feat: Dash Masternode List and Quorum Viewer

[QuantumExplorer]

Summary by CodeRabbit

• New Features

  • Added Masternode List Diff tools screen with fetching/display of MN list diffs, quorum info, and chain-lock signatures.
  • Scheduled masternode vote casting enabled.

• Improvements

  • UI now surfaces ChainLock and InstantLock events; ZMQ feeds switched to chain-lock signatures for richer updates.
  • Safer key handling and many UI flow/readability refinements.
  • Success message color changed to dark green.

• Chores

  • Rust toolchain bumped to 1.89; dependencies updated (including dash-sdk) and rand added; CI/snap builds updated.
  • Mainnet config adjusted to publish chain-lock signatures.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

Adds Masternode List Diff UI and MnList backend tasks, implements a Core P2P handler, surfaces InstantLock/ChainLock items via ZMQ (rawchainlocksig), bumps Rust toolchain and dash-sdk, adjusts imports and private-key parsing, and flattens many nested conditionals across the codebase.

Changes

Cohort / File(s)	Summary of changes
Toolchain & CI rust-toolchain.toml, .github/workflows/clippy.yml, snap/snapcraft.yaml, CLAUDE.md	Rust toolchain bumped 1.88 → 1.89 in toolchain, CI, snap build script, and docs.
Cargo / deps Cargo.toml	rust-version → 1.89; dash-sdk git rev updated and features enabled; added rand = "0.8".
Core items & ZMQ config src/backend_task/core/mod.rs, src/components/core_zmq_listener.rs, dash_core_configs/mainnet.conf	Added CoreItem variants: InstantLockedTransaction(Transaction, Vec<...>, InstantLock) and ChainLockedBlock(Block, ChainLock); ZMQ listener subscribes to rawchainlocksig and emits (Block, ChainLock); mainnet.conf switches zmqpubrawchainlock → zmqpubrawchainlocksig.
Core P2P handler src/components/core_p2p_handler.rs, src/components/mod.rs	New CoreP2PHandler providing P2P handshake, GetMnListDiff and GetQRInfo request/response, wire framing, and public API; module exported.
MnList backend tasks src/backend_task/mnlist.rs, src/backend_task/mod.rs	New MnListTask enum and run_mnlist_task executor; BackendTask gains MnListTask variant and new BackendTaskSuccessResult MnList-related variants.
App & UI wiring src/app.rs, src/ui/mod.rs, src/ui/components/tools_subscreen_chooser_panel.rs, src/ui/tools/mod.rs	Added Masternode List Diff screen/module and routing (root/screen enums, instantiation, refresh/handlers); scheduled vote casting logic wired; ChainLockedBlock forwarded as CoreItem.
Identity / key handling src/backend_task/identity/*.rs, src/database/wallet.rs, src/model/**, src/ui/wallets/*	Import path moves to dash_sdk::dpp::key_wallet::bip32/psbt; PrivateKey::from_slice → from_byte_array; safer optional handling and validation for owner/voting keys.
Token flows & builders src/backend_task/tokens/*	Flattened nested conditionals to let-chain guards across mint/claim/transfer/burn/query; TokenChangeDirectPurchasePriceTransitionBuilder::new signature changed (pricing moved to with_token_pricing_schedule).
DB / config / context src/database/contracts.rs, src/context.rs, src/ui/network_chooser_screen.rs	Simplified token insertion guard; invalidate_settings_cache signature adds explicit lifetime; Save Password flow updates in-memory config and may reinit core client/sdk.
Many UI refactors (let-chains) src/ui/** (multiple files)	Numerous nested if-let chains simplified to combined guarded conditionals across many screens and components; mostly stylistic control-flow flattening, no intended behavior changes.
Miscellaneous src/backend_task/identity/load_identity.rs, src/backend_task/core/mod.rs	Added richer CoreItem payloads and replaced some unwraps with explicit error paths; import adjustments across modules.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor User
  participant UI as MasternodeListDiffScreen
  participant App as AppContext
  participant BT as BackendTask (MnList)
  participant P2P as CoreP2PHandler
  participant Core as Dash Core (P2P/ZMQ)

  User->>UI: request masternode diff
  UI->>App: dispatch BackendTask::MnListTask(...)
  App->>BT: run_mnlist_task(task)
  BT->>P2P: ensure handshake() / send request
  P2P->>Core: P2P version/verack and GetMnListDiff/GetQRInfo
  Core-->>P2P: response (mnlistdiff/qrinfo)
  P2P-->>BT: decoded MnListDiff / QRInfo
  BT-->>App: BackendTaskSuccessResult::MnListFetched*
  App-->>UI: deliver result
  UI-->>User: render diffs

  note over Core,P2P: ZMQ publishes rawchainlocksig (Block + ChainLock)
  Core-->>App: ZMQMessage::ChainLockedBlock(Block, ChainLock)
  App-->>UI: forward as CoreItem::ChainLockedBlock

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~70 minutes

Possibly related PRs

• v0.8.5-dev to master #205 — Appears to also modify Rust toolchain and update dash-sdk dependency (rev/features).
• fix: update identity after registering name instead of reinserting #41 — Also touches Core ZMQ listener and CoreItem chain-lock/instant-lock handling.
• feat: deferred voting #129 — Related scheduled/deferred masternode voting and UI/app vote-casting wiring.

Suggested reviewers

• ogabrielides

Poem

In burrows of code I twitch my nose,
New handshakes, diffs, and quorum prose.
Toolchain hops to one-eight-nine,
P2P chats and chain-locks align.
I nibble bytes and thump with glee—approve me please, from rabbit me. 🐇✨

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 77.78% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title "feat: Dash Masternode List and Quorum Viewer" is a concise, single-sentence summary that clearly highlights the primary feature introduced by the changeset. The patched files and summaries show a new masternode list/quorum viewer UI plus backend support (MnList tasks, CoreP2PHandler, ZMQ changes), so the title accurately reflects the main change. It is specific, free of noise, and readable for a teammate scanning PR history.

Tip

👮 Agentic pre-merge checks are now available in preview!

Pro plan users can now enable pre-merge checks in their settings to enforce checklists before merging PRs.

• Built-in checks – Quickly apply ready-made checks to enforce title conventions, require pull request descriptions that follow templates, validate linked issues for compliance, and more.
• Custom agentic checks – Define your own rules using CodeRabbit’s advanced agentic capabilities to enforce organization-specific policies and workflows. For example, you can instruct CodeRabbit’s agent to verify that API documentation is updated whenever API schema files are modified in a PR. Note: Upto 5 custom checks are currently allowed during the preview period. Pricing for this feature will be announced in a few weeks.

