7ec46e
3 changed files with 32 additions and 19 deletions
--- a/src/wallet/crypter.cpp
+++ b/src/wallet/crypter.cpp
@@ -219,7 +219,7 @@ bool CCryptoKeyStore::Unlock(const CKeyingMaterial& vMasterKeyIn)

        bool keyPass = false;
        bool keyFail = false;
-        {
+        if (!cryptedHDSeed.first.IsNull()) {
            HDSeed seed;
            if (!DecryptHDSeed(vMasterKeyIn, cryptedHDSeed.second, cryptedHDSeed.first, seed))
            {
@@ -322,6 +322,12 @@ bool CCryptoKeyStore::SetCryptedHDSeed(
            return false;
        }

+        if (!cryptedHDSeed.first.IsNull()) {
+            // Don't allow an existing seed to be changed. We can maybe relax this
+            // restriction later once we have worked out the UX implications.
+            return false;
+        }
+
        cryptedHDSeed = std::make_pair(seedFp, vchCryptedSecret);
    }
    return true;
@@ -550,20 +556,22 @@ bool CCryptoKeyStore::EncryptKeys(CKeyingMaterial& vMasterKeyIn)
            return false;

        fUseCrypto = true;
-        {
-            std::vector<unsigned char> vchCryptedSecret;
-            // Use seed's fingerprint as IV
-            // TODO: Handle this properly when we make encryption a supported feature
-            auto seedFp = hdSeed.Fingerprint();
-            if (!EncryptSecret(vMasterKeyIn, hdSeed.RawSeed(), seedFp, vchCryptedSecret)) {
-                return false;
-            }
-            // This will call into CWallet to store the crypted seed to disk
-            if (!SetCryptedHDSeed(seedFp, vchCryptedSecret)) {
-                return false;
+        if (!hdSeed.IsNull()) {
+            {
+                std::vector<unsigned char> vchCryptedSecret;
+                // Use seed's fingerprint as IV
+                // TODO: Handle this properly when we make encryption a supported feature
+                auto seedFp = hdSeed.Fingerprint();
+                if (!EncryptSecret(vMasterKeyIn, hdSeed.RawSeed(), seedFp, vchCryptedSecret)) {
+                    return false;
+                }
+                // This will call into CWallet to store the crypted seed to disk
+                if (!SetCryptedHDSeed(seedFp, vchCryptedSecret)) {
+                    return false;
+                }
            }
+            hdSeed = HDSeed();
        }
-        hdSeed = HDSeed();
        BOOST_FOREACH(KeyMap::value_type& mKey, mapKeys)
        {
            const CKey &key = mKey.second;