add signmessagewithkey RPC

signmessagewithkey: allows to sign a message with a key associated with
one bitcoin address in our wallet.

Changelog-Added: add a new rpc command signmessagewithkey to sign input messages with keys from our wallet.

Signed-off-by: Lagrang3 <lagrang3@protonmail.com>

Author: Lagrang3

contrib/msggen/msggen/schema.json

@@ -32878,6 +32878,99 @@
         }
       ]
     },
+    "signmessagewithkey.json": {
+      "$schema": "../rpc-schema-draft.json",
+      "type": "object",
+      "rpc": "signmessagewithkey",
+      "title": "Command to create a signature using a key from the wallet",
+      "description": [
+        "The **signmessagewithkey** RPC command creates a digital signature of *message* using the key associated with the address provided in the input.",
+        "The signature scheme follows the BIP137 specification."
+      ],
+      "added": "v25.05",
+      "request": {
+        "required": [
+          "message",
+          "address"
+        ],
+        "additionalProperties": false,
+        "properties": {
+          "message": {
+            "type": "string",
+            "description": [
+              "Less than 65536 characters long message to be signed by the node."
+            ]
+          },
+          "address": {
+            "type": "string",
+            "description": [
+              "A Bitcoin accepted type address for lookup in the list of addresses issued to date.",
+              "Only P2WPKH type addresses are supported"
+            ]
+          }
+        }
+      },
+      "response": {
+        "required": [
+          "address",
+          "pubkey",
+          "signature",
+          "base64"
+        ],
+        "additionalProperties": false,
+        "properties": {
+          "address": {
+            "type": "string",
+            "description": [
+              "The bitcoin address used for signing."
+            ]
+          },
+          "pubkey": {
+            "type": "pubkey",
+            "description": [
+              "The public key associated with the bitcoin address provided."
+            ]
+          },
+          "signature": {
+            "type": "hex",
+            "description": [
+              "The signature."
+            ]
+          },
+          "base64": {
+            "type": "string",
+            "description": [
+              "The signature encoded in base64."
+            ]
+          }
+        }
+      },
+      "author": [
+        "Lagrang3 <<lagrang3@protonmail.com>> is mainly responsible."
+      ],
+      "see_also": [],
+      "resources": [
+        "Main web site: <https://github.com/ElementsProject/lightning>"
+      ],
+      "examples": [
+        {
+          "request": {
+            "id": "example:signmessagewithkey#1",
+            "method": "signmessagewithkey",
+            "params": {
+              "message": "a test message",
+              "address": "bcrt1qgrh5vtf63mtayzhxwp480aww3j3qfr5qpq65un"
+            }
+          },
+          "response": {
+            "address": "bcrt1qgrh5vtf63mtayzhxwp480aww3j3qfr5qpq65un",
+            "pubkey": "03bc4a456585ba21ba26af4a0e5399ec76410b2e0ca67db0f3bcb2f47b232fa4b0",
+            "signature": "28564edf260a72d991cbb38cf608e293124f8b8f478d13d4544fe27b9d76c65df1284ca395ccdfd3d5f151729ef18f56c028f5f860155d6aa4d0aaaa176a00db01",
+            "base64": "KFZO3yYKctmRy7OM9gjikxJPi49HjRPUVE/ie512xl3xKEyjlczf09XxUXKe8Y9WwCj1+GAVXWqk0KqqF2oA2wE="
+          }
+        }
+      ]
+    },
     "signpsbt.json": {
       "$schema": "../rpc-schema-draft.json",
       "type": "object",

