Peer Storage Feature – Part 2

[adi2011]

This is the second PR in the peer storage feature series.

Key Changes

• Enable ChainMonitor to send peer storage to all channel partners whenever a new block is mined.
• Add get_peer_storage_key() to NodeSigner.
• Implement decryption logic for peer storage in handle_peer_storage_retrieval().

In the next one, I will add serialisation logic for ChannelMonitors inside peer storage.

[tnull]

Seems this isn't properly rebased, hence CI is failing?

[adi2011]

Seems this isn't properly rebased, hence CI is failing?

I think #3626 will fix this.

[tnull]

Seems this isn't properly rebased, hence CI is failing?

I think #3626 will fix this.

No, it fails with:

src/ln/our_peer_storage.rs - ln::our_peer_storage::OurPeerStorage (line 48) stdout ----
error[E0433]: failed to resolve: use of undeclared type `OurPeerStorage`
 --> src/ln/our_peer_storage.rs:49:28
  |
3 | let mut our_peer_storage = OurPeerStorage::new();
  |                            ^^^^^^^^^^^^^^ not found in this scope
  |
help: consider importing this struct
  |
2 | use lightning::ln::our_peer_storage::OurPeerStorage;
  |

error[E0433]: failed to resolve: use of undeclared type `OurPeerStorage`
 --> src/ln/our_peer_storage.rs:54:1
  |
8 | OurPeerStorage::decrypt_our_peer_storage(&mut decrypted, &encrypted).unwrap();
  | ^^^^^^^^^^^^^^ not found in this scope
  |
help: consider importing this struct
  |
2 | use lightning::ln::our_peer_storage::OurPeerStorage;
  |

error: aborting due to 2 previous errors

For more information about this error, try `rustc --explain E0433`.
Couldn't compile the test.

failures:
    src/ln/our_peer_storage.rs - ln::our_peer_storage::OurPeerStorage (line 48)

test result: FAILED. 28 passed; 1 failed; 0 ignored; 0 measured; 0 filtered out; finished in 3.00s

error: test failed, to rerun pass '--doc'

[adi2011]

That is because it’s trying to compile the commented code in the documentation, I will fix it in a bit.

[tnull]

Unfortunately CI is still failing as the code doesn't work in no_std.

[tnull]

nit: IIRC, we settled on snake_case here?

Suggested change

	/// PeerStorage backup. It includes versioning and timestamping for comparison between
	/// `peer_storage` backup. It includes versioning and timestamping for comparison between

[adi2011]

Sorry, my bad. Fixed!

[tnull]

As LDK also supports no_std, we need to make this code work in no_std environments. As accessing time is only available in std, it means we either need to find a way to have the user provide the timestamp themselves, or feature-gate the peer storage to only work on std.

That said, are we positive that we need a timestamp in the first place?

[adi2011]

No, I have added a timestamp so that if we receive multiple peer storage instances, we can select the latest one. I was thinking of replacing the timestamp with block height...

[TheBlueMatt]

Not sure why we need to select the latest one specifically? Can't we just decode all of them and see if any have new data for our ChannelMonitors?

[adi2011]

Thanks for the review @tnull.

Fixed the CI :)

[codecov]

Codecov Report

Attention: Patch coverage is 83.42246% with 31 lines in your changes missing coverage. Please review.

Project coverage is 89.90%. Comparing base (4c43a5b) to head (4adeeee).
Report is 7 commits behind head on main.

Files with missing lines	Patch %	Lines
lightning/src/ln/channelmanager.rs	81.25%	11 Missing and 1 partial ⚠️
lightning/src/chain/chainmonitor.rs	77.77%	8 Missing ⚠️
lightning/src/ln/peer_handler.rs	60.00%	5 Missing and 1 partial ⚠️
lightning/src/ln/our_peer_storage.rs	95.83%	2 Missing ⚠️
lightning/src/util/test_utils.rs	66.66%	2 Missing ⚠️
lightning/src/ln/blinded_payment_tests.rs	0.00%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3623      +/-   ##
==========================================
+ Coverage   89.24%   89.90%   +0.66%     
==========================================
  Files         155      156       +1     
  Lines      119280   124273    +4993     
  Branches   119280   124273    +4993     
==========================================
+ Hits       106448   111733    +5285     
+ Misses      10238     9982     -256     
+ Partials     2594     2558      -36     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[TheBlueMatt]

No, this is a trait method, it doesn't, itself, do anything. Documentation on a trait method should describe what the method should do as well as additional context for when the method is called and possibly a possible implementation, but it what the method "does" do.

[adi2011]

Yes, makes sense. Fixed it.

[TheBlueMatt]

Rather than HKDF'ing from the node secret, let's derive a new key from the next hardened idx off the seed in KeysManager::new?

[adi2011]

Sure, I will update the PR to derive the key from the next hardened index. Could you share a bit more about the reasoning behind this approach?

[TheBlueMatt]

Seems weird to document private things?

[adi2011]

Yes. I initially implemented this with public fields for simplicity, but after further consideration, I refactored the code to use getter and setter methods instead.

[TheBlueMatt]

Not sure why we need to select the latest one specifically? Can't we just decode all of them and see if any have new data for our ChannelMonitors?

