• Home
  • Features
  • Pricing
  • Docs
  • Announcements
  • Sign In

lightningnetwork / lnd / 16911773184

12 Aug 2025 02:21PM UTC coverage: 57.471% (-9.4%) from 66.9%
16911773184

Pull #10103

github

web-flow
Merge d64a1234d into f3e1f2f35
Pull Request #10103: Rate limit outgoing gossip bandwidth by peer

57 of 77 new or added lines in 5 files covered. (74.03%)

28294 existing lines in 457 files now uncovered.

99110 of 172451 relevant lines covered (57.47%)

1.78 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

68.94
/discovery/gossiper.go
1
package discovery
2

3
import (
4
        "bytes"
5
        "context"
6
        "errors"
7
        "fmt"
8
        "strings"
9
        "sync"
10
        "sync/atomic"
11
        "time"
12

13
        "github.com/btcsuite/btcd/btcec/v2"
14
        "github.com/btcsuite/btcd/btcec/v2/ecdsa"
15
        "github.com/btcsuite/btcd/btcutil"
16
        "github.com/btcsuite/btcd/chaincfg/chainhash"
17
        "github.com/btcsuite/btcd/wire"
18
        "github.com/davecgh/go-spew/spew"
19
        "github.com/lightninglabs/neutrino/cache"
20
        "github.com/lightninglabs/neutrino/cache/lru"
21
        "github.com/lightningnetwork/lnd/batch"
22
        "github.com/lightningnetwork/lnd/chainntnfs"
23
        "github.com/lightningnetwork/lnd/channeldb"
24
        "github.com/lightningnetwork/lnd/fn/v2"
25
        "github.com/lightningnetwork/lnd/graph"
26
        graphdb "github.com/lightningnetwork/lnd/graph/db"
27
        "github.com/lightningnetwork/lnd/graph/db/models"
28
        "github.com/lightningnetwork/lnd/input"
29
        "github.com/lightningnetwork/lnd/keychain"
30
        "github.com/lightningnetwork/lnd/lnpeer"
31
        "github.com/lightningnetwork/lnd/lnutils"
32
        "github.com/lightningnetwork/lnd/lnwallet"
33
        "github.com/lightningnetwork/lnd/lnwallet/btcwallet"
34
        "github.com/lightningnetwork/lnd/lnwallet/chanvalidate"
35
        "github.com/lightningnetwork/lnd/lnwire"
36
        "github.com/lightningnetwork/lnd/multimutex"
37
        "github.com/lightningnetwork/lnd/netann"
38
        "github.com/lightningnetwork/lnd/routing/route"
39
        "github.com/lightningnetwork/lnd/ticker"
40
        "golang.org/x/time/rate"
41
)
42

43
const (
44
        // DefaultMaxChannelUpdateBurst is the default maximum number of updates
45
        // for a specific channel and direction that we'll accept over an
46
        // interval.
47
        DefaultMaxChannelUpdateBurst = 10
48

49
        // DefaultChannelUpdateInterval is the default interval we'll use to
50
        // determine how often we should allow a new update for a specific
51
        // channel and direction.
52
        DefaultChannelUpdateInterval = time.Minute
53

54
        // maxPrematureUpdates tracks the max amount of premature channel
55
        // updates that we'll hold onto.
56
        maxPrematureUpdates = 100
57

58
        // maxFutureMessages tracks the max amount of future messages that
59
        // we'll hold onto.
60
        maxFutureMessages = 1000
61

62
        // DefaultSubBatchDelay is the default delay we'll use when
63
        // broadcasting the next announcement batch.
64
        DefaultSubBatchDelay = 5 * time.Second
65

66
        // maxRejectedUpdates tracks the max amount of rejected channel updates
67
        // we'll maintain. This is the global size across all peers. We'll
68
        // allocate ~3 MB max to the cache.
69
        maxRejectedUpdates = 10_000
70

71
        // DefaultProofMatureDelta specifies the default value used for
72
        // ProofMatureDelta, which is the number of confirmations needed before
73
        // processing the announcement signatures.
74
        DefaultProofMatureDelta = 6
75
)
76

77
var (
78
        // ErrGossiperShuttingDown is an error that is returned if the gossiper
79
        // is in the process of being shut down.
80
        ErrGossiperShuttingDown = errors.New("gossiper is shutting down")
81

82
        // ErrGossipSyncerNotFound signals that we were unable to find an active
83
        // gossip syncer corresponding to a gossip query message received from
84
        // the remote peer.
85
        ErrGossipSyncerNotFound = errors.New("gossip syncer not found")
86

87
        // ErrNoFundingTransaction is returned when we are unable to find the
88
        // funding transaction described by the short channel ID on chain.
89
        ErrNoFundingTransaction = errors.New(
90
                "unable to find the funding transaction",
91
        )
92

93
        // ErrInvalidFundingOutput is returned if the channel funding output
94
        // fails validation.
95
        ErrInvalidFundingOutput = errors.New(
96
                "channel funding output validation failed",
97
        )
98

99
        // ErrChannelSpent is returned when we go to validate a channel, but
100
        // the purported funding output has actually already been spent on
101
        // chain.
102
        ErrChannelSpent = errors.New("channel output has been spent")
103

104
        // emptyPubkey is used to compare compressed pubkeys against an empty
105
        // byte array.
106
        emptyPubkey [33]byte
107
)
108

109
// optionalMsgFields is a set of optional message fields that external callers
110
// can provide that serve useful when processing a specific network
111
// announcement.
112
type optionalMsgFields struct {
113
        capacity      *btcutil.Amount
114
        channelPoint  *wire.OutPoint
115
        remoteAlias   *lnwire.ShortChannelID
116
        tapscriptRoot fn.Option[chainhash.Hash]
117
}
118

119
// apply applies the optional fields within the functional options.
120
func (f *optionalMsgFields) apply(optionalMsgFields ...OptionalMsgField) {
3✔
121
        for _, optionalMsgField := range optionalMsgFields {
6✔
122
                optionalMsgField(f)
3✔
123
        }
3✔
124
}
125

126
// OptionalMsgField is a functional option parameter that can be used to provide
127
// external information that is not included within a network message but serves
128
// useful when processing it.
129
type OptionalMsgField func(*optionalMsgFields)
130

131
// ChannelCapacity is an optional field that lets the gossiper know of the
132
// capacity of a channel.
133
func ChannelCapacity(capacity btcutil.Amount) OptionalMsgField {
3✔
134
        return func(f *optionalMsgFields) {
6✔
135
                f.capacity = &capacity
3✔
136
        }
3✔
137
}
138

139
// ChannelPoint is an optional field that lets the gossiper know of the outpoint
140
// of a channel.
141
func ChannelPoint(op wire.OutPoint) OptionalMsgField {
3✔
142
        return func(f *optionalMsgFields) {
6✔
143
                f.channelPoint = &op
3✔
144
        }
3✔
145
}
146

147
// TapscriptRoot is an optional field that lets the gossiper know of the root of
148
// the tapscript tree for a custom channel.
149
func TapscriptRoot(root fn.Option[chainhash.Hash]) OptionalMsgField {
3✔
150
        return func(f *optionalMsgFields) {
6✔
151
                f.tapscriptRoot = root
3✔
152
        }
3✔
153
}
154

155
// RemoteAlias is an optional field that lets the gossiper know that a locally
156
// sent channel update is actually an update for the peer that should replace
157
// the ShortChannelID field with the remote's alias. This is only used for
158
// channels with peers where the option-scid-alias feature bit was negotiated.
159
// The channel update will be added to the graph under the original SCID, but
160
// will be modified and re-signed with this alias.
161
func RemoteAlias(alias *lnwire.ShortChannelID) OptionalMsgField {
3✔
162
        return func(f *optionalMsgFields) {
6✔
163
                f.remoteAlias = alias
3✔
164
        }
3✔
165
}
166

167
// networkMsg couples a routing related wire message with the peer that
168
// originally sent it.
169
type networkMsg struct {
170
        peer              lnpeer.Peer
171
        source            *btcec.PublicKey
172
        msg               lnwire.Message
173
        optionalMsgFields *optionalMsgFields
174

175
        isRemote bool
176

177
        err chan error
178
}
179

180
// chanPolicyUpdateRequest is a request that is sent to the server when a caller
181
// wishes to update a particular set of channels. New ChannelUpdate messages
182
// will be crafted to be sent out during the next broadcast epoch and the fee
183
// updates committed to the lower layer.
184
type chanPolicyUpdateRequest struct {
185
        edgesToUpdate []EdgeWithInfo
186
        errChan       chan error
187
}
188

189
// PinnedSyncers is a set of node pubkeys for which we will maintain an active
190
// syncer at all times.
191
type PinnedSyncers map[route.Vertex]struct{}
192

193
// Config defines the configuration for the service. ALL elements within the
194
// configuration MUST be non-nil for the service to carry out its duties.
195
type Config struct {
196
        // ChainHash is a hash that indicates which resident chain of the
197
        // AuthenticatedGossiper. Any announcements that don't match this
198
        // chain hash will be ignored.
199
        //
200
        // TODO(roasbeef): eventually make into map so can de-multiplex
201
        // incoming announcements
202
        //   * also need to do same for Notifier
203
        ChainHash chainhash.Hash
204

205
        // Graph is the subsystem which is responsible for managing the
206
        // topology of lightning network. After incoming channel, node, channel
207
        // updates announcements are validated they are sent to the router in
208
        // order to be included in the LN graph.
209
        Graph graph.ChannelGraphSource
210

211
        // ChainIO represents an abstraction over a source that can query the
212
        // blockchain.
213
        ChainIO lnwallet.BlockChainIO
214

215
        // ChanSeries is an interfaces that provides access to a time series
216
        // view of the current known channel graph. Each GossipSyncer enabled
217
        // peer will utilize this in order to create and respond to channel
218
        // graph time series queries.
219
        ChanSeries ChannelGraphTimeSeries
220

221
        // Notifier is used for receiving notifications of incoming blocks.
222
        // With each new incoming block found we process previously premature
223
        // announcements.
224
        //
225
        // TODO(roasbeef): could possibly just replace this with an epoch
226
        // channel.
227
        Notifier chainntnfs.ChainNotifier
228

229
        // Broadcast broadcasts a particular set of announcements to all peers
230
        // that the daemon is connected to. If supplied, the exclude parameter
231
        // indicates that the target peer should be excluded from the
232
        // broadcast.
233
        Broadcast func(skips map[route.Vertex]struct{},
234
                msg ...lnwire.Message) error
235

236
        // NotifyWhenOnline is a function that allows the gossiper to be
237
        // notified when a certain peer comes online, allowing it to
238
        // retry sending a peer message.
239
        //
240
        // NOTE: The peerChan channel must be buffered.
241
        NotifyWhenOnline func(peerPubKey [33]byte, peerChan chan<- lnpeer.Peer)
242

243
        // NotifyWhenOffline is a function that allows the gossiper to be
244
        // notified when a certain peer disconnects, allowing it to request a
245
        // notification for when it reconnects.
246
        NotifyWhenOffline func(peerPubKey [33]byte) <-chan struct{}
247

248
        // FetchSelfAnnouncement retrieves our current node announcement, for
249
        // use when determining whether we should update our peers about our
250
        // presence in the network.
251
        FetchSelfAnnouncement func() lnwire.NodeAnnouncement
252

253
        // UpdateSelfAnnouncement produces a new announcement for our node with
254
        // an updated timestamp which can be broadcast to our peers.
255
        UpdateSelfAnnouncement func() (lnwire.NodeAnnouncement, error)
256

257
        // ProofMatureDelta the number of confirmations which is needed before
258
        // exchange the channel announcement proofs.
259
        ProofMatureDelta uint32
260

261
        // TrickleDelay the period of trickle timer which flushes to the
262
        // network the pending batch of new announcements we've received since
263
        // the last trickle tick.
264
        TrickleDelay time.Duration
265

266
        // RetransmitTicker is a ticker that ticks with a period which
267
        // indicates that we should check if we need re-broadcast any of our
268
        // personal channels.
269
        RetransmitTicker ticker.Ticker
270

271
        // RebroadcastInterval is the maximum time we wait between sending out
272
        // channel updates for our active channels and our own node
273
        // announcement. We do this to ensure our active presence on the
274
        // network is known, and we are not being considered a zombie node or
275
        // having zombie channels.
276
        RebroadcastInterval time.Duration
277

278
        // WaitingProofStore is a persistent storage of partial channel proof
279
        // announcement messages. We use it to buffer half of the material
280
        // needed to reconstruct a full authenticated channel announcement.
281
        // Once we receive the other half the channel proof, we'll be able to
282
        // properly validate it and re-broadcast it out to the network.
283
        //
284
        // TODO(wilmer): make interface to prevent channeldb dependency.
285
        WaitingProofStore *channeldb.WaitingProofStore
286

287
        // MessageStore is a persistent storage of gossip messages which we will
288
        // use to determine which messages need to be resent for a given peer.
289
        MessageStore GossipMessageStore
290

291
        // AnnSigner is an instance of the MessageSigner interface which will
292
        // be used to manually sign any outgoing channel updates. The signer
293
        // implementation should be backed by the public key of the backing
294
        // Lightning node.
295
        //
296
        // TODO(roasbeef): extract ann crafting + sign from fundingMgr into
297
        // here?
298
        AnnSigner lnwallet.MessageSigner
299

300
        // ScidCloser is an instance of ClosedChannelTracker that helps the
301
        // gossiper cut down on spam channel announcements for already closed
302
        // channels.
303
        ScidCloser ClosedChannelTracker
304

305
        // NumActiveSyncers is the number of peers for which we should have
306
        // active syncers with. After reaching NumActiveSyncers, any future
307
        // gossip syncers will be passive.
308
        NumActiveSyncers int
309

310
        // NoTimestampQueries will prevent the GossipSyncer from querying
311
        // timestamps of announcement messages from the peer and from replying
312
        // to timestamp queries.
313
        NoTimestampQueries bool
314

315
        // RotateTicker is a ticker responsible for notifying the SyncManager
316
        // when it should rotate its active syncers. A single active syncer with
317
        // a chansSynced state will be exchanged for a passive syncer in order
318
        // to ensure we don't keep syncing with the same peers.
319
        RotateTicker ticker.Ticker
320

321
        // HistoricalSyncTicker is a ticker responsible for notifying the
322
        // syncManager when it should attempt a historical sync with a gossip
323
        // sync peer.
324
        HistoricalSyncTicker ticker.Ticker
325

326
        // ActiveSyncerTimeoutTicker is a ticker responsible for notifying the
327
        // syncManager when it should attempt to start the next pending
328
        // activeSyncer due to the current one not completing its state machine
329
        // within the timeout.
330
        ActiveSyncerTimeoutTicker ticker.Ticker
331

332
        // MinimumBatchSize is minimum size of a sub batch of announcement
333
        // messages.
334
        MinimumBatchSize int
335

336
        // SubBatchDelay is the delay between sending sub batches of
337
        // gossip messages.
338
        SubBatchDelay time.Duration
339

340
        // IgnoreHistoricalFilters will prevent syncers from replying with
341
        // historical data when the remote peer sets a gossip_timestamp_range.
342
        // This prevents ranges with old start times from causing us to dump the
343
        // graph on connect.
344
        IgnoreHistoricalFilters bool
345

346
        // PinnedSyncers is a set of peers that will always transition to
347
        // ActiveSync upon connection. These peers will never transition to
348
        // PassiveSync.
349
        PinnedSyncers PinnedSyncers
350

351
        // MaxChannelUpdateBurst specifies the maximum number of updates for a
352
        // specific channel and direction that we'll accept over an interval.
353
        MaxChannelUpdateBurst int
354

355
        // ChannelUpdateInterval specifies the interval we'll use to determine
356
        // how often we should allow a new update for a specific channel and
357
        // direction.
358
        ChannelUpdateInterval time.Duration
359

360
        // IsAlias returns true if a given ShortChannelID is an alias for
361
        // option_scid_alias channels.
362
        IsAlias func(scid lnwire.ShortChannelID) bool
363

364
        // SignAliasUpdate is used to re-sign a channel update using the
365
        // remote's alias if the option-scid-alias feature bit was negotiated.
366
        SignAliasUpdate func(u *lnwire.ChannelUpdate1) (*ecdsa.Signature,
367
                error)
368

369
        // FindBaseByAlias finds the SCID stored in the graph by an alias SCID.
370
        // This is used for channels that have negotiated the option-scid-alias
371
        // feature bit.
372
        FindBaseByAlias func(alias lnwire.ShortChannelID) (
373
                lnwire.ShortChannelID, error)
374

375
        // GetAlias allows the gossiper to look up the peer's alias for a given
376
        // ChannelID. This is used to sign updates for them if the channel has
377
        // no AuthProof and the option-scid-alias feature bit was negotiated.
378
        GetAlias func(lnwire.ChannelID) (lnwire.ShortChannelID, error)
379

380
        // FindChannel allows the gossiper to find a channel that we're party
381
        // to without iterating over the entire set of open channels.
382
        FindChannel func(node *btcec.PublicKey, chanID lnwire.ChannelID) (
383
                *channeldb.OpenChannel, error)
384

385
        // IsStillZombieChannel takes the timestamps of the latest channel
386
        // updates for a channel and returns true if the channel should be
387
        // considered a zombie based on these timestamps.
388
        IsStillZombieChannel func(time.Time, time.Time) bool
389

390
        // AssumeChannelValid toggles whether the gossiper will check for
391
        // spent-ness of channel outpoints. For neutrino, this saves long
392
        // rescans from blocking initial usage of the daemon.
393
        AssumeChannelValid bool
394

395
        // MsgRateBytes is the rate limit for the number of bytes per second
396
        // that we'll allocate to outbound gossip messages.
397
        MsgRateBytes uint64
398

399
        // MsgBurstBytes is the allotted burst amount in bytes. This is the
400
        // number of starting tokens in our token bucket algorithm.
401
        MsgBurstBytes uint64
402

403
        // FilterConcurrency is the maximum number of concurrent gossip filter
404
        // applications that can be processed.
405
        FilterConcurrency int
406

407
        // PeerMsgRateBytes is the rate limit for the number of bytes per second
408
        // that we'll allocate to outbound gossip messages for a single peer.
409
        PeerMsgRateBytes uint64
410
}
411

412
// processedNetworkMsg is a wrapper around networkMsg and a boolean. It is
413
// used to let the caller of the lru.Cache know if a message has already been
414
// processed or not.
415
type processedNetworkMsg struct {
416
        processed bool
417
        msg       *networkMsg
418
}
419

420
// cachedNetworkMsg is a wrapper around a network message that can be used with
421
// *lru.Cache.
422
//
423
// NOTE: This struct is not thread safe which means you need to assure no
424
// concurrent read write access to it and all its contents which are pointers
425
// as well.
426
type cachedNetworkMsg struct {
427
        msgs []*processedNetworkMsg
428
}
429

430
// Size returns the "size" of an entry. We return the number of items as we
431
// just want to limit the total amount of entries rather than do accurate size
432
// accounting.
433
func (c *cachedNetworkMsg) Size() (uint64, error) {
3✔
434
        return uint64(len(c.msgs)), nil
3✔
435
}
3✔
436

437
// rejectCacheKey is the cache key that we'll use to track announcements we've
438
// recently rejected.
439
type rejectCacheKey struct {
440
        pubkey [33]byte
441
        chanID uint64
442
}
443

444
// newRejectCacheKey returns a new cache key for the reject cache.
445
func newRejectCacheKey(cid uint64, pub [33]byte) rejectCacheKey {
3✔
446
        k := rejectCacheKey{
3✔
447
                chanID: cid,
3✔
448
                pubkey: pub,
3✔
449
        }
3✔
450

3✔
451
        return k
3✔
452
}
3✔
453

454
// sourceToPub returns a serialized-compressed public key for use in the reject
455
// cache.
456
func sourceToPub(pk *btcec.PublicKey) [33]byte {
3✔
457
        var pub [33]byte
3✔
458
        copy(pub[:], pk.SerializeCompressed())
3✔
459
        return pub
3✔
460
}
3✔
461

462
// cachedReject is the empty value used to track the value for rejects.
463
type cachedReject struct {
464
}
465

466
// Size returns the "size" of an entry. We return 1 as we just want to limit
467
// the total size.
UNCOV
468
func (c *cachedReject) Size() (uint64, error) {
×
UNCOV
469
        return 1, nil
×
UNCOV
470
}
×
471

472
// AuthenticatedGossiper is a subsystem which is responsible for receiving
473
// announcements, validating them and applying the changes to router, syncing
474
// lightning network with newly connected nodes, broadcasting announcements
475
// after validation, negotiating the channel announcement proofs exchange and
476
// handling the premature announcements. All outgoing announcements are
477
// expected to be properly signed as dictated in BOLT#7, additionally, all
478
// incoming message are expected to be well formed and signed. Invalid messages
479
// will be rejected by this struct.
480
type AuthenticatedGossiper struct {
481
        // Parameters which are needed to properly handle the start and stop of
482
        // the service.
483
        started sync.Once
484
        stopped sync.Once
485

486
        // bestHeight is the height of the block at the tip of the main chain
487
        // as we know it. Accesses *MUST* be done with the gossiper's lock
488
        // held.
489
        bestHeight uint32
490

491
        // cfg is a copy of the configuration struct that the gossiper service
492
        // was initialized with.
493
        cfg *Config
494

495
        // blockEpochs encapsulates a stream of block epochs that are sent at
496
        // every new block height.
497
        blockEpochs *chainntnfs.BlockEpochEvent
498

499
        // prematureChannelUpdates is a map of ChannelUpdates we have received
500
        // that wasn't associated with any channel we know about.  We store
501
        // them temporarily, such that we can reprocess them when a
502
        // ChannelAnnouncement for the channel is received.
503
        prematureChannelUpdates *lru.Cache[uint64, *cachedNetworkMsg]
504

505
        // banman tracks our peer's ban status.
506
        banman *banman
507

508
        // networkMsgs is a channel that carries new network broadcasted
509
        // message from outside the gossiper service to be processed by the
510
        // networkHandler.
511
        networkMsgs chan *networkMsg
512

513
        // futureMsgs is a list of premature network messages that have a block
514
        // height specified in the future. We will save them and resend it to
515
        // the chan networkMsgs once the block height has reached. The cached
516
        // map format is,
517
        //   {msgID1: msg1, msgID2: msg2, ...}
518
        futureMsgs *futureMsgCache
519

520
        // chanPolicyUpdates is a channel that requests to update the
521
        // forwarding policy of a set of channels is sent over.
522
        chanPolicyUpdates chan *chanPolicyUpdateRequest
523

524
        // selfKey is the identity public key of the backing Lightning node.
525
        selfKey *btcec.PublicKey
526

527
        // selfKeyLoc is the locator for the identity public key of the backing
528
        // Lightning node.
529
        selfKeyLoc keychain.KeyLocator
530

531
        // channelMtx is used to restrict the database access to one
532
        // goroutine per channel ID. This is done to ensure that when
533
        // the gossiper is handling an announcement, the db state stays
534
        // consistent between when the DB is first read until it's written.
535
        channelMtx *multimutex.Mutex[uint64]
536

