@lightninglabs/lightning-mcp-server 0.2.0

package/skills/lnd/scripts/lncli.sh

@@ -0,0 +1,150 @@
+#!/usr/bin/env bash
+# Wrapper for lncli (and other litd CLIs) with container auto-detection.
+#
+# Auto-detects a running litd container and routes commands through it.
+# Falls back to local lncli if no container is found.
+#
+# Usage:
+#   lncli.sh getinfo                                    # Auto-detect container
+#   lncli.sh walletbalance
+#   lncli.sh --container litd getinfo                   # Explicit container
+#   lncli.sh --cli loop quote out 100000                # Use loop CLI
+#   lncli.sh --cli tapcli assets list                   # Use tapcli
+#   lncli.sh --cli litcli getinfo                       # Use litcli
+#   lncli.sh --network testnet getinfo                  # Override network
+#   lncli.sh --rpcserver remote:10009 \                 # Remote node
+#            --tlscertpath ~/tls.cert \
+#            --macaroonpath ~/admin.macaroon getinfo
+
+set -e
+
+LND_DIR="${LND_DIR:-}"
+NETWORK="${NETWORK:-testnet}"
+CONTAINER=""
+CLI="lncli"
+RPCSERVER=""
+TLSCERTPATH=""
+MACAROONPATH=""
+LNCLI_ARGS=()
+
+# Parse our arguments (pass everything else to the CLI).
+while [[ $# -gt 0 ]]; do
+    case $1 in
+        --network)
+            NETWORK="$2"
+            shift 2
+            ;;
+        --lnddir)
+            LND_DIR="$2"
+            shift 2
+            ;;
+        --container)
+            CONTAINER="$2"
+            shift 2
+            ;;
+        --cli)
+            CLI="$2"
+            shift 2
+            ;;
+        --rpcserver)
+            RPCSERVER="$2"
+            shift 2
+            ;;
+        --tlscertpath)
+            TLSCERTPATH="$2"
+            shift 2
+            ;;
+        --macaroonpath)
+            MACAROONPATH="$2"
+            shift 2
+            ;;
+        -h|--help)
+            echo "Usage: lncli.sh [options] <command> [args]"
+            echo ""
+            echo "Wrapper for lncli with container auto-detection."
+            echo ""
+            echo "Options:"
+            echo "  --network NETWORK      Bitcoin network (default: testnet)"
+            echo "  --lnddir DIR           lnd data directory (default: ~/.lnd)"
+            echo "  --container NAME       Run CLI inside a specific Docker container"
+            echo "  --cli CLI              CLI to use (default: lncli)"
+            echo "                         Available: lncli, litcli, loop, pool, tapcli, frcli"
+            echo "  --rpcserver HOST:PORT  Connect to a remote lnd node"
+            echo "  --tlscertpath PATH     TLS certificate for remote connection"
+            echo "  --macaroonpath PATH    Macaroon for remote authentication"
+            echo ""
+            echo "Container auto-detection order:"
+            echo "  litd > litd-shared > lnd > lnd-shared"
+            echo ""
+            echo "All other arguments are passed directly to the CLI."
+            exit 0
+            ;;
+        *)
+            LNCLI_ARGS+=("$1")
+            shift
+            ;;
+    esac
+done
+
+if [ ${#LNCLI_ARGS[@]} -eq 0 ]; then
+    echo "Error: No command specified." >&2
+    echo "Usage: lncli.sh <command> [args]" >&2
+    exit 1
+fi
+
+# Auto-detect container if not explicitly specified.
+if [ -z "$CONTAINER" ] && [ -z "$RPCSERVER" ] && command -v docker &>/dev/null; then
+    for candidate in litd litd-shared lnd lnd-shared; do
+        if docker ps --format '{{.Names}}' 2>/dev/null | grep -qx "$candidate"; then
+            CONTAINER="$candidate"
+            break
+        fi
+    done
+fi
+
+# Apply default lnddir if not set.
+if [ -z "$LND_DIR" ]; then
+    if [ -n "$CONTAINER" ]; then
+        LND_DIR="/root/.lnd"
+    else
+        LND_DIR="$HOME/.lnd"
+    fi
+fi
+
+# Build connection flags (only for lncli, not other CLIs).
+CONN_FLAGS=()
+if [ "$CLI" = "lncli" ]; then
+    CONN_FLAGS+=("--network=$NETWORK" "--lnddir=$LND_DIR")
+    if [ -n "$RPCSERVER" ]; then
+        CONN_FLAGS+=("--rpcserver=$RPCSERVER")
+    fi
+    if [ -n "$TLSCERTPATH" ]; then
+        CONN_FLAGS+=("--tlscertpath=$TLSCERTPATH")
+    fi
+    if [ -n "$MACAROONPATH" ]; then
+        CONN_FLAGS+=("--macaroonpath=$MACAROONPATH")
+    fi
+fi
+
+# Execute the command.
