You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Hi,
I am in the process of implementing LNURL Auth for BitBanana. It works and it gives the same linking key as Zeus for the same node.
During the process of implementations I stumbled upon some difficulties, that I now try to overcome with this PR so implementation for other users is easier.
First big thing I noticed is, that both Zeus and Blixt do NOT follow the spec.
In LUD-04 at step 2 it said canonical phrase is hashed one time before signing, but Zeus and Blixt hash it two times. (the called LND endpoint hashes it two times automatically, unless you explicitly tell it to only hash it once, which these wallets did not do.)
I now did the same and adapted the spec accordingly. I am unsure though how other wallets do it.
I further
clarified how domain name is converted into bytes.
removed PrivateKey(...) which looked like a function and felt confusing and unnecessary for me.
Just a short comment before looking into this further, the single_hash arg to signMessage did definitely not exist back when I implemented LUD-04/13 for Blixt.
In fact, I tried to make them remove the hashing requirement, before we wrote LUD-13.
So I'm not sure when did double-hashing stuff arrived.
Ah, okay.
As double hashing is the default now I just assumed is has always been that way and they only later added the option to do single hashing. At least I can say that I needed to do the double hashing to get the same result as Zeus, I could not test Blixt as Blixt cannot remote control the same node.
@hsjoberg
I now looked at the other implementations.
Alby and Balance of satoshi seem to do double hashing as well.
I am not sure about CLAMS. It just calls the signMessage Endpoint from core lightning with the plain message as input, but I couldn't find out how often this is hashed be core lightning before signing.
This means:
Blixt, Zeus, Balance of Satoshi & Alby seem to do double hashing. I will join this for BitBanana so I am compatible and others do not have to change their implementation which is bad UX for their users.
Thank you so much for your research @michaelWuensch.
Yeah I would've expected this if lnd had a subtle breaking change like this.
I think we should go ahead with the changes you're proposing in this PR.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Hi,
I am in the process of implementing LNURL Auth for BitBanana. It works and it gives the same linking key as Zeus for the same node.
During the process of implementations I stumbled upon some difficulties, that I now try to overcome with this PR so implementation for other users is easier.
First big thing I noticed is, that both Zeus and Blixt do NOT follow the spec.
In LUD-04 at step 2 it said canonical phrase is hashed one time before signing, but Zeus and Blixt hash it two times. (the called LND endpoint hashes it two times automatically, unless you explicitly tell it to only hash it once, which these wallets did not do.)
I now did the same and adapted the spec accordingly. I am unsure though how other wallets do it.
I further