Fix leak of invoice for sender

ekzyis · ekzyis · commit a0a9903da33d · 2025-03-20T19:54:19.000-05:00
diff --git a/api/resolvers/wallet.js b/api/resolvers/wallet.js
@@ -767,10 +767,8 @@ const resolvers = {
         }
       }
 
-      if (invoice) {
-        const inv = await models.invoice.findUnique({ where: { id: invoice.id } })
-        return await logContextFromBolt11(inv.bolt11)
-      }
+      // XXX never return invoice as context because it might leak sensitive sender details
+      // if (invoice) { ... }
 
       return context
     }
diff --git a/worker/paidAction.js b/worker/paidAction.js
@@ -443,6 +443,7 @@ export async function paidActionCanceling ({ data: { invoiceId, ...args }, model
       const decoded = await parsePaymentRequest({ request: bolt11 })
       logger.info(
         `invoice for ${formatSats(msatsToSats(decoded.mtokens))} canceled by payer`, {
+          bolt11,
           invoiceId: transitionedInvoice.id
         })
     }

Original file line number	Diff line number	Diff line change
`@@ -767,10 +767,8 @@ const resolvers = {`
`767`	`767`	`}`
`768`	`768`	`}`
`769`	`769`
`770`		`- if (invoice) {`
`771`		`- const inv = await models.invoice.findUnique({ where: { id: invoice.id } })`
`772`		`- return await logContextFromBolt11(inv.bolt11)`
`773`		`- }`
	`770`	`+ // XXX never return invoice as context because it might leak sensitive sender details`
	`771`	`+ // if (invoice) { ... }`
`774`	`772`
`775`	`773`	`return context`
`776`	`774`	`}`
Original file line number	Diff line number	Diff line change
`@@ -443,6 +443,7 @@ export async function paidActionCanceling ({ data: { invoiceId, ...args }, model`
`443`	`443`	`const decoded = await parsePaymentRequest({ request: bolt11 })`
`444`	`444`	`logger.info(`
`445`	`445`	`invoice for ${formatSats(msatsToSats(decoded.mtokens))} canceled by payer`, {
	`446`	`+ bolt11,`
`446`	`447`	`invoiceId: transitionedInvoice.id`
`447`	`448`	`})`
`448`	`449`	`}`