mirror of
https://github.com/ElementsProject/lightning.git
synced 2025-01-18 21:35:11 +01:00
90b393ca1a
the way we use PSBTs to sign things requires that we have the scriptpubkey available on the utxo so we can populate the witness-utxo field with it. this causes problems if we don't already have the scriptpubkey cached in the database, as in *some* cases we require a round trip to the HSM to populate them to get over this hump, we backfill any and all missing scriptpubkey information for the utxo's that we hold in our wallet. this will allow us to clean up the NULL handling of missing scriptpubkeys.
7.3 KiB
7.3 KiB
| 1 | # Clients should not give a bad request but not the HSM's decision to crash. |
|---|---|
| 2 | msgtype,hsmstatus_client_bad_request,1000 |
| 3 | msgdata,hsmstatus_client_bad_request,id,node_id, |
| 4 | msgdata,hsmstatus_client_bad_request,description,wirestring, |
| 5 | msgdata,hsmstatus_client_bad_request,len,u16, |
| 6 | msgdata,hsmstatus_client_bad_request,msg,u8,len |
| 7 | #include <bitcoin/chainparams.h> |
| 8 | # Start the HSM. |
| 9 | msgtype,hsm_init,11 |
| 10 | msgdata,hsm_init,bip32_key_version,bip32_key_version, |
| 11 | msgdata,hsm_init,chainparams,chainparams, |
| 12 | msgdata,hsm_init,hsm_encryption_key,?secret, |
| 13 | msgdata,hsm_init,dev_force_privkey,?privkey, |
| 14 | msgdata,hsm_init,dev_force_bip32_seed,?secret, |
| 15 | msgdata,hsm_init,dev_force_channel_secrets,?secrets, |
| 16 | msgdata,hsm_init,dev_force_channel_secrets_shaseed,?sha256, |
| 17 | #include <common/bip32.h> |
| 18 | msgtype,hsm_init_reply,111 |
| 19 | msgdata,hsm_init_reply,node_id,node_id, |
| 20 | msgdata,hsm_init_reply,bip32,ext_key, |
| 21 | # Get a new HSM FD, with the specified capabilities |
| 22 | msgtype,hsm_client_hsmfd,9 |
| 23 | # Which identity to use for requests |
| 24 | msgdata,hsm_client_hsmfd,id,node_id, |
| 25 | # Database id for this client, if any. |
| 26 | msgdata,hsm_client_hsmfd,dbid,u64, |
| 27 | msgdata,hsm_client_hsmfd,capabilities,u64, |
| 28 | # No content, just an fd. |
| 29 | msgtype,hsm_client_hsmfd_reply,109 |
| 30 | #include <common/derive_basepoints.h> |
| 31 | # Get the basepoints and funding key for this specific channel. |
| 32 | msgtype,hsm_get_channel_basepoints,10 |
| 33 | msgdata,hsm_get_channel_basepoints,peerid,node_id, |
| 34 | msgdata,hsm_get_channel_basepoints,dbid,u64, |
| 35 | msgtype,hsm_get_channel_basepoints_reply,110 |
| 36 | msgdata,hsm_get_channel_basepoints_reply,basepoints,basepoints, |
| 37 | msgdata,hsm_get_channel_basepoints_reply,funding_pubkey,pubkey, |
| 38 | # Return signature for a funding tx. |
| 39 | #include <common/utxo.h> |
| 40 | # Master asks the HSM to sign a node_announcement |
| 41 | msgtype,hsm_node_announcement_sig_req,6 |
| 42 | msgdata,hsm_node_announcement_sig_req,annlen,u16, |
| 43 | msgdata,hsm_node_announcement_sig_req,announcement,u8,annlen |
| 44 | msgtype,hsm_node_announcement_sig_reply,106 |
| 45 | msgdata,hsm_node_announcement_sig_reply,signature,secp256k1_ecdsa_signature, |
| 46 | # Sign a withdrawal request |
| 47 | #include <bitcoin/psbt.h> |
| 48 | msgtype,hsm_sign_withdrawal,7 |
| 49 | msgdata,hsm_sign_withdrawal,num_inputs,u16, |