537
        recentRejects *lru.Cache[rejectCacheKey, *cachedReject]
538

539
        // syncMgr is a subsystem responsible for managing the gossip syncers
540
        // for peers currently connected. When a new peer is connected, the
541
        // manager will create its accompanying gossip syncer and determine
542
        // whether it should have an activeSync or passiveSync sync type based
543
        // on how many other gossip syncers are currently active. Any activeSync
544
        // gossip syncers are started in a round-robin manner to ensure we're
545
        // not syncing with multiple peers at the same time.
546
        syncMgr *SyncManager
547

548
        // reliableSender is a subsystem responsible for handling reliable
549
        // message send requests to peers. This should only be used for channels
550
        // that are unadvertised at the time of handling the message since if it
551
        // is advertised, then peers should be able to get the message from the
552
        // network.
553
        reliableSender *reliableSender
554

555
        // chanUpdateRateLimiter contains rate limiters for each direction of
556
        // a channel update we've processed. We'll use these to determine
557
        // whether we should accept a new update for a specific channel and
558
        // direction.
559
        //
560
        // NOTE: This map must be synchronized with the main
561
        // AuthenticatedGossiper lock.
562
        chanUpdateRateLimiter map[uint64][2]*rate.Limiter
563

564
        // vb is used to enforce job dependency ordering of gossip messages.
565
        vb *ValidationBarrier
566

567
        sync.Mutex
568

569
        cancel fn.Option[context.CancelFunc]
570
        quit   chan struct{}
571
        wg     sync.WaitGroup
572
}
573

574
// New creates a new AuthenticatedGossiper instance, initialized with the
575
// passed configuration parameters.
576
func New(cfg Config, selfKeyDesc *keychain.KeyDescriptor) *AuthenticatedGossiper {
3✔
577
        gossiper := &AuthenticatedGossiper{
3✔
578
                selfKey:           selfKeyDesc.PubKey,
3✔
579
                selfKeyLoc:        selfKeyDesc.KeyLocator,
3✔
580
                cfg:               &cfg,
3✔
581
                networkMsgs:       make(chan *networkMsg),
3✔
582
                futureMsgs:        newFutureMsgCache(maxFutureMessages),
3✔
583
                quit:              make(chan struct{}),
3✔
584
                chanPolicyUpdates: make(chan *chanPolicyUpdateRequest),
3✔
585
                prematureChannelUpdates: lru.NewCache[uint64, *cachedNetworkMsg]( //nolint: ll
3✔
586
                        maxPrematureUpdates,
3✔
587
                ),
3✔
588
                channelMtx: multimutex.NewMutex[uint64](),
3✔
589
                recentRejects: lru.NewCache[rejectCacheKey, *cachedReject](
3✔
590
                        maxRejectedUpdates,
3✔
591
                ),
3✔
592
                chanUpdateRateLimiter: make(map[uint64][2]*rate.Limiter),
3✔
593
                banman:                newBanman(),
3✔
594
        }
3✔
595

3✔
596
        gossiper.vb = NewValidationBarrier(1000, gossiper.quit)
3✔
597

3✔
598
        gossiper.syncMgr = newSyncManager(&SyncManagerCfg{
3✔
599
                ChainHash:                cfg.ChainHash,
3✔
600
                ChanSeries:               cfg.ChanSeries,
3✔
601
                RotateTicker:             cfg.RotateTicker,
3✔
602
                HistoricalSyncTicker:     cfg.HistoricalSyncTicker,
3✔
603
                NumActiveSyncers:         cfg.NumActiveSyncers,
3✔
604
                NoTimestampQueries:       cfg.NoTimestampQueries,
3✔
605
                IgnoreHistoricalFilters:  cfg.IgnoreHistoricalFilters,
3✔
606
                BestHeight:               gossiper.latestHeight,
3✔
607
                PinnedSyncers:            cfg.PinnedSyncers,
3✔
608
                IsStillZombieChannel:     cfg.IsStillZombieChannel,
3✔
609
                AllotedMsgBytesPerSecond: cfg.MsgRateBytes,
3✔
610
                AllotedMsgBytesBurst:     cfg.MsgBurstBytes,
3✔
611
                FilterConcurrency:        cfg.FilterConcurrency,
3✔
612
                PeerMsgBytesPerSecond:    cfg.PeerMsgRateBytes,
3✔
613
        })
3✔
614

3✔
615
        gossiper.reliableSender = newReliableSender(&reliableSenderCfg{
3✔
616
                NotifyWhenOnline:  cfg.NotifyWhenOnline,
3✔
617
                NotifyWhenOffline: cfg.NotifyWhenOffline,
3✔
618
                MessageStore:      cfg.MessageStore,
3✔
619
                IsMsgStale:        gossiper.isMsgStale,
3✔
620
        })
3✔
621

3✔
622
        return gossiper
3✔
623
}
3✔
624

625
// EdgeWithInfo contains the information that is required to update an edge.
626
type EdgeWithInfo struct {
627
        // Info describes the channel.
628
        Info *models.ChannelEdgeInfo
629

630
        // Edge describes the policy in one direction of the channel.
631
        Edge *models.ChannelEdgePolicy
632
}
633

634
// PropagateChanPolicyUpdate signals the AuthenticatedGossiper to perform the
635
// specified edge updates. Updates are done in two stages: first, the
636
// AuthenticatedGossiper ensures the update has been committed by dependent
637
// sub-systems, then it signs and broadcasts new updates to the network. A
638
// mapping between outpoints and updated channel policies is returned, which is
639
// used to update the forwarding policies of the underlying links.
640
func (d *AuthenticatedGossiper) PropagateChanPolicyUpdate(
641
        edgesToUpdate []EdgeWithInfo) error {
3✔
642

3✔
643
        errChan := make(chan error, 1)
3✔
644
        policyUpdate := &chanPolicyUpdateRequest{
3✔
645
                edgesToUpdate: edgesToUpdate,
3✔
646
                errChan:       errChan,
3✔
647
        }
3✔
648

3✔
649
        select {
3✔
650
        case d.chanPolicyUpdates <- policyUpdate:
3✔
651
                err := <-errChan
3✔
652
                return err
3✔
653
        case <-d.quit:
×
654
                return fmt.Errorf("AuthenticatedGossiper shutting down")
×
655
        }
656
}
657

658
// Start spawns network messages handler goroutine and registers on new block
659
// notifications in order to properly handle the premature announcements.
660
func (d *AuthenticatedGossiper) Start() error {
3✔
661
        var err error
3✔
662
        d.started.Do(func() {
6✔
663
                ctx, cancel := context.WithCancel(context.Background())
3✔
664
                d.cancel = fn.Some(cancel)
3✔
665

3✔
666
                log.Info("Authenticated Gossiper starting")
3✔
667
                err = d.start(ctx)
3✔
668
        })
3✔
669
        return err
3✔
670
}
671

672
func (d *AuthenticatedGossiper) start(ctx context.Context) error {
3✔
673
        // First we register for new notifications of newly discovered blocks.
3✔
674
        // We do this immediately so we'll later be able to consume any/all
3✔
675
        // blocks which were discovered.
3✔
676
        blockEpochs, err := d.cfg.Notifier.RegisterBlockEpochNtfn(nil)
3✔
677
        if err != nil {
3✔
678
                return err
×
679
        }
×
680
        d.blockEpochs = blockEpochs
3✔
681

3✔
682
        height, err := d.cfg.Graph.CurrentBlockHeight()
3✔
683
        if err != nil {
3✔
684
                return err
×
685
        }
×
686
        d.bestHeight = height
3✔
687

3✔
688
        // Start the reliable sender. In case we had any pending messages ready
3✔
689
        // to be sent when the gossiper was last shut down, we must continue on
3✔
690
        // our quest to deliver them to their respective peers.
3✔
691
        if err := d.reliableSender.Start(); err != nil {
3✔
692
                return err
×
693
        }
×
694

695
        d.syncMgr.Start()
3✔
696

3✔
697
        d.banman.start()
3✔
698

3✔
699
        // Start receiving blocks in its dedicated goroutine.
3✔
700
        d.wg.Add(2)
3✔
701
        go d.syncBlockHeight()
3✔
702
        go d.networkHandler(ctx)
3✔
703

3✔
704
        return nil
3✔
705
}
706

707
// syncBlockHeight syncs the best block height for the gossiper by reading
708
// blockEpochs.
709
//
710
// NOTE: must be run as a goroutine.
711
func (d *AuthenticatedGossiper) syncBlockHeight() {
3✔
712
        defer d.wg.Done()
3✔
713

3✔
714
        for {
6✔
715
                select {
3✔
716
                // A new block has arrived, so we can re-process the previously
717
                // premature announcements.
718
                case newBlock, ok := <-d.blockEpochs.Epochs:
3✔
719
                        // If the channel has been closed, then this indicates
3✔
720
                        // the daemon is shutting down, so we exit ourselves.
3✔
721
                        if !ok {
6✔
722
                                return
3✔
723
                        }
3✔
724

725
                        // Once a new block arrives, we update our running
726
                        // track of the height of the chain tip.
727
                        d.Lock()
3✔
728
                        blockHeight := uint32(newBlock.Height)
3✔
729
                        d.bestHeight = blockHeight
3✔
730
                        d.Unlock()
3✔
731

3✔
732
                        log.Debugf("New block: height=%d, hash=%s", blockHeight,
3✔
733
                                newBlock.Hash)
3✔
734

3✔
735
                        // Resend future messages, if any.
3✔
736
                        d.resendFutureMessages(blockHeight)
3✔
737

UNCOV
738
                case <-d.quit:
×
UNCOV
739
                        return
×
740
                }
741
        }
742
}
743

744
// futureMsgCache embeds a `lru.Cache` with a message counter that's served as
745
// the unique ID when saving the message.
746
type futureMsgCache struct {
747
        *lru.Cache[uint64, *cachedFutureMsg]
748

749
        // msgID is a monotonically increased integer.
750
        msgID atomic.Uint64
751
}
752

753
// nextMsgID returns a unique message ID.
754
func (f *futureMsgCache) nextMsgID() uint64 {
3✔
755
        return f.msgID.Add(1)
3✔
756
}
3✔
757

758
// newFutureMsgCache creates a new future message cache with the underlying lru
759
// cache being initialized with the specified capacity.
760
func newFutureMsgCache(capacity uint64) *futureMsgCache {
3✔
761
        // Create a new cache.
3✔
762
        cache := lru.NewCache[uint64, *cachedFutureMsg](capacity)
3✔
763

3✔
764
        return &futureMsgCache{
3✔
765
                Cache: cache,
3✔
766
        }
3✔
767
}
3✔
768

769
// cachedFutureMsg is a future message that's saved to the `futureMsgCache`.
770
type cachedFutureMsg struct {
771
        // msg is the network message.
772
        msg *networkMsg
773

774
        // height is the block height.
775
        height uint32
776
}
777

778
// Size returns the size of the message.
779
func (c *cachedFutureMsg) Size() (uint64, error) {
3✔
780
        // Return a constant 1.
3✔
781
        return 1, nil
3✔
782
}
3✔
783

784
// resendFutureMessages takes a block height, resends all the future messages
785
// found below and equal to that height and deletes those messages found in the
786
// gossiper's futureMsgs.
787
func (d *AuthenticatedGossiper) resendFutureMessages(height uint32) {
3✔
788
        var (
3✔
789
                // msgs are the target messages.
3✔
790
                msgs []*networkMsg
3✔
791

3✔
792
                // keys are the target messages' caching keys.
3✔
793
                keys []uint64
3✔
794
        )
3✔
795

3✔
796
        // filterMsgs is the visitor used when iterating the future cache.
3✔
797
        filterMsgs := func(k uint64, cmsg *cachedFutureMsg) bool {
6✔
798
                if cmsg.height <= height {
6✔
799
                        msgs = append(msgs, cmsg.msg)
3✔
800
                        keys = append(keys, k)
3✔
801
                }
3✔
802

803
                return true
3✔
804
        }
805

806
        // Filter out the target messages.
807
        d.futureMsgs.Range(filterMsgs)
3✔
808

3✔
809
        // Return early if no messages found.
3✔
810
        if len(msgs) == 0 {
6✔
811
                return
3✔
812
        }
3✔
813

814
        // Remove the filtered messages.
815
        for _, key := range keys {
6✔
816
                d.futureMsgs.Delete(key)
3✔
817
        }
3✔
818

819
        log.Debugf("Resending %d network messages at height %d",
3✔
820
                len(msgs), height)
3✔
821

3✔
822
        for _, msg := range msgs {
6✔
823
                select {
3✔
824
                case d.networkMsgs <- msg:
3✔
825
                case <-d.quit:
×
826
                        msg.err <- ErrGossiperShuttingDown
×
827
                }
828
        }
829
}
830

831
// Stop signals any active goroutines for a graceful closure.
832
func (d *AuthenticatedGossiper) Stop() error {
3✔
833
        d.stopped.Do(func() {
6✔
834
                log.Info("Authenticated gossiper shutting down...")
3✔
835
                defer log.Debug("Authenticated gossiper shutdown complete")
3✔
836

3✔
837
                d.stop()
3✔
838
        })
3✔
839
        return nil
3✔
840
}
841

842
func (d *AuthenticatedGossiper) stop() {
3✔
843
        log.Debug("Authenticated Gossiper is stopping")
3✔
844
        defer log.Debug("Authenticated Gossiper stopped")
3✔
845

3✔
846
        // `blockEpochs` is only initialized in the start routine so we make
3✔
847
        // sure we don't panic here in the case where the `Stop` method is
3✔
848
        // called when the `Start` method does not complete.
3✔
849
        if d.blockEpochs != nil {
6✔
850
                d.blockEpochs.Cancel()
3✔
851
        }
3✔
852

853
        d.syncMgr.Stop()
3✔
854

3✔
855
        d.banman.stop()
3✔
856

3✔
857
        d.cancel.WhenSome(func(fn context.CancelFunc) { fn() })
6✔
858
        close(d.quit)
3✔
859
        d.wg.Wait()
3✔
860

3✔
861
        // We'll stop our reliable sender after all of the gossiper's goroutines
3✔
862
        // have exited to ensure nothing can cause it to continue executing.
3✔
863
        d.reliableSender.Stop()
3✔
864
}
865

866
// TODO(roasbeef): need method to get current gossip timestamp?
867
//  * using mtx, check time rotate forward is needed?
868

869
// ProcessRemoteAnnouncement sends a new remote announcement message along with
870
// the peer that sent the routing message. The announcement will be processed
871
// then added to a queue for batched trickled announcement to all connected
872
// peers.  Remote channel announcements should contain the announcement proof
873
// and be fully validated.
874
func (d *AuthenticatedGossiper) ProcessRemoteAnnouncement(ctx context.Context,
875
        msg lnwire.Message, peer lnpeer.Peer) chan error {
3✔
876

3✔
877
        errChan := make(chan error, 1)
3✔
878

3✔
879
        // For messages in the known set of channel series queries, we'll
3✔
880
        // dispatch the message directly to the GossipSyncer, and skip the main
3✔
881
        // processing loop.
3✔
882
        switch m := msg.(type) {
3✔
883
        case *lnwire.QueryShortChanIDs,
884
                *lnwire.QueryChannelRange,
885
                *lnwire.ReplyChannelRange,
886
                *lnwire.ReplyShortChanIDsEnd:
3✔
887

3✔
888
                syncer, ok := d.syncMgr.GossipSyncer(peer.PubKey())
3✔
889
                if !ok {
3✔
890
                        log.Warnf("Gossip syncer for peer=%x not found",
×
891
                                peer.PubKey())
×
892

×
893
                        errChan <- ErrGossipSyncerNotFound
×
894
                        return errChan
×
895
                }
×
896

897
                // If we've found the message target, then we'll dispatch the
898
                // message directly to it.
899
                err := syncer.ProcessQueryMsg(m, peer.QuitSignal())
3✔
900
                if err != nil {
3✔
901
                        log.Errorf("Process query msg from peer %x got %v",
×
902
                                peer.PubKey(), err)
×
903
                }
×
904

905
                errChan <- err
3✔
906
                return errChan
3✔
907

908
        // If a peer is updating its current update horizon, then we'll dispatch
909
        // that directly to the proper GossipSyncer.
910
        case *lnwire.GossipTimestampRange:
3✔
911
                syncer, ok := d.syncMgr.GossipSyncer(peer.PubKey())
3✔
912
                if !ok {
3✔
913
                        log.Warnf("Gossip syncer for peer=%x not found",
×
914
                                peer.PubKey())
×
915

×
916
                        errChan <- ErrGossipSyncerNotFound
×
917
                        return errChan
×
918
                }
×
919

920
                // Queue the message for asynchronous processing to prevent
921
                // blocking the gossiper when rate limiting is active.
922
                if !syncer.QueueTimestampRange(m) {
3✔
923
                        log.Warnf("Unable to queue gossip filter for peer=%x: "+
×
924
                                "queue full", peer.PubKey())
×
925

×
926
                        // Return nil to indicate we've handled the message,
×
927
                        // even though it was dropped. This prevents the peer
×
928
                        // from being disconnected.
×
929
                        errChan <- nil
×
930
                        return errChan
×
931
                }
×
932

933
                errChan <- nil
3✔
934
                return errChan
3✔
935

936
        // To avoid inserting edges in the graph for our own channels that we
937
        // have already closed, we ignore such channel announcements coming
938
        // from the remote.
939
        case *lnwire.ChannelAnnouncement1:
3✔
940
                ownKey := d.selfKey.SerializeCompressed()
3✔
941
                ownErr := fmt.Errorf("ignoring remote ChannelAnnouncement1 " +
3✔
942
                        "for own channel")
3✔
943

3✔
944
                if bytes.Equal(m.NodeID1[:], ownKey) ||
3✔
945
                        bytes.Equal(m.NodeID2[:], ownKey) {
6✔
946

3✔
947
                        log.Warn(ownErr)
3✔
948
                        errChan <- ownErr
3✔
949
                        return errChan
3✔
950
                }
3✔
951
        }
952

953
        nMsg := &networkMsg{
3✔
954
                msg:      msg,
3✔
955
                isRemote: true,
3✔
956
                peer:     peer,
3✔
957
                source:   peer.IdentityKey(),
3✔
958
                err:      errChan,
3✔
959
        }
3✔
960

3✔
961
        select {
3✔
962
        case d.networkMsgs <- nMsg:
3✔
963

964
        // If the peer that sent us this error is quitting, then we don't need
965
        // to send back an error and can return immediately.
966
        // TODO(elle): the peer should now just rely on canceling the passed
967
        //  context.
968
        case <-peer.QuitSignal():
×
969
                return nil
×
970
        case <-ctx.Done():
×
971
                return nil
×
972
        case <-d.quit:
×
973
                nMsg.err <- ErrGossiperShuttingDown
×
974
        }
975

976
        return nMsg.err
3✔
977
}
978

979
// ProcessLocalAnnouncement sends a new remote announcement message along with
980
// the peer that sent the routing message. The announcement will be processed
981
// then added to a queue for batched trickled announcement to all connected
982
// peers.  Local channel announcements don't contain the announcement proof and
983
// will not be fully validated. Once the channel proofs are received, the
984
// entire channel announcement and update messages will be re-constructed and
985
// broadcast to the rest of the network.
986
func (d *AuthenticatedGossiper) ProcessLocalAnnouncement(msg lnwire.Message,
987
        optionalFields ...OptionalMsgField) chan error {
3✔
988

3✔
989
        optionalMsgFields := &optionalMsgFields{}
3✔
990
        optionalMsgFields.apply(optionalFields...)
3✔
991

3✔
992
        nMsg := &networkMsg{
3✔
993
                msg:               msg,
3✔
994
                optionalMsgFields: optionalMsgFields,
3✔
995
                isRemote:          false,
3✔
996
                source:            d.selfKey,
3✔
997
                err:               make(chan error, 1),
3✔
998
        }
3✔
999

3✔
1000
        select {
3✔
1001
        case d.networkMsgs <- nMsg:
3✔
1002
        case <-d.quit:
×
1003
                nMsg.err <- ErrGossiperShuttingDown
×
1004
        }
1005

1006
        return nMsg.err
3✔
1007
}
1008

1009
// channelUpdateID is a unique identifier for ChannelUpdate messages, as
1010
// channel updates can be identified by the (ShortChannelID, ChannelFlags)
1011
// tuple.
1012
type channelUpdateID struct {
1013
        // channelID represents the set of data which is needed to
1014
        // retrieve all necessary data to validate the channel existence.
1015
        channelID lnwire.ShortChannelID
1016

1017
        // Flags least-significant bit must be set to 0 if the creating node
1018
        // corresponds to the first node in the previously sent channel
1019
        // announcement and 1 otherwise.
1020
        flags lnwire.ChanUpdateChanFlags
1021
}
1022

1023
// msgWithSenders is a wrapper struct around a message, and the set of peers
1024
// that originally sent us this message. Using this struct, we can ensure that
1025
// we don't re-send a message to the peer that sent it to us in the first
1026
// place.
1027
type msgWithSenders struct {
1028
        // msg is the wire message itself.
1029
        msg lnwire.Message
1030

1031
        // isLocal is true if this was a message that originated locally. We'll
1032
        // use this to bypass our normal checks to ensure we prioritize sending
1033
        // out our own updates.
1034
        isLocal bool
1035

1036
        // sender is the set of peers that sent us this message.
1037
        senders map[route.Vertex]struct{}
1038
}
1039

1040
// mergeSyncerMap is used to merge the set of senders of a particular message
1041
// with peers that we have an active GossipSyncer with. We do this to ensure
1042
// that we don't broadcast messages to any peers that we have active gossip
1043
// syncers for.
1044
func (m *msgWithSenders) mergeSyncerMap(syncers map[route.Vertex]*GossipSyncer) {
3✔
1045
        for peerPub := range syncers {
6✔
1046
                m.senders[peerPub] = struct{}{}
3✔
1047
        }
3✔
1048
}
1049

1050
// deDupedAnnouncements de-duplicates announcements that have been added to the
1051
// batch. Internally, announcements are stored in three maps
1052
// (one each for channel announcements, channel updates, and node
1053
// announcements). These maps keep track of unique announcements and ensure no
1054
// announcements are duplicated. We keep the three message types separate, such
1055
// that we can send channel announcements first, then channel updates, and
1056
// finally node announcements when it's time to broadcast them.
1057
type deDupedAnnouncements struct {
1058
        // channelAnnouncements are identified by the short channel id field.
1059
        channelAnnouncements map[lnwire.ShortChannelID]msgWithSenders
1060

1061
        // channelUpdates are identified by the channel update id field.
1062
        channelUpdates map[channelUpdateID]msgWithSenders
1063

1064
        // nodeAnnouncements are identified by the Vertex field.
1065
        nodeAnnouncements map[route.Vertex]msgWithSenders
1066

1067
        sync.Mutex
1068
}
1069

1070
// Reset operates on deDupedAnnouncements to reset the storage of
1071
// announcements.
1072
func (d *deDupedAnnouncements) Reset() {
3✔
1073
        d.Lock()
3✔
1074
        defer d.Unlock()
3✔
1075

