Add support for auto-compound in kaspawallet send

[svarogg]

This PR fixes a big problem in kaspawallet - when the number of inputs is greater then one can fit into a single transaction (such as often happens when a big miner wants to send a lot of kaspa) - the transaction generated is rejected by the node.

This PR splits such transaction into multiple smaller transactions, sending the funds into a change address, then adds another, merge transaction, which would send the funds to their final destination.

Note: there are a quite a few redundant serialize/deserialize of PartiallySignedTransaction(s)
This is there because libkaspawallet exposes methods that work with byte-slices rather then PartiallySignedTransaction(s)
I plan to refactor libkaspawallet to expose only methods for deserialized data in an upcoming PR.

[stasatdaglabs]

Please move this method to split_transaction.go, close to where it's used

[stasatdaglabs]

This approach of splitting a transaction doesn't sit well with me. I couldn't figure out a concrete example, but I'm certain there could be edge-cases where this could produce split transactions over the mass limit. What more, we never even check that the transactions created by this method are valid

Instead, I propose a far less efficient, but safe approach:

• Start a new transaction
• Add inputs and for each one check if we're over the limit
• Once we're just under the limit, finish this transaction and move on to the next

[svarogg]

I feel ya, and also @someone235 has defined said edge case, but I have a feeling what you suggest is an overkill.

It also will probably be quite annoying, clocking at O(n^2) with a possibly high n, and high constants (with cloning of the tx, etc.), in an operation that is supposed to be instantaneous.

I think the way I did it now is much more foolproof.
Please take a careful look in and around splitAndInputPerSplitCounts. (Also suggestions for a better name welcome).

[stasatdaglabs]

We don't appear to be merging the change. Is it not something we want to do at this stage?

[svarogg]

The sum of the outputs of the splits is equal to the total of their inputs. This includes the change as well.

Change is re-calculated again in mergeTransaction:

	if totalValue > sentValue {
		payments = append(payments, &libkaspawallet.Payment{
			Address: changeAddress,
			Amount:  totalValue - sentValue,
		})

(Note the change is going to be a bit lower, because there's fee for the mergeTransaction)

[codecov]

Codecov Report

Merging #1951 (88857c8) into dev (9fa0844) will decrease coverage by 0.32%.
The diff coverage is 28.16%.

@@            Coverage Diff             @@
##              dev    #1951      +/-   ##
==========================================
- Coverage   57.86%   57.53%   -0.33%     
==========================================
  Files         676      679       +3     
  Lines       32172    32403     +231     
==========================================
+ Hits        18616    18644      +28     
- Misses      10919    11115     +196     
- Partials     2637     2644       +7     

Impacted Files	Coverage Δ
cmd/kaspawallet/broadcast.go	0.00% <0.00%> (ø)
cmd/kaspawallet/config.go	0.00% <ø> (ø)
cmd/kaspawallet/create_unsigned_tx.go	0.00% <0.00%> (ø)
cmd/kaspawallet/daemon/server/address.go	0.00% <0.00%> (ø)
...allet/daemon/server/create_unsigned_transaction.go	0.00% <0.00%> (ø)
cmd/kaspawallet/daemon/server/server.go	0.00% <0.00%> (ø)
cmd/kaspawallet/libkaspawallet/sign.go	65.38% <ø> (ø)
cmd/kaspawallet/send.go	0.00% <0.00%> (ø)
cmd/kaspawallet/sign.go	0.00% <0.00%> (ø)
cmd/kaspawallet/transactions_hex_encoding.go	0.00% <0.00%> (ø)
... and 20 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 9fa0844...88857c8. Read the comment docs.

[stasatdaglabs]

Please somehow combine the above two logs so that the user doesn't see multiple "Transaction was sent successfully" messages on separate lines.

[svarogg]

Did something a little bit different, see what I did and lmk if you no like

[stasatdaglabs]

Do we really want to deny a user from sending funds just because they don't have enough money for a merge transaction?

[someone235]

What's the alternative?

[svarogg]

Not having funds for merge transaction is more-or-less the same as not having enough fees, just send a little bit less and you'll be fine.

[stasatdaglabs]

Please update this comment

[stasatdaglabs]

For the sake of argument, let's assume our transaction contains:

• 9 pay to public key inputs, each one has mass 100
• 1 multisig input with mass 900
• Mass limit of 1000
• A transaction without any inputs has mass 50

I believe this method would produce:

• massWithoutInputs = 50
• massForInputs = 1800
• inputCount = 10
• massPerInput = 180
• inputPerSplitCount = 5
• splitCount = 2

The splitCount is correct, but if we try to have inputPerSplitCount of 5, we'd get:

• One transaction with mass 550
• Another transaction with mass 1350

1350 is over the mass limit of 1000

[svarogg]

We assume that the transaction was created by kaspawallet, thus it wouldn't have inputs with different masses.
Therefore your scenario is impossible.

[someone235]

I think we should add a comment that explains it. It could also be nice to run some sanity test to check if the assumptions are correct.

[svarogg]

I've added a comment.
Adding a sanity test means either refactoring the CalculateMass code to have CalculateMassForInput, or using some not-entirely-accurate proxy such as input size, and I'd rather not do either.

[someone235]

You can check if all inputs are multisig with the same number of required signatures, or all of them are p2pk

[someone235]

What's the alternative?

[someone235]

I think we should add a comment that explains it. It could also be nice to run some sanity test to check if the assumptions are correct.

[someone235]

Maybe rename to inputsPerSplitCount?

[someone235]

Each split tx has only one output right? So wouldn't it make more sense to reduce the mass of one output, instead of all outputs?

[svarogg]

Each split tx has only one output right? So wouldn't it make more sense to reduce the mass of one output, instead of all outputs?
When there's no change - there's only 1 output in the original transaction. You are right that in most cases (a.k.a. when there is change) massForInputs wouldn't be a tight bound, but to make it tight I'd need some way to calculate CalculateMassForOutput, and this is something we don't have rn (same problem as with CalculateMassForInput)

[someone235]

Using the outputs of the original transaction as an upper bound is confusing from the reader POV (why use such outputs that are unrelated to the actual split transaction), and the calculation might go wrong: e.g. P2SH is 34 bytes long and P2PK is 33 bytes long, so when you're using a multisig wallet and wanna pay to P2PK, and say your original transaction had one output, the output of the split transaction will use a P2SH address, which requires more mass, so your split tx can go above limit.

So if you don't want to export another function for calculating output mass, can't you just make a stub output that will use some change address and then calculate the output mass in the same way you calculated massForInputs?