[anchor] pluggable anchor commitments #3821
Conversation
lnwallet/commitment.go
Outdated
| theirBalance -= commitFeeMSat | ||
| } | ||
|
|
||
| // If the commitment has anchors, we must also subtract the anchor |
There was a problem hiding this comment.
This is a bit awkward, but is a result of that the balances we store in the db has had their commit fee subtracted. should we do a db migration to change this?
There was a problem hiding this comment.
You want instead to store the balance on disk with the anchor output size already subtracted?
lnwallet/commitment.go
Outdated
| // and commitment point. The keys are derived differently depending on the type | ||
| // of channel, and whether the commitment transaction is ours or the remote | ||
| // peer's. | ||
| func DeriveCommitmentKeys(commitPoint *btcec.PublicKey, |
There was a problem hiding this comment.
Separate move from change in two commits, for easier review.
There was a problem hiding this comment.
This look pretty good. The word anchor disappeared completely from lnwallet.Channel. I also see that there may be more to encapsulate, but the commitment building is probably the most important thing.
I still have that ideal in mind where there is a CommitmentBuilder interface and a separate instance for the anchor commit format. Those instances would be thin and build on a lot of shared building blocks. It is probably too much for now and this is already a good step in that direction.
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
from
5f89aad
to
819a5dd
Compare
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
2 times, most recently
from
b55825f
to
0bb5f08
Compare
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
from
0bb5f08
to
62fe01f
Compare
lnwallet/commitment.go
Outdated
| @@ -229,6 +229,18 @@ func CommitScriptToRemote(chanType channeldb.ChannelType, csvTimeout uint32, | |||
| }, nil | |||
| } | |||
|
|
|||
| func InitiatorFee(chanType channeldb.ChannelType, commitWeight int64, | |||
There was a problem hiding this comment.
Would there be a better term for miner_fee + anchors then "fee"? To prevent introducing a second definition of fee. Cost, overhead, ..?
There was a problem hiding this comment.
I like cost perhaps?
lnwallet/channel.go
Outdated
| } | ||
|
|
||
| // Not found. | ||
| return nil |
There was a problem hiding this comment.
Could make this stricter and return an error if the channel type says there must be anchors.
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
3 times, most recently
from
3661f7e
to
d17272b
Compare
lnwallet/commitment.go
Outdated
| remoteBalance = theirBalance.ToSatoshis() | ||
| ) | ||
| if cb.chanState.ChanType.HasAnchors() { | ||
| anchors := 2 * anchorSize |
There was a problem hiding this comment.
Also could very well just be lifted into a constant of its own.
lnwallet/commitment.go
Outdated
| theirBalance -= commitFeeMSat | ||
| } | ||
|
|
||
| // If the commitment has anchors, we must also subtract the anchor |
There was a problem hiding this comment.
You want instead to store the balance on disk with the anchor output size already subtracted?
| // genSweepTx generates a swepp of the senderCommitTx, and sets the | ||
| // sequence if locktime is true. | ||
| genSweepTx := func(locktime bool) { | ||
| prevOut := &wire.OutPoint{ |
There was a problem hiding this comment.
A worthy follow up PR would be also testing second-level HTLC aggregation.
| @@ -213,6 +219,16 @@ func NewChannelReservation(capacity, localFundingAmt btcutil.Amount, | |||
| ) | |||
| } | |||
|
|
|||
| // Similarly we ensure their balance is reasonable if we are not the | |||
| // initiator. | |||
| if !initiator && theirBalance.ToSatoshis() <= 2*DefaultDustLimit() { | |||
There was a problem hiding this comment.
Where does this requirement come from?
There was a problem hiding this comment.
It is not a new requirement, it was just something I noticed wasn't checked. Made it a separate commit.
There was a problem hiding this comment.
Why 2 times the dust limit?
There was a problem hiding this comment.
From 10 lines above
There was a problem hiding this comment.
Isn't 10 lines above 2 times the anchor size?
There was a problem hiding this comment.
There was a problem hiding this comment.
this is likely wrong for LTC, but so are most of these checks...
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
2 times, most recently
from
c472925
to
fa13a63
Compare
With this commitment type, we'll add extra anchor outputs to the commitment transaction if the anchor channel type is active.
…witness script We use the fact that we can tell whether the commit is local or remote by inspecting the witness script. We cannot use the maturity delay anymore, as we can have delayed to_remote outputs also now. Co-authored-by: Joost Jager <joost.jager@gmail.com>
… type Based on the channel type, the commitment weight will be calculated.
If we are the initiator, we check that our starting balance after subtracting fees are not less than two times the default dust limit. This commit adds a similar check for the non-initiator case, checking that the remote party has a starting balance of reasonable size.
To prepare for adding more commit types to test for basic channel funding, we make the commit type an enum that gets its own set of subtests.
Since we are also going to use it for experimental new features.
Defaults to disabled.
If both nodes are signalling the feature, make all opened channels using this type.
halseth
force-pushed
the
pluggable-anchors-lnwallet
branch
from
00aa935
to
b7885db
Compare
There was a problem hiding this comment.
LGTM 📯
Excellent work @halseth and @joostjager!
We should also extend the integration tests to cover breach retribution for all the existing commitment types. This can be done as a follow up PR. I'll also put together a small follow up PR to enable SCB support as well.
| // AnchorsRequired is a required feature bit that signals that the node | ||
| // requires channels to be made using commitments having anchor | ||
| // outputs. | ||
| AnchorsRequired FeatureBit = 1336 |
There was a problem hiding this comment.
Rather it should be resolved before we cut a release with this included. Feature bits are easy to change after the fact.
| // HtlcConfirmedScriptOverhead is the extra length of an HTLC script | ||
| // that requires confirmation before it can be spent. These extra bytes | ||
| // is a result of the extra CSV check. | ||
| HtlcConfirmedScriptOverhead = 3 |
Missing from end-to-end anchors working:
to_remoteoutputTODO:
Long term:
Builds on #3829