// Copyright (c) 2024-present The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#include <node/txdownloadman_impl.h>

#include <node/txdownloadman.h>

#include <chain.h>

#include <consensus/validation.h>

#include <logging.h>

#include <txmempool.h>

#include <validation.h>

#include <validationinterface.h>

namespace node {

// TxDownloadManager wrappers

TxDownloadManager::TxDownloadManager(const TxDownloadOptions& options) :

    m_impl{std::make_unique<TxDownloadManagerImpl>(options)}

{}

TxDownloadManager::~TxDownloadManager() = default;

void TxDownloadManager::ActiveTipChange()

{

    m_impl->ActiveTipChange();

}

void TxDownloadManager::BlockConnected(const std::shared_ptr<const CBlock>& pblock)

{

    m_impl->BlockConnected(pblock);

}

void TxDownloadManager::BlockDisconnected()

{

    m_impl->BlockDisconnected();

}

void TxDownloadManager::ConnectedPeer(NodeId nodeid, const TxDownloadConnectionInfo& info)

{

    m_impl->ConnectedPeer(nodeid, info);

}

void TxDownloadManager::DisconnectedPeer(NodeId nodeid)

{

    m_impl->DisconnectedPeer(nodeid);

}

bool TxDownloadManager::AddTxAnnouncement(NodeId peer, const GenTxid& gtxid, std::chrono::microseconds now)

{

    return m_impl->AddTxAnnouncement(peer, gtxid, now);

}

std::vector<GenTxid> TxDownloadManager::GetRequestsToSend(NodeId nodeid, std::chrono::microseconds current_time)

{

    return m_impl->GetRequestsToSend(nodeid, current_time);

}

void TxDownloadManager::ReceivedNotFound(NodeId nodeid, const std::vector<uint256>& txhashes)

{

    m_impl->ReceivedNotFound(nodeid, txhashes);

}

void TxDownloadManager::MempoolAcceptedTx(const CTransactionRef& tx)

{

    m_impl->MempoolAcceptedTx(tx);

}

RejectedTxTodo TxDownloadManager::MempoolRejectedTx(const CTransactionRef& ptx, const TxValidationState& state, NodeId nodeid, bool first_time_failure)

{

    return m_impl->MempoolRejectedTx(ptx, state, nodeid, first_time_failure);

}

void TxDownloadManager::MempoolRejectedPackage(const Package& package)

{

    m_impl->MempoolRejectedPackage(package);

}

std::pair<bool, std::optional<PackageToValidate>> TxDownloadManager::ReceivedTx(NodeId nodeid, const CTransactionRef& ptx)

{

    return m_impl->ReceivedTx(nodeid, ptx);

}

bool TxDownloadManager::HaveMoreWork(NodeId nodeid) const

{

    return m_impl->HaveMoreWork(nodeid);

}

CTransactionRef TxDownloadManager::GetTxToReconsider(NodeId nodeid)

{

    return m_impl->GetTxToReconsider(nodeid);

}

void TxDownloadManager::CheckIsEmpty() const

{

    m_impl->CheckIsEmpty();

}

void TxDownloadManager::CheckIsEmpty(NodeId nodeid) const

{

    m_impl->CheckIsEmpty(nodeid);

}

std::vector<TxOrphanage::OrphanTxBase> TxDownloadManager::GetOrphanTransactions() const

{

    return m_impl->GetOrphanTransactions();

}

// TxDownloadManagerImpl

void TxDownloadManagerImpl::ActiveTipChange()

{

    RecentRejectsFilter().reset();

    RecentRejectsReconsiderableFilter().reset();

}

void TxDownloadManagerImpl::BlockConnected(const std::shared_ptr<const CBlock>& pblock)

{

    m_orphanage.EraseForBlock(*pblock);

    for (const auto& ptx : pblock->vtx) {

  Branch (102:26): [True: 2.25M, False: 2.23M]

        RecentConfirmedTransactionsFilter().insert(ptx->GetHash().ToUint256());

        if (ptx->HasWitness()) {

  Branch (104:13): [True: 2.24M, False: 11.6k]

            RecentConfirmedTransactionsFilter().insert(ptx->GetWitnessHash().ToUint256());

        }

        m_txrequest.ForgetTxHash(ptx->GetHash());

        m_txrequest.ForgetTxHash(ptx->GetWitnessHash());

    }

}

void TxDownloadManagerImpl::BlockDisconnected()

{

    // To avoid relay problems with transactions that were previously

    // confirmed, clear our filter of recently confirmed transactions whenever

    // there's a reorg.

