From 8930db7ce95f523bde8d4c0a8b60d005cb0f04c3 Mon Sep 17 00:00:00 2001
From: jholdstock <jholdstock@decred.org>
Date: Thu, 6 Jun 2024 11:10:33 +0100
Subject: [PATCH] vspadmin: Reject private keys in fee xpub config.

The provided key should always be a public key, enforcing this in
software provides an extra safety net for users.
---
 cmd/vspadmin/main.go | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/cmd/vspadmin/main.go b/cmd/vspadmin/main.go
index 1b6ef27b..132f28d4 100644
--- a/cmd/vspadmin/main.go
+++ b/cmd/vspadmin/main.go
@@ -5,6 +5,7 @@
 package main
 
 import (
+	"errors"
 	"fmt"
 	"os"
 	"path/filepath"
@@ -54,11 +55,16 @@ func createDatabase(homeDir string, feeXPub string, network *config.Network) err
 	}
 
 	// Ensure provided xpub is a valid key for the selected network.
-	_, err := hdkeychain.NewKeyFromString(feeXPub, network.Params)
+	feeXpub, err := hdkeychain.NewKeyFromString(feeXPub, network.Params)
 	if err != nil {
 		return fmt.Errorf("failed to parse feexpub: %w", err)
 	}
 
+	// Ensure key is public.
+	if feeXpub.IsPrivate() {
+		return errors.New("feexpub is a private key, should be public")
+	}
+
 	// Ensure the data directory exists.
 	err = os.MkdirAll(dataDir, 0700)
 	if err != nil {