verification signatures in tss module

Author: keithsue

x/dlc/keeper/attestation.go

@@ -1,17 +1,14 @@
 package keeper
 
 import (
-	"encoding/hex"
-
-	errorsmod "cosmossdk.io/errors"
 	storetypes "cosmossdk.io/store/types"
 	sdk "github.com/cosmos/cosmos-sdk/types"
 
-	"github.com/sideprotocol/side/bitcoin/crypto/schnorr"
 	"github.com/sideprotocol/side/x/dlc/types"
 )
 
 // HandleAttestation performs the attestation handling
+// Assume that the signature has already been verified
 func (k Keeper) HandleAttestation(ctx sdk.Context, sender string, eventId uint64, signature string) error {
 	if !k.HasEvent(ctx, eventId) {
 		return types.ErrEventDoesNotExist
@@ -26,18 +23,6 @@ func (k Keeper) HandleAttestation(ctx sdk.Context, sender string, eventId uint64
 		return types.ErrAttestationAlreadyExists
 	}
 
-	if signature[0:64] != event.Nonce {
-		return errorsmod.Wrap(types.ErrInvalidSignature, "signature r does not match the event nonce")
-	}
-
-	pubKeyBytes, _ := hex.DecodeString(event.Pubkey)
-	sigBytes, _ := hex.DecodeString(signature)
-	msg := types.GetEventOutcomeHash(event, int(event.OutcomeIndex))
-
-	if !schnorr.Verify(sigBytes, msg, pubKeyBytes) {
-		return errorsmod.Wrap(types.ErrInvalidSignature, "failed to verify the signature")
-	}
-
 	attestation := types.DLCAttestation{
 		Id:        k.IncrementAttestationId(ctx),
 		EventId:   eventId,

x/lending/keeper/liquidation.go

@@ -1,20 +1,15 @@
 package keeper
 
 import (
-	"bytes"
-	"encoding/hex"
-
-	"github.com/btcsuite/btcd/btcutil/psbt"
-
 	errorsmod "cosmossdk.io/errors"
 	sdkmath "cosmossdk.io/math"
 	sdk "github.com/cosmos/cosmos-sdk/types"
 
-	"github.com/sideprotocol/side/bitcoin/crypto/schnorr"
 	"github.com/sideprotocol/side/x/lending/types"
 )
 
 // HandleLiquidationSignatures handles the liquidation signatures
+// Assume that signatures have already been verified
 func (k Keeper) HandleLiquidationSignatures(ctx sdk.Context, loanId string, signatures []string) error {
 	if !k.HasLoan(ctx, loanId) {
 		return types.ErrLoanDoesNotExist
@@ -30,34 +25,14 @@ func (k Keeper) HandleLiquidationSignatures(ctx sdk.Context, loanId string, sign
 		return types.ErrLiquidationSignaturesAlreadyExist
 	}
 
-	p, _ := psbt.NewFromRawBytes(bytes.NewReader([]byte(dlcMeta.LiquidationCet.Tx)), true)
-	if len(signatures) != len(p.Inputs) {
-		return errorsmod.Wrap(types.ErrInvalidSignatures, "mismatched signature number")
-	}
-
-	script, _ := hex.DecodeString(dlcMeta.MultisigScript)
-	dcmPubKey, _ := hex.DecodeString(loan.DCM)
-
-	for i, input := range p.Inputs {
-		sigHash, err := types.CalcTapscriptSigHash(p, i, input.SighashType, script)
-		if err != nil {
-			return err
-		}
-
-		sigBytes, _ := hex.DecodeString(signatures[i])
-
-		if !schnorr.Verify(sigBytes, sigHash, dcmPubKey) {
-			return types.ErrInvalidSignature
-		}
-	}
-
 	dlcMeta.LiquidationCet.DCMSignatures = signatures
 	k.SetDLCMeta(ctx, loanId, dlcMeta)
 
 	return nil
 }
 
 // handleDefaultLiquidationSignatures handles the default liquidation signatures
+// Assume that signatures have already been verified
 func (k Keeper) handleDefaultLiquidationSignatures(ctx sdk.Context, loanId string, signatures []string) error {
 	if !k.HasLoan(ctx, loanId) {
 		return types.ErrLoanDoesNotExist
@@ -73,27 +48,6 @@ func (k Keeper) handleDefaultLiquidationSignatures(ctx sdk.Context, loanId strin
 		return types.ErrLiquidationSignaturesAlreadyExist
 	}
 