Please see the documentation for more information.

Example:

reviews:
  pre_merge_checks:
    custom_checks:
      - name: "Undocumented Breaking Changes"
        mode: "warning"
        instructions: |
          Pass/fail criteria: All breaking changes to public APIs, CLI flags, environment variables, configuration keys, database schemas, or HTTP/GraphQL endpoints must be documented in the "Breaking Change" section of the PR description and in CHANGELOG.md. Exclude purely internal or private changes (e.g., code not exported from package entry points or explicitly marked as internal).

Please share your feedback with us on this Discord post.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[pauldelucia]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 9

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (3)

snap/snapcraft.yaml (1)

161-166: ImageMagick not installed but ‘convert’ is used.

This will fail when the 256.png fallback path triggers.

     build-packages:
       - build-essential
       - pkg-config
@@
       - xkb-data
+      - imagemagick

src/ui/tokens/freeze_tokens_screen.rs (1)

559-567: Freeze button never opens the confirmation dialog

Clicking “Freeze” sets self.confirmation_dialog = None, and the dialog is only shown when is_some(). This prevents the flow from proceeding.

Initialize the dialog on click (mirroring DestroyFrozenFunds):

-                    if ui.add(button).clicked() {
-                        // Initialize confirmation dialog when button is clicked
-                        self.confirmation_dialog = None; // Reset for fresh dialog
-                    }
+                    if ui.add(button).clicked() {
+                        // Initialize confirmation dialog when button is clicked
+                        let msg = format!(
+                            "Are you sure you want to freeze identity {}?",
+                            self.freeze_identity_id
+                        );
+                        self.confirmation_dialog = Some(
+                            ConfirmationDialog::new("Confirm Freeze", msg)
+                                .confirm_text(Some("Confirm"))
+                                .cancel_text(Some("Cancel")),
+                        );
+                    }

src/ui/wallets/import_wallet_screen.rs (1)

73-76: Avoid panic on key derivation; propagate error instead.

Using expect(..) can crash the app. Return a user-facing Err so the UI can display it.

-            let master_ecdsa_extended_private_key =
-                ExtendedPrivKey::new_master(self.app_context.network, &seed)
-                    .expect("Failed to create master ECDSA extended private key");
+            let master_ecdsa_extended_private_key =
+                ExtendedPrivKey::new_master(self.app_context.network, &seed)
+                    .map_err(|e| format!("Failed to create master ECDSA extended private key: {e}"))?;

🧹 Nitpick comments (58)

src/ui/identities/identities_screen.rs (1)

199-207: Idiomatic, but consider a slimmer combinator form to avoid explicit branching.

Functionally OK. For a tiny readability win, you could collapse to chained and_then + cloned:

-    if let Some(master_identity_public_key) = qi.private_keys.find_master_key()
-        && let Some(wallet_derivation_path) =
-            &master_identity_public_key.in_wallet_at_derivation_path
-        && let Some(alias) = self
-            .wallet_seed_hash_cache
-            .get(&wallet_derivation_path.wallet_seed_hash)
-    {
-        return alias.clone();
-    }
-    "".to_owned()
+    qi.private_keys
+        .find_master_key()
+        .and_then(|k| k.in_wallet_at_derivation_path.as_ref())
+        .and_then(|p| self.wallet_seed_hash_cache.get(&p.wallet_seed_hash))
+        .cloned()
+        .unwrap_or_default()

CLAUDE.md (1)

59-59: Keep version wording consistent with toolchain (drop the “+”).

Docs say “1.89+” while rust-toolchain pins 1.89. Suggest aligning to avoid confusion.

-1. **Rust**: Version 1.89+ (enforced by rust-toolchain.toml)
+1. **Rust**: Version 1.89 (enforced by rust-toolchain.toml)

rust-toolchain.toml (1)

2-2: Optionally include components in toolchain file for dev parity.

Adding clippy/rustfmt here helps local devs match CI.

 [toolchain]
-channel = "1.89"
+channel = "1.89"
+components = ["clippy", "rustfmt"]

snap/snapcraft.yaml (1)

52-55: Faster, reproducible Rust install.

Use minimal profile and explicit install rather than setting default; keeps build env cleaner.

-# Install Rust
-curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain 1.89
-export PATH="$HOME/.cargo/bin:$PATH"
-rustc --version
-cargo --version
+# Install Rust (minimal) and pin toolchain
+curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --profile minimal
+export PATH="$HOME/.cargo/bin:$PATH"
+rustup toolchain install 1.89 --profile minimal
+rustup override set 1.89
+rustc --version
+cargo --version

src/model/wallet/asset_lock_transaction.rs (1)

1-12: Replace magic SIGHASH constants; use Script builder for clarity.

Improves readability and reduces footguns when forming scriptSig.

 use dash_sdk::dpp::dashcore::{
     Address, Network, OutPoint, PrivateKey, ScriptBuf, Transaction, TxIn, TxOut,
 };
+use dash_sdk::dpp::dashcore::script::Builder;
+use dash_sdk::dpp::dashcore::sighash::EcdsaSighashType;
@@
-        let sighash_u32 = 1u32;
+        let sighash_type = EcdsaSighashType::All;
@@
-                    .legacy_signature_hash(i, &script_pubkey, sighash_u32)
+                    .legacy_signature_hash(i, &script_pubkey, sighash_type.to_u32())
                     .expect("expected sighash")
@@
-                // Serialize the DER-encoded signature and append the sighash type
-                let mut serialized_sig = sig.serialize_der().to_vec();
-
-                let mut sig_script = vec![serialized_sig.len() as u8 + 1];
-
-                sig_script.append(&mut serialized_sig);
-
-                sig_script.push(1);
-
-                let mut serialized_pub_key = private_key.public_key(&secp).serialize();
-
-                sig_script.push(serialized_pub_key.len() as u8);
-                sig_script.append(&mut serialized_pub_key);
-                // Create script_sig
-                input.script_sig = ScriptBuf::from_bytes(sig_script);
+                // Build scriptSig = <sig||sighash> <pubkey>
+                let mut sig_bytes = sig.serialize_der().to_vec();
+                sig_bytes.push(sighash_type.to_u32() as u8);
+                let pubkey_bytes = private_key.public_key(&secp).serialize();
+                input.script_sig = Builder::new()
+                    .push_slice(&sig_bytes)
+                    .push_slice(&pubkey_bytes)
+                    .into_script();

Also applies to: 165-165, 182-185, 221-221

.github/workflows/clippy.yml (2)

37-39: Toolchain bump LGTM; consider action update.

actions-rs/toolchain is effectively archived. Consider dtolnay/rust-toolchain for maintenance longevity.

