Sweep inputs even the budget cannot be covered

[yyforyongyu]

This PR fixes the issue of the sweep being delayed due to the current wallet UTXOs not being able to cover the full budget. An example case is this sweeping tx, in which an HTLC output was swept with overshooting fees. This happened because the sweeper requires the budget to be fully covered before attempting the sweep, otherwise the sweeper will wait until more wallet UTXOs are available - by that time, the deadline may already be very close, or even passed, causing the full budget to be used up at once.

This PR changes the all or nothing behavior by starting the sweeping process asap if the budget can be covered partially. Later on, when there are more wallet UTXOs, the sweeper will add them to make up the rest of the budget.

[coderabbitai]

Important

Review skipped

Auto reviews are limited to specific labels.

🏷️ Labels to auto review (1)

• llm-review

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai plan to trigger planning for file edits and PR creation.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[ziggie1984]

First pass done

Will need another look to evaluate the sweeper changes tho.

So when an input set cannot cover its fees, the inputs will be marked as failed, but the input set will still remain in memory and we are going to add another wallet input when another block arrives ?

[ziggie1984]

I think that won't work either because incoming and outgoing htlcs start a new counter so the counter are not unique, you either need a comibnation of the hash+index, or incoming_bool + index to fix it properly.

[yyforyongyu]

yeah right - fixed!

[ziggie1984]

An error is returned when the fee func is nil and created without error :=> can you rephrase this I am unsure I understand what you are trying to say.

[yyforyongyu]

updated

[ziggie1984]

Q: Is this always the case that a sweep is replaced by another party, I mean we can also just run out of budget or ?

[yyforyongyu]

updated

[Roasbeef]

First pass, the change makes intuitive sense: we should at least attempt a sweep even if we don't have all the wallet inputs we need to publish at our ideal fee rate.

[Roasbeef]

So simply logging this slows things down enough for a flake to not occur?

[yyforyongyu]

nope - it's a rare flake that caused the syncing to be blocked, but there was little logging in that build. I added more debug logs such that if it happens again, we can have more info here.

[yyforyongyu]

So when an input set cannot cover its fees, the inputs will be marked as failed, but the input set will still remain in memory and we are going to add another wallet input when another block arrives ?

Yeah except it's not the input set, but the inputs will remain and we will attempt again in another block. These inputs will be put in a new input set.

[ziggie1984]

Looks good to me, still two open question from my side then it's gtg:

1. Can we also fire the sweep if we have no walletInputs at all but wallet inputs are needed to cover the full budget

2. Limit the budget depending on the MaxFeeRate so that we do not use WalletInputs which are not needed in the first place because we will never use up the full wallet balance.

[ziggie1984]

So for this function to be used, do the inputs all need to be "retried inputs" or can even new inputs be swept using this function when regrouped with "retried inputs" ? This might sweep new inputs if regrouped with new inputs at a higher fee than necessary ?

[yyforyongyu]

yeah that's a tradeoff here - either we retry the sweeping with a starting fee rate of 0, which leaves the new inputs on the fee func line, or we keep the retried inputs on the line by using a starting fee rate derived from its last attempt, and keep the new inputs using the larger starting fee rate. This will be fixed if we have the ability to sweep by groups, and before that's fixed, I choose the latter approach since it's unlikely new inputs will be grouped given their deadlines usually vary.

[ziggie1984]

understand thank you for the explanation.

[ziggie1984]

I am a bit confused here, how can the starting feerate be 0, you mean not set at all and it will be set later in the fee_function ?

[yyforyongyu]

I think it is explained below - the sweeper will update the starting fee rate to the last attempted fee rate, which in this case is 0, because we don't set it when error out in ErrMaxPosistion.

[ziggie1984]

Seems like a design decision, I wonder why you not just capped the value at the max feerate rather than not setting it at all, for me the former feels more intuative.

[morehouse]

I also don't understand this change.

