mirror of
https://github.com/aljazceru/ark.git
synced 2025-12-17 04:04:21 +01:00
7f937e8418
* Rename asp > server * Rename pool > round * Consolidate naming for pubkey/prvkey vars and types * Fix * Fix * Fix wasm * Rename congestionTree > vtxoTree * Fix wasm * Rename payment > request * Rename congestionTree > vtxoTree after syncing with master * Fix Send API in SDK * Fix wasm * Fix wasm * Fixes * Fixes after review * Fix * Fix naming * Fix * Fix e2e tests
81 lines
1.9 KiB
Go
81 lines
1.9 KiB
Go
package application
|
|
|
|
import (
|
|
"crypto/sha256"
|
|
"encoding/binary"
|
|
"encoding/hex"
|
|
"fmt"
|
|
|
|
"github.com/ark-network/ark/common/bitcointree"
|
|
"github.com/ark-network/ark/common/tree"
|
|
"github.com/ark-network/ark/server/internal/core/domain"
|
|
"github.com/btcsuite/btcd/btcec/v2/schnorr"
|
|
"github.com/btcsuite/btcd/chaincfg/chainhash"
|
|
"github.com/btcsuite/btcd/txscript"
|
|
"github.com/decred/dcrd/dcrec/secp256k1/v4"
|
|
)
|
|
|
|
// OwnershipProof is a proof that the owner of a vtxo has the secret key able to sign the forfeit leaf.
|
|
type OwnershipProof struct {
|
|
ControlBlock *txscript.ControlBlock
|
|
Script []byte
|
|
Signature *schnorr.Signature
|
|
}
|
|
|
|
func (p OwnershipProof) validate(vtxo domain.Vtxo) error {
|
|
// verify revealed script and extract user public key
|
|
pubkeys, err := decodeForfeitClosure(p.Script)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// verify control block
|
|
rootHash := p.ControlBlock.RootHash(p.Script)
|
|
vtxoTapKey := txscript.ComputeTaprootOutputKey(bitcointree.UnspendableKey(), rootHash)
|
|
|
|
if hex.EncodeToString(schnorr.SerializePubKey(vtxoTapKey)) != vtxo.PubKey {
|
|
return fmt.Errorf("invalid control block")
|
|
}
|
|
|
|
// verify signature
|
|
txhash, err := chainhash.NewHashFromStr(vtxo.Txid)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
voutBytes := make([]byte, 4)
|
|
binary.BigEndian.PutUint32(voutBytes, vtxo.VOut)
|
|
|
|
outpointBytes := append(txhash[:], voutBytes...)
|
|
sigMsg := sha256.Sum256(outpointBytes)
|
|
|
|
valid := false
|
|
for _, pubkey := range pubkeys {
|
|
if p.Signature.Verify(sigMsg[:], pubkey) {
|
|
valid = true
|
|
break
|
|
}
|
|
}
|
|
|
|
if !valid {
|
|
return fmt.Errorf("invalid signature")
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func decodeForfeitClosure(script []byte) ([]*secp256k1.PublicKey, error) {
|
|
var forfeit tree.MultisigClosure
|
|
|
|
valid, err := forfeit.Decode(script)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if !valid {
|
|
return nil, fmt.Errorf("invalid forfeit closure script")
|
|
}
|
|
|
|
return forfeit.PubKeys, nil
|
|
}
|