lightningnetwork / lnd / 9935147745

package routing

import (

        "bytes"

        "context"

        "fmt"

        "math"

        "runtime"

        "strings"

        "sync"

        "sync/atomic"

        "time"

        "github.com/btcsuite/btcd/btcec/v2"

        "github.com/btcsuite/btcd/btcutil"

        "github.com/btcsuite/btcd/wire"

        "github.com/davecgh/go-spew/spew"

        "github.com/go-errors/errors"

        sphinx "github.com/lightningnetwork/lightning-onion"

        "github.com/lightningnetwork/lnd/amp"

        "github.com/lightningnetwork/lnd/batch"

        "github.com/lightningnetwork/lnd/chainntnfs"

        "github.com/lightningnetwork/lnd/channeldb"

        "github.com/lightningnetwork/lnd/channeldb/models"

        "github.com/lightningnetwork/lnd/clock"

        "github.com/lightningnetwork/lnd/fn"

        "github.com/lightningnetwork/lnd/htlcswitch"

        "github.com/lightningnetwork/lnd/input"

        "github.com/lightningnetwork/lnd/kvdb"

        "github.com/lightningnetwork/lnd/lntypes"

        "github.com/lightningnetwork/lnd/lnutils"

        "github.com/lightningnetwork/lnd/lnwallet"

        "github.com/lightningnetwork/lnd/lnwallet/btcwallet"

        "github.com/lightningnetwork/lnd/lnwallet/chanvalidate"

        "github.com/lightningnetwork/lnd/lnwire"

        "github.com/lightningnetwork/lnd/multimutex"

        "github.com/lightningnetwork/lnd/record"

        "github.com/lightningnetwork/lnd/routing/chainview"

        "github.com/lightningnetwork/lnd/routing/route"

        "github.com/lightningnetwork/lnd/routing/shards"

        "github.com/lightningnetwork/lnd/ticker"

        "github.com/lightningnetwork/lnd/zpay32"

)

const (

        // DefaultPayAttemptTimeout is the default payment attempt timeout. The

        // payment attempt timeout defines the duration after which we stop

        // trying more routes for a payment.

        DefaultPayAttemptTimeout = time.Second * 60

        // DefaultChannelPruneExpiry is the default duration used to determine

        // if a channel should be pruned or not.

        DefaultChannelPruneExpiry = time.Hour * 24 * 14

        // DefaultFirstTimePruneDelay is the time we'll wait after startup

        // before attempting to prune the graph for zombie channels. We don't

        // do it immediately after startup to allow lnd to start up without

        // getting blocked by this job.

        DefaultFirstTimePruneDelay = 30 * time.Second

        // defaultStatInterval governs how often the router will log non-empty

        // stats related to processing new channels, updates, or node

        // announcements.

        defaultStatInterval = time.Minute

        // MinCLTVDelta is the minimum CLTV value accepted by LND for all

        // timelock deltas. This includes both forwarding CLTV deltas set on

        // channel updates, as well as final CLTV deltas used to create BOLT 11

        // payment requests.

        //

        // NOTE: For payment requests, BOLT 11 stipulates that a final CLTV

        // delta of 9 should be used when no value is decoded. This however

        // leads to inflexibility in upgrading this default parameter, since it

        // can create inconsistencies around the assumed value between sender

        // and receiver. Specifically, if the receiver assumes a higher value

        // than the sender, the receiver will always see the received HTLCs as

        // invalid due to their timelock not meeting the required delta.

        //

        // We skirt this by always setting an explicit CLTV delta when creating

        // invoices. This allows LND nodes to freely update the minimum without

        // creating incompatibilities during the upgrade process. For some time

        // LND has used an explicit default final CLTV delta of 40 blocks for

        // bitcoin, though we now clamp the lower end of this

        // range for user-chosen deltas to 18 blocks to be conservative.

        MinCLTVDelta = 18

        // MaxCLTVDelta is the maximum CLTV value accepted by LND for all

        // timelock deltas.

        MaxCLTVDelta = math.MaxUint16

)

var (

        // ErrRouterShuttingDown is returned if the router is in the process of

        // shutting down.