+if [ -n "$CONTAINER" ]; then
+    # Container mode: run CLI inside the container.
+    if ! docker ps --format '{{.Names}}' 2>/dev/null | grep -qx "$CONTAINER"; then
+        echo "Error: Container '$CONTAINER' is not running." >&2
+        echo "Start it with: skills/lnd/scripts/docker-start.sh" >&2
+        exit 1
+    fi
+
+    exec docker exec "$CONTAINER" "$CLI" "${CONN_FLAGS[@]}" "${LNCLI_ARGS[@]}"
+else
+    # Local mode: run CLI on the host.
+    if ! command -v "$CLI" &>/dev/null; then
+        echo "Error: $CLI not found locally and no litd container detected." >&2
+        echo "" >&2
+        echo "Either:" >&2
+        echo "  1. Start a litd container: skills/lnd/scripts/docker-start.sh" >&2
+        echo "  2. Install from source: skills/lnd/scripts/install.sh --source" >&2
+        exit 1
+    fi
+    exec "$CLI" "${CONN_FLAGS[@]}" "${LNCLI_ARGS[@]}"
+fi

package/skills/lnd/scripts/start-lnd.sh

@@ -0,0 +1,241 @@
+#!/usr/bin/env bash
+# Start litd (Lightning Terminal) — delegates to Docker by default.
+#
+# Usage:
+#   start-lnd.sh                                         # Docker (default)
+#   start-lnd.sh --watchonly                             # Watch-only + signer
+#   start-lnd.sh --regtest                               # Regtest with bitcoind
+#   start-lnd.sh --network mainnet                       # Override network
+#   start-lnd.sh --profile taproot                       # Load profile
+#   start-lnd.sh --native                                # Native lnd (no Docker)
+#   start-lnd.sh --native --mode standalone              # Native standalone
+#   start-lnd.sh --native --signer-host 10.0.0.5:10012  # Native watch-only
+#
+# By default, this script delegates to docker-start.sh. Use --native to
+# run lnd as a local process (requires lnd built from source).
+
+set -e
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+NATIVE=false
+
+# Check for --native flag before parsing other args.
+PASS_ARGS=()
+for arg in "$@"; do
+    if [ "$arg" = "--native" ]; then
+        NATIVE=true
+    else
+        PASS_ARGS+=("$arg")
+    fi
+done
+
+# If not native mode, delegate to docker-start.sh.
+if [ "$NATIVE" = false ]; then
+    if command -v docker &>/dev/null; then
+        exec "$SCRIPT_DIR/docker-start.sh" "${PASS_ARGS[@]}"
+    else
+        echo "Docker not available. Falling back to native mode." >&2
+        echo "Install Docker or use --native explicitly." >&2
+        echo ""
+        NATIVE=true
+    fi
+fi
+
+# --- Native mode: original lnd startup logic ---
+
+LNGET_LND_DIR="${LNGET_LND_DIR:-$HOME/.lnget/lnd}"
+LND_DIR="${LND_DIR:-$HOME/.lnd}"
+NETWORK="testnet"
+FOREGROUND=false
+EXTRA_ARGS=""
+CONF_FILE="$LNGET_LND_DIR/lnd.conf"
+MODE="watchonly"
+SIGNER_HOST="${LND_SIGNER_HOST:-}"
+
+# Parse arguments.
+set -- "${PASS_ARGS[@]}"
+while [[ $# -gt 0 ]]; do
+    case $1 in
+        --mode)
+            MODE="$2"
+            shift 2
+            ;;
+        --signer-host)
+            SIGNER_HOST="$2"
+            shift 2
+            ;;
+        --network)
+            NETWORK="$2"
+            shift 2
+            ;;
+        --lnddir)
+            LND_DIR="$2"
+            shift 2
+            ;;
+        --foreground)
+            FOREGROUND=true
+            shift
+            ;;
+        --extra-args)
+            EXTRA_ARGS="$2"
+            shift 2
+            ;;
+        -h|--help)
+            echo "Usage: start-lnd.sh [options]"
+            echo ""
+            echo "Start lnd natively (without Docker)."
