mirror of
https://github.com/aljazceru/ark.git
synced 2025-12-17 04:04:21 +01:00
ff96524f22
* ark credits * rename "ecash" --> "ark credit" * rework note_test.go * NewFromString * create several notes * note repo: rename "push" to "add" * RegisterInputsForNextRoundRequest: move "notes" to field #3 * use uint64 as note ID * rename to voucher * add nostr notification * nostr notification test and fixes * bump badger to 4.3 * allow npub to be registered * rename poolTxID * add default relays * Update server/internal/config/config.go Co-authored-by: Marco Argentieri <3596602+tiero@users.noreply.github.com> * fix RedeemVouchers test * notification = voucher * WASM wrappers * fix arkd voucher cmd * test_utils.go ignore gosec rule G101 * fix permissions * rename ALL to notes * add URI prefix * note.go : fix signature encoding * fix decode note.Data * Update server/internal/infrastructure/notifier/nostr/nostr.go Co-authored-by: Pietralberto Mazza <18440657+altafan@users.noreply.github.com> * Update pkg/client-sdk/wasm/browser/wrappers.go Co-authored-by: Pietralberto Mazza <18440657+altafan@users.noreply.github.com> * Update server/internal/infrastructure/notifier/nostr/nostr.go Co-authored-by: Pietralberto Mazza <18440657+altafan@users.noreply.github.com> * rework note and entity db + sqlite implementations * NOTIFICATION_PREFIX -> NOTE_URI_PREFIX * validate NOTE_URI_PREFIX * Update defaults to convenant-less mainnet (#2) * config: defaults to convenant-less tx builder * Drop env var for blockchain scanner --------- Co-authored-by: altafan <18440657+altafan@users.noreply.github.com> * add // before URI prefix * add URI prefix in admin CreateNote * Fixes * rework nonces encoding (#4) * rework nonces encoding * add a check in Musig2Nonce decode function * musig2_test: increase number of signers to 20 * musig2.json: add a test case with a 35 leaves tree * GetEventStream REST rework * fix round phases time intervals * [SDK] Use server-side streams in rest client * Fix history * make the URI optional * Updates * Fix settled txs in history * fix e2e test * go work sync in sdk unit test * fix signMessage in btc and liquid sdk wallets --------- Co-authored-by: Marco Argentieri <3596602+tiero@users.noreply.github.com> Co-authored-by: Pietralberto Mazza <18440657+altafan@users.noreply.github.com>
1693 lines
47 KiB
Go
1693 lines
47 KiB
Go
package application
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"encoding/hex"
|
|
"fmt"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/ark-network/ark/common"
|
|
"github.com/ark-network/ark/common/bitcointree"
|
|
"github.com/ark-network/ark/common/descriptor"
|
|
"github.com/ark-network/ark/common/note"
|
|
"github.com/ark-network/ark/common/tree"
|
|
"github.com/ark-network/ark/server/internal/core/domain"
|
|
"github.com/ark-network/ark/server/internal/core/ports"
|
|
"github.com/btcsuite/btcd/btcec/v2/schnorr"
|
|
"github.com/btcsuite/btcd/btcutil"
|
|
"github.com/btcsuite/btcd/btcutil/psbt"
|
|
"github.com/btcsuite/btcd/chaincfg"
|
|
"github.com/btcsuite/btcd/chaincfg/chainhash"
|
|
"github.com/btcsuite/btcd/txscript"
|
|
"github.com/btcsuite/btcd/wire"
|
|
"github.com/decred/dcrd/dcrec/secp256k1/v4"
|
|
log "github.com/sirupsen/logrus"
|
|
)
|
|
|
|
type covenantlessService struct {
|
|
network common.Network
|
|
pubkey *secp256k1.PublicKey
|
|
roundLifetime int64
|
|
roundInterval int64
|
|
unilateralExitDelay int64
|
|
boardingExitDelay int64
|
|
|
|
nostrDefaultRelays []string
|
|
|
|
wallet ports.WalletService
|
|
repoManager ports.RepoManager
|
|
builder ports.TxBuilder
|
|
scanner ports.BlockchainScanner
|
|
sweeper *sweeper
|
|
|
|
paymentRequests *paymentsMap
|
|
forfeitTxs *forfeitTxsMap
|
|
|
|
eventsCh chan domain.RoundEvent
|
|
transactionEventsCh chan TransactionEvent
|
|
|
|
// cached data for the current round
|
|
lastEvent domain.RoundEvent
|
|
currentRoundLock sync.Mutex
|
|
currentRound *domain.Round
|
|
treeSigningSessions map[string]*musigSigningSession
|
|
asyncPaymentsCache map[string]asyncPaymentData
|
|
}
|
|
|
|
func NewCovenantlessService(
|
|
network common.Network,
|
|
roundInterval, roundLifetime, unilateralExitDelay, boardingExitDelay int64,
|
|
defaultNostrRelays []string,
|
|
walletSvc ports.WalletService, repoManager ports.RepoManager,
|
|
builder ports.TxBuilder, scanner ports.BlockchainScanner,
|
|
scheduler ports.SchedulerService,
|
|
notificationPrefix string,
|
|
) (Service, error) {
|
|
pubkey, err := walletSvc.GetPubkey(context.Background())
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to fetch pubkey: %s", err)
|
|
}
|
|
|
|
svc := &covenantlessService{
|
|
network: network,
|
|
pubkey: pubkey,
|
|
roundLifetime: roundLifetime,
|
|
roundInterval: roundInterval,
|
|
unilateralExitDelay: unilateralExitDelay,
|
|
wallet: walletSvc,
|
|
repoManager: repoManager,
|
|
builder: builder,
|
|
scanner: scanner,
|
|
sweeper: newSweeper(walletSvc, repoManager, builder, scheduler, notificationPrefix),
|
|
paymentRequests: newPaymentsMap(),
|
|
forfeitTxs: newForfeitTxsMap(builder),
|
|
eventsCh: make(chan domain.RoundEvent),
|
|
transactionEventsCh: make(chan TransactionEvent),
|
|
currentRoundLock: sync.Mutex{},
|
|
asyncPaymentsCache: make(map[string]asyncPaymentData),
|
|
treeSigningSessions: make(map[string]*musigSigningSession),
|
|
boardingExitDelay: boardingExitDelay,
|
|
nostrDefaultRelays: defaultNostrRelays,
|
|
}
|
|
|
|
repoManager.RegisterEventsHandler(
|
|
func(round *domain.Round) {
|
|
go svc.propagateEvents(round)
|
|
go func() {
|
|
// utxo db must be updated before scheduling the sweep events
|
|
svc.updateVtxoSet(round)
|
|
svc.scheduleSweepVtxosForRound(round)
|
|
}()
|
|
},
|
|
)
|
|
|
|
if err := svc.restoreWatchingVtxos(); err != nil {
|
|
return nil, fmt.Errorf("failed to restore watching vtxos: %s", err)
|
|
}
|
|
go svc.listenToScannerNotifications()
|
|
return svc, nil
|
|
}
|
|
|
|
func (s *covenantlessService) Start() error {
|
|
log.Debug("starting sweeper service")
|
|
if err := s.sweeper.start(); err != nil {
|
|
return err
|
|
}
|
|
|
|
log.Debug("starting app service")
|
|
go s.start()
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) Stop() {
|
|
s.sweeper.stop()
|
|
// nolint
|
|
vtxos, _ := s.repoManager.Vtxos().GetAllSweepableVtxos(context.Background())
|
|
if len(vtxos) > 0 {
|
|
s.stopWatchingVtxos(vtxos)
|
|
}
|
|
|
|
s.wallet.Close()
|
|
log.Debug("closed connection to wallet")
|
|
s.repoManager.Close()
|
|
log.Debug("closed connection to db")
|
|
close(s.eventsCh)
|
|
}
|
|
|
|
func (s *covenantlessService) CompleteAsyncPayment(
|
|
ctx context.Context, redeemTx string,
|
|
) error {
|
|
redeemPtx, err := psbt.NewFromRawBytes(strings.NewReader(redeemTx), true)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse redeem tx: %s", err)
