From 78cbe7a141d3e38a02c97ed84e1b5b6b6a7bb523 Mon Sep 17 00:00:00 2001
From: Olaoluwa Osuntokun <laolu32@gmail.com>
Date: Tue, 6 Mar 2018 11:55:10 -0500
Subject: [PATCH] lnd: verify proper keychain derivation version upon initial
 creation

---
 lnd.go | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/lnd.go b/lnd.go
index 0c269f65..9842b77d 100644
--- a/lnd.go
+++ b/lnd.go
@@ -842,6 +842,17 @@ func waitForWalletPassword(grpcEndpoints, restEndpoints []string,
 		password := initMsg.Passphrase
 		cipherSeed := initMsg.WalletSeed
 
+		// Before we proceed, we'll check the internal version of the
+		// seed. If it's greater than the current key derivation
+		// version, then we'll return an error as we don't understand
+		// this.
+		if cipherSeed.InternalVersion != keychain.KeyDerivationVersion {
+			return nil, nil, fmt.Errorf("invalid internal seed "+
+				"version %v, current version is %v",
+				cipherSeed.InternalVersion,
+				keychain.KeyDerivationVersion)
+		}
+
 		netDir := btcwallet.NetworkDir(
 			chainConfig.ChainDir, activeNetParams.Params,
 		)
@@ -850,9 +861,7 @@ func waitForWalletPassword(grpcEndpoints, restEndpoints []string,
 		// With the seed, we can now use the wallet loader to create
 		// the wallet, then unload it so it can be opened shortly
 		// after.
-		//
 		// TODO(roasbeef): extend loader to also accept birthday
-		//  * also check with keychain version
 		_, err = loader.CreateNewWallet(
 			password, password, cipherSeed.Entropy[:],
 		)