sphinx: add check for blinding point

When we are parsing onion messages, we must ensure that a blinding point
is provided.

Author: gijswijs

sphinx.go

@@ -622,6 +622,13 @@ func (r *Router) ProcessOnionPacket(onionPkt *OnionPacket, assocData []byte,
 		o(cfg)
 	}
 
+	// If this is an onion message, a blinding point must be provided and
+	// associated data must be nil.
+	if cfg.isOnionMessage && cfg.blindingPoint == nil && assocData != nil {
+		return nil, fmt.Errorf("blinding point must be provided for " +
+			"onion messages, and associated data must be nil")
+	}
+
 	// Compute the shared secret for this onion packet.
 	sharedSecret, err := r.generateSharedSecret(
 		onionPkt.EphemeralKey, cfg.blindingPoint,