    // This means that in a 1-block reorg (where 1 block is disconnected and

    // then another block reconnected), our filter will drop to having only one

    // block's worth of transactions in it, but that should be fine, since

    // presumably the most common case of relaying a confirmed transaction

    // should be just after a new block containing it is found.

    RecentConfirmedTransactionsFilter().reset();

}

bool TxDownloadManagerImpl::AlreadyHaveTx(const GenTxid& gtxid, bool include_reconsiderable)

{

    const uint256& hash = gtxid.GetHash();

    if (gtxid.IsWtxid()) {

  Branch (129:9): [True: 964k, False: 528k]

        // Normal query by wtxid.

        if (m_orphanage.HaveTx(Wtxid::FromUint256(hash))) return true;

  Branch (131:13): [True: 7.08k, False: 957k]

    } else {

        // Never query by txid: it is possible that the transaction in the orphanage has the same

        // txid but a different witness, which would give us a false positive result. If we decided

        // not to request the transaction based on this result, an attacker could prevent us from

        // downloading a transaction by intentionally creating a malleated version of it.  While

        // only one (or none!) of these transactions can ultimately be confirmed, we have no way of

        // discerning which one that is, so the orphanage can store multiple transactions with the

        // same txid.

        //

        // While we won't query by txid, we can try to "guess" what the wtxid is based on the txid.

        // A non-segwit transaction's txid == wtxid. Query this txid "casted" to a wtxid. This will

        // help us find non-segwit transactions, saving bandwidth, and should have no false positives.

        if (m_orphanage.HaveTx(Wtxid::FromUint256(hash))) return true;

  Branch (144:13): [True: 20.6k, False: 507k]

    }

    if (include_reconsiderable && RecentRejectsReconsiderableFilter().contains(hash)) return true;

  Branch (147:9): [True: 434k, False: 1.03M]
  Branch (147:35): [True: 727, False: 433k]

    if (RecentConfirmedTransactionsFilter().contains(hash)) return true;

  Branch (149:9): [True: 7.43k, False: 1.45M]

    return RecentRejectsFilter().contains(hash) || m_opts.m_mempool.exists(gtxid);

  Branch (151:12): [True: 5.61k, False: 1.45M]
  Branch (151:52): [True: 7.08k, False: 1.44M]

}

void TxDownloadManagerImpl::ConnectedPeer(NodeId nodeid, const TxDownloadConnectionInfo& info)

{

    // If already connected (shouldn't happen in practice), exit early.

    if (m_peer_info.contains(nodeid)) return;

  Branch (157:9): [True: 0, False: 88.7k]

    m_peer_info.try_emplace(nodeid, info);

    if (info.m_wtxid_relay) m_num_wtxid_peers += 1;

  Branch (160:9): [True: 88.7k, False: 0]

}

void TxDownloadManagerImpl::DisconnectedPeer(NodeId nodeid)

{

    m_orphanage.EraseForPeer(nodeid);

    m_txrequest.DisconnectedPeer(nodeid);

    if (auto it = m_peer_info.find(nodeid); it != m_peer_info.end()) {

  Branch (168:45): [True: 88.7k, False: 0]

        if (it->second.m_connection_info.m_wtxid_relay) m_num_wtxid_peers -= 1;

  Branch (169:13): [True: 88.7k, False: 0]

        m_peer_info.erase(it);

    }

}

bool TxDownloadManagerImpl::AddTxAnnouncement(NodeId peer, const GenTxid& gtxid, std::chrono::microseconds now)

{

    // If this is an orphan we are trying to resolve, consider this peer as a orphan resolution candidate instead.

    // - is wtxid matching something in orphanage

    // - exists in orphanage

    // - peer can be an orphan resolution candidate

    if (gtxid.IsWtxid()) {

  Branch (181:9): [True: 413k, False: 51.2k]

        const auto wtxid{Wtxid::FromUint256(gtxid.GetHash())};

        if (auto orphan_tx{m_orphanage.GetTx(wtxid)}) {

  Branch (183:18): [True: 28.2k, False: 385k]

            auto unique_parents{GetUniqueParents(*orphan_tx)};

            std::erase_if(unique_parents, [&](const auto& txid){

                return AlreadyHaveTx(GenTxid::Txid(txid), /*include_reconsiderable=*/false);

            });

            // The missing parents may have all been rejected or accepted since the orphan was added to the orphanage.