+            echo ""
+            echo "Options:"
+            echo "  --native             Run lnd as a local process (required)"
+            echo "  --mode MODE          Node mode: watchonly (default) or standalone"
+            echo "  --signer-host HOST   Signer RPC address (e.g., 10.0.0.5:10012)"
+            echo "  --network NETWORK    Bitcoin network (default: testnet)"
+            echo "  --lnddir DIR         lnd data directory (default: ~/.lnd)"
+            echo "  --foreground         Run in foreground (default: background)"
+            echo "  --extra-args ARGS    Additional lnd arguments"
+            echo ""
+            echo "Modes:"
+            echo "  watchonly    Connect to remote signer (no keys on this machine)"
+            echo "  standalone   Full lnd with local keys (for testing)"
+            echo ""
+            echo "Environment:"
+            echo "  LND_SIGNER_HOST     Default signer host (overridden by --signer-host)"
+            exit 0
+            ;;
+        *)
+            echo "Unknown option: $1" >&2
+            exit 1
+            ;;
+    esac
+done
+
+# Validate mode.
+if [ "$MODE" != "watchonly" ] && [ "$MODE" != "standalone" ]; then
+    echo "Error: Invalid mode '$MODE'. Use 'watchonly' or 'standalone'." >&2
+    exit 1
+fi
+
+# Verify lnd is installed.
+if ! command -v lnd &>/dev/null; then
+    echo "Error: lnd not found. Run install.sh --source first." >&2
+    exit 1
+fi
+
+# Check if lnd is already running.
+if pgrep -x lnd &>/dev/null; then
+    echo "lnd is already running (PID: $(pgrep -x lnd))."
+    echo "Use stop-lnd.sh to stop it first."
+    exit 1
+fi
+
+# Watch-only mode requires signer host.
+if [ "$MODE" = "watchonly" ]; then
+    if [ -z "$SIGNER_HOST" ]; then
+        echo "Error: --signer-host is required in watchonly mode." >&2
+        echo "Example: start-lnd.sh --native --signer-host 10.0.0.5:10012" >&2
+        echo "Or set LND_SIGNER_HOST environment variable." >&2
+        exit 1
+    fi
+
+    CREDS_DIR="$LNGET_LND_DIR/signer-credentials"
+    if [ ! -f "$CREDS_DIR/tls.cert" ] || [ ! -f "$CREDS_DIR/admin.macaroon" ]; then
+        echo "Error: Signer credentials not found at $CREDS_DIR" >&2
+        echo "Run import-credentials.sh first." >&2
+        exit 1
+    fi
+fi
+
+# Create config directory if needed.
+mkdir -p "$LNGET_LND_DIR"
+
+# Copy config template if no config exists.
+if [ ! -f "$CONF_FILE" ]; then
+    TEMPLATE="$SCRIPT_DIR/../templates/lnd.conf.template"
+    if [ -f "$TEMPLATE" ]; then
+        echo "Creating config from template..."
+        # Replace network placeholder in template.
+        sed "s/bitcoin\.mainnet=true/bitcoin.$NETWORK=true/g" "$TEMPLATE" > "$CONF_FILE"
+
+        # Replace password file path.
+        sed -i.bak "s|wallet-unlock-password-file=.*|wallet-unlock-password-file=$LNGET_LND_DIR/wallet-password.txt|g" "$CONF_FILE"
+        rm -f "$CONF_FILE.bak"
+    else
+        echo "Warning: No config template found. lnd will use defaults." >&2
+    fi
+fi
+
+# Configure remote signer in config if watchonly mode.
+if [ "$MODE" = "watchonly" ] && [ -f "$CONF_FILE" ]; then
+    CREDS_DIR="$LNGET_LND_DIR/signer-credentials"
+
+    # Remove any existing remotesigner lines.
+    sed -i.bak '/^\# \[remotesigner\]/,/^\# remotesigner\./d' "$CONF_FILE"
+    rm -f "$CONF_FILE.bak"
+
+    # Append active remotesigner configuration.
+    cat >> "$CONF_FILE" <<EOF
+
+[remotesigner]
+remotesigner.enable=true
+remotesigner.rpchost=$SIGNER_HOST
+remotesigner.tlscertpath=$CREDS_DIR/tls.cert
+remotesigner.macaroonpath=$CREDS_DIR/admin.macaroon
+EOF
+
+    echo "Remote signer configured: $SIGNER_HOST"
+fi
+
+echo "=== Starting lnd (native) ==="
+echo "Mode:     $MODE"
+echo "Network:  $NETWORK"
+echo "Data dir: $LND_DIR"
+echo "Config:   $CONF_FILE"
+if [ "$MODE" = "watchonly" ]; then
+    echo "Signer:   $SIGNER_HOST"
+fi
+echo ""
+
+if [ "$MODE" = "standalone" ]; then
+    echo "WARNING: Running in standalone mode. Private keys are on this machine."
