Expose more granular data in TaggedHash struct #2687
Conversation
Codecov ReportAttention:
❗ Your organization needs to install the Codecov GitHub app to enable full functionality. Additional details and impacted files@@ Coverage Diff @@
## main #2687 +/- ##
==========================================
+ Coverage 88.75% 88.76% +0.01%
==========================================
Files 112 113 +1
Lines 88504 89153 +649
Branches 88504 89153 +649
==========================================
+ Hits 78548 79133 +585
- Misses 7717 7769 +52
- Partials 2239 2251 +12
☔ View full report in Codecov by Sentry. |
orbitalturtle
force-pushed
the
signature-data-enum
branch
from
847fe08 to
6488ba1
Compare
|
@jkczyz Thanks for taking a look! Indeed what you suggested simplified things quite a bit :) One note that I kept the precomputed digest field because it looks like the digest is needed in either case anyway -- when verifying the signature after the sig is taken |
orbitalturtle
changed the title
|
I mean, sure, but, like, why does the LND API Want to see the tag? Isn't this a BOLT12-specific construction anyway? |
|
@TheBlueMatt So inititally we were were hoping to just pass the taggedhash into LND's signmessage API... But the API call requires that signmessage also hashes whatever is passed in -- apparently to restrict the input to disallow signing transactions etc. But with this LND PR we'll be able to pass in the tag and take a tagged hash instead of the default sha256. lightningnetwork/lnd#8106 |
|
Why not just let the RPC sign arbitrary message digests? Given its BIP 340 tagging, can this not be used to sign a transaction anyway? |
|
@TheBlueMatt Oh yeah so the above LND PR limits it so BIP 340 tags can't be used. @guggero would be able to answer better than me on the question of allowing signing arbitrary message digests :) |
orbitalturtle
force-pushed
the
signature-data-enum
branch
3 times, most recently
from
74b35eb to
2108e95
Compare
orbitalturtle
force-pushed
the
signature-data-enum
branch
from
2108e95 to
2e78328
Compare
We change the Bolt12Invoice struct to carry a tagged hash. Because message_digest is then only used in one place, we can inline it in the TaggedHash constructor.
Expose tag and merkle root fields in the TaggedHash struct.
orbitalturtle
force-pushed
the
signature-data-enum
branch
from
2e78328 to
caafced
Compare
|
Made those changes, thanks for all the guidance @jkczyz ! |
| let merkle_root = root_hash(tlv_stream); | ||
| let digest = Message::from_slice(&tagged_hash(tag_hash, merkle_root)).unwrap(); | ||
| Self { | ||
| tag: tag.to_owned(), |
There was a problem hiding this comment.
Bleh. This allocation feels incredibly unnecessary given there's only two possible values here and they're both constants. We could instead trivially make tag an &'static str and avoid it entirely. Probably a reasonable followup.
This PR exposes the tag + merkle root data in the TaggedHash struct so that they can be used directly the
signclosures in UnsignedInvoiceRequest (etc), if/when needed.Have talked to @jkczyz a bit about this. For context, the motivation for this is that for LNDK's, we'd like to be able to be able to pull out the tag and merkle root hash directly so that we can pass these into the LND api for signing invoice requests etc. :)