AaronFiore/electrum
1
0
Fork 0
Code Activity

Merge pull request #10150 from SomberNight/202508_swaps_parsing

Browse Source 
swaps: more robust parsing
This commit is contained in:
ghost43
2025-08-19 14:35:57 +00:00
committed by GitHub
parent 5b8569e814 81be0554a3
commit fc3aa2e8ee
3 changed files with 96 additions and 53 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
electrum/plugins/nwc/nwcserver.py
View File

@@ -333,8 +333,12 @@ class NWCServer(Logger, EventListener):
try: try:
content = our_connection_secret.decrypt_message(event.content, event.pubkey) content = our_connection_secret.decrypt_message(event.content, event.pubkey)
content = json.loads(content) content = json.loads(content)
if not isinstance(content, dict):
raise Exception("malformed content, not dict")
event.content = content event.content = content
params: dict = content['params'] params: dict = content['params']
if not isinstance(params, dict):
raise Exception("malformed params, not dict")
except Exception: except Exception:
self.logger.debug(f"Invalid request event content: {event.content}", exc_info=True) self.logger.debug(f"Invalid request event content: {event.content}", exc_info=True)
continue continue

2
electrum/plugins/psbt_nostr/psbt_nostr.py
View File

@@ -210,6 +210,8 @@ class CosignerWallet(Logger):
continue continue
try: try:
message = json_decode(message) message = json_decode(message)
if not isinstance(message, dict):
raise Exception("malformed message, not dict")
tx_hex = message.get('tx') tx_hex = message.get('tx')
label = message.get('label', '') label = message.get('label', '')
tx = tx_from_any(tx_hex) tx = tx_from_any(tx_hex)

