fix verify_signed_message and tests/robots/1/signed_message #1354
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
verify_signed_message was not checking for the validity of the signature. The documentation of python-gnupg is not clear about this, it says that the fiels are set just if the signature is valid. In this case tests/robots/1/signed_message was signed with the correct key but with the wrong digest-algo (SHA256 instead of SHA512) as expressed on the signature. Running gpg --verify tests/robots/1/signed_message returned: gpg: WARNING: signature digest conflict in message gpg: Can't check signature: General error and a non zero error code, but verify_signed_message was not catching this because verified.fingerprint was set even though verified.valid was False.
1 task
|
Thanks for figuring this super sneaky one @jerryfletcher21 ! This PR needs a lot of testing as we risk getting all invoices submitted rejected. |
Reckless-Satoshi
force-pushed
the
main
branch
2 times, most recently
from
9054b87 to
f9244e1
Compare
|
I managed to run an entire trade workflow with the Coordinator image generated from this commit https://hub.docker.com/layers/recksato/robosats/9e442c3/images/sha256-64343a7dc5b7c7b8805fc9e60ee8d74020c34da4a028a5c02ca492d48d9ce81a?context=explore |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
verify_signed_messagewas not checking for the validity of the signature. The documentation ofpython-gnupgis not clear about this, it says that the fields returned byverifyare set just if the signature is valid. In this casetests/robots/1/signed_messagewas signed with the correct key but with the wrong digest-algo (SHA256instead ofSHA512) as expressed on the signature.Running
gpg --verify tests/robots/1/signed_messageafter importing the key returned:and a non zero error code. Changing
Hash: SHA256intests/robots/1/signed_messagereturned no errors.verify_signed_messagecalled intest_verify_signed_messageinapi/tests/test_utils.pywas not catching this becauseverified.fingerprintwas set even thoughverified.validwasFalse.I have recreated the signature with
SHA512by running:Checklist before merging
pip install pre-commit, thenpre-commit install. Pre-commit installs git hooks that automatically check the codebase. If pre-commit fails when you commit your changes, please fix the problems it points out.