mirror of
https://github.com/ElementsProject/lightning.git
synced 2025-01-07 14:29:33 +01:00
27220646c3
We did this originally because these types are referred to in the bolts, and we had no way of injecting the correct include lines into those. Now we do, so there's less excuse for this. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
135 lines
4.2 KiB
C
135 lines
4.2 KiB
C
#ifndef LIGHTNING_BITCOIN_SIGNATURE_H
|
|
#define LIGHTNING_BITCOIN_SIGNATURE_H
|
|
#include "config.h"
|
|
#include <ccan/short_types/short_types.h>
|
|
#include <secp256k1.h>
|
|
#include <stdbool.h>
|
|
|
|
struct sha256_double;
|
|
struct bitcoin_tx;
|
|
struct pubkey;
|
|
struct privkey;
|
|
struct bitcoin_tx_output;
|
|
|
|
enum sighash_type {
|
|
SIGHASH_ALL = 1,
|
|
SIGHASH_NONE = 2,
|
|
SIGHASH_SINGLE = 3,
|
|
SIGHASH_ANYONECANPAY = 0x80
|
|
};
|
|
|
|
#define SIGHASH_MASK 0x7F
|
|
|
|
static inline bool sighash_single(enum sighash_type sighash_type)
|
|
{
|
|
return (sighash_type & SIGHASH_MASK) == SIGHASH_SINGLE;
|
|
}
|
|
|
|
static inline bool sighash_anyonecanpay(enum sighash_type sighash_type)
|
|
{
|
|
return (sighash_type & SIGHASH_ANYONECANPAY) == SIGHASH_ANYONECANPAY;
|
|
}
|
|
|
|
/* We only support a limited range of sighash_type */
|
|
static inline bool sighash_type_valid(const enum sighash_type sighash_type)
|
|
{
|
|
return sighash_type == SIGHASH_ALL
|
|
|| sighash_type == (SIGHASH_SINGLE|SIGHASH_ANYONECANPAY);
|
|
}
|
|
|
|
/**
|
|
* bitcoin_signature - signature with a sighash type.
|
|
*
|
|
* sighash_type is SIGHASH_ALL unless you're being tricky. */
|
|
struct bitcoin_signature {
|
|
secp256k1_ecdsa_signature s;
|
|
enum sighash_type sighash_type;
|
|
};
|
|
|
|
/**
|
|
* bitcoin_tx_hash_for_sig - produce hash for a transaction
|
|
*
|
|
* @tx - tx to hash
|
|
* @in - index that this 'hash' is for
|
|
* @script - script for the index that's being 'hashed for'
|
|
* @sighash_type - sighash_type to hash for
|
|
* @dest - hash result
|
|
*/
|
|
void bitcoin_tx_hash_for_sig(const struct bitcoin_tx *tx, unsigned int in,
|
|
const u8 *script,
|
|
enum sighash_type sighash_type,
|
|
struct sha256_double *dest);
|
|
|
|
/**
|
|
* sign_hash - produce a raw secp256k1 signature (with low R value).
|
|
* @p: secret key
|
|
* @h: hash to sign.
|
|
* @sig: signature to fill in and return.
|
|
*/
|
|
void sign_hash(const struct privkey *p,
|
|
const struct sha256_double *h,
|
|
secp256k1_ecdsa_signature *sig);
|
|
|
|
/**
|
|
* check_signed_hash - check a raw secp256k1 signature.
|
|
* @h: hash which was signed.
|
|
* @signature: signature.
|
|
* @key: public key corresponding to private key used to sign.
|
|
*
|
|
* Returns true if the key, hash and signature are correct. Changing any
|
|
* one of these will make it fail.
|
|
*/
|
|
bool check_signed_hash(const struct sha256_double *hash,
|
|
const secp256k1_ecdsa_signature *signature,
|
|
const struct pubkey *key);
|
|
|
|
/**
|
|
* sign_tx_input - produce a bitcoin signature for a transaction input
|
|
* @tx: the bitcoin transaction we're signing.
|
|
* @in: the input number to sign.
|
|
* @subscript: NULL (pure segwit) or a tal_arr of the signing subscript
|
|
* @witness: NULL (non-segwit) or the witness script.
|
|
* @privkey: the secret key to use for signing.
|
|
* @pubkey: the public key corresonding to @privkey.
|
|
* @sighash_type: a valid sighash type.
|
|
* @sig: (in) sighash_type indicates what type of signature make in (out) s.
|
|
*/
|
|
void sign_tx_input(const struct bitcoin_tx *tx,
|
|
unsigned int in,
|
|
const u8 *subscript,
|
|
const u8 *witness,
|
|
const struct privkey *privkey, const struct pubkey *pubkey,
|
|
enum sighash_type sighash_type,
|
|
struct bitcoin_signature *sig);
|
|
|
|
/**
|
|
* check_tx_sig - produce a bitcoin signature for a transaction input
|
|
* @tx: the bitcoin transaction which has been signed.
|
|
* @in: the input number to which @sig should apply.
|
|
* @subscript: NULL (pure segwit) or a tal_arr of the signing subscript
|
|
* @witness: NULL (non-segwit) or the witness script.
|
|
* @pubkey: the public key corresonding to @privkey used for signing.
|
|
* @sig: the signature to check.
|
|
*
|
|
* Returns true if this signature was created by @privkey and this tx
|
|
* and sighash_type, otherwise false.
|
|
*/
|
|
bool check_tx_sig(const struct bitcoin_tx *tx, size_t input_num,
|
|
const u8 *subscript,
|
|
const u8 *witness,
|
|
const struct pubkey *key,
|
|
const struct bitcoin_signature *sig);
|
|
|
|
/* Give DER encoding of signature: returns length used (<= 73). */
|
|
size_t signature_to_der(u8 der[73], const struct bitcoin_signature *sig);
|
|
|
|
/* Parse DER encoding into signature sig */
|
|
bool signature_from_der(const u8 *der, size_t len, struct bitcoin_signature *sig);
|
|
|
|
/* Wire marshalling and unmarshalling */
|
|
void towire_bitcoin_signature(u8 **pptr, const struct bitcoin_signature *sig);
|
|
void fromwire_bitcoin_signature(const u8 **cursor, size_t *max,
|
|
struct bitcoin_signature *sig);
|
|
|
|
#endif /* LIGHTNING_BITCOIN_SIGNATURE_H */
|