-	p, _ := psbt.NewFromRawBytes(bytes.NewReader([]byte(dlcMeta.DefaultLiquidationCet.Tx)), true)
-	if len(signatures) != len(p.Inputs) {
-		return errorsmod.Wrap(types.ErrInvalidSignatures, "mismatched signature number")
-	}
-
-	script, _ := hex.DecodeString(dlcMeta.MultisigScript)
-	dcmPubKey, _ := hex.DecodeString(loan.DCM)
-
-	for i, input := range p.Inputs {
-		sigHash, err := types.CalcTapscriptSigHash(p, i, input.SighashType, script)
-		if err != nil {
-			return err
-		}
-
-		sigBytes, _ := hex.DecodeString(signatures[i])
-
-		if !schnorr.Verify(sigBytes, sigHash, dcmPubKey) {
-			return types.ErrInvalidSignature
-		}
-	}
-
 	dlcMeta.DefaultLiquidationCet.DCMSignatures = signatures
 	k.SetDLCMeta(ctx, loanId, dlcMeta)
 

x/lending/keeper/redemption.go

@@ -8,14 +8,13 @@ import (
 	"github.com/btcsuite/btcd/btcutil/psbt"
 	"github.com/btcsuite/btcd/txscript"
 
-	errorsmod "cosmossdk.io/errors"
 	sdk "github.com/cosmos/cosmos-sdk/types"
 
-	"github.com/sideprotocol/side/bitcoin/crypto/schnorr"
 	"github.com/sideprotocol/side/x/lending/types"
 )
 
 // HandleRedemptionSignatures handles the redemption signatures
+// Assume that signatures have already been verified
 func (k Keeper) HandleRedemptionSignatures(ctx sdk.Context, id uint64, signatures []string) error {
 	if !k.HasRedemption(ctx, id) {
 		return types.ErrRedemptionDoesNotExist
@@ -29,9 +28,6 @@ func (k Keeper) HandleRedemptionSignatures(ctx sdk.Context, id uint64, signature
 	loan := k.GetLoan(ctx, redemption.LoanId)
 
 	p, _ := psbt.NewFromRawBytes(bytes.NewReader([]byte(redemption.Tx)), true)
-	if len(signatures) != len(p.Inputs) {
-		return errorsmod.Wrap(types.ErrInvalidSignatures, "mismatched signature number")
-	}
 
 	borrowerPubKey, _ := hex.DecodeString(loan.BorrowerPubKey)
 	dcmPubKey, _ := hex.DecodeString(loan.DCM)
@@ -42,17 +38,7 @@ func (k Keeper) HandleRedemptionSignatures(ctx sdk.Context, id uint64, signature
 	for i, ti := range p.UnsignedTx.TxIn {
 		prevTxHash := ti.PreviousOutPoint.Hash.String()
 
-		sigHash, err := types.CalcTapscriptSigHash(p, i, types.DefaultSigHashType, script)
-		if err != nil {
-			return err
-		}
-
 		sigBytes, _ := hex.DecodeString(signatures[i])
-
-		if !schnorr.Verify(sigBytes, sigHash, dcmPubKey) {
-			return types.ErrInvalidSignature
-		}
-
 		borrowerSig, _ := hex.DecodeString(redemption.Signatures[i])
 
 		p.Inputs[i].TaprootScriptSpendSig = []*psbt.TaprootScriptSpendSig{

x/lending/keeper/repayment.go

@@ -1,16 +1,12 @@
 package keeper
 
 import (
-	"bytes"
 	"encoding/hex"
 
-	"github.com/btcsuite/btcd/btcutil/psbt"
-
 	errorsmod "cosmossdk.io/errors"
 	sdkmath "cosmossdk.io/math"
 	sdk "github.com/cosmos/cosmos-sdk/types"
 
-	"github.com/sideprotocol/side/bitcoin/crypto/adaptor"
 	dlctypes "github.com/sideprotocol/side/x/dlc/types"
 	"github.com/sideprotocol/side/x/lending/types"
 	tsstypes "github.com/sideprotocol/side/x/tss/types"
@@ -44,6 +40,7 @@ func (k Keeper) InitiateRepaymentCetSigningRequest(ctx sdk.Context, loanId strin
 }
 
 // HandleRepaymentAdaptorSignatures handles repayment adaptor signatures
+// Assume that signatures have already been verified
 func (k Keeper) HandleRepaymentAdaptorSignatures(ctx sdk.Context, loanId string, adaptorSignatures []string) error {
 	if !k.HasLoan(ctx, loanId) {
 		return types.ErrLoanDoesNotExist
@@ -55,34 +52,10 @@ func (k Keeper) HandleRepaymentAdaptorSignatures(ctx sdk.Context, loanId string,
 	}
 
 	dlcMeta := k.GetDLCMeta(ctx, loanId)
-
-	repaymentCet := dlcMeta.RepaymentCet
-	if len(repaymentCet.DCMAdaptorSignatures) != 0 {
+	if len(dlcMeta.RepaymentCet.DCMAdaptorSignatures) != 0 {
 		return types.ErrRepaymentAdaptorSigsAlreadyExist
 	}
 
-	p, _ := psbt.NewFromRawBytes(bytes.NewReader([]byte(repaymentCet.Tx)), true)
-	if len(adaptorSignatures) != len(p.Inputs) {
-		return errorsmod.Wrap(types.ErrInvalidAdaptorSignatures, "mismatched adaptor signature number")
-	}
-
-	script, _ := hex.DecodeString(dlcMeta.MultisigScript)
-	adaptorPoint, _ := k.GetRepaymentCetAdaptorPoint(ctx, loanId)
-	dcmPubKey, _ := hex.DecodeString(loan.DCM)
-
-	for i, input := range p.Inputs {
-		sigHash, err := types.CalcTapscriptSigHash(p, i, input.SighashType, script)
-		if err != nil {
-			return err
-		}
-
-		adaptorSigBytes, _ := hex.DecodeString(adaptorSignatures[i])
-
-		if !adaptor.Verify(adaptorSigBytes, sigHash, dcmPubKey, adaptorPoint) {
-			return types.ErrInvalidAdaptorSignature
-		}
-	}
-
 	dlcMeta.RepaymentCet.DCMAdaptorSignatures = adaptorSignatures
 	k.SetDLCMeta(ctx, loanId, dlcMeta)
 

x/liquidation/keeper/settlement.go

@@ -10,11 +10,11 @@ import (
 	errorsmod "cosmossdk.io/errors"
 	sdk "github.com/cosmos/cosmos-sdk/types"
 
-	"github.com/sideprotocol/side/bitcoin/crypto/schnorr"
 	"github.com/sideprotocol/side/x/liquidation/types"
 )
 
 // HandleSettlementSignatures handles the settlement tx signatures
+// Assume that signatures have already been verified
 func (k Keeper) HandleSettlementSignatures(ctx sdk.Context, sender string, liquidationId uint64, signatures []string) error {
 	if !k.HasLiquidation(ctx, liquidationId) {
 		return types.ErrLiquidationDoesNotExist
@@ -30,25 +30,8 @@ func (k Keeper) HandleSettlementSignatures(ctx sdk.Context, sender string, liqui
 		return err
 	}
 
-	if len(signatures) != len(settlementTxPsbt.Inputs) {
-		return errorsmod.Wrap(types.ErrInvalidSignatures, "mismatched signature number")
-	}
-
-	dcmPubKey, _ := hex.DecodeString(liquidation.DCM)
-	verificationKey := types.GetTaprootOutKey(dcmPubKey)
-
-	for i, input := range settlementTxPsbt.Inputs {
-		sigHash, err := types.CalcTaprootSigHash(settlementTxPsbt, i, input.SighashType)
-		if err != nil {
-			return err
-		}
-
+	for i := range settlementTxPsbt.Inputs {
 		sigBytes, _ := hex.DecodeString(signatures[i])
-
-		if !schnorr.Verify(sigBytes, sigHash, verificationKey) {
-			return types.ErrInvalidSignature
-		}
-
 		settlementTxPsbt.Inputs[i].TaprootKeySpendSig = sigBytes
 	}
 

x/liquidation/types/liquidation.go

@@ -5,9 +5,6 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/btcsuite/btcd/btcec/v2/schnorr"
-	"github.com/btcsuite/btcd/txscript"
-
 	sdk "github.com/cosmos/cosmos-sdk/types"
 )
 
@@ -19,16 +16,6 @@ func GetPricePair(liquidation *Liquidation) string {
 	return fmt.Sprintf("%s%s", strings.ToUpper(liquidation.CollateralAsset.PriceSymbol), strings.ToUpper(liquidation.DebtAsset.PriceSymbol))
 }
 
-// GetTaprootOutKey gets the taproot output key according to the given pub key
-// Assume that the given pub key is valid taproot pub key
-func GetTaprootOutKey(pubKeyBytes []byte) []byte {
-	pubKey, _ := schnorr.ParsePubKey(pubKeyBytes)
-
-	taprootOutKey := txscript.ComputeTaprootKeyNoScript(pubKey)
-
-	return schnorr.SerializePubKey(taprootOutKey)
-}
-
 // ToScopedId converts the given local id to the scoped id
 func ToScopedId(id uint64) string {
 	return fmt.Sprintf("%d", id)

x/tss/keeper/msg_server.go

@@ -54,10 +54,16 @@ func (m msgServer) SubmitSignatures(goCtx context.Context, msg *types.MsgSubmitS
 	}
 
 	req := m.GetSigningRequest(ctx, msg.Id)
-	if req.Status != types.SigningStatus_SIGNING_STATUS_PENDING {
-		return nil, errorsmod.Wrap(types.ErrInvalidSigningStatus, "signing request non pending")
+	if req.Status == types.SigningStatus_SIGNING_STATUS_SIGNED {
+		return nil, errorsmod.Wrap(types.ErrInvalidSigningStatus, "signing request has been signed")
 	}
 
+	// verify signatures
+	if err := m.VerifySignatures(ctx, req, msg.Signatures); err != nil {
+		return nil, err
+	}
+
+	// callback to the module handler
 	if err := m.GetSigningRequestCompletedHandler(req.Module)(ctx, msg.Sender, req.Id, req.ScopedId, req.Type, req.Intent, req.PubKey, msg.Signatures); err != nil {
 		return nil, err
 	}