fixup: Refactor LSPS5 cryptographic operations to use Lightning's message_signing

martinsaposnic · martinsaposnic · commit b920cc7e3077 · 2025-03-21T13:08:33.000-03:00
- Replace custom cryptographic implementation with Lightning's built-in message_signing module
- Make signature verification a static method that doesn't require instance state
- Simplify webhook notification parsing and validation
- Remove unnecessary imports related to cryptographic operations
diff --git a/lightning-liquidity/src/lsps5/client.rs b/lightning-liquidity/src/lsps5/client.rs
@@ -18,10 +18,9 @@ use crate::lsps5::msgs::{
 use crate::message_queue::MessageQueue;
 use crate::prelude::*;
 
-use bitcoin::hashes::{sha256, Hash};
-use bitcoin::hex::{DisplayHex, FromHex};
-use bitcoin::secp256k1::{PublicKey, Secp256k1};
+use bitcoin::secp256k1::PublicKey;
 use lightning::ln::msgs::{ErrorAction, LightningError};
+use lightning::util::message_signing;
 
 use crate::sync::{Arc, Mutex, RwLock};
 use core::ops::Deref;
@@ -501,7 +500,7 @@ where
 	/// * On success: `true` if the signature is valid
 	/// * On error: LightningError with error description
 	pub fn verify_notification_signature(
-		&self, counterparty_node_id: PublicKey, timestamp: &str, signature: &str,
+		counterparty_node_id: PublicKey, timestamp: &str, signature: &str,
 		notification: &WebhookNotification,
 	) -> Result<bool, LightningError> {
 		// Check timestamp format
@@ -540,91 +539,19 @@ where
 			},
 		};
 
+		// Create the message in the same format as used in sign_notification
 		let message = format!(
 			"LSPS5: DO NOT SIGN THIS MESSAGE MANUALLY: LSP: At {} I notify {}",
 			timestamp, notification_json
 		);
 
-		// Remove the "lspsig:" prefix if present
-		let signature_data =
-			if signature.starts_with("lspsig:") { &signature[7..] } else { signature };
-
-		// Decode the hex signature
-		let signature_bytes: Vec<u8> = match FromHex::from_hex(signature_data) {
-			Ok(bytes) => bytes,
-			Err(e) => {
-				return Err(LightningError {
-					err: format!("Failed to decode signature from hex: {}", e),
-					action: ErrorAction::IgnoreAndLog(Level::Error),
-				});
-			},
-		};
-
-		if signature_bytes.len() != 65 {
-			return Err(LightningError {
-				err: format!("Invalid signature length: {}, expected 65", signature_bytes.len()),
-				action: ErrorAction::IgnoreAndLog(Level::Error),
-			});
-		}
-
-		// Extract recovery ID and signature data
-		let recovery_id =
-			match bitcoin::secp256k1::ecdsa::RecoveryId::from_i32(signature_bytes[0] as i32) {
-				Ok(id) => id,
-				Err(e) => {
-					return Err(LightningError {
-						err: format!("Invalid recovery ID: {}", e),
-						action: ErrorAction::IgnoreAndLog(Level::Error),
-					});
-				},
-			};
-
-		// Create recoverable signature
-		let mut sig_data = [0u8; 64];
-		sig_data.copy_from_slice(&signature_bytes[1..65]);
-
-		let recoverable_sig = match bitcoin::secp256k1::ecdsa::RecoverableSignature::from_compact(
-			&sig_data,
-			recovery_id,
-		) {
-			Ok(sig) => sig,
-			Err(e) => {
-				return Err(LightningError {
-					err: format!("Invalid recoverable signature: {}", e),
-					action: ErrorAction::IgnoreAndLog(Level::Error),
-				});
-			},
-		};
-
-		// Hash the message
-		let message_hash = sha256::Hash::hash(message.as_bytes());
-		let message_to_verify =
-			match bitcoin::secp256k1::Message::from_digest_slice(message_hash.as_ref()) {
-				Ok(msg) => msg,
-				Err(e) => {
-					return Err(LightningError {
-						err: format!("Invalid message hash: {}", e),
-						action: ErrorAction::IgnoreAndLog(Level::Error),
-					});
-				},
-			};
-
-		// Verify signature and recover key
-		let secp = Secp256k1::verification_only();
-		match secp.recover_ecdsa(&message_to_verify, &recoverable_sig) {
-			Ok(recovered_key) => {
-				if recovered_key != counterparty_node_id {
-					return Err(LightningError {
-						err: "Recovered key does not match LSP key".to_string(),
-						action: ErrorAction::IgnoreAndLog(Level::Error),
-					});
-				}
-				Ok(true)
-			},
-			Err(e) => Err(LightningError {
-				err: format!("Failed to recover key: {}", e),
+		if message_signing::verify(message.as_bytes(), signature, &counterparty_node_id) {
+			Ok(true)
+		} else {
+			Err(LightningError {
+				err: "Invalid signature".to_string(),
 				action: ErrorAction::IgnoreAndLog(Level::Error),
-			}),
+			})
 		}
 	}
 