3✔
1076
        d.reset()
3✔
1077
}
3✔
1078

1079
// reset is the private version of the Reset method. We have this so we can
1080
// call this method within method that are already holding the lock.
1081
func (d *deDupedAnnouncements) reset() {
3✔
1082
        // Storage of each type of announcement (channel announcements, channel
3✔
1083
        // updates, node announcements) is set to an empty map where the
3✔
1084
        // appropriate key points to the corresponding lnwire.Message.
3✔
1085
        d.channelAnnouncements = make(map[lnwire.ShortChannelID]msgWithSenders)
3✔
1086
        d.channelUpdates = make(map[channelUpdateID]msgWithSenders)
3✔
1087
        d.nodeAnnouncements = make(map[route.Vertex]msgWithSenders)
3✔
1088
}
3✔
1089

1090
// addMsg adds a new message to the current batch. If the message is already
1091
// present in the current batch, then this new instance replaces the latter,
1092
// and the set of senders is updated to reflect which node sent us this
1093
// message.
1094
func (d *deDupedAnnouncements) addMsg(message networkMsg) {
3✔
1095
        log.Tracef("Adding network message: %v to batch", message.msg.MsgType())
3✔
1096

3✔
1097
        // Depending on the message type (channel announcement, channel update,
3✔
1098
        // or node announcement), the message is added to the corresponding map
3✔
1099
        // in deDupedAnnouncements. Because each identifying key can have at
3✔
1100
        // most one value, the announcements are de-duplicated, with newer ones
3✔
1101
        // replacing older ones.
3✔
1102
        switch msg := message.msg.(type) {
3✔
1103

1104
        // Channel announcements are identified by the short channel id field.
1105
        case *lnwire.ChannelAnnouncement1:
3✔
1106
                deDupKey := msg.ShortChannelID
3✔
1107
                sender := route.NewVertex(message.source)
3✔
1108

3✔
1109
                mws, ok := d.channelAnnouncements[deDupKey]
3✔
1110
                if !ok {
6✔
1111
                        mws = msgWithSenders{
3✔
1112
                                msg:     msg,
3✔
1113
                                isLocal: !message.isRemote,
3✔
1114
                                senders: make(map[route.Vertex]struct{}),
3✔
1115
                        }
3✔
1116
                        mws.senders[sender] = struct{}{}
3✔
1117

3✔
1118
                        d.channelAnnouncements[deDupKey] = mws
3✔
1119

3✔
1120
                        return
3✔
1121
                }
3✔
1122

UNCOV
1123
                mws.msg = msg
×
UNCOV
1124
                mws.senders[sender] = struct{}{}
×
UNCOV
1125
                d.channelAnnouncements[deDupKey] = mws
×
1126

1127
        // Channel updates are identified by the (short channel id,
1128
        // channelflags) tuple.
1129
        case *lnwire.ChannelUpdate1:
3✔
1130
                sender := route.NewVertex(message.source)
3✔
1131
                deDupKey := channelUpdateID{
3✔
1132
                        msg.ShortChannelID,
3✔
1133
                        msg.ChannelFlags,
3✔
1134
                }
3✔
1135

3✔
1136
                oldTimestamp := uint32(0)
3✔
1137
                mws, ok := d.channelUpdates[deDupKey]
3✔
1138
                if ok {
3✔
UNCOV
1139
                        // If we already have seen this message, record its
×
UNCOV
1140
                        // timestamp.
×
UNCOV
1141
                        update, ok := mws.msg.(*lnwire.ChannelUpdate1)
×
UNCOV
1142
                        if !ok {
×
1143
                                log.Errorf("Expected *lnwire.ChannelUpdate1, "+
×
1144
                                        "got: %T", mws.msg)
×
1145

×
1146
                                return
×
1147
                        }
×
1148

UNCOV
1149
                        oldTimestamp = update.Timestamp
×
1150
                }
1151

1152
                // If we already had this message with a strictly newer
1153
                // timestamp, then we'll just discard the message we got.
1154
                if oldTimestamp > msg.Timestamp {
3✔
UNCOV
1155
                        log.Debugf("Ignored outdated network message: "+
×
UNCOV
1156
                                "peer=%v, msg=%s", message.peer, msg.MsgType())
×
UNCOV
1157
                        return
×
UNCOV
1158
                }
×
1159

1160
                // If the message we just got is newer than what we previously
1161
                // have seen, or this is the first time we see it, then we'll
1162
                // add it to our map of announcements.
1163
                if oldTimestamp < msg.Timestamp {
6✔
1164
                        mws = msgWithSenders{
3✔
1165
                                msg:     msg,
3✔
1166
                                isLocal: !message.isRemote,
3✔
1167
                                senders: make(map[route.Vertex]struct{}),
3✔
1168
                        }
3✔
1169

3✔
1170
                        // We'll mark the sender of the message in the
3✔
1171
                        // senders map.
3✔
1172
                        mws.senders[sender] = struct{}{}
3✔
1173

3✔
1174
                        d.channelUpdates[deDupKey] = mws
3✔
1175

3✔
1176
                        return
3✔
1177
                }
3✔
1178

1179
                // Lastly, if we had seen this exact message from before, with
1180
                // the same timestamp, we'll add the sender to the map of
1181
                // senders, such that we can skip sending this message back in
1182
                // the next batch.
UNCOV
1183
                mws.msg = msg
×
UNCOV
1184
                mws.senders[sender] = struct{}{}
×
UNCOV
1185
                d.channelUpdates[deDupKey] = mws
×
1186

1187
        // Node announcements are identified by the Vertex field.  Use the
1188
        // NodeID to create the corresponding Vertex.
1189
        case *lnwire.NodeAnnouncement:
3✔
1190
                sender := route.NewVertex(message.source)
3✔
1191
                deDupKey := route.Vertex(msg.NodeID)
3✔
1192

3✔
1193
                // We do the same for node announcements as we did for channel
3✔
1194
                // updates, as they also carry a timestamp.
3✔
1195
                oldTimestamp := uint32(0)
3✔
1196
                mws, ok := d.nodeAnnouncements[deDupKey]
3✔
1197
                if ok {
6✔
1198
                        oldTimestamp = mws.msg.(*lnwire.NodeAnnouncement).Timestamp
3✔
1199
                }
3✔
1200

1201
                // Discard the message if it's old.
1202
                if oldTimestamp > msg.Timestamp {
6✔
1203
                        return
3✔
1204
                }
3✔
1205

1206
                // Replace if it's newer.
1207
                if oldTimestamp < msg.Timestamp {
6✔
1208
                        mws = msgWithSenders{
3✔
1209
                                msg:     msg,
3✔
1210
                                isLocal: !message.isRemote,
3✔
1211
                                senders: make(map[route.Vertex]struct{}),
3✔
1212
                        }
3✔
1213

3✔
1214
                        mws.senders[sender] = struct{}{}
3✔
1215

3✔
1216
                        d.nodeAnnouncements[deDupKey] = mws
3✔
1217

3✔
1218
                        return
3✔
1219
                }
3✔
1220

1221
                // Add to senders map if it's the same as we had.
1222
                mws.msg = msg
3✔
1223
                mws.senders[sender] = struct{}{}
3✔
1224
                d.nodeAnnouncements[deDupKey] = mws
3✔
1225
        }
1226
}
1227

1228
// AddMsgs is a helper method to add multiple messages to the announcement
1229
// batch.
1230
func (d *deDupedAnnouncements) AddMsgs(msgs ...networkMsg) {
3✔
1231
        d.Lock()
3✔
1232
        defer d.Unlock()
3✔
1233

3✔
1234
        for _, msg := range msgs {
6✔
1235
                d.addMsg(msg)
3✔
1236
        }
3✔
1237
}
1238

1239
// msgsToBroadcast is returned by Emit() and partitions the messages we'd like
1240
// to broadcast next into messages that are locally sourced and those that are
1241
// sourced remotely.
1242
type msgsToBroadcast struct {
1243
        // localMsgs is the set of messages we created locally.
1244
        localMsgs []msgWithSenders
1245

1246
        // remoteMsgs is the set of messages that we received from a remote
1247
        // party.
1248
        remoteMsgs []msgWithSenders
1249
}
1250

1251
// addMsg adds a new message to the appropriate sub-slice.
1252
func (m *msgsToBroadcast) addMsg(msg msgWithSenders) {
3✔
1253
        if msg.isLocal {
6✔
1254
                m.localMsgs = append(m.localMsgs, msg)
3✔
1255
        } else {
6✔
1256
                m.remoteMsgs = append(m.remoteMsgs, msg)
3✔
1257
        }
3✔
1258
}
1259

1260
// isEmpty returns true if the batch is empty.
1261
func (m *msgsToBroadcast) isEmpty() bool {
3✔
1262
        return len(m.localMsgs) == 0 && len(m.remoteMsgs) == 0
3✔
1263
}
3✔
1264

1265
// length returns the length of the combined message set.
UNCOV
1266
func (m *msgsToBroadcast) length() int {
×
UNCOV
1267
        return len(m.localMsgs) + len(m.remoteMsgs)
×
UNCOV
1268
}
×
1269

1270
// Emit returns the set of de-duplicated announcements to be sent out during
1271
// the next announcement epoch, in the order of channel announcements, channel
1272
// updates, and node announcements. Each message emitted, contains the set of
1273
// peers that sent us the message. This way, we can ensure that we don't waste
1274
// bandwidth by re-sending a message to the peer that sent it to us in the
1275
// first place. Additionally, the set of stored messages are reset.
1276
func (d *deDupedAnnouncements) Emit() msgsToBroadcast {
3✔
1277
        d.Lock()
3✔
1278
        defer d.Unlock()
3✔
1279

3✔
1280
        // Get the total number of announcements.
3✔
1281
        numAnnouncements := len(d.channelAnnouncements) + len(d.channelUpdates) +
3✔
1282
                len(d.nodeAnnouncements)
3✔
1283

3✔
1284
        // Create an empty array of lnwire.Messages with a length equal to
3✔
1285
        // the total number of announcements.
3✔
1286
        msgs := msgsToBroadcast{
3✔
1287
                localMsgs:  make([]msgWithSenders, 0, numAnnouncements),
3✔
1288
                remoteMsgs: make([]msgWithSenders, 0, numAnnouncements),
3✔
1289
        }
3✔
1290

3✔
1291
        // Add the channel announcements to the array first.
3✔
1292
        for _, message := range d.channelAnnouncements {
6✔
1293
                msgs.addMsg(message)
3✔
1294
        }
3✔
1295

1296
        // Then add the channel updates.
1297
        for _, message := range d.channelUpdates {
6✔
1298
                msgs.addMsg(message)
3✔
1299
        }
3✔
1300

1301
        // Finally add the node announcements.
1302
        for _, message := range d.nodeAnnouncements {
6✔
1303
                msgs.addMsg(message)
3✔
1304
        }
3✔
1305

1306
        d.reset()
3✔
1307

3✔
1308
        // Return the array of lnwire.messages.
3✔
1309
        return msgs
3✔
1310
}
1311

1312
// calculateSubBatchSize is a helper function that calculates the size to break
1313
// down the batchSize into.
1314
func calculateSubBatchSize(totalDelay, subBatchDelay time.Duration,
1315
        minimumBatchSize, batchSize int) int {
3✔
1316
        if subBatchDelay > totalDelay {
3✔
UNCOV
1317
                return batchSize
×
UNCOV
1318
        }
×
1319

1320
        subBatchSize := (batchSize*int(subBatchDelay) +
3✔
1321
                int(totalDelay) - 1) / int(totalDelay)
3✔
1322

3✔
1323
        if subBatchSize < minimumBatchSize {
6✔
1324
                return minimumBatchSize
3✔
1325
        }
3✔
1326

UNCOV
1327
        return subBatchSize
×
1328
}
1329

1330
// batchSizeCalculator maps to the function `calculateSubBatchSize`. We create
1331
// this variable so the function can be mocked in our test.
1332
var batchSizeCalculator = calculateSubBatchSize
1333

1334
// splitAnnouncementBatches takes an exiting list of announcements and
1335
// decomposes it into sub batches controlled by the `subBatchSize`.
1336
func (d *AuthenticatedGossiper) splitAnnouncementBatches(
1337
        announcementBatch []msgWithSenders) [][]msgWithSenders {
3✔
1338

3✔
1339
        subBatchSize := batchSizeCalculator(
3✔
1340
                d.cfg.TrickleDelay, d.cfg.SubBatchDelay,
3✔
1341
                d.cfg.MinimumBatchSize, len(announcementBatch),
3✔
1342
        )
3✔
1343

3✔
1344
        var splitAnnouncementBatch [][]msgWithSenders
3✔
1345

3✔
1346
        for subBatchSize < len(announcementBatch) {
6✔
1347
                // For slicing with minimal allocation
3✔
1348
                // https://github.com/golang/go/wiki/SliceTricks
3✔
1349
                announcementBatch, splitAnnouncementBatch =
3✔
1350
                        announcementBatch[subBatchSize:],
3✔
1351
                        append(splitAnnouncementBatch,
3✔
1352
                                announcementBatch[0:subBatchSize:subBatchSize])
3✔
1353
        }
3✔
1354
        splitAnnouncementBatch = append(
3✔
1355
                splitAnnouncementBatch, announcementBatch,
3✔
1356
        )
3✔
1357

3✔
1358
        return splitAnnouncementBatch
3✔
1359
}
1360

1361
// splitAndSendAnnBatch takes a batch of messages, computes the proper batch
1362
// split size, and then sends out all items to the set of target peers. Locally
1363
// generated announcements are always sent before remotely generated
1364
// announcements.
1365
func (d *AuthenticatedGossiper) splitAndSendAnnBatch(ctx context.Context,
1366
        annBatch msgsToBroadcast) {
3✔
1367

3✔
1368
        // delayNextBatch is a helper closure that blocks for `SubBatchDelay`
3✔
1369
        // duration to delay the sending of next announcement batch.
3✔
1370
        delayNextBatch := func() {
6✔
1371
                select {
3✔
1372
                case <-time.After(d.cfg.SubBatchDelay):
3✔
UNCOV
1373
                case <-d.quit:
×
UNCOV
1374
                        return
×
1375
                }
1376
        }
1377

1378
        // Fetch the local and remote announcements.
1379
        localBatches := d.splitAnnouncementBatches(annBatch.localMsgs)
3✔
1380
        remoteBatches := d.splitAnnouncementBatches(annBatch.remoteMsgs)
3✔
1381

3✔
1382
        d.wg.Add(1)
3✔
1383
        go func() {
6✔
1384
                defer d.wg.Done()
3✔
1385

3✔
1386
                log.Debugf("Broadcasting %v new local announcements in %d "+
3✔
1387
                        "sub batches", len(annBatch.localMsgs),
3✔
1388
                        len(localBatches))
3✔
1389

3✔
1390
                // Send out the local announcements first.
3✔
1391
                for _, annBatch := range localBatches {
6✔
1392
                        d.sendLocalBatch(annBatch)
3✔
1393
                        delayNextBatch()
3✔
1394
                }
3✔
1395

1396
                log.Debugf("Broadcasting %v new remote announcements in %d "+
3✔
1397
                        "sub batches", len(annBatch.remoteMsgs),
3✔
1398
                        len(remoteBatches))
3✔
1399

3✔
1400
                // Now send the remote announcements.
3✔
1401
                for _, annBatch := range remoteBatches {
6✔
1402
                        d.sendRemoteBatch(ctx, annBatch)
3✔
1403
                        delayNextBatch()
3✔
1404
                }
3✔
1405
        }()
1406
}
1407

1408
// sendLocalBatch broadcasts a list of locally generated announcements to our
1409
// peers. For local announcements, we skip the filter and dedup logic and just
1410
// send the announcements out to all our coonnected peers.
1411
func (d *AuthenticatedGossiper) sendLocalBatch(annBatch []msgWithSenders) {
3✔
1412
        msgsToSend := lnutils.Map(
3✔
1413
                annBatch, func(m msgWithSenders) lnwire.Message {
6✔
1414
                        return m.msg
3✔
1415
                },
3✔
1416
        )
1417

1418
        err := d.cfg.Broadcast(nil, msgsToSend...)
3✔
1419
        if err != nil {
3✔
1420
                log.Errorf("Unable to send local batch announcements: %v", err)
×
1421
        }
×
1422
}
1423

1424
// sendRemoteBatch broadcasts a list of remotely generated announcements to our
1425
// peers.
1426
func (d *AuthenticatedGossiper) sendRemoteBatch(ctx context.Context,
1427
        annBatch []msgWithSenders) {
3✔
1428

3✔
1429
        syncerPeers := d.syncMgr.GossipSyncers()
3✔
1430

3✔
1431
        // We'll first attempt to filter out this new message for all peers
3✔
1432
        // that have active gossip syncers active.
3✔
1433
        for pub, syncer := range syncerPeers {
6✔
1434
                log.Tracef("Sending messages batch to GossipSyncer(%s)", pub)
3✔
1435
                syncer.FilterGossipMsgs(ctx, annBatch...)
3✔
1436
        }
3✔
1437

1438
        for _, msgChunk := range annBatch {
6✔
1439
                msgChunk := msgChunk
3✔
1440

3✔
1441
                // With the syncers taken care of, we'll merge the sender map
3✔
1442
                // with the set of syncers, so we don't send out duplicate
3✔
1443
                // messages.
3✔
1444
                msgChunk.mergeSyncerMap(syncerPeers)
3✔
1445

3✔
1446
                err := d.cfg.Broadcast(msgChunk.senders, msgChunk.msg)
3✔
1447
                if err != nil {
3✔
1448
                        log.Errorf("Unable to send batch "+
×
1449
                                "announcements: %v", err)
×
1450
                        continue
×
1451
                }
1452
        }
1453
}
1454

1455
// networkHandler is the primary goroutine that drives this service. The roles
1456
// of this goroutine includes answering queries related to the state of the
1457
// network, syncing up newly connected peers, and also periodically
1458
// broadcasting our latest topology state to all connected peers.
1459
//
1460
// NOTE: This MUST be run as a goroutine.
1461
func (d *AuthenticatedGossiper) networkHandler(ctx context.Context) {
3✔
1462
        defer d.wg.Done()
3✔
1463

3✔
1464
        // Initialize empty deDupedAnnouncements to store announcement batch.
3✔
1465
        announcements := deDupedAnnouncements{}
3✔
1466
        announcements.Reset()
3✔
1467

3✔
1468
        d.cfg.RetransmitTicker.Resume()
3✔
1469
        defer d.cfg.RetransmitTicker.Stop()
3✔
1470

3✔
1471
        trickleTimer := time.NewTicker(d.cfg.TrickleDelay)
3✔
1472
        defer trickleTimer.Stop()
3✔
1473

3✔
1474
        // To start, we'll first check to see if there are any stale channel or
3✔
1475
        // node announcements that we need to re-transmit.
3✔
1476
        if err := d.retransmitStaleAnns(ctx, time.Now()); err != nil {
3✔
1477
                log.Errorf("Unable to rebroadcast stale announcements: %v", err)
×
1478
        }
×
1479

1480
        for {
6✔
1481
                select {
3✔
1482
                // A new policy update has arrived. We'll commit it to the
1483
                // sub-systems below us, then craft, sign, and broadcast a new
1484
                // ChannelUpdate for the set of affected clients.
1485
                case policyUpdate := <-d.chanPolicyUpdates:
3✔
1486
                        log.Tracef("Received channel %d policy update requests",
3✔
1487
                                len(policyUpdate.edgesToUpdate))
3✔
1488

3✔
1489
                        // First, we'll now create new fully signed updates for
3✔
1490
                        // the affected channels and also update the underlying
3✔
1491
                        // graph with the new state.
3✔
1492
                        newChanUpdates, err := d.processChanPolicyUpdate(
3✔
1493
                                ctx, policyUpdate.edgesToUpdate,
3✔
1494
                        )
3✔
1495
                        policyUpdate.errChan <- err
3✔
1496
                        if err != nil {
3✔
1497
                                log.Errorf("Unable to craft policy updates: %v",
×
1498
                                        err)
×
1499
                                continue
×
1500
                        }
1501

1502
                        // Finally, with the updates committed, we'll now add
1503
                        // them to the announcement batch to be flushed at the
1504
                        // start of the next epoch.
1505
                        announcements.AddMsgs(newChanUpdates...)
3✔
1506

1507
                case announcement := <-d.networkMsgs:
3✔
1508
                        log.Tracef("Received network message: "+
3✔
1509
                                "peer=%v, msg=%s, is_remote=%v",
3✔
1510
                                announcement.peer, announcement.msg.MsgType(),
3✔
1511
                                announcement.isRemote)
3✔
1512

3✔
1513
                        switch announcement.msg.(type) {
3✔
1514
                        // Channel announcement signatures are amongst the only
1515
                        // messages that we'll process serially.
1516
                        case *lnwire.AnnounceSignatures1:
3✔
1517
                                emittedAnnouncements, _ := d.processNetworkAnnouncement(
3✔
1518
                                        ctx, announcement,
3✔
1519
                                )
3✔
1520
                                log.Debugf("Processed network message %s, "+
3✔
1521
                                        "returned len(announcements)=%v",
3✔
1522
                                        announcement.msg.MsgType(),
3✔
1523
                                        len(emittedAnnouncements))
3✔
1524

3✔
1525
                                if emittedAnnouncements != nil {
6✔
1526
                                        announcements.AddMsgs(
3✔
1527
                                                emittedAnnouncements...,
3✔
1528
                                        )
3✔
1529
                                }
3✔
1530
                                continue
3✔
1531
                        }
1532

1533
                        // If this message was recently rejected, then we won't
1534
                        // attempt to re-process it.
1535
                        if announcement.isRemote && d.isRecentlyRejectedMsg(
3✔
1536
                                announcement.msg,
3✔
1537
                                sourceToPub(announcement.source),
3✔
1538
                        ) {
3✔
UNCOV
1539

×
UNCOV
1540
                                announcement.err <- fmt.Errorf("recently " +
×
UNCOV
1541
                                        "rejected")
×
UNCOV
1542
                                continue
×
1543
                        }
1544

1545
                        // We'll set up any dependent, and wait until a free
1546
                        // slot for this job opens up, this allow us to not
1547
                        // have thousands of goroutines active.
1548
                        annJobID, err := d.vb.InitJobDependencies(
3✔
1549
                                announcement.msg,
3✔
1550
                        )
3✔
1551
                        if err != nil {
3✔
1552
                                announcement.err <- err
×
1553
                                continue
×
1554
                        }
1555

1556
                        d.wg.Add(1)
3✔
1557
                        go d.handleNetworkMessages(
3✔
1558
                                ctx, announcement, &announcements, annJobID,
3✔
1559
                        )
3✔
1560

1561
                // The trickle timer has ticked, which indicates we should
1562
                // flush to the network the pending batch of new announcements
1563
                // we've received since the last trickle tick.
1564
                case <-trickleTimer.C:
3✔
1565
                        // Emit the current batch of announcements from
3✔
1566
                        // deDupedAnnouncements.
3✔
1567
                        announcementBatch := announcements.Emit()
3✔
1568