doc/schemas/signmessagewithkey.json

@@ -0,0 +1,93 @@
+{
+  "$schema": "../rpc-schema-draft.json",
+  "type": "object",
+  "rpc": "signmessagewithkey",
+  "title": "Command to create a signature using a key from the wallet",
+  "description": [
+    "The **signmessagewithkey** RPC command creates a digital signature of *message* using the key associated with the address provided in the input.",
+    "The signature scheme follows the BIP137 specification."
+  ],
+  "added": "v25.05",
+  "request": {
+    "required": [
+      "message",
+      "address"
+    ],
+    "additionalProperties": false,
+    "properties": {
+      "message": {
+        "type": "string",
+        "description": [
+          "Less than 65536 characters long message to be signed by the node."
+        ]
+      },
+      "address": {
+        "type": "string",
+        "description": [
+          "A Bitcoin accepted type address for lookup in the list of addresses issued to date.",
+          "Only P2WPKH type addresses are supported"
+        ]
+      }
+    }
+  },
+  "response": {
+    "required": [
+      "address",
+      "pubkey",
+      "signature",
+      "base64"
+    ],
+    "additionalProperties": false,
+    "properties": {
+      "address": {
+        "type": "string",
+        "description": [
+          "The bitcoin address used for signing."
+        ]
+      },
+      "pubkey": {
+        "type": "pubkey",
+        "description": [
+          "The public key associated with the bitcoin address provided."
+        ]
+      },
+      "signature": {
+        "type": "hex",
+        "description": [
+          "The signature."
+        ]
+      },
+      "base64": {
+        "type": "string",
+        "description": [
+          "The signature encoded in base64."
+        ]
+      }
+    }
+  },
+  "author": [
+    "Lagrang3 <<lagrang3@protonmail.com>> is mainly responsible."
+  ],
+  "see_also": [],
+  "resources": [
+    "Main web site: <https://github.com/ElementsProject/lightning>"
+  ],
+  "examples": [
+    {
+      "request": {
+        "id": "example:signmessagewithkey#1",
+        "method": "signmessagewithkey",
+        "params": {
+          "message": "a test message",
+          "address": "bcrt1qgrh5vtf63mtayzhxwp480aww3j3qfr5qpq65un"
+        }
+      },
+      "response": {
+        "address": "bcrt1qgrh5vtf63mtayzhxwp480aww3j3qfr5qpq65un",
+        "pubkey": "03bc4a456585ba21ba26af4a0e5399ec76410b2e0ca67db0f3bcb2f47b232fa4b0",
+        "signature": "28564edf260a72d991cbb38cf608e293124f8b8f478d13d4544fe27b9d76c65df1284ca395ccdfd3d5f151729ef18f56c028f5f860155d6aa4d0aaaa176a00db01",
+        "base64": "KFZO3yYKctmRy7OM9gjikxJPi49HjRPUVE/ie512xl3xKEyjlczf09XxUXKe8Y9WwCj1+GAVXWqk0KqqF2oA2wE="
+      }
+    }
+  ]
+}

tests/autogenerate-rpc-examples.py

@@ -1211,6 +1211,8 @@ def generate_utils_examples(l1, l2, l3, l4, l5, l6, c23_2, c34_2, inv_l11, inv_l
         update_example(node=l2, method='signmessage', params={'message': 'message for you'})
         update_example(node=l2, method='checkmessage', params={'message': 'testcase to check new rpc error', 'zbase': 'd66bqz3qsku5fxtqsi37j11pci47ydxa95iusphutggz9ezaxt56neh77kxe5hyr41kwgkncgiu94p9ecxiexgpgsz8daoq4tw8kj8yx', 'pubkey': '03be3b0e9992153b1d5a6e1623670b6c3663f72ce6cf2e0dd39c0a373a7de5a3b7'})
         update_example(node=l2, method='checkmessage', params={'message': 'this is a test!', 'zbase': 'd6tqaeuonjhi98mmont9m4wag7gg4krg1f4txonug3h31e9h6p6k6nbwjondnj46dkyausobstnk7fhyy998bhgc1yr98dfmhb4k54d7'})
+        addr = l2.rpc.newaddr('bech32')['bech32']
+        update_example(node=l2, method='signmessagewithkey', params={'message': 'a test message', 'address': addr})
         decodepay_res1 = update_example(node=l2, method='decodepay', params={'bolt11': inv_l11['bolt11']})
         update_example(node=l2, method='decode', params=[rune_l21['rune']])
         decode_res2 = update_example(node=l2, method='decode', params=[inv_l22['bolt11']])

tests/test_misc.py

@@ -1,3 +1,4 @@
+import base64
 from bitcoin.rpc import RawProxy
 from decimal import Decimal
 from fixtures import *  # noqa: F401,F403
@@ -2484,6 +2485,42 @@ def test_signmessage(node_factory):
         l2.rpc.checkmessage(message="wrong zbase format", zbase="wrong zbase format")
 
 
+def test_signmessagewithkey(node_factory, chainparams):
+    l1, l2 = node_factory.get_nodes(2)
+    message = "a test message"
+    addr_bech32 = l1.rpc.newaddr("bech32")["bech32"]
+    addr_other = l2.rpc.newaddr("bech32")["bech32"]
+    if TEST_NETWORK != "liquid-regtest":
+        # refuse to sign if the address is not a P2WPKH
+        addr_p2tr = l1.rpc.newaddr("p2tr")["p2tr"]
+        with pytest.raises(
+            RpcError, match=r"Address is not p2wpkh and it is not supported"
+        ):
+            l1.rpc.signmessagewithkey(message, addr_p2tr)
+
+    # refuse to sign if the address does not belong to us
+    with pytest.raises(
+        RpcError, match=r"Address is not found in the wallet\'s database"
+    ):
+        l1.rpc.signmessagewithkey(message, addr_other)
+    response = l1.rpc.signmessagewithkey(message, addr_bech32)
+    assert response["address"] == addr_bech32
+    signature = base64.b64decode(response["base64"])
+    assert signature.hex() == response["signature"]
+    assert (
+        subprocess.check_output(
+            [
+                "devtools/bip137-verifysignature",
+                message,
+                response["signature"],
+                response["address"],
+                chainparams["name"],
+            ]
+        ).decode("utf-8")
+        == "Signature is valid!\n"
+    )
+
+
 def test_include(node_factory):
     l1 = node_factory.get_node(start=False)
 

wallet/walletrpc.c

@@ -4,6 +4,7 @@
 #include <ccan/array_size/array_size.h>
 #include <ccan/cast/cast.h>
 #include <common/addr.h>
+#include <common/base64.h>
 #include <common/bech32.h>
 #include <common/configdir.h>
 #include <common/json_command.h>
@@ -1102,3 +1103,117 @@ static const struct json_command sendpsbt_command = {
 };
 
