Add min feerate checks

[dunxen]

Fixes #1016

[ariard]

ACK ba8d54e

[tnull]

Mh, do we really want to assert and panic here if something goes wrong?
Couldn't this just default to the floor, i.e., updated_feerate = max(updated_feerate, FEERATE_FLOOR_SATS_PER_KW)?

Just raising the question, but maybe panicking out is exactly what we want here?

[dunxen]

Hmm yeah I get what you mean, but if we're getting strange feerates from our estimator then maybe we'd prefer to panic instead of silently defaulting? Although, I do think we need some sort of panic message at the least which is just an extra arg here. 🤷‍♂️

Would also be keen to know if this is what we normally want with these kinds of things in LDK.

[ariard]

I add the same thought if we should assert or panic. Not sure if we have yet consistent defensive programming recommendations.

[TheBlueMatt]

I'm not a huge fan of asserting on these, I agree its nice to check the users' response, but if we're gonna add code around all the fee estimation fetches, we should just do the cmp::max ourself IMO.

[dunxen]

if we're gonna add code around all the fee estimation fetches, we should just do the cmp::max ourself IMO.

Cool, that sounds good. Happy to do this. Do we then just get rid of the trait comments about bothering with max()?

[TheBlueMatt]

I think we should leave it on the trait, or at least mention that we'll always use at least 253.

[ariard]

I'm not a huge fan of asserting on these, I agree its nice to check the users' response, but if we're gonna add code around all the fee estimation fetches, we should just do the cmp::max ourself IMO.

Personally, I would prefer if we still wrap that check around FeeEstimator, as I presume trait implementators might be lazy, belt-and-suspenders if cheap and straightforward are nice.

[TheBlueMatt]

Personally, I would prefer if we still wrap that check around FeeEstimator, as I presume trait implementators might be lazy, belt-and-suspenders if cheap and straightforward are nice.

I'm not sure I undersood - are you agreeing that you'd rather see a wrapper of the FeeEstimator that does the max for us?

[ariard]

I'm not sure I undersood - are you agreeing that you'd rather see a wrapper of the FeeEstimator that does the max for us?

Yes, if that what you suggested as a could-be direction with your previous comment :) ?

[TheBlueMatt]

Heh, yea, sorry, that wasn't clear, yes, I was suggesting we just wrap the trait in some helper that does the max.

[codecov-commenter]

Codecov Report

Merging #1552 (fb0a015) into main (fda3819) will increase coverage by 0.19%.
The diff coverage is 100.00%.

❗ Current head fb0a015 differs from pull request most recent head 7bc6d0e. Consider uploading reports for the commit 7bc6d0e to get more accurate results

@@            Coverage Diff             @@
##             main    #1552      +/-   ##
==========================================
+ Coverage   90.81%   91.01%   +0.19%     
==========================================
  Files          80       80              
  Lines       44534    45507     +973     
  Branches    44534    45507     +973     
==========================================
+ Hits        40445    41417     +972     
- Misses       4089     4090       +1     

Impacted Files	Coverage Δ
lightning/src/chain/chaininterface.rs	96.15% <100.00%> (+96.15%)	⬆️
lightning/src/chain/channelmonitor.rs	92.53% <100.00%> (+1.60%)	⬆️
lightning/src/chain/onchaintx.rs	94.90% <100.00%> (+0.92%)	⬆️
lightning/src/chain/package.rs	93.04% <100.00%> (ø)
lightning/src/ln/channel.rs	88.75% <100.00%> (+<0.01%)	⬆️
lightning/src/ln/channelmanager.rs	84.88% <100.00%> (-0.21%)	⬇️
lightning/src/ln/functional_tests.rs	96.96% <100.00%> (+0.13%)	⬆️
lightning/src/ln/payment_tests.rs	98.57% <0.00%> (-0.32%)	⬇️
... and 6 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update fda3819...7bc6d0e. Read the comment docs.

[TheBlueMatt]

The unit conversions are still really useful.

[TheBlueMatt]

You shoul dbe able to drop the where clause here - its redundant.

[TheBlueMatt]

Instead of storing a reference to a deref to a feeestimator and constructing the lowerboundedestimator whenever we need to get fees, lets just store the full deref to a feeestimator here, and then update places in the crate to store a LowerBoundedFeeEstimator, so its always that way and its a bit harder to forget to do the wrapping.

[TheBlueMatt]

Lets not bother with the trait and just implement directly, then in the codebase make things take a LowerBoundFeeEstimator.

[dunxen]

Yeah, will make things simpler and then there's no forgetting to create a LowerBoundFeeEstimator as you mentioned :)

[ariard]

"Minimum feerate that takes a sane approach to bitcoind weight-to-vbytes rounding"

I don't know if this subtlety is documented anywhere well, so feel free to ref Rusty's commit : ElementsProject/lightning@2e687b9

[TheBlueMatt]

The point of listing the conversions is the user may need to convert from whatever unit their backend feerate API returns to the units here. Thus, its not that it "will" be implemented with the conversions, but that users "can" implement it using the listed conversions (but drop the max/253 bit) if they want.

[dunxen]

Oh yeah, of course. I didn't even realise that was the main point of the comment here. I had just considered the max part. Will fix.

[TheBlueMatt]

This method is public - let's drop the wrapper from the parameter.

[dunxen]

Seems we run into a few tricky issues here as we cannot clone a Deref to a FeeEstimator so that we can wrap it further down the line. Unless I'm missing something subtle and rusty. The main problem is we take in &F here and in some other places and we can't move out of the shared reference when we need to wrap.

[TheBlueMatt]

Uhhhh, right, uhhhh, uhhhh, so I think it'll work if we impl <D: Deref> FeeEstimator for D where D::Target: FeeEstimator. It doesn't currently break anything in test, dont think it'll break downstream stuff.

[dunxen]

Alright, let me go that direction and see :)

[dunxen]

Seems to do the trick!

[TheBlueMatt]

In general I think we need to go that way for all of our traits, but that's a rather large change and dealing with the bindings for it sounds....un-fun.

[TheBlueMatt]

I don't think we want this to be public at all - it should be pub(crate) instead, I think.

[TheBlueMatt]

nit: does this really need its own line?

[dunxen]

Think rustfmt got me here 😅. Will fix.

[dunxen]

Rebasing and directly modifying commits just this one last time before more review as a lot has changed from the previous revision.

[TheBlueMatt]

Let me know when you're ready for more review here.

[TheBlueMatt]

nit: then why even mention the max?

[dunxen]

True story. Remove this and just leave in the max in the example conversion or also get rid of that?

[TheBlueMatt]

I'd think just skip the max but leave the conversions.

[TheBlueMatt]

nit: you can drop the & on the fee_estimator entirely. Fewer &s good - we're already calling a fee estimator that is a reference to a reference to a reference :(

[dunxen]

Yeah seems like quite the onion 😅

[TheBlueMatt]

Instead of peppering these everywhere, the ChannelManager::fee_estimator field should be a LowerBoundedFeeEstimator, then its very hard to screw up and forget to wrap.

[dunxen]

Hmm, ok so no need to worry about serialisation here? Field is completely ignored in public contract?

[TheBlueMatt]

The fee estimator itself? No, its not serialized, the user passes in a new fee estimator to the ChannelManager deserialize method.

[TheBlueMatt]

You should be able to drop a & here?

[dunxen]

Hmm yeah I think I can now with how FeeEstimator currently looks.

[dunxen]

So yeah we don't need it in this case, but if we make ChannelManager::fee_estimator a LowerBoundedFeeEstimator, then it seems necessary as we're working with something that's not a Deref to a FeeEstimator.

[TheBlueMatt]

Right, you'll need a single & here, which is a reference to a LowerBoundedFeeEstimator which holds a Deref to a FeeEstimator. Its still two references, but shouldn't need to touch this line of code, I belive?

[dunxen]

I think the main issue here is that the signature expects &F for first argument and F: Deref where F::Target: FeeEstimator.

So it's a ref to a deref to a FeeEstimator, so that's a bit of a problem here :/
Errors with just a single & in the case where ChannelManager::fee_estimator is a LowerBoundedFeeEstimator, because of the signature.

[TheBlueMatt]

Right, but I thought we were moving to channel.rs only ever seeing LowerBoundedFeeEstimators, never a FeeEstimator itself.

[dunxen]

Sorry, thought that was a public API but seems like Channel itself is not. So I can go ahead and adjust the signature.

[TheBlueMatt]

Ah! okay, wasn't sure what the confusion was. Thanks.

[TheBlueMatt]

We don't need to wrap the estimator in channel.rs anymore, no? Plus a few places further down.

[dunxen]

Right!

[TheBlueMatt]

LGTM. Feel free to squash and then let's land this!

[TheBlueMatt]

You shouldnt need to touch this line now.

[ariard]

Code Review ACK 7bc6d0e