Why drop checkFinalTx instead of passing in the right flags to use MTP? I think this change would allow coin selection to include UTXOs from non-final txs which is not really safe behavior IMO.

The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Conflicts

Reviewers, this pull request conflicts with the following ones:

• #24080 (policy: Remove unused locktime flags by MarcoFalke)
• #20892 (tests: Run both descriptor and legacy tests within a single test invocation by achow101)
• #15606 (assumeutxo by jamesob)

If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

I think this change would allow coin selection to include UTXOs from non-final txs which is not really safe behavior IMO.

If coin selection were to include coins that are neither confirmed in the chain nor are in the mempool, then that is a separate bug to fix.

I think the two issues should be split up. Even if we later add a general "mempool rejection reason" to the GUI, the current intended behaviour tells more information (how many blocks left / when it becomes eligible for confirmation). I would prefer fixing that rather than removing it.

The second issue seems like a strict bugfix, so should get merged faster/cleaner.

Why drop checkFinalTx instead of passing in the right flags to use MTP?

Using the right time for tx.lock_time comparisons would be an improvement, but create even more confusion than it fixes. You'd also have to check nSequence to find non-final txs.

GUI, the current intended behaviour tells more information

Fixing this for the GUI will open up trivial DoS vectors for no benefit. To check for nSequence timelocks, the whole utxo set + mempool needs to be scanned for each input for each unconfirmed wallet transaction.
It is already impossible to use a wallet for large tx counts (#16815, #15148, #7475), so I don't see why we should make that even worse for a feature that has no practical benefit.
It is currently not possible to add non-final txs to a wallet, since all wallet txs are added either via the chain, via the mempool, or via the internal wallet itself. In all three cases we know the txs to be final. So for a wallet tx to change to the non-final state, one needs to do a reindex/reorg, in which case the tx will be final once the reindex/reorg has finished. (Unless someone is doing a malicious, potentially large reorg, in which case a mouse-over string in a details window of the GUI should be the least of your problems. In fact you wouldn't be able to trust it anyway due to the malicious hashrate.)
And for the reindex you can already see when the tx was added to the wallet. As you know it was final at the time it was added, adding a string (Open for %n blocks) is just redundant. For example, if your reindex is currently at year 2015 and there is a tx locked to a block height in 2019, adding a string (open for 123123 blocks) doesn't help the user at all. The user can already tell that 2019 is ahead in the reindex process, which is at 2015.

The second issue seems like a strict bugfix, so should get merged faster/cleaner.

Overall I don't understand why a questionable feature in the GUI is used as an argument against a patch that is:

• a bugfix
• only removes code
• speeds up the wallet/gui

It is currently not possible to add non-final txs to a wallet

Good point. Concept ACK.

(This seems like a bug, but probably non-trivial to fix, and it's not like the new behaviour is wrong, just less detailed)

Interesting pull request. I was able to reproduce the issue using the below steps manually based on test added in test/functional/wallet_timelock.py:

1. Run bitcoin-qt (signet) in host machine and virtual machine

2. Get median time for tip:

   getbestblockhash
   
   0000004924aa7d2b938b851b740e5efeb54b4aa1e59a207d1e2a7ad8fddf802d
   
   getblockheader 0000004924aa7d2b938b851b740e5efeb54b4aa1e59a207d1e2a7ad8fddf802d
   
   {
     "hash": "0000004924aa7d2b938b851b740e5efeb54b4aa1e59a207d1e2a7ad8fddf802d",
     "confirmations": 1,
     "height": 73295,
     "version": 536870912,
     "versionHex": "20000000",
     "merkleroot": "68d904e541209d287566c3bca783ecdbc4edef56c81be602a7c8b38647a26f76",
     "time": 1642360754,
   ! "mediantime": 1642357731,
     "nonce": 2927517,
     "bits": "1e016b58",
     "difficulty": 0.002752172677281328,
     "chainwork": "000000000000000000000000000000000000000000000000000000ce943d83c0",
     "nTx": 50,
     "previousblockhash": "0000012e842e76b7d51e8324109f624c952107a33c592b61b8aa408870256a0b"
   }
   

3. Create a raw transaction to send bitcoin from host to VM and use locktime = mediantime -1:

    createrawtransaction "[{\"txid\":\"cf54ddd4d647073751389dc4e3b41bda6b9c043f59e27e5cc849c22d5eaf7450\",\"vout\":0}]" "[{\"tb1qqs3sdxqhyzkc6n922slxe49r87d6nyvcc705s8\":0.0005}]" "1642357730"    
   

4. Once the transaction is confirmed observe the inputs available for a transaction in bitcoin-qt based on system time:

partial ACK fa73381a88d7b650c01f4e098ec68c96f1a4485b

Partial because I ignored the GUI commit. Otherwise reviewed the code and confirmed that the tests fail on master.

The test fails on master but it's hard to find where it's checking with mocktime instead of MTP?

Good q. The time is set in CheckFinalTx, see also #24080.

ACK fa73381a88d7b650c01f4e098ec68c96f1a4485b

The python test I wrote was too cringe (#24067 (comment)), so I force pushed a simpler version. I left all C++ and Qt code the same.

Should be relatively easy to re-ACK.

ACK fac8165