peel_payment_onion static fn in channelmanager

[Evanfeenstra]

Adds a public peel_payment_onion function that takes msgs::UpdateAddHTLC and returns PendingHTLCInfo.

I separated the internals of decode_update_add_htlc_onion, construct_recv_pending_htlc_info, and construct_fwd_pending_htlc_info into static functions, and used them to make the PendingHTLCInfo. There are two validation closures passed to peel_payment_onion... some of the outbound channel checking is done in these closures, so its up to the caller to validate against current channel state.

I am unsure about phantom_shared_secret and allow_underpay in create_recv_pending_htlc_info so i left them None/false when called from peel_payment_onion

Not sure if this is the best approach! But its much better than #2677

[TheBlueMatt]

Rather than making these lambdas and passing them into decode_incoming_update_add_htlc_onion, can we just check them after running decode_incoming_update_add_htlc_onion?

[Evanfeenstra]

Ok, its much cleaner now. I repeated the CLTV checks in the peel_payment_onion fn though, but I guess that's fine.

Also added a test for peel_payment_onion

[codecov-commenter]

Codecov Report

Attention: 44 lines in your changes are missing coverage. Please review.

Comparison is base (1f399b0) 88.71% compared to head (192fe05) 88.72%.
Report is 63 commits behind head on main.

Files	Patch %	Lines
lightning/src/ln/channelmanager.rs	89.21%	37 Missing and 7 partials ⚠️

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff            @@
##             main    #2700     +/-   ##
=========================================
  Coverage   88.71%   88.72%             
=========================================
  Files         112      113      +1     
  Lines       88502    89533   +1031     
  Branches    88502    89533   +1031     
=========================================
+ Hits        78517    79434    +917     
- Misses       7752     7839     +87     
- Partials     2233     2260     +27     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[TheBlueMatt]

Nice! This turned out pretty good. I think we'll basically be able to use this for LSP 4 too.

[TheBlueMatt]

Why keep the redundant one in decode_update_add_htlc_onion, can we just drop the redundant checks and leave it only doing the next-hop-channels-is-real checks.

[Evanfeenstra]

Trying to figure out how to do this... the ChannelManager::decode_update_add_htlc_onion CLTV checks may generate a chan_update, while the checks in peel_payment_onion are simpler (since peel_payment_onion is called externally, without the context).

Are you saying we should move the checks inside the inner decode_incoming_update_add_htlc_onion fn?

[Evanfeenstra]

ok! got it figured out so there is no redundancy

[TheBlueMatt]

Docs should describe some amount of "this does all the relevant context-free checks that LDK requires for payment relay or acceptance. If the payment is to be received, and the amount matches the expected amount for a given invoice, this indicates the UpdateAddHTLC, once fully committed in the channel, will generate an Event::PaymentReceived".

[Evanfeenstra]

ok

[TheBlueMatt]

Oops, needs a small rebase after the other PR.

[valentinewallace]

Still making my way through

[valentinewallace]

Almost there!

[valentinewallace]

Needs rebase unfortunately :(

LGTM after this. Also fine with fixing these in follow-up.

[valentinewallace]

Why leave this as the only unexposed field?

[Evanfeenstra]

Needs rebase unfortunately :(

LGTM after this. Also fine with fixing these in follow-up.

OK, happy to do a follow-up on these items as soon as it gets merged

[TheBlueMatt]

Rather than using merge commits to rebase, please use rebase directly. See https://github.com/bitcoin/bitcoin/blob/master/CONTRIBUTING.md#rebasing-changes.

[Evanfeenstra]

Rather than using merge commits to rebase, please use rebase directly. See https://github.com/bitcoin/bitcoin/blob/master/CONTRIBUTING.md#rebasing-changes.

Oh, thanks for the tip. I reverted the merge commit. Also reverted the PeelOnionError stuff for a follow-up PR instead, per @valentinewallace's suggestion

[valentinewallace]

Having done more research into CLN and LND's htlc interception APIs, I don't think we need to follow-up adding PeelOnionError.

Both APIs take either an error code or a decoded onion error packet, so our current error should be sufficient for that.

I was also thinking the LSPS4 spec may need better error info, but from talking to @TheBlueMatt it sounds like the LSP would always just error with "unknown next channel."

So excuse the misleading direction, I think this PR is fine as-is.

[TheBlueMatt]

LGTM, though the docs on newly-public fields and structs really need to communicate a lot more information. Generally, any public field or struct needs docs that explain (a) what it is (often in terms of how we calculated it) and (b) what its used for, often how a user would use it (if there's no reason for them to use it, it shouldn't be public).

[TheBlueMatt]

This tells a user almost nothing about what this is or what its used for.

[TheBlueMatt]

nit: might be worth noting that, at this point, we have not checked that the invoice being paid was actually generated by us, but rather its claiming to pay an invoice of ours.

[TheBlueMatt]

Only kinda specific to this PR, but the public interface is now kinda confused between keysend and spontaneous payments. We originally tried to use "spontaneous payments" for this publicly, but some keysend references slipped in, and now we're adding more. We should make everything consistent in a followup rename.

[TheBlueMatt]

nit: would be nice to also repeat what it is, not just what its used for.

[TheBlueMatt]

This doesn't really say much about what this is used for/why its here.

[TheBlueMatt]

Now that these are all freestanding functions, they (and the associated return/error structs) should probably move to some other file, if only to make channelmanager.rs slightly less huge.