143
electrum/submarine_swaps.py
View File

@@ -25,6 +25,7 @@ from .i18n import _
from .logging import Logger from .logging import Logger
from .crypto import sha256, ripemd from .crypto import sha256, ripemd
from .bitcoin import script_to_p2wsh, opcodes, dust_threshold, DummyAddress, construct_witness, construct_script from .bitcoin import script_to_p2wsh, opcodes, dust_threshold, DummyAddress, construct_witness, construct_script
from . import bitcoin
from .transaction import ( from .transaction import (
PartialTxInput, PartialTxOutput, PartialTransaction, Transaction, TxInput, TxOutpoint, script_GetOp, PartialTxInput, PartialTxOutput, PartialTransaction, Transaction, TxInput, TxOutpoint, script_GetOp,
match_script_against_template, OPPushDataGeneric, OPPushDataPubkey match_script_against_template, OPPushDataGeneric, OPPushDataPubkey
@@ -761,11 +762,21 @@ class SwapManager(Logger):
"refundPublicKey": refund_pubkey.hex() "refundPublicKey": refund_pubkey.hex()
} }
data = await transport.send_request_to_server('createnormalswap', request_data) data = await transport.send_request_to_server('createnormalswap', request_data)
payment_hash = bytes.fromhex(data["preimageHash"]) try:
onchain_amount = data["expectedAmount"] payment_hash = bytes.fromhex(data["preimageHash"])
locktime = data["timeoutBlockHeight"] assert len(payment_hash) == 32, len(payment_hash)
lockup_address = data["address"] onchain_amount = data["expectedAmount"]
redeem_script = bytes.fromhex(data["redeemScript"]) assert isinstance(onchain_amount, int), type(onchain_amount)
locktime = data["timeoutBlockHeight"]
assert isinstance(locktime, int), type(locktime)
lockup_address = data["address"]
assert isinstance(lockup_address, str), type(lockup_address)
assert bitcoin.is_address(lockup_address), lockup_address
redeem_script = bytes.fromhex(data["redeemScript"])
except Exception as e:
self.logger.error(f"failed to parse response from swapserver for createnormalswap: {e!r}")
raise SwapServerError("failed to parse response from swapserver for createnormalswap") from e
del data # parsing done
# verify redeem_script is built with our pubkey and preimage # verify redeem_script is built with our pubkey and preimage
check_reverse_redeem_script( check_reverse_redeem_script(
redeem_script=redeem_script, redeem_script=redeem_script,
@@ -826,7 +837,7 @@ class SwapManager(Logger):
"invoice": invoice, "invoice": invoice,
"refundPublicKey": refund_pubkey.hex(), "refundPublicKey": refund_pubkey.hex(),
} }
data = await transport.send_request_to_server('addswapinvoice', request_data) await transport.send_request_to_server('addswapinvoice', request_data)
# wait for funding tx # wait for funding tx
lnaddr = lndecode(invoice) lnaddr = lndecode(invoice)
while swap.funding_txid is None and not lnaddr.is_expired(): while swap.funding_txid is None and not lnaddr.is_expired():
@@ -924,13 +935,24 @@ class SwapManager(Logger):
} }
self.logger.debug(f'rswap: sending request for {lightning_amount_sat}') self.logger.debug(f'rswap: sending request for {lightning_amount_sat}')
data = await transport.send_request_to_server('createswap', request_data) data = await transport.send_request_to_server('createswap', request_data)
invoice = data['invoice'] try:
fee_invoice = data.get('minerFeeInvoice') invoice = data['invoice']
lockup_address = data['lockupAddress'] assert isinstance(invoice, str), type(invoice)
redeem_script = bytes.fromhex(data['redeemScript']) fee_invoice = data.get('minerFeeInvoice')
locktime = data['timeoutBlockHeight'] assert fee_invoice is None or isinstance(fee_invoice, str), type(fee_invoice)
onchain_amount = data["onchainAmount"] lockup_address = data['lockupAddress']
response_id = data['id'] assert isinstance(lockup_address, str), type(lockup_address)
assert bitcoin.is_address(lockup_address), lockup_address
redeem_script = bytes.fromhex(data['redeemScript'])
locktime = data['timeoutBlockHeight']
assert isinstance(locktime, int), type(locktime)
onchain_amount = data["onchainAmount"]
assert isinstance(onchain_amount, int), type(onchain_amount)
response_id = data['id']
except Exception as e:
self.logger.error(f"failed to parse response from swapserver for createswap: {e!r}")
raise SwapServerError("failed to parse response from swapserver for createswap") from e
del data # parsing done
self.logger.debug(f'rswap: {response_id=}') self.logger.debug(f'rswap: {response_id=}')
# verify redeem_script is built with our pubkey and preimage # verify redeem_script is built with our pubkey and preimage
check_reverse_redeem_script( check_reverse_redeem_script(
@@ -1372,9 +1394,7 @@ class SwapServerTransport(Logger):
pass pass
async def send_request_to_server(self, method: str, request_data: Optional[dict]) -> dict: async def send_request_to_server(self, method: str, request_data: Optional[dict]) -> dict:
