Move invoice signing behind KeysInterface

valentinewallace · valentinewallace · commit 488b7dbb4f3e · 2021-04-29T16:34:00.000-04:00
diff --git a/fuzz/src/chanmon_consistency.rs b/fuzz/src/chanmon_consistency.rs
@@ -56,6 +56,7 @@ use utils::test_logger;
 use utils::test_persister::TestPersister;
 
 use bitcoin::secp256k1::key::{PublicKey,SecretKey};
+use bitcoin::secp256k1::recovery::RecoverableSignature;
 use bitcoin::secp256k1::Secp256k1;
 
 use std::mem;
@@ -206,6 +207,10 @@ impl KeysInterface for KeyProvider {
 			disable_revocation_policy_check: false,
 		})
 	}
+
+	fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> {
+		unreachable!()
+	}
 }
 
 impl KeyProvider {
diff --git a/fuzz/src/full_stack.rs b/fuzz/src/full_stack.rs
@@ -48,6 +48,7 @@ use utils::test_logger;
 use utils::test_persister::TestPersister;
 
 use bitcoin::secp256k1::key::{PublicKey,SecretKey};
+use bitcoin::secp256k1::recovery::RecoverableSignature;
 use bitcoin::secp256k1::Secp256k1;
 
 use std::cell::RefCell;
@@ -313,6 +314,10 @@ impl KeysInterface for KeyProvider {
 	fn read_chan_signer(&self, data: &[u8]) -> Result<EnforcingSigner, DecodeError> {
 		EnforcingSigner::read(&mut std::io::Cursor::new(data))
 	}
+
+	fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> {
+		unreachable!()
+	}
 }
 
 #[inline]
diff --git a/lightning/src/chain/keysinterface.rs b/lightning/src/chain/keysinterface.rs
@@ -25,7 +25,8 @@ use bitcoin::hashes::sha256d::Hash as Sha256dHash;
 use bitcoin::hash_types::WPubkeyHash;
 
 use bitcoin::secp256k1::key::{SecretKey, PublicKey};
-use bitcoin::secp256k1::{Secp256k1, Signature, Signing};
+use bitcoin::secp256k1::{Message, Secp256k1, Signature, Signing};
+use bitcoin::secp256k1::recovery::RecoverableSignature;
 use bitcoin::secp256k1;
 
 use util::{byte_utils, transaction_utils};
@@ -391,6 +392,12 @@ pub trait KeysInterface: Send + Sync {
 	/// contain no versioning scheme. You may wish to include your own version prefix and ensure
 	/// you've read all of the provided bytes to ensure no corruption occurred.
 	fn read_chan_signer(&self, reader: &[u8]) -> Result<Self::Signer, DecodeError>;
+
+	/// Sign an invoice's preimage (note that this is the preimage of the invoice, not the HTLC's
+	/// preimage). By parameterizing by the preimage instead of the hash, we allow implementors of
+	/// this trait to parse the invoice and make sure they're signing what they expect, rather than
+	/// blindly signing the hash.
+	fn sign_invoice(&self, invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()>;
 }
 
 #[derive(Clone)]
@@ -1047,6 +1054,15 @@ impl KeysInterface for KeysManager {
 	fn read_chan_signer(&self, reader: &[u8]) -> Result<Self::Signer, DecodeError> {
 		InMemorySigner::read(&mut std::io::Cursor::new(reader))
 	}
+
+	fn sign_invoice(&self, invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> {
+		let secp_ctx = Secp256k1::new();
+		let mut raw_hash: [u8; 32] = Default::default();
+		raw_hash.copy_from_slice(&Sha256::hash(&invoice_preimage)[..]);
+		let msg_hash = Message::from_slice(&raw_hash[..])
+			.expect("Hash is 32 bytes long, same as MESSAGE_SIZE");
+		Ok(secp_ctx.sign_recoverable(&msg_hash, &self.get_node_secret()))
+	}
 }
 
 // Ensure that BaseSign can have a vtable
diff --git a/lightning/src/ln/channel.rs b/lightning/src/ln/channel.rs
@@ -4843,6 +4843,7 @@ mod tests {
 	use bitcoin::secp256k1::{Secp256k1, Message, Signature, All};
 	use bitcoin::secp256k1::ffi::Signature as FFISignature;
 	use bitcoin::secp256k1::key::{SecretKey,PublicKey};
+	use bitcoin::secp256k1::recovery::RecoverableSignature;
 	use bitcoin::hashes::sha256::Hash as Sha256;
 	use bitcoin::hashes::Hash;
 	use bitcoin::hash_types::{Txid, WPubkeyHash};
@@ -4888,6 +4889,7 @@ mod tests {
 		}
 		fn get_secure_random_bytes(&self) -> [u8; 32] { [0; 32] }
 		fn read_chan_signer(&self, _data: &[u8]) -> Result<Self::Signer, DecodeError> { panic!(); }
+		fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> { panic!(); }
 	}
 