+    echo "For production use, set up a remote signer with the lightning-security-module skill."
+    echo ""
+fi
+
+LOG_FILE="$LNGET_LND_DIR/lnd-start.log"
+
+if [ "$FOREGROUND" = true ]; then
+    exec lnd \
+        --lnddir="$LND_DIR" \
+        --configfile="$CONF_FILE" \
+        $EXTRA_ARGS
+else
+    nohup lnd \
+        --lnddir="$LND_DIR" \
+        --configfile="$CONF_FILE" \
+        $EXTRA_ARGS \
+        > "$LOG_FILE" 2>&1 &
+    LND_PID=$!
+    echo "lnd started in background (PID: $LND_PID)"
+    echo "Log file: $LOG_FILE"
+    echo ""
+
+    # Wait briefly and verify it's running.
+    sleep 2
+    if kill -0 "$LND_PID" 2>/dev/null; then
+        echo "lnd is running."
+    else
+        echo "Error: lnd exited immediately. Check $LOG_FILE" >&2
+        tail -20 "$LOG_FILE" 2>/dev/null
+        exit 1
+    fi
+
+    echo ""
+    echo "Next steps:"
+    echo "  # Check status"
+    echo "  skills/lnd/scripts/lncli.sh getinfo"
+    echo ""
+    if [ "$MODE" = "standalone" ]; then
+        echo "  # If wallet not yet created"
+        echo "  skills/lnd/scripts/create-wallet.sh --mode standalone"
+    fi
+fi

package/skills/lnd/scripts/stop-lnd.sh

@@ -0,0 +1,218 @@
+#!/usr/bin/env bash
+# Stop litd / lnd — delegates to Docker by default.
+#
+# Usage:
+#   stop-lnd.sh                    # Docker stop (auto-detect)
+#   stop-lnd.sh --clean            # Docker stop + remove volumes
+#   stop-lnd.sh --watchonly        # Docker stop watch-only mode
+#   stop-lnd.sh --native           # Stop native lnd process
+#   stop-lnd.sh --native --force   # SIGTERM native process
+#   stop-lnd.sh --container sam    # Stop specific container
+#   stop-lnd.sh --rpcserver remote:10009 --tlscertpath ~/tls.cert --macaroonpath ~/admin.macaroon
+#
+# By default, this script delegates to docker-stop.sh. Use --native for
+# stopping a local lnd process.
+
+set -e
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+NATIVE=false
+
+# Check for --native flag before parsing other args.
+PASS_ARGS=()
+for arg in "$@"; do
+    if [ "$arg" = "--native" ]; then
+        NATIVE=true
+    else
+        PASS_ARGS+=("$arg")
+    fi
+done
+
+# If not native mode, delegate to docker-stop.sh.
+if [ "$NATIVE" = false ]; then
+    # Check if we have Docker-specific args or a running container.
+    HAS_CONTAINER_ARG=false
+    for arg in "${PASS_ARGS[@]}"; do
+        if [ "$arg" = "--container" ]; then
+            HAS_CONTAINER_ARG=true
+            break
+        fi
+    done
+
+    # If --container is specified, use the old container-specific stop logic.
+    if [ "$HAS_CONTAINER_ARG" = true ]; then
+        NATIVE=true
+    elif command -v docker &>/dev/null; then
+        # Check if any litd containers are running.
+        if docker ps --format '{{.Names}}' 2>/dev/null | grep -qE '^litd'; then
+            exec "$SCRIPT_DIR/docker-stop.sh" "${PASS_ARGS[@]}"
+        fi
+        # No litd containers found, fall through to native.
+        NATIVE=true
+    else
+        NATIVE=true
+    fi
+fi
+
+# --- Native / container-specific stop logic ---
+
+LND_DIR="${LND_DIR:-}"
+NETWORK="${NETWORK:-testnet}"
+FORCE=false
+CONTAINER=""
+RPCSERVER=""
+TLSCERTPATH=""
+MACAROONPATH=""
+
+# Parse arguments.
+set -- "${PASS_ARGS[@]}"
+while [[ $# -gt 0 ]]; do
+    case $1 in
+        --force)
+            FORCE=true
+            shift
+            ;;
+        --network)
+            NETWORK="$2"
+            shift 2
+            ;;
+        --container)
+            CONTAINER="$2"
+            shift 2
+            ;;
+        --rpcserver)
+            RPCSERVER="$2"
+            shift 2
+            ;;
+        --tlscertpath)
+            TLSCERTPATH="$2"
+            shift 2
+            ;;
+        --macaroonpath)
+            MACAROONPATH="$2"
+            shift 2
+            ;;
+        --clean|-v|--watchonly|--regtest|--all)
+            # These are docker-stop.sh flags; pass through.