        ErrRouterShuttingDown = fmt.Errorf("router shutting down")

        // ErrSelfIntro is a failure returned when the source node of a

        // route request is also the introduction node. This is not yet

        // supported because LND does not support blinded forwardingg.

        ErrSelfIntro = errors.New("introduction point as own node not " +

                "supported")

        // ErrHintsAndBlinded is returned if a route request has both

        // bolt 11 route hints and a blinded path set.

        ErrHintsAndBlinded = errors.New("bolt 11 route hints and blinded " +

                "paths are mutually exclusive")

        // ErrExpiryAndBlinded is returned if a final cltv and a blinded path

        // are provided, as the cltv should be provided within the blinded

        // path.

        ErrExpiryAndBlinded = errors.New("final cltv delta and blinded " +

                "paths are mutually exclusive")

        // ErrTargetAndBlinded is returned is a target destination and a

        // blinded path are both set (as the target is inferred from the

        // blinded path).

        ErrTargetAndBlinded = errors.New("target node and blinded paths " +

                "are mutually exclusive")

        // ErrNoTarget is returned when the target node for a route is not

        // provided by either a blinded route or a cleartext pubkey.

        ErrNoTarget = errors.New("destination not set in target or blinded " +

                "path")

        // ErrSkipTempErr is returned when a non-MPP is made yet the

        // skipTempErr flag is set.

        ErrSkipTempErr = errors.New("cannot skip temp error for non-MPP")

)

// ChannelGraphSource represents the source of information about the topology

// of the lightning network. It's responsible for the addition of nodes, edges,

// applying edge updates, and returning the current block height with which the

// topology is synchronized.

type ChannelGraphSource interface {

        // AddNode is used to add information about a node to the router

        // database. If the node with this pubkey is not present in an existing

        // channel, it will be ignored.

        AddNode(node *channeldb.LightningNode,

                op ...batch.SchedulerOption) error

        // AddEdge is used to add edge/channel to the topology of the router,

        // after all information about channel will be gathered this

        // edge/channel might be used in construction of payment path.

        AddEdge(edge *models.ChannelEdgeInfo,

                op ...batch.SchedulerOption) error

        // AddProof updates the channel edge info with proof which is needed to

        // properly announce the edge to the rest of the network.

        AddProof(chanID lnwire.ShortChannelID,

                proof *models.ChannelAuthProof) error

        // UpdateEdge is used to update edge information, without this message

        // edge considered as not fully constructed.

        UpdateEdge(policy *models.ChannelEdgePolicy,

                op ...batch.SchedulerOption) error

        // IsStaleNode returns true if the graph source has a node announcement

        // for the target node with a more recent timestamp. This method will

        // also return true if we don't have an active channel announcement for

        // the target node.

        IsStaleNode(node route.Vertex, timestamp time.Time) bool

        // IsPublicNode determines whether the given vertex is seen as a public

        // node in the graph from the graph's source node's point of view.

        IsPublicNode(node route.Vertex) (bool, error)

        // IsKnownEdge returns true if the graph source already knows of the

        // passed channel ID either as a live or zombie edge.

        IsKnownEdge(chanID lnwire.ShortChannelID) bool

        // IsStaleEdgePolicy returns true if the graph source has a channel

        // edge for the passed channel ID (and flags) that have a more recent

        // timestamp.

        IsStaleEdgePolicy(chanID lnwire.ShortChannelID, timestamp time.Time,

                flags lnwire.ChanUpdateChanFlags) bool

        // MarkEdgeLive clears an edge from our zombie index, deeming it as

        // live.

        MarkEdgeLive(chanID lnwire.ShortChannelID) error

        // ForAllOutgoingChannels is used to iterate over all channels

        // emanating from the "source" node which is the center of the

        // star-graph.

        ForAllOutgoingChannels(cb func(tx kvdb.RTx,

                c *models.ChannelEdgeInfo,

                e *models.ChannelEdgePolicy) error) error

        // CurrentBlockHeight returns the block height from POV of the router

        // subsystem.

