mirror of
https://github.com/ElementsProject/lightning.git
synced 2024-11-19 18:11:28 +01:00
f7ebbb2ec5
Now "raw_payload" is always the complete string (including realm or length bytes at the front). This has several effects: 1. We can receive an decrypt an onion which is grossly malformed. 2. We can still hand this to the htlc_accepted hook. 3. We then fail it unless the htlc_accepted accepts it manually. 4. The createonion API now takes the raw payload, and does not know anything about "style". The only caveat is that the sphinx code needs to know the payload length: we have a call for that, which simply tells it to copy the entire onion (and treat us as the final node) if it's invalid. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
344 lines
10 KiB
C
344 lines
10 KiB
C
#include <ccan/crypto/sha256/sha256.h>
|
|
#include <ccan/json_escape/json_escape.h>
|
|
#include <ccan/str/hex/hex.h>
|
|
#include <ccan/tal/str/str.h>
|
|
#include <common/amount.h>
|
|
#include <common/json_command.h>
|
|
#include <common/json_helpers.h>
|
|
#include <common/json_tok.h>
|
|
#include <common/jsonrpc_errors.h>
|
|
#include <common/param.h>
|
|
|
|
struct command_result *param_array(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
const jsmntok_t **arr)
|
|
{
|
|
if (tok->type == JSMN_ARRAY) {
|
|
*arr = tok;
|
|
return NULL;
|
|
}
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be an array, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_bool(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
bool **b)
|
|
{
|
|
*b = tal(cmd, bool);
|
|
if (json_to_bool(buffer, tok, *b))
|
|
return NULL;
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be 'true' or 'false', not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_double(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
double **num)
|
|
{
|
|
*num = tal(cmd, double);
|
|
if (json_to_double(buffer, tok, *num))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a double, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_escaped_string(struct command *cmd,
|
|
const char *name,
|
|
const char * buffer,
|
|
const jsmntok_t *tok,
|
|
const char **str)
|
|
{
|
|
if (tok->type == JSMN_STRING) {
|
|
struct json_escape *esc;
|
|
/* jsmn always gives us ~ well-formed strings. */
|
|
esc = json_escape_string_(cmd, buffer + tok->start,
|
|
tok->end - tok->start);
|
|
*str = json_escape_unescape(cmd, esc);
|
|
if (*str)
|
|
return NULL;
|
|
}
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a string, not '%.*s'"
|
|
" (note, we don't allow \\u)",
|
|
name,
|
|
tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_string(struct command *cmd, const char *name,
|
|
const char * buffer, const jsmntok_t *tok,
|
|
const char **str)
|
|
{
|
|
*str = tal_strndup(cmd, buffer + tok->start,
|
|
tok->end - tok->start);
|
|
return NULL;
|
|
}
|
|
|
|
struct command_result *param_ignore(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
const void *unused)
|
|
{
|
|
return NULL;
|
|
}
|
|
|
|
struct command_result *param_label(struct command *cmd, const char *name,
|
|
const char * buffer, const jsmntok_t *tok,
|
|
struct json_escape **label)
|
|
{
|
|
/* We accept both strings and number literals here. */
|
|
*label = json_escape_string_(cmd, buffer + tok->start, tok->end - tok->start);
|
|
if (*label && (tok->type == JSMN_STRING || json_tok_is_num(buffer, tok)))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a string or number, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_number(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
unsigned int **num)
|
|
{
|
|
*num = tal(cmd, unsigned int);
|
|
if (json_to_number(buffer, tok, *num))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be an integer, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_sha256(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct sha256 **hash)
|
|
{
|
|
*hash = tal(cmd, struct sha256);
|
|
if (hex_decode(buffer + tok->start,
|
|
tok->end - tok->start,
|
|
*hash, sizeof(**hash)))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a 32 byte hex value, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_percent(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
double **num)
|
|
{
|
|
*num = tal(cmd, double);
|
|
if (json_to_double(buffer, tok, *num) && **num >= 0.0)
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a positive double, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_u64(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
uint64_t **num)
|
|
{
|
|
*num = tal(cmd, uint64_t);
|
|
if (json_to_u64(buffer, tok, *num))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be an unsigned 64 bit integer, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_tok(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t * tok,
|
|
const jsmntok_t **out)
|
|
{
|
|
*out = tok;
|
|
return NULL;
|
|
}
|
|
|
|
struct command_result *param_msat(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct amount_msat **msat)
