Move ChannelManager::monitor_updated to a MonitorEvent

In the next commit we'll need ChainMonitor to "see" when a monitor
persistence completes, which means `monitor_updated` needs to move
to `ChainMonitor`. The simplest way to then communicate that
information to `ChannelManager` is via `MonitorEvet`s, which seems
to line up ok, even if they're now constructed by multiple
different places.

Author: TheBlueMatt

lightning/src/chain/chainmonitor.rs

@@ -29,7 +29,7 @@ use bitcoin::hash_types::Txid;
 use chain;
 use chain::{ChannelMonitorUpdateErr, Filter, WatchedOutput};
 use chain::chaininterface::{BroadcasterInterface, FeeEstimator};
-use chain::channelmonitor::{ChannelMonitor, ChannelMonitorUpdate, Balance, MonitorEvent, TransactionOutputs};
+use chain::channelmonitor::{ChannelMonitor, ChannelMonitorUpdate, Balance, MonitorEvent, MonitorUpdated, TransactionOutputs};
 use chain::transaction::{OutPoint, TransactionData};
 use chain::keysinterface::Sign;
 use util::logger::Logger;
@@ -38,7 +38,7 @@ use util::events::EventHandler;
 use ln::channelmanager::ChannelDetails;
 
 use prelude::*;
-use sync::{RwLock, RwLockReadGuard};
+use sync::{RwLock, RwLockReadGuard, Mutex};
 use core::ops::Deref;
 
 /// `Persist` defines behavior for persisting channel monitors: this could mean
@@ -134,6 +134,7 @@ pub struct ChainMonitor<ChannelSigner: Sign, C: Deref, T: Deref, F: Deref, L: De
 	logger: L,
 	fee_estimator: F,
 	persister: P,
+	user_provided_events: Mutex<Vec<MonitorEvent>>,
 }
 
 impl<ChannelSigner: Sign, C: Deref, T: Deref, F: Deref, L: Deref, P: Deref> ChainMonitor<ChannelSigner, C, T, F, L, P>
@@ -207,6 +208,7 @@ where C::Target: chain::Filter,
 			logger,
 			fee_estimator: feeest,
 			persister,
+			user_provided_events: Mutex::new(Vec::new()),
 		}
 	}
 
@@ -257,6 +259,29 @@ where C::Target: chain::Filter,
 		self.monitors.write().unwrap().remove(funding_txo).unwrap().monitor
 	}
 
+	/// Indicates the persistence of a [`ChannelMonitor`] has completed after
+	/// [`ChannelMonitorUpdateErr::TemporaryFailure`] was returned from an update operation.
+	///
+	/// All ChannelMonitor updates up to and including highest_applied_update_id must have been
+	/// fully committed in every copy of the given channels' ChannelMonitors.
+	///
+	/// Note that there is no effect to calling with a highest_applied_update_id other than the
+	/// current latest ChannelMonitorUpdate and one call to this function after multiple
+	/// ChannelMonitorUpdateErr::TemporaryFailures is fine. The highest_applied_update_id field
+	/// exists largely only to prevent races between this and concurrent update_monitor calls.
+	///
+	/// Thus, the anticipated use is, at a high level:
+	///  1) This [`ChainMonitor`] calls [`Persist::update_persisted_channel`] which stores the
+	///     update to disk and begins updating any remote (e.g. watchtower/backup) copies,
+	///     returning [`ChannelMonitorUpdateErr::TemporaryFailure`],
+	///  2) once all remote copies are updated, you call this function with the update_id that
+	///     completed, and once it is the latest the Channel will be re-enabled.
+	pub fn channel_monitor_updated(&self, funding_txo: OutPoint, highest_applied_update_id: u64) {
+		self.user_provided_events.lock().unwrap().push(MonitorEvent::UpdateCompleted(MonitorUpdated {
+			funding_txo, monitor_update_id: highest_applied_update_id
+		}));
+	}
+
 	#[cfg(any(test, feature = "fuzztarget", feature = "_test_utils"))]
 	pub fn get_and_clear_pending_events(&self) -> Vec<events::Event> {
 		use util::events::EventsProvider;
@@ -426,7 +451,7 @@ where C::Target: chain::Filter,
 	}
 
 	fn release_pending_monitor_events(&self) -> Vec<MonitorEvent> {
-		let mut pending_monitor_events = Vec::new();
+		let mut pending_monitor_events = self.user_provided_events.lock().unwrap().split_off(0);
 		for monitor_state in self.monitors.read().unwrap().values() {
 			pending_monitor_events.append(&mut monitor_state.monitor.get_and_clear_pending_monitor_events());
 		}

lightning/src/chain/channelmonitor.rs

@@ -123,6 +123,21 @@ impl Readable for ChannelMonitorUpdate {
 #[derive(Clone, Debug)]
 pub struct MonitorUpdateError(pub &'static str);
 
