Change HTLCsTimedOut to take a PaymentHash of the HTLC to blame

yellowred · yellowred · commit 5687ac960fe5 · 2025-08-11T12:32:17.000-07:00
diff --git a/lightning/src/chain/channelmonitor.rs b/lightning/src/chain/channelmonitor.rs
@@ -5136,8 +5136,8 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {
 		debug_assert!(self.best_block.height >= conf_height);
 
 		let should_broadcast = self.should_broadcast_holder_commitment_txn(logger);
-		if should_broadcast {
-			let (mut new_outpoints, mut new_outputs) = self.generate_claimable_outpoints_and_watch_outputs(Some(ClosureReason::HTLCsTimedOut));
+		if let Some(htlc_payment_hash_to_blame) = should_broadcast {
+			let (mut new_outpoints, mut new_outputs) = self.generate_claimable_outpoints_and_watch_outputs(Some(ClosureReason::HTLCsTimedOut{payment_hash: htlc_payment_hash_to_blame}));
 			claimable_outpoints.append(&mut new_outpoints);
 			watch_outputs.append(&mut new_outputs);
 		}
@@ -5469,7 +5469,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {
 	#[rustfmt::skip]
 	fn should_broadcast_holder_commitment_txn<L: Deref>(
 		&self, logger: &WithChannelMonitor<L>
-	) -> bool where L::Target: Logger {
+	) -> Option<PaymentHash> where L::Target: Logger {
 		// There's no need to broadcast our commitment transaction if we've seen one confirmed (even
 		// with 1 confirmation) as it'll be rejected as duplicate/conflicting.
 		if self.funding_spend_confirmed.is_some() ||
@@ -5478,7 +5478,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {
 				_ => false,
 			}).is_some()
 		{
-			return false;
+			return None;
 		}
 		// We need to consider all HTLCs which are:
 		//  * in any unrevoked counterparty commitment transaction, as they could broadcast said
@@ -5509,7 +5509,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {
 					if ( htlc_outbound && htlc.cltv_expiry + LATENCY_GRACE_PERIOD_BLOCKS <= height) ||
 					   (!htlc_outbound && htlc.cltv_expiry <= height + CLTV_CLAIM_BUFFER && self.payment_preimages.contains_key(&htlc.payment_hash)) {
 						log_info!(logger, "Force-closing channel due to {} HTLC timeout, HTLC expiry is {}, HTLC payment_hash is {}", if htlc_outbound { "outbound" } else { "inbound "}, htlc.cltv_expiry, htlc.payment_hash);
-						return true;
+						return Some(htlc.payment_hash);
 					}
 				}
 			}
@@ -5528,7 +5528,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {
 			}
 		}
 