pass """Might raise SwapServerError."""
async def get_pairs(self) -> None:
pass pass
@property @property
@@ -1390,44 +1410,55 @@ class HttpTransport(SwapServerTransport):
self.is_connected.set() self.is_connected.set()
def __enter__(self): def __enter__(self):
asyncio.run_coroutine_threadsafe(self.get_pairs(), self.network.asyncio_loop) asyncio.run_coroutine_threadsafe(self.get_pairs_just_once(), self.network.asyncio_loop)
return self return self
def __exit__(self, ex_type, ex, tb): def __exit__(self, ex_type, ex, tb):
pass pass
async def __aenter__(self): async def __aenter__(self):
asyncio.create_task(self.get_pairs()) asyncio.create_task(self.get_pairs_just_once())
return self return self
async def __aexit__(self, exc_type, exc_val, exc_tb): async def __aexit__(self, exc_type, exc_val, exc_tb):
pass pass
async def send_request_to_server(self, method, request_data): async def send_request_to_server(self, method, request_data):
response = await self.network.async_send_http_on_proxy(
'post' if request_data else 'get',
self.api_url + '/' + method,
json=request_data,
timeout=30)
return json.loads(response)
async def get_pairs(self) -> None:
"""Might raise SwapServerError."""
try: try:
response = await self.send_request_to_server('getpairs', None) response = await self.network.async_send_http_on_proxy(
'post' if request_data else 'get',
self.api_url + '/' + method,
json=request_data,
timeout=30)
except aiohttp.ClientError as e: except aiohttp.ClientError as e:
self.logger.error(f"Swap server errored: {e!r}") self.logger.info(f"Swap server errored: {e!r}")
raise SwapServerError() from e raise SwapServerError() from e
assert response.get('htlcFirst') is True try:
fees = response['pairs']['BTC/BTC']['fees'] parsed_json = json.loads(response)
limits = response['pairs']['BTC/BTC']['limits'] if not isinstance(parsed_json, dict):
pairs = SwapFees( raise Exception("malformed response, not dict")
percentage=fees['percentage'], except Exception as e:
mining_fee=fees['minerFees']['baseAsset']['mining_fee'], self.logger.error(f"failed to parse response from swapserver for {method=}: {e!r}")
min_amount=limits['minimal'], raise SwapServerError(f"failed to parse response from swapserver for {method=}") from e
max_forward=limits['max_forward_amount'], return parsed_json
max_reverse=limits['max_reverse_amount'],
) async def get_pairs_just_once(self) -> None:
"""Might raise SwapServerError."""
response = await self.send_request_to_server('getpairs', None)
try:
assert response.get('htlcFirst') is True
fees = response['pairs']['BTC/BTC']['fees']
limits = response['pairs']['BTC/BTC']['limits']
pairs = SwapFees(
percentage=fees['percentage'],
mining_fee=fees['minerFees']['baseAsset']['mining_fee'],
min_amount=limits['minimal'],
max_forward=limits['max_forward_amount'],
max_reverse=limits['max_reverse_amount'],
)
except Exception as e:
self.logger.error(f"failed to parse response from swapserver for getpairs: {e!r}")
raise SwapServerError("failed to parse response from swapserver for getpairs") from e
self.sm.update_pairs(pairs) self.sm.update_pairs(pairs)
@@ -1449,7 +1480,7 @@ class NostrTransport(SwapServerTransport):
self.private_key = keypair.privkey self.private_key = keypair.privkey
self.nostr_private_key = to_nip19('nsec', keypair.privkey.hex()) self.nostr_private_key = to_nip19('nsec', keypair.privkey.hex())
self.nostr_pubkey = keypair.pubkey.hex()[2:] self.nostr_pubkey = keypair.pubkey.hex()[2:]
self.dm_replies = defaultdict(asyncio.Future) # type: Dict[str, asyncio.Future] self.dm_replies = defaultdict(asyncio.Future) # type: Dict[str, asyncio.Future[dict]]
self.ssl_context = ssl.create_default_context(purpose=ssl.Purpose.SERVER_AUTH, cafile=ca_path) self.ssl_context = ssl.create_default_context(purpose=ssl.Purpose.SERVER_AUTH, cafile=ca_path)
self.relay_manager = None # type: Optional[aionostr.Manager] self.relay_manager = None # type: Optional[aionostr.Manager]
self.taskgroup = OldTaskGroup() self.taskgroup = OldTaskGroup()
@@ -1487,7 +1518,7 @@ class NostrTransport(SwapServerTransport):
else: else:
tasks = [ tasks = [
self.check_direct_messages(), self.check_direct_messages(),
self.get_pairs(), self._get_pairs_loop(),
self.update_relays() self.update_relays()
] ]
try: try:
@@ -1580,7 +1611,7 @@ class NostrTransport(SwapServerTransport):
@ignore_exceptions @ignore_exceptions
@log_exceptions @log_exceptions
async def send_direct_message(self, pubkey: str, content: str, retries: int = 0) -> Optional[str]: async def send_direct_message(self, pubkey: str, content: str, *, retries: int = 0) -> Optional[str]:
assert retries < 25, "Use a sane retry amount" assert retries < 25, "Use a sane retry amount"
our_private_key = aionostr.key.PrivateKey(self.private_key) our_private_key = aionostr.key.PrivateKey(self.private_key)
