Let some tests try to sign a revoked commitment without panic

devrandom · devrandom · commit 29d46ce571b0 · 2021-01-18T17:59:43.000-08:00
Return an Err instead so that the test can complete.
diff --git a/fuzz/src/chanmon_consistency.rs b/fuzz/src/chanmon_consistency.rs
@@ -182,7 +182,7 @@ impl KeysInterface for KeyProvider {
 			(0, 0),
 		);
 		let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);
-		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)
+		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, false)
 	}
 
 	fn get_secure_random_bytes(&self) -> [u8; 32] {
@@ -202,6 +202,7 @@ impl KeysInterface for KeyProvider {
 			inner,
 			last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),
 			revoked_commitment,
+			err_on_sign_revoked_holder_tx: false,
 		})
 	}
 }
diff --git a/lightning/src/ln/functional_tests.rs b/lightning/src/ln/functional_tests.rs
@@ -7379,7 +7379,10 @@ fn test_data_loss_protect() {
 	let fee_estimator;
 	let tx_broadcaster;
 	let chain_source;
-	let chanmon_cfgs = create_chanmon_cfgs(2);
+	let mut chanmon_cfgs = create_chanmon_cfgs(2);
+	// We broadcast during Drop because chanmon is out of sync with chanmgr, which would cause a panic
+	// during signing due to revoked tx
+	chanmon_cfgs[0].keys_manager.err_on_sign_revoked_holder_tx = true;
 	let keys_manager = &chanmon_cfgs[0].keys_manager;
 	let monitor;
 	let node_state_0;
diff --git a/lightning/src/util/enforcing_trait_impls.rs b/lightning/src/util/enforcing_trait_impls.rs
@@ -36,22 +36,25 @@ pub struct EnforcingChannelKeys {
 	pub inner: InMemoryChannelKeys,
 	pub last_commitment_number: Arc<Mutex<Option<u64>>>,
 	pub revoked_commitment: Arc<Mutex<u64>>,
+	pub err_on_sign_revoked_holder_tx: bool,
 }
 
 impl EnforcingChannelKeys {
 	pub fn new(inner: InMemoryChannelKeys) -> Self {
 		Self {
 			inner,
 			last_commitment_number: Arc::new(Mutex::new(None)),
-			revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER))
+			revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER)),
+			err_on_sign_revoked_holder_tx: false
 		}
 	}
 
-	pub fn new_with_revoked(inner: InMemoryChannelKeys, revoked_commitment: Arc<Mutex<u64>>) -> Self {
+	pub fn new_with_revoked(inner: InMemoryChannelKeys, revoked_commitment: Arc<Mutex<u64>>, err_on_sign_revoked_holder_tx: bool) -> Self {
 		Self {
 			inner,
 			last_commitment_number: Arc::new(Mutex::new(None)),
-			revoked_commitment
+			revoked_commitment,
+			err_on_sign_revoked_holder_tx
 		}
 	}
 }
@@ -100,9 +103,12 @@ impl ChannelKeys for EnforcingChannelKeys {
 		let commitment_number = trusted_tx.commitment_number();
 		println!("XXX sign {} for {}", commitment_number, self.inner.commitment_seed[0]);
 		if *revoked - 1 != commitment_number && *revoked - 2 != commitment_number {
-			println!("can only sign the next two unrevoked commitment numbers, revoked={} vs requested={} for {}",
-			         *revoked, commitment_number, self.inner.commitment_seed[0]);
-			return Err(());
+			if self.err_on_sign_revoked_holder_tx {
+				return Err(());
+			} else {
+				panic!("can only sign the next two unrevoked commitment numbers, revoked={} vs requested={} for {}",
+				       *revoked, commitment_number, self.inner.commitment_seed[0])
+			}
 		}
 
 		for (this_htlc, sig) in trusted_tx.htlcs().iter().zip(&commitment_tx.counterparty_htlc_sigs) {
@@ -165,6 +171,7 @@ impl Readable for EnforcingChannelKeys {
 			inner,
 			last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),
 			revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER)),
+			err_on_sign_revoked_holder_tx: false,
 		})
 	}
 }
diff --git a/lightning/src/util/test_utils.rs b/lightning/src/util/test_utils.rs
@@ -422,6 +422,7 @@ pub struct TestKeysInterface {
 	backing: keysinterface::KeysManager,
 	pub override_session_priv: Mutex<Option<[u8; 32]>>,
 	pub override_channel_id_priv: Mutex<Option<[u8; 32]>>,
+	pub err_on_sign_revoked_holder_tx: bool,
 	revoked_commitments: Mutex<HashMap<[u8;32], Arc<Mutex<u64>>>>,
 }
 