+/// A [`MonitorEvent`] which indicates a [`ChannelMonitor`] update has completed. See
+/// [`ChannelMonitorUpdateErr::TemporaryFailure`] for more information on how this is used.
+#[derive(Clone, Debug, PartialEq)]
+pub struct MonitorUpdated {
+	/// The funding oupoint of the [`ChannelMonitor`] which was updated
+	pub funding_txo: OutPoint,
+	/// The Update ID of the update which was applied from [`ChannelMonitorUpdate::update_id`] or
+	/// [`ChannelMonitor::get_latest_update_id`].
+	pub monitor_update_id: u64,
+}
+impl_writeable_tlv_based!(MonitorUpdated, {
+	(0, funding_txo, required),
+	(2, monitor_update_id, required),
+});
+
 /// An event to be processed by the ChannelManager.
 #[derive(Clone, PartialEq)]
 pub enum MonitorEvent {
@@ -131,9 +146,15 @@ pub enum MonitorEvent {
 
 	/// A monitor event that the Channel's commitment transaction was confirmed.
 	CommitmentTxConfirmed(OutPoint),
+
+	/// Indicates a [`ChannelMonitor`] update has completed. See
+	/// [`ChannelMonitorUpdateErr::TemporaryFailure`] for more information on how this is used.
+	UpdateCompleted(MonitorUpdated),
 }
 impl_writeable_tlv_based_enum_upgradable!(MonitorEvent, ;
 	(0, HTLCEvent),
+	// Note that UpdateCompleted is currently never serialized to disk as it is generated only in ChainMonitor
+	(1, UpdateCompleted),
 	(2, CommitmentTxConfirmed),
 );
 
@@ -854,14 +875,19 @@ impl<Signer: Sign> Writeable for ChannelMonitorImpl<Signer> {
 			writer.write_all(&payment_preimage.0[..])?;
 		}
 
-		writer.write_all(&byte_utils::be64_to_array(self.pending_monitor_events.len() as u64))?;
+		writer.write_all(&(self.pending_monitor_events.iter().filter(|ev| match ev {
+			MonitorEvent::HTLCEvent(_) => true,
+			MonitorEvent::CommitmentTxConfirmed(_) => true,
+			_ => false,
+		}).count() as u64).to_be_bytes())?;
 		for event in self.pending_monitor_events.iter() {
 			match event {
 				MonitorEvent::HTLCEvent(upd) => {
 					0u8.write(writer)?;
 					upd.write(writer)?;
 				},
-				MonitorEvent::CommitmentTxConfirmed(_) => 1u8.write(writer)?
+				MonitorEvent::CommitmentTxConfirmed(_) => 1u8.write(writer)?,
+				_ => {}, // Covered in the TLV writes below
 			}
 		}
 

lightning/src/ln/chanmon_update_fail_tests.rs

@@ -185,7 +185,7 @@ fn do_test_simple_monitor_temporary_update_fail(disconnect: bool) {
 
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[0], 0);
 
 	let mut events_2 = nodes[0].node.get_and_clear_pending_msg_events();
@@ -342,7 +342,7 @@ fn do_test_monitor_temporary_update_fail(disconnect_count: usize) {
 	// Now fix monitor updating...
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[0], 0);
 
 	macro_rules! disconnect_reconnect_peers { () => { {
@@ -642,7 +642,7 @@ fn test_monitor_update_fail_cs() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 	let responses = nodes[1].node.get_and_clear_pending_msg_events();
 	assert_eq!(responses.len(), 2);
@@ -676,7 +676,7 @@ fn test_monitor_update_fail_cs() {
 
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[0], 0);
 
 	let final_raa = get_event_msg!(nodes[0], MessageSendEvent::SendRevokeAndACK, nodes[1].node.get_our_node_id());
@@ -739,7 +739,7 @@ fn test_monitor_update_fail_no_rebroadcast() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	assert!(nodes[1].node.get_and_clear_pending_msg_events().is_empty());
 	check_added_monitors!(nodes[1], 0);
 	expect_pending_htlcs_forwardable!(nodes[1]);
@@ -805,7 +805,7 @@ fn test_monitor_update_raa_while_paused() {
 
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[0], 0);
 
 	let as_update_raa = get_revoke_commit_msgs!(nodes[0], nodes[1].node.get_our_node_id());
@@ -938,7 +938,7 @@ fn do_test_monitor_update_fail_raa(test_ignore_second_cs: bool) {
 	// update_add update.
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_2.2).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 	expect_pending_htlcs_forwardable!(nodes[1]);
 	check_added_monitors!(nodes[1], 1);
@@ -1177,7 +1177,7 @@ fn test_monitor_update_fail_reestablish() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_1.2).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	updates = get_htlc_update_msgs!(nodes[1], nodes[0].node.get_our_node_id());
@@ -1263,7 +1263,7 @@ fn raa_no_response_awaiting_raa_state() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	// nodes[1] should be AwaitingRAA here!
 	check_added_monitors!(nodes[1], 0);
 	let bs_responses = get_revoke_commit_msgs!(nodes[1], nodes[0].node.get_our_node_id());
@@ -1385,7 +1385,7 @@ fn claim_while_disconnected_monitor_update_fail() {
 	// receiving the commitment update from A, and the resulting commitment dances.
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	let bs_msgs = nodes[1].node.get_and_clear_pending_msg_events();
@@ -1496,7 +1496,7 @@ fn monitor_failed_no_reestablish_response() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 	let bs_responses = get_revoke_commit_msgs!(nodes[1], nodes[0].node.get_our_node_id());
 