recv_pubkey_hex = aionostr.util.from_nip19(pubkey)['object'].hex() if pubkey.startswith('npub') else pubkey recv_pubkey_hex = aionostr.util.from_nip19(pubkey)['object'].hex() if pubkey.startswith('npub') else pubkey
@@ -1596,7 +1627,7 @@ class NostrTransport(SwapServerTransport):
except asyncio.TimeoutError: except asyncio.TimeoutError:
self.logger.warning(f"sending message to {pubkey} failed: timeout. {retries=}") self.logger.warning(f"sending message to {pubkey} failed: timeout. {retries=}")
if retries > 0: if retries > 0:
return await self.send_direct_message(pubkey, content, retries - 1) return await self.send_direct_message(pubkey, content, retries=retries-1)
return None return None
return event_id return event_id
@@ -1609,12 +1640,13 @@ class NostrTransport(SwapServerTransport):
if not event_id: if not event_id:
raise SwapServerError() raise SwapServerError()
response = await self.dm_replies[event_id] response = await self.dm_replies[event_id]
assert isinstance(response, dict)
if 'error' in response: if 'error' in response:
self.logger.warning(f"error from swap server [DO NOT TRUST THIS MESSAGE]: {response['error']}") self.logger.warning(f"error from swap server [DO NOT TRUST THIS MESSAGE]: {response['error']}")
raise SwapServerError() raise SwapServerError()
return response return response
async def get_pairs(self): async def _get_pairs_loop(self):
await self.is_connected.wait() await self.is_connected.wait()
query = { query = {
"kinds": [self.USER_STATUS_NIP38], "kinds": [self.USER_STATUS_NIP38],
@@ -1627,6 +1659,8 @@ class NostrTransport(SwapServerTransport):
async for event in self.relay_manager.get_events(query, single_event=False, only_stored=False): async for event in self.relay_manager.get_events(query, single_event=False, only_stored=False):
try: try:
content = json.loads(event.content) content = json.loads(event.content)
if not isinstance(content, dict):
raise Exception("malformed content, not dict")
tags = {k: v for k, v in event.tags} tags = {k: v for k, v in event.tags}
except Exception as e: except Exception as e:
self.logger.debug(f"failed to parse event: {e}") self.logger.debug(f"failed to parse event: {e}")
@@ -1644,16 +1678,17 @@ class NostrTransport(SwapServerTransport):
if prev_offer and event.created_at <= prev_offer.timestamp: if prev_offer and event.created_at <= prev_offer.timestamp:
continue continue
try: try:
pow_bits = get_nostr_ann_pow_amount( pow_nonce = int(content.get('pow_nonce', "0"), 16) # type: int
bytes.fromhex(pubkey), except Exception:
int(content.get('pow_nonce', "0"), 16)
)
except ValueError:
continue continue
pow_bits = get_nostr_ann_pow_amount(bytes.fromhex(pubkey), pow_nonce)
if pow_bits < self.config.SWAPSERVER_POW_TARGET: if pow_bits < self.config.SWAPSERVER_POW_TARGET:
self.logger.debug(f"too low pow: {pubkey}: pow: {pow_bits} nonce: {content.get('pow_nonce', 0)}") self.logger.debug(f"too low pow: {pubkey}: pow: {pow_bits} nonce: {pow_nonce}")
continue
try:
server_relays = content['relays'].split(',')
except Exception:
continue continue
server_relays = content['relays'].split(',') if 'relays' in content else []
try: try:
pairs = SwapFees( pairs = SwapFees(
percentage=content['percentage_fee'], percentage=content['percentage_fee'],
@@ -1724,6 +1759,8 @@ class NostrTransport(SwapServerTransport):
try: try:
content = privkey.decrypt_message(event.content, event.pubkey) content = privkey.decrypt_message(event.content, event.pubkey)
content = json.loads(content) content = json.loads(content)
if not isinstance(content, dict):
raise Exception("malformed content, not dict")
except Exception: except Exception:
continue continue
content['event_id'] = event.id content['event_id'] = event.id
@@ -1732,7 +1769,7 @@ class NostrTransport(SwapServerTransport):
self.dm_replies[content['reply_to']].set_result(content) self.dm_replies[content['reply_to']].set_result(content)
elif self.sm.is_server and 'method' in content: elif self.sm.is_server and 'method' in content:
try: try:
await self.handle_request(content) await self._handle_request(content)
except Exception as e: except Exception as e:
self.logger.exception(f"failed to handle request: {content}") self.logger.exception(f"failed to handle request: {content}")
error_response = json.dumps({ error_response = json.dumps({
@@ -1744,7 +1781,7 @@ class NostrTransport(SwapServerTransport):
self.logger.info(f'unknown message {content}') self.logger.info(f'unknown message {content}')
@log_exceptions @log_exceptions
async def handle_request(self, request): async def _handle_request(self, request: dict) -> None:
assert self.sm.is_server assert self.sm.is_server
# todo: remember event_id of already processed requests # todo: remember event_id of already processed requests
method = request.pop('method') method = request.pop('method')