            // Do not delete from the orphanage, as it may be queued for processing.

            if (unique_parents.empty()) {

  Branch (191:17): [True: 1.65k, False: 26.5k]

                return true;

            }

            if (MaybeAddOrphanResolutionCandidate(unique_parents, wtxid, peer, now)) {

  Branch (195:17): [True: 10.1k, False: 16.4k]

                m_orphanage.AddAnnouncer(orphan_tx->GetWitnessHash(), peer);

            }

            // Return even if the peer isn't an orphan resolution candidate. This would be caught by AlreadyHaveTx.

            return true;

        }

    }

    // If this is an inv received from a peer and we already have it, we can drop it.

    if (AlreadyHaveTx(gtxid, /*include_reconsiderable=*/true)) return true;

  Branch (205:9): [True: 12.8k, False: 424k]

    auto it = m_peer_info.find(peer);

    if (it == m_peer_info.end()) return false;

  Branch (208:9): [True: 0, False: 424k]

    const auto& info = it->second.m_connection_info;

    if (!info.m_relay_permissions && m_txrequest.Count(peer) >= MAX_PEER_TX_ANNOUNCEMENTS) {

  Branch (210:9): [True: 424k, False: 0]
  Branch (210:38): [True: 0, False: 424k]

        // Too many queued announcements for this peer

        return false;

    }

    // Decide the TxRequestTracker parameters for this announcement:

    // - "preferred": if fPreferredDownload is set (= outbound, or NetPermissionFlags::NoBan permission)

    // - "reqtime": current time plus delays for:

    //   - NONPREF_PEER_TX_DELAY for announcements from non-preferred connections

    //   - TXID_RELAY_DELAY for txid announcements while wtxid peers are available

    //   - OVERLOADED_PEER_TX_DELAY for announcements from peers which have at least

    //     MAX_PEER_TX_REQUEST_IN_FLIGHT requests in flight (and don't have NetPermissionFlags::Relay).

    auto delay{0us};

    if (!info.m_preferred) delay += NONPREF_PEER_TX_DELAY;

  Branch (222:9): [True: 209k, False: 214k]

    if (!gtxid.IsWtxid() && m_num_wtxid_peers > 0) delay += TXID_RELAY_DELAY;

  Branch (223:9): [True: 45.9k, False: 378k]
  Branch (223:29): [True: 45.9k, False: 0]

    const bool overloaded = !info.m_relay_permissions && m_txrequest.CountInFlight(peer) >= MAX_PEER_TX_REQUEST_IN_FLIGHT;

  Branch (224:29): [True: 424k, False: 0]
  Branch (224:58): [True: 1.30k, False: 422k]

    if (overloaded) delay += OVERLOADED_PEER_TX_DELAY;

  Branch (225:9): [True: 1.30k, False: 422k]

    m_txrequest.ReceivedInv(peer, gtxid, info.m_preferred, now + delay);

    return false;

}

bool TxDownloadManagerImpl::MaybeAddOrphanResolutionCandidate(const std::vector<Txid>& unique_parents, const Wtxid& wtxid, NodeId nodeid, std::chrono::microseconds now)

{

    auto it_peer = m_peer_info.find(nodeid);

    if (it_peer == m_peer_info.end()) return false;

  Branch (235:9): [True: 0, False: 329k]

    if (m_orphanage.HaveTxFromPeer(wtxid, nodeid)) return false;

  Branch (236:9): [True: 16.8k, False: 313k]

    const auto& peer_entry = m_peer_info.at(nodeid);

    const auto& info = peer_entry.m_connection_info;

    // TODO: add delays and limits based on the amount of orphan resolution we are already doing

    // with this peer, how much they are using the orphanage, etc.

    if (!info.m_relay_permissions) {

  Branch (243:9): [True: 313k, False: 0]

        // This mirrors the delaying and dropping behavior in AddTxAnnouncement in order to preserve