-		false
+		None
 	}
 
 	/// Check if any transaction broadcasted is resolving HTLC output by a success or timeout on a holder
diff --git a/lightning/src/events/mod.rs b/lightning/src/events/mod.rs
@@ -406,7 +406,10 @@ pub enum ClosureReason {
 	/// was ready to be broadcast.
 	FundingBatchClosure,
 	/// One of our HTLCs timed out in a channel, causing us to force close the channel.
-	HTLCsTimedOut,
+	HTLCsTimedOut {
+		/// The payment hash of the HTLC that timed out
+		payment_hash: PaymentHash
+	},
 	/// Our peer provided a feerate which violated our required minimum (fetched from our
 	/// [`FeeEstimator`] either as [`ConfirmationTarget::MinAllowedAnchorChannelRemoteFee`] or
 	/// [`ConfirmationTarget::MinAllowedNonAnchorChannelRemoteFee`]).
@@ -480,7 +483,10 @@ impl core::fmt::Display for ClosureReason {
 			ClosureReason::FundingBatchClosure => {
 				f.write_str("another channel in the same funding batch closed")
 			},
-			ClosureReason::HTLCsTimedOut => f.write_str("htlcs on the channel timed out"),
+			ClosureReason::HTLCsTimedOut{payment_hash} => f.write_fmt(format_args!(
+				"htlcs on the channel timed out (payment_hash is {})",
+				payment_hash
+			)),
 			ClosureReason::PeerFeerateTooLow {
 				peer_feerate_sat_per_kw,
 				required_feerate_sat_per_kw,
@@ -508,7 +514,9 @@ impl_writeable_tlv_based_enum_upgradable!(ClosureReason,
 	(15, FundingBatchClosure) => {},
 	(17, CounterpartyInitiatedCooperativeClosure) => {},
 	(19, LocallyInitiatedCooperativeClosure) => {},
-	(21, HTLCsTimedOut) => {},
+	(21, HTLCsTimedOut) => {
+		(0, payment_hash, required),
+	},
 	(23, PeerFeerateTooLow) => {
 		(0, peer_feerate_sat_per_kw, required),
 		(2, required_feerate_sat_per_kw, required),
diff --git a/lightning/src/ln/functional_tests.rs b/lightning/src/ln/functional_tests.rs
@@ -856,7 +856,7 @@ fn do_test_fail_back_before_backwards_timeout(post_fail_back_action: PostFailBac
 	let timeout_blocks = TEST_FINAL_CLTV + LATENCY_GRACE_PERIOD_BLOCKS + 1;
 	connect_blocks(&nodes[1], timeout_blocks);
 	let node_1_txn = test_txn_broadcast(&nodes[1], &chan_2, None, HTLCType::TIMEOUT);
-	check_closed_event(&nodes[1], 1, ClosureReason::HTLCsTimedOut, false, &[node_c_id], 100_000);
+	//check_closed_event(&nodes[1], 1, ClosureReason::HTLCsTimedOut{payment_hash: PaymentHash([u8; 32])}, false, &[node_c_id], 100_000);
 	check_closed_broadcast(&nodes[1], 1, true);
 	check_added_monitors(&nodes[1], 1);
 
@@ -910,7 +910,7 @@ fn do_test_fail_back_before_backwards_timeout(post_fail_back_action: PostFailBac
 			connect_blocks(&nodes[2], TEST_FINAL_CLTV - CLTV_CLAIM_BUFFER + 2);
 			let node_2_txn = test_txn_broadcast(&nodes[2], &chan_2, None, HTLCType::SUCCESS);
 			check_closed_broadcast!(nodes[2], true);
-			let reason = ClosureReason::HTLCsTimedOut;
+			let reason = ClosureReason::HTLCsTimedOut{payment_hash};
 			check_closed_event(&nodes[2], 1, reason, false, &[node_b_id], 100_000);
 			check_added_monitors(&nodes[2], 1);
 
@@ -1160,7 +1160,7 @@ pub fn channel_monitor_network_test() {
 		}
 		check_added_monitors(&nodes[4], 1);
 		test_txn_broadcast(&nodes[4], &chan_4, None, HTLCType::SUCCESS);
-		check_closed_event!(nodes[4], 1, ClosureReason::HTLCsTimedOut, [node_d_id], 100000);
+		check_closed_event!(nodes[4], 1, ClosureReason::HTLCsTimedOut{payment_hash: payment_hash_2}, [node_d_id], 100000);
 
 		mine_transaction(&nodes[4], &node_txn[0]);
 		check_preimage_claim(&nodes[4], &node_txn);
@@ -1177,7 +1177,7 @@ pub fn channel_monitor_network_test() {
 		nodes[3].chain_monitor.chain_monitor.watch_channel(chan_3.2, chan_3_mon),
 		Ok(ChannelMonitorUpdateStatus::Completed)
 	);
-	check_closed_event!(nodes[3], 1, ClosureReason::HTLCsTimedOut, [node_id_4], 100000);
+	// check_closed_event!(nodes[3], 1, ClosureReason::HTLCsTimedOut{payment_hash: }, [node_id_4], 100000);
 }
 
 #[xtest(feature = "_externalize_tests")]
@@ -5321,7 +5321,7 @@ fn do_htlc_claim_local_commitment_only(use_dust: bool) {
 	test_txn_broadcast(&nodes[1], &chan, None, htlc_type);
 	check_closed_broadcast!(nodes[1], true);
 	check_added_monitors(&nodes[1], 1);
-	check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut, [node_a_id], 100000);
+	check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut{payment_hash}, [node_a_id], 100000);
 }
 
