Support paying directly to Human Readable Names using bLIP 32

[TheBlueMatt]

Based on #3179 this fully implements BIP 353 sends using bLIP 32 DNS resolution with a wonderfully simple API:

        pub fn pay_for_offer_from_human_readable_name(
                &self, name: HumanReadableName, amount_msats: u64, payment_id: PaymentId,
                retry_strategy: Retry, max_total_routing_fee_msat: Option<u64>,
                dns_resolvers: Vec<Destination>,
        ) -> Result<(), ()> {

Still needs a few trivial things piped out through to events (eg DNSSEC proofs as "proof of payment"), but its basically done!

[codecov]

Codecov Report

Attention: Patch coverage is 85.27132% with 76 lines in your changes missing coverage. Please review.

Project coverage is 89.67%. Comparing base (b0bd437) to head (cbdb8cb).
Report is 9 commits behind head on main.

Files with missing lines	Patch %	Lines
lightning-dns-resolver/src/lib.rs	86.77%	34 Missing and 5 partials ⚠️
lightning/src/ln/channelmanager.rs	79.27%	16 Missing and 7 partials ⚠️
lightning/src/ln/outbound_payment.rs	83.60%	9 Missing and 1 partial ⚠️
lightning/src/onion_message/dns_resolution.rs	40.00%	1 Missing and 2 partials ⚠️
lightning/src/offers/refund.rs	85.71%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3283      +/-   ##
==========================================
+ Coverage   89.65%   89.67%   +0.02%     
==========================================
  Files         128      129       +1     
  Lines      104821   105419     +598     
  Branches   104821   105419     +598     
==========================================
+ Hits        93980    94538     +558     
- Misses       8130     8138       +8     
- Partials     2711     2743      +32     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[TheBlueMatt]

Should be ready for review now that the dependent PR landed @arik-so @tnull

[arik-so]

Just noticed I had this comment pending without submitting it, sorry.

[TheBlueMatt]

Added a commit to set the feature bit added in #3346.

[TheBlueMatt]

Rebased and addressed CI issues.

[arik-so]

I'm good with squashing the fixups at this point.

[TheBlueMatt]

Squashed the fixups without further changes.

[arik-so]

Nit aside, code looks good. I think the most critical portion is in the dnssec_prover crate anyway, which has already been reviewed.

[vincenzopalazzo]

just trying to learn here. I noted this in other places too. There is a specific reason that we use the number with a step of 2? is it probably for upgrade and downgrade?

[TheBlueMatt]

For new types not really, no. Even/odd means future versions that don't support these fields will fail/ignore the fields, but for new fields it doesn't matter too much since new versions will trivially support them.

[vincenzopalazzo]

LGTM, I left some question/light-suggestion long the way

[tnull]

Did a first pass, some questions/nits.

[tnull]

nit: given that rustfmt will come around here eventually, might already want to pull out the event into a single variable while we're here.

[TheBlueMatt]

Only the indentation here changed (git show -b is happy) :)

[tnull]

I'm confused: given the context described in the commit message, shouldn't this rather be called target_ or destination_readable_name? Or maybe I'm misunderstanding what source is referring to? Isn't this describing which HRN we're trying to pay to?

Or maybe just bip_353_name, given that lightning/bolts#1180 calls the field invreq_bip_353_name?

[TheBlueMatt]

Mmm, I was saying source as in "the place I got the offer I'm paying is..." The setter method on the invoicereq is sourced_from_human_readable_name so I lined the getter up with that. The internal field I'm just calling the same as the public API for convenience. We could rename it as "destination", I suppose, but it does feel strange cause the "destination" is the BOLT 12.

[tnull]

Mhh, maybe target then, or receiver? (lol, it's always the same naming discussion around discerning immediate and 'final' destinations, always tricky).

Not sure if I'm alone in this but I read source_ as the exact opposite of what it's supposed to mean.

[TheBlueMatt]

Maybe just from_human_readable_name? I don't want to imply that this is the target's unique HRN, nor even that the target is aware that this is their HRN.

[TheBlueMatt]

Or derived_from_hrn?

[tnull]

Either from_human_readable_name or derived_from_hrn would be an improvement from my perspective, also like hrn_offer_derived_from you proposed elsewhere.

I'll leave it up to you 🤷‍♂️

[TheBlueMatt]

Went with offer_from_hrn as it captures the bool-ness of the field, doesn't imply that the offer was somehow "derived" (vs just contained in the hrn) and focuses on the offer, not the struct that the method is being called on.

[tnull]

Why 2 here? Why not also 1 or 3 or 5? Also, nit: could you move these to consts?

[TheBlueMatt]

2 is just the "minimum" value for any tick-based expiration. 1 doesn't work cause the next tick might be in 1ms, so then we'd fail always. 2 is the next number. I don't think this needs to be configurable/changeable, its just "minimum possible value".

[tnull]

1 doesn't work cause the next tick might be in 1ms, so then we'd fail always.

Wait, why do we have this in pay_for_offer then?:

		let expiration = StaleExpiration::TimerTicks(1);

[TheBlueMatt]

Ah, it keeps it for one more tick after 0....honestly its always one tick so I'm gonna remove the parameter and just move the logic to outbound_payment.rs.