@@ -1594,7 +1594,7 @@ fn first_message_on_recv_ordering() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	expect_pending_htlcs_forwardable!(nodes[1]);
@@ -1682,7 +1682,7 @@ fn test_monitor_update_fail_claim() {
 
 	// Now restore monitor updating on the 0<->1 channel and claim the funds on B.
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_1.2).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	let bs_fulfill_update = get_htlc_update_msgs!(nodes[1], nodes[0].node.get_our_node_id());
@@ -1780,7 +1780,7 @@ fn test_monitor_update_on_pending_forwards() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_1.2).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	let bs_updates = get_htlc_update_msgs!(nodes[1], nodes[0].node.get_our_node_id());
@@ -1844,7 +1844,7 @@ fn monitor_update_claim_fail_no_response() {
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 	assert!(nodes[1].node.get_and_clear_pending_msg_events().is_empty());
 
@@ -1902,7 +1902,7 @@ fn do_during_funding_monitor_fail(confirm_a_first: bool, restore_b_before_conf:
 	assert!(nodes[0].node.get_and_clear_pending_events().is_empty());
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[0], 0);
 
 	let events = nodes[0].node.get_and_clear_pending_events();
@@ -1934,7 +1934,7 @@ fn do_during_funding_monitor_fail(confirm_a_first: bool, restore_b_before_conf:
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	check_added_monitors!(nodes[1], 0);
 
 	let (channel_id, (announcement, as_update, bs_update)) = if !confirm_a_first {
@@ -2024,7 +2024,7 @@ fn test_path_paused_mpp() {
 	// And check that, after we successfully update the monitor for chan_2 we can pass the second
 	// HTLC along to nodes[3] and claim the whole payment back to nodes[0].
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_2_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	let mut events = nodes[0].node.get_and_clear_pending_msg_events();
 	assert_eq!(events.len(), 1);
 	pass_along_path(&nodes[0], &[&nodes[2], &nodes[3]], 200_000, payment_hash.clone(), Some(payment_secret), events.pop().unwrap(), true, None);
@@ -2367,7 +2367,7 @@ fn do_channel_holding_cell_serialize(disconnect: bool, reload_a: bool) {
 	// not occur prior to #756).
 	chanmon_cfgs[0].persister.set_update_ret(Ok(()));
 	let (funding_txo, mon_id) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&chan_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&funding_txo, mon_id);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(funding_txo, mon_id);
 
 	// New outbound messages should be generated immediately upon a call to
 	// get_and_clear_pending_msg_events (but not before).
@@ -2567,14 +2567,14 @@ fn test_temporary_error_during_shutdown() {
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 
 	let (outpoint, latest_update) = nodes[0].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[0].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[0].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 	nodes[1].node.handle_closing_signed(&nodes[0].node.get_our_node_id(), &get_event_msg!(nodes[0], MessageSendEvent::SendClosingSigned, nodes[1].node.get_our_node_id()));
 
 	assert!(nodes[1].node.get_and_clear_pending_msg_events().is_empty());
 
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 	let (outpoint, latest_update) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&outpoint, latest_update);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(outpoint, latest_update);
 
 	nodes[0].node.handle_closing_signed(&nodes[1].node.get_our_node_id(), &get_event_msg!(nodes[1], MessageSendEvent::SendClosingSigned, nodes[0].node.get_our_node_id()));
 	let (_, closing_signed_a) = get_closing_signed_broadcast!(nodes[0].node, nodes[1].node.get_our_node_id());
@@ -2663,10 +2663,10 @@ fn double_temp_error() {
 	chanmon_cfgs[1].persister.set_update_ret(Ok(()));
 
 	let (_, latest_update_2) = nodes[1].chain_monitor.latest_monitor_update_id.lock().unwrap().get(&channel_id).unwrap().clone();
-	nodes[1].node.channel_monitor_updated(&funding_tx, latest_update_1);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(funding_tx, latest_update_1);
 	assert!(nodes[1].node.get_and_clear_pending_msg_events().is_empty());
 	check_added_monitors!(nodes[1], 0);
-	nodes[1].node.channel_monitor_updated(&funding_tx, latest_update_2);
+	nodes[1].chain_monitor.chain_monitor.channel_monitor_updated(funding_tx, latest_update_2);
 
 	// Complete the first HTLC.
 	let events = nodes[1].node.get_and_clear_pending_msg_events();