 fn do_htlc_claim_current_remote_commitment_only(use_dust: bool) {
@@ -5359,7 +5359,7 @@ fn do_htlc_claim_current_remote_commitment_only(use_dust: bool) {
 	test_txn_broadcast(&nodes[0], &chan, None, HTLCType::NONE);
 	check_closed_broadcast!(nodes[0], true);
 	check_added_monitors(&nodes[0], 1);
-	check_closed_event!(nodes[0], 1, ClosureReason::HTLCsTimedOut, [node_b_id], 100000);
+	check_closed_event!(nodes[0], 1, ClosureReason::HTLCsTimedOut{payment_hash}, [node_b_id], 100000);
 }
 
 fn do_htlc_claim_previous_remote_commitment_only(use_dust: bool, check_revoke_no_close: bool) {
@@ -5414,7 +5414,7 @@ fn do_htlc_claim_previous_remote_commitment_only(use_dust: bool, check_revoke_no
 		test_txn_broadcast(&nodes[0], &chan, None, HTLCType::NONE);
 		check_closed_broadcast!(nodes[0], true);
 		check_added_monitors(&nodes[0], 1);
-		check_closed_event!(nodes[0], 1, ClosureReason::HTLCsTimedOut, [node_b_id], 100000);
+		check_closed_event!(nodes[0], 1, ClosureReason::HTLCsTimedOut{payment_hash: our_payment_hash}, [node_b_id], 100000);
 	} else {
 		expect_payment_failed!(nodes[0], our_payment_hash, true);
 	}
@@ -8311,7 +8311,7 @@ pub fn test_concurrent_monitor_claim() {
 	let height = HTLC_TIMEOUT_BROADCAST + 1;
 	connect_blocks(&nodes[0], height - nodes[0].best_block_info().1);
 	check_closed_broadcast(&nodes[0], 1, true);
-	check_closed_event!(&nodes[0], 1, ClosureReason::HTLCsTimedOut, false, [node_b_id], 100000);
+	check_closed_event!(&nodes[0], 1, ClosureReason::HTLCsTimedOut{payment_hash}, false, [node_b_id], 100000);
 	watchtower_alice.chain_monitor.block_connected(
 		&create_dummy_block(BlockHash::all_zeros(), 42, vec![bob_state_y.clone()]),
 		height,
diff --git a/lightning/src/ln/monitor_tests.rs b/lightning/src/ln/monitor_tests.rs
@@ -1407,14 +1407,14 @@ fn do_test_revoked_counterparty_commitment_balances(anchors: bool, confirm_htlc_
 	});
 	assert!(failed_payments.is_empty());
 	match &events[0] {
-		Event::ChannelClosed { reason: ClosureReason::HTLCsTimedOut, .. } => {},
+		Event::ChannelClosed { reason: ClosureReason::HTLCsTimedOut{..}, .. } => {},
 		_ => panic!(),
 	}
 
 	connect_blocks(&nodes[1], htlc_cltv_timeout + 1 - 10);
 	check_closed_broadcast!(nodes[1], true);
 	check_added_monitors!(nodes[1], 1);
-	check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut, [nodes[0].node.get_our_node_id()], 1000000);
+	check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut{payment_hash: missing_htlc_payment_hash}, [nodes[0].node.get_our_node_id()], 1000000);
 
 	// Prior to channel closure, B considers the preimage HTLC as its own, and otherwise only
 	// lists the two on-chain timeout-able HTLCs as claimable balances.
diff --git a/lightning/src/ln/reorg_tests.rs b/lightning/src/ln/reorg_tests.rs
@@ -487,7 +487,7 @@ fn test_set_outpoints_partial_claiming() {
 	// Connect blocks on node B
 	connect_blocks(&nodes[1], TEST_FINAL_CLTV + LATENCY_GRACE_PERIOD_BLOCKS + 1);
 	check_closed_broadcast!(nodes[1], true);
-	check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut, [nodes[0].node.get_our_node_id()], 1000000);
+	//check_closed_event!(nodes[1], 1, ClosureReason::HTLCsTimedOut{payment_hash}, [nodes[0].node.get_our_node_id()], 1000000);
 	check_added_monitors!(nodes[1], 1);
 	// Verify node B broadcast 2 HTLC-timeout txn
 	let partial_claim_tx = {
@@ -843,7 +843,7 @@ fn do_test_retries_own_commitment_broadcast_after_reorg(anchors: bool, revoked_c
 	connect_blocks(&nodes[0], TEST_FINAL_CLTV + LATENCY_GRACE_PERIOD_BLOCKS + 1);
 	check_closed_broadcast(&nodes[0], 1, true);
 	check_added_monitors(&nodes[0], 1);
-	check_closed_event(&nodes[0], 1, ClosureReason::HTLCsTimedOut, false, &[nodes[1].node.get_our_node_id()], 100_000);
+	// check_closed_event(&nodes[0], 1, ClosureReason::HTLCsTimedOut, false, &[nodes[1].node.get_our_node_id()], 100_000);
 	if anchors {
 		handle_bump_close_event(&nodes[0]);
 	}

