lnd.xprv/nodesigner.go

package main

import (
	"fmt"

	"github.com/lightningnetwork/lnd/lnwallet"
	"github.com/roasbeef/btcd/btcec"
	"github.com/roasbeef/btcd/chaincfg/chainhash"
)

// nodeSigner is an implementation of the MessageSigner interface backed by the
// identity private key of running lnd node.
type nodeSigner struct {
	privKey *btcec.PrivateKey
}

// newNodeSigner creates a new instance of the nodeSigner backed by the target
// private key.
func newNodeSigner(key *btcec.PrivateKey) *nodeSigner {
	priv := &btcec.PrivateKey{}
	priv.Curve = btcec.S256()
	priv.PublicKey.X = key.X
	priv.PublicKey.Y = key.Y
	priv.D = key.D
	return &nodeSigner{
		privKey: priv,
	}
}

// SignMessage signs a double-sha256 digest of the passed msg under the
// resident node's private key. If the target public key is _not_ the node's
// private key, then an error will be returned.
func (n *nodeSigner) SignMessage(pubKey *btcec.PublicKey,
	msg []byte) (*btcec.Signature, error) {

	// If this isn't our identity public key, then we'll exit early with an
	// error as we can't sign with this key.
	if !pubKey.IsEqual(n.privKey.PubKey()) {
		return nil, fmt.Errorf("unknown public key")
	}

	// Otherwise, we'll sign the dsha256 of the target message.
	digest := chainhash.DoubleHashB(msg)
	sign, err := n.privKey.Sign(digest)
	if err != nil {
		return nil, fmt.Errorf("can't sign the message: %v", err)
	}

	return sign, nil
}

// SignCompact signs a double-sha256 digest of the msg parameter under the
// resident node's private key. The returned signature is a pubkey-recoverable
// signature.
func (n *nodeSigner) SignCompact(msg []byte) ([]byte, error) {
	// We'll sign the dsha256 of the target message.
	digest := chainhash.DoubleHashB(msg)

	return n.SignDigestCompact(digest)
}

// SignDigestCompact signs the provided message digest under the resident
// node's private key. The returned signature is a pubkey-recoverable signature.
func (n *nodeSigner) SignDigestCompact(hash []byte) ([]byte, error) {

	// Should the signature reference a compressed public key or not.
	isCompressedKey := true

	// btcec.SignCompact returns a pubkey-recoverable signature
	sig, err := btcec.SignCompact(
		btcec.S256(), n.privKey, hash, isCompressedKey,
	)
	if err != nil {
		return nil, fmt.Errorf("can't sign the hash: %v", err)
	}

	return sig, nil
}

// A compile time check to ensure that nodeSigner implements the MessageSigner
// interface.
var _ lnwallet.MessageSigner = (*nodeSigner)(nil)
lnd: add a daemon-level implementation of the MessageSigner interface 2017-04-14 21:08:56 +03:00			`package main`

			`import (`
			`"fmt"`

			`"github.com/lightningnetwork/lnd/lnwallet"`
			`"github.com/roasbeef/btcd/btcec"`
			`"github.com/roasbeef/btcd/chaincfg/chainhash"`
			`)`

			`// nodeSigner is an implementation of the MessageSigner interface backed by the`
			`// identity private key of running lnd node.`
			`type nodeSigner struct {`
			`privKey *btcec.PrivateKey`
			`}`

			`// newNodeSigner creates a new instance of the nodeSigner backed by the target`
			`// private key.`
			`func newNodeSigner(key btcec.PrivateKey) nodeSigner {`
nodesigner: make fully copy of key to avoid mutation 2017-08-05 04:27:13 +03:00			`priv := &btcec.PrivateKey{}`
			`priv.Curve = btcec.S256()`
			`priv.PublicKey.X = key.X`
			`priv.PublicKey.Y = key.Y`
			`priv.D = key.D`
lnd: add a daemon-level implementation of the MessageSigner interface 2017-04-14 21:08:56 +03:00			`return &nodeSigner{`
nodesigner: make fully copy of key to avoid mutation 2017-08-05 04:27:13 +03:00			`privKey: priv,`
lnd: add a daemon-level implementation of the MessageSigner interface 2017-04-14 21:08:56 +03:00			`}`
			`}`

