walletunlocker: Allow wallet to be created from extended master root key (xprv)

[guggero]

Depends on btcsuite/btcwallet#720.

In addition to creating a new wallet from an aezeed, we allow specifying
an exteded master root key as the main wallet key directly.

Motivation:
This PR is useful to some users for two reasons:

1. I know for a fact that there are (mainnet!) nodes out there who run with a wallet.db to which the seed was lost or never known (because of incorrect use of the --noseedbackup). This feature gives those nodes the ability to recover from data loss in combination with the chantools walletinfo command that extracts the xprv from a wallet.db (assuming the wallet password is still known).
2. Wallets apps that already have a seed for their on-chain wallet and want to add lnd for the off-chain stuff. They possibly don't want to give the user another seed to back up. With BIP85 they could derive a new master root key from their existing seed and give it to lnd. It's still important to make sure the xprv given to lnd is used by lnd exclusively!

Wallet birthday:
Because an exteded key (xprv...) doesn't contain any information about the
creation time of the wallet, we must assume a birthday to start scanning
the chain from. Since lnd only uses SegWit addresses, it makes sense to
choose the date that corresponds to the first mainnet block that
contained SegWit transactions.
Restoring a wallet from an extended master root key will result in a
significantly longer initial wallet rescan time.

[guggero]

Rebased this as there seems to be some interest in the wallet community to get this in.

Two questions occurred to me during the rebase:

• Instead of assuming a static birthday for non-aezeed wallets, should we add another parameter, for example extended_key_birthday to avoid scanning too many blocks?
• We need to somehow convey the message that using the exact same on-chain wallet derivation paths (account 0 in the m/49'/0' and m/84'/0') in another wallet at the same time will lead to problems (for example lnd not picking up funds automatically if it didn't register an address as being used in the internal wallet itself). Just adding more text as a comment in the RPC seems easy to miss. Any idea on how to make that clearer?

[Roasbeef]

Instead of assuming a static birthday for non-aezeed wallets, should we add another parameter, for example extended_key_birthday to avoid scanning too many blocks?

How would non-aezeed wallets determine what that value should be? We're able to have such a birthday param only because we actually encode that data in the seed.

We need to somehow convey the message that using the exact same on-chain wallet derivation paths (account 0 in the m/49'/0' and m/84'/0') in another wallet at the same time will lead to problems (for example lnd not picking up funds automatically if it didn't register an address as being used in the internal wallet itself)

Seems to be the case for "double importing" into a wallet independent of this use case right? From my PoV, I think I'm missing ab it of a motivating use case for this PR:

• Is it for wallet rescue attempts
• Or to allow users to use non-aezeed seeds with their lnd wallet? (seems like a bad idea?)
  • I guess this would let mobile wallets that want to package lnd without giving their users yet another seed a way forward...

[guggero]

How would non-aezeed wallets determine what that value should be? We're able to have such a birthday param only because we actually encode that data in the seed.

The birthday param would be optional and fall back to the hard coded value that is in the PR now. Users that know exactly when the seed was created (perhaps because they wrote it down) can set it and speed up the process. Users that don't know the date leave it blank.

Seems to be the case for "double importing" into a wallet independent of this use case right? From my PoV, I think I'm missing ab it of a motivating use case for this PR:

I added the two main use cases to the main PR description.

[carlaKC]

Did a very high level pass, nicely broken up PR! Will give this a more thorough look once it's been rebased.

[carlaKC]

Decided against an optional birthday param for extended key (as discussed in the PR body)? I think it could be useful, eg in the case of an existing on-chain wallet, they probably know the date when the wallet was created so could have a birthday hint?

[guggero]

Hmm, you're right, it might be useful to have the birthday field. Added it.

[guggero]

Rebased this PR and its dependency.

[wpaulino]

Looks good! Definitely worthy of an addition given its use cases.

[Roasbeef]

The btcwallet PR has been merged, needs a rebase!

[guggero]

Rebased after dependent PR was merged.

[carlaKC]

🏅

[carlaKC]

Assuming that this will fail if len(extendedKey)==0, but could be a bit clearer to switch on cipherSeed != nil/len(extendedKey)!=0/default so that the case where we're init-ing the wallet with no seed/key is a bit more obvious?

[guggero]

Yeah, it could be a bit more obvious. Added a switch block instead.