 AUTODATA(json_command, &sendpsbt_command);
+
+static struct command_result *
+json_signmessagewithkey(struct command *cmd, const char *buffer,
+			const jsmntok_t *obj UNNEEDED, const jsmntok_t *params)
+{
+	/* decoding the address */
+	const u8 *scriptpubkey;
+	const char *message;
+
+	/* from wallet BIP32 */
+	struct pubkey pubkey;
+
+	if (!param(
+		cmd, buffer, params,
+                p_req("message", param_string, &message),
+		p_req("address", param_bitcoin_address, &scriptpubkey),
+                NULL))
+		return command_param_failed();
+
+	const size_t script_len = tal_bytelen(scriptpubkey);
+
+	/* FIXME: we already had the address from the input */
+	char *addr;
+	addr = encode_scriptpubkey_to_addr(tmpctx, chainparams, scriptpubkey);
+
+	if (!is_p2wpkh(scriptpubkey, script_len, NULL)) {
+		/* FIXME add support for BIP 322 */
+		return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
+				    "Address is not p2wpkh and "
+				    "it is not supported for signing");
+	}
+
+	if (!hsm_capable(cmd->ld, WIRE_HSMD_BIP137_SIGN_MESSAGE)) {
+		return command_fail(
+		    cmd, JSONRPC2_INVALID_PARAMS,
+		    "HSM does not support signing BIP137 signing.");
+	}
+
+	const u32 bip32_max_index =
+	    db_get_intvar(cmd->ld->wallet->db, "bip32_max_index", 0);
+        bool match_found = false;
+	u32 keyidx;
+        enum addrtype addrtype;
+
+	/* loop over all generated keys, find a matching key */
+	for (keyidx = 1; keyidx <= bip32_max_index; keyidx++) {
+		bip32_pubkey(cmd->ld, &pubkey, keyidx);
+		u8 *redeemscript_p2wpkh;
+		char *out_p2wpkh = encode_pubkey_to_addr(
+		    cmd, &pubkey, ADDR_BECH32, &redeemscript_p2wpkh);
+		if (!out_p2wpkh) {
+			abort();
+		}
+		/* wallet_get_addrtype fails for entries prior to v24.11, all
+		 * address types are assumed in that case. */
+		if (!wallet_get_addrtype(cmd->ld->wallet, keyidx, &addrtype))
+			addrtype = ADDR_ALL;
+		if (streq(addr, out_p2wpkh) &&
+		    (addrtype == ADDR_BECH32 || addrtype == ADDR_ALL)) {
+			match_found = true;
+			break;
+		}
+	}
+
+	if (!match_found) {
+		return command_fail(
+		    cmd, JSONRPC2_INVALID_PARAMS,
+		    "Address is not found in the wallet's database");
+	}
+
+	/* wire to hsmd a sign request */
+	u8 *msg = towire_hsmd_bip137_sign_message(
+	    cmd, tal_dup_arr(tmpctx, u8, (u8 *)message, strlen(message), 0),
+	    keyidx);
+	if (!wire_sync_write(cmd->ld->hsm_fd, take(msg))) {
+		fatal("Could not write sign_with_key to HSM: %s",
+		      strerror(errno));
+	}
+
+	/* read form hsmd a sign reply */
+	msg = wire_sync_read(cmd, cmd->ld->hsm_fd);
+
+	int recid;
+	u8 sig[65];
+	secp256k1_ecdsa_recoverable_signature rsig;
+
+	if (!fromwire_hsmd_bip137_sign_message_reply(msg, &rsig)) {
+		return command_fail(cmd, JSONRPC2_INVALID_PARAMS,
+				    "HSM gave bad sign_with_key_reply %s",
+				    tal_hex(tmpctx, msg));
+	}
+
+	secp256k1_ecdsa_recoverable_signature_serialize_compact(
+	    secp256k1_ctx, sig + 1, &recid, &rsig);
+        /* this is the header value for P2WPKH specified in BIP137 */
+	sig[0] = recid + 39;
+
+	/* FIXME: Given the fact that we plan to extend support for BIP322
+         * signature in the future making a pubkey output here makes less sense. */
+	struct json_stream *response;
+	response = json_stream_success(cmd);
+	json_add_string(response, "address", addr);
+	json_add_pubkey(response, "pubkey", &pubkey);
+	json_add_hex(response, "signature", sig, sizeof(sig));
+	json_add_string(response, "base64",
+			b64_encode(tmpctx, sig, sizeof(sig)));
+	return command_success(cmd, response);
+}
+
+static const struct json_command signmessagewithkey_command = {
+	"signmessagewithkey",
+	json_signmessagewithkey
+};
+AUTODATA(json_command, &signmessagewithkey_command);