3✔
1569
                        // If the current announcements batch is nil, then we
3✔
1570
                        // have no further work here.
3✔
1571
                        if announcementBatch.isEmpty() {
6✔
1572
                                continue
3✔
1573
                        }
1574

1575
                        // At this point, we have the set of local and remote
1576
                        // announcements we want to send out. We'll do the
1577
                        // batching as normal for both, but for local
1578
                        // announcements, we'll blast them out w/o regard for
1579
                        // our peer's policies so we ensure they propagate
1580
                        // properly.
1581
                        d.splitAndSendAnnBatch(ctx, announcementBatch)
3✔
1582

1583
                // The retransmission timer has ticked which indicates that we
1584
                // should check if we need to prune or re-broadcast any of our
1585
                // personal channels or node announcement. This addresses the
1586
                // case of "zombie" channels and channel advertisements that
1587
                // have been dropped, or not properly propagated through the
1588
                // network.
UNCOV
1589
                case tick := <-d.cfg.RetransmitTicker.Ticks():
×
UNCOV
1590
                        if err := d.retransmitStaleAnns(ctx, tick); err != nil {
×
1591
                                log.Errorf("unable to rebroadcast stale "+
×
1592
                                        "announcements: %v", err)
×
1593
                        }
×
1594

1595
                // The gossiper has been signalled to exit, to we exit our
1596
                // main loop so the wait group can be decremented.
1597
                case <-d.quit:
3✔
1598
                        return
3✔
1599
                }
1600
        }
1601
}
1602

1603
// handleNetworkMessages is responsible for waiting for dependencies for a
1604
// given network message and processing the message. Once processed, it will
1605
// signal its dependants and add the new announcements to the announce batch.
1606
//
1607
// NOTE: must be run as a goroutine.
1608
func (d *AuthenticatedGossiper) handleNetworkMessages(ctx context.Context,
1609
        nMsg *networkMsg, deDuped *deDupedAnnouncements, jobID JobID) {
3✔
1610

3✔
1611
        defer d.wg.Done()
3✔
1612
        defer d.vb.CompleteJob()
3✔
1613

3✔
1614
        // We should only broadcast this message forward if it originated from
3✔
1615
        // us or it wasn't received as part of our initial historical sync.
3✔
1616
        shouldBroadcast := !nMsg.isRemote || d.syncMgr.IsGraphSynced()
3✔
1617

3✔
1618
        // If this message has an existing dependency, then we'll wait until
3✔
1619
        // that has been fully validated before we proceed.
3✔
1620
        err := d.vb.WaitForParents(jobID, nMsg.msg)
3✔
1621
        if err != nil {
3✔
1622
                log.Debugf("Validating network message %s got err: %v",
×
1623
                        nMsg.msg.MsgType(), err)
×
1624

×
1625
                if errors.Is(err, ErrVBarrierShuttingDown) {
×
1626
                        log.Warnf("unexpected error during validation "+
×
1627
                                "barrier shutdown: %v", err)
×
1628
                }
×
1629
                nMsg.err <- err
×
1630

×
1631
                return
×
1632
        }
1633

1634
        // Process the network announcement to determine if this is either a
1635
        // new announcement from our PoV or an edges to a prior vertex/edge we
1636
        // previously proceeded.
1637
        newAnns, allow := d.processNetworkAnnouncement(ctx, nMsg)
3✔
1638

3✔
1639
        log.Tracef("Processed network message %s, returned "+
3✔
1640
                "len(announcements)=%v, allowDependents=%v",
3✔
1641
                nMsg.msg.MsgType(), len(newAnns), allow)
3✔
1642

3✔
1643
        // If this message had any dependencies, then we can now signal them to
3✔
1644
        // continue.
3✔
1645
        err = d.vb.SignalDependents(nMsg.msg, jobID)
3✔
1646
        if err != nil {
3✔
1647
                // Something is wrong if SignalDependents returns an error.
×
1648
                log.Errorf("SignalDependents returned error for msg=%v with "+
×
1649
                        "JobID=%v", spew.Sdump(nMsg.msg), jobID)
×
1650

×
1651
                nMsg.err <- err
×
1652

×
1653
                return
×
1654
        }
×
1655

1656
        // If the announcement was accepted, then add the emitted announcements
1657
        // to our announce batch to be broadcast once the trickle timer ticks
1658
        // gain.
1659
        if newAnns != nil && shouldBroadcast {
6✔
1660
                // TODO(roasbeef): exclude peer that sent.
3✔
1661
                deDuped.AddMsgs(newAnns...)
3✔
1662
        } else if newAnns != nil {
9✔
1663
                log.Trace("Skipping broadcast of announcements received " +
3✔
1664
                        "during initial graph sync")
3✔
1665
        }
3✔
1666
}
1667

1668
// TODO(roasbeef): d/c peers that send updates not on our chain
1669

1670
// InitSyncState is called by outside sub-systems when a connection is
1671
// established to a new peer that understands how to perform channel range
1672
// queries. We'll allocate a new gossip syncer for it, and start any goroutines
1673
// needed to handle new queries.
1674
func (d *AuthenticatedGossiper) InitSyncState(syncPeer lnpeer.Peer) {
3✔
1675
        d.syncMgr.InitSyncState(syncPeer)
3✔
1676
}
3✔
1677

1678
// PruneSyncState is called by outside sub-systems once a peer that we were
1679
// previously connected to has been disconnected. In this case we can stop the
1680
// existing GossipSyncer assigned to the peer and free up resources.
1681
func (d *AuthenticatedGossiper) PruneSyncState(peer route.Vertex) {
3✔
1682
        d.syncMgr.PruneSyncState(peer)
3✔
1683
}
3✔
1684

1685
// isRecentlyRejectedMsg returns true if we recently rejected a message, and
1686
// false otherwise, This avoids expensive reprocessing of the message.
1687
func (d *AuthenticatedGossiper) isRecentlyRejectedMsg(msg lnwire.Message,
1688
        peerPub [33]byte) bool {
3✔
1689

3✔
1690
        var scid uint64
3✔
1691
        switch m := msg.(type) {
3✔
1692
        case *lnwire.ChannelUpdate1:
3✔
1693
                scid = m.ShortChannelID.ToUint64()
3✔
1694

1695
        case *lnwire.ChannelAnnouncement1:
3✔
1696
                scid = m.ShortChannelID.ToUint64()
3✔
1697

1698
        default:
3✔
1699
                return false
3✔
1700
        }
1701

1702
        _, err := d.recentRejects.Get(newRejectCacheKey(scid, peerPub))
3✔
1703
        return err != cache.ErrElementNotFound
3✔
1704
}
1705

1706
// retransmitStaleAnns examines all outgoing channels that the source node is
1707
// known to maintain to check to see if any of them are "stale". A channel is
1708
// stale iff, the last timestamp of its rebroadcast is older than the
1709
// RebroadcastInterval. We also check if a refreshed node announcement should
1710
// be resent.
1711
func (d *AuthenticatedGossiper) retransmitStaleAnns(ctx context.Context,
1712
        now time.Time) error {
3✔
1713

3✔
1714
        // Iterate over all of our channels and check if any of them fall
3✔
1715
        // within the prune interval or re-broadcast interval.
3✔
1716
        type updateTuple struct {
3✔
1717
                info *models.ChannelEdgeInfo
3✔
1718
                edge *models.ChannelEdgePolicy
3✔
1719
        }
3✔
1720

3✔
1721
        var (
3✔
1722
                havePublicChannels bool
3✔
1723
                edgesToUpdate      []updateTuple
3✔
1724
        )
3✔
1725
        err := d.cfg.Graph.ForAllOutgoingChannels(ctx, func(
3✔
1726
                info *models.ChannelEdgeInfo,
3✔
1727
                edge *models.ChannelEdgePolicy) error {
6✔
1728

3✔
1729
                // If there's no auth proof attached to this edge, it means
3✔
1730
                // that it is a private channel not meant to be announced to
3✔
1731
                // the greater network, so avoid sending channel updates for
3✔
1732
                // this channel to not leak its
3✔
1733
                // existence.
3✔
1734
                if info.AuthProof == nil {
6✔
1735
                        log.Debugf("Skipping retransmission of channel "+
3✔
1736
                                "without AuthProof: %v", info.ChannelID)
3✔
1737
                        return nil
3✔
1738
                }
3✔
1739

1740
                // We make a note that we have at least one public channel. We
1741
                // use this to determine whether we should send a node
1742
                // announcement below.
1743
                havePublicChannels = true
3✔
1744

3✔
1745
                // If this edge has a ChannelUpdate that was created before the
3✔
1746
                // introduction of the MaxHTLC field, then we'll update this
3✔
1747
                // edge to propagate this information in the network.
3✔
1748
                if !edge.MessageFlags.HasMaxHtlc() {
3✔
1749
                        // We'll make sure we support the new max_htlc field if
×
1750
                        // not already present.
×
1751
                        edge.MessageFlags |= lnwire.ChanUpdateRequiredMaxHtlc
×
1752
                        edge.MaxHTLC = lnwire.NewMSatFromSatoshis(info.Capacity)
×
1753

×
1754
                        edgesToUpdate = append(edgesToUpdate, updateTuple{
×
1755
                                info: info,
×
1756
                                edge: edge,
×
1757
                        })
×
1758
                        return nil
×
1759
                }
×
1760

1761
                timeElapsed := now.Sub(edge.LastUpdate)
3✔
1762

3✔
1763
                // If it's been longer than RebroadcastInterval since we've
3✔
1764
                // re-broadcasted the channel, add the channel to the set of
3✔
1765
                // edges we need to update.
3✔
1766
                if timeElapsed >= d.cfg.RebroadcastInterval {
3✔
UNCOV
1767
                        edgesToUpdate = append(edgesToUpdate, updateTuple{
×
UNCOV
1768
                                info: info,
×
UNCOV
1769
                                edge: edge,
×
UNCOV
1770
                        })
×
UNCOV
1771
                }
×
1772

1773
                return nil
3✔
1774
        }, func() {
3✔
1775
                havePublicChannels = false
3✔
1776
                edgesToUpdate = nil
3✔
1777
        })
3✔
1778
        if err != nil && !errors.Is(err, graphdb.ErrGraphNoEdgesFound) {
3✔
1779
                return fmt.Errorf("unable to retrieve outgoing channels: %w",
×
1780
                        err)
×
1781
        }
×
1782

1783
        var signedUpdates []lnwire.Message
3✔
1784
        for _, chanToUpdate := range edgesToUpdate {
3✔
UNCOV
1785
                // Re-sign and update the channel on disk and retrieve our
×
UNCOV
1786
                // ChannelUpdate to broadcast.
×
UNCOV
1787
                chanAnn, chanUpdate, err := d.updateChannel(
×
UNCOV
1788
                        ctx, chanToUpdate.info, chanToUpdate.edge,
×
UNCOV
1789
                )
×
UNCOV
1790
                if err != nil {
×
1791
                        return fmt.Errorf("unable to update channel: %w", err)
×
1792
                }
×
1793

1794
                // If we have a valid announcement to transmit, then we'll send
1795
                // that along with the update.
UNCOV
1796
                if chanAnn != nil {
×
UNCOV
1797
                        signedUpdates = append(signedUpdates, chanAnn)
×
UNCOV
1798
                }
×
1799

UNCOV
1800
                signedUpdates = append(signedUpdates, chanUpdate)
×
1801
        }
1802

1803
        // If we don't have any public channels, we return as we don't want to
1804
        // broadcast anything that would reveal our existence.
1805
        if !havePublicChannels {
6✔
1806
                return nil
3✔
1807
        }
3✔
1808

1809
        // We'll also check that our NodeAnnouncement is not too old.
1810
        currentNodeAnn := d.cfg.FetchSelfAnnouncement()
3✔
1811
        timestamp := time.Unix(int64(currentNodeAnn.Timestamp), 0)
3✔
1812
        timeElapsed := now.Sub(timestamp)
3✔
1813

3✔
1814
        // If it's been a full day since we've re-broadcasted the
3✔
1815
        // node announcement, refresh it and resend it.
3✔
1816
        nodeAnnStr := ""
3✔
1817
        if timeElapsed >= d.cfg.RebroadcastInterval {
3✔
UNCOV
1818
                newNodeAnn, err := d.cfg.UpdateSelfAnnouncement()
×
UNCOV
1819
                if err != nil {
×
1820
                        return fmt.Errorf("unable to get refreshed node "+
×
1821
                                "announcement: %v", err)
×
1822
                }
×
1823

UNCOV
1824
                signedUpdates = append(signedUpdates, &newNodeAnn)
×
UNCOV
1825
                nodeAnnStr = " and our refreshed node announcement"
×
UNCOV
1826

×
UNCOV
1827
                // Before broadcasting the refreshed node announcement, add it
×
UNCOV
1828
                // to our own graph.
×
UNCOV
1829
                if err := d.addNode(ctx, &newNodeAnn); err != nil {
×
UNCOV
1830
                        log.Errorf("Unable to add refreshed node announcement "+
×
UNCOV
1831
                                "to graph: %v", err)
×
UNCOV
1832
                }
×
1833
        }
1834

1835
        // If we don't have any updates to re-broadcast, then we'll exit
1836
        // early.
1837
        if len(signedUpdates) == 0 {
6✔
1838
                return nil
3✔
1839
        }
3✔
1840

UNCOV
1841
        log.Infof("Retransmitting %v outgoing channels%v",
×
UNCOV
1842
                len(edgesToUpdate), nodeAnnStr)
×
UNCOV
1843

×
UNCOV
1844
        // With all the wire announcements properly crafted, we'll broadcast
×
UNCOV
1845
        // our known outgoing channels to all our immediate peers.
×
UNCOV
1846
        if err := d.cfg.Broadcast(nil, signedUpdates...); err != nil {
×
1847
                return fmt.Errorf("unable to re-broadcast channels: %w", err)
×
1848
        }
×
1849

UNCOV
1850
        return nil
×
1851
}
1852

1853
// processChanPolicyUpdate generates a new set of channel updates for the
1854
// provided list of edges and updates the backing ChannelGraphSource.
1855
func (d *AuthenticatedGossiper) processChanPolicyUpdate(ctx context.Context,
1856
        edgesToUpdate []EdgeWithInfo) ([]networkMsg, error) {
3✔
1857

3✔
1858
        var chanUpdates []networkMsg
3✔
1859
        for _, edgeInfo := range edgesToUpdate {
6✔
1860
                // Now that we've collected all the channels we need to update,
3✔
1861
                // we'll re-sign and update the backing ChannelGraphSource, and
3✔
1862
                // retrieve our ChannelUpdate to broadcast.
3✔
1863
                _, chanUpdate, err := d.updateChannel(
3✔
1864
                        ctx, edgeInfo.Info, edgeInfo.Edge,
3✔
1865
                )
3✔
1866
                if err != nil {
3✔
1867
                        return nil, err
×
1868
                }
×
1869

1870
                // We'll avoid broadcasting any updates for private channels to
1871
                // avoid directly giving away their existence. Instead, we'll
1872
                // send the update directly to the remote party.
1873
                if edgeInfo.Info.AuthProof == nil {
6✔
1874
                        // If AuthProof is nil and an alias was found for this
3✔
1875
                        // ChannelID (meaning the option-scid-alias feature was
3✔
1876
                        // negotiated), we'll replace the ShortChannelID in the
3✔
1877
                        // update with the peer's alias. We do this after
3✔
1878
                        // updateChannel so that the alias isn't persisted to
3✔
1879
                        // the database.
3✔
1880
                        chanID := lnwire.NewChanIDFromOutPoint(
3✔
1881
                                edgeInfo.Info.ChannelPoint,
3✔
1882
                        )
3✔
1883

3✔
1884
                        var defaultAlias lnwire.ShortChannelID
3✔
1885
                        foundAlias, _ := d.cfg.GetAlias(chanID)
3✔
1886
                        if foundAlias != defaultAlias {
6✔
1887
                                chanUpdate.ShortChannelID = foundAlias
3✔
1888

3✔
1889
                                sig, err := d.cfg.SignAliasUpdate(chanUpdate)
3✔
1890
                                if err != nil {
3✔
1891
                                        log.Errorf("Unable to sign alias "+
×
1892
                                                "update: %v", err)
×
1893
                                        continue
×
1894
                                }
1895

1896
                                lnSig, err := lnwire.NewSigFromSignature(sig)
3✔
1897
                                if err != nil {
3✔
1898
                                        log.Errorf("Unable to create sig: %v",
×
1899
                                                err)
×
1900
                                        continue
×
1901
                                }
1902

1903
                                chanUpdate.Signature = lnSig
3✔
1904
                        }
1905

1906
                        remotePubKey := remotePubFromChanInfo(
3✔
1907
                                edgeInfo.Info, chanUpdate.ChannelFlags,
3✔
1908
                        )
3✔
1909
                        err := d.reliableSender.sendMessage(
3✔
1910
                                ctx, chanUpdate, remotePubKey,
3✔
1911
                        )
3✔
1912
                        if err != nil {
3✔
1913
                                log.Errorf("Unable to reliably send %v for "+
×
1914
                                        "channel=%v to peer=%x: %v",
×
1915
                                        chanUpdate.MsgType(),
×
1916
                                        chanUpdate.ShortChannelID,
×
1917
                                        remotePubKey, err)
×
1918
                        }
×
1919
                        continue
3✔
1920
                }
1921

1922
                // We set ourselves as the source of this message to indicate
1923
                // that we shouldn't skip any peers when sending this message.
1924
                chanUpdates = append(chanUpdates, networkMsg{
3✔
1925
                        source:   d.selfKey,
3✔
1926
                        isRemote: false,
3✔
1927
                        msg:      chanUpdate,
3✔
1928
                })
3✔
1929
        }
1930

1931
        return chanUpdates, nil
3✔
1932
}
1933

1934
// remotePubFromChanInfo returns the public key of the remote peer given a
1935
// ChannelEdgeInfo that describe a channel we have with them.
1936
func remotePubFromChanInfo(chanInfo *models.ChannelEdgeInfo,
1937
        chanFlags lnwire.ChanUpdateChanFlags) [33]byte {
3✔
1938

3✔
1939
        var remotePubKey [33]byte
3✔
1940
        switch {
3✔
1941
        case chanFlags&lnwire.ChanUpdateDirection == 0:
3✔
1942
                remotePubKey = chanInfo.NodeKey2Bytes
3✔
1943
        case chanFlags&lnwire.ChanUpdateDirection == 1:
3✔
1944
                remotePubKey = chanInfo.NodeKey1Bytes
3✔
1945
        }
1946

1947
        return remotePubKey
3✔
1948
}
1949

1950
// processRejectedEdge examines a rejected edge to see if we can extract any
1951
// new announcements from it.  An edge will get rejected if we already added
1952
// the same edge without AuthProof to the graph. If the received announcement
1953
// contains a proof, we can add this proof to our edge.  We can end up in this
1954
// situation in the case where we create a channel, but for some reason fail
1955
// to receive the remote peer's proof, while the remote peer is able to fully
1956
// assemble the proof and craft the ChannelAnnouncement.
1957
func (d *AuthenticatedGossiper) processRejectedEdge(_ context.Context,
1958
        chanAnnMsg *lnwire.ChannelAnnouncement1,
1959
        proof *models.ChannelAuthProof) ([]networkMsg, error) {
3✔
1960

3✔
1961
        // First, we'll fetch the state of the channel as we know if from the
3✔
1962
        // database.
3✔
1963
        chanInfo, e1, e2, err := d.cfg.Graph.GetChannelByID(
3✔
1964
                chanAnnMsg.ShortChannelID,
3✔
1965
        )
3✔
1966
        if err != nil {
3✔
1967
                return nil, err
×
1968
        }
×
1969

1970
        // The edge is in the graph, and has a proof attached, then we'll just
1971
        // reject it as normal.
1972
        if chanInfo.AuthProof != nil {
6✔
1973
                return nil, nil
3✔
1974
        }
3✔
1975

1976
        // Otherwise, this means that the edge is within the graph, but it
1977
        // doesn't yet have a proper proof attached. If we did not receive
1978
        // the proof such that we now can add it, there's nothing more we
1979
        // can do.
1980
        if proof == nil {
×
1981
                return nil, nil
×
1982
        }
×
1983

1984
        // We'll then create then validate the new fully assembled
1985
        // announcement.
1986
        chanAnn, e1Ann, e2Ann, err := netann.CreateChanAnnouncement(
×
1987
                proof, chanInfo, e1, e2,
×
1988
        )
×
1989
        if err != nil {
×
1990
                return nil, err
×
1991
        }
×
1992
        err = netann.ValidateChannelAnn(chanAnn, d.fetchPKScript)
×
1993
        if err != nil {
×
1994
                err := fmt.Errorf("assembled channel announcement proof "+
×
1995
                        "for shortChanID=%v isn't valid: %v",
×
1996
                        chanAnnMsg.ShortChannelID, err)
×
1997
                log.Error(err)
×
1998
                return nil, err
×
1999
        }
×
2000

2001
        // If everything checks out, then we'll add the fully assembled proof
2002
        // to the database.
2003
        err = d.cfg.Graph.AddProof(chanAnnMsg.ShortChannelID, proof)
×
2004
        if err != nil {
×
2005
                err := fmt.Errorf("unable add proof to shortChanID=%v: %w",
×
2006
                        chanAnnMsg.ShortChannelID, err)
×
2007
                log.Error(err)
×
2008
                return nil, err
×
2009
        }
×
2010

2011
        // As we now have a complete channel announcement for this channel,
2012
        // we'll construct the announcement so they can be broadcast out to all
2013
        // our peers.
2014
        announcements := make([]networkMsg, 0, 3)
×
2015
        announcements = append(announcements, networkMsg{
×
2016
                source: d.selfKey,
×
2017
                msg:    chanAnn,
×
2018
        })
×
2019
        if e1Ann != nil {
×
2020
                announcements = append(announcements, networkMsg{
×
2021
                        source: d.selfKey,
×
2022
                        msg:    e1Ann,
×
2023
                })
×
2024
        }
×
2025
        if e2Ann != nil {
×
2026
                announcements = append(announcements, networkMsg{
×
2027
                        source: d.selfKey,
×
2028
                        msg:    e2Ann,
×
2029
                })
×
2030

×
2031
        }
×
2032

2033
        return announcements, nil
×
2034
}
2035

2036
// fetchPKScript fetches the output script for the given SCID.
2037
func (d *AuthenticatedGossiper) fetchPKScript(chanID *lnwire.ShortChannelID) (
2038
        []byte, error) {
×
2039

×
2040
        return lnwallet.FetchPKScriptWithQuit(d.cfg.ChainIO, chanID, d.quit)
×
2041
}
×
2042

2043
// addNode processes the given node announcement, and adds it to our channel
2044
// graph.
2045
func (d *AuthenticatedGossiper) addNode(ctx context.Context,
2046
        msg *lnwire.NodeAnnouncement, op ...batch.SchedulerOption) error {
3✔
2047

