Reserved address pool #531
Conversation
dangeross
force-pushed
the
savage-reserved-addresses
branch
from
bced460
to
f91e777
Compare
What happens when a Receive Swap is paid via the MRH Liquid address after the swap expired? Will this also be associated with the swap? Also what happens multiple payments are made to the MRH Liquid address, i.e. address re-use? Will those payments be associated with the same swap? |
Since the magic hints is an internal mechanism hidden inside the invoice clients should parse the invoice in order to pay. The expected behavior by clients is to return error (invoice expired) immediately and not continue to pay so there should not be payments after the swap has expired. If clients other than the sdk do not behave this way then yes worst case we might have multiple payments associated. I think associating the first one only is reasonable. |
The first one is associated while the swap is ongoing, then any following ones are stored as separate payments |
Like Roei said, the first step should be to check if the invoice has expired, then extract the MRH (I'm not sure if Boltz returns the BIP21 address if the swap is expired, need to check this). But to answer the question, the it won't be associated as the swap is no longer ongoing and therefore will be a separate payment. |
dangeross
force-pushed
the
savage-reserved-addresses
branch
2 times, most recently
from
a7a3a7d
to
e0d0d2e
Compare
dangeross
force-pushed
the
savage-reserved-addresses
branch
from
b59639d
to
9af6377
Compare
|
|
||
| fn delete_reserved_address_inner(tx: &Transaction, address: &str) -> Result<(), PaymentError> { | ||
| tx.execute( | ||
| "DELETE FROM reserved_addresses WHERE address = ?", |
There was a problem hiding this comment.
NIT: Not sure what's the best way to delete data in the context of real-type sync.
IMO DELETE statements could lead to edge-cases when 2 SDK instances sync, one has the data (here, the reserved_address row) and the other doesn't. Depending on the ordering and timing, it could be that one or the other is treated as "the truth".
In contrast, sync would be more resilient if we delete by setting a flag, i.e. reserved = false. Any such conflict during synchronization could then be resolved simply: if any of the two have reserved = false, then its false.
@roeierez @hydra-yse what do you think, does this matter? Or it makes no difference for real-time sync?
There was a problem hiding this comment.
The reserved address table currently only stores MRH addresses used in receive swaps. These are the two cases where a delete would occur:
- A pay to the MRH address is seen while there is no swap progress.
- The reserved address block height expires and the address is reused for another purpose (claim, refund, MRH, direct address). In the MRH case it is re-added to the reserved address table with a later expiry.
Also to note is that the last_derivation_index from the cache needs to be synced.
Maybe it's best to add this as a task of the real-time sync tracking issue
dangeross
force-pushed
the
savage-reserved-addresses
branch
2 times, most recently
from
fe107ab
to
38f81a7
Compare
dangeross
force-pushed
the
savage-reserved-addresses
branch
from
38f81a7
to
c05dba3
Compare
* commit 'a515718dc72c1c8eb62cecb7ad9c9862e8dc727c': feat: allow send transition from `TimedOut` to `Created` (#545) Propagate signer interface changes (#544) fix: double-lockup when payment is TimedOut (#541) Reserved address pool (#531) Prevent swap double claim (#542) Receive Chain Swap: support refund even when lockup address is re-used (#471) Bring remaining u32 amount types to u64 (#537) Add swift framework plists (#536) Update README.md Update README.md Update roadmap
This PR:
TODO:
payer_amount_satandreceiver_amount_satif paid via magic routing hint to set the payment fees to 0 (both should equal tx amount)Fixes #523