|
|
}
|
|
redeemTxid := redeemPtx.UnsignedTx.TxID()
|
|
|
|
asyncPayData, ok := s.asyncPaymentsCache[redeemTxid]
|
|
if !ok {
|
|
return fmt.Errorf("async payment not found")
|
|
}
|
|
|
|
vtxoRepo := s.repoManager.Vtxos()
|
|
|
|
for _, tx := range []string{redeemTx} {
|
|
ptx, err := psbt.NewFromRawBytes(strings.NewReader(tx), true)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse tx: %s", err)
|
|
}
|
|
|
|
for inputIndex, input := range ptx.Inputs {
|
|
if input.WitnessUtxo == nil {
|
|
return fmt.Errorf("missing witness utxo")
|
|
}
|
|
|
|
if len(input.TaprootLeafScript) == 0 {
|
|
return fmt.Errorf("missing tapscript leaf")
|
|
}
|
|
|
|
if len(input.TaprootScriptSpendSig) == 0 {
|
|
return fmt.Errorf("missing tapscript spend sig")
|
|
}
|
|
|
|
vtxoOutpoint := ptx.UnsignedTx.TxIn[inputIndex].PreviousOutPoint
|
|
|
|
// verify that the vtxo is spendable
|
|
|
|
vtxos, err := vtxoRepo.GetVtxos(ctx, []domain.VtxoKey{{Txid: vtxoOutpoint.Hash.String(), VOut: vtxoOutpoint.Index}})
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get vtxo: %s", err)
|
|
}
|
|
|
|
if len(vtxos) == 0 {
|
|
return fmt.Errorf("vtxo not found")
|
|
}
|
|
|
|
vtxo := vtxos[0]
|
|
if vtxo.Spent {
|
|
return fmt.Errorf("vtxo already spent")
|
|
}
|
|
|
|
if vtxo.Redeemed {
|
|
return fmt.Errorf("vtxo already redeemed")
|
|
}
|
|
|
|
if vtxo.Swept {
|
|
return fmt.Errorf("vtxo already swept")
|
|
}
|
|
|
|
// verify that the user signs a forfeit closure
|
|
var userPubKey *secp256k1.PublicKey
|
|
|
|
aspXOnlyPubKey := schnorr.SerializePubKey(s.pubkey)
|
|
|
|
for _, sig := range input.TaprootScriptSpendSig {
|
|
if !bytes.Equal(sig.XOnlyPubKey, aspXOnlyPubKey) {
|
|
parsed, err := schnorr.ParsePubKey(sig.XOnlyPubKey)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse pubkey: %s", err)
|
|
}
|
|
userPubKey = parsed
|
|
break
|
|
}
|
|
}
|
|
|
|
if userPubKey == nil {
|
|
return fmt.Errorf("redeem transaction is not signed")
|
|
}
|
|
|
|
vtxoPublicKeyBytes, err := hex.DecodeString(vtxo.Pubkey)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to decode vtxo pubkey: %s", err)
|
|
}
|
|
|
|
vtxoTapKey, err := schnorr.ParsePubKey(vtxoPublicKeyBytes)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse vtxo pubkey: %s", err)
|
|
}
|
|
|
|
// verify witness utxo
|
|
pkscript, err := common.P2TRScript(vtxoTapKey)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get pkscript: %s", err)
|
|
}
|
|
|
|
if !bytes.Equal(input.WitnessUtxo.PkScript, pkscript) {
|
|
return fmt.Errorf("witness utxo script mismatch")
|
|
}
|
|
|
|
if input.WitnessUtxo.Value != int64(vtxo.Amount) {
|
|
return fmt.Errorf("witness utxo value mismatch")
|
|
}
|
|
}
|
|
|
|
// verify the tapscript signatures
|
|
if valid, _, err := s.builder.VerifyTapscriptPartialSigs(tx); err != nil || !valid {
|
|
return fmt.Errorf("invalid tx signature: %s", err)
|
|
}
|
|
}
|
|
|
|
spentVtxos := make([]domain.VtxoKey, 0)
|
|
for _, in := range redeemPtx.UnsignedTx.TxIn {
|
|
spentVtxos = append(spentVtxos, domain.VtxoKey{
|
|
Txid: in.PreviousOutPoint.Hash.String(),
|
|
VOut: in.PreviousOutPoint.Index,
|
|
})
|
|
}
|
|
|
|
vtxos := make([]domain.Vtxo, 0, len(asyncPayData.receivers))
|
|
|
|
for outIndex, out := range redeemPtx.UnsignedTx.TxOut {
|
|
vtxoTapKey, err := schnorr.ParsePubKey(out.PkScript[2:])
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse vtxo taproot key: %s", err)
|
|
}
|
|
|
|
vtxoPubkey := hex.EncodeToString(schnorr.SerializePubKey(vtxoTapKey))
|
|
|
|
vtxos = append(vtxos, domain.Vtxo{
|
|
VtxoKey: domain.VtxoKey{
|
|
Txid: redeemTxid,
|
|
VOut: uint32(outIndex),
|
|
},
|
|
Pubkey: vtxoPubkey,
|
|
Amount: uint64(out.Value),
|
|
ExpireAt: asyncPayData.expireAt,
|
|
RoundTxid: asyncPayData.roundTxid,
|
|
RedeemTx: redeemTx,
|
|
CreatedAt: time.Now().Unix(),
|
|
})
|
|
}
|
|
|
|
if err := s.repoManager.Vtxos().AddVtxos(ctx, vtxos); err != nil {
|
|
return fmt.Errorf("failed to add vtxos: %s", err)
|
|
}
|
|
log.Infof("added %d vtxos", len(vtxos))
|
|
if err := s.startWatchingVtxos(vtxos); err != nil {
|
|
log.WithError(err).Warn(
|
|
"failed to start watching vtxos",
|
|
)
|
|
}
|
|
log.Debugf("started watching %d vtxos", len(vtxos))
|
|
|
|
if err := s.repoManager.Vtxos().SpendVtxos(ctx, spentVtxos, redeemTxid); err != nil {
|
|
return fmt.Errorf("failed to spend vtxo: %s", err)
|
|
}
|
|
log.Infof("spent %d vtxos", len(spentVtxos))
|
|
|
|
delete(s.asyncPaymentsCache, redeemTxid)
|
|
|
|
go func() {
|
|
s.transactionEventsCh <- RedeemTransactionEvent{
|
|
AsyncTxID: redeemTxid,
|
|
SpentVtxos: spentVtxos,
|
|
SpendableVtxos: vtxos,
|
|
}
|
|
}()
|
|
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) CreateAsyncPayment(
|
|
ctx context.Context, inputs []AsyncPaymentInput, receivers []domain.Receiver,
|
|
) (string, error) {
|
|
vtxosKeys := make([]domain.VtxoKey, 0, len(inputs))
|
|
descriptors := make(map[domain.VtxoKey]string)
|
|
forfeitLeaves := make(map[domain.VtxoKey]chainhash.Hash)
|
|
|
|
for _, in := range inputs {
|
|
vtxosKeys = append(vtxosKeys, in.VtxoKey)
|
|
descriptors[in.VtxoKey] = in.Descriptor
|
|
forfeitLeaves[in.VtxoKey] = in.ForfeitLeafHash
|
|
}
|
|
|
|
vtxos, err := s.repoManager.Vtxos().GetVtxos(ctx, vtxosKeys)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
if len(vtxos) <= 0 {
|
|
return "", fmt.Errorf("vtxos not found")
|
|
}
|
|
|
|
vtxosInputs := make([]domain.Vtxo, 0, len(inputs))
|
|
|
|
expiration := vtxos[0].ExpireAt
|
|
roundTxid := vtxos[0].RoundTxid
|
|
|
|
for _, vtxo := range vtxos {
|
|
if vtxo.Spent {
|
|
return "", fmt.Errorf("all vtxos must be unspent")
|
|
}
|
|
|
|
if vtxo.Redeemed {
|
|
return "", fmt.Errorf("all vtxos must be redeemed")
|
|
}
|
|
|
|
if vtxo.Swept {
|
|
return "", fmt.Errorf("all vtxos must be swept")
|
|
}
|
|
|
|
if vtxo.ExpireAt < expiration {
|
|
roundTxid = vtxo.RoundTxid
|
|
expiration = vtxo.ExpireAt
|
|
}
|
|
|
|
vtxosInputs = append(vtxosInputs, vtxo)
|
|
}
|
|
|
|
redeemTx, err := s.builder.BuildAsyncPaymentTransactions(
|
|
vtxosInputs, descriptors, forfeitLeaves, receivers,
|
|
)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to build async payment txs: %s", err)
|
|
}
|
|
|
|
redeemPtx, err := psbt.NewFromRawBytes(strings.NewReader(redeemTx), true)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to parse redeem tx: %s", err)
|
|
}
|
|
|
|
s.asyncPaymentsCache[redeemPtx.UnsignedTx.TxID()] = asyncPaymentData{
|
|
receivers: receivers,
|
|
expireAt: expiration,
|
|
roundTxid: roundTxid,
|
|
}
|
|
|
|
return redeemTx, nil
|
|
}
|
|
|
|
func (s *covenantlessService) GetBoardingAddress(
|
|
ctx context.Context, userPubkey *secp256k1.PublicKey,
|
|