|
|
{
|
|
*msat = tal(cmd, struct amount_msat);
|
|
if (parse_amount_msat(*msat, buffer + tok->start, tok->end - tok->start))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a millisatoshi amount, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_sat(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct amount_sat **sat)
|
|
{
|
|
*sat = tal(cmd, struct amount_sat);
|
|
if (parse_amount_sat(*sat, buffer + tok->start, tok->end - tok->start))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"%s should be a satoshi amount, not '%.*s'",
|
|
name ? name : "amount field",
|
|
tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_sat_or_all(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct amount_sat **sat)
|
|
{
|
|
if (json_tok_streq(buffer, tok, "all")) {
|
|
*sat = tal(cmd, struct amount_sat);
|
|
**sat = AMOUNT_SAT(-1ULL);
|
|
return NULL;
|
|
}
|
|
return param_sat(cmd, name, buffer, tok, sat);
|
|
}
|
|
|
|
struct command_result *param_node_id(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct node_id **id)
|
|
{
|
|
*id = tal(cmd, struct node_id);
|
|
if (json_to_node_id(buffer, tok, *id))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a node id, not '%.*s'",
|
|
name, json_tok_full_len(tok),
|
|
json_tok_full(buffer, tok));
|
|
}
|
|
|
|
struct command_result *param_channel_id(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct channel_id **cid)
|
|
{
|
|
*cid = tal(cmd, struct channel_id);
|
|
if (json_to_channel_id(buffer, tok, *cid))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a channel id, not '%.*s'",
|
|
name, json_tok_full_len(tok),
|
|
json_tok_full(buffer, tok));
|
|
}
|
|
|
|
struct command_result *param_secret(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct secret **secret)
|
|
{
|
|
*secret = tal(cmd, struct secret);
|
|
if (hex_decode(buffer + tok->start,
|
|
tok->end - tok->start,
|
|
*secret, sizeof(**secret)))
|
|
return NULL;
|
|
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a 32 byte hex value, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_bin_from_hex(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
u8 **bin)
|
|
{
|
|
*bin = json_tok_bin_from_hex(cmd, buffer, tok);
|
|
if (bin != NULL)
|
|
return NULL;
|
|
else
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be a hex value, not '%.*s'",
|
|
name, tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
struct command_result *param_hops_array(struct command *cmd, const char *name,
|
|
const char *buffer, const jsmntok_t *tok,
|
|
struct sphinx_hop **hops)
|
|
{
|
|
const jsmntok_t *hop, *payloadtok, *pubkeytok;
|
|
struct sphinx_hop h;
|
|
size_t i;
|
|
if (tok->type != JSMN_ARRAY) {
|
|
return command_fail(
|
|
cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be an array of hops, got '%.*s'", name,
|
|
tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
*hops = tal_arr(cmd, struct sphinx_hop, 0);
|
|
|
|
json_for_each_arr(i, hop, tok) {
|
|
payloadtok = json_get_member(buffer, hop, "payload");
|
|
pubkeytok = json_get_member(buffer, hop, "pubkey");
|
|
|
|
if (!pubkeytok)
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"Hop %zu does not have a pubkey", i);
|
|
|
|
if (!payloadtok)
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"Hop %zu does not have a payload", i);
|
|
|
|
h.raw_payload = json_tok_bin_from_hex(*hops, buffer, payloadtok);
|
|
if (!json_to_pubkey(buffer, pubkeytok, &h.pubkey))
|
|
return command_fail(
|
|
cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'pubkey' should be a pubkey, not '%.*s'",
|
|
pubkeytok->end - pubkeytok->start,
|
|
buffer + pubkeytok->start);
|
|
|
|
if (!h.raw_payload)
|
|
return command_fail(
|
|
cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'payload' should be a hex encoded binary, not '%.*s'",
|
|
pubkeytok->end - pubkeytok->start,
|
|
buffer + pubkeytok->start);
|
|
|
|
tal_arr_expand(hops, h);
|
|
}
|
|
|
|
if (tal_count(*hops) == 0) {
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"At least one hop must be specified.");
|
|
}
|
|
|
|
return NULL;
|
|
}
|
|
|
|
struct command_result *param_secrets_array(struct command *cmd,
|
|
const char *name, const char *buffer,
|
|
const jsmntok_t *tok,
|
|
struct secret **secrets)
|
|
{
|
|
size_t i;
|
|
const jsmntok_t *s;
|
|
struct secret secret;
|
|
|
|
if (tok->type != JSMN_ARRAY) {
|
|
return command_fail(
|
|
cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s' should be an array of secrets, got '%.*s'", name,
|
|
tok->end - tok->start, buffer + tok->start);
|
|
}
|
|
|
|
*secrets = tal_arr(cmd, struct secret, 0);
|
|
json_for_each_arr(i, s, tok) {
|
|
if (!hex_decode(buffer + s->start, s->end - s->start, &secret,
|
|
sizeof(secret)))
|
|
return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
|
|
"'%s[%zu]' should be a 32 byte hex "
|
|
"value, not '%.*s'",
|
|
name, i, s->end - s->start,
|
|
buffer + s->start);
|
|
|
|
tal_arr_expand(secrets, secret);
|
|
}
|
|
return NULL;
|
|
}
|