Merge pull request #1470 from lightninglabs/send-validate-proof-courier-connection

Add preliminary proof courier connection check to ChainPorter

Author: ffranr

cmd/commands/assets.go

@@ -38,31 +38,32 @@ var assetsCommands = []cli.Command{
 }
 
 var (
-	assetTypeName                = "type"
-	assetTagName                 = "name"
-	assetSupplyName              = "supply"
-	assetMetaBytesName           = "meta_bytes"
-	assetMetaFilePathName        = "meta_file_path"
-	assetMetaTypeName            = "meta_type"
-	assetDecimalDisplayName      = "decimal_display"
-	assetNewGroupedAssetName     = "new_grouped_asset"
-	assetGroupedAssetName        = "grouped_asset"
-	assetShowWitnessName         = "show_witness"
-	assetShowSpentName           = "show_spent"
-	assetShowLeasedName          = "show_leased"
-	assetIncludeLeasedName       = "include_leased"
-	assetShowUnconfMintsName     = "show_unconfirmed_mints"
-	assetGroupKeyName            = "group_key"
-	assetGroupAnchorName         = "group_anchor"
-	anchorTxidName               = "anchor_txid"
-	batchKeyName                 = "batch_key"
-	groupByGroupName             = "by_group"
-	assetIDName                  = "asset_id"
-	shortResponseName            = "short"
-	universeCommitmentsName      = "universe_commitments"
-	feeRateName                  = "sat_per_vbyte"
-	assetAmountName              = "amount"
-	burnOverrideConfirmationName = "override_confirmation_destroy_assets"
+	assetTypeName                 = "type"
+	assetTagName                  = "name"
+	assetSupplyName               = "supply"
+	assetMetaBytesName            = "meta_bytes"
+	assetMetaFilePathName         = "meta_file_path"
+	assetMetaTypeName             = "meta_type"
+	assetDecimalDisplayName       = "decimal_display"
+	assetNewGroupedAssetName      = "new_grouped_asset"
+	assetGroupedAssetName         = "grouped_asset"
+	assetShowWitnessName          = "show_witness"
+	assetShowSpentName            = "show_spent"
+	assetShowLeasedName           = "show_leased"
+	assetIncludeLeasedName        = "include_leased"
+	assetShowUnconfMintsName      = "show_unconfirmed_mints"
+	assetGroupKeyName             = "group_key"
+	assetGroupAnchorName          = "group_anchor"
+	anchorTxidName                = "anchor_txid"
+	batchKeyName                  = "batch_key"
+	groupByGroupName              = "by_group"
+	assetIDName                   = "asset_id"
+	shortResponseName             = "short"
+	universeCommitmentsName       = "universe_commitments"
+	feeRateName                   = "sat_per_vbyte"
+	skipProofCourierPingCheckName = "skip-proof-courier-ping-check"
+	assetAmountName               = "amount"
+	burnOverrideConfirmationName  = "override_confirmation_destroy_assets"
 )
 
 var mintAssetCommand = cli.Command{
@@ -824,6 +825,10 @@ var sendAssetsCommand = cli.Command{
 			Usage: "if set, the fee rate in sat/vB to use for " +
 				"the anchor transaction",
 		},
+		cli.BoolFlag{
+			Name:  skipProofCourierPingCheckName,
+			Usage: "if set, skip the proof courier ping check",
+		},
 		// TODO(roasbeef): add arg for file name to write sender proof
 		// blob
 	},
@@ -848,6 +853,9 @@ func sendAssets(ctx *cli.Context) error {
 	resp, err := client.SendAsset(ctxc, &taprpc.SendAssetRequest{
 		TapAddrs: addrs,
 		FeeRate:  feeRate,
+		SkipProofCourierPingCheck: ctx.Bool(
+			skipProofCourierPingCheckName,
+		),
 	})
 	if err != nil {
 		return fmt.Errorf("unable to send assets: %w", err)

itest/addrs_test.go

@@ -912,8 +912,9 @@ func transferProofNormalExportUniInsert(t *harnessTest, src, dst *tapdHarness,
 // sendOptions is a struct that holds a SendAssetRequest and an
 // optional error string that should be tested against.
 type sendOptions struct {
-	sendAssetRequest taprpc.SendAssetRequest
-	errText          string
+	sendAssetRequest          taprpc.SendAssetRequest
+	skipProofCourierPingCheck bool
+	errText                   string
 }
 
