Consider currently confirmed FundingScope when claiming commitments

[wpaulino]

Once a commitment transaction confirms, we may have outputs to claim. To determine whom the commitment transaction belongs to, we generally compare its txid against what we know be ours and the counterparty's. This, however, relies on being able to match on the expected FundingScope, such that we can produce the necessary output claims. Since a commitment transaction confirming implies that the funding transaction it spends has also confirmed, we rely on alternative_funding_confirmed to obtain the corresponding FundingScope.

[ldk-reviews-bot]

👋 Thanks for assigning @tankyleo as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

[codecov]

Codecov Report

❌ Patch coverage is 82.82209% with 28 lines in your changes missing coverage. Please review.
✅ Project coverage is 88.91%. Comparing base (de2005a) to head (775f3d9).
⚠️ Report is 37 commits behind head on main.

Files with missing lines	Patch %	Lines
lightning/src/chain/channelmonitor.rs	82.60%	23 Missing and 5 partials ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3980      +/-   ##
==========================================
- Coverage   88.93%   88.91%   -0.03%     
==========================================
  Files         174      174              
  Lines      124539   125065     +526     
  Branches   124539   125065     +526     
==========================================
+ Hits       110758   111196     +438     
- Misses      11287    11361      +74     
- Partials     2494     2508      +14     

Flag	Coverage Δ
fuzzing	22.13% <44.17%> (-0.06%)	⬇️
tests	88.73% <82.82%> (-0.03%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[ldk-reviews-bot]

🔔 1st Reminder

Hey @TheBlueMatt! This PR has been waiting for your review.
Please take a look when you have a chance. If you're unable to review, please let us know so we can find another reviewer.

[ldk-reviews-bot]

👋 The first review has been submitted!

Do you think this PR is ready for a second reviewer? If so, click here to assign a second reviewer.

[ldk-reviews-bot]

✅ Added second reviewer: @tankyleo

[TheBlueMatt]

Generally fine, at least once the parent PR lands, but I'm still confused on #3980 (comment)

[TheBlueMatt]

Needs rebase, also might be worth addressing #3939 (comment) here but up to you.

[TheBlueMatt]

Does load_outputs_to_watch need to look at alternative fundings?

[TheBlueMatt]

Oh, also we'll need to do something with build_counterparty_commitment_tx/counterparty_commitment_txs_from_update and sign_to_local_justice_tx

[ldk-reviews-bot]

🔔 1st Reminder

Hey @tankyleo! This PR has been waiting for your review.
Please take a look when you have a chance. If you're unable to review, please let us know so we can find another reviewer.

[wpaulino]

Does load_outputs_to_watch need to look at alternative fundings?

It already does for register_tx calls. For register_output calls, outputs are not directly associated with the FundingScope they originated from (though there's no reason why they shouldn't, can do if you think it's worth it), so we're tracking them all even for FundingScopes no longer relevant.

build_counterparty_commitment_tx/counterparty_commitment_txs_from_update

Given their current usage, it's not required to change them but definitely worth changing. I already have the change in a separate branch. build_counterparty_commitment_tx is currently only used when we expect to have one FundingScope, so using self.funding is always safe. For the multi-commitment counterparty updates, the commitment transactions already included the scope specific data when they were built.

sign_to_local_justice_tx

Already had this change as well, just didn't include it here.

[tankyleo]

LGTM on first pass, will take another pass first thing tomorrow :) Thanks for the cleanup in check_spend_holder_transaction

[tankyleo]

When the alternative_funding_confirmed gets reorged out, in which cases would we not broadcast the holder commitment ?

[wpaulino]

We could be lockdown_from_offchain from a ChannelForceClosed update where should_broadcast is false, but that means we never attempted to broadcast the funding transaction.

[tankyleo]

Do we also not broadcast if we haven't given a holder tx to OnchainTxHandler AND we haven't seen a commitment transaction hit the chain ?

[tankyleo]

Also if should_broadcast is false, then is_funding_broadcast back in channel is false, then not sure how alternative_funding_confirmed can be Some ?

[wpaulino]

Not sure I'm following your line of questioning here. We only want to broadcast if we already did, or if we've seen a commitment transaction confirm. In any other cases, either we're not supposed to broadcast because we were told not to or alternative_funding_confirmed is not relevant at all and the code here is unreachable.

[tankyleo]

Right ok thank you !

Want to confirm: if the funding gets reorged out, but we haven't signed a holder tx, and we haven't seen a commit tx hit the chain, we do NOT broadcast :)

[tankyleo]

Finished second pass

[ldk-reviews-bot]

🔔 1st Reminder

Hey @TheBlueMatt! This PR has been waiting for your review.
Please take a look when you have a chance. If you're unable to review, please let us know so we can find another reviewer.