        CurrentBlockHeight() (uint32, error)

        // GetChannelByID return the channel by the channel id.

        GetChannelByID(chanID lnwire.ShortChannelID) (

                *models.ChannelEdgeInfo, *models.ChannelEdgePolicy,

                *models.ChannelEdgePolicy, error)

        // FetchLightningNode attempts to look up a target node by its identity

        // public key. channeldb.ErrGraphNodeNotFound is returned if the node

        // doesn't exist within the graph.

        FetchLightningNode(route.Vertex) (*channeldb.LightningNode, error)

        // ForEachNode is used to iterate over every node in the known graph.

        ForEachNode(func(node *channeldb.LightningNode) error) error

}

// PaymentAttemptDispatcher is used by the router to send payment attempts onto

// the network, and receive their results.

type PaymentAttemptDispatcher interface {

        // SendHTLC is a function that directs a link-layer switch to

        // forward a fully encoded payment to the first hop in the route

        // denoted by its public key. A non-nil error is to be returned if the

        // payment was unsuccessful.

        SendHTLC(firstHop lnwire.ShortChannelID,

                attemptID uint64,

                htlcAdd *lnwire.UpdateAddHTLC) error

        // GetAttemptResult returns the result of the payment attempt with

        // the given attemptID. The paymentHash should be set to the payment's

        // overall hash, or in case of AMP payments the payment's unique

        // identifier.

        //

        // The method returns a channel where the payment result will be sent

        // when available, or an error is encountered during forwarding. When a

        // result is received on the channel, the HTLC is guaranteed to no

        // longer be in flight.  The switch shutting down is signaled by

        // closing the channel. If the attemptID is unknown,

        // ErrPaymentIDNotFound will be returned.

        GetAttemptResult(attemptID uint64, paymentHash lntypes.Hash,

                deobfuscator htlcswitch.ErrorDecrypter) (

                <-chan *htlcswitch.PaymentResult, error)

        // CleanStore calls the underlying result store, telling it is safe to

        // delete all entries except the ones in the keepPids map. This should

        // be called periodically to let the switch clean up payment results

        // that we have handled.

        // NOTE: New payment attempts MUST NOT be made after the keepPids map

        // has been created and this method has returned.

        CleanStore(keepPids map[uint64]struct{}) error

}

// PaymentSessionSource is an interface that defines a source for the router to

// retrieve new payment sessions.

type PaymentSessionSource interface {

        // NewPaymentSession creates a new payment session that will produce

        // routes to the given target. An optional set of routing hints can be

        // provided in order to populate additional edges to explore when

        // finding a path to the payment's destination.

        NewPaymentSession(p *LightningPayment) (PaymentSession, error)

        // NewPaymentSessionEmpty creates a new paymentSession instance that is

        // empty, and will be exhausted immediately. Used for failure reporting

        // to missioncontrol for resumed payment we don't want to make more

        // attempts for.

        NewPaymentSessionEmpty() PaymentSession

}

// MissionController is an interface that exposes failure reporting and

// probability estimation.

type MissionController interface {

        // ReportPaymentFail reports a failed payment to mission control as

        // input for future probability estimates. It returns a bool indicating

        // whether this error is a final error and no further payment attempts

        // need to be made.

        ReportPaymentFail(attemptID uint64, rt *route.Route,

                failureSourceIdx *int, failure lnwire.FailureMessage) (

                *channeldb.FailureReason, error)

        // ReportPaymentSuccess reports a successful payment to mission control

        // as input for future probability estimates.

        ReportPaymentSuccess(attemptID uint64, rt *route.Route) error

        // GetProbability is expected to return the success probability of a

        // payment from fromNode along edge.

        GetProbability(fromNode, toNode route.Vertex,

                amt lnwire.MilliSatoshi, capacity btcutil.Amount) float64

}

// FeeSchema is the set fee configuration for a Lightning Node on the network.

// Using the coefficients described within the schema, the required fee to

// forward outgoing payments can be derived.

type FeeSchema struct {

        // BaseFee is the base amount of milli-satoshis that will be chained

        // for ANY payment forwarded.