) (address string, descriptor string, err error) {
|
|
vtxoScript := &bitcointree.DefaultVtxoScript{
|
|
Asp: s.pubkey,
|
|
Owner: userPubkey,
|
|
ExitDelay: uint(s.boardingExitDelay),
|
|
}
|
|
|
|
tapKey, _, err := vtxoScript.TapTree()
|
|
if err != nil {
|
|
return "", "", fmt.Errorf("failed to get taproot key: %s", err)
|
|
}
|
|
|
|
addr, err := btcutil.NewAddressTaproot(
|
|
schnorr.SerializePubKey(tapKey), s.chainParams(),
|
|
)
|
|
if err != nil {
|
|
return "", "", fmt.Errorf("failed to get address: %s", err)
|
|
}
|
|
|
|
return addr.EncodeAddress(), vtxoScript.ToDescriptor(), nil
|
|
}
|
|
|
|
func (s *covenantlessService) SpendNotes(ctx context.Context, notes []note.Note) (string, error) {
|
|
notesRepo := s.repoManager.Notes()
|
|
|
|
for _, note := range notes {
|
|
// verify the note signature
|
|
hash := note.Hash()
|
|
|
|
valid, err := s.wallet.VerifyMessageSignature(ctx, hash, note.Signature)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to verify note signature: %s", err)
|
|
}
|
|
|
|
if !valid {
|
|
return "", fmt.Errorf("invalid note signature %s", note)
|
|
}
|
|
|
|
// verify that the note is spendable
|
|
spent, err := notesRepo.Contains(ctx, note.ID)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to check if note is spent: %s", err)
|
|
}
|
|
|
|
if spent {
|
|
return "", fmt.Errorf("note already spent: %s", note)
|
|
}
|
|
}
|
|
|
|
payment, err := domain.NewPayment(make([]domain.Vtxo, 0))
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to create payment: %s", err)
|
|
}
|
|
|
|
if err := s.paymentRequests.pushWithNotes(*payment, notes); err != nil {
|
|
return "", fmt.Errorf("failed to push payment: %s", err)
|
|
}
|
|
|
|
return payment.Id, nil
|
|
}
|
|
|
|
func (s *covenantlessService) SpendVtxos(ctx context.Context, inputs []ports.Input) (string, error) {
|
|
vtxosInputs := make([]domain.Vtxo, 0)
|
|
boardingInputs := make([]ports.BoardingInput, 0)
|
|
|
|
now := time.Now().Unix()
|
|
|
|
boardingTxs := make(map[string]wire.MsgTx, 0) // txid -> txhex
|
|
descriptors := make(map[domain.VtxoKey]string)
|
|
for _, input := range inputs {
|
|
vtxosResult, err := s.repoManager.Vtxos().GetVtxos(ctx, []domain.VtxoKey{input.VtxoKey})
|
|
if err != nil || len(vtxosResult) == 0 {
|
|
// vtxo not found in db, check if it exists on-chain
|
|
if _, ok := boardingTxs[input.Txid]; !ok {
|
|
// check if the tx exists and is confirmed
|
|
txhex, err := s.wallet.GetTransaction(ctx, input.Txid)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to get tx %s: %s", input.Txid, err)
|
|
}
|
|
|
|
var tx wire.MsgTx
|
|
if err := tx.Deserialize(hex.NewDecoder(strings.NewReader(txhex))); err != nil {
|
|
return "", fmt.Errorf("failed to deserialize tx %s: %s", input.Txid, err)
|
|
}
|
|
|
|
confirmed, _, blocktime, err := s.wallet.IsTransactionConfirmed(ctx, input.Txid)
|
|
if err != nil {
|
|
return "", fmt.Errorf("failed to check tx %s: %s", input.Txid, err)
|
|
}
|
|
|
|
if !confirmed {
|
|
return "", fmt.Errorf("tx %s not confirmed", input.Txid)
|
|
}
|
|
|
|
// if the exit path is available, forbid registering the boarding utxo
|
|
if blocktime+int64(s.boardingExitDelay) < now {
|
|
return "", fmt.Errorf("tx %s expired", input.Txid)
|
|
}
|
|
|
|
boardingTxs[input.Txid] = tx
|
|
}
|
|
|
|
tx := boardingTxs[input.Txid]
|
|
boardingInput, err := s.newBoardingInput(tx, input)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
boardingInputs = append(boardingInputs, *boardingInput)
|
|
continue
|
|
}
|
|
|
|
vtxo := vtxosResult[0]
|
|
if vtxo.Spent {
|
|
return "", fmt.Errorf("input %s:%d already spent", vtxo.Txid, vtxo.VOut)
|
|
}
|
|
|
|
if vtxo.Redeemed {
|
|
return "", fmt.Errorf("input %s:%d already redeemed", vtxo.Txid, vtxo.VOut)
|
|
}
|
|
|
|
if vtxo.Swept {
|
|
return "", fmt.Errorf("input %s:%d already swept", vtxo.Txid, vtxo.VOut)
|
|
}
|
|
|
|
descriptors[vtxo.VtxoKey] = input.Descriptor
|
|
|
|
vtxosInputs = append(vtxosInputs, vtxo)
|
|
}
|
|
|
|
payment, err := domain.NewPayment(vtxosInputs)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
if err := s.paymentRequests.push(*payment, boardingInputs, descriptors); err != nil {
|
|
return "", err
|
|
}
|
|
return payment.Id, nil
|
|
}
|
|
|
|
func (s *covenantlessService) newBoardingInput(tx wire.MsgTx, input ports.Input) (*ports.BoardingInput, error) {
|
|
if len(tx.TxOut) <= int(input.VtxoKey.VOut) {
|
|
return nil, fmt.Errorf("output not found")
|
|
}
|
|
|
|
output := tx.TxOut[input.VtxoKey.VOut]
|
|
|
|
boardingScript, err := bitcointree.ParseVtxoScript(input.Descriptor)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to parse boarding descriptor: %s", err)
|
|
}
|
|
|
|
tapKey, _, err := boardingScript.TapTree()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get taproot key: %s", err)
|
|
}
|
|
|
|
expectedScriptPubKey, err := common.P2TRScript(tapKey)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get script pubkey: %s", err)
|
|
}
|
|
|
|
if !bytes.Equal(output.PkScript, expectedScriptPubKey) {
|
|
return nil, fmt.Errorf("descriptor does not match script in transaction output")
|
|
}
|
|
|
|
if defaultVtxoScript, ok := boardingScript.(*bitcointree.DefaultVtxoScript); ok {
|
|
if !bytes.Equal(schnorr.SerializePubKey(defaultVtxoScript.Asp), schnorr.SerializePubKey(s.pubkey)) {
|
|
return nil, fmt.Errorf("invalid boarding descriptor, ASP mismatch")
|
|
}
|
|
|
|
if defaultVtxoScript.ExitDelay != uint(s.boardingExitDelay) {
|
|
return nil, fmt.Errorf("invalid boarding descriptor, timeout mismatch")
|
|
}
|
|
} else {
|
|
return nil, fmt.Errorf("only default vtxo script is supported for boarding")
|
|
}
|
|
|
|
return &ports.BoardingInput{
|
|
Amount: uint64(output.Value),
|
|
Input: input,
|
|
}, nil
|
|
}
|
|
|
|
func (s *covenantlessService) ClaimVtxos(ctx context.Context, creds string, receivers []domain.Receiver) error {
|
|
// Check credentials
|
|
payment, ok := s.paymentRequests.view(creds)
|
|
if !ok {
|
|
return fmt.Errorf("invalid credentials")
|
|
}
|
|
|
|
dustAmount, err := s.wallet.GetDustAmount(ctx)
|
|
if err != nil {
|
|
return fmt.Errorf("unable to verify receiver amount, failed to get dust: %s", err)
|
|
}
|
|
|
|
for _, rcv := range receivers {
|
|
if rcv.Amount <= dustAmount {
|
|
return fmt.Errorf("receiver amount must be greater than dust amount %d", dustAmount)
|
|
}
|
|
}
|
|
|
|
if err := payment.AddReceivers(receivers); err != nil {
|
|
return err
|
|
}
|
|
return s.paymentRequests.update(*payment)
|
|
}
|
|
|
|
func (s *covenantlessService) UpdatePaymentStatus(_ context.Context, id string) error {
|
|
return s.paymentRequests.updatePingTimestamp(id)
|
|
}
|
|
|
|
func (s *covenantlessService) SignVtxos(ctx context.Context, forfeitTxs []string) error {
|
|
return s.forfeitTxs.sign(forfeitTxs)
