Add TxBuilder::build_commitment_transaction

Author: tankyleo

lightning/src/ln/chan_utils.rs

@@ -622,6 +622,21 @@ impl HTLCOutputInCommitment {
 			&& self.cltv_expiry == other.cltv_expiry
 			&& self.payment_hash == other.payment_hash
 	}
+
+	pub(crate) fn is_dust(&self, feerate_per_kw: u32, broadcaster_dust_limit_sat: u64, features: &ChannelTypeFeatures) -> bool {
+		let htlc_tx_fee_sat = if features.supports_anchors_zero_fee_htlc_tx() {
+			0
+		} else {
+			let htlc_tx_weight = if self.offered {
+				htlc_timeout_tx_weight(features)
+			} else {
+				htlc_success_tx_weight(features)
+			};
+			// As required by the spec, round down
+			feerate_per_kw as u64 * htlc_tx_weight / 1000
+		};
+		self.amount_msat / 1000 < broadcaster_dust_limit_sat + htlc_tx_fee_sat
+	}
 }
 
 impl_writeable_tlv_based!(HTLCOutputInCommitment, {

lightning/src/ln/channel.rs

@@ -988,6 +988,7 @@ struct CommitmentData<'a> {
 }
 
 /// A struct gathering stats on a commitment transaction, either local or remote.
+#[derive(Debug, PartialEq)]
 pub(crate) struct CommitmentStats {
 	pub(crate) total_fee_sat: u64, // the total fee included in the transaction
 	pub(crate) local_balance_before_fee_msat: u64, // local balance before fees *not* considering dust limits
@@ -3965,16 +3966,9 @@ impl<SP: Deref> ChannelContext<SP> where SP::Target: SignerProvider {
 		let broadcaster_dust_limit_sat = if local { self.holder_dust_limit_satoshis } else { self.counterparty_dust_limit_satoshis };
 		let feerate_per_kw = self.get_commitment_feerate(funding, generated_by_local);
 
-		let stats = self.build_commitment_stats(funding, local, generated_by_local, None, None);
-		let CommitmentStats {
-			total_fee_sat,
-			local_balance_before_fee_msat,
-			remote_balance_before_fee_msat
-		} = stats;
-
 		let num_htlcs = self.pending_inbound_htlcs.len() + self.pending_outbound_htlcs.len();
 		let mut htlcs_included: Vec<(HTLCOutputInCommitment, Option<&HTLCSource>)> = Vec::with_capacity(num_htlcs);
-		let mut nondust_htlcs: Vec<HTLCOutputInCommitment> = Vec::with_capacity(num_htlcs);
+		let mut value_to_self_msat_offset = 0;
 
 		log_trace!(logger, "Building commitment transaction number {} (really {} xor {}) for channel {} for {}, generated by {} with fee {}...",
 			commitment_number, (INITIAL_COMMITMENT_NUMBER - commitment_number),
@@ -3997,13 +3991,7 @@ impl<SP: Deref> ChannelContext<SP> where SP::Target: SignerProvider {
 		macro_rules! add_htlc_output {
 			($htlc: expr, $outbound: expr, $source: expr) => {
 				let htlc_in_tx = get_htlc_in_commitment!($htlc, $outbound == local);
-				htlcs_included.push((htlc_in_tx.clone(), $source));
-				if $htlc.is_dust(local, feerate_per_kw, broadcaster_dust_limit_sat, funding.get_channel_type()) {
-					log_trace!(logger, "   ...including {} {} dust HTLC {} (hash {}) with value {} due to dust limit", if $outbound { "outbound" } else { "inbound" }, $htlc.state, $htlc.htlc_id, $htlc.payment_hash, $htlc.amount_msat);
-				} else {
-					log_trace!(logger, "   ...including {} {} HTLC {} (hash {}) with value {}", if $outbound { "outbound" } else { "inbound" }, $htlc.state, $htlc.htlc_id, $htlc.payment_hash, $htlc.amount_msat);
-					nondust_htlcs.push(htlc_in_tx);
-				}
+				htlcs_included.push((htlc_in_tx, $source));
 			}
 		}
 
