Delay RAA-after-next processing until PaymentSent is are handled #2112
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
5 times, most recently
from
6789818 to
6cb3b5e
Compare
Codecov ReportPatch coverage:
❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more. Additional details and impacted files@@ Coverage Diff @@
## main #2112 +/- ##
==========================================
+ Coverage 90.40% 90.79% +0.39%
==========================================
Files 106 106
Lines 56268 59332 +3064
Branches 56268 59332 +3064
==========================================
+ Hits 50868 53871 +3003
- Misses 5400 5461 +61
☔ View full report in Codecov by Sentry. |
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
6cb3b5e to
26e3e00
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
3 times, most recently
from
c7e8f27 to
f94de18
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
3 times, most recently
from
e34dab6 to
031bd1b
Compare
This was referenced Apr 7, 2023
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
7 times, most recently
from
578ca9b to
3ff2911
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
3 times, most recently
from
422f630 to
efde36c
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
efde36c to
9a36e4a
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
ba1207a to
097fc94
Compare
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
097fc94 to
3df2604
Compare
|
Squashed without further changes. |
wpaulino
reviewed
Aug 1, 2023
| @@ -1152,7 +1152,7 @@ impl OutboundPayments { | |||
| payment_id, | |||
| payment_hash, | |||
| path, | |||
| }, None)); | |||
| }, Some(ev_completion_action))); | |||
There was a problem hiding this comment.
Why does PaymentPathSuccessful also need the completion action? There's no coverage here, setting it to None and all tests pass.
There was a problem hiding this comment.
Having it there means we won't lose PaymentPathSuccessful events on a rare restart edge case, but currently isn't externally visible and will only have an impact if we change event handling (eg where event handling can return an err) - because users always have to handle all events in one big batch before we remove them, you either fully handle events or you don't handle any events. If we move to event handling being able to return an err, a user could handle one event and not the other and lose PaymentPathSuccessful events, maybe. It doesn't matter much, really, but I'd prefer to leave it.
wpaulino
previously approved these changes
Aug 14, 2023
| @@ -5928,10 +5938,16 @@ where | |||
| let peer_state = &mut *peer_state_lock; | |||
| match peer_state.channel_by_id.entry(msg.channel_id) { | |||
| hash_map::Entry::Occupied(mut chan) => { | |||
| let funding_txo = chan.get().context.get_funding_txo(); | |||
| let (htlcs_to_fail, monitor_update_opt) = try_chan_entry!(self, chan.get_mut().revoke_and_ack(&msg, &self.fee_estimator, &self.logger), chan); | |||
| let funding_txo_opt = chan.get().context.get_funding_txo(); | |||
There was a problem hiding this comment.
It should have been added to this line, no? No big deal though.
There was a problem hiding this comment.
No, unwraping on this line is unsafe and can panic, as we could receive an RAA message for a channel that isnt yet funded, and wouldnt fail until we call into channel...
There was a problem hiding this comment.
Ah, or would have, in the version of LDK when this code was written - before the channel split :)
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
3df2604 to
233b8ec
Compare
valentinewallace
previously approved these changes
Aug 16, 2023
wpaulino
previously approved these changes
Aug 16, 2023
|
Ah, needs a rebase to fix some test compile errors. |
TheBlueMatt
dismissed stale reviews from wpaulino and valentinewallace
via
dcfd5d7
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
233b8ec to
dcfd5d7
Compare
|
Rebased with the following additional diff: |
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
dcfd5d7 to
4e93462
Compare
wpaulino
previously approved these changes
Aug 16, 2023
valentinewallace
previously approved these changes
Aug 17, 2023
|
Needs rebase :( |
This is a trivial refactor which will be used in the next commit.
In 0ad1f4c we fixed a nasty bug where a failure to persist a `ChannelManager` faster than a `ChannelMonitor` could result in the loss of a `PaymentSent` event, eventually resulting in a `PaymentFailed` instead! As noted in that commit, there's still some risk, though its been substantially reduced - if we receive an `update_fulfill_htlc` message for an outbound payment, and persist the initial removal `ChannelMonitorUpdate`, then respond with our own `commitment_signed` + `revoke_and_ack`, followed by receiving our peer's final `revoke_and_ack`, and then persist the `ChannelMonitorUpdate` generated from that, all prior to completing a `ChannelManager` persistence, we'll still forget the HTLC and eventually trigger a `PaymentFailed` rather than the correct `PaymentSent`. Here we fully fix the issue by delaying the final `ChannelMonitorUpdate` persistence until the `PaymentSent` event has been processed and document the fact that a spurious `PaymentFailed` event can still be generated for a sent payment. The original fix in 0ad1f4c is still incredibly useful here, allowing us to avoid blocking the first `ChannelMonitorUpdate` until the event processing completes, as this would cause us to add event-processing delay in our general commitment update latency. Instead, we ultimately race the user handling the `PaymentSent` event with how long it takes our `revoke_and_ack` + `commitment_signed` to make it to our counterparty and receive the response `revoke_and_ack`. This should give the user plenty of time to handle the event before we need to make progress. Sadly, because we change our `ChannelMonitorUpdate` semantics, this change requires a number of test changes, avoiding checking for a post-RAA `ChannelMonitorUpdate` until after we process a `PaymentSent` event. Note that this does not apply to payments we learned the preimage for on-chain - ensuring `PaymentSent` events from such resolutions will be addressed in a future PR. Thus, tests which resolve payments on-chain switch to a direct call to the `expect_payment_sent` function with the claim-expected flag unset.
|
Rebased. |
TheBlueMatt
force-pushed
the
2023-02-sent-persist-order
branch
from
4e93462 to
31049ed
Compare
wpaulino
approved these changes
Aug 21, 2023
valentinewallace
approved these changes
Aug 21, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Depends on #2111, is just the last commit on it. See discussion there for merge-ordering.