        // existing behavior: drop if we are tracking too many invs for this peer already. Each

        // orphan resolution involves at least 1 transaction request which may or may not be

        // currently tracked in m_txrequest, so we include that in the count.

        if (m_txrequest.Count(nodeid) + unique_parents.size() > MAX_PEER_TX_ANNOUNCEMENTS) return false;

  Branch (248:13): [True: 0, False: 313k]

    }

    std::chrono::seconds delay{0s};

    if (!info.m_preferred) delay += NONPREF_PEER_TX_DELAY;

  Branch (252:9): [True: 156k, False: 156k]

    // The orphan wtxid is used, but resolution entails requesting the parents by txid. Sometimes

    // parent and child are announced and thus requested around the same time, and we happen to

    // receive child sooner. Waiting a few seconds may allow us to cancel the orphan resolution

    // request if the parent arrives in that time.

    if (m_num_wtxid_peers > 0) delay += TXID_RELAY_DELAY;

  Branch (257:9): [True: 313k, False: 0]

    const bool overloaded = !info.m_relay_permissions && m_txrequest.CountInFlight(nodeid) >= MAX_PEER_TX_REQUEST_IN_FLIGHT;

  Branch (258:29): [True: 313k, False: 0]
  Branch (258:58): [True: 1.12k, False: 311k]

    if (overloaded) delay += OVERLOADED_PEER_TX_DELAY;

  Branch (259:9): [True: 1.12k, False: 311k]

    // Treat finding orphan resolution candidate as equivalent to the peer announcing all missing parents.

    // In the future, orphan resolution may include more explicit steps

    for (const auto& parent_txid : unique_parents) {

  Branch (263:34): [True: 321k, False: 313k]

        m_txrequest.ReceivedInv(nodeid, GenTxid::Txid(parent_txid), info.m_preferred, now + delay);

    }

    LogDebug(BCLog::TXPACKAGES, "added peer=%d as a candidate for resolving orphan %s\n", nodeid, wtxid.ToString());

    return true;

}

std::vector<GenTxid> TxDownloadManagerImpl::GetRequestsToSend(NodeId nodeid, std::chrono::microseconds current_time)

{

    std::vector<GenTxid> requests;

    std::vector<std::pair<NodeId, GenTxid>> expired;

    auto requestable = m_txrequest.GetRequestable(nodeid, current_time, &expired);

    for (const auto& entry : expired) {

  Branch (275:28): [True: 46.6k, False: 41.8M]

        LogDebug(BCLog::NET, "timeout of inflight %s %s from peer=%d\n", entry.second.IsWtxid() ? "wtx" : "tx",

            entry.second.GetHash().ToString(), entry.first);

    }

    for (const GenTxid& gtxid : requestable) {

  Branch (279:31): [True: 310k, False: 41.8M]

        if (!AlreadyHaveTx(gtxid, /*include_reconsiderable=*/false)) {

  Branch (280:13): [True: 310k, False: 7]

            LogDebug(BCLog::NET, "Requesting %s %s peer=%d\n", gtxid.IsWtxid() ? "wtx" : "tx",

                gtxid.GetHash().ToString(), nodeid);

            requests.emplace_back(gtxid);

            m_txrequest.RequestedTx(nodeid, gtxid.GetHash(), current_time + GETDATA_TX_INTERVAL);

        } else {

            // We have already seen this transaction, no need to download. This is just a belt-and-suspenders, as

            // this should already be called whenever a transaction becomes AlreadyHaveTx().

            m_txrequest.ForgetTxHash(gtxid.GetHash());

        }

    }

    return requests;

}

void TxDownloadManagerImpl::ReceivedNotFound(NodeId nodeid, const std::vector<uint256>& txhashes)

{

    for (const auto& txhash : txhashes) {

  Branch (296:29): [True: 32, False: 79]

        // If we receive a NOTFOUND message for a tx we requested, mark the announcement for it as

        // completed in TxRequestTracker.

        m_txrequest.ReceivedResponse(nodeid, txhash);

    }

}

std::optional<PackageToValidate> TxDownloadManagerImpl::Find1P1CPackage(const CTransactionRef& ptx, NodeId nodeid)

{

    const auto& parent_wtxid{ptx->GetWitnessHash()};

