Skip to content

Commit

Permalink
Merge pull request #7231 from ziggie1984/sign_verify_message_with_addr
Browse files Browse the repository at this point in the history
Sign/Verify messages and signatures for single addresses
  • Loading branch information
guggero authored Jan 24, 2023
2 parents 97f139b + bf368a3 commit 9187d46
Show file tree
Hide file tree
Showing 15 changed files with 2,090 additions and 652 deletions.
196 changes: 196 additions & 0 deletions cmd/lncli/walletrpc_active.go
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,8 @@ var (
Usage: "Interact with wallet addresses.",
Subcommands: []cli.Command{
listAddressesCommand,
signMessageWithAddrCommand,
verifyMessageWithAddrCommand,
},
}
)
Expand Down Expand Up @@ -1193,6 +1195,200 @@ func listAddresses(ctx *cli.Context) error {
return nil
}

var signMessageWithAddrCommand = cli.Command{
Name: "signmessage",
Usage: "Sign a message with the private key of the provided " +
"address.",
ArgsUsage: "address msg",
Description: `
Sign a message with the private key of the specified address, and
return the signature. Signing is solely done in the ECDSA compact
signature format. This is also done when signing with a P2TR address
meaning that the private key of the P2TR address (internal key) is used
to sign the provided message with the ECDSA format. Only addresses are
accepted which are owned by the internal lnd wallet.
`,
Flags: []cli.Flag{
cli.StringFlag{
Name: "address",
Usage: "specify the address which private key " +
"will be used to sign the message",
},
cli.StringFlag{
Name: "msg",
Usage: "the message to sign for",
},
},
Action: actionDecorator(signMessageWithAddr),
}

func signMessageWithAddr(ctx *cli.Context) error {
ctxc := getContext()

// Display the command's help message if we do not have the expected
// number of arguments/flags.
if ctx.NArg() > 2 || ctx.NumFlags() > 2 {
return cli.ShowCommandHelp(ctx, "signmessagewithaddr")
}

walletClient, cleanUp := getWalletClient(ctx)
defer cleanUp()

var (
args = ctx.Args()
addr string
msg []byte
)

switch {
case ctx.IsSet("address"):
addr = ctx.String("address")

case ctx.Args().Present():
addr = args.First()
args = args.Tail()

default:
return fmt.Errorf("address argument missing")
}

switch {
case ctx.IsSet("msg"):
msg = []byte(ctx.String("msg"))

case ctx.Args().Present():
msg = []byte(args.First())
args = args.Tail()

default:
return fmt.Errorf("msg argument missing")
}

resp, err := walletClient.SignMessageWithAddr(
ctxc,
&walletrpc.SignMessageWithAddrRequest{
Msg: msg,
Addr: addr,
},
)
if err != nil {
return err
}

printRespJSON(resp)

return nil
}

var verifyMessageWithAddrCommand = cli.Command{
Name: "verifymessage",
Usage: "Verify a message signed with the private key of the " +
"provided address.",
ArgsUsage: "address sig msg",
Description: `
Verify a message signed with the signature of the public key
of the provided address. The signature must be in compact ECDSA format
The verification is independent whether the address belongs to the
wallet or not. This is achieved by only accepting ECDSA compacted
signatures. When verifying a signature with a taproot address, the
signature still has to be in the ECDSA compact format and no tapscript
has to be included in the P2TR address.
Supports address types P2PKH, P2WKH, NP2WKH, P2TR.
Besides whether the signature is valid or not, the recoverd public key
of the compact ECDSA signature is returned.
`,
Flags: []cli.Flag{
cli.StringFlag{
Name: "address",
Usage: "specify the address which corresponding" +
"public key will be used",
},
cli.StringFlag{
Name: "sig",
Usage: "the base64 encoded compact signature " +
"of the message",
},
cli.StringFlag{
Name: "msg",
Usage: "the message to sign",
},
},
Action: actionDecorator(verifyMessageWithAddr),
}

func verifyMessageWithAddr(ctx *cli.Context) error {
ctxc := getContext()

// Display the command's help message if we do not have the expected
// number of arguments/flags.
if ctx.NArg() > 3 || ctx.NumFlags() > 3 {
return cli.ShowCommandHelp(ctx, "signmessagewithaddr")
}

walletClient, cleanUp := getWalletClient(ctx)
defer cleanUp()

var (
args = ctx.Args()
addr string
sig string
msg []byte
)

switch {
case ctx.IsSet("address"):
addr = ctx.String("address")

case args.Present():
addr = args.First()
args = args.Tail()

default:
return fmt.Errorf("address argument missing")
}

switch {
case ctx.IsSet("sig"):
sig = ctx.String("sig")

case ctx.Args().Present():
sig = args.First()
args = args.Tail()

default:
return fmt.Errorf("sig argument missing")
}

switch {
case ctx.IsSet("msg"):
msg = []byte(ctx.String("msg"))

case ctx.Args().Present():
msg = []byte(args.First())
args = args.Tail()

default:
return fmt.Errorf("msg argument missing")
}

resp, err := walletClient.VerifyMessageWithAddr(
ctxc,
&walletrpc.VerifyMessageWithAddrRequest{
Msg: msg,
Signature: sig,
Addr: addr,
},
)
if err != nil {
return err
}

printRespJSON(resp)

return nil
}

var importAccountCommand = cli.Command{
Name: "import",
Usage: "Import an on-chain account into the wallet through its " +
Expand Down
6 changes: 6 additions & 0 deletions docs/release-notes/release-notes-0.16.0.md
Original file line number Diff line number Diff line change
Expand Up @@ -97,6 +97,9 @@ current gossip sync query status.
the `dev` tag, and configured to [opt into overriding a specific message
type](https://github.com/lightningnetwork/lnd/pull/7153)

* [Sign/Verify messages and signatures for single
addresses](https://github.com/lightningnetwork/lnd/pull/7231).

## Wallet

* [Allows Taproot public keys and tap scripts to be imported as watch-only
Expand Down Expand Up @@ -285,6 +288,9 @@ in the lnwire package](https://github.com/lightningnetwork/lnd/pull/7303)
link is falling behind, which is now fixed by [retrying the enable
request](https://github.com/lightningnetwork/lnd/pull/7157).

* [Sign/Verify messages and signatures for single
addresses](https://github.com/lightningnetwork/lnd/pull/7231).

## Code Health

* [test: use `T.TempDir` to create temporary test
Expand Down
Loading

0 comments on commit 9187d46

Please sign in to comment.