|
|
}
|
|
|
|
func (s *covenantlessService) SignRoundTx(ctx context.Context, signedRoundTx string) error {
|
|
s.currentRoundLock.Lock()
|
|
defer s.currentRoundLock.Unlock()
|
|
|
|
combined, err := s.builder.VerifyAndCombinePartialTx(s.currentRound.UnsignedTx, signedRoundTx)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to verify and combine partial tx: %s", err)
|
|
}
|
|
|
|
s.currentRound.UnsignedTx = combined
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) ListVtxos(ctx context.Context, address string) ([]domain.Vtxo, []domain.Vtxo, error) {
|
|
decodedAddress, err := common.DecodeAddress(address)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("failed to decode address: %s", err)
|
|
}
|
|
pubkey := hex.EncodeToString(schnorr.SerializePubKey(decodedAddress.VtxoTapKey))
|
|
|
|
return s.repoManager.Vtxos().GetAllVtxos(ctx, pubkey)
|
|
}
|
|
|
|
func (s *covenantlessService) GetEventsChannel(ctx context.Context) <-chan domain.RoundEvent {
|
|
return s.eventsCh
|
|
}
|
|
|
|
func (s *covenantlessService) GetTransactionEventsChannel(ctx context.Context) <-chan TransactionEvent {
|
|
return s.transactionEventsCh
|
|
}
|
|
|
|
func (s *covenantlessService) GetRoundByTxid(ctx context.Context, roundTxid string) (*domain.Round, error) {
|
|
return s.repoManager.Rounds().GetRoundWithTxid(ctx, roundTxid)
|
|
}
|
|
|
|
func (s *covenantlessService) GetRoundById(ctx context.Context, id string) (*domain.Round, error) {
|
|
return s.repoManager.Rounds().GetRoundWithId(ctx, id)
|
|
}
|
|
|
|
func (s *covenantlessService) GetCurrentRound(ctx context.Context) (*domain.Round, error) {
|
|
return domain.NewRoundFromEvents(s.currentRound.Events()), nil
|
|
}
|
|
|
|
func (s *covenantlessService) GetInfo(ctx context.Context) (*ServiceInfo, error) {
|
|
pubkey := hex.EncodeToString(s.pubkey.SerializeCompressed())
|
|
|
|
dust, err := s.wallet.GetDustAmount(ctx)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get dust amount: %s", err)
|
|
}
|
|
|
|
forfeitAddr, err := s.wallet.GetForfeitAddress(ctx)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get forfeit address: %s", err)
|
|
}
|
|
|
|
return &ServiceInfo{
|
|
PubKey: pubkey,
|
|
RoundLifetime: s.roundLifetime,
|
|
UnilateralExitDelay: s.unilateralExitDelay,
|
|
RoundInterval: s.roundInterval,
|
|
Network: s.network.Name,
|
|
Dust: dust,
|
|
BoardingDescriptorTemplate: fmt.Sprintf(
|
|
descriptor.DefaultVtxoDescriptorTemplate,
|
|
hex.EncodeToString(bitcointree.UnspendableKey().SerializeCompressed()),
|
|
"USER",
|
|
hex.EncodeToString(schnorr.SerializePubKey(s.pubkey)),
|
|
s.boardingExitDelay,
|
|
"USER",
|
|
),
|
|
ForfeitAddress: forfeitAddr,
|
|
}, nil
|
|
}
|
|
|
|
func (s *covenantlessService) RegisterCosignerPubkey(ctx context.Context, paymentId string, pubkey string) error {
|
|
pubkeyBytes, err := hex.DecodeString(pubkey)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to decode hex pubkey: %s", err)
|
|
}
|
|
|
|
ephemeralPublicKey, err := secp256k1.ParsePubKey(pubkeyBytes)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to parse pubkey: %s", err)
|
|
}
|
|
|
|
return s.paymentRequests.pushEphemeralKey(paymentId, ephemeralPublicKey)
|
|
}
|
|
|
|
func (s *covenantlessService) RegisterCosignerNonces(
|
|
ctx context.Context, roundID string, pubkey *secp256k1.PublicKey, encodedNonces string,
|
|
) error {
|
|
session, ok := s.treeSigningSessions[roundID]
|
|
if !ok {
|
|
return fmt.Errorf(`signing session not found for round "%s"`, roundID)
|
|
}
|
|
|
|
nonces, err := bitcointree.DecodeNonces(hex.NewDecoder(strings.NewReader(encodedNonces)))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to decode nonces: %s", err)
|
|
}
|
|
session.lock.Lock()
|
|
defer session.lock.Unlock()
|
|
|
|
if _, ok := session.nonces[pubkey]; ok {
|
|
return nil // skip if we already have nonces for this pubkey
|
|
}
|
|
|
|
session.nonces[pubkey] = nonces
|
|
|
|
if len(session.nonces) == session.nbCosigners-1 { // exclude the ASP
|
|
go func() {
|
|
session.nonceDoneC <- struct{}{}
|
|
}()
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) RegisterCosignerSignatures(
|
|
ctx context.Context, roundID string, pubkey *secp256k1.PublicKey, encodedSignatures string,
|
|
) error {
|
|
session, ok := s.treeSigningSessions[roundID]
|
|
if !ok {
|
|
return fmt.Errorf(`signing session not found for round "%s"`, roundID)
|
|
}
|
|
|
|
signatures, err := bitcointree.DecodeSignatures(hex.NewDecoder(strings.NewReader(encodedSignatures)))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to decode signatures: %s", err)
|
|
}
|
|
|
|
session.lock.Lock()
|
|
defer session.lock.Unlock()
|
|
|
|
if _, ok := session.signatures[pubkey]; ok {
|
|
return nil // skip if we already have signatures for this pubkey
|
|
}
|
|
|
|
session.signatures[pubkey] = signatures
|
|
|
|
if len(session.signatures) == session.nbCosigners-1 { // exclude the ASP
|
|
go func() {
|
|
session.sigDoneC <- struct{}{}
|
|
}()
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) SetNostrRecipient(ctx context.Context, nostrRecipient string, signedVtxoOutpoints []SignedVtxoOutpoint) error {
|
|
nprofileRecipient, err := nip19toNostrProfile(nostrRecipient, s.nostrDefaultRelays)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to convert nostr recipient: %s", err)
|
|
}
|
|
|
|
if err := validateProofs(ctx, s.repoManager.Vtxos(), signedVtxoOutpoints); err != nil {
|
|
return err
|
|
}
|
|
|
|
vtxoKeys := make([]domain.VtxoKey, 0, len(signedVtxoOutpoints))
|
|
for _, signedVtxo := range signedVtxoOutpoints {
|
|
vtxoKeys = append(vtxoKeys, signedVtxo.Outpoint)
|
|
}
|
|
|
|
return s.repoManager.Entities().Add(
|
|
ctx,
|
|
domain.Entity{
|
|
NostrRecipient: nprofileRecipient,
|
|
},
|
|
vtxoKeys,
|
|
)
|
|
}
|
|
|
|
func (s *covenantlessService) DeleteNostrRecipient(ctx context.Context, signedVtxoOutpoints []SignedVtxoOutpoint) error {
|
|
if err := validateProofs(ctx, s.repoManager.Vtxos(), signedVtxoOutpoints); err != nil {
|
|
return err
|
|
}
|
|
|
|
vtxoKeys := make([]domain.VtxoKey, 0, len(signedVtxoOutpoints))
|
|
for _, signedVtxo := range signedVtxoOutpoints {
|
|
vtxoKeys = append(vtxoKeys, signedVtxo.Outpoint)
|
|
}
|
|
|
|
return s.repoManager.Entities().Delete(ctx, vtxoKeys)
|
|
}
|
|
|
|
func (s *covenantlessService) start() {
|
|
s.startRound()
|
|
}
|
|
|
|
func (s *covenantlessService) startRound() {
|
|
dustAmount, err := s.wallet.GetDustAmount(context.Background())
|
|
if err != nil {
|
|
log.WithError(err).Warn("failed to get dust amount")
|
|
return
|
|
}
|
|
|
|
round := domain.NewRound(dustAmount)
|
|
//nolint:all
|
|
round.StartRegistration()
|
|
s.currentRound = round
|
|
|
|
defer func() {
|
|
time.Sleep(time.Duration(s.roundInterval/3) * time.Second)