3✔
2048
        if err := netann.ValidateNodeAnn(msg); err != nil {
3✔
UNCOV
2049
                return fmt.Errorf("unable to validate node announcement: %w",
×
UNCOV
2050
                        err)
×
UNCOV
2051
        }
×
2052

2053
        return d.cfg.Graph.AddNode(
3✔
2054
                ctx, models.NodeFromWireAnnouncement(msg), op...,
3✔
2055
        )
3✔
2056
}
2057

2058
// isPremature decides whether a given network message has a block height+delta
2059
// value specified in the future. If so, the message will be added to the
2060
// future message map and be processed when the block height as reached.
2061
//
2062
// NOTE: must be used inside a lock.
2063
func (d *AuthenticatedGossiper) isPremature(chanID lnwire.ShortChannelID,
2064
        delta uint32, msg *networkMsg) bool {
3✔
2065

3✔
2066
        // The channel is already confirmed at chanID.BlockHeight so we minus
3✔
2067
        // one block. For instance, if the required confirmation for this
3✔
2068
        // channel announcement is 6, we then only need to wait for 5 more
3✔
2069
        // blocks once the funding tx is confirmed.
3✔
2070
        if delta > 0 {
6✔
2071
                delta--
3✔
2072
        }
3✔
2073

2074
        msgHeight := chanID.BlockHeight + delta
3✔
2075

3✔
2076
        // The message height is smaller or equal to our best known height,
3✔
2077
        // thus the message is mature.
3✔
2078
        if msgHeight <= d.bestHeight {
6✔
2079
                return false
3✔
2080
        }
3✔
2081

2082
        // Add the premature message to our future messages which will be
2083
        // resent once the block height has reached.
2084
        //
2085
        // Copy the networkMsgs since the old message's err chan will be
2086
        // consumed.
2087
        copied := &networkMsg{
3✔
2088
                peer:              msg.peer,
3✔
2089
                source:            msg.source,
3✔
2090
                msg:               msg.msg,
3✔
2091
                optionalMsgFields: msg.optionalMsgFields,
3✔
2092
                isRemote:          msg.isRemote,
3✔
2093
                err:               make(chan error, 1),
3✔
2094
        }
3✔
2095

3✔
2096
        // Create the cached message.
3✔
2097
        cachedMsg := &cachedFutureMsg{
3✔
2098
                msg:    copied,
3✔
2099
                height: msgHeight,
3✔
2100
        }
3✔
2101

3✔
2102
        // Increment the msg ID and add it to the cache.
3✔
2103
        nextMsgID := d.futureMsgs.nextMsgID()
3✔
2104
        _, err := d.futureMsgs.Put(nextMsgID, cachedMsg)
3✔
2105
        if err != nil {
3✔
2106
                log.Errorf("Adding future message got error: %v", err)
×
2107
        }
×
2108

2109
        log.Debugf("Network message: %v added to future messages for "+
3✔
2110
                "msgHeight=%d, bestHeight=%d", msg.msg.MsgType(),
3✔
2111
                msgHeight, d.bestHeight)
3✔
2112

3✔
2113
        return true
3✔
2114
}
2115

2116
// processNetworkAnnouncement processes a new network relate authenticated
2117
// channel or node announcement or announcements proofs. If the announcement
2118
// didn't affect the internal state due to either being out of date, invalid,
2119
// or redundant, then nil is returned. Otherwise, the set of announcements will
2120
// be returned which should be broadcasted to the rest of the network. The
2121
// boolean returned indicates whether any dependents of the announcement should
2122
// attempt to be processed as well.
2123
func (d *AuthenticatedGossiper) processNetworkAnnouncement(ctx context.Context,
2124
        nMsg *networkMsg) ([]networkMsg, bool) {
3✔
2125

3✔
2126
        // If this is a remote update, we set the scheduler option to lazily
3✔
2127
        // add it to the graph.
3✔
2128
        var schedulerOp []batch.SchedulerOption
3✔
2129
        if nMsg.isRemote {
6✔
2130
                schedulerOp = append(schedulerOp, batch.LazyAdd())
3✔
2131
        }
3✔
2132

2133
        switch msg := nMsg.msg.(type) {
3✔
2134
        // A new node announcement has arrived which either presents new
2135
        // information about a node in one of the channels we know about, or a
2136
        // updating previously advertised information.
2137
        case *lnwire.NodeAnnouncement:
3✔
2138
                return d.handleNodeAnnouncement(ctx, nMsg, msg, schedulerOp)
3✔
2139

2140
        // A new channel announcement has arrived, this indicates the
2141
        // *creation* of a new channel within the network. This only advertises
2142
        // the existence of a channel and not yet the routing policies in
2143
        // either direction of the channel.
2144
        case *lnwire.ChannelAnnouncement1:
3✔
2145
                return d.handleChanAnnouncement(ctx, nMsg, msg, schedulerOp...)
3✔
2146

2147
        // A new authenticated channel edge update has arrived. This indicates
2148
        // that the directional information for an already known channel has
2149
        // been updated.
2150
        case *lnwire.ChannelUpdate1:
3✔
2151
                return d.handleChanUpdate(ctx, nMsg, msg, schedulerOp)
3✔
2152

2153
        // A new signature announcement has been received. This indicates
2154
        // willingness of nodes involved in the funding of a channel to
2155
        // announce this new channel to the rest of the world.
2156
        case *lnwire.AnnounceSignatures1:
3✔
2157
                return d.handleAnnSig(ctx, nMsg, msg)
3✔
2158

2159
        default:
×
2160
                err := errors.New("wrong type of the announcement")
×
2161
                nMsg.err <- err
×
2162
                return nil, false
×
2163
        }
2164
}
2165

2166
// processZombieUpdate determines whether the provided channel update should
2167
// resurrect a given zombie edge.
2168
//
2169
// NOTE: only the NodeKey1Bytes and NodeKey2Bytes members of the ChannelEdgeInfo
2170
// should be inspected.
2171
func (d *AuthenticatedGossiper) processZombieUpdate(_ context.Context,
2172
        chanInfo *models.ChannelEdgeInfo, scid lnwire.ShortChannelID,
UNCOV
2173
        msg *lnwire.ChannelUpdate1) error {
×
UNCOV
2174

×
UNCOV
2175
        // The least-significant bit in the flag on the channel update tells us
×
UNCOV
2176
        // which edge is being updated.
×
UNCOV
2177
        isNode1 := msg.ChannelFlags&lnwire.ChanUpdateDirection == 0
×
UNCOV
2178

×
UNCOV
2179
        // Since we've deemed the update as not stale above, before marking it
×
UNCOV
2180
        // live, we'll make sure it has been signed by the correct party. If we
×
UNCOV
2181
        // have both pubkeys, either party can resurrect the channel. If we've
×
UNCOV
2182
        // already marked this with the stricter, single-sided resurrection we
×
UNCOV
2183
        // will only have the pubkey of the node with the oldest timestamp.
×
UNCOV
2184
        var pubKey *btcec.PublicKey
×
UNCOV
2185
        switch {
×
2186
        case isNode1 && chanInfo.NodeKey1Bytes != emptyPubkey:
×
2187
                pubKey, _ = chanInfo.NodeKey1()
×
UNCOV
2188
        case !isNode1 && chanInfo.NodeKey2Bytes != emptyPubkey:
×
UNCOV
2189
                pubKey, _ = chanInfo.NodeKey2()
×
2190
        }
UNCOV
2191
        if pubKey == nil {
×
UNCOV
2192
                return fmt.Errorf("incorrect pubkey to resurrect zombie "+
×
UNCOV
2193
                        "with chan_id=%v", msg.ShortChannelID)
×
UNCOV
2194
        }
×
2195

UNCOV
2196
        err := netann.VerifyChannelUpdateSignature(msg, pubKey)
×
UNCOV
2197
        if err != nil {
×
UNCOV
2198
                return fmt.Errorf("unable to verify channel "+
×
UNCOV
2199
                        "update signature: %v", err)
×
UNCOV
2200
        }
×
2201

2202
        // With the signature valid, we'll proceed to mark the
2203
        // edge as live and wait for the channel announcement to
2204
        // come through again.
UNCOV
2205
        err = d.cfg.Graph.MarkEdgeLive(scid)
×
UNCOV
2206
        switch {
×
2207
        case errors.Is(err, graphdb.ErrZombieEdgeNotFound):
×
2208
                log.Errorf("edge with chan_id=%v was not found in the "+
×
2209
                        "zombie index: %v", err)
×
2210

×
2211
                return nil
×
2212

2213
        case err != nil:
×
2214
                return fmt.Errorf("unable to remove edge with "+
×
2215
                        "chan_id=%v from zombie index: %v",
×
2216
                        msg.ShortChannelID, err)
×
2217

UNCOV
2218
        default:
×
2219
        }
2220

UNCOV
2221
        log.Debugf("Removed edge with chan_id=%v from zombie "+
×
UNCOV
2222
                "index", msg.ShortChannelID)
×
UNCOV
2223

×
UNCOV
2224
        return nil
×
2225
}
2226

2227
// fetchNodeAnn fetches the latest signed node announcement from our point of
2228
// view for the node with the given public key.
2229
func (d *AuthenticatedGossiper) fetchNodeAnn(ctx context.Context,
2230
        pubKey [33]byte) (*lnwire.NodeAnnouncement, error) {
3✔
2231

3✔
2232
        node, err := d.cfg.Graph.FetchLightningNode(ctx, pubKey)
3✔
2233
        if err != nil {
3✔
UNCOV
2234
                return nil, err
×
UNCOV
2235
        }
×
2236

2237
        return node.NodeAnnouncement(true)
3✔
2238
}
2239

2240
// isMsgStale determines whether a message retrieved from the backing
2241
// MessageStore is seen as stale by the current graph.
2242
func (d *AuthenticatedGossiper) isMsgStale(_ context.Context,
2243
        msg lnwire.Message) bool {
3✔
2244

3✔
2245
        switch msg := msg.(type) {
3✔
2246
        case *lnwire.AnnounceSignatures1:
3✔
2247
                chanInfo, _, _, err := d.cfg.Graph.GetChannelByID(
3✔
2248
                        msg.ShortChannelID,
3✔
2249
                )
3✔
2250

3✔
2251
                // If the channel cannot be found, it is most likely a leftover
3✔
2252
                // message for a channel that was closed, so we can consider it
3✔
2253
                // stale.
3✔
2254
                if errors.Is(err, graphdb.ErrEdgeNotFound) {
6✔
2255
                        return true
3✔
2256
                }
3✔
2257
                if err != nil {
3✔
2258
                        log.Debugf("Unable to retrieve channel=%v from graph: "+
×
2259
                                "%v", msg.ShortChannelID, err)
×
2260
                        return false
×
2261
                }
×
2262

2263
                // If the proof exists in the graph, then we have successfully
2264
                // received the remote proof and assembled the full proof, so we
2265
                // can safely delete the local proof from the database.
2266
                return chanInfo.AuthProof != nil
3✔
2267

2268
        case *lnwire.ChannelUpdate1:
3✔
2269
                _, p1, p2, err := d.cfg.Graph.GetChannelByID(msg.ShortChannelID)
3✔
2270

3✔
2271
                // If the channel cannot be found, it is most likely a leftover
3✔
2272
                // message for a channel that was closed, so we can consider it
3✔
2273
                // stale.
3✔
2274
                if errors.Is(err, graphdb.ErrEdgeNotFound) {
6✔
2275
                        return true
3✔
2276
                }
3✔
2277
                if err != nil {
3✔
2278
                        log.Debugf("Unable to retrieve channel=%v from graph: "+
×
2279
                                "%v", msg.ShortChannelID, err)
×
2280
                        return false
×
2281
                }
×
2282

2283
                // Otherwise, we'll retrieve the correct policy that we
2284
                // currently have stored within our graph to check if this
2285
                // message is stale by comparing its timestamp.
2286
                var p *models.ChannelEdgePolicy
3✔
2287
                if msg.ChannelFlags&lnwire.ChanUpdateDirection == 0 {
6✔
2288
                        p = p1
3✔
2289
                } else {
6✔
2290
                        p = p2
3✔
2291
                }
3✔
2292

2293
                // If the policy is still unknown, then we can consider this
2294
                // policy fresh.
2295
                if p == nil {
3✔
2296
                        return false
×
2297
                }
×
2298

2299
                timestamp := time.Unix(int64(msg.Timestamp), 0)
3✔
2300
                return p.LastUpdate.After(timestamp)
3✔
2301

2302
        default:
×
2303
                // We'll make sure to not mark any unsupported messages as stale
×
2304
                // to ensure they are not removed.
×
2305
                return false
×
2306
        }
2307
}
2308

2309
// updateChannel creates a new fully signed update for the channel, and updates
2310
// the underlying graph with the new state.
2311
func (d *AuthenticatedGossiper) updateChannel(ctx context.Context,
2312
        info *models.ChannelEdgeInfo,
2313
        edge *models.ChannelEdgePolicy) (*lnwire.ChannelAnnouncement1,
2314
        *lnwire.ChannelUpdate1, error) {
3✔
2315

3✔
2316
        // Parse the unsigned edge into a channel update.
3✔
2317
        chanUpdate := netann.UnsignedChannelUpdateFromEdge(info, edge)
3✔
2318

3✔
2319
        // We'll generate a new signature over a digest of the channel
3✔
2320
        // announcement itself and update the timestamp to ensure it propagate.
3✔
2321
        err := netann.SignChannelUpdate(
3✔
2322
                d.cfg.AnnSigner, d.selfKeyLoc, chanUpdate,
3✔
2323
                netann.ChanUpdSetTimestamp,
3✔
2324
        )
3✔
2325
        if err != nil {
3✔
2326
                return nil, nil, err
×
2327
        }
×
2328

2329
        // Next, we'll set the new signature in place, and update the reference
2330
        // in the backing slice.
2331
        edge.LastUpdate = time.Unix(int64(chanUpdate.Timestamp), 0)
3✔
2332
        edge.SigBytes = chanUpdate.Signature.ToSignatureBytes()
3✔
2333

3✔
2334
        // To ensure that our signature is valid, we'll verify it ourself
3✔
2335
        // before committing it to the slice returned.
3✔
2336
        err = netann.ValidateChannelUpdateAnn(
3✔
2337
                d.selfKey, info.Capacity, chanUpdate,
3✔
2338
        )
3✔
2339
        if err != nil {
3✔
2340
                return nil, nil, fmt.Errorf("generated invalid channel "+
×
2341
                        "update sig: %v", err)
×
2342
        }
×
2343

2344
        // Finally, we'll write the new edge policy to disk.
2345
        if err := d.cfg.Graph.UpdateEdge(ctx, edge); err != nil {
3✔
2346
                return nil, nil, err
×
2347
        }
×
2348

2349
        // We'll also create the original channel announcement so the two can
2350
        // be broadcast along side each other (if necessary), but only if we
2351
        // have a full channel announcement for this channel.
2352
        var chanAnn *lnwire.ChannelAnnouncement1
3✔
2353
        if info.AuthProof != nil {
6✔
2354
                chanID := lnwire.NewShortChanIDFromInt(info.ChannelID)
3✔
2355
                chanAnn = &lnwire.ChannelAnnouncement1{
3✔
2356
                        ShortChannelID:  chanID,
3✔
2357
                        NodeID1:         info.NodeKey1Bytes,
3✔
2358
                        NodeID2:         info.NodeKey2Bytes,
3✔
2359
                        ChainHash:       info.ChainHash,
3✔
2360
                        BitcoinKey1:     info.BitcoinKey1Bytes,
3✔
2361
                        Features:        lnwire.NewRawFeatureVector(),
3✔
2362
                        BitcoinKey2:     info.BitcoinKey2Bytes,
3✔
2363
                        ExtraOpaqueData: info.ExtraOpaqueData,
3✔
2364
                }
3✔
2365
                chanAnn.NodeSig1, err = lnwire.NewSigFromECDSARawSignature(
3✔
2366
                        info.AuthProof.NodeSig1Bytes,
3✔
2367
                )
3✔
2368
                if err != nil {
3✔
2369
                        return nil, nil, err
×
2370
                }
×
2371
                chanAnn.NodeSig2, err = lnwire.NewSigFromECDSARawSignature(
3✔
2372
                        info.AuthProof.NodeSig2Bytes,
3✔
2373
                )
3✔
2374
                if err != nil {
3✔
2375
                        return nil, nil, err
×
2376
                }
×
2377
                chanAnn.BitcoinSig1, err = lnwire.NewSigFromECDSARawSignature(
3✔
2378
                        info.AuthProof.BitcoinSig1Bytes,
3✔
2379
                )
3✔
2380
                if err != nil {
3✔
2381
                        return nil, nil, err
×
2382
                }
×
2383
                chanAnn.BitcoinSig2, err = lnwire.NewSigFromECDSARawSignature(
3✔
2384
                        info.AuthProof.BitcoinSig2Bytes,
3✔
2385
                )
3✔
2386
                if err != nil {
3✔
2387
                        return nil, nil, err
×
2388
                }
×
2389
        }
2390

2391
        return chanAnn, chanUpdate, err
3✔
2392
}
2393

2394
// SyncManager returns the gossiper's SyncManager instance.
2395
func (d *AuthenticatedGossiper) SyncManager() *SyncManager {
3✔
2396
        return d.syncMgr
3✔
2397
}
3✔
2398

2399
// IsKeepAliveUpdate determines whether this channel update is considered a
2400
// keep-alive update based on the previous channel update processed for the same
2401
// direction.
2402
func IsKeepAliveUpdate(update *lnwire.ChannelUpdate1,
2403
        prev *models.ChannelEdgePolicy) bool {
3✔
2404

3✔
2405
        // Both updates should be from the same direction.
3✔
2406
        if update.ChannelFlags&lnwire.ChanUpdateDirection !=
3✔
2407
                prev.ChannelFlags&lnwire.ChanUpdateDirection {
3✔
2408

×
2409
                return false
×
2410
        }
×
2411

2412
        // The timestamp should always increase for a keep-alive update.
2413
        timestamp := time.Unix(int64(update.Timestamp), 0)
3✔
2414
        if !timestamp.After(prev.LastUpdate) {
3✔
2415
                return false
×
2416
        }
×
2417

2418
        // None of the remaining fields should change for a keep-alive update.
2419
        if update.ChannelFlags.IsDisabled() != prev.ChannelFlags.IsDisabled() {
6✔
2420
                return false
3✔
2421
        }
3✔
2422
        if lnwire.MilliSatoshi(update.BaseFee) != prev.FeeBaseMSat {
6✔
2423
                return false
3✔
2424
        }
3✔
2425
        if lnwire.MilliSatoshi(update.FeeRate) != prev.FeeProportionalMillionths {
6✔
2426
                return false
3✔
2427
        }
3✔
2428
        if update.TimeLockDelta != prev.TimeLockDelta {
3✔
2429
                return false
×
2430
        }
×
2431
        if update.HtlcMinimumMsat != prev.MinHTLC {
3✔
2432
                return false
×
2433
        }
×
2434
        if update.MessageFlags.HasMaxHtlc() && !prev.MessageFlags.HasMaxHtlc() {
3✔
2435
                return false
×
2436
        }
×
2437
        if update.HtlcMaximumMsat != prev.MaxHTLC {
3✔
2438
                return false
×
2439
        }
×
2440
        if !bytes.Equal(update.ExtraOpaqueData, prev.ExtraOpaqueData) {
6✔
2441
                return false
3✔
2442
        }
3✔
2443
        return true
3✔
2444
}
2445

2446
// latestHeight returns the gossiper's latest height known of the chain.
2447
func (d *AuthenticatedGossiper) latestHeight() uint32 {
3✔
2448
        d.Lock()
3✔
2449
        defer d.Unlock()
3✔
2450
        return d.bestHeight
3✔
2451
}
3✔
2452

2453
// handleNodeAnnouncement processes a new node announcement.
2454
func (d *AuthenticatedGossiper) handleNodeAnnouncement(ctx context.Context,
2455
        nMsg *networkMsg, nodeAnn *lnwire.NodeAnnouncement,
2456
        ops []batch.SchedulerOption) ([]networkMsg, bool) {
3✔
2457

3✔
2458
        timestamp := time.Unix(int64(nodeAnn.Timestamp), 0)
3✔
2459

3✔
2460
        log.Debugf("Processing NodeAnnouncement: peer=%v, timestamp=%v, "+
3✔
2461
                "node=%x, source=%x", nMsg.peer, timestamp, nodeAnn.NodeID,
3✔
2462
                nMsg.source.SerializeCompressed())
3✔
2463

3✔
2464
        // We'll quickly ask the router if it already has a newer update for
3✔
2465
        // this node so we can skip validating signatures if not required.
3✔
2466
        if d.cfg.Graph.IsStaleNode(ctx, nodeAnn.NodeID, timestamp) {
6✔
2467
                log.Debugf("Skipped processing stale node: %x", nodeAnn.NodeID)
3✔
2468
                nMsg.err <- nil
3✔
2469
                return nil, true
3✔
2470
        }
3✔
2471

2472
        if err := d.addNode(ctx, nodeAnn, ops...); err != nil {
6✔
2473
                log.Debugf("Adding node: %x got error: %v", nodeAnn.NodeID,
3✔
2474
                        err)
3✔
2475

3✔
2476
                if !graph.IsError(
3✔
2477
                        err,
3✔
2478
                        graph.ErrOutdated,
3✔
2479
                        graph.ErrIgnored,
3✔
2480
                ) {
3✔
2481

×
2482
                        log.Error(err)
×
2483
                }
×
2484

2485
                nMsg.err <- err
3✔
2486
                return nil, false
3✔
2487
        }
2488

2489
        // In order to ensure we don't leak unadvertised nodes, we'll make a
2490
        // quick check to ensure this node intends to publicly advertise itself
2491
        // to the network.
2492
        isPublic, err := d.cfg.Graph.IsPublicNode(nodeAnn.NodeID)
3✔
2493
        if err != nil {
3✔
2494
                log.Errorf("Unable to determine if node %x is advertised: %v",
×
2495
                        nodeAnn.NodeID, err)
×
2496
                nMsg.err <- err
×
2497
                return nil, false
×
2498
        }
×
2499

2500
        var announcements []networkMsg
3✔
2501

3✔
2502
        // If it does, we'll add their announcement to our batch so that it can
3✔
2503
        // be broadcast to the rest of our peers.
3✔
2504
        if isPublic {
6✔
2505
                announcements = append(announcements, networkMsg{
3✔
2506
                        peer:     nMsg.peer,
3✔
2507
                        isRemote: nMsg.isRemote,
3✔
2508
                        source:   nMsg.source,
3✔
2509
                        msg:      nodeAnn,
3✔
2510
                })
3✔
2511
        } else {
6✔
2512
                log.Tracef("Skipping broadcasting node announcement for %x "+
3✔
2513
                        "due to being unadvertised", nodeAnn.NodeID)
3✔
2514
        }
3✔
2515

2516
        nMsg.err <- nil
3✔
2517
        // TODO(roasbeef): get rid of the above
3✔
2518

3✔
2519
        log.Debugf("Processed NodeAnnouncement: peer=%v, timestamp=%v, "+
3✔
2520
                "node=%x, source=%x", nMsg.peer, timestamp, nodeAnn.NodeID,
3✔
2521
                nMsg.source.SerializeCompressed())
3✔
2522