@@ -4012,11 +4000,13 @@ impl<SP: Deref> ChannelContext<SP> where SP::Target: SignerProvider {
 
 		for htlc in self.pending_inbound_htlcs.iter() {
 			if htlc.state.included_in_commitment(generated_by_local) {
+				log_trace!(logger, "   ...including inbound {} HTLC {} (hash {}) with value {}", htlc.state, htlc.htlc_id, htlc.payment_hash, htlc.amount_msat);
 				add_htlc_output!(htlc, false, None);
 			} else {
 				log_trace!(logger, "   ...not including inbound HTLC {} (hash {}) with value {} due to state ({})", htlc.htlc_id, htlc.payment_hash, htlc.amount_msat, htlc.state);
 				if let Some(preimage) = htlc.state.preimage() {
 					inbound_htlc_preimages.push(preimage);
+					value_to_self_msat_offset += htlc.amount_msat as i64;
 				}
 			}
 		};
@@ -4026,53 +4016,37 @@ impl<SP: Deref> ChannelContext<SP> where SP::Target: SignerProvider {
 				outbound_htlc_preimages.push(preimage);
 			}
 			if htlc.state.included_in_commitment(generated_by_local) {
+				log_trace!(logger, "   ...including outbound {} HTLC {} (hash {}) with value {}", htlc.state, htlc.htlc_id, htlc.payment_hash, htlc.amount_msat);
 				add_htlc_output!(htlc, true, Some(&htlc.source));
 			} else {
 				log_trace!(logger, "   ...not including outbound HTLC {} (hash {}) with value {} due to state ({})", htlc.htlc_id, htlc.payment_hash, htlc.amount_msat, htlc.state);
+				if htlc.state.preimage().is_some() {
+					value_to_self_msat_offset -= htlc.amount_msat as i64;
+				}
 			}
 		};
 
-		// We MUST use saturating subs here, as the funder's balance is not guaranteed to be greater
-		// than or equal to the sum of `total_fee_sat` and `total_anchors_sat`.
+		// # Panics
 		//
-		// This is because when the remote party sends an `update_fee` message, we build the new
-		// commitment transaction *before* checking whether the remote party's balance is enough to
-		// cover the total fee and the anchors.
-
-		let (value_to_self, value_to_remote) = if funding.is_outbound() {
-			((local_balance_before_fee_msat / 1000).saturating_sub(total_fee_sat), remote_balance_before_fee_msat / 1000)
-		} else {
-			(local_balance_before_fee_msat / 1000, (remote_balance_before_fee_msat / 1000).saturating_sub(total_fee_sat))
-		};
-
-		let mut to_broadcaster_value_sat = if local { value_to_self } else { value_to_remote };
-		let mut to_countersignatory_value_sat = if local { value_to_remote } else { value_to_self };
-
-		if to_broadcaster_value_sat >= broadcaster_dust_limit_sat {
-			log_trace!(logger, "   ...including {} output with value {}", if local { "to_local" } else { "to_remote" }, to_broadcaster_value_sat);
-		} else {
-			to_broadcaster_value_sat = 0;
-		}
-
-		if to_countersignatory_value_sat >= broadcaster_dust_limit_sat {
-			log_trace!(logger, "   ...including {} output with value {}", if local { "to_remote" } else { "to_local" }, to_countersignatory_value_sat);
-		} else {
-			to_countersignatory_value_sat = 0;
-		}
+		// While we expect `value_to_self_msat_offset` to be negative in some cases, the local
+		// balance MUST remain greater than or equal to 0.
+		
+		// TODO: When MSRV >= 1.66.0, use u64::checked_add_signed
+		let value_to_self_with_offset_msat = (funding.value_to_self_msat as i64 + value_to_self_msat_offset).try_into().unwrap();
 
