Add splice RBF support#888
Open
jkczyz wants to merge 7 commits into
Open
Conversation
|
I've assigned @tankyleo as a reviewer! |
Contributor
Author
|
@tnull Any feedback on the last few commits would be appreciated: https://github.com/lightningdevkit/ldk-node/pull/888/changes/492ec9124ae02a4048ecb5270309174b05b366d2..c770999887e1287bef8abe4f4c92ca36e9434067 |
jkczyz
force-pushed
the
2026-04-splicing-payment-using-tx-type
branch
2 times, most recently
from
198bfbf to
d5b6bda
Compare
Collaborator
jkczyz
force-pushed
the
2026-04-splicing-payment-using-tx-type
branch
from
d5b6bda to
91166b9
Compare
tnull
reviewed
May 5, 2026
Collaborator
tnull
left a comment
tnull
left a comment
There was a problem hiding this comment.
Excuse the delay. Took a first look, generally makes sense, though it's kind off odd to block the broadcast queue on persistence. Hopefully we'd never get a lot of backpressure from remote persistence, for example.
I have yet to review the (rather verbose) new code for updating/persisting the pending payments in wallet.rs in more detail.
| /// # Experimental API | ||
| /// | ||
| /// This API is experimental and may change in the future. | ||
| pub fn rbf_channel( |
Collaborator
There was a problem hiding this comment.
nit: Maybe this could be called replace_channel_funding or bump_channel_funding_fee or similar?
The new API computes its splice fee independently of the BDK coin selection it drives, so any surplus BDK reserves on top of LDK's fee flows into the new funding output instead of returning as change. A splice-in therefore deposits slightly more on the channel side than requested. Stop double-counting the 5 WU per foreign input that BDK adds for the empty `script_sig` byte and witness-count varint already in LDK's `satisfaction_weight`. A small residue from BDK's per-component fee rounding still inflates the funding output. Co-Authored-By: Jeffrey Czyz <jkczyz@gmail.com> Co-Authored-By: Claude <noreply@anthropic.com>
After the LDK splice-builder API change, `FundingTemplate::splice_in` and `splice_out` silently reuse and amend a prior contribution when one is present, rather than starting from scratch. ldk-node has no caller that intentionally exercises that path today, so reject the request explicitly until we design a dedicated RBF entry point. This preserves the pre-upgrade behavior for back-to-back splice attempts on the same channel. Co-Authored-By: Claude <noreply@anthropic.com>
Point at LDK 2313bd584d2c46a50d67b8266f488c07516e0b3c and bitcoin-payment-instructions 6bea50e3d57742cd1d8a65c32076bff55003f175. Co-Authored-By: Claude <noreply@anthropic.com>
When a splice is already pending, the user needs a way to replace its funding transaction at a higher feerate. This adds rbf_channel() to handle that case and guards splice_in/splice_out against being called while a pending splice exists, directing users to rbf_channel instead. Also fixes signing for RBF replacements, which requires accessing outputs spent by unconfirmed transactions. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
LDK renamed `BestBlock` to `BlockLocator`. Drop the import aliases that anticipated the rename. Co-Authored-By: Claude <noreply@anthropic.com>
Channel-opening and splice transactions transition to Succeeded when ChannelReady fires, not after ANTI_REORG_DELAY confirmations. This matches the point at which the Lightning layer considers the channel usable: a zero-conf channel graduates as soon as its counterparty signals, and a high-conf channel waits however many confirmations the peer requires, rather than always stopping at six. For splice RBF, the payment records whichever candidate actually confirmed, with that candidate's amount and this node's share of the fee — not the fee-estimate used for weight at coin-selection time, and not the whole-tx fee for a multi-contributor splice. A channel closure whose funding or splice never confirmed discards its payment record instead of leaving it pending forever. Generated with assistance from Claude Code. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Previously the BroadcasterInterface implementation wrote the payment record synchronously when LDK invoked it. With a remote KV store this could block LDK's message handling for hundreds of milliseconds per call, noticeably during force-close bursts or splice broadcasts. Persistence now happens asynchronously and must complete before the transaction is sent to the chain client. If persistence fails, the broadcast is dropped: a payment record must exist for every on-chain tx we emit, otherwise a crash could leave the tx confirmed with no matching record. Generated with assistance from Claude Code. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
jkczyz
force-pushed
the
2026-04-splicing-payment-using-tx-type
branch
from
91166b9 to
c4d3282
Compare
Collaborator
|
@jkczyz Is this ready for review or are we waiting for any upstream changes still? |
Contributor
Author
Collaborator
Ah, was unaware of that cross dependency, will see to review #882 next to keep things moving then. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds a public
Node::rbf_channelAPI that replaces an in-flight splice transaction with a higher-feerate version.An RBF leaves multiple candidate splice transactions in flight; only one of them will confirm on chain, and the payment record needs to reflect whichever one did — its amount and this node's share of the fee. The transition from
PendingtoSucceededshould also match when the Lightning protocol actually considers the new channel state usable — the momentChannelReadyfires — rather than afterANTI_REORG_DELAYconfirmations, which doesn't fit the zero-conf extreme on one end or higher-confirmation-depth peer configurations on the other.To support those properties, this PR:
Every broadcast from LDK now triggers a store write. For a remote KV store, running that write on LDK's thread would block message handling for hundreds of milliseconds per call, so persistence happens asynchronously while still guaranteeing that the record is committed before the transaction reaches the chain client.
Based on #878.