        BaseFee lnwire.MilliSatoshi

        // FeeRate is the rate that will be charged for forwarding payments.

        // This value should be interpreted as the numerator for a fraction

        // (fixed point arithmetic) whose denominator is 1 million. As a result

        // the effective fee rate charged per mSAT will be: (amount *

        // FeeRate/1,000,000).

        FeeRate uint32

        // InboundFee is the inbound fee schedule that applies to forwards

        // coming in through a channel to which this FeeSchema pertains.

        InboundFee fn.Option[models.InboundFee]

}

// ChannelPolicy holds the parameters that determine the policy we enforce

// when forwarding payments on a channel. These parameters are communicated

// to the rest of the network in ChannelUpdate messages.

type ChannelPolicy struct {

        // FeeSchema holds the fee configuration for a channel.

        FeeSchema

        // TimeLockDelta is the required HTLC timelock delta to be used

        // when forwarding payments.

        TimeLockDelta uint32

        // MaxHTLC is the maximum HTLC size including fees we are allowed to

        // forward over this channel.

        MaxHTLC lnwire.MilliSatoshi

        // MinHTLC is the minimum HTLC size including fees we are allowed to

        // forward over this channel.

        MinHTLC *lnwire.MilliSatoshi

}

// Config defines the configuration for the ChannelRouter. ALL elements within

// the configuration MUST be non-nil for the ChannelRouter to carry out its

// duties.

type Config struct {

        // Graph is the channel graph that the ChannelRouter will use to gather

        // metrics from and also to carry out path finding queries.

        // TODO(roasbeef): make into an interface

        Graph *channeldb.ChannelGraph

        // Chain is the router's source to the most up-to-date blockchain data.

        // All incoming advertised channels will be checked against the chain

        // to ensure that the channels advertised are still open.

        Chain lnwallet.BlockChainIO

        // ChainView is an instance of a FilteredChainView which is used to

        // watch the sub-set of the UTXO set (the set of active channels) that

        // we need in order to properly maintain the channel graph.

        ChainView chainview.FilteredChainView

        // Notifier is a reference to the ChainNotifier, used to grab

        // the latest blocks if the router is missing any.

        Notifier chainntnfs.ChainNotifier

        // Payer is an instance of a PaymentAttemptDispatcher and is used by

        // the router to send payment attempts onto the network, and receive

        // their results.

        Payer PaymentAttemptDispatcher

        // Control keeps track of the status of ongoing payments, ensuring we

        // can properly resume them across restarts.

        Control ControlTower

        // MissionControl is a shared memory of sorts that executions of

        // payment path finding use in order to remember which vertexes/edges

        // were pruned from prior attempts. During SendPayment execution,

        // errors sent by nodes are mapped into a vertex or edge to be pruned.

        // Each run will then take into account this set of pruned

        // vertexes/edges to reduce route failure and pass on graph information

        // gained to the next execution.

        MissionControl MissionController

        // SessionSource defines a source for the router to retrieve new payment

        // sessions.

        SessionSource PaymentSessionSource

        // ChannelPruneExpiry is the duration used to determine if a channel

        // should be pruned or not. If the delta between now and when the

        // channel was last updated is greater than ChannelPruneExpiry, then

        // the channel is marked as a zombie channel eligible for pruning.

        ChannelPruneExpiry time.Duration

        // GraphPruneInterval is used as an interval to determine how often we

        // should examine the channel graph to garbage collect zombie channels.

        GraphPruneInterval time.Duration

        // FirstTimePruneDelay is the time we'll wait after startup before

        // attempting to prune the graph for zombie channels. We don't do it

        // immediately after startup to allow lnd to start up without getting

        // blocked by this job.

        FirstTimePruneDelay time.Duration

        // QueryBandwidth is a method that allows the router to query the lower

        // link layer to determine the up-to-date available bandwidth at a

        // prospective link to be traversed. If the  link isn't available, then

        // a value of zero should be returned. Otherwise, the current up-to-

        // date knowledge of the available bandwidth of the link should be

        // returned.

        GetLink getLinkQuery

        // NextPaymentID is a method that guarantees to return a new, unique ID

        // each time it is called. This is used by the router to generate a

        // unique payment ID for each payment it attempts to send, such that

        // the switch can properly handle the HTLC.

        NextPaymentID func() (uint64, error)

        // AssumeChannelValid toggles whether the router will check for

        // spentness of channel outpoints. For neutrino, this saves long rescans

        // from blocking initial usage of the daemon.

        AssumeChannelValid bool

        // PathFindingConfig defines global path finding parameters.

        PathFindingConfig PathFindingConfig

        // Clock is mockable time provider.

        Clock clock.Clock

        // StrictZombiePruning determines if we attempt to prune zombie

        // channels according to a stricter criteria. If true, then we'll prune

        // a channel if only *one* of the edges is considered a zombie.

        // Otherwise, we'll only prune the channel when both edges have a very

        // dated last update.

        StrictZombiePruning bool

        // IsAlias returns whether a passed ShortChannelID is an alias. This is

        // only used for our local channels.

        IsAlias func(scid lnwire.ShortChannelID) bool

}

// EdgeLocator is a struct used to identify a specific edge.

type EdgeLocator struct {

        // ChannelID is the channel of this edge.

        ChannelID uint64

        // Direction takes the value of 0 or 1 and is identical in definition to

        // the channel direction flag. A value of 0 means the direction from the

        // lower node pubkey to the higher.

        Direction uint8

}

// String returns a human-readable version of the edgeLocator values.

// ChannelRouter is the layer 3 router within the Lightning stack. Below the

// ChannelRouter is the HtlcSwitch, and below that is the Bitcoin blockchain

// itself. The primary role of the ChannelRouter is to respond to queries for

// potential routes that can support a payment amount, and also general graph

// reachability questions. The router will prune the channel graph

// automatically as new blocks are discovered which spend certain known funding

// outpoints, thereby closing their respective channels.

type ChannelRouter struct {

        ntfnClientCounter uint64 // To be used atomically.

        started uint32 // To be used atomically.

        stopped uint32 // To be used atomically.

        bestHeight uint32 // To be used atomically.

        // cfg is a copy of the configuration struct that the ChannelRouter was

        // initialized with.

        cfg *Config

        // selfNode is the center of the star-graph centered around the

        // ChannelRouter. The ChannelRouter uses this node as a starting point

        // when doing any path finding.

        selfNode *channeldb.LightningNode

        // cachedGraph is an instance of routingGraph that caches the source

        // node as well as the channel graph itself in memory.

        cachedGraph routingGraph

        // newBlocks is a channel in which new blocks connected to the end of

        // the main chain are sent over, and blocks updated after a call to

        // UpdateFilter.

        newBlocks <-chan *chainview.FilteredBlock

        // staleBlocks is a channel in which blocks disconnected from the end

        // of our currently known best chain are sent over.

        staleBlocks <-chan *chainview.FilteredBlock

        // networkUpdates is a channel that carries new topology updates

        // messages from outside the ChannelRouter to be processed by the

        // networkHandler.

        networkUpdates chan *routingMsg

        // topologyClients maps a client's unique notification ID to a

        // topologyClient client that contains its notification dispatch

        // channel.

        topologyClients *lnutils.SyncMap[uint64, *topologyClient]

        // ntfnClientUpdates is a channel that's used to send new updates to

        // topology notification clients to the ChannelRouter. Updates either

        // add a new notification client, or cancel notifications for an

        // existing client.

        ntfnClientUpdates chan *topologyClientUpdate

        // channelEdgeMtx is a mutex we use to make sure we process only one

        // ChannelEdgePolicy at a time for a given channelID, to ensure

        // consistency between the various database accesses.

        channelEdgeMtx *multimutex.Mutex[uint64]

        // statTicker is a resumable ticker that logs the router's progress as

        // it discovers channels or receives updates.

        statTicker ticker.Ticker

        // stats tracks newly processed channels, updates, and node

        // announcements over a window of defaultStatInterval.

        stats *routerStats

        quit chan struct{}

        wg   sync.WaitGroup

}

// A compile time check to ensure ChannelRouter implements the

// ChannelGraphSource interface.

var _ ChannelGraphSource = (*ChannelRouter)(nil)

// New creates a new instance of the ChannelRouter with the specified

// configuration parameters. As part of initialization, if the router detects

// that the channel graph isn't fully in sync with the latest UTXO (since the

// channel graph is a subset of the UTXO set) set, then the router will proceed

// to fully sync to the latest state of the UTXO set.

}

// Start launches all the goroutines the ChannelRouter requires to carry out

// its duties. If the router has already been started, then this method is a

// noop.

        // If the graph has never been pruned, or hasn't fully been created yet,

        // then we don't treat this as an explicit error.

                }

        }

        // If AssumeChannelValid is present, then we won't rely on pruning

        // channels from the graph based on their spentness, but whether they

        // are considered zombies or not. We will start zombie pruning after a

        // small delay, to avoid slowing down startup of lnd.

                        }

                })

                // Once the instance is active, we'll fetch the channel we'll

                // receive notifications over.

                }

                // The graph pruning might have taken a while and there could be

                // new blocks available.

                // Finally, before we proceed, we'll prune any unconnected nodes

                // from the graph in order to ensure we maintain a tight graph

                // of "useful" nodes.

        }

        // If any payments are still in flight, we resume, to make sure their

        // results are properly handled.

        // Before we restart existing payments and start accepting more

        // payments to be made, we clean the network result store of the

        // Switch. We do this here at startup to ensure no more payments can be

        // made concurrently, so we know the toKeep map will be up-to-date

        // until the cleaning has finished.

        }

                        }

                        // Since we are not supporting creating more shards

                        // after a restart (only receiving the result of the

                        // shards already outstanding), we create a simple

                        // shard tracker that will map the attempt IDs to

                        // hashes used for the HTLCs. This will be enough also

                        // for AMP payments, since we only need the hashes for

                        // the individual HTLCs to regenerate the circuits, and

                        // we don't currently persist the root share necessary

                        // to re-derive them.

                }(payment)

        }

}

// Stop signals the ChannelRouter to gracefully halt all routines. This method

// will *block* until all goroutines have excited. If the channel router has

// already stopped then this method will return immediately.

        }

}

// syncGraphWithChain attempts to synchronize the current channel graph with

// the latest UTXO set state. This process involves pruning from the channel

// graph any channels which have been closed by spending their funding output

// since we've been down.

                // If the graph has never been pruned, or hasn't fully been

                // created yet, then we don't treat this as an explicit error.

                }

        }

        // If the graph has never been pruned, then we can exit early as this

        // entails it's being created for the first time and hasn't seen any

        // block or created channels.

        // If the block hashes and heights match exactly, then we don't need to

        // prune the channel graph as we're already fully in sync.

        }

        // If the main chain blockhash at prune height is different from the

        // prune hash, this might indicate the database is on a stale branch.

        // While we are on a stale branch of the chain, walk backwards to find

        // first common block.

                        // If at this point the graph has never been pruned, we

                        // can exit as this entails we are back to the point

                        // where it hasn't seen any block or created channels,

                        // alas there's nothing left to prune.

                        }

                }

        }

                }

                // Using the next height, request a manual block pruning from

                // the chainview for the particular block hash.

                // We're only interested in all prior outputs that have been

                // spent in the block, so collate all the referenced previous

                // outpoints within each tx and input.

                }

        }

        // With the spent outputs gathered, attempt to prune the channel graph,

        // also passing in the best hash+height so the prune tip can be updated.

}

// isZombieChannel takes two edge policy updates and determines if the

// corresponding channel should be considered a zombie. The first boolean is

// true if the policy update from node 1 is considered a zombie, the second

// boolean is that of node 2, and the final boolean is true if the channel

// is considered a zombie.

func (r *ChannelRouter) isZombieChannel(e1,

}

// IsZombieChannel takes the timestamps of the latest channel updates for a

// channel and returns true if the channel should be considered a zombie based

// on these timestamps.

func (r *ChannelRouter) IsZombieChannel(updateTime1,