-		let channel_parameters =
-			if local { funding.channel_transaction_parameters.as_holder_broadcastable() }
-			else { funding.channel_transaction_parameters.as_counterparty_broadcastable() };
-		let tx = CommitmentTransaction::new(
+		let (tx, stats) = SpecTxBuilder {}.build_commitment_transaction(
+			local,
 			commitment_number,
 			per_commitment_point,
-			to_broadcaster_value_sat,
-			to_countersignatory_value_sat,
-			feerate_per_kw,
-			nondust_htlcs,
-			&channel_parameters,
+			&funding.channel_transaction_parameters,
 			&self.secp_ctx,
+			value_to_self_with_offset_msat,
+			htlcs_included.iter().map(|(htlc, _source)| htlc).cloned().collect(),
+			feerate_per_kw,
+			broadcaster_dust_limit_sat,
+			logger,
 		);
+		debug_assert_eq!(stats, self.build_commitment_stats(funding, local, generated_by_local, None, None));
 
 		// This populates the HTLC-source table with the indices from the HTLCs in the commitment
 		// transaction.

lightning/src/sign/tx_builder.rs

@@ -1,16 +1,31 @@
 //! Defines the `TxBuilder` trait, and the `SpecTxBuilder` type
 
-use crate::ln::chan_utils::commit_tx_fee_sat;
+use core::ops::Deref;
+
+use bitcoin::secp256k1::{self, PublicKey, Secp256k1};
+
+use crate::ln::chan_utils::{
+	commit_tx_fee_sat, ChannelTransactionParameters, CommitmentTransaction, HTLCOutputInCommitment,
+};
 use crate::ln::channel::{CommitmentStats, ANCHOR_OUTPUT_VALUE_SATOSHI};
 use crate::prelude::*;
 use crate::types::features::ChannelTypeFeatures;
+use crate::util::logger::Logger;
 
 pub(crate) trait TxBuilder {
 	fn build_commitment_stats(
 		&self, is_outbound_from_holder: bool, feerate_per_kw: u32, nondust_htlc_count: usize,
 		value_to_self_after_htlcs: u64, value_to_remote_after_htlcs: u64,
 		channel_type: &ChannelTypeFeatures,
 	) -> CommitmentStats;
+	fn build_commitment_transaction<L: Deref>(
+		&self, local: bool, commitment_number: u64, per_commitment_point: &PublicKey,
+		channel_parameters: &ChannelTransactionParameters, secp_ctx: &Secp256k1<secp256k1::All>,
+		value_to_self_msat: u64, htlcs_in_tx: Vec<HTLCOutputInCommitment>, feerate_per_kw: u32,
+		broadcaster_dust_limit_satoshis: u64, logger: &L,
+	) -> (CommitmentTransaction, CommitmentStats)
+	where
+		L::Target: Logger;
 }
 
 #[derive(Clone, Debug, Default)]
@@ -33,6 +48,13 @@ impl TxBuilder for SpecTxBuilder {
 		let mut local_balance_before_fee_msat = value_to_self_after_htlcs;
 		let mut remote_balance_before_fee_msat = value_to_remote_after_htlcs;
 