@@ -434,7 +435,7 @@ impl keysinterface::KeysInterface for TestKeysInterface {
 	fn get_channel_keys(&self, inbound: bool, channel_value_satoshis: u64) -> EnforcingChannelKeys {
 		let keys = self.backing.get_channel_keys(inbound, channel_value_satoshis);
 		let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);
-		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)
+		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, self.err_on_sign_revoked_holder_tx)
 	}
 
 	fn get_secure_random_bytes(&self) -> [u8; 32] {
@@ -464,6 +465,7 @@ impl keysinterface::KeysInterface for TestKeysInterface {
 			inner,
 			last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),
 			revoked_commitment,
+			err_on_sign_revoked_holder_tx: self.err_on_sign_revoked_holder_tx,
 		})
 	}
 }
@@ -476,13 +478,14 @@ impl TestKeysInterface {
 			backing: keysinterface::KeysManager::new(seed, network, now.as_secs(), now.subsec_nanos()),
 			override_session_priv: Mutex::new(None),
 			override_channel_id_priv: Mutex::new(None),
+			err_on_sign_revoked_holder_tx: false,
 			revoked_commitments: Mutex::new(HashMap::new()),
 		}
 	}
 	pub fn derive_channel_keys(&self, channel_value_satoshis: u64, user_id_1: u64, user_id_2: u64) -> EnforcingChannelKeys {
 		let keys = self.backing.derive_channel_keys(channel_value_satoshis, user_id_1, user_id_2);
 		let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);
-		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)
+		EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, self.err_on_sign_revoked_holder_tx)
 	}
 
 	fn make_revoked_commitment_cell(&self, commitment_seed: [u8; 32]) -> Arc<Mutex<u64>> {

Original file line number	Diff line number	Diff line change
`@@ -182,7 +182,7 @@ impl KeysInterface for KeyProvider {`
`182`	`182`	`(0, 0),`
`183`	`183`	`);`
`184`	`184`	`let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);`
`185`		`- EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)`
	`185`	`+ EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, false)`
`186`	`186`	`}`
`187`	`187`
`188`	`188`	`fn get_secure_random_bytes(&self) -> [u8; 32] {`
`@@ -202,6 +202,7 @@ impl KeysInterface for KeyProvider {`
`202`	`202`	`inner,`
`203`	`203`	`last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),`
`204`	`204`	`revoked_commitment,`
	`205`	`+ err_on_sign_revoked_holder_tx: false,`
`205`	`206`	`})`
`206`	`207`	`}`
`207`	`208`	`}`
Original file line number	Diff line number	Diff line change
`@@ -36,22 +36,25 @@ pub struct EnforcingChannelKeys {`
`36`	`36`	`pub inner: InMemoryChannelKeys,`
`37`	`37`	`pub last_commitment_number: Arc<Mutex<Option<u64>>>,`
`38`	`38`	`pub revoked_commitment: Arc<Mutex<u64>>,`
	`39`	`+ pub err_on_sign_revoked_holder_tx: bool,`
`39`	`40`	`}`
`40`	`41`
`41`	`42`	`impl EnforcingChannelKeys {`
`42`	`43`	`pub fn new(inner: InMemoryChannelKeys) -> Self {`
`43`	`44`	`Self {`
`44`	`45`	`inner,`
`45`	`46`	`last_commitment_number: Arc::new(Mutex::new(None)),`
`46`		`- revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER))`
	`47`	`+ revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER)),`
	`48`	`+ err_on_sign_revoked_holder_tx: false`
`47`	`49`	`}`
`48`	`50`	`}`
`49`	`51`
`50`		`- pub fn new_with_revoked(inner: InMemoryChannelKeys, revoked_commitment: Arc<Mutex<u64>>) -> Self {`
	`52`	`+ pub fn new_with_revoked(inner: InMemoryChannelKeys, revoked_commitment: Arc<Mutex<u64>>, err_on_sign_revoked_holder_tx: bool) -> Self {`
`51`	`53`	`Self {`
`52`	`54`	`inner,`
`53`	`55`	`last_commitment_number: Arc::new(Mutex::new(None)),`
`54`		`- revoked_commitment`
	`56`	`+ revoked_commitment,`
	`57`	`+ err_on_sign_revoked_holder_tx`
`55`	`58`	`}`
`56`	`59`	`}`
`57`	`60`	`}`
`@@ -100,9 +103,12 @@ impl ChannelKeys for EnforcingChannelKeys {`
`100`	`103`	`let commitment_number = trusted_tx.commitment_number();`
`101`	`104`	`println!("XXX sign {} for {}", commitment_number, self.inner.commitment_seed[0]);`
`102`	`105`	`if revoked - 1 != commitment_number && revoked - 2 != commitment_number {`
`103`		`- println!("can only sign the next two unrevoked commitment numbers, revoked={} vs requested={} for {}",`
`104`		`- *revoked, commitment_number, self.inner.commitment_seed[0]);`
`105`		`- return Err(());`
	`106`	`+ if self.err_on_sign_revoked_holder_tx {`
	`107`	`+ return Err(());`
	`108`	`+ } else {`
	`109`	`+ panic!("can only sign the next two unrevoked commitment numbers, revoked={} vs requested={} for {}",`
	`110`	`+ *revoked, commitment_number, self.inner.commitment_seed[0])`
	`111`	`+ }`
`106`	`112`	`}`
`107`	`113`
`108`	`114`	`for (this_htlc, sig) in trusted_tx.htlcs().iter().zip(&commitment_tx.counterparty_htlc_sigs) {`
`@@ -165,6 +171,7 @@ impl Readable for EnforcingChannelKeys {`
`165`	`171`	`inner,`
`166`	`172`	`last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),`
`167`	`173`	`revoked_commitment: Arc::new(Mutex::new(INITIAL_REVOKED_COMMITMENT_NUMBER)),`
	`174`	`+ err_on_sign_revoked_holder_tx: false,`
`168`	`175`	`})`
`169`	`176`	`}`
`170`	`177`	`}`
Original file line number	Diff line number	Diff line change
`@@ -422,6 +422,7 @@ pub struct TestKeysInterface {`
`422`	`422`	`backing: keysinterface::KeysManager,`
`423`	`423`	`pub override_session_priv: Mutex<Option<[u8; 32]>>,`
`424`	`424`	`pub override_channel_id_priv: Mutex<Option<[u8; 32]>>,`
	`425`	`+ pub err_on_sign_revoked_holder_tx: bool,`
`425`	`426`	`revoked_commitments: Mutex<HashMap<[u8;32], Arc<Mutex<u64>>>>,`
`426`	`427`	`}`
`427`	`428`
`@@ -434,7 +435,7 @@ impl keysinterface::KeysInterface for TestKeysInterface {`
`434`	`435`	`fn get_channel_keys(&self, inbound: bool, channel_value_satoshis: u64) -> EnforcingChannelKeys {`
`435`	`436`	`let keys = self.backing.get_channel_keys(inbound, channel_value_satoshis);`
`436`	`437`	`let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);`
`437`		`- EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)`
	`438`	`+ EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, self.err_on_sign_revoked_holder_tx)`
`438`	`439`	`}`
`439`	`440`
`440`	`441`	`fn get_secure_random_bytes(&self) -> [u8; 32] {`
`@@ -464,6 +465,7 @@ impl keysinterface::KeysInterface for TestKeysInterface {`
`464`	`465`	`inner,`
`465`	`466`	`last_commitment_number: Arc::new(Mutex::new(last_commitment_number)),`
`466`	`467`	`revoked_commitment,`
	`468`	`+ err_on_sign_revoked_holder_tx: self.err_on_sign_revoked_holder_tx,`
`467`	`469`	`})`
`468`	`470`	`}`
`469`	`471`	`}`
`@@ -476,13 +478,14 @@ impl TestKeysInterface {`
`476`	`478`	`backing: keysinterface::KeysManager::new(seed, network, now.as_secs(), now.subsec_nanos()),`
`477`	`479`	`override_session_priv: Mutex::new(None),`
`478`	`480`	`override_channel_id_priv: Mutex::new(None),`
	`481`	`+ err_on_sign_revoked_holder_tx: false,`
`479`	`482`	`revoked_commitments: Mutex::new(HashMap::new()),`
`480`	`483`	`}`
`481`	`484`	`}`
`482`	`485`	`pub fn derive_channel_keys(&self, channel_value_satoshis: u64, user_id_1: u64, user_id_2: u64) -> EnforcingChannelKeys {`
`483`	`486`	`let keys = self.backing.derive_channel_keys(channel_value_satoshis, user_id_1, user_id_2);`
`484`	`487`	`let revoked_commitment = self.make_revoked_commitment_cell(keys.commitment_seed);`
`485`		`- EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment)`
	`488`	`+ EnforcingChannelKeys::new_with_revoked(keys, revoked_commitment, self.err_on_sign_revoked_holder_tx)`
`486`	`489`	`}`
`487`	`490`
`488`	`491`	`fn make_revoked_commitment_cell(&self, commitment_seed: [u8; 32]) -> Arc<Mutex<u64>> {`