---

47-51: Align protoc with Snap (or vice versa).

Unify versions to avoid subtle differences.

-  curl -OL https://github.com/protocolbuffers/protobuf/releases/download/v25.2/protoc-25.2-linux-x86_64.zip
-  sudo unzip -o protoc-25.2-linux-x86_64.zip -d /usr/local bin/protoc
-  sudo unzip -o protoc-25.2-linux-x86_64.zip -d /usr/local 'include/*'
-  rm -f protoc-25.2-linux-x86_64.zip
+  PROTOC_VERSION=31.1
+  curl -OL https://github.com/protocolbuffers/protobuf/releases/download/v${PROTOC_VERSION}/protoc-${PROTOC_VERSION}-linux-x86_64.zip
+  sudo unzip -o protoc-${PROTOC_VERSION}-linux-x86_64.zip -d /usr/local bin/protoc
+  sudo unzip -o protoc-${PROTOC_VERSION}-linux-x86_64.zip -d /usr/local 'include/*'
+  rm -f protoc-${PROTOC_VERSION}-linux-x86_64.zip

src/database/wallet.rs (4)

386-388: Fix misleading error message ("32 bytes", not "64").

-            let wallet_seed_hash_array: [u8; 32] =
-                wallet_seed.try_into().expect("Seed should be 64 bytes");
+            let wallet_seed_hash_array: [u8; 32] =
+                wallet_seed.try_into().expect("Seed hash should be 32 bytes");

---

340-356: Use unsigned DB types (and validate) for vout/value to avoid UB on negative data.

-            let vout: i64 = row.get(1)?;
+            let vout: u32 = row.get(1)?;
...
-            let value: i64 = row.get(3)?;
+            let value: u64 = row.get(3)?;
...
-            let outpoint = OutPoint {
-                txid: Txid::from_slice(&txid).expect("Invalid txid"),
-                vout: vout as u32,
-            };
+            let outpoint = OutPoint {
+                txid: Txid::from_slice(&txid).expect("Invalid txid"),
+                vout,
+            };
-            let tx_out = TxOut {
-                value: value as u64,
-                script_pubkey: ScriptBuf::from_bytes(script_pubkey),
-            };
+            let tx_out = TxOut {
+                value,
+                script_pubkey: ScriptBuf::from_bytes(script_pubkey),
+            };

---

345-348: Validate UTXO addresses against the active network (don’t assume_checked).

-            let address = Address::from_str(&address)
-                .expect("Invalid address format")
-                .assume_checked();
+            let address_unchecked =
+                Address::from_str(&address).expect("Invalid address format");
+            let address = check_address_for_network(address_unchecked, network)?;

---

300-303: Don’t silently drop address-row errors; log them.

-        for row in address_rows {
-            if row.is_err() {
-                continue;
-            }
+        for row in address_rows {
+            if let Err(e) = &row {
+                tracing::warn!("skipping wallet address row due to error: {}", e);
+                continue;
+            }

src/ui/wallets/wallets_screen/mod.rs (2)

456-467: Header label/sort mismatch: this column is Balance, not Total Received.

-                            let label = if self.sort_column == SortColumn::Balance {
-                                match self.sort_order {
-                                    SortOrder::Ascending => "Total Received (DASH) ^",
-                                    SortOrder::Descending => "Total Received (DASH) v",
-                                }
-                            } else {
-                                "Total Received (DASH)"
-                            };
+                            let label = if self.sort_column == SortColumn::Balance {
+                                match self.sort_order {
+                                    SortOrder::Ascending => "Balance (DASH) ^",
+                                    SortOrder::Descending => "Balance (DASH) v",
+                                }
+                            } else {
+                                "Balance (DASH)"
+                            };

---

482-493: Header label/sort mismatch: this column is Total Received, not Balance.

-                            let label = if self.sort_column == SortColumn::TotalReceived {
-                                match self.sort_order {
-                                    SortOrder::Ascending => "Balance (DASH) ^",
-                                    SortOrder::Descending => "Balance (DASH) v",
-                                }
-                            } else {
-                                "Balance (DASH)"
-                            };
+                            let label = if self.sort_column == SortColumn::TotalReceived {
+                                match self.sort_order {
+                                    SortOrder::Ascending => "Total Received (DASH) ^",
+                                    SortOrder::Descending => "Total Received (DASH) v",
+                                }
+                            } else {
+                                "Total Received (DASH)"
+                            };

src/ui/tokens/add_token_by_id_screen.rs (1)

131-156: Guarded “Add Token” action is correct; consider always showing a disabled button.

Optional UX: render a disabled “Add Token” button until both a contract and token are selected, so the CTA doesn’t pop in/out.

-        if let (Some(contract), Some(tok)) = (&self.fetched_contract, &self.selected_token)
+        if let (Some(contract), Some(tok)) = (&self.fetched_contract, &self.selected_token)
             && ui
                 .add(
                     egui::Button::new(RichText::new("Add Token").color(Color32::WHITE))
                         .fill(Color32::from_rgb(0, 120, 0)),
                 )
                 .clicked()
         {
             ...
         }
+        else {
+            // Keep CTA visible but disabled until prerequisites are met
+            let _ = ui.add_enabled(
+                false,
+                egui::Button::new(RichText::new("Add Token").color(Color32::WHITE))
+                    .fill(Color32::from_rgb(0, 120, 0)),
+            );
+        }

src/ui/components/identity_selector.rs (1)

191-200: Good simplification; avoid extra work and keep behavior.

Minor: the doc comment says this will panic if no identities and no “Other”; current code does not. Align the doc or enforce the panic.

src/backend_task/tokens/claim_tokens.rs (1)

76-83: Use tracing over eprintln! and deduplicate the two nearly identical branches.

-                        eprintln!("Failed to update token balance from claim document: {}", e);
+                        tracing::warn!("failed to update token balance from claim document: {}", e);
...
-                        eprintln!(
-                            "Failed to update token balance from group action document: {}",
-                            e
-                        );
+                        tracing::warn!(
+                            "failed to update token balance from group action document: {}",
+                            e
+                        );

You can also extract a small helper to parse (claimerId, amount) and perform the balance insert, then call it from both arms.