			`// SignMessage signs a double-sha256 digest of the passed msg under the`
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`// resident node's private key. If the target public key is _not_ the node's`
lnd: add a daemon-level implementation of the MessageSigner interface 2017-04-14 21:08:56 +03:00			`// private key, then an error will be returned.`
			`func (n nodeSigner) SignMessage(pubKey btcec.PublicKey,`
			`msg []byte) (*btcec.Signature, error) {`

			`// If this isn't our identity public key, then we'll exit early with an`
			`// error as we can't sign with this key.`
			`if !pubKey.IsEqual(n.privKey.PubKey()) {`
			`return nil, fmt.Errorf("unknown public key")`
			`}`

			`// Otherwise, we'll sign the dsha256 of the target message.`
			`digest := chainhash.DoubleHashB(msg)`
			`sign, err := n.privKey.Sign(digest)`
			`if err != nil {`
			`return nil, fmt.Errorf("can't sign the message: %v", err)`
			`}`

			`return sign, nil`
			`}`

rpc: add signature to VerifyMessage response 2017-04-29 14:44:29 +03:00			`// SignCompact signs a double-sha256 digest of the msg parameter under the`
			`// resident node's private key. The returned signature is a pubkey-recoverable`
			`// signature.`
			`func (n *nodeSigner) SignCompact(msg []byte) ([]byte, error) {`
nodeSigner: add method for signing already hashed data 2017-09-05 18:56:36 +03:00			`// We'll sign the dsha256 of the target message.`
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`digest := chainhash.DoubleHashB(msg)`
rpc: add signature to VerifyMessage response 2017-04-29 14:44:29 +03:00
nodeSigner: add method for signing already hashed data 2017-09-05 18:56:36 +03:00			`return n.SignDigestCompact(digest)`
			`}`

			`// SignDigestCompact signs the provided message digest under the resident`
			`// node's private key. The returned signature is a pubkey-recoverable signature.`
			`func (n *nodeSigner) SignDigestCompact(hash []byte) ([]byte, error) {`

rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`// Should the signature reference a compressed public key or not.`
nodesigner: compact sigs should reference compact pubkeys 2017-05-07 15:02:51 +03:00			`isCompressedKey := true`
rpc: add signature to VerifyMessage response 2017-04-29 14:44:29 +03:00
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`// btcec.SignCompact returns a pubkey-recoverable signature`
rpc: modify SignMessage+VerifyMessage to bind msg to LN context In this commit, we modify the SignMessage+VerifyMessage slightly in order to bind the message we're signing to our specific context. We do this by pre-pending the ascii text "Lightning Signed Message:" to the msg before we run it through dsha256. Adding this prefix binds the message to our context in order to avoid accidentally signing a sighash or the like. 2018-04-26 05:45:26 +03:00			`sig, err := btcec.SignCompact(`
			`btcec.S256(), n.privKey, hash, isCompressedKey,`
			`)`
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`if err != nil {`
nodeSigner: add method for signing already hashed data 2017-09-05 18:56:36 +03:00			`return nil, fmt.Errorf("can't sign the hash: %v", err)`
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`}`

rpc: add signature to VerifyMessage response 2017-04-29 14:44:29 +03:00			`return sig, nil`
rpc: add SignMessage and VerifyMessage interface This commit allows users to sign messages with their node's private key with the SignMessage interface. The signatures are zbase32 encoded for human readability/paste-ability. Others users can verify that a message was signed by another node in their channel database with the VerifyMessage interface. 2017-04-20 05:28:10 +03:00			`}`

lnd: add a daemon-level implementation of the MessageSigner interface 2017-04-14 21:08:56 +03:00			`// A compile time check to ensure that nodeSigner implements the MessageSigner`
			`// interface.`
			`var _ lnwallet.MessageSigner = (*nodeSigner)(nil)`