[TheBlueMatt]

I have no idea from the docs in this module what it means to "stub a channel" nor what this method does without looking at the code. Maybe just say that it "sets the serialized data to be included in the storage"?

[adi2011]

Sorry for being less descriptive. Fixed it.

[TheBlueMatt]

This flow is fairly brittle. We currently have to create a dummy OurPeerStorage with new, then store the data we need with stub_channels after calling encrypt_our_peer_storage on the data. But at no point does any of this change the type. Instead, why not just have a method to create_from_data that takes the key and does the encryption, and a decrypt(&self) -> Vec<u8> data that returns the data decrypted?

[adi2011]

Agreed. In the future PR we might need setter for ser_channels but not now. Thanks!

[TheBlueMatt]

Its not clear to me why this needs a trait? MessageSendEventsProvider already lets us send messages, and send_peer_storage is only called internally in chainmonitor.rs so it doesn't seem like something we need to expose to the world (let along via a trait rather than letting ChainMonitor have the method directly)

[adi2011]

Yes, that's what I initially thought as well. However, since we need to process events through PeerManager::process_events, I considered adding a new message handler to allow calling get_and_clear_pending_msg_events on ChainMonitor.

What could be an alternative structure that would still allow access to ChainMonitor::get_and_clear_pending_msg_events through PeerManager::process_events?

[TheBlueMatt]

We should explicitly document that this should be from the KeysManager's method to match what ChannelManager does.

[adi2011]

Thanks for pointing this out. Fixed!

[TheBlueMatt]

Not sure I understand the point of storing this in the ChainMonitor all the time. Rather, isn't it simpler to just build the OurPeerStorage that we need when send_peer_storage is called, encrypt it, and directly enqueue it as a message?

[adi2011]

Agreed. Thanks for pointing out.

[TheBlueMatt]

Please pass the key and ciphertext as separate arguments rather than concatenating them.

[adi2011]

Implemented this change based on the feedback from #2943 (comment).

[tnull]

This unfortunately needs a rebase now.

[tnull]

Not quite sure why this code move is necessary?

[adi2011]

So that we can use keys_manager.get_peer_storage_key() inside ChainMonitor::new().

[tnull]

Could link BIP32 here.

[adi2011]

Yes, Thanks!

[tnull]

Why does this return a [u8; 32] rather than simply a SecretKey?

[adi2011]

Agreed, fixing this...

[tnull]

nit: Tick/link PeerStorage

[adi2011]

Fixed

[tnull]

nit: According to the Rust API guidlines, this should just be called ser_channels. Also, maybe it would be worth spelling/renaming out ser_channels as the name doesn't communicate super clearly what it holds.

Also, can we have this return a reference and leave it up to the callsite whether they want/need to clone or not?

[tnull]

What are these 16 bytes exactly? Please introduce a clearly named constant for this.

[adi2011]

Yes, it's min_cyphertext_length because of the auth tag length. I will name it accordingly.

[tnull]

We should be able to avoid this clone if we have decrypt_our_peer_storage take the argument by value.

[adi2011]

Yes, thanks for pointing this out.

[tnull]

This make me wonder if it wouldn't be cleaner to introduce an EncryptedPeerStorage (or similar) helper type that we can transition to/from rather than doing all these conversions 'explictly'.

[adi2011]

I should make the flow smoother. Modifying decrypt_our_peer_storage to directly return OurPeerStorage.

[tnull]

Should we generally log (in TRACE?) when we successfully decrypted a backup, not only when it's length 0?

[adi2011]

Currently we just distribute empty peer storages, in the next PR we are going to serialise channelmonitors and send them over.

[tnull]

nit: Formatting is off.

[adi2011]

Fixed.

[adi2011]

Thank you so much, @tnull and @TheBlueMatt, for taking the time to review this. I’ve done my best to address all the comments. Please let me know if there’s anything I might have missed or if further changes are needed.

[TheBlueMatt]

Not sure we need to warn our peer if they send us bogus data.

[adi2011]

This won’t lead to a unilateral close and is also mentioned in the spec.

It's not compulsory, but it won’t make much of a difference, I guess?

The receiver of peer_storage_retrieval:

when it receives peer_storage_retrieval with an outdated or irrelevant data:
       MAY send a warning.

[TheBlueMatt]

We dont need to implement readable/writeable now since we use just a vec for the encrypted data, no?

[adi2011]

Writeable is used internally inside create_from_data, and Readable is used inside decrypt_our_peer_storage. I agree we currently don’t need them very much, but in the next one, we are going to use them for serialisation and deserialisation. Wouldn’t it be better to have it in this one instead of implementing serialisation and deserialisation logic directly within those functions?

[TheBlueMatt]

I don't think this needs to be a SecretKey? SecretKey implies secp256k1 operations. We really want a [u8; 32], I think.

[adi2011]

Done!

[TheBlueMatt]

This is given by the return type, we don't have to specify it.

[adi2011]

Yes, I wrote it just as a note to implementations. But, yeah, the return type specifies it. Removing it.

[TheBlueMatt]

What does this communicate that the function signature does not?

[TheBlueMatt]

I'm not sure what a "node-specific secret" means. Honestly, I'm not sure any of the sections below the first paragraph are needed.

[adi2011]

Yes, on second thought, I agree it’s unnecessary.