 // sendOption is a functional option for configuring the sendAssets call.
@@ -931,6 +932,14 @@ func withReceiverAddresses(addrs ...*taprpc.Addr) sendOption {
 	}
 }
 
+// withSkipProofCourierPingCheck is an option to skip the proof courier ping
+// check. This is useful for testing purposes.
+func withSkipProofCourierPingCheck() sendOption {
+	return func(options *sendOptions) {
+		options.skipProofCourierPingCheck = true
+	}
+}
+
 // withFeeRate is an option to specify the fee rate for the send.
 func withFeeRate(feeRate uint32) sendOption {
 	return func(options *sendOptions) {
@@ -999,6 +1008,11 @@ func sendAsset(t *harnessTest, sender *tapdHarness,
 		},
 	}
 
+	// Apply the skip proof courier ping check option if set.
+	if options.skipProofCourierPingCheck {
+		options.sendAssetRequest.SkipProofCourierPingCheck = true
+	}
+
 	// Kick off the send asset request.
 	resp, err := sender.SendAsset(ctxt, &options.sendAssetRequest)
 	if options.errText != "" {
@@ -1015,7 +1029,7 @@ func sendAsset(t *harnessTest, sender *tapdHarness,
 	var targetScriptKey []byte = nil
 	AssertSendEvents(
 		t.t, targetScriptKey, sub,
-		tapfreighter.SendStateVirtualCommitmentSelect,
+		tapfreighter.SendStateStartHandleAddrParcel,
 		tapfreighter.SendStateBroadcast,
 	)
 

itest/assertions.go

@@ -1010,7 +1010,7 @@ func AssertSendEvents(t *testing.T, targetScriptKey []byte,
 
 	success := make(chan struct{})
 	timeout := time.After(defaultWaitTimeout)
-	startStatus := from
+	expectedStatus := from
 
 	// By default, if the target script key is not given we will accept all
 	// send events.
@@ -1056,7 +1056,7 @@ func AssertSendEvents(t *testing.T, targetScriptKey []byte,
 		require.Emptyf(
 			t, event.Error, "send event error: %x", event,
 		)
-		require.Equal(t, startStatus.String(), event.SendState)
+		require.Equal(t, expectedStatus.String(), event.SendState)
 
 		// Fully close the stream once we definitely no longer need the
 		// stream.
@@ -1069,7 +1069,7 @@ func AssertSendEvents(t *testing.T, targetScriptKey []byte,
 			return
 		}
 
-		startStatus++
+		expectedStatus++
 	}
 }
 

itest/send_test.go

@@ -738,7 +738,13 @@ func testReattemptFailedSendHashmailCourier(t *harnessTest) {
 	require.NoError(t.t, t.tapd.stop(false))
 
 	// Send asset and then mine to confirm the associated on-chain tx.
-	sendAssetsToAddr(t, sendTapd, recvAddr)
+	//
+	// We skip the proof courier ping check so that we can ensure that proof
+	// transfer is reattempted.
+	sendAsset(
+		t, sendTapd, withReceiverAddresses(recvAddr),
+		withSkipProofCourierPingCheck(),
+	)
 	_ = MineBlocks(t.t, t.lndHarness.Miner().Client, 1, 1)
 
 	// Define a target event selector to match the backoff wait
@@ -842,7 +848,10 @@ func testReattemptProofTransferOnTapdRestart(t *harnessTest) {
 	// Start asset transfer and then mine to confirm the associated on-chain
 	// tx. The on-chain tx should be mined successfully, but we expect the
 	// asset proof transfer to be unsuccessful.
-	sendResp, _ := sendAssetsToAddr(t, sendTapd, recvAddr)
+	sendResp, _ := sendAsset(
+		t, sendTapd, withReceiverAddresses(recvAddr),
+		withSkipProofCourierPingCheck(),
+	)
 	MineBlocks(t.t, t.lndHarness.Miner().Client, 1, 1)
 
 	// Define a target event selector to match the backoff wait
@@ -997,7 +1006,13 @@ func testReattemptFailedSendUniCourier(t *harnessTest) {
 	require.NoError(t.t, t.proofCourier.Stop())
 