    Assume(RecentRejectsReconsiderableFilter().contains(parent_wtxid.ToUint256()));

    // Only consider children from this peer. This helps prevent censorship attempts in which an attacker

    // sends lots of fake children for the parent, and we (unluckily) keep selecting the fake

    // children instead of the real one provided by the honest peer. Since we track all announcers

    // of an orphan, this does not exclude parent + orphan pairs that we happened to request from

    // different peers.

    const auto cpfp_candidates_same_peer{m_orphanage.GetChildrenFromSamePeer(ptx, nodeid)};

    // These children should be sorted from newest to oldest. In the (probably uncommon) case

    // of children that replace each other, this helps us accept the highest feerate (probably the

    // most recent) one efficiently.

    for (const auto& child : cpfp_candidates_same_peer) {

  Branch (319:28): [True: 2.80k, False: 2.23k]

        Package maybe_cpfp_package{ptx, child};

        if (!RecentRejectsReconsiderableFilter().contains(GetPackageHash(maybe_cpfp_package)) &&

  Branch (321:13): [True: 2.54k, False: 262]
  Branch (321:13): [True: 2.53k, False: 270]

            !RecentRejectsFilter().contains(child->GetHash().ToUint256())) {

  Branch (322:13): [True: 2.53k, False: 8]

            return PackageToValidate{ptx, child, nodeid, nodeid};

        }

    }

    return std::nullopt;

}

void TxDownloadManagerImpl::MempoolAcceptedTx(const CTransactionRef& tx)

{

    // As this version of the transaction was acceptable, we can forget about any requests for it.

    // No-op if the tx is not in txrequest.

    m_txrequest.ForgetTxHash(tx->GetHash());

    m_txrequest.ForgetTxHash(tx->GetWitnessHash());

    m_orphanage.AddChildrenToWorkSet(*tx, m_opts.m_rng);

    // If it came from the orphanage, remove it. No-op if the tx is not in txorphanage.

    m_orphanage.EraseTx(tx->GetWitnessHash());

}

std::vector<Txid> TxDownloadManagerImpl::GetUniqueParents(const CTransaction& tx)

{

    std::vector<Txid> unique_parents;

    unique_parents.reserve(tx.vin.size());

    for (const CTxIn& txin : tx.vin) {

  Branch (345:28): [True: 416k, False: 351k]

        // We start with all parents, and then remove duplicates below.

        unique_parents.push_back(txin.prevout.hash);

    }

    std::sort(unique_parents.begin(), unique_parents.end());

    unique_parents.erase(std::unique(unique_parents.begin(), unique_parents.end()), unique_parents.end());

    return unique_parents;

}

node::RejectedTxTodo TxDownloadManagerImpl::MempoolRejectedTx(const CTransactionRef& ptx, const TxValidationState& state, NodeId nodeid, bool first_time_failure)

{

    const CTransaction& tx{*ptx};

    // Results returned to caller

    // Whether we should call AddToCompactExtraTransactions at the end

    bool add_extra_compact_tx{first_time_failure};

    // Hashes to pass to AddKnownTx later

    std::vector<Txid> unique_parents;

    // Populated if failure is reconsiderable and eligible package is found.

    std::optional<node::PackageToValidate> package_to_validate;

    if (state.GetResult() == TxValidationResult::TX_MISSING_INPUTS) {

  Branch (367:9): [True: 324k, False: 29.0k]

        // Only process a new orphan if this is a first time failure, as otherwise it must be either

        // already in orphanage or from 1p1c processing.

        if (first_time_failure && !RecentRejectsFilter().contains(ptx->GetWitnessHash().ToUint256())) {

  Branch (370:13): [True: 322k, False: 1.20k]
  Branch (370:35): [True: 322k, False: 0]

            bool fRejectedParents = false; // It may be the case that the orphans parents have all been rejected

            // Deduplicate parent txids, so that we don't have to loop over

            // the same parent txid more than once down below.

            unique_parents = GetUniqueParents(tx);

            // Distinguish between parents in m_lazy_recent_rejects and m_lazy_recent_rejects_reconsiderable.