3✔
2523
        return announcements, true
3✔
2524
}
2525

2526
// handleChanAnnouncement processes a new channel announcement.
2527
//
2528
//nolint:funlen
2529
func (d *AuthenticatedGossiper) handleChanAnnouncement(ctx context.Context,
2530
        nMsg *networkMsg, ann *lnwire.ChannelAnnouncement1,
2531
        ops ...batch.SchedulerOption) ([]networkMsg, bool) {
3✔
2532

3✔
2533
        scid := ann.ShortChannelID
3✔
2534

3✔
2535
        log.Debugf("Processing ChannelAnnouncement1: peer=%v, short_chan_id=%v",
3✔
2536
                nMsg.peer, scid.ToUint64())
3✔
2537

3✔
2538
        // We'll ignore any channel announcements that target any chain other
3✔
2539
        // than the set of chains we know of.
3✔
2540
        if !bytes.Equal(ann.ChainHash[:], d.cfg.ChainHash[:]) {
3✔
2541
                err := fmt.Errorf("ignoring ChannelAnnouncement1 from chain=%v"+
×
2542
                        ", gossiper on chain=%v", ann.ChainHash,
×
2543
                        d.cfg.ChainHash)
×
2544
                log.Errorf(err.Error())
×
2545

×
2546
                key := newRejectCacheKey(
×
2547
                        scid.ToUint64(),
×
2548
                        sourceToPub(nMsg.source),
×
2549
                )
×
2550
                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
2551

×
2552
                nMsg.err <- err
×
2553
                return nil, false
×
2554
        }
×
2555

2556
        // If this is a remote ChannelAnnouncement with an alias SCID, we'll
2557
        // reject the announcement. Since the router accepts alias SCIDs,
2558
        // not erroring out would be a DoS vector.
2559
        if nMsg.isRemote && d.cfg.IsAlias(scid) {
3✔
2560
                err := fmt.Errorf("ignoring remote alias channel=%v", scid)
×
2561
                log.Errorf(err.Error())
×
2562

×
2563
                key := newRejectCacheKey(
×
2564
                        scid.ToUint64(),
×
2565
                        sourceToPub(nMsg.source),
×
2566
                )
×
2567
                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
2568

×
2569
                nMsg.err <- err
×
2570
                return nil, false
×
2571
        }
×
2572

2573
        // If the advertised inclusionary block is beyond our knowledge of the
2574
        // chain tip, then we'll ignore it for now.
2575
        d.Lock()
3✔
2576
        if nMsg.isRemote && d.isPremature(scid, 0, nMsg) {
3✔
UNCOV
2577
                log.Warnf("Announcement for chan_id=(%v), is premature: "+
×
UNCOV
2578
                        "advertises height %v, only height %v is known",
×
UNCOV
2579
                        scid.ToUint64(), scid.BlockHeight, d.bestHeight)
×
UNCOV
2580
                d.Unlock()
×
UNCOV
2581
                nMsg.err <- nil
×
UNCOV
2582
                return nil, false
×
UNCOV
2583
        }
×
2584
        d.Unlock()
3✔
2585

3✔
2586
        // At this point, we'll now ask the router if this is a zombie/known
3✔
2587
        // edge. If so we can skip all the processing below.
3✔
2588
        if d.cfg.Graph.IsKnownEdge(scid) {
6✔
2589
                nMsg.err <- nil
3✔
2590
                return nil, true
3✔
2591
        }
3✔
2592

2593
        // Check if the channel is already closed in which case we can ignore
2594
        // it.
2595
        closed, err := d.cfg.ScidCloser.IsClosedScid(scid)
3✔
2596
        if err != nil {
3✔
2597
                log.Errorf("failed to check if scid %v is closed: %v", scid,
×
2598
                        err)
×
2599
                nMsg.err <- err
×
2600

×
2601
                return nil, false
×
2602
        }
×
2603

2604
        if closed {
3✔
UNCOV
2605
                err = fmt.Errorf("ignoring closed channel %v", scid)
×
UNCOV
2606
                log.Error(err)
×
UNCOV
2607

×
UNCOV
2608
                // If this is an announcement from us, we'll just ignore it.
×
UNCOV
2609
                if !nMsg.isRemote {
×
2610
                        nMsg.err <- err
×
2611
                        return nil, false
×
2612
                }
×
2613

2614
                // Increment the peer's ban score if they are sending closed
2615
                // channel announcements.
UNCOV
2616
                d.banman.incrementBanScore(nMsg.peer.PubKey())
×
UNCOV
2617

×
UNCOV
2618
                // If the peer is banned and not a channel peer, we'll
×
UNCOV
2619
                // disconnect them.
×
UNCOV
2620
                shouldDc, dcErr := d.ShouldDisconnect(nMsg.peer.IdentityKey())
×
UNCOV
2621
                if dcErr != nil {
×
2622
                        log.Errorf("failed to check if we should disconnect "+
×
2623
                                "peer: %v", dcErr)
×
2624
                        nMsg.err <- dcErr
×
2625

×
2626
                        return nil, false
×
2627
                }
×
2628

UNCOV
2629
                if shouldDc {
×
2630
                        nMsg.peer.Disconnect(ErrPeerBanned)
×
2631
                }
×
2632

UNCOV
2633
                nMsg.err <- err
×
UNCOV
2634

×
UNCOV
2635
                return nil, false
×
2636
        }
2637

2638
        // If this is a remote channel announcement, then we'll validate all
2639
        // the signatures within the proof as it should be well formed.
2640
        var proof *models.ChannelAuthProof
3✔
2641
        if nMsg.isRemote {
6✔
2642
                err := netann.ValidateChannelAnn(ann, d.fetchPKScript)
3✔
2643
                if err != nil {
3✔
2644
                        err := fmt.Errorf("unable to validate announcement: "+
×
2645
                                "%v", err)
×
2646

×
2647
                        key := newRejectCacheKey(
×
2648
                                scid.ToUint64(),
×
2649
                                sourceToPub(nMsg.source),
×
2650
                        )
×
2651
                        _, _ = d.recentRejects.Put(key, &cachedReject{})
×
2652

×
2653
                        log.Error(err)
×
2654
                        nMsg.err <- err
×
2655
                        return nil, false
×
2656
                }
×
2657

2658
                // If the proof checks out, then we'll save the proof itself to
2659
                // the database so we can fetch it later when gossiping with
2660
                // other nodes.
2661
                proof = &models.ChannelAuthProof{
3✔
2662
                        NodeSig1Bytes:    ann.NodeSig1.ToSignatureBytes(),
3✔
2663
                        NodeSig2Bytes:    ann.NodeSig2.ToSignatureBytes(),
3✔
2664
                        BitcoinSig1Bytes: ann.BitcoinSig1.ToSignatureBytes(),
3✔
2665
                        BitcoinSig2Bytes: ann.BitcoinSig2.ToSignatureBytes(),
3✔
2666
                }
3✔
2667
        }
2668

2669
        // With the proof validated (if necessary), we can now store it within
2670
        // the database for our path finding and syncing needs.
2671
        edge := &models.ChannelEdgeInfo{
3✔
2672
                ChannelID:        scid.ToUint64(),
3✔
2673
                ChainHash:        ann.ChainHash,
3✔
2674
                NodeKey1Bytes:    ann.NodeID1,
3✔
2675
                NodeKey2Bytes:    ann.NodeID2,
3✔
2676
                BitcoinKey1Bytes: ann.BitcoinKey1,
3✔
2677
                BitcoinKey2Bytes: ann.BitcoinKey2,
3✔
2678
                AuthProof:        proof,
3✔
2679
                Features: lnwire.NewFeatureVector(
3✔
2680
                        ann.Features, lnwire.Features,
3✔
2681
                ),
3✔
2682
                ExtraOpaqueData: ann.ExtraOpaqueData,
3✔
2683
        }
3✔
2684

3✔
2685
        // If there were any optional message fields provided, we'll include
3✔
2686
        // them in its serialized disk representation now.
3✔
2687
        var tapscriptRoot fn.Option[chainhash.Hash]
3✔
2688
        if nMsg.optionalMsgFields != nil {
6✔
2689
                if nMsg.optionalMsgFields.capacity != nil {
6✔
2690
                        edge.Capacity = *nMsg.optionalMsgFields.capacity
3✔
2691
                }
3✔
2692
                if nMsg.optionalMsgFields.channelPoint != nil {
6✔
2693
                        cp := *nMsg.optionalMsgFields.channelPoint
3✔
2694
                        edge.ChannelPoint = cp
3✔
2695
                }
3✔
2696

2697
                // Optional tapscript root for custom channels.
2698
                tapscriptRoot = nMsg.optionalMsgFields.tapscriptRoot
3✔
2699
        }
2700

2701
        // Before we start validation or add the edge to the database, we obtain
2702
        // the mutex for this channel ID. We do this to ensure no other
2703
        // goroutine has read the database and is now making decisions based on
2704
        // this DB state, before it writes to the DB. It also ensures that we
2705
        // don't perform the expensive validation check on the same channel
2706
        // announcement at the same time.
2707
        d.channelMtx.Lock(scid.ToUint64())
3✔
2708

3✔
2709
        // If AssumeChannelValid is present, then we are unable to perform any
3✔
2710
        // of the expensive checks below, so we'll short-circuit our path
3✔
2711
        // straight to adding the edge to our graph. If the passed
3✔
2712
        // ShortChannelID is an alias, then we'll skip validation as it will
3✔
2713
        // not map to a legitimate tx. This is not a DoS vector as only we can
3✔
2714
        // add an alias ChannelAnnouncement from the gossiper.
3✔
2715
        if !(d.cfg.AssumeChannelValid || d.cfg.IsAlias(scid)) { //nolint:nestif
6✔
2716
                op, capacity, script, err := d.validateFundingTransaction(
3✔
2717
                        ctx, ann, tapscriptRoot,
3✔
2718
                )
3✔
2719
                if err != nil {
3✔
UNCOV
2720
                        defer d.channelMtx.Unlock(scid.ToUint64())
×
UNCOV
2721

×
UNCOV
2722
                        switch {
×
2723
                        case errors.Is(err, ErrNoFundingTransaction),
UNCOV
2724
                                errors.Is(err, ErrInvalidFundingOutput):
×
UNCOV
2725

×
UNCOV
2726
                                key := newRejectCacheKey(
×
UNCOV
2727
                                        scid.ToUint64(),
×
UNCOV
2728
                                        sourceToPub(nMsg.source),
×
UNCOV
2729
                                )
×
UNCOV
2730
                                _, _ = d.recentRejects.Put(
×
UNCOV
2731
                                        key, &cachedReject{},
×
UNCOV
2732
                                )
×
UNCOV
2733

×
UNCOV
2734
                                // Increment the peer's ban score. We check
×
UNCOV
2735
                                // isRemote so we don't actually ban the peer in
×
UNCOV
2736
                                // case of a local bug.
×
UNCOV
2737
                                if nMsg.isRemote {
×
UNCOV
2738
                                        d.banman.incrementBanScore(
×
UNCOV
2739
                                                nMsg.peer.PubKey(),
×
UNCOV
2740
                                        )
×
UNCOV
2741
                                }
×
2742

UNCOV
2743
                        case errors.Is(err, ErrChannelSpent):
×
UNCOV
2744
                                key := newRejectCacheKey(
×
UNCOV
2745
                                        scid.ToUint64(),
×
UNCOV
2746
                                        sourceToPub(nMsg.source),
×
UNCOV
2747
                                )
×
UNCOV
2748
                                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
UNCOV
2749

×
UNCOV
2750
                                // Since this channel has already been closed,
×
UNCOV
2751
                                // we'll add it to the graph's closed channel
×
UNCOV
2752
                                // index such that we won't attempt to do
×
UNCOV
2753
                                // expensive validation checks on it again.
×
UNCOV
2754
                                // TODO: Populate the ScidCloser by using closed
×
UNCOV
2755
                                // channel notifications.
×
UNCOV
2756
                                dbErr := d.cfg.ScidCloser.PutClosedScid(scid)
×
UNCOV
2757
                                if dbErr != nil {
×
2758
                                        log.Errorf("failed to mark scid(%v) "+
×
2759
                                                "as closed: %v", scid, dbErr)
×
2760

×
2761
                                        nMsg.err <- dbErr
×
2762

×
2763
                                        return nil, false
×
2764
                                }
×
2765

2766
                                // Increment the peer's ban score. We check
2767
                                // isRemote so we don't accidentally ban
2768
                                // ourselves in case of a bug.
UNCOV
2769
                                if nMsg.isRemote {
×
UNCOV
2770
                                        d.banman.incrementBanScore(
×
UNCOV
2771
                                                nMsg.peer.PubKey(),
×
UNCOV
2772
                                        )
×
UNCOV
2773
                                }
×
2774

2775
                        default:
×
2776
                                // Otherwise, this is just a regular rejected
×
2777
                                // edge.
×
2778
                                key := newRejectCacheKey(
×
2779
                                        scid.ToUint64(),
×
2780
                                        sourceToPub(nMsg.source),
×
2781
                                )
×
2782
                                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
2783
                        }
2784

UNCOV
2785
                        if !nMsg.isRemote {
×
2786
                                log.Errorf("failed to add edge for local "+
×
2787
                                        "channel: %v", err)
×
2788
                                nMsg.err <- err
×
2789

×
2790
                                return nil, false
×
2791
                        }
×
2792

UNCOV
2793
                        shouldDc, dcErr := d.ShouldDisconnect(
×
UNCOV
2794
                                nMsg.peer.IdentityKey(),
×
UNCOV
2795
                        )
×
UNCOV
2796
                        if dcErr != nil {
×
2797
                                log.Errorf("failed to check if we should "+
×
2798
                                        "disconnect peer: %v", dcErr)
×
2799
                                nMsg.err <- dcErr
×
2800

×
2801
                                return nil, false
×
2802
                        }
×
2803

UNCOV
2804
                        if shouldDc {
×
UNCOV
2805
                                nMsg.peer.Disconnect(ErrPeerBanned)
×
UNCOV
2806
                        }
×
2807

UNCOV
2808
                        nMsg.err <- err
×
UNCOV
2809

×
UNCOV
2810
                        return nil, false
×
2811
                }
2812

2813
                edge.FundingScript = fn.Some(script)
3✔
2814

3✔
2815
                // TODO(roasbeef): this is a hack, needs to be removed after
3✔
2816
                //  commitment fees are dynamic.
3✔
2817
                edge.Capacity = capacity
3✔
2818
                edge.ChannelPoint = op
3✔
2819
        }
2820

2821
        log.Debugf("Adding edge for short_chan_id: %v", scid.ToUint64())
3✔
2822

3✔
2823
        // We will add the edge to the channel router. If the nodes present in
3✔
2824
        // this channel are not present in the database, a partial node will be
3✔
2825
        // added to represent each node while we wait for a node announcement.
3✔
2826
        err = d.cfg.Graph.AddEdge(ctx, edge, ops...)
3✔
2827
        if err != nil {
6✔
2828
                log.Debugf("Graph rejected edge for short_chan_id(%v): %v",
3✔
2829
                        scid.ToUint64(), err)
3✔
2830

3✔
2831
                defer d.channelMtx.Unlock(scid.ToUint64())
3✔
2832

3✔
2833
                // If the edge was rejected due to already being known, then it
3✔
2834
                // may be the case that this new message has a fresh channel
3✔
2835
                // proof, so we'll check.
3✔
2836
                if graph.IsError(err, graph.ErrIgnored) {
6✔
2837
                        // Attempt to process the rejected message to see if we
3✔
2838
                        // get any new announcements.
3✔
2839
                        anns, rErr := d.processRejectedEdge(ctx, ann, proof)
3✔
2840
                        if rErr != nil {
3✔
2841
                                key := newRejectCacheKey(
×
2842
                                        scid.ToUint64(),
×
2843
                                        sourceToPub(nMsg.source),
×
2844
                                )
×
2845
                                cr := &cachedReject{}
×
2846
                                _, _ = d.recentRejects.Put(key, cr)
×
2847

×
2848
                                nMsg.err <- rErr
×
2849

×
2850
                                return nil, false
×
2851
                        }
×
2852

2853
                        log.Debugf("Extracted %v announcements from rejected "+
3✔
2854
                                "msgs", len(anns))
3✔
2855

3✔
2856
                        // If while processing this rejected edge, we realized
3✔
2857
                        // there's a set of announcements we could extract,
3✔
2858
                        // then we'll return those directly.
3✔
2859
                        //
3✔
2860
                        // NOTE: since this is an ErrIgnored, we can return
3✔
2861
                        // true here to signal "allow" to its dependants.
3✔
2862
                        nMsg.err <- nil
3✔
2863

3✔
2864
                        return anns, true
3✔
2865
                }
2866

2867
                // Otherwise, this is just a regular rejected edge.
UNCOV
2868
                key := newRejectCacheKey(
×
UNCOV
2869
                        scid.ToUint64(),
×
UNCOV
2870
                        sourceToPub(nMsg.source),
×
UNCOV
2871
                )
×
UNCOV
2872
                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
UNCOV
2873

×
UNCOV
2874
                if !nMsg.isRemote {
×
2875
                        log.Errorf("failed to add edge for local channel: %v",
×
2876
                                err)
×
2877
                        nMsg.err <- err
×
2878

×
2879
                        return nil, false
×
2880
                }
×
2881

UNCOV
2882
                shouldDc, dcErr := d.ShouldDisconnect(nMsg.peer.IdentityKey())
×
UNCOV
2883
                if dcErr != nil {
×
2884
                        log.Errorf("failed to check if we should disconnect "+
×
2885
                                "peer: %v", dcErr)
×
2886
                        nMsg.err <- dcErr
×
2887

×
2888
                        return nil, false
×
2889
                }
×
2890

UNCOV
2891
                if shouldDc {
×
2892
                        nMsg.peer.Disconnect(ErrPeerBanned)
×
2893
                }
×
2894

UNCOV
2895
                nMsg.err <- err
×
UNCOV
2896

×
UNCOV
2897
                return nil, false
×
2898
        }
2899

2900
        // If err is nil, release the lock immediately.
2901
        d.channelMtx.Unlock(scid.ToUint64())
3✔
2902

3✔
2903
        log.Debugf("Finish adding edge for short_chan_id: %v", scid.ToUint64())
3✔
2904

3✔
2905
        // If we earlier received any ChannelUpdates for this channel, we can
3✔
2906
        // now process them, as the channel is added to the graph.
3✔
2907
        var channelUpdates []*processedNetworkMsg
3✔
2908

3✔
2909
        earlyChanUpdates, err := d.prematureChannelUpdates.Get(scid.ToUint64())
3✔
2910
        if err == nil {
6✔
2911
                // There was actually an entry in the map, so we'll accumulate
3✔
2912
                // it. We don't worry about deletion, since it'll eventually
3✔
2913
                // fall out anyway.
3✔
2914
                chanMsgs := earlyChanUpdates
3✔
2915
                channelUpdates = append(channelUpdates, chanMsgs.msgs...)
3✔
2916
        }
3✔
2917

2918
        // Launch a new goroutine to handle each ChannelUpdate, this is to
2919
        // ensure we don't block here, as we can handle only one announcement
2920
        // at a time.
2921
        for _, cu := range channelUpdates {
6✔
2922
                // Skip if already processed.
3✔
2923
                if cu.processed {
3✔
UNCOV
2924
                        continue
×
2925
                }
2926

2927
                // Mark the ChannelUpdate as processed. This ensures that a
2928
                // subsequent announcement in the option-scid-alias case does
2929
                // not re-use an old ChannelUpdate.
2930
                cu.processed = true
3✔
2931

3✔
2932
                d.wg.Add(1)
3✔
2933
                go func(updMsg *networkMsg) {
6✔
2934
                        defer d.wg.Done()
3✔
2935

3✔
2936
                        switch msg := updMsg.msg.(type) {
3✔
2937
                        // Reprocess the message, making sure we return an
2938
                        // error to the original caller in case the gossiper
2939
                        // shuts down.
2940
                        case *lnwire.ChannelUpdate1:
3✔
2941
                                log.Debugf("Reprocessing ChannelUpdate for "+
3✔
2942
                                        "shortChanID=%v", scid.ToUint64())
3✔
2943

3✔
2944
                                select {
3✔
2945
                                case d.networkMsgs <- updMsg:
3✔
2946
                                case <-d.quit:
×
2947
                                        updMsg.err <- ErrGossiperShuttingDown
×
2948
                                }
2949

2950
                        // We don't expect any other message type than
2951
                        // ChannelUpdate to be in this cache.
2952
                        default:
×
2953
                                log.Errorf("Unsupported message type found "+
×
2954
                                        "among ChannelUpdates: %T", msg)
×
2955
                        }
2956
                }(cu.msg)
2957
        }
2958

2959
        // Channel announcement was successfully processed and now it might be
2960
        // broadcast to other connected nodes if it was an announcement with
2961
        // proof (remote).
2962
        var announcements []networkMsg
3✔
2963

3✔
2964
        if proof != nil {
6✔
2965
                announcements = append(announcements, networkMsg{
3✔
2966
                        peer:     nMsg.peer,
3✔
2967
                        isRemote: nMsg.isRemote,
3✔
2968
                        source:   nMsg.source,
3✔
2969
                        msg:      ann,
3✔
2970
                })
3✔
2971
        }
3✔
2972

2973
        nMsg.err <- nil
3✔
2974

3✔
2975
        log.Debugf("Processed ChannelAnnouncement1: peer=%v, short_chan_id=%v",
3✔
2976
                nMsg.peer, scid.ToUint64())
3✔
2977

3✔
2978
        return announcements, true
3✔
2979
}
2980

2981
// handleChanUpdate processes a new channel update.
2982
//
2983
//nolint:funlen
2984
func (d *AuthenticatedGossiper) handleChanUpdate(ctx context.Context,
2985
        nMsg *networkMsg, upd *lnwire.ChannelUpdate1,
2986
        ops []batch.SchedulerOption) ([]networkMsg, bool) {
3✔
2987

3✔
2988
        log.Debugf("Processing ChannelUpdate: peer=%v, short_chan_id=%v, ",
3✔
2989
                nMsg.peer, upd.ShortChannelID.ToUint64())
3✔
2990

3✔
2991
        // We'll ignore any channel updates that target any chain other than
3✔
2992
        // the set of chains we know of.
3✔
2993
        if !bytes.Equal(upd.ChainHash[:], d.cfg.ChainHash[:]) {
3✔
2994
                err := fmt.Errorf("ignoring ChannelUpdate from chain=%v, "+
×
2995
                        "gossiper on chain=%v", upd.ChainHash, d.cfg.ChainHash)
×
2996
                log.Errorf(err.Error())
×
2997

×
2998
                key := newRejectCacheKey(
×
2999
                        upd.ShortChannelID.ToUint64(),
×
3000
                        sourceToPub(nMsg.source),
×
3001
                )
×
3002
                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
3003

×
3004
                nMsg.err <- err
×
3005
                return nil, false
×
3006
        }
×
3007

