Merge branch 'lnd-14-2'

Author: guggero

.gitignore

@@ -11,5 +11,8 @@
 # Output of the go coverage tool, specifically when used with LiteIDE
 *.out
 
+# Vim files
+*.swp
+
 # Dependency directories (remove the comment below to include it)
 # vendor/

README.md

@@ -26,8 +26,9 @@ The current compatibility matrix reads as follows:
 
 | `lndclient` git tag          | `lnd` version in `go.mod` | minimum required `lnd` version | 
 | ---------------------------- | ------------------------- | ------------------------------ |
-| [`v0.12.0-0`](https://github.com/lightninglabs/lndclient/blob/v0.12.0-0) | `1efef51268d6` | `v0.11.1-beta` |
-| `master` / [`v0.11.1-5`](https://github.com/lightninglabs/lndclient/blob/v0.11.1-5) | `v0.11.1-beta` | `v0.11.1-beta` | 
+| [`v0.14.2-2`](https://github.com/lightninglabs/lndclient/blob/v0.14.2-2) | `v0.14.2-beta` | `v0.14.2-beta` |
+| [`v0.13.0-10`](https://github.com/lightninglabs/lndclient/blob/v0.13.0-10) | `lnd @ d9f0f07142ea` | `v0.13.0-beta` |
+| `master` / [`v0.12.0-13`](https://github.com/lightninglabs/lndclient/blob/v0.12.0-13) | `v0.12.0-beta` | `v0.12.0-beta` |
 
 
 By default, `lndclient` requires (and enforces) the following RPC subservers to

basic_client.go

@@ -1,6 +1,7 @@
 package lndclient
 
 import (
+	"encoding/hex"
 	"fmt"
 	"io/ioutil"
 	"path/filepath"
@@ -13,23 +14,27 @@ import (
 	macaroon "gopkg.in/macaroon.v2"
 )
 
-// BasicClientOption is a functional option argument that allows adding arbitrary
-// lnd basic client configuration overrides, without forcing existing users of
-// NewBasicClient to update their invocation. These are always processed in
-// order, with later options overriding earlier ones.
+// BasicClientOption is a functional option argument that allows adding
+// arbitrary lnd basic client configuration overrides, without forcing existing
+// users of NewBasicClient to update their invocation. These are always
+// processed in order, with later options overriding earlier ones.
 type BasicClientOption func(*basicClientOptions)
 
 // basicClientOptions is a set of options that can configure the lnd client
 // returned by NewBasicClient.
 type basicClientOptions struct {
 	macFilename string
+	tlsData     string
+	macData     string
+	insecure    bool
+	systemCerts bool
 }
 
-// defaultBasicClientOptions returns a basicClientOptions set to lnd basic client
-// defaults.
+// defaultBasicClientOptions returns a basicClientOptions set to lnd basic
+// client defaults.
 func defaultBasicClientOptions() *basicClientOptions {
 	return &basicClientOptions{
-		macFilename: defaultAdminMacaroonFilename,
+		macFilename: adminMacFilename,
 	}
 }
 
@@ -41,9 +46,43 @@ func MacFilename(macFilename string) BasicClientOption {
 	}
 }
 
+// TLSData is a basic client option that sets TLS data (encoded in PEM format)
+// directly instead of loading them from a file.
+func TLSData(tlsData string) BasicClientOption {
+	return func(bc *basicClientOptions) {
+		bc.tlsData = tlsData
+	}
+}
+
+// MacaroonData is a basic client option that sets macaroon data (encoded as hex
+// string) directly instead of loading it from a file.
+func MacaroonData(macData string) BasicClientOption {
+	return func(bc *basicClientOptions) {
+		bc.macData = macData
+	}
+}
+
+// Insecure allows the basic client to establish an insecure (non-TLS)
+// connection to the RPC server.
+func Insecure() BasicClientOption {
+	return func(bc *basicClientOptions) {
+		bc.insecure = true
+	}
+}
+
+// SystemCerts instructs the basic client to use the system's certificate trust
+// store for verifying the TLS certificate of the RPC server.
+func SystemCerts() BasicClientOption {
+	return func(bc *basicClientOptions) {
+		bc.systemCerts = true
+	}
+}
+
 // applyBasicClientOptions updates a basicClientOptions set with functional
 // options.
-func (bc *basicClientOptions) applyBasicClientOptions(options ...BasicClientOption) {
+func (bc *basicClientOptions) applyBasicClientOptions(
+	options ...BasicClientOption) {
+
 	for _, option := range options {
 		option(bc)
 	}
@@ -53,9 +92,7 @@ func (bc *basicClientOptions) applyBasicClientOptions(options ...BasicClientOpti
 // "basic" as it falls back to expected defaults if the arguments aren't
 // provided.
 func NewBasicClient(lndHost, tlsPath, macDir, network string,
-	basicOptions ...BasicClientOption) (
-
-	lnrpc.LightningClient, error) {
+	basicOptions ...BasicClientOption) (lnrpc.LightningClient, error) {
 