Also applies to: 90-99

src/ui/tokens/pause_tokens_screen.rs (2)

92-112: Wrong action text (“burn”) in Pause screen; replace with “pause”.

-                error_message = Some("Burning is not allowed on this token".to_string());
+                error_message = Some("Pausing is not allowed on this token".to_string());
...
-                    error_message = Some(
-                        "You are not allowed to burn this token. Only the contract owner is."
-                            .to_string(),
-                    );
+                    error_message = Some(
+                        "You are not allowed to pause this token. Only the contract owner is."
+                            .to_string(),
+                    );
...
-                    error_message = Some("You are not allowed to burn this token".to_string());
+                    error_message = Some("You are not allowed to pause this token".to_string());

---

153-165: Avoid redundant check and clone; borrow the group instead.

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, group)) = group.as_ref() {
+            if group
+                .members()
+                .get(&identity_token_info.identity.identity.id())
+                .is_some_and(|p| p >= &group.required_power())
+            {
+                is_unilateral_group_member = true;
+            }
+        }

src/ui/tokens/set_token_price_screen.rs (2)

175-186: Avoid cloning Group; borrow instead

Clone is unnecessary; borrow via pattern match to reduce allocations.

Apply:

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, ref group)) = group {
+            if let Some(your_power) =
+                group.members().get(&identity_token_info.identity.identity.id())
+                && your_power >= &group.required_power()
+            {
+                is_unilateral_group_member = true;
+            }
+        }

---

88-91: Round when converting Dash→credits to avoid silent truncation

Casting f64 to integer truncates; round first to represent intended credits.

Apply:

-    fn dash_to_credits(dash_amount: f64) -> Credits {
-        (dash_amount * 100_000_000_000.0) as Credits
-    }
+    fn dash_to_credits(dash_amount: f64) -> Credits {
+        (dash_amount * 100_000_000_000.0).round() as Credits
+    }

src/ui/tokens/resume_tokens_screen.rs (1)

152-164: Avoid cloning Group; borrow instead

Same clone pattern as elsewhere; borrow via &group.

Apply:

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, ref group)) = group {
+            if let Some(your_power) =
+                group.members().get(&identity_token_info.identity.identity.id())
+                && your_power >= &group.required_power()
+            {
+                is_unilateral_group_member = true;
+            }
+        }

src/ui/tokens/burn_tokens_screen.rs (2)

172-184: Avoid cloning Group; borrow instead

Same improvement as other screens.

Apply:

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, ref group)) = group {
+            if let Some(your_power) =
+                group.members().get(&identity_token_info.identity.identity.id())
+                && your_power >= &group.required_power()
+            {
+                is_unilateral_group_member = true;
+            }
+        }

---

439-451: Key availability check inconsistent with TokenAction filtering

Here you check any auth key exists; TokenAction later filters to CRITICAL. Align this to avoid UX mismatch.

Apply:

-            } else {
-                !self
-                    .identity_token_info
-                    .identity
-                    .available_authentication_keys()
-                    .is_empty()
-            };
+            } else {
+                !self
+                    .identity_token_info
+                    .identity
+                    .available_authentication_keys_with_critical_security_level()
+                    .is_empty()
+            };

src/ui/tokens/mint_tokens_screen.rs (2)

165-177: Avoid cloning Group; borrow instead

Same change as other screens.

Apply:

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, ref group)) = group {
+            if let Some(your_power) =
+                group.members().get(&identity_token_info.identity.identity.id())
+                && your_power >= &group.required_power()
+            {
+                is_unilateral_group_member = true;
+            }
+        }

---

82-87: Reduce duplication: extract “unilateral group member” check

This pattern repeats across token screens. Consider a small helper (e.g., in ui::helpers) to compute unilateral membership given (&Group, &Identifier).

Example (outside this file):

pub fn is_unilateral_member(group: &Group, who: &Identifier) -> bool {
    group
        .members()
        .get(who)
        .map(|p| *p >= group.required_power())
        .unwrap_or(false)
}

src/ui/tokens/unfreeze_tokens_screen.rs (1)

167-179: Avoid cloning Group; borrow instead

Same improvement as elsewhere.

Apply:

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, ref group)) = group {
+            if let Some(your_power) =
+                group.members().get(&identity_token_info.identity.identity.id())
+                && your_power >= &group.required_power()
+            {
+                is_unilateral_group_member = true;
+            }
+        }

src/ui/components/amount_input.rs (2)

265-273: Avoid mixed let-chain with boolean; prefer clearer guard to keep MSRV-safe and readable

This mixed pattern is harder to parse and may be brittle across compiler versions. A simple guard or match keeps it clear and gives you max_amount for formatting without extra gymnastics.

Apply:

-                // Check if amount exceeds maximum
-                if let Some(max_amount) = self.max_amount
-                    && amount.value() > max_amount
-                {
-                    return Err(format!(
-                        "Amount {} exceeds allowed maximum {}",
-                        amount,
-                        Amount::new(max_amount, self.decimal_places)
-                    ));
-                }
+                // Check if amount exceeds maximum
+                if let Some(max_amount) = self.max_amount {
+                    if amount.value() > max_amount {
+                        return Err(format!(
+                            "Amount {} exceeds allowed maximum {}",
+                            amount,
+                            Amount::new(max_amount, self.decimal_places)
+                        ));
+                    }
+                }

If you prefer an expression form, if let Some(m) = self.max_amount { ... } or match self.max_amount { Some(m) if amount.value() > m => ... , _ => {} } keeps it idiomatic. Please confirm this compiles cleanly on Rust 1.89 in CI.

---

276-283: Same here: simplify the min check

Mirror the approach used for max to avoid mixed let-chain + boolean.

-                // Check if amount is below minimum
-                if let Some(min_amount) = self.min_amount
-                    && amount.value() < min_amount
-                {
-                    return Err(format!(
-                        "Amount must be at least {}",
-                        Amount::new(min_amount, self.decimal_places)
-                    ));
-                }
+                // Check if amount is below minimum
+                if let Some(min_amount) = self.min_amount {
+                    if amount.value() < min_amount {
+                        return Err(format!(
+                            "Amount must be at least {}",
+                            Amount::new(min_amount, self.decimal_places)
+                        ));
+                    }
+                }

src/ui/tokens/destroy_frozen_funds_screen.rs (1)

171-183: Remove redundant is_some + clone; borrow instead

group.is_some() is redundant with the following let Some, and cloning group copies the whole structure. Borrow it and use Option::is_some_and for the power check.