            // We can tolerate having up to 1 parent in m_lazy_recent_rejects_reconsiderable since we

            // submit 1p1c packages. However, fail immediately if any are in m_lazy_recent_rejects.

            std::optional<uint256> rejected_parent_reconsiderable;

            for (const uint256& parent_txid : unique_parents) {

  Branch (381:45): [True: 357k, False: 295k]

                if (RecentRejectsFilter().contains(parent_txid)) {

  Branch (382:21): [True: 27.6k, False: 329k]

                    fRejectedParents = true;

                    break;

                } else if (RecentRejectsReconsiderableFilter().contains(parent_txid) &&

  Branch (385:28): [True: 560, False: 328k]
  Branch (385:28): [True: 549, False: 328k]

                           !m_opts.m_mempool.exists(GenTxid::Txid(parent_txid))) {

  Branch (386:28): [True: 549, False: 11]

                    // More than 1 parent in m_lazy_recent_rejects_reconsiderable: 1p1c will not be

                    // sufficient to accept this package, so just give up here.

                    if (rejected_parent_reconsiderable.has_value()) {

  Branch (389:25): [True: 14, False: 535]

                        fRejectedParents = true;

                        break;

                    }

                    rejected_parent_reconsiderable = parent_txid;

                }

            }

            if (!fRejectedParents) {

  Branch (396:17): [True: 295k, False: 27.6k]

                // Filter parents that we already have.

                // Exclude m_lazy_recent_rejects_reconsiderable: the missing parent may have been

                // previously rejected for being too low feerate. This orphan might CPFP it.

                std::erase_if(unique_parents, [&](const auto& txid){

                    return AlreadyHaveTx(GenTxid::Txid(txid), /*include_reconsiderable=*/false);

                });

                const auto now{GetTime<std::chrono::microseconds>()};

                const auto& wtxid = ptx->GetWitnessHash();

                // Potentially flip add_extra_compact_tx to false if tx is already in orphanage, which

                // means it was already added to vExtraTxnForCompact.

                add_extra_compact_tx &= !m_orphanage.HaveTx(wtxid);

                // If there is no candidate for orphan resolution, AddTx will not be called. This means

                // that if a peer is overloading us with invs and orphans, they will eventually not be

                // able to add any more transactions to the orphanage.

                //

                // Search by txid and, if the tx has a witness, wtxid

                std::vector<NodeId> orphan_resolution_candidates{nodeid};

                m_txrequest.GetCandidatePeers(ptx->GetHash().ToUint256(), orphan_resolution_candidates);

                if (ptx->HasWitness()) m_txrequest.GetCandidatePeers(ptx->GetWitnessHash().ToUint256(), orphan_resolution_candidates);

  Branch (416:21): [True: 256k, False: 39.1k]

                for (const auto& nodeid : orphan_resolution_candidates) {

  Branch (418:41): [True: 303k, False: 295k]

                    if (MaybeAddOrphanResolutionCandidate(unique_parents, ptx->GetWitnessHash(), nodeid, now)) {

  Branch (419:25): [True: 302k, False: 350]

                        m_orphanage.AddTx(ptx, nodeid);

                    }

                }

                // Once added to the orphan pool, a tx is considered AlreadyHave, and we shouldn't request it anymore.

                m_txrequest.ForgetTxHash(tx.GetHash());

                m_txrequest.ForgetTxHash(tx.GetWitnessHash());

                // DoS prevention: do not allow m_orphanage to grow unbounded (see CVE-2012-3789)

                // Note that, if the orphanage reaches capacity, it's possible that we immediately evict

                // the transaction we just added.

                m_orphanage.LimitOrphans(m_opts.m_max_orphan_txs, m_opts.m_rng);

            } else {

                unique_parents.clear();

                LogDebug(BCLog::MEMPOOL, "not keeping orphan with rejected parents %s (wtxid=%s)\n",

                         tx.GetHash().ToString(),

                         tx.GetWitnessHash().ToString());

                // We will continue to reject this tx since it has rejected

                // parents so avoid re-requesting it from other peers.

                // Here we add both the txid and the wtxid, as we know that

                // regardless of what witness is provided, we will not accept

                // this, so we don't need to allow for redownload of this txid

                // from any of our non-wtxidrelay peers.

