Announce and use fidelity bonds

[chris-belcher]

This pull request adds almost everything needed to implement fidelity bonds into JoinMarket.

Coded in separate commits for easier reviewing. The commit messages contain useful information for understanding the code so be sure to read them.

The only major feature missing is having yield generators announce fidelity bonds held in cold storage. This should be easy to add one day without needing to change the joinmarket protocol.

The actual changes to the joinmarket protocol are backward-compatible, meaning takers which don't understand fidelity bonds will just ignore the new fidelity bond messages and carry on as before.

I've also a section for the release notes. I reckon after this change is merged we should do a new release soon afterwards. For now I've called the release v0.9 in the docs (but it can be easily changed of course)

[undeath]

I've not done a functional review yet, only some high level nits.

I think the code would be a lot easier to read if fidelity bonds were wrapped into their own class. I'll try to refactor this part.

[undeath]

Pushed a commit to move fidelity bond proofs into their own class. I think this makes things a little easier to follow.

Also fixed some of the failing tests. Others are still failing but I don't seem to have broken any additional ones.

I didn't touch anything about the jmdaemon/jmbitcoin problem discussed above. If that is resolved the newly added jmbitcoin/fidelity_bonds.py should likely be moved to jmclient.

[chris-belcher]

Wrote a PR adding documentation for how the fidelity bond messages work, including why we use the intermediate certificate keypair JoinMarket-Org/JoinMarket-Docs#4

[chris-belcher]

Just to update you all. I'm currently working on the issue of removing the jmbitcoin dependency from the daemon side. I intend to solve it by moving all the crypto onto the client side. There will be two new messages in commands.py which are used by the daemon for requesting a signed proof. So thats the solution waxwing wrote in the first bullet point of "Either copy the current paradigm of ".

So I'd say don't do any more serious reviewing until I upload code and ping this thread again.

[kristapsk]

I'm currently working on the issue of removing the jmbitcoin dependency from the daemon side. I intend to solve it by moving all the crypto onto the client side.

Maybe do it as a separate PR, so that it would be more easy to review / test that part, as it will affect not only fidelity bond code?

[undeath]

as it will affect not only fidelity bond code?

No, the jmbitcoin dependency was only introduced in this PR.

[chris-belcher]

I've just pushed a bunch of commits which deal with the review comments.

For now my edits are in their own separate commits so that they can be reviewed separately from the previous commits, after the reviews they can be squished.

I've structured the commits so that commit message starting with a lowercase character I intend to later squish into earlier commits. In many cases in the commit message I write which exact commit they will be squished in.

[AdamISZ]

Testing on regtest (will update):

• ✔️ wallet generation with fidelity bond active
• ✔️ wallet timelockaddress creation
• ✔️ fund wallet for yg running
• ✔️ start yg, check FB is announced correctly
• ✔️ start ob-watcher with 3 non-FB ygs and 1 FB yg, check displays info correctly in table
• ✔️ try sendpayment with N=3 and check it uses the FB as intended.

On the last one: I saw the expected solution (even if only probabilistic) here:

2021-06-01 22:06:49,435 [INFO]  Chose these orders: {'J52BTzp8E9yqrru8': {'cjfee': '0.000019',
                      'counterparty': 'J52BTzp8E9yqrru8',
                      'fidelity_bond_value': 1478433465244.456,
                      'maxsize': 294822053,
                      'minsize': 6575808,
                      'oid': 0,
                      'ordertype': 'sw0reloffer',
                      'txfee': 114},
 'J58EbHPgZB8a217w': {'cjfee': '0.00002',
                      'counterparty': 'J58EbHPgZB8a217w',
                      'fidelity_bond_value': 0,
                      'maxsize': 599972700,
                      'minsize': 7499999,
                      'oid': 0,
                      'ordertype': 'sw0reloffer',
                      'txfee': 100},
 'J5FEXeeH4NZLjzKO': {'cjfee': '0.00002',
                      'counterparty': 'J5FEXeeH4NZLjzKO',
                      'fidelity_bond_value': 0,
                      'maxsize': 599972700,
                      'minsize': 7499999,
                      'oid': 0,
                      'ordertype': 'sw0reloffer',
                      'txfee': 100}}

These were just some initial pass through checks. I'll test various more modes of operation shortly.

[AdamISZ]

showutxos needs an edit to account for timelockaddresses:

joinmarket-clientserver/jmclient/jmclient/wallet_utils.py

Lines 385 to 386 in 8295837

	key = wallet_service.get_key_from_addr(av['address'])
	tries = podle.get_podle_tries(u, key, max_tries)

This crashes in generating the PoDLE key because the privkey is not a secp256k1.PrivateKey (or more simply, because the idea doesn't make sense), so some custom handling of this address type is needed here.

[AdamISZ]

I think it would make sense to have a test_fidelity_bond.py module in jmclient/test .. probably just a couple of test cases of creation, serialize/deserialize, and verification.

[chris-belcher]

There are some tests like that in test_orderbookwatch.py. More can be added or moved to test_fidelity_bond.py of course

https://github.com/JoinMarket-Org/joinmarket-clientserver/pull/872/files#diff-8a47ea23d85bca58e6622c4f712ef1023c2678bfe2193d4cfbafe7ec1b3e3054

[chris-belcher]

Made the edits to create the one-pubkey-per-locktime structure, see 5178d05

That along with the calculating scripts only for mixdepth zero seems to have done a noticeable speedup in sync'ing.

[AdamISZ]

On d019241 :

✔️ test suite passing locally
✔️ generate FB wallet
✔️ create timelockaddress
✔️ fund timelockaddress and display funded
✔️ simple direct send from wallet
✔️ succesful single coinjoin with 3 makers, 2 FB (were chosen)
✔️ showutxos shows the timelocked utxos correctly including the lock time
✔️ showseed OK
✔️ summary OK (includes locked coins, seems fine)
✔️ displayall shows every timelock address so the output is very large. But again I think fine.
✔️ freeze seems to work fine, the earlier comments still apply of course
✔️ tumbler run with FB-enabled taker wallet (locked coins get ignored as intended). Makers as mentioned above, FB always chosen this time (this is statistical of course; there were only about 8 transactions).
✔️ dumpprivkey OK
✔️ importprivkey OK
✔️ BIP78 Payjoin CLI working with both sides FB wallets (and having coins locked, and using that mixdepth).
✔️ tumbler run with taker v0.8.3 - OK

Note: First sync on generating the wallet took around ~ 15 seconds. After that, pretty much immediate in all future runs of wallet-tool. So a big improvement on this point, here.

[AdamISZ]

I've reviewed 5178d05 specifically, in as much detail as I could. I see no problem worth mentioning.

This is now tACK from me again.