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, group)) = &group {
+            let your_power = group.members().get(&identity_token_info.identity.identity.id());
+            if your_power.is_some_and(|p| p >= &group.required_power()) {
+                is_unilateral_group_member = true;
+            }
+        };

src/backend_task/tokens/transfer_tokens.rs (2)

102-115: De-duplicate document parsing and prefer structured logging

Both branches parse the same four fields; factor into a helper to reduce duplication and switch eprintln! to tracing::warn! for consistency with the rest of the codebase.

-                    if let (
+                    if let (
                         Some(sender_value),
                         Some(sender_amount_value),
                         Some(recipient_value),
                         Some(recipient_amount_value),
                     ) = (
                         document.get("senderId"),
                         document.get("senderAmount"),
                         document.get("recipientId"),
                         document.get("recipientAmount"),
-                    ) && let (
+                    ) && let (
                         Value::Identifier(sender_bytes),
                         Value::U64(sender_amount),
                         Value::Identifier(recipient_bytes),
                         Value::U64(recipient_amount),
-                    ) = (
+                    ) = (
                         sender_value,
                         sender_amount_value,
                         recipient_value,
                         recipient_amount_value,
-                    ) && let (Ok(sender_id), Ok(recipient_id)) = (
+                    ) && let (Ok(sender_id), Ok(recipient_id)) = (
                         Identifier::from_bytes(sender_bytes),
                         Identifier::from_bytes(recipient_bytes),
                     ) {
-                        if let Err(e) = self.insert_token_identity_balance(
-                            &token_id,
-                            &sender_id,
-                            *sender_amount,
-                        ) {
-                            eprintln!(
-                                "Failed to update sender token balance from historical document: {}",
-                                e
-                            );
-                        }
-                        if let Err(e) = self.insert_token_identity_balance(
-                            &token_id,
-                            &recipient_id,
-                            *recipient_amount,
-                        ) {
-                            eprintln!(
-                                "Failed to update recipient token balance from historical document: {}",
-                                e
-                            );
-                        }
+                        Self::update_balances_from_doc(self, &token_id, &sender_id, *sender_amount, &recipient_id, *recipient_amount);
                     }

Add once (outside this hunk):

fn update_balances_from_doc(
    &self,
    token_id: &Identifier,
    sender_id: &Identifier,
    sender_amount: u64,
    recipient_id: &Identifier,
    recipient_amount: u64,
) {
    if let Err(e) = self.insert_token_identity_balance(token_id, sender_id, sender_amount) {
        tracing::warn!("Failed to update sender token balance from document: {e}");
    }
    if let Err(e) = self.insert_token_identity_balance(token_id, recipient_id, recipient_amount) {
        tracing::warn!("Failed to update recipient token balance from document: {e}");
    }
}

Also applies to: 116-136

---

151-164: Same duplication in GroupActionWithDocument branch

Apply the same helper to keep both paths in sync.

Also applies to: 165-185

src/ui/components/contract_chooser_panel.rs (1)

543-603: Use actual window rect instead of an approximate size to close on outside clicks

Hard-coding 150x70 can mis-detect inside vs. outside clicks on different DPIs/content. Capture the window response rect and use it for hit-testing.

-        if let Some(contract) = contract_opt {
-            egui::Window::new("Contract Menu")
+        if let Some(contract) = contract_opt {
+            let window_resp = egui::Window::new("Contract Menu")
                 .id(egui::Id::new("contract_context_menu"))
                 .title_bar(false)
                 .resizable(false)
                 .collapsible(false)
                 .fixed_pos(chooser_state.context_menu_position)
-                .show(ctx, |ui| {
+                .show(ctx, |ui| {
                     ui.set_min_width(150.0);
                     // ...
                 });
-
-            // Close menu if clicked elsewhere
-            if ctx.input(|i| i.pointer.any_click()) {
-                // Check if click was outside the menu
-                let menu_rect = egui::Rect::from_min_size(
-                    chooser_state.context_menu_position,
-                    egui::vec2(150.0, 70.0), // Approximate size
-                );
-                if let Some(pointer_pos) = ctx.pointer_interact_pos()
-                    && !menu_rect.contains(pointer_pos)
-                {
-                    chooser_state.show_context_menu = false;
-                }
-            }
+            if ctx.input(|i| i.pointer.any_click()) {
+                if let Some(resp) = window_resp {
+                    if let Some(pointer_pos) = ctx.pointer_interact_pos() {
+                        if !resp.response.rect.contains(pointer_pos) {
+                            chooser_state.show_context_menu = false;
+                        }
+                    }
+                } else {
+                    chooser_state.show_context_menu = false;
+                }
+            }
         }

src/ui/tokens/update_token_config.rs (1)

210-214: Minor readability: use is_some_and or borrow to avoid extra binding

Keep the style consistent while avoiding a temporary name that shadows meaning.

-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
+            if your_power.is_some_and(|p| p >= &group.required_power()) {
                 self.is_unilateral_group_member = true;
             }

src/ui/tokens/freeze_tokens_screen.rs (1)

163-175: Same group check nit: remove redundant is_some + clone; borrow + is_some_and

Avoid cloning the group and prefer a direct borrow for the power check.

-        if group.is_some()
-            && let Some((_, group)) = group.clone()
-        {
-            let your_power = group
-                .members()
-                .get(&identity_token_info.identity.identity.id());
-
-            if let Some(your_power) = your_power
-                && your_power >= &group.required_power()
-            {
-                is_unilateral_group_member = true;
-            }
-        };
+        if let Some((_, group)) = &group {
+            let your_power = group.members().get(&identity_token_info.identity.identity.id());
+            if your_power.is_some_and(|p| p >= &group.required_power()) {
+                is_unilateral_group_member = true;
+            }
+        };

Cargo.toml (1)

7-7: MSRV bump to 1.89 — pin CI toolchains

rust-toolchain.toml, Cargo.toml, CLAUDE.md and snap/snapcraft.yaml are set to 1.89 and .github/workflows/clippy.yml is pinned to 1.89. .github/workflows/tests.yml:37 and .github/workflows/release.yml:75 still use "stable" — change those to "1.89" or confirm you intend to track rolling "stable".

src/ui/wallets/import_wallet_screen.rs (2)

81-87: Name the intermediate xprv and xpub distinctly.

Variable holds an xprv, then later becomes an xpub, which is confusing. Prefer separate names (e.g., account0_xprv, account0_xpub) for clarity. No behavior change.

---

266-268: Let‑chains cleanup is good; consider avoiding substring error checks.

