fixup! don't sign HTLC txs together with holder commitment tx, yet

devrandom · devrandom · commit 4b6cc0b2eeab · 2020-12-29T11:00:55.000-08:00
diff --git a/lightning/src/chain/keysinterface.rs b/lightning/src/chain/keysinterface.rs
@@ -239,7 +239,7 @@ pub trait ChannelKeys : Send+Clone {
 	/// An external signer implementation should check that the commitment has not been revoked.
 	//
 	// TODO: Document the things someone using this interface should enforce before signing.
-	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<(Signature, Vec<Signature>), ()>;
+	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<Signature, ()>;
 
 	/// Same as sign_holder_commitment, but exists only for tests to get access to holder commitment
 	/// transactions which will be broadcasted later, after the channel has moved on to a newer
@@ -481,12 +481,11 @@ impl ChannelKeys for InMemoryChannelKeys {
 		Ok((commitment_sig, htlc_sigs))
 	}
 
-	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<(Signature, Vec<Signature>), ()> {
+	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<Signature, ()> {
 		let funding_pubkey = PublicKey::from_secret_key(secp_ctx, &self.funding_key);
 		let funding_redeemscript = make_funding_redeemscript(&funding_pubkey, &self.counterparty_pubkeys().funding_pubkey);
 		let sig = commitment_tx.trust().built_transaction().sign(&self.funding_key, &funding_redeemscript, self.channel_value_satoshis, secp_ctx);
-		let htlc_sigs = self.sign_holder_commitment_htlc_transactions(&commitment_tx, secp_ctx)?;
-		Ok((sig, htlc_sigs))
+		Ok(sig)
 	}
 
 	#[cfg(any(test,feature = "unsafe_revoked_tx_signing"))]
diff --git a/lightning/src/ln/channel.rs b/lightning/src/ln/channel.rs
@@ -4743,7 +4743,7 @@ mod tests {
 					&chan.holder_keys.pubkeys().funding_pubkey,
 					chan.counterparty_funding_pubkey()
 				);
-				let holder_sig = chan_keys.sign_holder_commitment(&holder_commitment_tx, &secp_ctx).unwrap().0;
+				let holder_sig = chan_keys.sign_holder_commitment(&holder_commitment_tx, &secp_ctx).unwrap();
 				assert_eq!(Signature::from_der(&hex::decode($sig_hex).unwrap()[..]).unwrap(), holder_sig, "holder_sig");
 
 				let funding_redeemscript = chan.get_funding_redeemscript();
diff --git a/lightning/src/ln/onchaintx.rs b/lightning/src/ln/onchaintx.rs
@@ -926,7 +926,7 @@ impl<ChanSigner: ChannelKeys> OnchainTxHandler<ChanSigner> {
 	pub(crate) fn get_fully_signed_holder_tx(&mut self, funding_redeemscript: &Script) -> Option<Transaction> {
 		if let Some(ref mut holder_commitment) = self.holder_commitment {
 			match self.key_storage.sign_holder_commitment(&holder_commitment, &self.secp_ctx) {
-				Ok((sig, _htlc_sigs)) => {
+				Ok(sig) => {
 					Some(holder_commitment.add_holder_sig(funding_redeemscript, sig))
 				},
 				Err(_) => return None,
@@ -940,7 +940,7 @@ impl<ChanSigner: ChannelKeys> OnchainTxHandler<ChanSigner> {
 	pub(crate) fn get_fully_signed_copy_holder_tx(&mut self, funding_redeemscript: &Script) -> Option<Transaction> {
 		if let Some(ref mut holder_commitment) = self.holder_commitment {
 			match self.key_storage.sign_holder_commitment(holder_commitment, &self.secp_ctx) {
-				Ok((sig, _htlc_sigs)) => {
+				Ok(sig) => {
 					Some(holder_commitment.add_holder_sig(funding_redeemscript, sig))
 				},
 				Err(_) => return None,
diff --git a/lightning/src/util/enforcing_trait_impls.rs b/lightning/src/util/enforcing_trait_impls.rs
@@ -72,7 +72,7 @@ impl ChannelKeys for EnforcingChannelKeys {
 		Ok(self.inner.sign_counterparty_commitment(commitment_tx, secp_ctx).unwrap())
 	}
 
-	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<(Signature, Vec<Signature>), ()> {
+	fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<Signature, ()> {
 		self.verify_holder_commitment_tx(commitment_tx, secp_ctx);
 
 		// TODO: enforce the ChannelKeys contract - error if this commitment was already revoked

Original file line number	Diff line number	Diff line change
`@@ -72,7 +72,7 @@ impl ChannelKeys for EnforcingChannelKeys {`
`72`	`72`	`Ok(self.inner.sign_counterparty_commitment(commitment_tx, secp_ctx).unwrap())`
`73`	`73`	`}`
`74`	`74`
`75`		`- fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<(Signature, Vec<Signature>), ()> {`
	`75`	`+ fn sign_holder_commitment<T: secp256k1::Signing + secp256k1::Verification>(&self, commitment_tx: &HolderCommitmentTransaction, secp_ctx: &Secp256k1<T>) -> Result<Signature, ()> {`
`76`	`76`	`self.verify_holder_commitment_tx(commitment_tx, secp_ctx);`
`77`	`77`
`78`	`78`	`// TODO: enforce the ChannelKeys contract - error if this commitment was already revoked`