+		// We MUST use saturating subs here, as the funder's balance is not guaranteed to be greater
+		// than or equal to `total_anchors_sat`.
+		//
+		// This is because when the remote party sends an `update_fee` message, we build the new
+		// commitment transaction *before* checking whether the remote party's balance is enough to
+		// cover the total anchor sum.
+
 		if is_outbound_from_holder {
 			local_balance_before_fee_msat =
 				local_balance_before_fee_msat.saturating_sub(total_anchors_sat * 1000);
@@ -47,4 +69,124 @@ impl TxBuilder for SpecTxBuilder {
 			remote_balance_before_fee_msat,
 		}
 	}
+	fn build_commitment_transaction<L: Deref>(
+		&self, local: bool, commitment_number: u64, per_commitment_point: &PublicKey,
+		channel_parameters: &ChannelTransactionParameters, secp_ctx: &Secp256k1<secp256k1::All>,
+		value_to_self_msat: u64, mut htlcs_in_tx: Vec<HTLCOutputInCommitment>, feerate_per_kw: u32,
+		broadcaster_dust_limit_satoshis: u64, logger: &L,
+	) -> (CommitmentTransaction, CommitmentStats)
+	where
+		L::Target: Logger,
+	{
+		let mut local_htlc_total_msat = 0;
+		let mut remote_htlc_total_msat = 0;
+
+		// Trim dust htlcs
+		htlcs_in_tx.retain(|htlc| {
+			if htlc.offered == local {
+				// This is an outbound htlc
+				local_htlc_total_msat += htlc.amount_msat;
+			} else {
+				remote_htlc_total_msat += htlc.amount_msat;
+			}
+			if htlc.is_dust(
+				feerate_per_kw,
+				broadcaster_dust_limit_satoshis,
+				&channel_parameters.channel_type_features,
+			) {
+				log_trace!(
+					logger,
+					"   ...trimming {} HTLC with value {}sat, hash {}, due to dust limit {}",
+					if htlc.offered == local { "outbound" } else { "inbound" },
+					htlc.amount_msat / 1000,
+					htlc.payment_hash,
+					broadcaster_dust_limit_satoshis
+				);
+				false
+			} else {
+				true
+			}
+		});
+
+		// # Panics
+		//
+		// The value going to each party MUST be 0 or positive, even if all HTLCs pending in the
+		// commitment clear by failure.
+
+		let stats = self.build_commitment_stats(
+			channel_parameters.is_outbound_from_holder,
+			feerate_per_kw,
+			htlcs_in_tx.len(),
+			value_to_self_msat.checked_sub(local_htlc_total_msat).unwrap(),
+			(channel_parameters.channel_value_satoshis * 1000)
+				.checked_sub(value_to_self_msat)
+				.unwrap()
+				.checked_sub(remote_htlc_total_msat)
+				.unwrap(),
+			&channel_parameters.channel_type_features,
+		);
+
+		// We MUST use saturating subs here, as the funder's balance is not guaranteed to be greater
+		// than or equal to `total_fee_sat`.
+		//
+		// This is because when the remote party sends an `update_fee` message, we build the new
+		// commitment transaction *before* checking whether the remote party's balance is enough to
+		// cover the total fee.
+
+		let (value_to_self, value_to_remote) = if channel_parameters.is_outbound_from_holder {
+			(
+				(stats.local_balance_before_fee_msat / 1000).saturating_sub(stats.total_fee_sat),
+				stats.remote_balance_before_fee_msat / 1000,
+			)
+		} else {
+			(
+				stats.local_balance_before_fee_msat / 1000,
+				(stats.remote_balance_before_fee_msat / 1000).saturating_sub(stats.total_fee_sat),
+			)
+		};
+
+		let mut to_broadcaster_value_sat = if local { value_to_self } else { value_to_remote };
+		let mut to_countersignatory_value_sat = if local { value_to_remote } else { value_to_self };
+
+		if to_broadcaster_value_sat >= broadcaster_dust_limit_satoshis {
+			log_trace!(
+				logger,
+				"   ...including {} output with value {}",
+				if local { "to_local" } else { "to_remote" },
+				to_broadcaster_value_sat
+			);
+		} else {
+			to_broadcaster_value_sat = 0;
+		}
+
+		if to_countersignatory_value_sat >= broadcaster_dust_limit_satoshis {
+			log_trace!(
+				logger,
+				"   ...including {} output with value {}",
+				if local { "to_remote" } else { "to_local" },
+				to_countersignatory_value_sat
+			);
+		} else {
+			to_countersignatory_value_sat = 0;
+		}
+
+		let directed_parameters = if local {
+			channel_parameters.as_holder_broadcastable()
+		} else {
+			channel_parameters.as_counterparty_broadcastable()
+		};
+
+		let tx = CommitmentTransaction::new(
+			commitment_number,
+			per_commitment_point,
+			to_broadcaster_value_sat,
+			to_countersignatory_value_sat,
+			feerate_per_kw,
+			htlcs_in_tx,
+			&directed_parameters,
+			secp_ctx,
+		);
+
+		(tx, stats)
+	}
 }