 	fn public_from_secret_hex(secp_ctx: &Secp256k1<All>, hex: &str) -> PublicKey {
diff --git a/lightning/src/util/test_utils.rs b/lightning/src/util/test_utils.rs
@@ -32,6 +32,7 @@ use bitcoin::network::constants::Network;
 use bitcoin::hash_types::{BlockHash, Txid};
 
 use bitcoin::secp256k1::{SecretKey, PublicKey, Secp256k1, Signature};
+use bitcoin::secp256k1::recovery::RecoverableSignature;
 
 use regex;
 
@@ -75,6 +76,7 @@ impl keysinterface::KeysInterface for OnlyReadsKeysInterface {
 	fn read_chan_signer(&self, reader: &[u8]) -> Result<Self::Signer, msgs::DecodeError> {
 		EnforcingSigner::read(&mut std::io::Cursor::new(reader))
 	}
+	fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> { unreachable!(); }
 }
 
 pub struct TestChainMonitor<'a> {
@@ -483,6 +485,10 @@ impl keysinterface::KeysInterface for TestKeysInterface {
 			disable_revocation_policy_check: self.disable_revocation_policy_check,
 		})
 	}
+
+	fn sign_invoice(&self, invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> {
+		self.backing.sign_invoice(invoice_preimage)
+	}
 }
 
 

Original file line number	Diff line number	Diff line change
`@@ -4843,6 +4843,7 @@ mod tests {`
`4843`	`4843`	`use bitcoin::secp256k1::{Secp256k1, Message, Signature, All};`
`4844`	`4844`	`use bitcoin::secp256k1::ffi::Signature as FFISignature;`
`4845`	`4845`	`use bitcoin::secp256k1::key::{SecretKey,PublicKey};`
	`4846`	`+ use bitcoin::secp256k1::recovery::RecoverableSignature;`
`4846`	`4847`	`use bitcoin::hashes::sha256::Hash as Sha256;`
`4847`	`4848`	`use bitcoin::hashes::Hash;`
`4848`	`4849`	`use bitcoin::hash_types::{Txid, WPubkeyHash};`
`@@ -4888,6 +4889,7 @@ mod tests {`
`4888`	`4889`	`}`
`4889`	`4890`	`fn get_secure_random_bytes(&self) -> [u8; 32] { [0; 32] }`
`4890`	`4891`	`fn read_chan_signer(&self, _data: &[u8]) -> Result<Self::Signer, DecodeError> { panic!(); }`
	`4892`	`+ fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> { panic!(); }`
`4891`	`4893`	`}`
`4892`	`4894`
`4893`	`4895`	`fn public_from_secret_hex(secp_ctx: &Secp256k1<All>, hex: &str) -> PublicKey {`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@ use bitcoin::network::constants::Network;`
`32`	`32`	`use bitcoin::hash_types::{BlockHash, Txid};`
`33`	`33`
`34`	`34`	`use bitcoin::secp256k1::{SecretKey, PublicKey, Secp256k1, Signature};`
	`35`	`+use bitcoin::secp256k1::recovery::RecoverableSignature;`
`35`	`36`
`36`	`37`	`use regex;`
`37`	`38`
`@@ -75,6 +76,7 @@ impl keysinterface::KeysInterface for OnlyReadsKeysInterface {`
`75`	`76`	`fn read_chan_signer(&self, reader: &[u8]) -> Result<Self::Signer, msgs::DecodeError> {`
`76`	`77`	`EnforcingSigner::read(&mut std::io::Cursor::new(reader))`
`77`	`78`	`}`
	`79`	`+ fn sign_invoice(&self, _invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> { unreachable!(); }`
`78`	`80`	`}`
`79`	`81`
`80`	`82`	`pub struct TestChainMonitor<'a> {`
`@@ -483,6 +485,10 @@ impl keysinterface::KeysInterface for TestKeysInterface {`
`483`	`485`	`disable_revocation_policy_check: self.disable_revocation_policy_check,`
`484`	`486`	`})`
`485`	`487`	`}`
	`488`	`+`
	`489`	`+ fn sign_invoice(&self, invoice_preimage: Vec<u8>) -> Result<RecoverableSignature, ()> {`
	`490`	`+ self.backing.sign_invoice(invoice_preimage)`
	`491`	`+ }`
`486`	`492`	`}`
`487`	`493`
`488`	`494`