 	conn, err := NewBasicConn(
 		lndHost, tlsPath, macDir, network, basicOptions...,
@@ -70,67 +107,93 @@ func NewBasicClient(lndHost, tlsPath, macDir, network string,
 // NewBasicConn creates a new basic gRPC connection to lnd. We call this
 // connection "basic" as it falls back to expected defaults if the arguments
 // aren't provided.
-func NewBasicConn(lndHost, tlsPath, macDir, network string,
-	basicOptions ...BasicClientOption) (
-
-	*grpc.ClientConn, error) {
+func NewBasicConn(lndHost string, tlsPath, macDir, network string,
+	basicOptions ...BasicClientOption) (*grpc.ClientConn, error) {
 
-	if tlsPath == "" {
-		tlsPath = defaultTLSCertPath
+	creds, mac, err := parseTLSAndMacaroon(
+		tlsPath, macDir, network, basicOptions...,
+	)
+	if err != nil {
+		return nil, err
 	}
 
-	// Load the specified TLS certificate and build transport credentials
-	creds, err := credentials.NewClientTLSFromFile(tlsPath, "")
+	// Now we append the macaroon credentials to the dial options.
+	cred, err := macaroons.NewMacaroonCredential(mac)
 	if err != nil {
-		return nil, err
+		return nil, fmt.Errorf("error creating macaroon credential: %v",
+			err)
 	}
 
 	// Create a dial options array.
 	opts := []grpc.DialOption{
 		grpc.WithTransportCredentials(creds),
+		grpc.WithPerRPCCredentials(cred),
+		grpc.WithDefaultCallOptions(maxMsgRecvSize),
 	}
 
-	if macDir == "" {
-		macDir = filepath.Join(
-			defaultLndDir, defaultDataDir, defaultChainSubDir,
-			"bitcoin", network,
-		)
+	// We need to use a custom dialer so we can also connect to unix sockets
+	// and not just TCP addresses.
+	opts = append(
+		opts, grpc.WithContextDialer(
+			lncfg.ClientAddressDialer(defaultRPCPort),
+		),
+	)
+	conn, err := grpc.Dial(lndHost, opts...)
+	if err != nil {
+		return nil, fmt.Errorf("unable to connect to RPC server: %v",
+			err)
 	}
 
+	return conn, nil
+}
+
+// parseTLSAndMacaroon looks to see if the TLS certificate and macaroon were
+// passed in as a path or as straight-up data, and processes it accordingly, so
+// it can be passed into grpc to establish a connection with LND.
+func parseTLSAndMacaroon(tlsPath, macDir, network string,
+	basicOptions ...BasicClientOption) (credentials.TransportCredentials,
+	*macaroon.Macaroon, error) {
+
 	// Starting with the set of default options, we'll apply any specified
 	// functional options to the basic client.
 	bco := defaultBasicClientOptions()
 	bco.applyBasicClientOptions(basicOptions...)
 
