Coracle/nostrlib
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

nip60: fix receive logic so we can't be easily tricked.

Browse Source
This commit is contained in:
fiatjaf
2025-05-06 16:39:21 -03:00
parent 93745cafff
commit a983fc74b5
1 changed files with 28 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

43
nip60/receive.go
View File

@@ -13,8 +13,9 @@ import (
// ReceiveOptions contains options for receiving tokens // ReceiveOptions contains options for receiving tokens
type ReceiveOptions struct { type ReceiveOptions struct {
IntoMint []string IntoMint []string
IsNutzap bool IsNutzap bool
AcceptTokensInSourceMintInTheWorseCase bool
} }
func (w *Wallet) Receive( func (w *Wallet) Receive(
@@ -28,7 +29,13 @@ func (w *Wallet) Receive(
} }
source, _ := nostr.NormalizeHTTPURL(mint) source, _ := nostr.NormalizeHTTPURL(mint)
destination := opts.IntoMint for i, url := range opts.IntoMint {
var err error
opts.IntoMint[i], err = nostr.NormalizeHTTPURL(url)
if err != nil {
return fmt.Errorf("invalid IntoMint URL '%s'", url)
}
}
swapSettings := swapSettings{} swapSettings := swapSettings{}
@@ -68,9 +75,9 @@ func (w *Wallet) Receive(
// if we have to swap to our own mint we do it now by getting a bolt11 invoice from our mint // if we have to swap to our own mint we do it now by getting a bolt11 invoice from our mint
// and telling the current mint to pay it // and telling the current mint to pay it
lightningSwap := slices.Contains(destination, source) lightningSwap := !slices.Contains(opts.IntoMint, source)
if lightningSwap { if lightningSwap {
for _, targetMint := range destination { for _, targetMint := range opts.IntoMint {
swappedProofs, err, status := lightningMeltMint( swappedProofs, err, status := lightningMeltMint(
ctx, ctx,
newProofs, newProofs,
@@ -79,18 +86,20 @@ func (w *Wallet) Receive(
targetMint, targetMint,
) )
if err != nil { if err != nil {
if status == tryAnotherTargetMint { switch status {
case tryAnotherTargetMint:
continue continue
} case manualActionRequired:
if status == manualActionRequired {
return fmt.Errorf("failed to swap (needs manual action): %w", err) return fmt.Errorf("failed to swap (needs manual action): %w", err)
} case nothingCanBeDone:
if status == nothingCanBeDone {
return fmt.Errorf("failed to swap (nothing can be done, we probably lost the money): %w", err) return fmt.Errorf("failed to swap (nothing can be done, we probably lost the money): %w", err)
case storeTokenFromSourceMint:
if opts.AcceptTokensInSourceMintInTheWorseCase {
goto saveproofs
} else {
return fmt.Errorf("unable to swap out of source mint: %w", err)
}
} }
// if we get here that means we still have our proofs from the untrusted mint, so save those
goto saveproofs
} else { } else {
// everything went well // everything went well
newProofs = swappedProofs newProofs = swappedProofs
@@ -99,8 +108,12 @@ func (w *Wallet) Receive(
} }
} }
// if we got here that means we ran out of our trusted mints to swap to, so save the untrusted proofs // if we got here that means we ran out of our trusted mints to swap to
goto saveproofs if opts.AcceptTokensInSourceMintInTheWorseCase {
goto saveproofs
} else {
return fmt.Errorf("unable to swap in to one of our mints: %w", err)
}
} }
saveproofs: saveproofs: