Allow LDK node to send payjoin transactions

[jbesraa]

Partially addresses #177

This adds the ability for the on chain wallet to send payjoin transactions as described in BIP 77 https://github.com/bitcoin/bips/blob/d7ffad81e605e958dcf7c2ae1f4c797a8631f146/bip-0077.mediawiki

The payjoin receiver part will be added in a separate PR with e2e tests with this pr code.

[tnull]

Cool! Let me know when this is ready for a first round of review.

Until then only one early comment:

[tnull]

FWIW, I'd prefer to stick with the async variant, as the blocking variant introduces even more downstream dependencies, some of which just recently had some security issues, see #283 (comment).

[jbesraa]

@tnull this is ready for review

[tnull]

Cool, did a first pass!

[tnull]

Why do we need receive if this is only the sending side?

[jbesraa]

yea we dont, it should be fixed in the next payjoin crate release payjoin/rust-payjoin#258

[tnull]

To expose this in bindings we can't use Url as-is, we should likely just take a String here.

nit: Also possibly just?:

Suggested change

	pub fn set_payjoin_sender_config(&mut self, payjoin_relay: payjoin::Url) -> &mut Self {
	pub fn set_payjoin_relay(&mut self, relay: payjoin::Url) -> &mut Self {

[jbesraa]

I think this naming would be confusing when we add the payjoin receiver.
the payjoin receiver config will also require payjoin_relay argument.

the receiver config will be:

{
payjoin_directory: Url,
payjoin_relay: Url,
ohttp_keys: Option<OhttpKeys>
}

[tnull]

Same as above: could use a rename and we need to use a String.

[jbesraa]

Updated to String, please see the comment above regarding the naming

[tnull]

Let's move this argument up to the other _configs, i.e., before seed_bytes.

[tnull]

Lets use payjoin_sender_config.as_ref().and_then(|psc| { .. }) pattern as for liquidity_source above.

[tnull]

nit: Please don't import this globally, but rather use tokio::time::sleep in the code itself. Otherwise it's a bit confusing which sleep is meant and the blocking one from std really can't be used in async contexts.

[tnull]

Let's use the dedicated tokio macros for these control flows: tokio::select/tokio::time::timeout/tokio::time::interval, etc.

[jbesraa]

not sure I fully follow how tokio::select can be utilised here, should I add a ticker similar to how its implement in the lib.rs and replace the loop with tokio::select ?

fixed the imports

[tnull]

Yeah, if you figure out a way to do so, a combination of select and interval similar to lib.rs would be preferable to loop. If not, it's not that important.

[tnull]

Still think we should clean this up using interval or similar.

[tnull]

Why ocean?

[tnull]

Not sure why we need this?

[jbesraa]

sorry, here is a link explaining why this is needed bitcoindevkit/bdk-cli#156 (comment)

[tnull]

Thanks for the link but I mostly meant the local function? Given the complex function definition and the additional Box, couldn't we just psbt.unsigned_tx.input.iter().zip(&mut psbt.inputs) directly where it's used?

[tnull]

As above, I think these specifics should live in the Wallet-side methods.

[jbesraa]

Thanks @tnull
Ill address the review fully tomorrow.

[jbesraa]

the idea here is that we try to fetch a response first, if we dont get one after the timeout we set on the request, we will start the background process to wait for the receiver response. I think we could emit an event in line 63

[tnull]

I think it's kind of confusing to provide two separate control flows to the user. Can't we just tell the user to check back regularly instead of polling for an ~arbitrary amount of time after which we'll fail quietly?

If we really think we need the background polling, why not avoid returing anything here and just return the necessary information via an event? This would also solve the async/sync issue above.

[jbesraa]

I believe I resolved all the points mentioned above but I still need to do another few things like examining the new structure when adding the payjoin receiver part and the channel opening and a bit more testing around the events.
Ill let you know when this is good for review.

[jbesraa]

Ready for another review.