|
|
s.startFinalization()
|
|
}()
|
|
|
|
log.Debugf("started registration stage for new round: %s", round.Id)
|
|
}
|
|
|
|
func (s *covenantlessService) startFinalization() {
|
|
ctx := context.Background()
|
|
round := s.currentRound
|
|
|
|
roundRemainingDuration := time.Duration((s.roundInterval/3)*2-1) * time.Second
|
|
thirdOfRemainingDuration := time.Duration(roundRemainingDuration / 3)
|
|
|
|
var notes []note.Note
|
|
var roundAborted bool
|
|
defer func() {
|
|
delete(s.treeSigningSessions, round.Id)
|
|
if roundAborted {
|
|
s.startRound()
|
|
return
|
|
}
|
|
|
|
if err := s.saveEvents(ctx, round.Id, round.Events()); err != nil {
|
|
log.WithError(err).Warn("failed to store new round events")
|
|
}
|
|
|
|
if round.IsFailed() {
|
|
s.startRound()
|
|
return
|
|
}
|
|
time.Sleep(thirdOfRemainingDuration)
|
|
s.finalizeRound(notes)
|
|
}()
|
|
|
|
if round.IsFailed() {
|
|
return
|
|
}
|
|
|
|
// TODO: understand how many payments must be popped from the queue and actually registered for the round
|
|
num := s.paymentRequests.len()
|
|
if num == 0 {
|
|
roundAborted = true
|
|
err := fmt.Errorf("no payments registered")
|
|
round.Fail(fmt.Errorf("round aborted: %s", err))
|
|
log.WithError(err).Debugf("round %s aborted", round.Id)
|
|
return
|
|
}
|
|
if num > paymentsThreshold {
|
|
num = paymentsThreshold
|
|
}
|
|
payments, boardingInputs, descriptors, cosigners, paymentsNotes := s.paymentRequests.pop(num)
|
|
if len(payments) > len(cosigners) {
|
|
err := fmt.Errorf("missing ephemeral key for payments")
|
|
round.Fail(fmt.Errorf("round aborted: %s", err))
|
|
log.WithError(err).Debugf("round %s aborted", round.Id)
|
|
return
|
|
}
|
|
|
|
notes = paymentsNotes
|
|
|
|
if _, err := round.RegisterPayments(payments); err != nil {
|
|
round.Fail(fmt.Errorf("failed to register payments: %s", err))
|
|
log.WithError(err).Warn("failed to register payments")
|
|
return
|
|
}
|
|
|
|
sweptRounds, err := s.repoManager.Rounds().GetSweptRounds(ctx)
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to retrieve swept rounds: %s", err))
|
|
log.WithError(err).Warn("failed to retrieve swept rounds")
|
|
return
|
|
}
|
|
|
|
ephemeralKey, err := secp256k1.GeneratePrivateKey()
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to generate ephemeral key: %s", err))
|
|
log.WithError(err).Warn("failed to generate ephemeral key")
|
|
return
|
|
}
|
|
|
|
cosigners = append(cosigners, ephemeralKey.PubKey())
|
|
|
|
unsignedRoundTx, tree, connectorAddress, err := s.builder.BuildRoundTx(s.pubkey, payments, boardingInputs, sweptRounds, cosigners...)
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to create pool tx: %s", err))
|
|
log.WithError(err).Warn("failed to create pool tx")
|
|
return
|
|
}
|
|
log.Debugf("pool tx created for round %s", round.Id)
|
|
|
|
if len(tree) > 0 {
|
|
log.Debugf("signing congestion tree for round %s", round.Id)
|
|
|
|
signingSession := newMusigSigningSession(len(cosigners))
|
|
s.treeSigningSessions[round.Id] = signingSession
|
|
|
|
log.Debugf("signing session created for round %s", round.Id)
|
|
|
|
s.currentRound.UnsignedTx = unsignedRoundTx
|
|
// send back the unsigned tree & all cosigners pubkeys
|
|
s.propagateRoundSigningStartedEvent(tree, cosigners)
|
|
|
|
sweepClosure := bitcointree.CSVSigClosure{
|
|
Pubkey: s.pubkey,
|
|
Seconds: uint(s.roundLifetime),
|
|
}
|
|
|
|
sweepTapLeaf, err := sweepClosure.Leaf()
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
unsignedPsbt, err := psbt.NewFromRawBytes(strings.NewReader(unsignedRoundTx), true)
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to parse round tx: %s", err))
|
|
log.WithError(err).Warn("failed to parse round tx")
|
|
return
|
|
}
|
|
|
|
sharedOutputAmount := unsignedPsbt.UnsignedTx.TxOut[0].Value
|
|
|
|
sweepTapTree := txscript.AssembleTaprootScriptTree(*sweepTapLeaf)
|
|
root := sweepTapTree.RootNode.TapHash()
|
|
|
|
coordinator, err := bitcointree.NewTreeCoordinatorSession(sharedOutputAmount, tree, root.CloneBytes(), cosigners)
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to create tree coordinator: %s", err))
|
|
log.WithError(err).Warn("failed to create tree coordinator")
|
|
return
|
|
}
|
|
|
|
aspSignerSession := bitcointree.NewTreeSignerSession(
|
|
ephemeralKey, sharedOutputAmount, tree, root.CloneBytes(),
|
|
)
|
|
|
|
nonces, err := aspSignerSession.GetNonces()
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to get nonces: %s", err))
|
|
log.WithError(err).Warn("failed to get nonces")
|
|
return
|
|
}
|
|
|
|
if err := coordinator.AddNonce(ephemeralKey.PubKey(), nonces); err != nil {
|
|
round.Fail(fmt.Errorf("failed to add nonce: %s", err))
|
|
log.WithError(err).Warn("failed to add nonce")
|
|
return
|
|
}
|
|
|
|
noncesTimer := time.NewTimer(thirdOfRemainingDuration)
|
|
|
|
select {
|
|
case <-noncesTimer.C:
|
|
round.Fail(fmt.Errorf("musig2 signing session timed out (nonce collection)"))
|
|
log.Warn("musig2 signing session timed out (nonce collection)")
|
|
return
|
|
case <-signingSession.nonceDoneC:
|
|
noncesTimer.Stop()
|
|
for pubkey, nonce := range signingSession.nonces {
|
|
if err := coordinator.AddNonce(pubkey, nonce); err != nil {
|
|
round.Fail(fmt.Errorf("failed to add nonce: %s", err))
|
|
log.WithError(err).Warn("failed to add nonce")
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
log.Debugf("nonces collected for round %s", round.Id)
|
|
|
|
aggragatedNonces, err := coordinator.AggregateNonces()
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to aggregate nonces: %s", err))
|
|
log.WithError(err).Warn("failed to aggregate nonces")
|
|
return
|
|
}
|
|
|
|
log.Debugf("nonces aggregated for round %s", round.Id)
|
|
|
|
s.propagateRoundSigningNoncesGeneratedEvent(aggragatedNonces)
|
|
|
|
if err := aspSignerSession.SetKeys(cosigners); err != nil {
|
|
round.Fail(fmt.Errorf("failed to set keys: %s", err))
|
|
log.WithError(err).Warn("failed to set keys")
|
|
return
|
|
}
|
|
|
|
if err := aspSignerSession.SetAggregatedNonces(aggragatedNonces); err != nil {
|
|
round.Fail(fmt.Errorf("failed to set aggregated nonces: %s", err))
|
|
log.WithError(err).Warn("failed to set aggregated nonces")
|
|
return
|
|
}
|
|
|
|
// sign the tree as ASP
|
|
aspTreeSigs, err := aspSignerSession.Sign()
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to sign tree: %s", err))
|
|
log.WithError(err).Warn("failed to sign tree")
|
|
return
|
|
}
|
|
|
|
if err := coordinator.AddSig(ephemeralKey.PubKey(), aspTreeSigs); err != nil {
|
|
round.Fail(fmt.Errorf("failed to add signature: %s", err))
|
|
log.WithError(err).Warn("failed to add signature")
|
|
return
|
|
}
|
|
|
|
log.Debugf("ASP tree signed for round %s", round.Id)
