mirror of
https://github.com/lightningnetwork/lnd.git
synced 2025-08-30 23:53:41 +02:00
rename revocation package to shachain
* Constructors now also more in line with “Effective Go”
This commit is contained in:
Olaoluwa Osuntokun
180
shachain/shachain.go
Normal file
180
shachain/shachain.go
Normal file
@@ -0,0 +1,180 @@
|
||||
package shachain
|
||||
|
||||
import (
|
||||
"bytes"
|
||||
"crypto/rand"
|
||||
"crypto/sha256"
|
||||
"fmt"
|
||||
"sync"
|
||||
|
||||
"github.com/btcsuite/btcd/wire"
|
||||
"github.com/btcsuite/fastsha256"
|
||||
)
|
||||
|
||||
const (
|
||||
maxIndex = 1<<64 - 1
|
||||
)
|
||||
|
||||
// chainFragment...
|
||||
type chainBranch struct {
|
||||
index uint64
|
||||
hash [32]byte
|
||||
}
|
||||
|
||||
// HyperShaChain...
|
||||
// * https://github.com/rustyrussell/ccan/blob/master/ccan/crypto/shachain/design.txt
|
||||
type HyperShaChain struct {
|
||||
sync.RWMutex
|
||||
|
||||
lastChainIndex uint64
|
||||
numValid uint64
|
||||
|
||||
chainBranches [64]chainBranch
|
||||
|
||||
lastHash wire.ShaHash
|
||||
}
|
||||
|
||||
// NewHyperShaChain
|
||||
// * used to track their pre-images
|
||||
func New() *HyperShaChain {
|
||||
return &HyperShaChain{lastChainIndex: 0, numValid: 0}
|
||||
}
|
||||
|
||||
// NewHyperShaChainFromSeed...
|
||||
// * used to derive your own pre-images
|
||||
func NewFromSeed(seed *[32]byte, deriveTo uint64) (*HyperShaChain, error) {
|
||||
var shaSeed [32]byte
|
||||
|
||||
// If no seed is specified, generate a new one.
|
||||
if seed == nil {
|
||||
_, err := rand.Read(shaSeed[:])
|
||||
if err != nil {
|
||||
return nil, err
|
||||
}
|
||||
} else {
|
||||
shaSeed = *seed
|
||||
}
|
||||
|
||||
// The last possible value in the chain is our starting index.
|
||||
start := uint64(maxIndex)
|
||||
stop := deriveTo
|
||||
|
||||
curHash := derive(start, stop, shaSeed)
|
||||
|
||||
// TODO(roasbeef): from/to or static size?
|
||||
return &HyperShaChain{lastChainIndex: deriveTo, lastHash: curHash}, nil
|
||||
}
|
||||
|
||||
// derive...
|
||||
func derive(from, to uint64, startingHash [32]byte) [32]byte {
|
||||
nextHash := startingHash
|
||||
|
||||
numBranches := from ^ to
|
||||
|
||||
// The number of branches we need to derive is log2(numBranches)
|
||||
toDerive := 0
|
||||
for ; numBranches>>uint(toDerive) > 0; toDerive++ {
|
||||
}
|
||||
toDerive-- // needed?
|
||||
|
||||
for i := int(toDerive - 1); i >= 0; i-- {
|
||||
if (numBranches>>uint(i))&1 == 1 {
|
||||
// Flip the ith bit, then hash the current state to
|
||||
// advance down the tree.
|
||||
nextHash[i/8] ^= (1 << (uint(i) % 8))
|
||||
nextHash = sha256.Sum256(nextHash[:])
|
||||
}
|
||||
}
|
||||
|
||||
return nextHash
|
||||
}
|
||||
|
||||
// canDerive...
|
||||
func canDerive(from, to uint64) bool {
|
||||
return ^from&to == 1
|
||||
}
|
||||
|
||||
// getHash...