 	// Send asset and then mine to confirm the associated on-chain tx.
-	sendAssetsToAddr(t, sendTapd, recvAddr)
+	//
+	// We skip the proof courier ping check so that we can ensure that proof
+	// transfer is reattempted.
+	sendAsset(
+		t, sendTapd, withReceiverAddresses(recvAddr),
+		withSkipProofCourierPingCheck(),
+	)
 	_ = MineBlocks(t.t, t.lndHarness.Miner().Client, 1, 1)
 
 	// Define a target event selector to match the backoff wait
@@ -1009,7 +1024,7 @@ func testReattemptFailedSendUniCourier(t *harnessTest) {
 	// Expected number of events is one less than the number of
 	// tries because the first attempt does not count as a backoff
 	// event.
-	nodeBackoffCfg := sendTapd.clientCfg.HashMailCourier.BackoffCfg
+	nodeBackoffCfg := sendTapd.clientCfg.UniverseRpcCourier.BackoffCfg
 	expectedEventCount := nodeBackoffCfg.NumTries - 1
 
 	// Context timeout scales with expected number of events.
@@ -1104,7 +1119,10 @@ func testSpendChangeOutputWhenProofTransferFail(t *harnessTest) {
 	// Start asset transfer and then mine to confirm the associated on-chain
 	// tx. The on-chain tx should be mined successfully, but we expect the
 	// asset proof transfer to be unsuccessful.
-	sendAssetsToAddr(t, sendTapd, recvAddr)
+	sendAsset(
+		t, sendTapd, withReceiverAddresses(recvAddr),
+		withSkipProofCourierPingCheck(),
+	)
 	MineBlocks(t.t, t.lndHarness.Miner().Client, 1, 1)
 
 	// There may be a delay between mining the anchoring transaction and
@@ -1178,7 +1196,10 @@ func testSpendChangeOutputWhenProofTransferFail(t *harnessTest) {
 	require.NoError(t.t, err)
 	AssertAddrCreated(t.t, recvTapd, rpcAssets[0], recvAddr)
 
-	sendAssetsToAddr(t, sendTapd, recvAddr)
+	sendAsset(
+		t, sendTapd, withReceiverAddresses(recvAddr),
+		withSkipProofCourierPingCheck(),
+	)
 	MineBlocks(t.t, t.lndHarness.Miner().Client, 1, 1)
 
 	// There may be a delay between mining the anchoring transaction and

rpcserver.go

@@ -3375,7 +3375,10 @@ func (r *rpcServer) SendAsset(ctx context.Context,
 	}
 
 	resp, err := r.cfg.ChainPorter.RequestShipment(
-		tapfreighter.NewAddressParcel(feeRate, req.Label, tapAddrs...),
+		tapfreighter.NewAddressParcel(
+			feeRate, req.Label, req.SkipProofCourierPingCheck,
+			tapAddrs...,
+		),
 	)
 	if err != nil {
 		return nil, err

tapfreighter/chain_porter.go

@@ -5,6 +5,7 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"net/url"
 	"strings"
 	"sync"
 	"time"
@@ -1093,13 +1094,138 @@ func (p *ChainPorter) importLocalAddresses(ctx context.Context,
 	return nil
 }
 