-	macPath := filepath.Join(macDir, bco.macFilename)
+	creds, err := GetTLSCredentials(
+		bco.tlsData, tlsPath, bco.insecure, bco.systemCerts,
+	)
+	if err != nil {
+		return nil, nil, err
+	}
 
-	// Load the specified macaroon file.
-	macBytes, err := ioutil.ReadFile(macPath)
-	if err == nil {
-		// Only if file is found
-		mac := &macaroon.Macaroon{}
-		if err = mac.UnmarshalBinary(macBytes); err != nil {
-			return nil, fmt.Errorf("unable to decode macaroon: %v",
-				err)
+	var macBytes []byte
+	mac := &macaroon.Macaroon{}
+	if bco.macData != "" {
+		macBytes, err = hex.DecodeString(bco.macData)
+		if err != nil {
+			return nil, nil, err
 		}
+	} else {
+		if macDir == "" {
+			macDir = filepath.Join(
+				defaultLndDir, defaultDataDir, defaultChainSubDir,
+				"bitcoin", network,
+			)
+		}
+
+		macPath := filepath.Join(macDir, bco.macFilename)
 
-		// Now we append the macaroon credentials to the dial options.
-		cred := macaroons.NewMacaroonCredential(mac)
-		opts = append(opts, grpc.WithPerRPCCredentials(cred))
-		opts = append(opts, grpc.WithDefaultCallOptions(maxMsgRecvSize))
+		// Load the specified macaroon file.
+		macBytes, err = ioutil.ReadFile(macPath)
+		if err != nil {
+			return nil, nil, err
+		}
 	}
 
-	// We need to use a custom dialer so we can also connect to unix sockets
-	// and not just TCP addresses.
-	opts = append(
-		opts, grpc.WithContextDialer(
-			lncfg.ClientAddressDialer(defaultRPCPort),
-		),
-	)
-	conn, err := grpc.Dial(lndHost, opts...)
-	if err != nil {
-		return nil, fmt.Errorf("unable to connect to RPC server: %v", err)
+	if err = mac.UnmarshalBinary(macBytes); err != nil {
+		return nil, nil, fmt.Errorf("unable to decode macaroon: %v",
+			err)
 	}
 