|
|
|
|
signaturesTimer := time.NewTimer(thirdOfRemainingDuration)
|
|
|
|
log.Debugf("waiting for cosigners to sign the tree")
|
|
|
|
select {
|
|
case <-signaturesTimer.C:
|
|
round.Fail(fmt.Errorf("musig2 signing session timed out (signatures)"))
|
|
log.Warn("musig2 signing session timed out (signatures)")
|
|
return
|
|
case <-signingSession.sigDoneC:
|
|
signaturesTimer.Stop()
|
|
for pubkey, sig := range signingSession.signatures {
|
|
if err := coordinator.AddSig(pubkey, sig); err != nil {
|
|
round.Fail(fmt.Errorf("failed to add signature: %s", err))
|
|
log.WithError(err).Warn("failed to add signature")
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
log.Debugf("signatures collected for round %s", round.Id)
|
|
|
|
signedTree, err := coordinator.SignTree()
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to aggregate tree signatures: %s", err))
|
|
log.WithError(err).Warn("failed to aggregate tree signatures")
|
|
return
|
|
}
|
|
|
|
log.Debugf("congestion tree signed for round %s", round.Id)
|
|
|
|
tree = signedTree
|
|
}
|
|
|
|
needForfeits := false
|
|
for _, pay := range payments {
|
|
if len(pay.Inputs) > 0 {
|
|
needForfeits = true
|
|
break
|
|
}
|
|
}
|
|
|
|
var forfeitTxs, connectors []string
|
|
|
|
minRelayFeeRate := s.wallet.MinRelayFeeRate(ctx)
|
|
|
|
if needForfeits {
|
|
connectors, forfeitTxs, err = s.builder.BuildForfeitTxs(unsignedRoundTx, payments, descriptors, minRelayFeeRate)
|
|
if err != nil {
|
|
round.Fail(fmt.Errorf("failed to create connectors and forfeit txs: %s", err))
|
|
log.WithError(err).Warn("failed to create connectors and forfeit txs")
|
|
return
|
|
}
|
|
log.Debugf("forfeit transactions created for round %s", round.Id)
|
|
|
|
if err := s.forfeitTxs.push(forfeitTxs); err != nil {
|
|
round.Fail(fmt.Errorf("failed to store forfeit txs: %s", err))
|
|
log.WithError(err).Warn("failed to store forfeit txs")
|
|
return
|
|
}
|
|
}
|
|
|
|
if _, err := round.StartFinalization(
|
|
connectorAddress, connectors, tree, unsignedRoundTx,
|
|
); err != nil {
|
|
round.Fail(fmt.Errorf("failed to start finalization: %s", err))
|
|
log.WithError(err).Warn("failed to start finalization")
|
|
return
|
|
}
|
|
|
|
log.Debugf("started finalization stage for round: %s", round.Id)
|
|
}
|
|
|
|
func (s *covenantlessService) propagateRoundSigningStartedEvent(
|
|
unsignedCongestionTree tree.CongestionTree, cosigners []*secp256k1.PublicKey,
|
|
) {
|
|
ev := RoundSigningStarted{
|
|
Id: s.currentRound.Id,
|
|
UnsignedVtxoTree: unsignedCongestionTree,
|
|
Cosigners: cosigners,
|
|
UnsignedRoundTx: s.currentRound.UnsignedTx,
|
|
}
|
|
|
|
s.lastEvent = ev
|
|
s.eventsCh <- ev
|
|
}
|
|
|
|
func (s *covenantlessService) propagateRoundSigningNoncesGeneratedEvent(combinedNonces bitcointree.TreeNonces) {
|
|
ev := RoundSigningNoncesGenerated{
|
|
Id: s.currentRound.Id,
|
|
Nonces: combinedNonces,
|
|
}
|
|
|
|
s.lastEvent = ev
|
|
s.eventsCh <- ev
|
|
}
|
|
|
|
func (s *covenantlessService) finalizeRound(notes []note.Note) {
|
|
defer s.startRound()
|
|
|
|
ctx := context.Background()
|
|
round := s.currentRound
|
|
if round.IsFailed() {
|
|
return
|
|
}
|
|
|
|
var changes []domain.RoundEvent
|
|
defer func() {
|
|
if err := s.saveEvents(ctx, round.Id, changes); err != nil {
|
|
log.WithError(err).Warn("failed to store new round events")
|
|
return
|
|
}
|
|
}()
|
|
|
|
forfeitTxs, leftUnsigned := s.forfeitTxs.pop()
|
|
if len(leftUnsigned) > 0 {
|
|
err := fmt.Errorf("%d forfeit txs left to sign", len(leftUnsigned))
|
|
changes = round.Fail(fmt.Errorf("failed to finalize round: %s", err))
|
|
log.WithError(err).Warn("failed to finalize round")
|
|
return
|
|
}
|
|
|
|
log.Debugf("signing round transaction %s\n", round.Id)
|
|
|
|
boardingInputsIndexes := make([]int, 0)
|
|
boardingInputs := make([]domain.VtxoKey, 0)
|
|
roundTx, err := psbt.NewFromRawBytes(strings.NewReader(round.UnsignedTx), true)
|
|
if err != nil {
|
|
changes = round.Fail(fmt.Errorf("failed to parse round tx: %s", err))
|
|
log.WithError(err).Warn("failed to parse round tx")
|
|
return
|
|
}
|
|
|
|
for i, in := range roundTx.Inputs {
|
|
if len(in.TaprootLeafScript) > 0 {
|
|
if len(in.TaprootScriptSpendSig) == 0 {
|
|
err = fmt.Errorf("missing tapscript spend sig for input %d", i)
|
|
changes = round.Fail(err)
|
|
log.WithError(err).Warn("missing boarding sig")
|
|
return
|
|
}
|
|
|
|
boardingInputsIndexes = append(boardingInputsIndexes, i)
|
|
boardingInputs = append(boardingInputs, domain.VtxoKey{
|
|
Txid: roundTx.UnsignedTx.TxIn[i].PreviousOutPoint.Hash.String(),
|
|
VOut: roundTx.UnsignedTx.TxIn[i].PreviousOutPoint.Index,
|
|
})
|
|
}
|
|
}
|
|
|
|
signedRoundTx := round.UnsignedTx
|
|
|
|
if len(boardingInputsIndexes) > 0 {
|
|
signedRoundTx, err = s.wallet.SignTransactionTapscript(ctx, signedRoundTx, boardingInputsIndexes)
|
|
if err != nil {
|
|
changes = round.Fail(fmt.Errorf("failed to sign round tx: %s", err))
|
|
log.WithError(err).Warn("failed to sign round tx")
|
|
return
|
|
}
|
|
}
|
|
|
|
signedRoundTx, err = s.wallet.SignTransaction(ctx, signedRoundTx, true)
|
|
if err != nil {
|
|
changes = round.Fail(fmt.Errorf("failed to sign round tx: %s", err))
|
|
log.WithError(err).Warn("failed to sign round tx")
|
|
return
|
|
}
|
|
|
|
txid, err := s.wallet.BroadcastTransaction(ctx, signedRoundTx)
|
|
if err != nil {
|
|
changes = round.Fail(fmt.Errorf("failed to broadcast pool tx: %s", err))
|
|
return
|
|
}
|
|
|
|
changes, err = round.EndFinalization(forfeitTxs, txid)
|
|
if err != nil {
|
|
changes = round.Fail(fmt.Errorf("failed to finalize round: %s", err))
|
|
log.WithError(err).Warn("failed to finalize round")
|
|
return
|
|
}
|
|
|
|
// mark the notes as spent
|
|
for _, note := range notes {
|
|
if err := s.repoManager.Notes().Add(ctx, note.ID); err != nil {
|
|
log.WithError(err).Warn("failed to mark note as spent")
|
|
}
|
|
}
|
|
|
|
go func() {
|
|
s.transactionEventsCh <- RoundTransactionEvent{
|
|
RoundTxID: round.Txid,
|
|
SpentVtxos: getSpentVtxos(round.Payments),
|
|
SpendableVtxos: s.getNewVtxos(round),
|
|
ClaimedBoardingInputs: boardingInputs,
|
|
}
|
|
}()
|
|
|
|
log.Debugf("finalized round %s with pool tx %s", round.Id, round.Txid)
|
|
}
|
|
|
|
func (s *covenantlessService) listenToScannerNotifications() {
|
|
ctx := context.Background()
|
|
chVtxos := s.scanner.GetNotificationChannel(ctx)
|
|
|
|
mutx := &sync.Mutex{}
|
|
for vtxoKeys := range chVtxos {
|
|
go func(vtxoKeys map[string][]ports.VtxoWithValue) {
|
|
for _, keys := range vtxoKeys {
|
|
for _, v := range keys {
|
|
vtxos, err := s.repoManager.Vtxos().GetVtxos(ctx, []domain.VtxoKey{v.VtxoKey})
|
|
if err != nil {
|
|
log.WithError(err).Warn("failed to retrieve vtxos, skipping...")