The guard style is clear. Consider matching a structured error enum instead of error_msg.contains("Invalid seed phrase").

Also applies to: 279-283, 286-288

src/backend_task/core/mod.rs (1)

45-46: New CoreItem variants are sensible; reduce tuple noise with a type alias.

Define a small alias to avoid repeating (OutPoint, TxOut, Address).

+type ResolvedInput = (OutPoint, TxOut, Address);
 
 pub enum CoreItem {
-    InstantLockedTransaction(Transaction, Vec<(OutPoint, TxOut, Address)>, InstantLock),
-    ...
-    ChainLockedBlock(Block, ChainLock),
+    InstantLockedTransaction(Transaction, Vec<ResolvedInput>, InstantLock),
+    ...
+    ChainLockedBlock(Block, ChainLock),
 }

Also applies to: 54-55

src/ui/tokens/tokens_screen/distributions.rs (2)

381-416: Use saturating_mul to avoid u64 overflow in display math.

Large inputs could overflow when multiplying interval × step count.

-                                            let amount =
-                                                perpetual_dist_interval_input * step_count_input;
+                                            let amount =
+                                                perpetual_dist_interval_input.saturating_mul(step_count_input);

---

521-592: Same here: prefer saturating_mul for step position math.

Protects text computation from overflow.

-                                                let block = step_position * perpetual_dist_interval_input;
+                                                let block = step_position.saturating_mul(perpetual_dist_interval_input);
...
-                                                let time = step_position * perpetual_dist_interval_input;
+                                                let time = step_position.saturating_mul(perpetual_dist_interval_input);
...
-                                                let epoch = step_position * perpetual_dist_interval_input;
+                                                let epoch = step_position.saturating_mul(perpetual_dist_interval_input);

src/ui/network_chooser_screen.rs (1)

609-636: Save Password flow: nice chained guard + in‑memory reinit.

Consider surfacing failures to the user (toast/message) instead of only eprintln!.

src/components/core_p2p_handler.rs (5)

19-24: Consider making port private.

The port and stream fields should be private as they're implementation details. Only network needs to be public.

 #[derive(Debug)]
 pub struct CoreP2PHandler {
     pub network: Network,
-    pub port: u16,
-    pub stream: TcpStream,
-    pub handshake_success: bool,
+    port: u16,
+    stream: TcpStream,
+    handshake_success: bool,
 }

---

53-53: Replace println! with proper logging.

Debug output should use a proper logging framework instead of println!.

-        println!("Connected to Dash Core at 127.0.0.1:{}", port);
+        tracing::info!("Connected to Dash Core at 127.0.0.1:{}", port);

Apply similar changes to all other println! calls.

Also applies to: 78-78, 134-134, 218-218, 323-323

---

91-97: Remove commented debug code.

Commented-out debug code should be removed from production code.

Remove the commented blocks for writing to DML.DAT and QR_INFO.DAT files.

Also applies to: 146-152

---

201-201: Typo in random number generation method.

The method name has a typo: r#gen should be gen.

-            nonce: rng.r#gen(),
+            nonce: rng.gen(),

---

206-206: Typo in random number generation method.

Same typo as above.

-            mn_auth_challenge: rng.r#gen(),
+            mn_auth_challenge: rng.gen(),

src/ui/contracts_documents/document_action_screen.rs (1)

382-387: Let‑chain refactor is correct and clearer

The combined guard cleanly replaces the nested condition with identical behavior.

Consider centralizing the magic string into a constant to avoid future drift across files.

src/ui/tokens/direct_token_purchase_screen.rs (1)

305-305: Fix user‑facing typo: “purchaseed” → “purchased”

Minor but visible issue in success detection.

Apply:

-                if message.contains("Successfully purchaseed tokens") || message == "PurchaseTokens"
+                if message.contains("Successfully purchased tokens") || message == "PurchaseTokens"

src/backend_task/identity/mod.rs (1)

141-151: Avoid panics on unsupported key types in identity key mapping

Using panic! in non-test code can crash the app; prefer graceful handling or error propagation.

Consider returning Result<_, Error> from these helpers (or skipping unknown types with logging) instead of panic!("need a ECDSA Key for now").

Also applies to: 166-176

src/ui/components/tools_subscreen_chooser_panel.rs (1)

127-161: Consider extracting screen navigation to reduce duplication

The match statement for screen navigation has become quite verbose. Consider extracting the pattern into a helper function or using a mapping approach.

Consider refactoring the repetitive navigation pattern:

-                                match subscreen {
-                                    ToolsSubscreen::ProofLog => {
-                                        action = AppAction::SetMainScreen(
-                                            RootScreenType::RootScreenToolsProofLogScreen,
-                                        )
-                                    }
-                                    // ... many similar cases
-                                }
+                                action = AppAction::SetMainScreen(subscreen.to_root_screen_type());

And add a method to the enum:

impl ToolsSubscreen {
    pub fn to_root_screen_type(&self) -> RootScreenType {
        match self {
            Self::ProofLog => RootScreenType::RootScreenToolsProofLogScreen,
            Self::TransactionViewer => RootScreenType::RootScreenToolsTransitionVisualizerScreen,
            // ... etc
        }
    }
}

src/components/core_zmq_listener.rs (1)

150-171: Error message incorrectly refers to InstantLock instead of ChainLock.

The error message on line 167 says "Error deserializing InstantLock" but should say "Error deserializing ChainLock".

Apply this diff to fix the error message:

-                                                        eprintln!(
-                                                            "Error deserializing InstantLock: {}",
-                                                            e
-                                                        );
+                                                        eprintln!(
+                                                            "Error deserializing ChainLock: {}",
+                                                            e
+                                                        );

src/backend_task/mnlist.rs (3)

50-51: Consider connection reuse for P2P handler.

Multiple CoreP2PHandler::new() instances are created across different task branches. Consider creating a single P2P handler at the function level and reusing it, or implementing a connection pool for better resource management.

Apply this refactor to reduce connection overhead:

 pub async fn run_mnlist_task(
     app: &AppContext,
     task: MnListTask,
 ) -> Result<BackendTaskSuccessResult, String> {
+    let network = app.network;
+    let mut p2p = match task {
+        MnListTask::FetchEndDmlDiff { .. }
+        | MnListTask::FetchEndQrInfo { .. }
+        | MnListTask::FetchEndQrInfoWithDmls { .. }
+        | MnListTask::FetchDiffsChain { .. } => Some(CoreP2PHandler::new(network, None)?),
+        _ => None,
+    };
+
     match task {
         MnListTask::FetchEndDmlDiff {
             base_block_height,
             base_block_hash,
             block_height,
             block_hash,
             validate_quorums: _,
         } => {
-            let network = app.network;
-            let mut p2p = CoreP2PHandler::new(network, None)?;
+            let p2p = p2p.as_mut().unwrap();
             let diff = p2p.get_dml_diff(base_block_hash, block_hash)?;

---

100-100: Consider adding error context for block hash conversion.

