mirror of
https://github.com/LORDBABUINO/stealth.git
synced 2026-04-23 22:20:00 -07:00
7fb428da55
Trim the scan_wallet comment so it only states the Rust-side behavior: derive every descriptor address, without the extra cross-reference to the Python path.
stealth-bitcoincore
stealth-bitcoincore is the Bitcoin Core JSON-RPC gateway implementation for
stealth-engine.
It implements stealth_engine::gateway::BlockchainGateway and is used by both:
stealth-cli(terminal scans)stealth-api(HTTP scans)
What it does
This crate wraps the Bitcoin Core RPC surface needed by the analysis engine:
- descriptor normalization and derivation
- descriptor import into temporary watch-only wallets
- wallet history + UTXO retrieval
- raw transaction expansion (including ancestry walk)
The output is converted into stealth-engine gateway types (WalletHistory,
DecodedTransaction, Utxo, etc), so the engine can run detectors without
knowing anything about RPC transport details.
Authentication and configuration
The gateway supports:
- RPC user/password
- Bitcoin Core cookie auth
BitcoinCoreRpc::from_url(...) does not auto-discover cookie files. If you
want internal cookie lookup, construct with BitcoinCoreConfig and set
datadir.
1) Build from URL (used by API/CLI)
use stealth_bitcoincore::BitcoinCoreRpc;
let gateway = BitcoinCoreRpc::from_url(
"http://127.0.0.1:18443",
Some("rpcuser".to_owned()),
Some("rpcpassword".to_owned()),
)?;
# let _ = gateway;
# Ok::<(), stealth_model::error::AnalysisError>(())
Pass explicit credentials (or parse a cookie file yourself and pass those values here).
2) Build from INI file
[bitcoin]
network=regtest
datadir=/home/user/.bitcoin
rpchost=127.0.0.1
rpcport=18443
rpcuser=rpcuser
rpcpassword=rpcpassword
use stealth_bitcoincore::{BitcoinCoreConfig, BitcoinCoreRpc};
let config = BitcoinCoreConfig::from_ini_file("stealth.ini")?;
let gateway = BitcoinCoreRpc::new(config)?;
# let _ = gateway;
# Ok::<(), stealth_model::error::AnalysisError>(())
Config defaults:
network:regtestrpchost:127.0.0.1rpcport: inferred from network (8332mainnet,18332testnet,38332signet,18443regtest)datadir: optional (required for cookie fallback)
Cookie lookup:
- mainnet:
<datadir>/.cookie - other networks:
<datadir>/<network>/.cookie, then<datadir>/.cookie
Using with the analysis engine
use stealth_bitcoincore::BitcoinCoreRpc;
use stealth_engine::{AnalysisEngine, EngineSettings, ScanTarget};
let gateway = BitcoinCoreRpc::from_url(
"http://127.0.0.1:18443",
Some("rpcuser".to_owned()),
Some("rpcpassword".to_owned()),
)?;
let engine = AnalysisEngine::new(&gateway, EngineSettings::default());
let report = engine.analyze(ScanTarget::Descriptor(
"wpkh([f23f9fd2/84h/1h/0h]tpub.../0/*)".to_owned(),
))?;
println!("clean: {}", report.summary.clean);
# Ok::<(), stealth_model::error::AnalysisError>(())
RPC methods used
| Gateway behavior | Bitcoin Core RPC |
|---|---|
| Descriptor normalization | getdescriptorinfo |
| Address derivation | deriveaddresses |
| Temporary wallet creation | createwallet |
| Descriptor import | importdescriptors |
| Wallet tx list | listtransactions |
| UTXO list | listunspent |
| Raw tx decode/history expansion | getrawtransaction (verbose) |
| Wallet descriptor listing | listdescriptors |
| Wallet cleanup | unloadwallet |
Notes
- Descriptor scans create a temporary wallet named
_stealth_scan_<timestamp_ms>and unload it after collection. - Most gateway failures are surfaced as
AnalysisError::EnvironmentUnavailable(...)with the underlying RPC/context message. - For robust transaction lookups beyond wallet-only data, running
bitcoindwithtxindex=1is recommended.
Development
cargo test -p stealth-bitcoincore