sweepbatcher: add mode with presigned transactions

[starius]

In this mode sweepbatcher uses transactions provided by the Presigned helper.
Transactions are signed upon adding an input to a batch.

A single Batcher instance can handle both presigned and regular batches.
Currently presigned and non-presigned sweeps never appear in the same batch.

Pull Request Checklist

• Update release_notes.md if your PR contains major features, breaking changes or bugfixes

[hieblmi]

Amazing work @starius. I've left a couple of questions in my first pass.

[hieblmi]

nit: maybe clarify "failed to add presigned sweep %x..."

[starius]

Fixed

[hieblmi]

nit: maybe clarify "failed to add non-presigned sweep %x..."

[starius]

Fixed

[hieblmi]

I think if all sweeps are presigned we return true, false otherwise. So we should return false here if !sweep.presigned, otherwise a presigned batch could still have non-presigned sweeps.

[starius]

I rewrote the function to ensure that all the sweeps have the same presigned status. If there is a mix, the function returns an error. This would be a bug.

[hieblmi]

I see this is ensured in the batch by b.ensurePresigned

[starius]

I updated ensurePresigned and SignTx interface (added argument presignedOnly), so ensurePresigned actually ensured that it is presigned, not tried to sign (become read-only). Also added a test making sure that the batcher crashes if AddSweep is called before calling PresignSweep (for a presigned sweep). (AddSweep can't return that error, since it only pushes a sweep to the event loop.)

[hieblmi]

nit: camel case nextBlockFeeRate

[starius]

Fixed

[hieblmi]

if err == nil here, don't we then have to call b.presign for the sweep here?

[starius]

If ensurePresigned returned no error, this means, it has been presigned already. No need to presign again. If not presigned, then crash the batcher (this is only possible because of a bug).

[hieblmi]

instead of iterating, do you think it makes sense to add a presigned flag to the batch struct that we can check before adding a sweep to a batch?

[starius]

I plan to allow half-presigned batches in the future to use a regular sweep an an anchor and such a flag would be removed. So I decided to keep this calculated not to forget to remove it in the future :)

[hieblmi]

nit: "find the sweep with the earliest expiry"

[starius]

Fixed

[hieblmi]

why is it 2? Maybe create a constant?

[starius]

I updated this place:

        // priorityConfTarget defines the confirmation target for quick
        // inclusion in a block. A value of 2, rather than 1, is used to prevent
        // overestimation caused by temporary anomalies, such as periods without
        // blocks.
        const priorityConfTarget = 2

        // Find the feerate needed to get into next block.
        nextBlockFeeRate, err := b.wallet.EstimateFeeRate(
                ctx, priorityConfTarget,
        )

This fee rate is only used to define a high fee rate (10x of this value and at least 100 sats/vbyte).

[starius]

BTW the fee estimator fails with conf_target=1: #898
Maybe it worth making this a global constant in Loop and use it in all such places.

[starius]

Updated the comment:

        // priorityConfTarget defines the confirmation target for quick
        // inclusion in a block. A value of 2, rather than 1, is used to prevent
        // fee estimator from failing.
        // See https://github.com/lightninglabs/loop/issues/898
        const priorityConfTarget = 2

[lightninglabs-deploy]

@hieblmi: review reminder

[hieblmi]

It's great work @starius, I've left a couple of more comments, looks almost good to me.

[hieblmi]

its not possible that if there are many such transactions, that they'd have different pkScripts, I assume.

[starius]

Yes, all of the transactions should have the same destination address, by construction. However this is not enforced by PresignedHelper. In theory someone can call Presign on transactions with the same list of inputs and different destination addresses and all of the addresses would be considered valid. We can demand PresignedHelper to check that address is always the same, but this would make queries heavier. (Checking in Presign that destination address is the same in all presigned transactions with such inputs.)

[hieblmi]

nit: if this is a

[starius]

Fixed

[hieblmi]

should we call this method in the comment getPresignedSweepsDestAddr to clarify?

[starius]

Renamed. Thanks!

[hieblmi]

could call it getPresignedSweepsDestAddr to make it clearer that this only makes sense in the context of presigned batches.

[starius]

Renamed

[hieblmi]

nit: shoud be done...

[starius]

Fixed

[hieblmi]

maybe we could call this flag loadOnly or something similar?

[starius]

Renamed to loadOnly.

[hieblmi]

does ensurePresigned imply that there should be already be a transaction with given inputs that has a populated witness? I don't see a check anywhere in this method or sub-method that checks for a witness.

[starius]

I added a check to CheckSignedTx which is called by this method:

// Make sure all inputs of signedTx have a non-empty witness.
for _, txIn := range signedTx.TxIn {
	if len(txIn.Witness) == 0 {
		return fmt.Errorf("input %s of signed tx is not signed",
			txIn.PreviousOutPoint)
	}
}

[hieblmi]

Just a side question: Currently the result is not yet used. Is it intended to then pass this pre-signed transaction into our store? I guess once the batch is confirmed we could clean up all the presigned fee versions.

[hieblmi]

Also, would Presigner handle persisting the txns? Otherwise wouldn't that require another client change?

[starius]

PresignHelper is responsible for storing the transactions. SweepBatcher relies on helper.SignTx to be able to load transactions stored by previous helper.Presign and helper.SignTx calls.

I guess once the batch is confirmed we could clean up all the presigned fee versions.

This is done. There is the method CleanupTransactions which is called by batch.handleConf method.

[hieblmi]

is it trying to sign when presignedOnly is passed in?

[starius]

presignedOnly = false in this call, so it tries to sign interactively and if it fails, goes to the store of presigned transactions.

[hieblmi]

looks like the input sequence numbers aren't checked as described in the godoc of SignTx.

[starius]

Sequence numbers are compared using unsignedMap. Also there is a test case to verify this.

[starius]

Found a couple of edge cases. Converting to a draft until the fix is ready.

[hieblmi]

Left some comments and questions for the latest set of changes.

[starius]

@hieblmi Thanks for comments! 🎉
I fixed them.

Also found a small edge case for function constructUnsignedTx. Fixed it in commit sweepbatcher: fix rounding in constructUnsignedTx.

[starius]

Updated the last commit sweepbatcher: add mode with presigned transactions. Skipped ensurePresigned check in AddSweep if the sweep is fully confirmed (the presigned transaction is cleaned up by this time).

[hieblmi]

Really amazing work on this @starius. LGTM!

[starius]

@hieblmi I expanded the purging test to verify that if the sweeps are online at the time of purging (i.e. confirmed tx doesn't have them and they have to be re-added to the batcher) they can be successfully added to an existing batch.

I did it in a temp commit to make it easier to re-review the change.

[starius]

@hieblmi One more change. I replaces helper.IsPresigned() method with a field in SweepInfo. This makes things easier on naut side. I pushed it in a separate temp commit.

[bhandras]

Looks really good! My only complaint is the possible timeout overflow, otherwise LGTM!

[bhandras]

This can overflow if timeout is less than 50.

[starius]

I changed this to fix this edge case. Thanks! Added a test case.

// Calculate the locktime value to use for high feerate transactions.
// If timeout <= timeoutThreshold, don't set LockTime (keep value 0).
var highFeeRateLockTime uint32
if timeout > timeoutThreshold {
	highFeeRateLockTime = uint32(timeout - timeoutThreshold)
}

[starius]

@bhandras I pushed two commits to squash them later. They have the fixes for your comments.
Please take another look!

[bhandras]

Really nice additions @starius 🥇 LGTM! 🎉