Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Let ChannelSigner set and spend LN scriptpubkeys #3512

Draft
wants to merge 26 commits into
base: main
Choose a base branch
from
Draft

Let ChannelSigner set and spend LN scriptpubkeys #3512

wants to merge 26 commits into from

Conversation

tankyleo
Copy link
Contributor

@tankyleo tankyleo commented Jan 8, 2025
edited
Loading

This PR allows the customization of different outputs of the commitment transaction, in preparation for taproot channels and also to allow people to set the outputs to arbitrary scripts if they don't require compatibility with the formal LN spec.

My approach is to ask the channel signers to do more work (but not more than that of most hardware wallets):

  • Set the appropriate SPK's for the different outputs of the commitment transaction.
  • Let the various transaction builders know of the expected weight of the witness to spend such an output - the transaction builders can then set appropriate feerates when building the transactions.
  • At spend time, return a transaction with the specified input completely finalized (witness field is fully finalized - previously the EcdsaChannelSigner would return just the signature). I am considering having the ChannelSigner return just the witness here, instead of the full transaction.

This PR assumes that if the scripts in a channel are customized to something outside the LN spec, that channel supports zero fee htlc tx.

I mark it as draft. I understand this is a huge PR. I hope to show the full picture of how the current approach works to get approach ACKs, then happy to break it down into smaller PRs.

Remaining TODOs:

  • Update SpendableOutputDescriptor to accomodate taproot / arbitrary scripts.
  • Finalize EcdsaChannelSigner vs ChannelSigner APIs.
  • Documentation, and more detailed commit msgs.
  • Customize the funding output.
  • Consider asking the ChannelSigner to return just the witness that finalizes the given input, instead of returning the full transaction with the given input finalized.
  • Figure out a mechanism to guide people who want to implement a ChannelSigner inline with the LN spec. One possible route: have the ChannelSigner trait offer "ProvidedMethods" for implementers who want to stay in-line with the LN specification - people who want to depart from the spec would then override these methods.

Supersedes #3454

@tankyleo tankyleo mentioned this pull request Jan 8, 2025
Closed
tankyleo added 26 commits January 10, 2025 22:41
@tankyleo
Let ChannelSigner set to_remote scriptpubkey
b3967e2 
This allows the `to_remote` output to easily be changed according to the
features of the channel, or the evolution of the LN specification.

`to_remote` could even be set to completely arbitrary scripts if
compatibility with the formal LN spec is not required.
@tankyleo
Let ChannelSigner set to_local script pubkey
332dc26 
This allows the `to_local` output to easily be changed according to the
features of the channel, or the evolution of the LN specification.

`to_local` could even be set to completely arbitrary scripts if
compatibility with the formal LN spec is not required.
@tankyleo
Let ChannelSigner set htlc tx script pubkey
c102e40 
This allows the htlc tx output to easily be changed according to the
features of the channel, or the evolution of the LN specification.

The output could even be set to completely arbitrary scripts if
compatibility with the formal LN spec is not required.

Builders of htlc transactions now ask a `ChannelSigner` for the
appropriate revokeable script pubkey to use, and then pass it to the
htlc transaction constructors.
@tankyleo
Add ChannelSigner::punish_revokeable_output
8917097 
All LN-Penalty channel signers need to be able to punish the
counterparty in case they broadcast an old state. In this commit, we
ask implementers of `ChannelSigner` to produce the full transaction with
the given input finalized to punish the corresponding previous output.
Consumers of the `ChannelSigner` trait can now be agnostic to the
specific scripts used in revokeable outputs.

We leave passing to the `ChannelSigner` all the previous `TxOut`'s
needed to produce valid schnorr signatures under BIP 341 spending rules
to a later patch.
@tankyleo
Ask ChannelSigner the weight of the punishment witness
86e0b0c 
for the revokeable scripts in the `to_local` and the htlc
tx outputs.
@tankyleo
Removed unused RevokedOutput fields
bbd6a36
@tankyleo
Add ChannelSigner::punish_htlc_output
51bac9b 
All LN-Penalty channel signers need to be able to punish the
counterparty in case they broadcast an old state. In this commit, we
ask implementers of `ChannelSigner` to produce the full transaction with
the given input finalized to punish the corresponding previous output.
Consumers of the `ChannelSigner` trait can now be agnostic to the
specific scripts used in HTLC outputs of commitment transactions.

We leave passing to the `ChannelSigner` all the previous `TxOut`'s
needed to produce valid schnorr signatures under BIP 341 spending rules
to a later patch.
@tankyleo
Removed unused RevokedHTLCOutput fields
f96c2af
@tankyleo
Ask ChannelSigner the weight of the htlc punishment witness
22406e1
@tankyleo
Let ChannelSigner sweep htlc outputs
0c41cb9 
Add `ChannelSigner::sweep_counterparty_offered_htlc_output`
Add `ChannelSigner::sweep_counterparty_received_htlc_output`
@tankyleo
Remove unused CounterpartyOfferedHTLCOutput fields
b54bdcb
@tankyleo
Remove unused CounterpartyReceivedHTLCOutput fields
571b855
@tankyleo
Ask ChannelSigner the weight of counterparty htlc output sweeps
3e8b7ed
@tankyleo
Make sign_holder_commitment generic over signature type
79a1c04
@tankyleo
Make unsafe_sign_holder_commitment generic over signature type
aab89b7
@tankyleo
Make sign_holder_htlc_transaction generic over signature type
615feef
@tankyleo
Most things in mod chain are now generic over segwit vs taproot
b9996d7
@tankyleo
Remove unused `TrustedCommitmentTransaction::build_htlc_input_witness
96dee21
@tankyleo
Ask ChannelSigner the weight of the htlc tx input
05fdbfa
@tankyleo
Let ChannelSigner set commit tx htlc output script pubkey
5f6e037
@tankyleo
internal_build_outputs does not need TxCreationKeys
2419717
@tankyleo
Add ChannelSigner::get_anchor_txout
687d07c
@tankyleo
Add ChannelSigner::spend_holder_anchor_input
9aeb2bd
@tankyleo
Add ChannelSigner::get_holder_anchor_input_witness_weight
db7df42
@tankyleo
Mark PackageSolvingData::HolderHTLCOutput weight unreachable
00bb409
@tankyleo
Removed unused field in HolderFundingOutput
5b57776
@tankyleo tankyleo force-pushed the 2025-01-signer-spks branch from 508d577 to 5b57776 Compare January 10, 2025 22:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@tankyleo