|
||||
// index should be commitment #
|
||||
func (h *HyperShaChain) GetHash(index uint64) (*[32]byte, error) {
|
||||
for i := uint64(0); i < h.numValid; i++ {
|
||||
/* If we can get from key to index only by resetting bits,
|
||||
* we can derive from it => index has no bits key doesn't. */
|
||||
if !canDerive(h.chainBranches[i].index, index) {
|
||||
continue
|
||||
}
|
||||
|
||||
nextHash := derive(h.chainBranches[i].index, index,
|
||||
h.chainBranches[i].hash)
|
||||
|
||||
return &nextHash, nil
|
||||
}
|
||||
|
||||
return nil, fmt.Errorf("unable to derive hash # %v", index)
|
||||
}
|
||||
|
||||
// addHash
|
||||
func (h *HyperShaChain) AddNextHash(hash [32]byte) error {
|
||||
// Hashes for a remote chain must be added in order.
|
||||
nextIdx := h.lastChainIndex + 1
|
||||
if nextIdx != h.lastChainIndex+1 || nextIdx == 0 && h.numValid != 0 {
|
||||
return fmt.Errorf("shachain values must be added in order, attempted"+
|
||||
"to add index %v, chain is at %v", nextIdx, h.lastChainIndex)
|
||||
}
|
||||
|
||||
i := uint64(0)
|
||||
for ; i < h.numValid; i++ {
|
||||
if canDerive(nextIdx, h.chainBranches[i].index) {
|
||||
// Ensure we can actually derive this value.
|
||||
derivation := derive(nextIdx, h.chainBranches[i].index, hash)
|
||||
if !bytes.Equal(derivation[:], h.chainBranches[i].hash[:]) {
|
||||
// TODO(roasbeef): better err message
|
||||
return fmt.Errorf("chain corruption")
|
||||
}
|
||||
break
|
||||
}
|
||||
}
|
||||
|
||||
h.chainBranches[i].index = nextIdx
|
||||
copy(h.chainBranches[i].hash[:], hash[:])
|
||||
copy(h.lastHash[:], hash[:])
|
||||
h.numValid = i + 1
|
||||
h.lastChainIndex = nextIdx
|
||||
return nil
|
||||
}
|
||||
|
||||
// CurrentPreImage...
|
||||
func (h *HyperShaChain) CurrentPreImage() *wire.ShaHash {
|
||||
h.RLock()
|
||||
defer h.RUnlock()
|
||||
return &h.lastHash
|
||||
}
|
||||
|
||||
// CurrentRevocationHash...
|
||||
// TODO(roasbeef): *wire.ShaHash vs [wire.HashSize]byte ?
|
||||
func (h *HyperShaChain) CurrentRevocationHash() [wire.HashSize]byte {
|
||||
h.RLock()
|
||||
defer h.RUnlock()
|
||||
return fastsha256.Sum256(h.lastHash[:])
|
||||
}
|
||||
|
||||
// LocatePreImage...
|
||||
// Alice just broadcasted an old commitment tx, we need the revocation hash to
|
||||
// claim the funds so we don't get cheated. However, we aren't storing all the
|
||||
// pre-images in memory. So which shachain index # did she broadcast?
|
||||
func (h *HyperShaChain) LocatePreImage(outputScript []byte) (uint64, *[32]byte) {
|
||||
// TODO(roasbeef): parallel goroutine divide and conquer?
|
||||
// * need to know which side it is? also proper keys?
|
||||
// * guess and check till script template matches the p2sh hash
|
||||
return 0, nil
|
||||
}
|
||||
|
||||
// MarshallBinary...
|
||||
func (h *HyperShaChain) Encode(b bytes.Buffer) error {
|
||||
return nil
|
||||
}
|
||||
|
||||
// UnmarshallBinary...
|
||||
func (h *HyperShaChain) Decode(b bytes.Buffer) error {
|
||||
return nil
|
||||
}
|
||||
1
shachain/shachain_test.go
Normal file
1
shachain/shachain_test.go
Normal file
@@ -0,0 +1 @@
|
||||
package shachain
|
||||
Reference in New Issue
Block a user