| 50 | msgdata,hsm_sign_withdrawal,inputs,utxo,num_inputs |
| 51 | msgdata,hsm_sign_withdrawal,psbt,wally_psbt, |
| 52 | msgtype,hsm_sign_withdrawal_reply,107 |
| 53 | msgdata,hsm_sign_withdrawal_reply,psbt,wally_psbt, |
| 54 | # Sign an invoice |
| 55 | msgtype,hsm_sign_invoice,8 |
| 56 | msgdata,hsm_sign_invoice,len,u16, |
| 57 | msgdata,hsm_sign_invoice,u5bytes,u8,len |
| 58 | msgdata,hsm_sign_invoice,hrplen,u16, |
| 59 | msgdata,hsm_sign_invoice,hrp,u8,hrplen |
| 60 | msgtype,hsm_sign_invoice_reply,108 |
| 61 | msgdata,hsm_sign_invoice_reply,sig,secp256k1_ecdsa_recoverable_signature, |
| 62 | # Give me ECDH(node-id-secret,point) |
| 63 | msgtype,hsm_ecdh_req,1 |
| 64 | msgdata,hsm_ecdh_req,point,pubkey, |
| 65 | msgtype,hsm_ecdh_resp,100 |
| 66 | msgdata,hsm_ecdh_resp,ss,secret, |
| 67 | msgtype,hsm_cannouncement_sig_req,2 |
| 68 | msgdata,hsm_cannouncement_sig_req,calen,u16, |
| 69 | msgdata,hsm_cannouncement_sig_req,ca,u8,calen |
| 70 | msgtype,hsm_cannouncement_sig_reply,102 |
| 71 | msgdata,hsm_cannouncement_sig_reply,node_signature,secp256k1_ecdsa_signature, |
| 72 | msgdata,hsm_cannouncement_sig_reply,bitcoin_signature,secp256k1_ecdsa_signature, |
| 73 | msgtype,hsm_cupdate_sig_req,3 |
| 74 | msgdata,hsm_cupdate_sig_req,culen,u16, |
| 75 | msgdata,hsm_cupdate_sig_req,cu,u8,culen |
| 76 | msgtype,hsm_cupdate_sig_reply,103 |
| 77 | msgdata,hsm_cupdate_sig_reply,culen,u16, |
| 78 | msgdata,hsm_cupdate_sig_reply,cu,u8,culen |
| 79 | # Master asks HSM to sign a commitment transaction. |
| 80 | msgtype,hsm_sign_commitment_tx,5 |
| 81 | msgdata,hsm_sign_commitment_tx,peer_id,node_id, |
| 82 | msgdata,hsm_sign_commitment_tx,channel_dbid,u64, |
| 83 | msgdata,hsm_sign_commitment_tx,tx,bitcoin_tx, |
| 84 | msgdata,hsm_sign_commitment_tx,remote_funding_key,pubkey, |
| 85 | msgtype,hsm_sign_commitment_tx_reply,105 |
| 86 | msgdata,hsm_sign_commitment_tx_reply,sig,bitcoin_signature, |
| 87 | # Onchaind asks HSM to sign a spend to-us. Four variants, since each set |
| 88 | # of keys is derived differently... |
| 89 | # FIXME: Have master tell hsmd the keyindex, so it can validate output! |
| 90 | msgtype,hsm_sign_delayed_payment_to_us,12 |
| 91 | msgdata,hsm_sign_delayed_payment_to_us,commit_num,u64, |
| 92 | msgdata,hsm_sign_delayed_payment_to_us,tx,bitcoin_tx, |
| 93 | msgdata,hsm_sign_delayed_payment_to_us,wscript_len,u16, |
| 94 | msgdata,hsm_sign_delayed_payment_to_us,wscript,u8,wscript_len |
| 95 | msgtype,hsm_sign_remote_htlc_to_us,13 |
| 96 | msgdata,hsm_sign_remote_htlc_to_us,remote_per_commitment_point,pubkey, |
| 97 | msgdata,hsm_sign_remote_htlc_to_us,tx,bitcoin_tx, |
| 98 | msgdata,hsm_sign_remote_htlc_to_us,wscript_len,u16, |
| 99 | msgdata,hsm_sign_remote_htlc_to_us,wscript,u8,wscript_len |
| 100 | msgtype,hsm_sign_penalty_to_us,14 |
| 101 | msgdata,hsm_sign_penalty_to_us,revocation_secret,secret, |
| 102 | msgdata,hsm_sign_penalty_to_us,tx,bitcoin_tx, |
| 103 | msgdata,hsm_sign_penalty_to_us,wscript_len,u16, |
| 104 | msgdata,hsm_sign_penalty_to_us,wscript,u8,wscript_len |
| 105 | # Onchaind asks HSM to sign a local HTLC success or HTLC timeout tx. |
| 106 | msgtype,hsm_sign_local_htlc_tx,16 |
