PR#19602 - Migrate legacy wallets to descriptor wallets 👀
A PR by Andrew Chow that implements an RPC which migrates Legacy wallets to Descriptor wallets as step in the roadmap for the eventual removal of the Legacy wallet and the Berkeley DB dependency. Participants discussed what goes into the migration process and differences between Legacy and Descriptor wallets.
Note: This one also includes some of my own notes and other contributors comments from the PR that I believe give a further inside into the changes.
In your own words, (briefly) describe the migration process. 🔗
- First creates a backup of the wallet, in case of incorrect migration.
- Moves all records from the BDB database to a new SQLite database for storage. At this step we end up with a legacy-sqlite format.
SQLiteDatabase(introduced with #19077) is used strictly as a key-value store (a tablemainwith two columns,keyandvalueboth with the typeblob) to keep compatibility with BDB.
- Creates a set of all the scriptPubKeys to step-by-step remove everything from it as the migration process creates each wallet.
- Creates the spendable wallet (the main descriptor wallet with the same name as the one we are migrating from) by creating:
- a combo descriptor for each non-HD key. It includes birthdate and origin, if exists.
- We recognize those because (in contrast to HD derived keys) they don't have the
hd_seed_idin their metadata.
- We recognize those because (in contrast to HD derived keys) they don't have the
- a combo descriptor for each one of our HD chains.
- a combo descriptor for each non-HD key. It includes birthdate and origin, if exists.
- If necessary, creates the
<name>_solvableswallet.- solvable: anything we have any (public) keys for and we know how to spend (e.g. a multisig for which we have one public key, and we know the other two because we have the full redeemscript). It basically backups the
redeemscript. - A solvable address is not automatically watch-only, but all
import*methods exceptimportmultiensure it is.importmultiadds aredeemscriptso it's solvable, but it's not marked watch-only. The net-effect of that is that we see the full script withgetaddressinfo, the wallet ignores transactions to it, but we can sign them. This may be useful if you're a co-signer and you don't want those transactions to show up. src
- After the migration, the solvables wallet can't sign things the legacy wallet could sign.
- The solvables wallet can update a PSBT with the UTXO, scripts, and pubkeys, for inputs that spend any of the scripts it contains. Because the user had not watched those scripts when the wallet is a legacy wallet, it does not make sense to have them be in the watchonly wallet. (src)
- solvable: anything we have any (public) keys for and we know how to spend (e.g. a multisig for which we have one public key, and we know the other two because we have the full redeemscript). It basically backups the
- If necessary, creates the
<name>_watchonlywallet.- watch-only: may or may not be solvable, e.g. an unsolvable multisig is one for which we only know the address (scriptPubKey), not the full script, i.e. we don't know which keys it needs.
- Loads the new wallet and deletes all the legacy stuff.
- At the end of the migration process every scriptPubKey from the Legacy wallet must be associated with a descriptor.
LegacyScriptPubKeyMan::GetScriptPubKeys()creates a set of all the scriptPubKeys of the Legacy wallet in order to ensure that the resulting Descriptor Wallets can compute all the original scripts. - This set is calculated from:
mapKeysandmapCryptedKeysby calculating their respective P2PK & P2PKH scriptPubKeysmapScriptswhich areISMINE_SPENDABLE- multisigs for which we own ALL the keys involved
setWatchOnlywhich contains all the watch-only scripts
Why isn’t the HD seed ignored when looking at all of the keys in a Legacy wallet? 🔗
- We don't ignore the seeds themselves because they are considered
IsMinetherefore it is a valid key that could receive Bitcoin to it even though it's corresponding addresses would never be given out. - This is because the seed is also a
CKey(as the rest of the keys) but withmetadata.hdKeypath = "s"to be identified as seed. This seed is hashed according to the BIP 32 specification to become the BIP 32 master key which everything else is then derived from.
bonus: Descriptor wallets get rid of the concept of mixed watchonly and spendable. Why were watchonly and owned mixed together before? 🔗
- Legacy wallets allow for watch-only and owned to mix together because it used to not be possible to have different wallet files for different purposes, multiwallet is relatively recent.
- This change simplifies
IsMineand it's also a separation of funds/duties/etc.