Dual funding, PSBT work #3902
Dual funding, PSBT work #3902
Conversation
bitcoin/psbt.c
Outdated
| if (wally_tx_init_alloc(WALLY_TX_VERSION_2, 0, num_inputs, num_outputs, &wtx) != WALLY_OK) | ||
| return NULL; |
There was a problem hiding this comment.
Abort if this fails. We don't (as a rule) check for allocation failures; in fact, tal() will abort if it can't allocate. Crashing due to NULL on the next line will give us a nice backtrace too :)
bitcoin/psbt.c
Outdated
| sizeof(struct bitcoin_txid), | ||
| outnum, sequence, NULL, 0, NULL, | ||
| &tx_in) != WALLY_OK) | ||
| return NULL; |
bitcoin/psbt.c
Outdated
| const u8 *script, | ||
| struct amount_sat amount) | ||
| { | ||
| size_t i = psbt->tx->num_outputs; |
There was a problem hiding this comment.
Vague preference not to use i as anything but an iterator. In this case, the extra var declaraton is not really worth it, I think.
bitcoin/psbt.c
Outdated
| struct wally_tx_input *in = | ||
| &psbt->tx->inputs[i]; |
There was a problem hiding this comment.
Are you sure this doesn't fit in 80 columns on a single line? OTOH, this is more poetic, I guess?
There was a problem hiding this comment.
Oh, right. It fits!
bitcoin/psbt.h
Outdated
| * @num_inputs - number of inputs to allocate | ||
| * @num_outputs - number of outputs to allocate | ||
| * | ||
| * Returns NULL if there's a failure. |
| return false; | ||
| assert(value_len == sizeof(*serial_id)); | ||
| memcpy(serial_id, result, value_len); | ||
| return true; |
There was a problem hiding this comment.
This seems a bit round-about, allocating a key to do the comparison. Either we could implement psbt_get_lightning(), or if we want to be generic, have psbt_get_unknown() take the prefix and the keyvalue?
common/psbt_open.c
Outdated
| void *result = psbt_get_unknown(map, key, &value_len); | ||
| if (!result) | ||
| return false; | ||
| assert(value_len == sizeof(*serial_id)); |
There was a problem hiding this comment.
I worry this is a vector by which bad PSBTs can crash us. Perhaps return false in this case?
common/psbt_open.c
Outdated
| void *result = psbt_get_unknown(input->unknowns, key, &value_len); | ||
| if (!result) | ||
| return false; | ||
| assert(value_len == sizeof(*max_witness_len)); |
common/psbt_open.h
Outdated
| * If a serial_id has remained the same, but the underlying data | ||
| * has changed, this WILL NOT detect it. | ||
| * |
common/psbt_open.h
Outdated
| * @added_outs - outputs added to {new} | ||
| * @rm_outs - outputs removed from {new} | ||
| * | ||
| * Returns true if no changes are found. |
There was a problem hiding this comment.
No it doesn't!
Also probably needs warning about sets simply referring into orig and new here, not on implementation?
|
Assuming #3833 is merged (as the wally changes are in master), this PR will need updating to reflect the current wally interface changes. The major ones are:
Other comments:
|
niftynei
force-pushed
the
nifty/dual-fund-psbt-work
branch
2 times, most recently
from
2c83bf7 to
2ca8b30
Compare
niftynei
force-pushed
the
nifty/dual-fund-psbt-work
branch
2 times, most recently
from
94e5826 to
17e210c
Compare
|
Ok, updated to the latest things. libwally now verifies that transactions have inputs before agreeing to serialize them, which impacted how There's an outstanding issue here still in that our comparison functions will fail to detect maps with identical yet differently ordered entries. Filed ElementsProject/libwally-core#214. |
niftynei
force-pushed
the
nifty/dual-fund-psbt-work
branch
3 times, most recently
from
79712de to
e9fa0ed
Compare
bitcoin/psbt.c
Outdated
| abort(); | ||
|
|
||
| tx_in->features = chainparams->is_elements ? WALLY_TX_IS_ELEMENTS : 0; | ||
| input = psbt_add_input(psbt, tx_in, insert_at); |
There was a problem hiding this comment.
features is an internal impl detail and we may end up using it for more than just elements. please use wally_tx_elements_input_init_alloc for elements instead.
| /* If is P2SH, redeemscript must be present */ | ||
| const u8 *outscript = | ||
| wally_tx_output_get_script(tmpctx, | ||
| &input->utxo->outputs[psbt->tx->inputs[i].index]); |
There was a problem hiding this comment.
I think you want to assert this is in bounds for the utxo outputs before dereferencing here, just to be sure.
|
Note that your lightning keys and values in maps need to be stored endian-independent - so rather than memcpy for your serial id you'll need to use cpu_to/from_ before copying, or things will go badly wrong when swapping PSBTs with an instance on a difference arch. |
includes facilities for - sorting psbt inputs by serial_id - sorting psbt outputs by serial_id - adding a serial_id - getting a serial_id - finding the diffset between two psbts - adding a max_len to a psbt input - getting a max_len from a psbt input
Less code is more code!
There's no stable ordering on unknown serialization, so linearizing identical but mis-ordered unknown data will lead to 'wrong' results. Instead, we just ignore any data that's in the psbt unknown struct. There's probably also problems here with other PSBT maps. Really, this needs a finer grained comparison function .... fuck
portability for the win Suggested-By: @jgriffiths
niftynei
force-pushed
the
nifty/dual-fund-psbt-work
branch
from
9ac2ff9 to
9090f78
Compare
common/psbt_open.c
Outdated
| psbt->outputs[0] = *out; | ||
| psbt->num_outputs++; | ||
| /* Blank out unknowns. These are unordered and serializing | ||
| * them might have different outputs for identical data */ | ||
| psbt->outputs[0].unknowns.num_items = 0; |
There was a problem hiding this comment.
wally_map_sort(&psbt->outputs[0].unknowns) can be used now that its been merged to wally master.
Our psbt input/output comparison functions use serialization to compare the things, but if there's a map with things in it and the map isn't sorted exactly the same, it's highly likely you'll mark an identical inputs as different. To fix this, we sort all the input/output maps before linearizing them.
|
Ack f99dbfa |
This PR contains just the PSBT utilities needed for the dual-funding accepter PR.
This allows us to:
Changelog-None