@@ -643,8 +570,7 @@ where
 	/// * On success: The parsed webhook notification
 	/// * On error: LightningError with error description
 	pub fn parse_webhook_notification(
-		&self, counterparty_node_id: PublicKey, timestamp: &str, signature: &str,
-		notification_json: &str,
+		counterparty_node_id: PublicKey, timestamp: &str, signature: &str, notification_json: &str,
 	) -> Result<WebhookNotification, LightningError> {
 		// Parse the notification JSON
 		let notification: WebhookNotification = match serde_json::from_str(notification_json) {
@@ -657,7 +583,7 @@ where
 			},
 		};
 		// Verify signature
-		match self.verify_notification_signature(
+		match Self::verify_notification_signature(
 			counterparty_node_id,
 			timestamp,
 			signature,
@@ -689,7 +615,7 @@ mod tests {
 	use crate::{
 		lsps0::ser::LSPSRequestId, lsps5::msgs::SetWebhookResponse, tests::utils::TestEntropy,
 	};
-	use bitcoin::secp256k1::SecretKey;
+	use bitcoin::{key::Secp256k1, secp256k1::SecretKey};
 
 	fn setup_test_client() -> (
 		LSPS5ClientHandler<Arc<TestEntropy>>,
diff --git a/lightning-liquidity/src/lsps5/service.rs b/lightning-liquidity/src/lsps5/service.rs
@@ -24,6 +24,7 @@ use crate::prelude::*;
 use bitcoin::secp256k1::{PublicKey, SecretKey};
 use lightning::ln::msgs::{ErrorAction, LightningError};
 use lightning::util::logger::Level;
+use lightning::util::message_signing;
 
 use crate::sync::{Arc, Mutex};
 use serde_json::json;
@@ -604,7 +605,7 @@ impl LSPS5ServiceHandler {
 
 		// Sign the notification using our utility function
 		let signature_hex =
-			sign_notification(&notification_json, &timestamp, &self.config.signing_key)?;
+			Self::sign_notification(&notification_json, &timestamp, &self.config.signing_key)?;
 
 		// Store the signature to prevent replay attacks
 		// According to spec: "MUST remember the signature for at least 20 minutes"
@@ -636,6 +637,37 @@ impl LSPS5ServiceHandler {
 		Ok(())
 	}
 
+	/// Sign a webhook notification with an LSP's signing key
+	///
+	/// This function takes a notification body and timestamp and returns a signature
+	/// in the format required by the LSPS5 specification.
+	///
+	/// # Arguments
+	///
+	/// * `body` - The serialized notification JSON
+	/// * `timestamp` - The ISO8601 timestamp string
+	/// * `signing_key` - The LSP private key used for signing
+	///
+	/// # Returns
+	///
+	/// * The zbase32 encoded signature as specified in LSPS0, or an error if signing fails
+	pub fn sign_notification(
+		body: &str, timestamp: &str, signing_key: &SecretKey,
+	) -> Result<String, LightningError> {
+		// Create the message to sign
+		// According to spec:
+		// The message to be signed is: "LSPS5: DO NOT SIGN THIS MESSAGE MANUALLY: LSP: At {} I notify {}",
+		let message = format!(
+			"LSPS5: DO NOT SIGN THIS MESSAGE MANUALLY: LSP: At {} I notify {}",
+			timestamp, body
+		);
+
+		// Use the canonical message signing implementation from lightning::util::message_signing
+		let signature = message_signing::sign(message.as_bytes(), signing_key);
+
+		Ok(signature)
+	}
+
 	/// Store a signature with timestamp for replay attack prevention
 	fn store_signature(&self, signature: String) {
 		let mut recent_signatures = self.recent_signatures.lock().unwrap();