|
|
return
|
|
}
|
|
vtxo := vtxos[0]
|
|
|
|
if !vtxo.Redeemed {
|
|
go func() {
|
|
if err := s.markAsRedeemed(ctx, vtxo); err != nil {
|
|
log.WithError(err).Warnf("failed to mark vtxo %s:%d as redeemed", vtxo.Txid, vtxo.VOut)
|
|
}
|
|
}()
|
|
}
|
|
|
|
if vtxo.Spent {
|
|
log.Infof("fraud detected on vtxo %s:%d", vtxo.Txid, vtxo.VOut)
|
|
go func() {
|
|
if err := s.reactToFraud(ctx, vtxo, mutx); err != nil {
|
|
log.WithError(err).Warnf("failed to prevent fraud for vtxo %s:%d", vtxo.Txid, vtxo.VOut)
|
|
}
|
|
}()
|
|
}
|
|
}
|
|
}
|
|
}(vtxoKeys)
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) getNextConnector(
|
|
ctx context.Context,
|
|
round domain.Round,
|
|
) (string, uint32, error) {
|
|
lastConnectorPtx, err := psbt.NewFromRawBytes(strings.NewReader(round.Connectors[len(round.Connectors)-1]), true)
|
|
if err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
lastOutput := lastConnectorPtx.UnsignedTx.TxOut[len(lastConnectorPtx.UnsignedTx.TxOut)-1]
|
|
connectorAmount := lastOutput.Value
|
|
|
|
utxos, err := s.wallet.ListConnectorUtxos(ctx, round.ConnectorAddress)
|
|
if err != nil {
|
|
return "", 0, err
|
|
}
|
|
log.Debugf("found %d connector utxos, dust amount is %d", len(utxos), connectorAmount)
|
|
|
|
// if we do not find any utxos, we make sure to wait for the connector outpoint to be confirmed then we retry
|
|
if len(utxos) <= 0 {
|
|
if err := s.wallet.WaitForSync(ctx, round.Txid); err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
utxos, err = s.wallet.ListConnectorUtxos(ctx, round.ConnectorAddress)
|
|
if err != nil {
|
|
return "", 0, err
|
|
}
|
|
}
|
|
|
|
// search for an already existing connector
|
|
for _, u := range utxos {
|
|
if u.GetValue() == uint64(connectorAmount) {
|
|
return u.GetTxid(), u.GetIndex(), nil
|
|
}
|
|
}
|
|
|
|
for _, u := range utxos {
|
|
if u.GetValue() > uint64(connectorAmount) {
|
|
for _, b64 := range round.Connectors {
|
|
ptx, err := psbt.NewFromRawBytes(strings.NewReader(b64), true)
|
|
if err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
for _, i := range ptx.UnsignedTx.TxIn {
|
|
if i.PreviousOutPoint.Hash.String() == u.GetTxid() && i.PreviousOutPoint.Index == u.GetIndex() {
|
|
connectorOutpoint := txOutpoint{u.GetTxid(), u.GetIndex()}
|
|
|
|
if err := s.wallet.LockConnectorUtxos(ctx, []ports.TxOutpoint{connectorOutpoint}); err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
// sign & broadcast the connector tx
|
|
signedConnectorTx, err := s.wallet.SignTransaction(ctx, b64, true)
|
|
if err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
connectorTxid, err := s.wallet.BroadcastTransaction(ctx, signedConnectorTx)
|
|
if err != nil {
|
|
return "", 0, fmt.Errorf("failed to broadcast connector tx: %s", err)
|
|
}
|
|
log.Debugf("broadcasted connector tx %s", connectorTxid)
|
|
|
|
// wait for the connector tx to be in the mempool
|
|
if err := s.wallet.WaitForSync(ctx, connectorTxid); err != nil {
|
|
return "", 0, err
|
|
}
|
|
|
|
return connectorTxid, 0, nil
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
return "", 0, fmt.Errorf("no connector utxos found")
|
|
}
|
|
|
|
func (s *covenantlessService) updateVtxoSet(round *domain.Round) {
|
|
// Update the vtxo set only after a round is finalized.
|
|
if !round.IsEnded() {
|
|
return
|
|
}
|
|
|
|
ctx := context.Background()
|
|
repo := s.repoManager.Vtxos()
|
|
spentVtxos := getSpentVtxos(round.Payments)
|
|
if len(spentVtxos) > 0 {
|
|
for {
|
|
if err := repo.SpendVtxos(ctx, spentVtxos, round.Txid); err != nil {
|
|
log.WithError(err).Warn("failed to add new vtxos, retrying soon")
|
|
time.Sleep(100 * time.Millisecond)
|
|
continue
|
|
}
|
|
log.Debugf("spent %d vtxos", len(spentVtxos))
|
|
break
|
|
}
|
|
}
|
|
|
|
newVtxos := s.getNewVtxos(round)
|
|
if len(newVtxos) > 0 {
|
|
for {
|
|
if err := repo.AddVtxos(ctx, newVtxos); err != nil {
|
|
log.WithError(err).Warn("failed to add new vtxos, retrying soon")
|
|
time.Sleep(100 * time.Millisecond)
|
|
continue
|
|
}
|
|
log.Debugf("added %d new vtxos", len(newVtxos))
|
|
break
|
|
}
|
|
|
|
go func() {
|
|
for {
|
|
if err := s.startWatchingVtxos(newVtxos); err != nil {
|
|
log.WithError(err).Warn(
|
|
"failed to start watching vtxos, retrying in a moment...",
|
|
)
|
|
continue
|
|
}
|
|
log.Debugf("started watching %d vtxos", len(newVtxos))
|
|
return
|
|
}
|
|
}()
|
|
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) propagateEvents(round *domain.Round) {
|
|
lastEvent := round.Events()[len(round.Events())-1]
|
|
switch e := lastEvent.(type) {
|
|
case domain.RoundFinalizationStarted:
|
|
ev := domain.RoundFinalizationStarted{
|
|
Id: e.Id,
|
|
CongestionTree: e.CongestionTree,
|
|
Connectors: e.Connectors,
|
|
RoundTx: e.RoundTx,
|
|
MinRelayFeeRate: int64(s.wallet.MinRelayFeeRate(context.Background())),
|
|
}
|
|
s.lastEvent = ev
|
|
s.eventsCh <- ev
|
|
case domain.RoundFinalized, domain.RoundFailed:
|
|
s.lastEvent = e
|
|
s.eventsCh <- e
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) scheduleSweepVtxosForRound(round *domain.Round) {
|
|
// Schedule the sweeping procedure only for completed round.
|
|
if !round.IsEnded() {
|
|
return
|
|
}
|
|
|
|
expirationTimestamp := s.sweeper.scheduler.AddNow(s.roundLifetime)
|
|
|
|
if err := s.sweeper.schedule(expirationTimestamp, round.Txid, round.CongestionTree); err != nil {
|
|
log.WithError(err).Warn("failed to schedule sweep tx")
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) getNewVtxos(round *domain.Round) []domain.Vtxo {
|
|
if len(round.CongestionTree) <= 0 {
|
|
return nil
|
|
}
|
|
|
|
createdAt := time.Now().Unix()
|
|
|
|
leaves := round.CongestionTree.Leaves()
|
|
vtxos := make([]domain.Vtxo, 0)
|
|
for _, node := range leaves {
|
|
tx, err := psbt.NewFromRawBytes(strings.NewReader(node.Tx), true)
|
|
if err != nil {
|
|
log.WithError(err).Warn("failed to parse tx")
|
|
continue
|
|
}
|
|
for i, out := range tx.UnsignedTx.TxOut {
|
|
vtxoTapKey, err := schnorr.ParsePubKey(out.PkScript[2:])
|
|
if err != nil {
|
|
log.WithError(err).Warn("failed to parse vtxo tap key")
|
|
continue
|
|
}
|
|
|
|
vtxos = append(vtxos, domain.Vtxo{
|
|
VtxoKey: domain.VtxoKey{Txid: node.Txid, VOut: uint32(i)},
|
|
Pubkey: hex.EncodeToString(schnorr.SerializePubKey(vtxoTapKey)),
|
|
Amount: uint64(out.Value),
|
|
RoundTxid: round.Txid,
|
|
CreatedAt: createdAt,
|
|
})
|
|
}
|
|
}
|
|
return vtxos
|
|
}
|
|
|
|
func (s *covenantlessService) startWatchingVtxos(vtxos []domain.Vtxo) error {
|
|
scripts, err := s.extractVtxosScripts(vtxos)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return s.scanner.WatchScripts(context.Background(), scripts)
|
|
}
|
|
|
|
func (s *covenantlessService) stopWatchingVtxos(vtxos []domain.Vtxo) {
|
|
scripts, err := s.extractVtxosScripts(vtxos)
|
|
if err != nil {
|
|
log.WithError(err).Warn("failed to extract scripts from vtxos")
|
|
return
|
|
}
|
|
|
|
for {
|
|
if err := s.scanner.UnwatchScripts(context.Background(), scripts); err != nil {
|
|
log.WithError(err).Warn("failed to stop watching vtxos, retrying in a moment...")