-	return conn, nil
+	return creds, mac, nil
 }

basic_client_test.go

@@ -0,0 +1,71 @@
+package lndclient
+
+import (
+	"encoding/hex"
+	"io/ioutil"
+	"os"
+	"testing"
+
+	"github.com/stretchr/testify/require"
+)
+
+// Tests that NewBasicConn works correctly when macaroon and TLS certificate
+//  data are passed in directly instead of being supplied as file paths.
+func TestParseTLSAndMacaroon(t *testing.T) {
+
+	tlsData := `-----BEGIN CERTIFICATE-----
+MIIDhzCCAm+gAwIBAgIUEkmdMOVPL92AwgsSYFFBvz4ilmUwDQYJKoZIhvcNAQEL
+BQAwUzELMAkGA1UEBhMCVVMxCzAJBgNVBAgMAk1OMRQwEgYDVQQHDAtNaW5uZWFw
+b2xpczEhMB8GA1UECgwYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMB4XDTIxMDQy
+MzA2NDkyNVoXDTIxMDUyMzA2NDkyNVowUzELMAkGA1UEBhMCVVMxCzAJBgNVBAgM
+Ak1OMRQwEgYDVQQHDAtNaW5uZWFwb2xpczEhMB8GA1UECgwYSW50ZXJuZXQgV2lk
+Z2l0cyBQdHkgTHRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnK21
+qJmWWs4Nwz2f2ZbTsDxJAumgDJdZ9JKsJBrqjFf7+25ip+1hIB15P1UHHPhtW5Yp
+P9Xm50z8W2RP2pHyCFB09cwKgdqPsS8Q2tzr5DINt+eNYa5JpxnWXM5ZqmYD7Zg0
+wSMVW3FuAWFpjlzNWs/UHSuDShiQLoMhl2xAjiGSsHbY9plV438/kypSKS+7wjxe
+0TJaTv/kWlHhQkXvnLqIMhD8J+ScGVSSk0OFgWiRmcCGDsLZgEGklHklC7ZKrr+Q
+Am2MGbvUaGuwW+R5d2ZaQRbQ5UVhHcna2MxUn6MzSjbEhpIsMKZoYVXCb0GFObcq
+UsLUOrIqpIyngd4G9wIDAQABo1MwUTAdBgNVHQ4EFgQU0lZJ2gp/RM79oAegXr/H
+sU+GU3YwHwYDVR0jBBgwFoAU0lZJ2gp/RM79oAegXr/HsU+GU3YwDwYDVR0TAQH/
+BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEAly744gq/LPuL0EnEbfxXrVqmvWh6
+t9kNljXybVjQNTZ00e4zGknOA3VM29JWOEYyQ7ut/tP+kquWLdfOq/Lehe7vnBSn
+lPR6IYbba9ck5AvPZgGG9fEncKxeUoI0ltI/luycmWL7Eb9j3128diIwljf9JXNT
+I/LThs8Nl5RSiMOuGer0e934vLlZlrEEI4rWs3DKK56WjrMeVf5dhvYK44usNwUh
+vKgMVFsUeyLLTN0EuZjGoFdi3lfLQo3vRwLD6h/EDa5uWK14pZXDQ30+fT2RjuVD
+XhkpT5dliEGFLNe6OOgeWTU1JpEXfCud/GImtNMHQi4EDWQfvWuCNGhOoQ==
+-----END CERTIFICATE-----`
+
+	macData := "0201047465737402067788991234560000062052d26ed139ea5af8" +
+		"3e675500c4ccb2471f62191b745bab820f129e5588a255d2"
+
+	// Make sure it works when data is passed in.
+	_, _, err := parseTLSAndMacaroon(
+		"", "", "mainnet", MacFilename(""), TLSData(tlsData),
+		MacaroonData(macData),
+	)
+	require.NoError(t, err)
+
+	// Now let's write the data to a file to make sure parseTLSAndMacaroon
+	// parses that properly as well.
+	tempDirPath, err := ioutil.TempDir("", ".testCreds")
+	require.NoError(t, err)
+	defer os.RemoveAll(tempDirPath)
+
+	certPath := tempDirPath + "/tls.cert"
+	tlsPEMBytes := []byte(tlsData)
+
+	err = ioutil.WriteFile(certPath, tlsPEMBytes, 0644)
+	require.NoError(t, err)
+
+	macPath := tempDirPath + "/test.macaroon"
+	macBytes, err := hex.DecodeString(macData)
+	require.NoError(t, err)
+
+	err = ioutil.WriteFile(macPath, macBytes, 0644)
+	require.NoError(t, err)
+
+	_, _, err = parseTLSAndMacaroon(
+		certPath, macPath, "mainnet", MacFilename(""),
+	)
+	require.NoError(t, err)
+}

chainnotifier_client.go

@@ -35,7 +35,7 @@ type chainNotifierClient struct {
 	wg sync.WaitGroup
 }
 
-func newChainNotifierClient(conn *grpc.ClientConn,
+func newChainNotifierClient(conn grpc.ClientConnInterface,
 	chainMac serializedMacaroon, timeout time.Duration) *chainNotifierClient {
 
 	return &chainNotifierClient{

go.mod

@@ -1,13 +1,16 @@
 module github.com/lightninglabs/lndclient
 
 require (
-	github.com/btcsuite/btcd v0.21.0-beta.0.20201208033208-6bd4c64a54fa
+	github.com/btcsuite/btcd v0.22.0-beta.0.20211005184431-e3449998be39
 	github.com/btcsuite/btclog v0.0.0-20170628155309-84c8d2346e9f
-	github.com/btcsuite/btcutil v1.0.2
-	github.com/btcsuite/btcwallet/wtxmgr v1.2.0
-	github.com/lightningnetwork/lnd v0.12.0-beta
-	github.com/stretchr/testify v1.5.1
-	google.golang.org/grpc v1.24.0
+	github.com/btcsuite/btcutil v1.0.3-0.20210527170813-e2ba6805a890
+	github.com/btcsuite/btcwallet/wtxmgr v1.3.1-0.20210822222949-9b5a201c344c
+	github.com/lightningnetwork/lnd v0.14.2-beta
+	github.com/lightningnetwork/lnd/kvdb v1.3.0
+	github.com/stretchr/testify v1.7.0
+	go.etcd.io/bbolt v1.3.6
+	google.golang.org/grpc v1.38.0
+	gopkg.in/macaroon-bakery.v2 v2.0.1
 	gopkg.in/macaroon.v2 v2.1.0
 )