projects / rust-lightning / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Check tx output matches monitor output data (and is sufficient len)
[rust-lightning] / src / ln / channelmonitor.rs
diff --git a/src/ln/channelmonitor.rs b/src/ln/channelmonitor.rs
index 7faeae68a0c1b6be72f446572e5ad0c0f8fa7aab..79900e328933740fc33e3c6dbc037677455bc642 100644 (file)
--- a/src/ln/channelmonitor.rs
+++ b/src/ln/channelmonitor.rs
@@ -1157,6 +1157,12 @@ impl ChannelMonitor {
                                        }
 
                                        for (idx, htlc) in per_commitment_data.iter().enumerate() {
+                                               let expected_script = chan_utils::get_htlc_redeemscript_with_explicit_keys(&htlc, &a_htlc_key, &b_htlc_key, &revocation_pubkey);
+                                               if htlc.transaction_output_index as usize >= tx.output.len() ||
+                                                               tx.output[htlc.transaction_output_index as usize].value != htlc.amount_msat / 1000 ||
+                                                               tx.output[htlc.transaction_output_index as usize].script_pubkey != expected_script.to_v0_p2wsh() {
+                                                       return (txn_to_broadcast, (commitment_txid, watch_outputs), spendable_outputs); // Corrupted per_commitment_data, fuck this user
+                                               }
                                                if let Some(payment_preimage) = self.payment_preimages.get(&htlc.payment_hash) {
                                                        let input = TxIn {
                                                                previous_output: BitcoinOutPoint {
Personal fork of Rust-Lightning. Upstream is https://github.com/rust-bitcoin/rust-lightning