This commit is quite different from the last one.
The main things done:

1. Moved to PayjoinHandler rather than PayjoinSender
2. Integrated PaymentStore
3. Added events to track the status of Payjoin payment
4. Implemented Confirm/Filter for PayjoinHandler

.. and more(docs, error handling).

Sorry for the delay.

[tnull]

Thanks for the update! For now mostly had a look at the new events.

I'm not entirely convinced we need all of them? Or rather, I'm not sure how we expect users to act on them?

I also think we really need to find an identifier by which we can track payments for the whole flow.

Moreover, please proofread/spellcheck the docs and make sure they adhere to the usual formatting before pushing.

[tnull]

Could you move this up to the other Invalid variants?

[tnull]

There's a few things here:

1. fix typo (here and below):

Suggested change

	PayjoinPaymentPending(Txid txid, u64 amount, ScriptBuf receipient);
	PayjoinPaymentPending(Txid txid, u64 amount, ScriptBuf recipient);

2. Also, for amounts please always give the denomination in the variable name. I assume this should be amount_sats?
3. Is there a better type available for the recipient rather than the generic ScriptBuf? If not, can we create one?

[jbesraa]

Fixed (1) and (2).

Regarding (3), we could use bitcoin::Address I guess. Any other types you think we should consider?

If we go with bitcoin::Address we would need to make a small addition to lightning::util::ser https://github.com/lightningdevkit/rust-lightning/blob/main/lightning/src/util/ser.rs

[tnull]

Mh, yeah, Address seems like a more suited type. Feel free to open a draft PR upstream I think. We can discuss there if others agree it makes sense.

[tnull]

I just synced offline with @DanGould, seems the most suitable type to identify the receiver and the session end-to-end would be the receiver's public key? So, IIUC, we probably don't need lightningdevkit/rust-lightning#3206 after all?

EDIT: That is, https://docs.rs/payjoin/0.19.0/payjoin/receive/v2/struct.ActiveSession.html#method.public_key

[tnull]

Why do we emit an event if nothing happened yet?

[jbesraa]

In start_request we basically create the original_psbt we are going to share with the receiver, we also register it with Filter and other stuff (https://github.com/lightningdevkit/ldk-node/pull/295/files#diff-87bb691298fda83f0bcc2d9145208f7725ed0aca25764ef1fd1839002e2bc72aR79), after we get a response from start_request we start the background process(PayjoinHandler::send_request) waiting for response from the Payjoin receiver. This event is basically indicating we are pending, waiting for a response. Maybe it should be called just before invoking send_request rather than in start_request

[tnull]

How do we envision the user to act on this event? Why is it useful?

Note that we can't technically emit this event when we have finalised and broadcasted the transaction, as broadcasting is always fallible, so at best we tried broadcasting.

[jbesraa]

This is indicating to the user the payjoin process is completed and now they should wait for the on-chain confirmations.
..Pending is 'We are attempting a payjoin transaction'
..Broadcasted is 'Finished payjoin and tried to broadcast'
and then there is
..Failure and ..Success

[tnull]

Similar as above: Do we need this event? How do we expect a user to act on it? Should we rather act on it for the user? Generally, this seems very very specific to the Payjoin flow, and in LDK Node we try to provide a simplified interface that makes sense even if you're not aware of protocol details.

[jbesraa]

Yes, I think so. We let the user know that the Payjoin flow ended without conducting the actual flow but the receiver decided to broadcast the original psbt.
Users might decide to not payjoin in the future with those type of Payjoin receivers in the future. From our side we should update the payment status and wait for it to be confirmed.

[tnull]

Please write documentation in full sentences and double-check the spelling and form before pushing.

Also, the documentation of all fields should start by a single-sentence paragraph describing the field, before going into detail in further paragraphs.

Suggested change

	/// Didnt receive a response from the receiver. This is considered a failure but the receiver
	/// The request failed as we did not receive a response in time.
	///
	/// This is considered a failure but the receiver

[tnull]

What is "This" referring to?