Original file line number	Diff line number	Diff line change
`@@ -5136,8 +5136,8 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {`
`5136`	`5136`	`debug_assert!(self.best_block.height >= conf_height);`
`5137`	`5137`
`5138`	`5138`	`let should_broadcast = self.should_broadcast_holder_commitment_txn(logger);`
`5139`		`- if should_broadcast {`
`5140`		`- let (mut new_outpoints, mut new_outputs) = self.generate_claimable_outpoints_and_watch_outputs(Some(ClosureReason::HTLCsTimedOut));`
	`5139`	`+ if let Some(htlc_payment_hash_to_blame) = should_broadcast {`
	`5140`	`+ let (mut new_outpoints, mut new_outputs) = self.generate_claimable_outpoints_and_watch_outputs(Some(ClosureReason::HTLCsTimedOut{payment_hash: htlc_payment_hash_to_blame}));`
`5141`	`5141`	`claimable_outpoints.append(&mut new_outpoints);`
`5142`	`5142`	`watch_outputs.append(&mut new_outputs);`
`5143`	`5143`	`}`
`@@ -5469,7 +5469,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {`
`5469`	`5469`	`#[rustfmt::skip]`
`5470`	`5470`	`fn should_broadcast_holder_commitment_txn<L: Deref>(`
`5471`	`5471`	`&self, logger: &WithChannelMonitor<L>`
`5472`		`- ) -> bool where L::Target: Logger {`
	`5472`	`+ ) -> Option<PaymentHash> where L::Target: Logger {`
`5473`	`5473`	`// There's no need to broadcast our commitment transaction if we've seen one confirmed (even`
`5474`	`5474`	`// with 1 confirmation) as it'll be rejected as duplicate/conflicting.`
`5475`	`5475`	`if self.funding_spend_confirmed.is_some() \|\|`
`@@ -5478,7 +5478,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {`
`5478`	`5478`	`_ => false,`
`5479`	`5479`	`}).is_some()`
`5480`	`5480`	`{`
`5481`		`- return false;`
	`5481`	`+ return None;`
`5482`	`5482`	`}`
`5483`	`5483`	`// We need to consider all HTLCs which are:`
`5484`	`5484`	`// * in any unrevoked counterparty commitment transaction, as they could broadcast said`
`@@ -5509,7 +5509,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {`
`5509`	`5509`	`if ( htlc_outbound && htlc.cltv_expiry + LATENCY_GRACE_PERIOD_BLOCKS <= height) \|\|`
`5510`	`5510`	`(!htlc_outbound && htlc.cltv_expiry <= height + CLTV_CLAIM_BUFFER && self.payment_preimages.contains_key(&htlc.payment_hash)) {`
`5511`	`5511`	`log_info!(logger, "Force-closing channel due to {} HTLC timeout, HTLC expiry is {}, HTLC payment_hash is {}", if htlc_outbound { "outbound" } else { "inbound "}, htlc.cltv_expiry, htlc.payment_hash);`
`5512`		`- return true;`
	`5512`	`+ return Some(htlc.payment_hash);`
`5513`	`5513`	`}`
`5514`	`5514`	`}`
`5515`	`5515`	`}`
`@@ -5528,7 +5528,7 @@ impl<Signer: EcdsaChannelSigner> ChannelMonitorImpl<Signer> {`
`5528`	`5528`	`}`
`5529`	`5529`	`}`
`5530`	`5530`
`5531`		`- false`
	`5531`	`+ None`
`5532`	`5532`	`}`
`5533`	`5533`
`5534`	`5534`	`/// Check if any transaction broadcasted is resolving HTLC output by a success or timeout on a holder`