3008
        blockHeight := upd.ShortChannelID.BlockHeight
3✔
3009
        shortChanID := upd.ShortChannelID.ToUint64()
3✔
3010

3✔
3011
        // If the advertised inclusionary block is beyond our knowledge of the
3✔
3012
        // chain tip, then we'll put the announcement in limbo to be fully
3✔
3013
        // verified once we advance forward in the chain. If the update has an
3✔
3014
        // alias SCID, we'll skip the isPremature check. This is necessary
3✔
3015
        // since aliases start at block height 16_000_000.
3✔
3016
        d.Lock()
3✔
3017
        if nMsg.isRemote && !d.cfg.IsAlias(upd.ShortChannelID) &&
3✔
3018
                d.isPremature(upd.ShortChannelID, 0, nMsg) {
4✔
3019

1✔
3020
                log.Warnf("Update announcement for short_chan_id(%v), is "+
1✔
3021
                        "premature: advertises height %v, only height %v is "+
1✔
3022
                        "known", shortChanID, blockHeight, d.bestHeight)
1✔
3023
                d.Unlock()
1✔
3024
                nMsg.err <- nil
1✔
3025
                return nil, false
1✔
3026
        }
1✔
3027
        d.Unlock()
3✔
3028

3✔
3029
        // Before we perform any of the expensive checks below, we'll check
3✔
3030
        // whether this update is stale or is for a zombie channel in order to
3✔
3031
        // quickly reject it.
3✔
3032
        timestamp := time.Unix(int64(upd.Timestamp), 0)
3✔
3033

3✔
3034
        // Fetch the SCID we should be using to lock the channelMtx and make
3✔
3035
        // graph queries with.
3✔
3036
        graphScid, err := d.cfg.FindBaseByAlias(upd.ShortChannelID)
3✔
3037
        if err != nil {
6✔
3038
                // Fallback and set the graphScid to the peer-provided SCID.
3✔
3039
                // This will occur for non-option-scid-alias channels and for
3✔
3040
                // public option-scid-alias channels after 6 confirmations.
3✔
3041
                // Once public option-scid-alias channels have 6 confs, we'll
3✔
3042
                // ignore ChannelUpdates with one of their aliases.
3✔
3043
                graphScid = upd.ShortChannelID
3✔
3044
        }
3✔
3045

3046
        // We make sure to obtain the mutex for this channel ID before we access
3047
        // the database. This ensures the state we read from the database has
3048
        // not changed between this point and when we call UpdateEdge() later.
3049
        d.channelMtx.Lock(graphScid.ToUint64())
3✔
3050
        defer d.channelMtx.Unlock(graphScid.ToUint64())
3✔
3051

3✔
3052
        if d.cfg.Graph.IsStaleEdgePolicy(
3✔
3053
                graphScid, timestamp, upd.ChannelFlags,
3✔
3054
        ) {
6✔
3055

3✔
3056
                log.Debugf("Ignored stale edge policy for short_chan_id(%v): "+
3✔
3057
                        "peer=%v, msg=%s, is_remote=%v", shortChanID,
3✔
3058
                        nMsg.peer, nMsg.msg.MsgType(), nMsg.isRemote,
3✔
3059
                )
3✔
3060

3✔
3061
                nMsg.err <- nil
3✔
3062
                return nil, true
3✔
3063
        }
3✔
3064

3065
        // Check that the ChanUpdate is not too far into the future, this could
3066
        // reveal some faulty implementation therefore we log an error.
3067
        if time.Until(timestamp) > graph.DefaultChannelPruneExpiry {
3✔
3068
                log.Errorf("Skewed timestamp (%v) for edge policy of "+
×
3069
                        "short_chan_id(%v), timestamp too far in the future: "+
×
3070
                        "peer=%v, msg=%s, is_remote=%v", timestamp.Unix(),
×
3071
                        shortChanID, nMsg.peer, nMsg.msg.MsgType(),
×
3072
                        nMsg.isRemote,
×
3073
                )
×
3074

×
3075
                nMsg.err <- fmt.Errorf("skewed timestamp of edge policy, "+
×
3076
                        "timestamp too far in the future: %v", timestamp.Unix())
×
3077

×
3078
                return nil, false
×
3079
        }
×
3080

3081
        // Get the node pub key as far since we don't have it in the channel
3082
        // update announcement message. We'll need this to properly verify the
3083
        // message's signature.
3084
        chanInfo, e1, e2, err := d.cfg.Graph.GetChannelByID(graphScid)
3✔
3085
        switch {
3✔
3086
        // No error, break.
3087
        case err == nil:
3✔
3088
                break
3✔
3089

UNCOV
3090
        case errors.Is(err, graphdb.ErrZombieEdge):
×
UNCOV
3091
                err = d.processZombieUpdate(ctx, chanInfo, graphScid, upd)
×
UNCOV
3092
                if err != nil {
×
UNCOV
3093
                        log.Debug(err)
×
UNCOV
3094
                        nMsg.err <- err
×
UNCOV
3095
                        return nil, false
×
UNCOV
3096
                }
×
3097

3098
                // We'll fallthrough to ensure we stash the update until we
3099
                // receive its corresponding ChannelAnnouncement. This is
3100
                // needed to ensure the edge exists in the graph before
3101
                // applying the update.
UNCOV
3102
                fallthrough
×
UNCOV
3103
        case errors.Is(err, graphdb.ErrGraphNotFound):
×
UNCOV
3104
                fallthrough
×
UNCOV
3105
        case errors.Is(err, graphdb.ErrGraphNoEdgesFound):
×
UNCOV
3106
                fallthrough
×
3107
        case errors.Is(err, graphdb.ErrEdgeNotFound):
3✔
3108
                // If the edge corresponding to this ChannelUpdate was not
3✔
3109
                // found in the graph, this might be a channel in the process
3✔
3110
                // of being opened, and we haven't processed our own
3✔
3111
                // ChannelAnnouncement yet, hence it is not not found in the
3✔
3112
                // graph. This usually gets resolved after the channel proofs
3✔
3113
                // are exchanged and the channel is broadcasted to the rest of
3✔
3114
                // the network, but in case this is a private channel this
3✔
3115
                // won't ever happen. This can also happen in the case of a
3✔
3116
                // zombie channel with a fresh update for which we don't have a
3✔
3117
                // ChannelAnnouncement for since we reject them. Because of
3✔
3118
                // this, we temporarily add it to a map, and reprocess it after
3✔
3119
                // our own ChannelAnnouncement has been processed.
3✔
3120
                //
3✔
3121
                // The shortChanID may be an alias, but it is fine to use here
3✔
3122
                // since we don't have an edge in the graph and if the peer is
3✔
3123
                // not buggy, we should be able to use it once the gossiper
3✔
3124
                // receives the local announcement.
3✔
3125
                pMsg := &processedNetworkMsg{msg: nMsg}
3✔
3126

3✔
3127
                earlyMsgs, err := d.prematureChannelUpdates.Get(shortChanID)
3✔
3128
                switch {
3✔
3129
                // Nothing in the cache yet, we can just directly insert this
3130
                // element.
3131
                case err == cache.ErrElementNotFound:
3✔
3132
                        _, _ = d.prematureChannelUpdates.Put(
3✔
3133
                                shortChanID, &cachedNetworkMsg{
3✔
3134
                                        msgs: []*processedNetworkMsg{pMsg},
3✔
3135
                                })
3✔
3136

3137
                // There's already something in the cache, so we'll combine the
3138
                // set of messages into a single value.
3139
                default:
3✔
3140
                        msgs := earlyMsgs.msgs
3✔
3141
                        msgs = append(msgs, pMsg)
3✔
3142
                        _, _ = d.prematureChannelUpdates.Put(
3✔
3143
                                shortChanID, &cachedNetworkMsg{
3✔
3144
                                        msgs: msgs,
3✔
3145
                                })
3✔
3146
                }
3147

3148
                log.Debugf("Got ChannelUpdate for edge not found in graph"+
3✔
3149
                        "(shortChanID=%v), saving for reprocessing later",
3✔
3150
                        shortChanID)
3✔
3151

3✔
3152
                // NOTE: We don't return anything on the error channel for this
3✔
3153
                // message, as we expect that will be done when this
3✔
3154
                // ChannelUpdate is later reprocessed. This might never happen
3✔
3155
                // if the corresponding ChannelAnnouncement is never received
3✔
3156
                // or the LRU cache is filled up and the entry is evicted.
3✔
3157
                return nil, false
3✔
3158

3159
        default:
×
3160
                err := fmt.Errorf("unable to validate channel update "+
×
3161
                        "short_chan_id=%v: %v", shortChanID, err)
×
3162
                log.Error(err)
×
3163
                nMsg.err <- err
×
3164

×
3165
                key := newRejectCacheKey(
×
3166
                        upd.ShortChannelID.ToUint64(),
×
3167
                        sourceToPub(nMsg.source),
×
3168
                )
×
3169
                _, _ = d.recentRejects.Put(key, &cachedReject{})
×
3170

×
3171
                return nil, false
×
3172
        }
3173

3174
        // The least-significant bit in the flag on the channel update
3175
        // announcement tells us "which" side of the channels directed edge is
3176
        // being updated.
3177
        var (
3✔
3178
                pubKey       *btcec.PublicKey
3✔
3179
                edgeToUpdate *models.ChannelEdgePolicy
3✔
3180
        )
3✔
3181
        direction := upd.ChannelFlags & lnwire.ChanUpdateDirection
3✔
3182
        switch direction {
3✔
3183
        case 0:
3✔
3184
                pubKey, _ = chanInfo.NodeKey1()
3✔
3185
                edgeToUpdate = e1
3✔
3186
        case 1:
3✔
3187
                pubKey, _ = chanInfo.NodeKey2()
3✔
3188
                edgeToUpdate = e2
3✔
3189
        }
3190

3191
        log.Debugf("Validating ChannelUpdate: channel=%v, for node=%x, has "+
3✔
3192
                "edge policy=%v", chanInfo.ChannelID,
3✔
3193
                pubKey.SerializeCompressed(), edgeToUpdate != nil)
3✔
3194

3✔
3195
        // Validate the channel announcement with the expected public key and
3✔
3196
        // channel capacity. In the case of an invalid channel update, we'll
3✔
3197
        // return an error to the caller and exit early.
3✔
3198
        err = netann.ValidateChannelUpdateAnn(pubKey, chanInfo.Capacity, upd)
3✔
3199
        if err != nil {
3✔
UNCOV
3200
                rErr := fmt.Errorf("unable to validate channel update "+
×
UNCOV
3201
                        "announcement for short_chan_id=%v: %v",
×
UNCOV
3202
                        spew.Sdump(upd.ShortChannelID), err)
×
UNCOV
3203

×
UNCOV
3204
                log.Error(rErr)
×
UNCOV
3205
                nMsg.err <- rErr
×
UNCOV
3206
                return nil, false
×
UNCOV
3207
        }
×
3208

3209
        // If we have a previous version of the edge being updated, we'll want
3210
        // to rate limit its updates to prevent spam throughout the network.
3211
        if nMsg.isRemote && edgeToUpdate != nil {
6✔
3212
                // If it's a keep-alive update, we'll only propagate one if
3✔
3213
                // it's been a day since the previous. This follows our own
3✔
3214
                // heuristic of sending keep-alive updates after the same
3✔
3215
                // duration (see retransmitStaleAnns).
3✔
3216
                timeSinceLastUpdate := timestamp.Sub(edgeToUpdate.LastUpdate)
3✔
3217
                if IsKeepAliveUpdate(upd, edgeToUpdate) {
6✔
3218
                        if timeSinceLastUpdate < d.cfg.RebroadcastInterval {
6✔
3219
                                log.Debugf("Ignoring keep alive update not "+
3✔
3220
                                        "within %v period for channel %v",
3✔
3221
                                        d.cfg.RebroadcastInterval, shortChanID)
3✔
3222
                                nMsg.err <- nil
3✔
3223
                                return nil, false
3✔
3224
                        }
3✔
3225
                } else {
3✔
3226
                        // If it's not, we'll allow an update per minute with a
3✔
3227
                        // maximum burst of 10. If we haven't seen an update
3✔
3228
                        // for this channel before, we'll need to initialize a
3✔
3229
                        // rate limiter for each direction.
3✔
3230
                        //
3✔
3231
                        // Since the edge exists in the graph, we'll create a
3✔
3232
                        // rate limiter for chanInfo.ChannelID rather then the
3✔
3233
                        // SCID the peer sent. This is because there may be
3✔
3234
                        // multiple aliases for a channel and we may otherwise
3✔
3235
                        // rate-limit only a single alias of the channel,
3✔
3236
                        // instead of the whole channel.
3✔
3237
                        baseScid := chanInfo.ChannelID
3✔
3238
                        d.Lock()
3✔
3239
                        rls, ok := d.chanUpdateRateLimiter[baseScid]
3✔
3240
                        if !ok {
6✔
3241
                                r := rate.Every(d.cfg.ChannelUpdateInterval)
3✔
3242
                                b := d.cfg.MaxChannelUpdateBurst
3✔
3243
                                rls = [2]*rate.Limiter{
3✔
3244
                                        rate.NewLimiter(r, b),
3✔
3245
                                        rate.NewLimiter(r, b),
3✔
3246
                                }
3✔
3247
                                d.chanUpdateRateLimiter[baseScid] = rls
3✔
3248
                        }
3✔
3249
                        d.Unlock()
3✔
3250

3✔
3251
                        if !rls[direction].Allow() {
6✔
3252
                                log.Debugf("Rate limiting update for channel "+
3✔
3253
                                        "%v from direction %x", shortChanID,
3✔
3254
                                        pubKey.SerializeCompressed())
3✔
3255
                                nMsg.err <- nil
3✔
3256
                                return nil, false
3✔
3257
                        }
3✔
3258
                }
3259
        }
3260

3261
        // We'll use chanInfo.ChannelID rather than the peer-supplied
3262
        // ShortChannelID in the ChannelUpdate to avoid the router having to
3263
        // lookup the stored SCID. If we're sending the update, we'll always
3264
        // use the SCID stored in the database rather than a potentially
3265
        // different alias. This might mean that SigBytes is incorrect as it
3266
        // signs a different SCID than the database SCID, but since there will
3267
        // only be a difference if AuthProof == nil, this is fine.
3268
        update := &models.ChannelEdgePolicy{
3✔
3269
                SigBytes:                  upd.Signature.ToSignatureBytes(),
3✔
3270
                ChannelID:                 chanInfo.ChannelID,
3✔
3271
                LastUpdate:                timestamp,
3✔
3272
                MessageFlags:              upd.MessageFlags,
3✔
3273
                ChannelFlags:              upd.ChannelFlags,
3✔
3274
                TimeLockDelta:             upd.TimeLockDelta,
3✔
3275
                MinHTLC:                   upd.HtlcMinimumMsat,
3✔
3276
                MaxHTLC:                   upd.HtlcMaximumMsat,
3✔
3277
                FeeBaseMSat:               lnwire.MilliSatoshi(upd.BaseFee),
3✔
3278
                FeeProportionalMillionths: lnwire.MilliSatoshi(upd.FeeRate),
3✔
3279
                InboundFee:                upd.InboundFee.ValOpt(),
3✔
3280
                ExtraOpaqueData:           upd.ExtraOpaqueData,
3✔
3281
        }
3✔
3282

3✔
3283
        if err := d.cfg.Graph.UpdateEdge(ctx, update, ops...); err != nil {
3✔
3284
                if graph.IsError(
×
3285
                        err, graph.ErrOutdated,
×
3286
                        graph.ErrIgnored,
×
3287
                ) {
×
3288

×
3289
                        log.Debugf("Update edge for short_chan_id(%v) got: %v",
×
3290
                                shortChanID, err)
×
3291
                } else {
×
3292
                        // Since we know the stored SCID in the graph, we'll
×
3293
                        // cache that SCID.
×
3294
                        key := newRejectCacheKey(
×
3295
                                chanInfo.ChannelID,
×
3296
                                sourceToPub(nMsg.source),
×
3297
                        )
×
3298
                        _, _ = d.recentRejects.Put(key, &cachedReject{})
×
3299

×
3300
                        log.Errorf("Update edge for short_chan_id(%v) got: %v",
×
3301
                                shortChanID, err)
×
3302
                }
×
3303

3304
                nMsg.err <- err
×
3305
                return nil, false
×
3306
        }
3307

3308
        // If this is a local ChannelUpdate without an AuthProof, it means it
3309
        // is an update to a channel that is not (yet) supposed to be announced
3310
        // to the greater network. However, our channel counter party will need
3311
        // to be given the update, so we'll try sending the update directly to
3312
        // the remote peer.
3313
        if !nMsg.isRemote && chanInfo.AuthProof == nil {
6✔
3314
                if nMsg.optionalMsgFields != nil {
6✔
3315
                        remoteAlias := nMsg.optionalMsgFields.remoteAlias
3✔
3316
                        if remoteAlias != nil {
6✔
3317
                                // The remoteAlias field was specified, meaning
3✔
3318
                                // that we should replace the SCID in the
3✔
3319
                                // update with the remote's alias. We'll also
3✔
3320
                                // need to re-sign the channel update. This is
3✔
3321
                                // required for option-scid-alias feature-bit
3✔
3322
                                // negotiated channels.
3✔
3323
                                upd.ShortChannelID = *remoteAlias
3✔
3324

3✔
3325
                                sig, err := d.cfg.SignAliasUpdate(upd)
3✔
3326
                                if err != nil {
3✔
3327
                                        log.Error(err)
×
3328
                                        nMsg.err <- err
×
3329
                                        return nil, false
×
3330
                                }
×
3331

3332
                                lnSig, err := lnwire.NewSigFromSignature(sig)
3✔
3333
                                if err != nil {
3✔
3334
                                        log.Error(err)
×
3335
                                        nMsg.err <- err
×
3336
                                        return nil, false
×
3337
                                }
×
3338

3339
                                upd.Signature = lnSig
3✔
3340
                        }
3341
                }
3342

3343
                // Get our peer's public key.
3344
                remotePubKey := remotePubFromChanInfo(
3✔
3345
                        chanInfo, upd.ChannelFlags,
3✔
3346
                )
3✔
3347

3✔
3348
                log.Debugf("The message %v has no AuthProof, sending the "+
3✔
3349
                        "update to remote peer %x", upd.MsgType(), remotePubKey)
3✔
3350

3✔
3351
                // Now we'll attempt to send the channel update message
3✔
3352
                // reliably to the remote peer in the background, so that we
3✔
3353
                // don't block if the peer happens to be offline at the moment.
3✔
3354
                err := d.reliableSender.sendMessage(ctx, upd, remotePubKey)
3✔
3355
                if err != nil {
3✔
3356
                        err := fmt.Errorf("unable to reliably send %v for "+
×
3357
                                "channel=%v to peer=%x: %v", upd.MsgType(),
×
3358
                                upd.ShortChannelID, remotePubKey, err)
×
3359
                        nMsg.err <- err
×
3360
                        return nil, false
×
3361
                }
×
3362
        }
3363

3364
        // Channel update announcement was successfully processed and now it
3365
        // can be broadcast to the rest of the network. However, we'll only
3366
        // broadcast the channel update announcement if it has an attached
3367
        // authentication proof. We also won't broadcast the update if it
3368
        // contains an alias because the network would reject this.
3369
        var announcements []networkMsg
3✔
3370
        if chanInfo.AuthProof != nil && !d.cfg.IsAlias(upd.ShortChannelID) {
6✔
3371
                announcements = append(announcements, networkMsg{
3✔
3372
                        peer:     nMsg.peer,
3✔
3373
                        source:   nMsg.source,
3✔
3374
                        isRemote: nMsg.isRemote,
3✔
3375
                        msg:      upd,
3✔
3376
                })
3✔
3377
        }
3✔
3378

3379
        nMsg.err <- nil
3✔
3380

3✔
3381
        log.Debugf("Processed ChannelUpdate: peer=%v, short_chan_id=%v, "+
3✔
3382
                "timestamp=%v", nMsg.peer, upd.ShortChannelID.ToUint64(),
3✔
3383
                timestamp)
3✔
3384
        return announcements, true
3✔
3385
}
3386

3387
// handleAnnSig processes a new announcement signatures message.
3388
//
3389
//nolint:funlen
3390
func (d *AuthenticatedGossiper) handleAnnSig(ctx context.Context,
3391
        nMsg *networkMsg, ann *lnwire.AnnounceSignatures1) ([]networkMsg,
3392
        bool) {
3✔
3393

3✔
3394
        needBlockHeight := ann.ShortChannelID.BlockHeight +
3✔
3395
                d.cfg.ProofMatureDelta
3✔
3396
        shortChanID := ann.ShortChannelID.ToUint64()
3✔
3397

3✔
3398
        prefix := "local"
3✔
3399
        if nMsg.isRemote {
6✔
3400
                prefix = "remote"
3✔
3401
        }
3✔
3402

3403
        log.Infof("Received new %v announcement signature for %v", prefix,
3✔
3404
                ann.ShortChannelID)
3✔
3405

3✔
3406
        // By the specification, channel announcement proofs should be sent
3✔
3407
        // after some number of confirmations after channel was registered in
3✔
3408
        // bitcoin blockchain. Therefore, we check if the proof is mature.
3✔
3409
        d.Lock()
3✔
3410
        premature := d.isPremature(
3✔
3411
                ann.ShortChannelID, d.cfg.ProofMatureDelta, nMsg,
3✔
3412
        )
3✔
3413
        if premature {
6✔
3414
                log.Warnf("Premature proof announcement, current block height"+
3✔
3415
                        "lower than needed: %v < %v", d.bestHeight,
3✔
3416
                        needBlockHeight)
3✔
3417
                d.Unlock()
3✔
3418
                nMsg.err <- nil
3✔
3419
                return nil, false
3✔
3420
        }
3✔
3421
        d.Unlock()
3✔
3422

3✔
3423
        // Ensure that we know of a channel with the target channel ID before
3✔
3424
        // proceeding further.
3✔
3425
        //
3✔
3426
        // We must acquire the mutex for this channel ID before getting the
3✔
3427
        // channel from the database, to ensure what we read does not change
3✔
3428
        // before we call AddProof() later.
3✔
3429
        d.channelMtx.Lock(ann.ShortChannelID.ToUint64())
3✔
3430
        defer d.channelMtx.Unlock(ann.ShortChannelID.ToUint64())
3✔
3431

3✔
3432
        chanInfo, e1, e2, err := d.cfg.Graph.GetChannelByID(
3✔
3433
                ann.ShortChannelID,
3✔
3434
        )
3✔
3435
        if err != nil {
6✔
3436
                _, err = d.cfg.FindChannel(nMsg.source, ann.ChannelID)
3✔
3437
                if err != nil {
6✔
3438
                        err := fmt.Errorf("unable to store the proof for "+
3✔
3439
                                "short_chan_id=%v: %v", shortChanID, err)
3✔
3440
                        log.Error(err)
3✔
3441
                        nMsg.err <- err
3✔
3442

3✔
3443
                        return nil, false
3✔
3444
                }
3✔
3445