The conversion from RPC hash to DPP hash could benefit from error context if this operation can fail.

---

47-47: Unused parameter validate_quorums.

The validate_quorums parameter in FetchEndDmlDiff is received but not used (marked with _). Consider removing it if not needed or implementing the validation logic if it's intended for future use.

src/backend_task/identity/load_identity.rs (1)

133-134: Consider more specific error message for missing voter identity.

The error message "Voter Identity not found" could include the voter identifier for better debugging.

-                            Ok(None) => return Err("Voter Identity not found".to_string()),
+                            Ok(None) => return Err(format!("Voter Identity not found for identifier: {}", voter_identifier)),

src/app.rs (3)

247-321: Reduce per‑network screen re-instantiation

You re-create MasternodeListDiffScreen for each network branch. Consider extracting a small helper to build tool screens for a given AppContext to cut duplication and drift.

If you prefer a minimal change: construct once, then immediately retarget via a context-aware init method (if available on the screen), instead of full re-instantiation in each branch.

---

623-627: Handle poisoned mutex on ZMQ status update

Current let-chain ignores lock poisoning; recover and log to avoid silent staleness.

Apply:

-        if let Ok(event) = self.current_app_context().rx_zmq_status.try_recv()
-            && let Ok(mut status) = self.current_app_context().zmq_connection_status.lock()
-        {
-            *status = event;
-        }
+        if let Ok(event) = self.current_app_context().rx_zmq_status.try_recv() {
+            match self.current_app_context().zmq_connection_status.lock() {
+                Ok(mut status) => *status = event,
+                Err(poisoned) => {
+                    *poisoned.into_inner() = event;
+                    tracing::warn!("ZMQ status mutex poisoned; recovered");
+                }
+            }
+        }

---

711-719: Avoid cloning tx

No further use of tx after the DB call; you can move it and drop the clone.

Apply:

-                                CoreItem::InstantLockedTransaction(tx.clone(), utxos, is_lock);
+                                CoreItem::InstantLockedTransaction(tx, utxos, is_lock);

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f1b31d7 and eeae955.

⛔ Files ignored due to path filters (3)

• Cargo.lock is excluded by !**/*.lock
• artifacts/mn_list_diff_0_2227096.bin is excluded by !**/*.bin
• artifacts/mn_list_diff_testnet_0_1296600.bin is excluded by !**/*.bin

📒 Files selected for processing (64)

• .github/workflows/clippy.yml (1 hunks)
• CLAUDE.md (1 hunks)
• Cargo.toml (3 hunks)
• dash_core_configs/mainnet.conf (1 hunks)
• rust-toolchain.toml (1 hunks)
• snap/snapcraft.yaml (1 hunks)
• src/app.rs (10 hunks)
• src/backend_task/core/mod.rs (3 hunks)
• src/backend_task/identity/load_identity.rs (4 hunks)
• src/backend_task/identity/load_identity_from_wallet.rs (1 hunks)
• src/backend_task/identity/mod.rs (1 hunks)
• src/backend_task/mnlist.rs (1 hunks)
• src/backend_task/mod.rs (4 hunks)
• src/backend_task/tokens/burn_tokens.rs (1 hunks)
• src/backend_task/tokens/claim_tokens.rs (1 hunks)
• src/backend_task/tokens/mint_tokens.rs (1 hunks)
• src/backend_task/tokens/query_tokens.rs (1 hunks)
• src/backend_task/tokens/set_token_price.rs (1 hunks)
• src/backend_task/tokens/transfer_tokens.rs (2 hunks)
• src/components/core_p2p_handler.rs (1 hunks)
• src/components/core_zmq_listener.rs (4 hunks)
• src/components/mod.rs (1 hunks)
• src/context.rs (1 hunks)
• src/database/contracts.rs (1 hunks)
• src/database/wallet.rs (1 hunks)
• src/model/qualified_identity/encrypted_key_storage.rs (1 hunks)
• src/model/qualified_identity/mod.rs (1 hunks)
• src/model/wallet/asset_lock_transaction.rs (1 hunks)
• src/model/wallet/mod.rs (2 hunks)
• src/ui/components/amount_input.rs (1 hunks)
• src/ui/components/contract_chooser_panel.rs (1 hunks)
• src/ui/components/identity_selector.rs (1 hunks)
• src/ui/components/tools_subscreen_chooser_panel.rs (5 hunks)
• src/ui/contracts_documents/contracts_documents_screen.rs (2 hunks)
• src/ui/contracts_documents/document_action_screen.rs (1 hunks)
• src/ui/contracts_documents/group_actions_screen.rs (1 hunks)
• src/ui/contracts_documents/register_contract_screen.rs (1 hunks)
• src/ui/contracts_documents/update_contract_screen.rs (1 hunks)
• src/ui/dpns/dpns_contested_names_screen.rs (3 hunks)
• src/ui/helpers.rs (1 hunks)
• src/ui/identities/add_new_identity_screen/mod.rs (2 hunks)
• src/ui/identities/identities_screen.rs (5 hunks)
• src/ui/identities/top_up_identity_screen/mod.rs (2 hunks)
• src/ui/mod.rs (16 hunks)
• src/ui/network_chooser_screen.rs (2 hunks)
• src/ui/tokens/add_token_by_id_screen.rs (1 hunks)
• src/ui/tokens/burn_tokens_screen.rs (2 hunks)
• src/ui/tokens/claim_tokens_screen.rs (1 hunks)
• src/ui/tokens/destroy_frozen_funds_screen.rs (2 hunks)
• src/ui/tokens/direct_token_purchase_screen.rs (1 hunks)
• src/ui/tokens/freeze_tokens_screen.rs (2 hunks)
• src/ui/tokens/mint_tokens_screen.rs (2 hunks)
• src/ui/tokens/pause_tokens_screen.rs (2 hunks)
• src/ui/tokens/resume_tokens_screen.rs (2 hunks)
• src/ui/tokens/set_token_price_screen.rs (2 hunks)
• src/ui/tokens/tokens_screen/distributions.rs (2 hunks)
• src/ui/tokens/tokens_screen/mod.rs (4 hunks)
• src/ui/tokens/unfreeze_tokens_screen.rs (2 hunks)
• src/ui/tokens/update_token_config.rs (3 hunks)
• src/ui/tools/mod.rs (1 hunks)
• src/ui/tools/transition_visualizer_screen.rs (2 hunks)
• src/ui/wallets/add_new_wallet_screen.rs (1 hunks)
• src/ui/wallets/import_wallet_screen.rs (3 hunks)
• src/ui/wallets/wallets_screen/mod.rs (2 hunks)

🧰 Additional context used

🧠 Learnings (4)

📚 Learning: 2025-07-23T14:07:31.895Z

Learnt from: CR
PR: dashpay/dash-evo-tool#0
File: CLAUDE.md:0-0
Timestamp: 2025-07-23T14:07:31.895Z
Learning: Applies to components/**/*.rs : Shared components, including ZMQ core listeners, should be placed in the `components/` directory.

Applied to files:

• src/components/mod.rs

📚 Learning: 2025-07-23T14:07:31.895Z

Learnt from: CR
PR: dashpay/dash-evo-tool#0
File: CLAUDE.md:0-0
Timestamp: 2025-07-23T14:07:31.895Z
Learning: Applies to model/**/*.rs : Data structures, including qualified identities with encrypted key storage, should be defined in the `model/` directory.

Applied to files:

• src/model/qualified_identity/encrypted_key_storage.rs

📚 Learning: 2025-07-23T14:07:31.895Z

Learnt from: CR
PR: dashpay/dash-evo-tool#0
File: CLAUDE.md:0-0
Timestamp: 2025-07-23T14:07:31.895Z
Learning: Applies to src/app.rs : Screen transitions should update the screen stack in `app.rs`.

Applied to files:

• src/ui/mod.rs

📚 Learning: 2024-11-18T14:40:33.353Z

Learnt from: ogabrielides
PR: dashpay/dash-evo-tool#73
File: src/backend_task/core/start_dash_qt.rs:17-18
Timestamp: 2024-11-18T14:40:33.353Z
Learning: In `src/backend_task/core/start_dash_qt.rs`, the `start_dash_qt` function verifies the existence of `dash_qt_path` using `dash_qt_path.exists()`, which the team considers sufficient validation for `custom_dash_qt` provided by the user.

Applied to files:

• src/ui/network_chooser_screen.rs

[coderabbitai]

⚠️ Potential issue

Topic mismatch: subscribing to "rawchainlock" but matching "rawchainlocksig".

The subscription on line 105 is for "rawchainlock" (via CHAIN_LOCKED_BLOCK_MSG), but the topic match is for "rawchainlocksig". This appears to be a disconnect between subscription and processing.

Apply this diff to align the topic with the subscription:

-                                    "rawchainlocksig" => {
+                                    "rawchainlock" => {

Alternatively, if the intent is to subscribe to "rawchainlocksig", update the subscription constant:

-pub const CHAIN_LOCKED_BLOCK_MSG: &[u8; 12] = b"rawchainlock";
+pub const CHAIN_LOCKED_BLOCK_MSG: &[u8; 15] = b"rawchainlocksig";

And update the subscription call:

-                .set_subscribe(CHAIN_LOCKED_BLOCK_MSG)
-                .expect("Failed to subscribe to rawchainlock");
+                .set_subscribe(CHAIN_LOCKED_BLOCK_MSG)
+                .expect("Failed to subscribe to rawchainlocksig");

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	"rawchainlocksig" => {
	"rawchainlock" => {

🤖 Prompt for AI Agents

In src/components/core_zmq_listener.rs around lines 105 and 140, the ZMQ
subscription constant and the match arm topic are inconsistent: the code
subscribes to CHAIN_LOCKED_BLOCK_MSG ("rawchainlock") but the match arm checks
"rawchainlocksig". Fix by making both sides use the same topic: either change
the match arm at line 140 to "rawchainlock" to process messages for the existing
CHAIN_LOCKED_BLOCK_MSG subscription, or if the intended topic is
"rawchainlocksig", update the CHAIN_LOCKED_BLOCK_MSG constant to
"rawchainlocksig" and change the subscription call to use the new constant so
the subscribed topic and match arm align.

[pauldelucia]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 4

♻️ Duplicate comments (1)

src/components/core_p2p_handler.rs (1)

50-57: Kudos for adding connect timeout and loop timeouts.

These address prior review notes about indefinite waits.

Also applies to: 85-99, 145-159, 327-341

🧹 Nitpick comments (5)

src/components/core_p2p_handler.rs (5)

19-24: Encapsulate internals: make stream and handshake_success private.

Exposing TcpStream and handshake_success breaks invariants (callers could read/write or flip the flag). Keep API surface small.

 pub struct CoreP2PHandler {
     pub network: Network,
     pub port: u16,
-    pub stream: TcpStream,
-    pub handshake_success: bool,
+    stream: TcpStream,
+    handshake_success: bool,
 }

If external visibility is required, expose read-only accessors.

---

235-236: Remove fixed sleep; rely on I/O timeouts instead.

The 50 ms delay adds latency and is brittle.

-        thread::sleep(Duration::from_millis(50));

---

370-372: Docstring mismatch.

The comment says GetMnListDiff but the method is get_qr_info.

-    /// Sends a `GetMnListDiff` request after completing the handshake.
+    /// Sends a `GetQRInfo` request after completing the handshake.

---

201-222: Use rng.gen(), not raw identifier r#gen().

r#gen is unnecessary and non-idiomatic here.

-            nonce: rng.r#gen(),
+            nonce: rng.gen(),
             user_agent: "/dash-evo-tool:0.9/".to_string(),
             start_height: 0,
             relay: false,
-            mn_auth_challenge: rng.r#gen(),
+            mn_auth_challenge: rng.gen(),

---

66-124: Deduplicate request/response plumbing.

send_dml_request_message and send_qr_info_request_message are nearly identical. Consider a single helper parametric over expected command and response variant to reduce drift.

If helpful, I can draft a generic helper that takes (NetworkMessage, expected_cmd: &str) and a closure to extract the variant from RawNetworkMessage.

Also applies to: 126-194

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between eeae955 and 515aa61.

📒 Files selected for processing (1)

• src/components/core_p2p_handler.rs (1 hunks)

[pauldelucia]

When fetching rotated MN list diffs I get "Required rotated chain lock sig at h - 3 not present for masternode diff block hash"