+// pingCourier attempts to establish a connection to the given proof courier
+// address. If the connection is successful, the courier is closed and the
+// function returns nil. If the connection fails, an error is returned.
+// This function is blocking.
+func (p *ChainPorter) pingCourier(ctx context.Context, addr url.URL) error {
+	log.Debugf("Attempting to ping proof courier (addr=%s)", addr.String())
+
+	// Connect to the proof courier service with an eager (non-lazy)
+	// connection attempt, blocking until the connection either succeeds,
+	// fails, or times out.
+	courier, err := p.cfg.ProofCourierDispatcher.NewCourier(
+		ctx, &addr, false,
+	)
+	if err != nil {
+		return fmt.Errorf("unable to initiate proof courier "+
+			"service handle (addr=%s): %w", addr.String(), err)
+	}
+
+	return courier.Close()
+}
+
+// pingProofCouriers performs a blocking connectivity check for each applicable
+// proof courier.
+func (p *ChainPorter) pingProofCouriers(proofCourierAddrs []url.URL) error {
+	// Construct minimal set of unique proof couriers to ping.
+	var couriers []url.URL
+
+	for idx := range proofCourierAddrs {
+		addr := proofCourierAddrs[idx]
+
+		// Check if the address is a duplicate (already in the list of
+		// couriers).
+		for i := range couriers {
+			if addr.String() == couriers[i].String() {
+				// Skip duplicate addresses.
+				continue
+			}
+		}
+
+		couriers = append(couriers, addr)
+	}
+
+	// Ping each proof courier in parallel to ensure they are reachable.
+	ctx, cancel := p.WithCtxQuit()
+	defer cancel()
+	instanceErrors, err := fn.ParSliceErrCollect(
+		ctx, couriers, p.pingCourier,
+	)
+	if err != nil {
+		return fmt.Errorf("failed execute proof courier(s) parallel "+
+			"ping: %w", err)
+	}
+
+	// If any errors occurred while pinging proof couriers, log them all
+	// here.
+	for idx := range instanceErrors {
+		addr := couriers[idx]
+		instanceErr := instanceErrors[idx]
+
+		log.Errorf("Failed to pinging proof courier (addr=%s): %v",
+			addr.String(), instanceErr)
+	}
+
+	// If any errors occurred while pinging proof couriers, return an error.
+	if len(instanceErrors) > 0 {
+		return fmt.Errorf("failed to ping proof courier(s) "+
+			"(error_count=%d)", len(instanceErrors))
+	}
+
+	return nil
+}
+
+// prelimCheckAddrParcel performs preliminary validation on the given address
+// parcel. These early checks run before any coin locking or transaction
+// broadcasting occurs.
+func (p *ChainPorter) prelimCheckAddrParcel(addrParcel AddressParcel) error {
+	// Currently, the only preliminary check is to ensure that the proof
+	// couriers are reachable. If the skip flag is set, we skip this
+	// check and exit early.
+	if addrParcel.skipProofCourierPingCheck {
+		log.Debugf("Flag skipProofCourierPingCheck activated. " +
+			"Skipping check. ")
+		return nil
+	}
+
+	// Ping the proof couriers to verify that they are reachable.
+	// This early check ensures a proof can be reliably delivered
+	// to the counterparty before broadcasting a transaction or
+	// locking local funds.
+	var proofCourierAddrs []url.URL
+	for idx := range addrParcel.destAddrs {
+		tapAddr := addrParcel.destAddrs[idx]
+
+		proofCourierAddrs = append(
+			proofCourierAddrs, tapAddr.ProofCourierAddr,
+		)
+	}
+
+	err := p.pingProofCouriers(proofCourierAddrs)
+	if err != nil {
+		return fmt.Errorf("failed proof courier(s) connection "+
+			"check: %w", err)
+	}
+
+	return nil
+}
+
 // stateStep attempts to step through the state machine to complete a Taproot
 // Asset transfer.
 func (p *ChainPorter) stateStep(currentPkg sendPackage) (*sendPackage, error) {
 	switch currentPkg.SendState {
-	// At this point we have the initial package information populated, so
-	// we'll perform coin selection to see if the send request is even
-	// possible at all.
+	// The initial state entered when the state machine begins processing a
+	// new address parcel. In this state, basic validation is performed,
+	// such as verifying connectivity to any required proof courier service.
+	case SendStateStartHandleAddrParcel:
+		// Ensure that the parcel is a valid address parcel.
+		addrParcel, ok := currentPkg.Parcel.(*AddressParcel)
+		if !ok {
+			return nil, fmt.Errorf("unable to cast parcel to " +
+				"address parcel")
+		}
+
+		err := p.prelimCheckAddrParcel(*addrParcel)
+		if err != nil {
+			return nil, fmt.Errorf("failed to perform prelim "+
+				"checks on address parcel: %w", err)
+		}
+
+		currentPkg.SendState = SendStateVirtualCommitmentSelect
+		return &currentPkg, nil
+
+	// Perform coin selection for the address parcel.
 	case SendStateVirtualCommitmentSelect:
 		ctx, cancel := p.WithCtxQuitNoTimeout()
 		defer cancel()