Taproot wallet support

[instagibbs]

This switches CLN to issuing p2tr addresses for deposits optionally, and also by default sending change to p2tr outputs.

Open questions:

1. should we deprecate wrapped segwit first?
2. I'm not happy with how many places in the code I have to check things like chainparams->is_elements(12 times looks like), bet it would be good to have some simpler way to not forget what version we're doing?

[instagibbs]

one more libwally update to go....

[instagibbs]

since script is known b32script we could just tal_count it, but there are other cases where we don't have a script on hand already. would rather we sync up behavior

[rustyrussell]

One minor weird delete...

It's unfortunate that we can't simply reuse "bech32" as the JSON field name for these addresses: I guess some software won't be up-to-date.

However, I think it's naive to use "p2tr" as well, since we're hoping that THIS TIME FOR SURE we have a universal address format: next change it would be great not to have everyone have to parse a new field. So, do we optimistically go for "bech32m"?

I may remove p2sh as part of the deprecations PR, let's not get bogged down behind that!

[rustyrussell]

Guessing your local tabs are 4 spaces? Because this is very indented!

[instagibbs]

ok im in libwally mode; what's the expected indent level :)

[instagibbs]

However, I think it's naive to use "p2tr" as well, since we're hoping that THIS TIME FOR SURE we have a universal address format: next change it would be great not to have everyone have to parse a new field. So, do we optimistically go for "bech32m"?

If someday there's witness output v2 that also uses bech32m, we'll have to un-camp it? p2tr just seems more explicit to me.

[instagibbs]

last question I'd have: is it better to not switch to taproot change outputs, just to limit blast radius if something were to go wrong, at least for a release?

pushed a couple fixes to tests as well

edit: can't replicate tests/test_connection.py::test_feerate_stress failures locally

[rustyrussell]

last question I'd have: is it better to not switch to taproot change outputs, just to limit blast radius if something were to go wrong, at least for a release?

Unfortunately, I don't think we'd find any bugs without this, and it adds another step change.

However, I do note that you need to add two Changelog-Added lines, and edit the newaddr man page (which doesn't mention p2tr as an option for addresstype:

Changelog-Added: JSON-RPC: newaddr: p2tr option to create taproot addresses.
Changelog-Changed: Wallet: we now use taproot change addresses.

pushed a couple fixes to tests as well

edit: can't replicate tests/test_connection.py::test_feerate_stress failures locally

That's a known flake, ignore...

[rustyrussell]

Also, please change all v23.05 to v23.08!

[rustyrussell]

See comments...

[instagibbs]

Changelog-Added: JSON-RPC: newaddr: p2tr option to create taproot addresses.
Changelog-Changed: Wallet: we now use taproot change addresses.

Added

Also, please change all v23.05 to v23.08!

done!

also added description for arg in doc/lightning-newaddr.7.md

[instagibbs]

now that dual funding is back in CI matrix.... time to fix tests :)

[instagibbs]

I'm going to look into storing the feature bits shared by the peers to remove this race in tests that I've run into. We'd like to know that we've previously seen a peer share anysegwit, and assume this when proposing a close.

[instagibbs]

rebased on the now-ACK'd #6308

removed the random gating in tests, things should be passing now...

[instagibbs]

not sure what this error means https://pipelines.actions.githubusercontent.com/serviceHosts/e5392bd7-7462-4d15-b5db-89c31513dbe4/_apis/pipelines/1/runs/16019/signedlogcontent/2?urlExpires=2023-06-15T20%3A48%3A10.7086093Z&urlSigningMethod=HMACV1&urlSignature=nIBcuC2cCYA9AqGaMYb0165s4SZR5Rgmu45hVnaRRSQ%3D

[rustyrussell]

Rebased on master, and folded the fixups into a single commit. Also did some indent fixups.

Ack: 3d97754

[rustyrussell]

Trivial rebase for generated file clash.

Ack 2c1d579

[niftynei]

Ayyyy!!!

…

On Mon, Jul 10, 2023 at 21:11 Rusty Russell ***@***.***> wrote: Merged #6035 <#6035> into master. — Reply to this email directly, view it on GitHub <#6035 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAIMAKN2GKIZWOMAPDOVWPDXPSY47ANCNFSM6AAAAAAVHHMQ3Q> . You are receiving this because you commented.Message ID: ***@***.***>

[harding]

Regarding field names, @sipa previously had this advice for me:

<sipa> harding: i think output types should be distinguished based on sender's abilities to
    pay them, as you may need to construct different addresses for older/new sender software
<sipa> and in that regard, i think legacy/p2sh/bech32, and unfortunately, bech32m are
   probably the right choices
[...]
<harding> sipa: you're saying that (in December 2021) if I run `getnewaddress bech32m` I
    should get a P2TR address, and (years from now) if I run `getnewaddress bech32m` I should
    get a P2FOO address because all I care about is whether or not the person who will be spending
    to me can support bech32m?
<sipa> yes

Source: https://www.erisian.com.au/bitcoin-core-dev/log-2021-06-28.html#l-89