3446
                proof := channeldb.NewWaitingProof(nMsg.isRemote, ann)
3✔
3447
                err := d.cfg.WaitingProofStore.Add(proof)
3✔
3448
                if err != nil {
3✔
3449
                        err := fmt.Errorf("unable to store the proof for "+
×
3450
                                "short_chan_id=%v: %v", shortChanID, err)
×
3451
                        log.Error(err)
×
3452
                        nMsg.err <- err
×
3453
                        return nil, false
×
3454
                }
×
3455

3456
                log.Infof("Orphan %v proof announcement with short_chan_id=%v"+
3✔
3457
                        ", adding to waiting batch", prefix, shortChanID)
3✔
3458
                nMsg.err <- nil
3✔
3459
                return nil, false
3✔
3460
        }
3461

3462
        nodeID := nMsg.source.SerializeCompressed()
3✔
3463
        isFirstNode := bytes.Equal(nodeID, chanInfo.NodeKey1Bytes[:])
3✔
3464
        isSecondNode := bytes.Equal(nodeID, chanInfo.NodeKey2Bytes[:])
3✔
3465

3✔
3466
        // Ensure that channel that was retrieved belongs to the peer which
3✔
3467
        // sent the proof announcement.
3✔
3468
        if !(isFirstNode || isSecondNode) {
3✔
3469
                err := fmt.Errorf("channel that was received doesn't belong "+
×
3470
                        "to the peer which sent the proof, short_chan_id=%v",
×
3471
                        shortChanID)
×
3472
                log.Error(err)
×
3473
                nMsg.err <- err
×
3474
                return nil, false
×
3475
        }
×
3476

3477
        // If proof was sent by a local sub-system, then we'll send the
3478
        // announcement signature to the remote node so they can also
3479
        // reconstruct the full channel announcement.
3480
        if !nMsg.isRemote {
6✔
3481
                var remotePubKey [33]byte
3✔
3482
                if isFirstNode {
6✔
3483
                        remotePubKey = chanInfo.NodeKey2Bytes
3✔
3484
                } else {
6✔
3485
                        remotePubKey = chanInfo.NodeKey1Bytes
3✔
3486
                }
3✔
3487

3488
                // Since the remote peer might not be online we'll call a
3489
                // method that will attempt to deliver the proof when it comes
3490
                // online.
3491
                err := d.reliableSender.sendMessage(ctx, ann, remotePubKey)
3✔
3492
                if err != nil {
3✔
3493
                        err := fmt.Errorf("unable to reliably send %v for "+
×
3494
                                "channel=%v to peer=%x: %v", ann.MsgType(),
×
3495
                                ann.ShortChannelID, remotePubKey, err)
×
3496
                        nMsg.err <- err
×
3497
                        return nil, false
×
3498
                }
×
3499
        }
3500

3501
        // Check if we already have the full proof for this channel.
3502
        if chanInfo.AuthProof != nil {
6✔
3503
                // If we already have the fully assembled proof, then the peer
3✔
3504
                // sending us their proof has probably not received our local
3✔
3505
                // proof yet. So be kind and send them the full proof.
3✔
3506
                if nMsg.isRemote {
6✔
3507
                        peerID := nMsg.source.SerializeCompressed()
3✔
3508
                        log.Debugf("Got AnnounceSignatures for channel with " +
3✔
3509
                                "full proof.")
3✔
3510

3✔
3511
                        d.wg.Add(1)
3✔
3512
                        go func() {
6✔
3513
                                defer d.wg.Done()
3✔
3514

3✔
3515
                                log.Debugf("Received half proof for channel "+
3✔
3516
                                        "%v with existing full proof. Sending"+
3✔
3517
                                        " full proof to peer=%x",
3✔
3518
                                        ann.ChannelID, peerID)
3✔
3519

3✔
3520
                                ca, _, _, err := netann.CreateChanAnnouncement(
3✔
3521
                                        chanInfo.AuthProof, chanInfo, e1, e2,
3✔
3522
                                )
3✔
3523
                                if err != nil {
3✔
3524
                                        log.Errorf("unable to gen ann: %v",
×
3525
                                                err)
×
3526
                                        return
×
3527
                                }
×
3528

3529
                                err = nMsg.peer.SendMessage(false, ca)
3✔
3530
                                if err != nil {
3✔
3531
                                        log.Errorf("Failed sending full proof"+
×
3532
                                                " to peer=%x: %v", peerID, err)
×
3533
                                        return
×
3534
                                }
×
3535

3536
                                log.Debugf("Full proof sent to peer=%x for "+
3✔
3537
                                        "chanID=%v", peerID, ann.ChannelID)
3✔
3538
                        }()
3539
                }
3540

3541
                log.Debugf("Already have proof for channel with chanID=%v",
3✔
3542
                        ann.ChannelID)
3✔
3543
                nMsg.err <- nil
3✔
3544
                return nil, true
3✔
3545
        }
3546

3547
        // Check that we received the opposite proof. If so, then we're now
3548
        // able to construct the full proof, and create the channel
3549
        // announcement. If we didn't receive the opposite half of the proof
3550
        // then we should store this one, and wait for the opposite to be
3551
        // received.
3552
        proof := channeldb.NewWaitingProof(nMsg.isRemote, ann)
3✔
3553
        oppProof, err := d.cfg.WaitingProofStore.Get(proof.OppositeKey())
3✔
3554
        if err != nil && err != channeldb.ErrWaitingProofNotFound {
3✔
3555
                err := fmt.Errorf("unable to get the opposite proof for "+
×
3556
                        "short_chan_id=%v: %v", shortChanID, err)
×
3557
                log.Error(err)
×
3558
                nMsg.err <- err
×
3559
                return nil, false
×
3560
        }
×
3561

3562
        if err == channeldb.ErrWaitingProofNotFound {
6✔
3563
                err := d.cfg.WaitingProofStore.Add(proof)
3✔
3564
                if err != nil {
3✔
3565
                        err := fmt.Errorf("unable to store the proof for "+
×
3566
                                "short_chan_id=%v: %v", shortChanID, err)
×
3567
                        log.Error(err)
×
3568
                        nMsg.err <- err
×
3569
                        return nil, false
×
3570
                }
×
3571

3572
                log.Infof("1/2 of channel ann proof received for "+
3✔
3573
                        "short_chan_id=%v, waiting for other half",
3✔
3574
                        shortChanID)
3✔
3575

3✔
3576
                nMsg.err <- nil
3✔
3577
                return nil, false
3✔
3578
        }
3579

3580
        // We now have both halves of the channel announcement proof, then
3581
        // we'll reconstruct the initial announcement so we can validate it
3582
        // shortly below.
3583
        var dbProof models.ChannelAuthProof
3✔
3584
        if isFirstNode {
6✔
3585
                dbProof.NodeSig1Bytes = ann.NodeSignature.ToSignatureBytes()
3✔
3586
                dbProof.NodeSig2Bytes = oppProof.NodeSignature.ToSignatureBytes()
3✔
3587
                dbProof.BitcoinSig1Bytes = ann.BitcoinSignature.ToSignatureBytes()
3✔
3588
                dbProof.BitcoinSig2Bytes = oppProof.BitcoinSignature.ToSignatureBytes()
3✔
3589
        } else {
6✔
3590
                dbProof.NodeSig1Bytes = oppProof.NodeSignature.ToSignatureBytes()
3✔
3591
                dbProof.NodeSig2Bytes = ann.NodeSignature.ToSignatureBytes()
3✔
3592
                dbProof.BitcoinSig1Bytes = oppProof.BitcoinSignature.ToSignatureBytes()
3✔
3593
                dbProof.BitcoinSig2Bytes = ann.BitcoinSignature.ToSignatureBytes()
3✔
3594
        }
3✔
3595

3596
        chanAnn, e1Ann, e2Ann, err := netann.CreateChanAnnouncement(
3✔
3597
                &dbProof, chanInfo, e1, e2,
3✔
3598
        )
3✔
3599
        if err != nil {
3✔
3600
                log.Error(err)
×
3601
                nMsg.err <- err
×
3602
                return nil, false
×
3603
        }
×
3604

3605
        // With all the necessary components assembled validate the full
3606
        // channel announcement proof.
3607
        err = netann.ValidateChannelAnn(chanAnn, d.fetchPKScript)
3✔
3608
        if err != nil {
3✔
3609
                err := fmt.Errorf("channel announcement proof for "+
×
3610
                        "short_chan_id=%v isn't valid: %v", shortChanID, err)
×
3611

×
3612
                log.Error(err)
×
3613
                nMsg.err <- err
×
3614
                return nil, false
×
3615
        }
×
3616

3617
        // If the channel was returned by the router it means that existence of
3618
        // funding point and inclusion of nodes bitcoin keys in it already
3619
        // checked by the router. In this stage we should check that node keys
3620
        // attest to the bitcoin keys by validating the signatures of
3621
        // announcement. If proof is valid then we'll populate the channel edge
3622
        // with it, so we can announce it on peer connect.
3623
        err = d.cfg.Graph.AddProof(ann.ShortChannelID, &dbProof)
3✔
3624
        if err != nil {
3✔
3625
                err := fmt.Errorf("unable add proof to the channel chanID=%v:"+
×
3626
                        " %v", ann.ChannelID, err)
×
3627
                log.Error(err)
×
3628
                nMsg.err <- err
×
3629
                return nil, false
×
3630
        }
×
3631

3632
        err = d.cfg.WaitingProofStore.Remove(proof.OppositeKey())
3✔
3633
        if err != nil {
3✔
3634
                err := fmt.Errorf("unable to remove opposite proof for the "+
×
3635
                        "channel with chanID=%v: %v", ann.ChannelID, err)
×
3636
                log.Error(err)
×
3637
                nMsg.err <- err
×
3638
                return nil, false
×
3639
        }
×
3640

3641
        // Proof was successfully created and now can announce the channel to
3642
        // the remain network.
3643
        log.Infof("Fully valid channel proof for short_chan_id=%v constructed"+
3✔
3644
                ", adding to next ann batch", shortChanID)
3✔
3645

3✔
3646
        // Assemble the necessary announcements to add to the next broadcasting
3✔
3647
        // batch.
3✔
3648
        var announcements []networkMsg
3✔
3649
        announcements = append(announcements, networkMsg{
3✔
3650
                peer:   nMsg.peer,
3✔
3651
                source: nMsg.source,
3✔
3652
                msg:    chanAnn,
3✔
3653
        })
3✔
3654
        if src, err := chanInfo.NodeKey1(); err == nil && e1Ann != nil {
6✔
3655
                announcements = append(announcements, networkMsg{
3✔
3656
                        peer:   nMsg.peer,
3✔
3657
                        source: src,
3✔
3658
                        msg:    e1Ann,
3✔
3659
                })
3✔
3660
        }
3✔
3661
        if src, err := chanInfo.NodeKey2(); err == nil && e2Ann != nil {
6✔
3662
                announcements = append(announcements, networkMsg{
3✔
3663
                        peer:   nMsg.peer,
3✔
3664
                        source: src,
3✔
3665
                        msg:    e2Ann,
3✔
3666
                })
3✔
3667
        }
3✔
3668

3669
        // We'll also send along the node announcements for each channel
3670
        // participant if we know of them. To ensure our node announcement
3671
        // propagates to our channel counterparty, we'll set the source for
3672
        // each announcement to the node it belongs to, otherwise we won't send
3673
        // it since the source gets skipped. This isn't necessary for channel
3674
        // updates and announcement signatures since we send those directly to
3675
        // our channel counterparty through the gossiper's reliable sender.
3676
        node1Ann, err := d.fetchNodeAnn(ctx, chanInfo.NodeKey1Bytes)
3✔
3677
        if err != nil {
6✔
3678
                log.Debugf("Unable to fetch node announcement for %x: %v",
3✔
3679
                        chanInfo.NodeKey1Bytes, err)
3✔
3680
        } else {
6✔
3681
                if nodeKey1, err := chanInfo.NodeKey1(); err == nil {
6✔
3682
                        announcements = append(announcements, networkMsg{
3✔
3683
                                peer:   nMsg.peer,
3✔
3684
                                source: nodeKey1,
3✔
3685
                                msg:    node1Ann,
3✔
3686
                        })
3✔
3687
                }
3✔
3688
        }
3689

3690
        node2Ann, err := d.fetchNodeAnn(ctx, chanInfo.NodeKey2Bytes)
3✔
3691
        if err != nil {
6✔
3692
                log.Debugf("Unable to fetch node announcement for %x: %v",
3✔
3693
                        chanInfo.NodeKey2Bytes, err)
3✔
3694
        } else {
6✔
3695
                if nodeKey2, err := chanInfo.NodeKey2(); err == nil {
6✔
3696
                        announcements = append(announcements, networkMsg{
3✔
3697
                                peer:   nMsg.peer,
3✔
3698
                                source: nodeKey2,
3✔
3699
                                msg:    node2Ann,
3✔
3700
                        })
3✔
3701
                }
3✔
3702
        }
3703

3704
        nMsg.err <- nil
3✔
3705
        return announcements, true
3✔
3706
}
3707

3708
// isBanned returns true if the peer identified by pubkey is banned for sending
3709
// invalid channel announcements.
3710
func (d *AuthenticatedGossiper) isBanned(pubkey [33]byte) bool {
3✔
3711
        return d.banman.isBanned(pubkey)
3✔
3712
}
3✔
3713

3714
// ShouldDisconnect returns true if we should disconnect the peer identified by
3715
// pubkey.
3716
func (d *AuthenticatedGossiper) ShouldDisconnect(pubkey *btcec.PublicKey) (
3717
        bool, error) {
3✔
3718

3✔
3719
        pubkeySer := pubkey.SerializeCompressed()
3✔
3720

3✔
3721
        var pubkeyBytes [33]byte
3✔
3722
        copy(pubkeyBytes[:], pubkeySer)
3✔
3723

3✔
3724
        // If the public key is banned, check whether or not this is a channel
3✔
3725
        // peer.
3✔
3726
        if d.isBanned(pubkeyBytes) {
3✔
UNCOV
3727
                isChanPeer, err := d.cfg.ScidCloser.IsChannelPeer(pubkey)
×
UNCOV
3728
                if err != nil {
×
3729
                        return false, err
×
3730
                }
×
3731

3732
                // We should only disconnect non-channel peers.
UNCOV
3733
                if !isChanPeer {
×
UNCOV
3734
                        return true, nil
×
UNCOV
3735
                }
×
3736
        }
3737

3738
        return false, nil
3✔
3739
}
3740

3741
// validateFundingTransaction fetches the channel announcements claimed funding
3742
// transaction from chain to ensure that it exists, is not spent and matches
3743
// the channel announcement proof. The transaction's outpoint and value are
3744
// returned if we can glean them from the work done in this method.
3745
func (d *AuthenticatedGossiper) validateFundingTransaction(_ context.Context,
3746
        ann *lnwire.ChannelAnnouncement1,
3747
        tapscriptRoot fn.Option[chainhash.Hash]) (wire.OutPoint, btcutil.Amount,
3748
        []byte, error) {
3✔
3749

3✔
3750
        scid := ann.ShortChannelID
3✔
3751

3✔
3752
        // Before we can add the channel to the channel graph, we need to obtain
3✔
3753
        // the full funding outpoint that's encoded within the channel ID.
3✔
3754
        fundingTx, err := lnwallet.FetchFundingTxWrapper(
3✔
3755
                d.cfg.ChainIO, &scid, d.quit,
3✔
3756
        )
3✔
3757
        if err != nil {
3✔
UNCOV
3758
                //nolint:ll
×
UNCOV
3759
                //
×
UNCOV
3760
                // In order to ensure we don't erroneously mark a channel as a
×
UNCOV
3761
                // zombie due to an RPC failure, we'll attempt to string match
×
UNCOV
3762
                // for the relevant errors.
×
UNCOV
3763
                //
×
UNCOV
3764
                // * btcd:
×
UNCOV
3765
                //    * https://github.com/btcsuite/btcd/blob/master/rpcserver.go#L1316
×
UNCOV
3766
                //    * https://github.com/btcsuite/btcd/blob/master/rpcserver.go#L1086
×
UNCOV
3767
                // * bitcoind:
×
UNCOV
3768
                //    * https://github.com/bitcoin/bitcoin/blob/7fcf53f7b4524572d1d0c9a5fdc388e87eb02416/src/rpc/blockchain.cpp#L770
×
UNCOV
3769
                //     * https://github.com/bitcoin/bitcoin/blob/7fcf53f7b4524572d1d0c9a5fdc388e87eb02416/src/rpc/blockchain.cpp#L954
×
UNCOV
3770
                switch {
×
UNCOV
3771
                case strings.Contains(err.Error(), "not found"):
×
UNCOV
3772
                        fallthrough
×
3773

UNCOV
3774
                case strings.Contains(err.Error(), "out of range"):
×
UNCOV
3775
                        // If the funding transaction isn't found at all, then
×
UNCOV
3776
                        // we'll mark the edge itself as a zombie so we don't
×
UNCOV
3777
                        // continue to request it. We use the "zero key" for
×
UNCOV
3778
                        // both node pubkeys so this edge can't be resurrected.
×
UNCOV
3779
                        zErr := d.cfg.Graph.MarkZombieEdge(scid.ToUint64())
×
UNCOV
3780
                        if zErr != nil {
×
3781
                                return wire.OutPoint{}, 0, nil, zErr
×
3782
                        }
×
3783

3784
                default:
×
3785
                }
3786

UNCOV
3787
                return wire.OutPoint{}, 0, nil, fmt.Errorf("%w: %w",
×
UNCOV
3788
                        ErrNoFundingTransaction, err)
×
3789
        }
3790

3791
        // Recreate witness output to be sure that declared in channel edge
3792
        // bitcoin keys and channel value corresponds to the reality.
3793
        fundingPkScript, err := makeFundingScript(
3✔
3794
                ann.BitcoinKey1[:], ann.BitcoinKey2[:], ann.Features,
3✔
3795
                tapscriptRoot,
3✔
3796
        )
3✔
3797
        if err != nil {
3✔
3798
                return wire.OutPoint{}, 0, nil, err
×
3799
        }
×
3800

3801
        // Next we'll validate that this channel is actually well formed. If
3802
        // this check fails, then this channel either doesn't exist, or isn't
3803
        // the one that was meant to be created according to the passed channel
3804
        // proofs.
3805
        fundingPoint, err := chanvalidate.Validate(
3✔
3806
                &chanvalidate.Context{
3✔
3807
                        Locator: &chanvalidate.ShortChanIDChanLocator{
3✔
3808
                                ID: scid,
3✔
3809
                        },
3✔
3810
                        MultiSigPkScript: fundingPkScript,
3✔
3811
                        FundingTx:        fundingTx,
3✔
3812
                },
3✔
3813
        )
3✔
3814
        if err != nil {
3✔
UNCOV
3815
                // Mark the edge as a zombie so we won't try to re-validate it
×
UNCOV
3816
                // on start up.
×
UNCOV
3817
                zErr := d.cfg.Graph.MarkZombieEdge(scid.ToUint64())
×
UNCOV
3818
                if zErr != nil {
×
3819
                        return wire.OutPoint{}, 0, nil, zErr
×
3820
                }
×
3821

UNCOV
3822
                return wire.OutPoint{}, 0, nil, fmt.Errorf("%w: %w",
×
UNCOV
3823
                        ErrInvalidFundingOutput, err)
×
3824
        }
3825

3826
        // Now that we have the funding outpoint of the channel, ensure
3827
        // that it hasn't yet been spent. If so, then this channel has
3828
        // been closed so we'll ignore it.
3829
        chanUtxo, err := d.cfg.ChainIO.GetUtxo(
3✔
3830
                fundingPoint, fundingPkScript, scid.BlockHeight, d.quit,
3✔
3831
        )
3✔
3832
        if err != nil {
3✔
UNCOV
3833
                if errors.Is(err, btcwallet.ErrOutputSpent) {
×
UNCOV
3834
                        zErr := d.cfg.Graph.MarkZombieEdge(scid.ToUint64())
×
UNCOV
3835
                        if zErr != nil {
×
3836
                                return wire.OutPoint{}, 0, nil, zErr
×
3837
                        }
×
3838
                }
3839

UNCOV
3840
                return wire.OutPoint{}, 0, nil, fmt.Errorf("%w: unable to "+
×
UNCOV
3841
                        "fetch utxo for chan_id=%v, chan_point=%v: %w",
×
UNCOV
3842
                        ErrChannelSpent, scid.ToUint64(), fundingPoint, err)
×
3843
        }
3844

3845
        return *fundingPoint, btcutil.Amount(chanUtxo.Value), fundingPkScript,
3✔
3846
                nil
3✔
3847
}
3848

3849
// makeFundingScript is used to make the funding script for both segwit v0 and
3850
// segwit v1 (taproot) channels.
3851
func makeFundingScript(bitcoinKey1, bitcoinKey2 []byte,
3852
        features *lnwire.RawFeatureVector,
3853
        tapscriptRoot fn.Option[chainhash.Hash]) ([]byte, error) {
3✔
3854

3✔
3855
        legacyFundingScript := func() ([]byte, error) {
6✔
3856
                witnessScript, err := input.GenMultiSigScript(
3✔
3857
                        bitcoinKey1, bitcoinKey2,
3✔
3858
                )
3✔
3859
                if err != nil {
3✔
3860
                        return nil, err
×
3861
                }
×
3862
                pkScript, err := input.WitnessScriptHash(witnessScript)
3✔
3863
                if err != nil {
3✔
3864
                        return nil, err
×
3865
                }
×
3866

3867
                return pkScript, nil
3✔
3868
        }
3869

3870
        if features.IsEmpty() {
6✔
3871
                return legacyFundingScript()
3✔
3872
        }
3✔
3873

3874
        chanFeatureBits := lnwire.NewFeatureVector(features, lnwire.Features)
3✔
3875
        if chanFeatureBits.HasFeature(
3✔
3876
                lnwire.SimpleTaprootChannelsOptionalStaging,
3✔
3877
        ) {
6✔
3878

3✔
3879
                pubKey1, err := btcec.ParsePubKey(bitcoinKey1)
3✔
3880
                if err != nil {
3✔
3881
                        return nil, err
×
3882
                }
×
3883
                pubKey2, err := btcec.ParsePubKey(bitcoinKey2)
3✔
3884
                if err != nil {
3✔
3885
                        return nil, err
×
3886
                }
×
3887

3888
                fundingScript, _, err := input.GenTaprootFundingScript(
3✔
3889
                        pubKey1, pubKey2, 0, tapscriptRoot,
3✔
3890
                )
3✔
3891
                if err != nil {
3✔
3892
                        return nil, err
×
3893
                }
×
3894

3895
                // TODO(roasbeef): add tapscript root to gossip v1.5
3896

3897
                return fundingScript, nil
3✔
3898
        }
3899

3900
        return legacyFundingScript()
×
3901
}
STATUS · Troubleshooting · Open an Issue · Sales · Support · CAREERS · ENTERPRISE · START FREE · SCHEDULE DEMO
ANNOUNCEMENTS · TWITTER · TOS & SLA · Supported CI Services · What's a CI service? · Automated Testing

© 2025 Coveralls, Inc