[tnull]

Please use LDK's serialization macros (in this case impl_writeable_tlv_based_enum) rather than manually implementing Readable/Writeable.

[tnull]

Suggested change

	/// In order to utilize the Payjoin functionality, it's necessary to configure your node using
	/// In order to utilize the Payjoin functionality, it is necessary to configure a Payjoin relay using

[tnull]

This shouldn't implment but just use Filter.

[tnull]

Do we need to handle unconfirmations?

[jbesraa]

Yea. how do you think it should be approached?

Thought about restarting states(confirmation hight, and others) and try to rebroadcast.

[tnull]

So we're only ever interested in the first confirmed transaction in a block?

[jbesraa]

hmm I might have misunderstood how this behaves. let me revisit this.

[tnull]

A few more comments, have yet to conduct a full top-bottom review of the current state.

[tnull]

Is this supposed to be a PublicKey? What if we'd ever want to use ScriptBuf outside of the narrow context you're using it for currently?

[tnull]

Please remove dbg lines before pushing.

[jbesraa]

@tnull bear with me a moment please as I am adding tests and polishing the pr to make it more clear

[tnull]

@tnull bear with me a moment please as I am adding tests and polishing the pr to make it more clear

Of course, please ping me whenever you feel it's ready for the next round of review!

[jbesraa]

@tnull Thanks for the ongoing review.

Few things done:

1. Broke down the commit into smaller commits, hopefully it will be easier to review. Maybe before merging its worth squashing the last four commits into a single one as they are all around the Payjoin integration/implementation.
2. Instead of introducing PayjoinTransaction struct in order to be able to track the transaction status, I added a couple of new properties to PaymentStore that would make it possible to track onchain transactions with the Confirm trait. I tried to not break the current API by setting both new properties, txid and best_block to None in the insert function.
3. Reduced the number of Payjoin specific events to 3 after your last review.
4. Added tests to cover the different responses the Payjoin receiver can communicate with the Payjoin sender.
5. Updated the documentation to be more comprehensive.

There are still few things to cover/discuss, but I would appreciate a review over the usage of the PaymentStore, the Confirm trait and the overall integration of the PayjoinPayment in the code. I hope to get most of the commits ACK'd and to eventually focus on reviewing cd30d62 as its introducing the main BIP77 implementation.

[tnull]

Did another ~half pass, have yet to take a closer look at the PayjoinHandler and Confirm logic (note we should probably also implement Listen while we're at it, as syncing full blocks is coming up).

[tnull]

Why not inline these internal_ methods here? Do we gain something from them being separate?

Maybe they would be reusabe for implementing Listen, which we should probably also do?

[jbesraa]

It seems that rust-payjoin introduced breaking changes in latest updates. I am a bit hesitant to update the crate version yet, until it includes the functionality we need (payjoin/rust-payjoin#336) as that version might also introduce breaking changes.

[tnull]

It seems that rust-payjoin introduced breaking changes in latest updates. I am a bit hesitant to update the crate version yet, until it includes the functionality we need (payjoin/rust-payjoin#336) as that version might also introduce breaking changes.

Alright. Your choice when to bump here and in the other PR. Feel free to go the path of least effort/lowest likelihood of errors.

[DanGould]

The latest release is planned to be the final breaking BIP 77 wire protocol changes. I recommend beginning to upgrade since it's possible to make a working solution based on the reference implementation in payjoin-cli (using Receiver.id() and Sender.pj_url() as the id for the Sender.)

Since these are short-lived session IDs, even if the data identifier is changed after merge here (which it won't be) there's no critical persisted. data lost. I'll ask @nothingmuch what he thinks about this issue in more detail now that we've firmed up the wire protocol

[tnull]

As there hasn't been any movement here for a long time, I'm closing this as abandoned. If someone is going to pick up the work again, this will need some serious rebase work.