                RecentRejectsFilter().insert(tx.GetHash().ToUint256());

                RecentRejectsFilter().insert(tx.GetWitnessHash().ToUint256());

                m_txrequest.ForgetTxHash(tx.GetHash());

                m_txrequest.ForgetTxHash(tx.GetWitnessHash());

            }

        }

    } else if (state.GetResult() == TxValidationResult::TX_WITNESS_STRIPPED) {

  Branch (449:16): [True: 982, False: 28.0k]

        add_extra_compact_tx = false;

    } else {

        // We can add the wtxid of this transaction to our reject filter.

        // Do not add txids of witness transactions or witness-stripped

        // transactions to the filter, as they can have been malleated;

        // adding such txids to the reject filter would potentially

        // interfere with relay of valid transactions from peers that

        // do not support wtxid-based relay. See

        // https://github.com/bitcoin/bitcoin/issues/8279 for details.

        // We can remove this restriction (and always add wtxids to

        // the filter even for witness stripped transactions) once

        // wtxid-based relay is broadly deployed.

        // See also comments in https://github.com/bitcoin/bitcoin/pull/18044#discussion_r443419034

        // for concerns around weakening security of unupgraded nodes

        // if we start doing this too early.

        if (state.GetResult() == TxValidationResult::TX_RECONSIDERABLE) {

  Branch (465:13): [True: 6.25k, False: 21.7k]

            // If the result is TX_RECONSIDERABLE, add it to m_lazy_recent_rejects_reconsiderable

            // because we should not download or submit this transaction by itself again, but may

            // submit it as part of a package later.

            RecentRejectsReconsiderableFilter().insert(ptx->GetWitnessHash().ToUint256());

            if (first_time_failure) {

  Branch (471:17): [True: 4.23k, False: 2.01k]

                // When a transaction fails for TX_RECONSIDERABLE, look for a matching child in the

                // orphanage, as it is possible that they succeed as a package.

                LogDebug(BCLog::TXPACKAGES, "tx %s (wtxid=%s) failed but reconsiderable, looking for child in orphanage\n",

                         ptx->GetHash().ToString(), ptx->GetWitnessHash().ToString());

                package_to_validate = Find1P1CPackage(ptx, nodeid);

            }

        } else {

            RecentRejectsFilter().insert(ptx->GetWitnessHash().ToUint256());

        }

        m_txrequest.ForgetTxHash(ptx->GetWitnessHash());

        // If the transaction failed for TX_INPUTS_NOT_STANDARD,

        // then we know that the witness was irrelevant to the policy

        // failure, since this check depends only on the txid

        // (the scriptPubKey being spent is covered by the txid).

        // Add the txid to the reject filter to prevent repeated

        // processing of this transaction in the event that child

        // transactions are later received (resulting in

        // parent-fetching by txid via the orphan-handling logic).

        // We only add the txid if it differs from the wtxid, to avoid wasting entries in the

        // rolling bloom filter.

        if (state.GetResult() == TxValidationResult::TX_INPUTS_NOT_STANDARD && ptx->HasWitness()) {

  Branch (492:13): [True: 48, False: 27.9k]
  Branch (492:80): [True: 7, False: 41]

            RecentRejectsFilter().insert(ptx->GetHash().ToUint256());

            m_txrequest.ForgetTxHash(ptx->GetHash());

        }

    }

    // If the tx failed in ProcessOrphanTx, it should be removed from the orphanage unless the

    // tx was still missing inputs. If the tx was not in the orphanage, EraseTx does nothing and returns 0.

    if (state.GetResult() != TxValidationResult::TX_MISSING_INPUTS && m_orphanage.EraseTx(ptx->GetWitnessHash()) > 0) {

  Branch (500:9): [True: 29.0k, False: 324k]
  Branch (500:71): [True: 6.40k, False: 22.5k]

        LogDebug(BCLog::TXPACKAGES, "   removed orphan tx %s (wtxid=%s)\n", ptx->GetHash().ToString(), ptx->GetWitnessHash().ToString());

    }

    return RejectedTxTodo{

        .m_should_add_extra_compact_tx = add_extra_compact_tx,

        .m_unique_parents = std::move(unique_parents),

        .m_package_to_validate = std::move(package_to_validate)

    };

}

void TxDownloadManagerImpl::MempoolRejectedPackage(const Package& package)

{

    RecentRejectsReconsiderableFilter().insert(GetPackageHash(package));

}

std::pair<bool, std::optional<PackageToValidate>> TxDownloadManagerImpl::ReceivedTx(NodeId nodeid, const CTransactionRef& ptx)

{

    const uint256& txid = ptx->GetHash();

    const uint256& wtxid = ptx->GetWitnessHash();

    // Mark that we have received a response

    m_txrequest.ReceivedResponse(nodeid, txid);

    if (ptx->HasWitness()) m_txrequest.ReceivedResponse(nodeid, wtxid);

  Branch (523:9): [True: 339k, False: 49.1k]

    // First check if we should drop this tx.