| 107 | msgdata,hsm_sign_local_htlc_tx,commit_num,u64, |
| 108 | msgdata,hsm_sign_local_htlc_tx,tx,bitcoin_tx, |
| 109 | msgdata,hsm_sign_local_htlc_tx,wscript_len,u16, |
| 110 | msgdata,hsm_sign_local_htlc_tx,wscript,u8,wscript_len |
| 111 | # Openingd/channeld asks HSM to sign the other sides' commitment tx. |
| 112 | msgtype,hsm_sign_remote_commitment_tx,19 |
| 113 | msgdata,hsm_sign_remote_commitment_tx,tx,bitcoin_tx, |
| 114 | msgdata,hsm_sign_remote_commitment_tx,remote_funding_key,pubkey, |
| 115 | msgdata,hsm_sign_remote_commitment_tx,remote_per_commit,pubkey, |
| 116 | msgdata,hsm_sign_remote_commitment_tx,option_static_remotekey,bool, |
| 117 | # channeld asks HSM to sign remote HTLC tx. |
| 118 | msgtype,hsm_sign_remote_htlc_tx,20 |
| 119 | msgdata,hsm_sign_remote_htlc_tx,tx,bitcoin_tx, |
| 120 | msgdata,hsm_sign_remote_htlc_tx,len,u16, |
| 121 | msgdata,hsm_sign_remote_htlc_tx,wscript,u8,len |
| 122 | msgdata,hsm_sign_remote_htlc_tx,remote_per_commit_point,pubkey, |
| 123 | # closingd asks HSM to sign mutual close tx. |
| 124 | msgtype,hsm_sign_mutual_close_tx,21 |
| 125 | msgdata,hsm_sign_mutual_close_tx,tx,bitcoin_tx, |
| 126 | msgdata,hsm_sign_mutual_close_tx,remote_funding_key,pubkey, |
| 127 | # Reply for all the above requests. |
| 128 | msgtype,hsm_sign_tx_reply,112 |
| 129 | msgdata,hsm_sign_tx_reply,sig,bitcoin_signature, |
| 130 | # Openingd/channeld/onchaind asks for Nth per_commitment_point, if > 2, gets N-2 secret. |
| 131 | msgtype,hsm_get_per_commitment_point,18 |
| 132 | msgdata,hsm_get_per_commitment_point,n,u64, |
| 133 | msgtype,hsm_get_per_commitment_point_reply,118 |
| 134 | msgdata,hsm_get_per_commitment_point_reply,per_commitment_point,pubkey, |
| 135 | msgdata,hsm_get_per_commitment_point_reply,old_commitment_secret,?secret, |
| 136 | # master -> hsmd: do you have a memleak? |
| 137 | msgtype,hsm_dev_memleak,33 |
| 138 | msgtype,hsm_dev_memleak_reply,133 |
| 139 | msgdata,hsm_dev_memleak_reply,leak,bool, |
| 140 | # channeld asks to check if claimed future commitment_secret is correct. |
| 141 | msgtype,hsm_check_future_secret,22 |
| 142 | msgdata,hsm_check_future_secret,n,u64, |
| 143 | msgdata,hsm_check_future_secret,commitment_secret,secret, |
| 144 | msgtype,hsm_check_future_secret_reply,122 |
| 145 | msgdata,hsm_check_future_secret_reply,correct,bool, |
| 146 | # lightningd asks us to sign a string. |
| 147 | msgtype,hsm_sign_message,23 |
| 148 | msgdata,hsm_sign_message,len,u16, |
| 149 | msgdata,hsm_sign_message,msg,u8,len |
| 150 | msgtype,hsm_sign_message_reply,123 |
| 151 | msgdata,hsm_sign_message_reply,sig,secp256k1_ecdsa_recoverable_signature, |
| 152 | # lightningd needs to get a scriptPubkey for a utxo with closeinfo |
| 153 | msgtype,hsm_get_output_scriptpubkey,24 |
| 154 | msgdata,hsm_get_output_scriptpubkey,channel_id,u64, |
| 155 | msgdata,hsm_get_output_scriptpubkey,peer_id,node_id, |
| 156 | msgdata,hsm_get_output_scriptpubkey,commitment_point,?pubkey, |
| 157 | msgtype,hsm_get_output_scriptpubkey_reply,124 |
| 158 | msgdata,hsm_get_output_scriptpubkey_reply,script_len,u16, |
| 159 | msgdata,hsm_get_output_scriptpubkey_reply,script,u8,script_len |