+            echo "Forwarding to docker-stop.sh (flag: $1)..."
+            exec "$SCRIPT_DIR/docker-stop.sh" "${PASS_ARGS[@]}"
+            ;;
+        -h|--help)
+            echo "Usage: stop-lnd.sh [options]"
+            echo ""
+            echo "Stop litd / lnd."
+            echo ""
+            echo "Docker options (default):"
+            echo "  --clean, -v       Remove volumes (clean state)"
+            echo "  --watchonly        Stop watch-only + signer containers"
+            echo "  --regtest          Stop regtest containers"
+            echo "  --all              Stop all litd containers"
+            echo ""
+            echo "Native options (--native):"
+            echo "  --native               Stop native lnd process"
+            echo "  --force                Send SIGTERM immediately"
+            echo "  --container NAME       Stop lnd in a specific container"
+            echo "  --rpcserver HOST:PORT  Remote lnd node"
+            echo "  --tlscertpath PATH     TLS certificate for remote"
+            echo "  --macaroonpath PATH    Macaroon for remote"
+            exit 0
+            ;;
+        *)
+            echo "Unknown option: $1" >&2
+            exit 1
+            ;;
+    esac
+done
+
+# Apply default lnddir if not set.
+if [ -z "$LND_DIR" ]; then
+    if [ -n "$CONTAINER" ]; then
+        LND_DIR="/root/.lnd"
+    else
+        LND_DIR="$HOME/.lnd"
+    fi
+fi
+
+if [ -n "$CONTAINER" ]; then
+    # Docker container mode.
+    if ! docker ps --format '{{.Names}}' | grep -qx "$CONTAINER"; then
+        echo "Container '$CONTAINER' is not running."
+        exit 0
+    fi
+
+    echo "Stopping lnd in container '$CONTAINER'..."
+
+    if [ "$FORCE" = true ]; then
+        docker stop "$CONTAINER"
+        echo "Container stopped."
+    else
+        if docker exec "$CONTAINER" lncli --network="$NETWORK" --lnddir="$LND_DIR" stop 2>/dev/null; then
+            echo "Graceful shutdown initiated."
+        else
+            echo "lncli stop failed, stopping container..."
+            docker stop "$CONTAINER"
+            echo "Container stopped."
+        fi
+    fi
+    exit 0
+fi
+
+# Build connection flags for lncli.
+CONN_FLAGS=(--network="$NETWORK" --lnddir="$LND_DIR")
+if [ -n "$RPCSERVER" ]; then
+    CONN_FLAGS+=("--rpcserver=$RPCSERVER")
+fi
+if [ -n "$TLSCERTPATH" ]; then
+    CONN_FLAGS+=("--tlscertpath=$TLSCERTPATH")
+fi
+if [ -n "$MACAROONPATH" ]; then
+    CONN_FLAGS+=("--macaroonpath=$MACAROONPATH")
+fi
+
+# Remote mode — stop via lncli only (no PID access).
+if [ -n "$RPCSERVER" ]; then
+    echo "Stopping remote lnd at $RPCSERVER..."
+    if lncli "${CONN_FLAGS[@]}" stop; then
+        echo "Graceful shutdown initiated."
+    else
+        echo "Error: lncli stop failed for remote node." >&2
+        exit 1
+    fi
+    exit 0
+fi
+
+# Local mode — check if lnd is running.
+LND_PID=$(pgrep -x lnd 2>/dev/null || true)
+if [ -z "$LND_PID" ]; then
+    echo "lnd is not running."
+    exit 0
+fi
+
+echo "Stopping lnd (PID: $LND_PID)..."
+
+if [ "$FORCE" = true ]; then
+    kill "$LND_PID"
+    echo "Sent SIGTERM."
+else
+    # Try graceful shutdown via lncli.
+    if lncli "${CONN_FLAGS[@]}" stop 2>/dev/null; then
+        echo "Graceful shutdown initiated."
+    else
+        echo "lncli stop failed, sending SIGTERM..."
+        kill "$LND_PID"
+    fi
+fi
+
+# Wait for process to exit.
+echo "Waiting for lnd to exit..."
+for i in {1..15}; do
+    if ! kill -0 "$LND_PID" 2>/dev/null; then
+        echo "lnd stopped."
+        exit 0
+    fi
+    sleep 1
+done
+
+echo "Warning: lnd did not exit within 15 seconds." >&2
+echo "Use --force or kill -9 $LND_PID" >&2
+exit 1