|
|
time.Sleep(100 * time.Millisecond)
|
|
continue
|
|
}
|
|
log.Debugf("stopped watching %d vtxos", len(vtxos))
|
|
break
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) restoreWatchingVtxos() error {
|
|
sweepableRounds, err := s.repoManager.Rounds().GetSweepableRounds(context.Background())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
vtxos := make([]domain.Vtxo, 0)
|
|
|
|
for _, round := range sweepableRounds {
|
|
fromRound, err := s.repoManager.Vtxos().GetVtxosForRound(
|
|
context.Background(), round.Txid,
|
|
)
|
|
if err != nil {
|
|
log.WithError(err).Warnf("failed to retrieve vtxos for round %s", round.Txid)
|
|
continue
|
|
}
|
|
for _, v := range fromRound {
|
|
if !v.Swept && !v.Redeemed {
|
|
vtxos = append(vtxos, v)
|
|
}
|
|
}
|
|
}
|
|
|
|
if len(vtxos) <= 0 {
|
|
return nil
|
|
}
|
|
|
|
if err := s.startWatchingVtxos(vtxos); err != nil {
|
|
return err
|
|
}
|
|
|
|
log.Debugf("restored watching %d vtxos", len(vtxos))
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) extractVtxosScripts(vtxos []domain.Vtxo) ([]string, error) {
|
|
indexedScripts := make(map[string]struct{})
|
|
|
|
for _, vtxo := range vtxos {
|
|
vtxoTapKeyBytes, err := hex.DecodeString(vtxo.Pubkey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
vtxoTapKey, err := schnorr.ParsePubKey(vtxoTapKeyBytes)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
script, err := common.P2TRScript(vtxoTapKey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
indexedScripts[hex.EncodeToString(script)] = struct{}{}
|
|
}
|
|
scripts := make([]string, 0, len(indexedScripts))
|
|
for script := range indexedScripts {
|
|
scripts = append(scripts, script)
|
|
}
|
|
return scripts, nil
|
|
}
|
|
|
|
func (s *covenantlessService) saveEvents(
|
|
ctx context.Context, id string, events []domain.RoundEvent,
|
|
) error {
|
|
if len(events) <= 0 {
|
|
return nil
|
|
}
|
|
round, err := s.repoManager.Events().Save(ctx, id, events...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return s.repoManager.Rounds().AddOrUpdateRound(ctx, *round)
|
|
}
|
|
|
|
func (s *covenantlessService) chainParams() *chaincfg.Params {
|
|
switch s.network.Name {
|
|
case common.Bitcoin.Name:
|
|
return &chaincfg.MainNetParams
|
|
case common.BitcoinTestNet.Name:
|
|
return &chaincfg.TestNet3Params
|
|
case common.BitcoinRegTest.Name:
|
|
return &chaincfg.RegressionNetParams
|
|
default:
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func (s *covenantlessService) reactToFraud(ctx context.Context, vtxo domain.Vtxo, mutx *sync.Mutex) error {
|
|
mutx.Lock()
|
|
defer mutx.Unlock()
|
|
roundRepo := s.repoManager.Rounds()
|
|
|
|
round, err := roundRepo.GetRoundWithTxid(ctx, vtxo.SpentBy)
|
|
if err != nil {
|
|
vtxosRepo := s.repoManager.Vtxos()
|
|
|
|
// if the round is not found, the utxo may be spent by an async payment redeem tx
|
|
vtxos, err := vtxosRepo.GetVtxos(ctx, []domain.VtxoKey{
|
|
{Txid: vtxo.SpentBy, VOut: 0},
|
|
})
|
|
if err != nil || len(vtxos) <= 0 {
|
|
return fmt.Errorf("failed to retrieve round: %s", err)
|
|
}
|
|
|
|
asyncPayVtxo := vtxos[0]
|
|
if asyncPayVtxo.Redeemed { // redeem tx is already onchain
|
|
return nil
|
|
}
|
|
|
|
log.Debugf("vtxo %s:%d has been spent by async payment", vtxo.Txid, vtxo.VOut)
|
|
|
|
redeemTxHex, err := s.builder.FinalizeAndExtract(asyncPayVtxo.RedeemTx)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to finalize redeem tx: %s", err)
|
|
}
|
|
|
|
redeemTxid, err := s.wallet.BroadcastTransaction(ctx, redeemTxHex)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to broadcast redeem tx: %s", err)
|
|
}
|
|
|
|
log.Debugf("broadcasted redeem tx %s", redeemTxid)
|
|
return nil
|
|
}
|
|
|
|
connectorTxid, connectorVout, err := s.getNextConnector(ctx, *round)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get next connector: %s", err)
|
|
}
|
|
|
|
log.Debugf("found next connector %s:%d", connectorTxid, connectorVout)
|
|
|
|
forfeitTx, err := findForfeitTxBitcoin(round.ForfeitTxs, connectorTxid, connectorVout, vtxo.VtxoKey)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to find forfeit tx: %s", err)
|
|
}
|
|
|
|
if err := s.wallet.LockConnectorUtxos(ctx, []ports.TxOutpoint{txOutpoint{connectorTxid, connectorVout}}); err != nil {
|
|
return fmt.Errorf("failed to lock connector utxos: %s", err)
|
|
}
|
|
|
|
signedForfeitTx, err := s.wallet.SignTransactionTapscript(ctx, forfeitTx, nil)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to sign forfeit tx: %s", err)
|
|
}
|
|
|
|
forfeitTxHex, err := s.builder.FinalizeAndExtract(signedForfeitTx)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to finalize forfeit tx: %s", err)
|
|
}
|
|
|
|
forfeitTxid, err := s.wallet.BroadcastTransaction(ctx, forfeitTxHex)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to broadcast forfeit tx: %s", err)
|
|
}
|
|
|
|
log.Debugf("broadcasted forfeit tx %s", forfeitTxid)
|
|
return nil
|
|
}
|
|
|
|
func (s *covenantlessService) markAsRedeemed(ctx context.Context, vtxo domain.Vtxo) error {
|
|
if err := s.repoManager.Vtxos().RedeemVtxos(ctx, []domain.VtxoKey{vtxo.VtxoKey}); err != nil {
|
|
return err
|
|
}
|
|
|
|
log.Debugf("vtxo %s:%d redeemed", vtxo.Txid, vtxo.VOut)
|
|
return nil
|
|
}
|
|
|
|
func findForfeitTxBitcoin(
|
|
forfeits []string, connectorTxid string, connectorVout uint32, vtxo domain.VtxoKey,
|
|
) (string, error) {
|
|
for _, forfeit := range forfeits {
|
|
forfeitTx, err := psbt.NewFromRawBytes(strings.NewReader(forfeit), true)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
connector := forfeitTx.UnsignedTx.TxIn[0]
|
|
vtxoInput := forfeitTx.UnsignedTx.TxIn[1]
|
|
|
|
if connector.PreviousOutPoint.Hash.String() == connectorTxid &&
|
|
connector.PreviousOutPoint.Index == connectorVout &&
|
|
vtxoInput.PreviousOutPoint.Hash.String() == vtxo.Txid &&
|
|
vtxoInput.PreviousOutPoint.Index == vtxo.VOut {
|
|
return forfeit, nil
|
|
}
|
|
}
|
|
|
|
return "", fmt.Errorf("forfeit tx not found")
|
|
}
|
|
|
|
type asyncPaymentData struct {
|
|
receivers []domain.Receiver
|
|
expireAt int64
|
|
roundTxid string
|
|
}
|
|
|
|
// musigSigningSession holds the state of ephemeral nonces and signatures in order to coordinate the signing of the tree
|
|
type musigSigningSession struct {
|
|
lock sync.Mutex
|
|
nbCosigners int
|
|
nonces map[*secp256k1.PublicKey]bitcointree.TreeNonces
|
|
nonceDoneC chan struct{}
|
|
|
|
signatures map[*secp256k1.PublicKey]bitcointree.TreePartialSigs
|
|
sigDoneC chan struct{}
|
|
}
|
|
|
|
func newMusigSigningSession(nbCosigners int) *musigSigningSession {
|
|
return &musigSigningSession{
|
|
nonces: make(map[*secp256k1.PublicKey]bitcointree.TreeNonces),
|
|
nonceDoneC: make(chan struct{}),
|
|
|
|
signatures: make(map[*secp256k1.PublicKey]bitcointree.TreePartialSigs),
|
|
sigDoneC: make(chan struct{}),
|
|
lock: sync.Mutex{},
|
|
nbCosigners: nbCosigners,
|
|
}
|
|
}
|