[TheBlueMatt]

Oops, it is actually used, anyway, fixed to 1.

[tnull]

Why not use channels for this?

[TheBlueMatt]

You mean like MPSC channels? Not quite sure I understand the suggestion here.

[tnull]

Yes, sorry, 'channels' might have been a bit ambiguous here... I was thinking about tokio::sync::oneshot mostly as they seem the right tool for the job and are also know to work nicely in async contexts/stacks. They'd would also be nice as message passing wouldn't risk introducing any deadlocks when accessing the the message handler (an issue I ran into previously with LiquidityManager, for example. That said, I guess to go that route properly we'd need to make DNSResolverMessageHandler async in one form or another, which probably isn't feasible right now.

[TheBlueMatt]

I mean this basically is a one-shot channel, just not one that supports awaiting on it....Given we want to return all the messages back at once when we get a release_pending_messages call using channels per-query would result in a lot of polling which would be much worse than just a global vec.

[TheBlueMatt]

Addressed feedback and rebased.

[tnull]

Feel free to squash fixups

[tnull]

I'm a bit confused by this: why can't we have mark_abandoned transition these states to Abandoned, too?

Seems a bit strange to first not actually mark them abandoned and then here match on the state even though you'd think they'd always be Abandoned post-mark_abandoned?

[TheBlueMatt]

We use the abandoned state to keep track of payments which we don't intend to retry but which have some HTLCs pending (implying we cannot yet say Event::PaymentFailed). We remove the payment once all pending HTLCs have been failed.

[tnull]

Mhh, maybe target then, or receiver? (lol, it's always the same naming discussion around discerning immediate and 'final' destinations, always tricky).

Not sure if I'm alone in this but I read source_ as the exact opposite of what it's supposed to mean.

[TheBlueMatt]

Squashed without further changes.

[tnull]

LGTM, mod the pending name change for source_human_readable_name.

(See comment below)

[tnull]

Hmm, sorry for bringing this up just now, but thinking about it again it seems that this approach unfortunately won't work for LDK Node as is since it would require that OMDomainResolver is setup after ChannelManager but before MessageHandler that we'd pass to PeerManager.

However, at the time all this is initialized in LDK Node we don't have the runtime available, which we only setup on Node::start. I think this could be resolved in two ways: either we'd go the FutureSpawner approach as mentioned above, which would allow LDK Node to implement as needed based on another wrapper, or we could make this an Arc<RwLock<Option<Runtime>>> and allowing to set the runtime some time after initialization.

[TheBlueMatt]

The dnssec-resolver resolving logic relies on tokio, so I don't think we should switch to a generic FutureSpawner as it gives the (wrong) impression that you can use a different runtime. I'll just store the runtime handle in a mutex...even though that's really gross :/

[TheBlueMatt]

Of course I assume ldk-node won't actually use this in normal mobile setups, those obviously shouldn't be doing resolutions for others...ldk-node in a server setup tho probably maybe should.

[tnull]

Yes, surely it wouldn’t be feasible/necessary for a mobile node, but for any 24/7 LDK Node deployment. So would be great if we found a way to make it work!

[TheBlueMatt]

See the latest push, I think it should work for that.

[tnull]

LGTM, feel free to squash.

[TheBlueMatt]

Squashed without changes then had to rebase to address a conflict:

$ git range-diff 8c086c772f2f4def5aecc549b2d39f2ab427081d..ce3b143c314ffb640dbdb569dd6c8882e008a0f3 b0bd4371d989722aa38ddfc2f35db8922e3304bb..cbdb8cb0cb5f1e8b9e676ad2d130b8bbc2b9e640
1:  3fdc51c8b = 1:  a39e274e3 Skip the implicit trailing `.` in `HumanReadableName`'s domain
2:  126f7f455 = 2:  46df35b0f Add a new `AwaitingOffer` outbound payment state for BIP 353
3:  84887e686 = 3:  e447b4913 Add support for storing a source HRN in BOLT 12 `invoice_request`s
4:  6aa1bb2bc = 4:  8d8416b95 Store the source `HumanReadableName` in `InvoiceRequestFields`
5:  10eb7cf8a ! 5:  99d00930a Support paying Human Readable Names directly from `ChannelManager`
    @@ lightning/src/ln/channelmanager.rs: where
        /// to pay us.
        ///
     @@ lightning/src/ln/channelmanager.rs: where
    -           payment_secrets.retain(|_, inbound_payment| {
    -                   inbound_payment.expiry_time > header.time as u64
    -           });
    +                   }
    +           }
    +           max_time!(self.highest_seen_timestamp);
     +          #[cfg(feature = "dnssec")] {
     +                  let timestamp = self.highest_seen_timestamp.load(Ordering::Relaxed) as u32;
     +                  self.hrn_resolver.new_best_block(height, timestamp);
6:  ef273123b = 6:  2bbb3b708 Use `ChannelManager` as `DNSResolverMessageHandler` by default
7:  af3c4accf = 7:  8e941426c Add a `lightning-dns-resolver` crate which answers bLIP 32 queries
8:  ce3b143c3 = 8:  cbdb8cb0c Set the `dns_resolution` feature in `OMDomainResolver`