    // We do the AlreadyHaveTx() check using wtxid, rather than txid - in the

    // absence of witness malleation, this is strictly better, because the

    // recent rejects filter may contain the wtxid but rarely contains

    // the txid of a segwit transaction that has been rejected.

    // In the presence of witness malleation, it's possible that by only

    // doing the check with wtxid, we could overlook a transaction which

    // was confirmed with a different witness, or exists in our mempool

    // with a different witness, but this has limited downside:

    // mempool validation does its own lookup of whether we have the txid

    // already; and an adversary can already relay us old transactions

    // (older than our recency filter) if trying to DoS us, without any need

    // for witness malleation.

    if (AlreadyHaveTx(GenTxid::Wtxid(wtxid), /*include_reconsiderable=*/true)) {

  Branch (538:9): [True: 9.76k, False: 379k]

        if (RecentRejectsReconsiderableFilter().contains(wtxid)) {

            // When a transaction is already in m_lazy_recent_rejects_reconsiderable, we shouldn't submit

            // it by itself again. However, look for a matching child in the orphanage, as it is

            // possible that they succeed as a package.

            LogDebug(BCLog::TXPACKAGES, "found tx %s (wtxid=%s) in reconsiderable rejects, looking for child in orphanage\n",

                     txid.ToString(), wtxid.ToString());

            return std::make_pair(false, Find1P1CPackage(ptx, nodeid));

        }

        // If a tx is detected by m_lazy_recent_rejects it is ignored. Because we haven't

        // submitted the tx to our mempool, we won't have computed a DoS

        // score for it or determined exactly why we consider it invalid.

        //

        // This means we won't penalize any peer subsequently relaying a DoSy

        // tx (even if we penalized the first peer who gave it to us) because

        // we have to account for m_lazy_recent_rejects showing false positives. In

  Branch (555:16): [True: 532, False: 378k]

        // other words, we shouldn't penalize a peer if we aren't *sure* they

        // submitted a DoSy tx.

        //

        // Note that m_lazy_recent_rejects doesn't just record DoSy or invalid

        // transactions, but any tx not accepted by the mempool, which may be

        // due to node policy (vs. consensus). So we can't blanket penalize a

        // peer simply for relaying a tx that our m_lazy_recent_rejects has caught,

        // regardless of false positives.

        return {false, std::nullopt};

    }

    return {true, std::nullopt};

}

bool TxDownloadManagerImpl::HaveMoreWork(NodeId nodeid)

{

    return m_orphanage.HaveTxToReconsider(nodeid);

}

CTransactionRef TxDownloadManagerImpl::GetTxToReconsider(NodeId nodeid)

{

    return m_orphanage.GetTxToReconsider(nodeid);

}

void TxDownloadManagerImpl::CheckIsEmpty(NodeId nodeid)

  Branch (580:5): [True: 88.7k, False: 0]

{

  Branch (581:5): [True: 88.7k, False: 0]

    assert(m_txrequest.Count(nodeid) == 0);

    assert(m_orphanage.UsageByPeer(nodeid) == 0);

}

void TxDownloadManagerImpl::CheckIsEmpty()

  Branch (585:5): [True: 11.0k, False: 0]

{

  Branch (586:5): [True: 11.0k, False: 0]

    assert(m_orphanage.TotalOrphanUsage() == 0);

  Branch (587:5): [True: 11.0k, False: 0]

    assert(m_orphanage.Size() == 0);

  Branch (588:5): [True: 11.0k, False: 0]

    assert(m_txrequest.Size() == 0);

    assert(m_num_wtxid_peers == 0);

}

std::vector<TxOrphanage::OrphanTxBase> TxDownloadManagerImpl::GetOrphanTransactions() const

{

    return m_orphanage.GetOrphanTransactions();

}

} // namespace node