[yyforyongyu]

ok decided to change the behavior. So previously two things were happening,

• we update the starting fee rate when there's TxFailed event to prepare for the next fee bump
• we set the next fee rate in the fee bump it when the budget is not enough or the inputs are not enough
  This was why the itest was updated -this particular fee bump will fail with max position error, which means a) it's a failed event, so the fee rate will be updated and, b) it's a max position error, so the next fee rate was not set in the bump result, hence when we update the starting fee rate, it will be set to 0 (empty value).

This is now changed that, if there's a max position error, we always set the next fee rate before returning the fee bump result to the sweeper to handle.

[ziggie1984]

Q: Why the *2 here ?

[yyforyongyu]

ok updated the desc to make them more clear

[ziggie1984]

Q: What would happen in case of a restart and a new utxo sweep being added to the group ?

[yyforyongyu]

in that case I think they will be batched together to create a new sweeping tx.

[ziggie1984]

Nit: `walletBalance`` => `walletBalance`

[yyforyongyu]

fixed

[ziggie1984]

Q: I wonder what would happen in a restart, would the walletUTXO still be considered 0-conf and not be used ?

[yyforyongyu]

Limit the budget depending on the MaxFeeRate so that we do not use WalletInputs which are not needed in the first place because we will never use up the full wallet balance.

There's already a TODO for the coin selection strategy, which is out of scope here.

[ziggie1984]

LGTM 🫡 - had only some final non-blocking comments.

[ziggie1984]

Nit: Budget`` => Budget`

[yyforyongyu]

fixed

[ziggie1984]

I realised lately that according to my taste we work way to much with comments rather than using specific errors which we can filter for. Would be great to have like a max_position error rather than having a detailed comment that it can only be the max_position error.

[yyforyongyu]

yeah totally agree - I actually thought about whether it's possible to refactor the method so it doesn't even return an error, then add a new method like MaxPositionReached and use it in other places when we want to check whether we've reached the end of the fee function. I think it works, tho it now means we now need to care about the state of the fee function, but I guess we already do implicitly.

As for here, I think we want to skip any error returned here, plus the error log, should give us enough info about what happened.

Moving forward, I think I will try to avoid error equality checks as much as possible, it's like try catch, think there's always a way to refactor the error out of existence in the first place.

[ziggie1984]

Nit: Add the amount we are short for the budget in the logs

[yyforyongyu]

it's actually a bit involved, but think it can be very helpful so added the log,

2025-03-26 16:27:58.316 [WRN] SWPR: Not enough wallet UTXOs: need budget=0.00020000 BTC, has spendable=0.00010000 BTC, total=0.00020000 BTC, missing at least 0.00010000 BTC, sweeping anyway...

[ziggie1984]

understand thank you for the explanation.

[ziggie1984]

Seems like a design decision, I wonder why you not just capped the value at the max feerate rather than not setting it at all, for me the former feels more intuative.

[ziggie1984]

Nit: I would propose creating an issue for this TODO, otherwise it might become forgotten in the itest files. Wallet inputs are scarce and we should use them efficiently.

[morehouse]

Not a nit, we need an issue for this.

[yyforyongyu]

At this stage I don't know who else is gonna fix that...but yeah it's the 3rd item listed here #8680.

Think I will create an issue too in case this gets to be the bitcoin summer internship project.

[morehouse]

Does ErrNotEnoughBudget really belong here? Previously this error was considered TxFatal so the user can increase the budget if needed.

[yyforyongyu]

Good q - I think it actually needs to be TxFailed since the inputs will be removed when it's TxFatal. I guess this in theory should never happen because we derive the fees based on the budget first, so the fees should never be greater than the budget, unless there's a bug in the tx weight calculation.

[morehouse]

I also don't understand this change.

[morehouse]

Why does this need a defer?

[yyforyongyu]

Just a pattern we use in all MineBlockXXX methods

[morehouse]

Not a nit, we need an issue for this.