1 // This file is Copyright its original authors, visible in version control
4 // This file is licensed under the Apache License, Version 2.0 <LICENSE-APACHE
5 // or http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
6 // <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your option.
7 // You may not use this file except in accordance with one or both of these
10 //! LDK sends, receives, and forwards onion messages via the [`OnionMessenger`]. See its docs for
13 use bitcoin::hashes::{Hash, HashEngine};
14 use bitcoin::hashes::hmac::{Hmac, HmacEngine};
15 use bitcoin::hashes::sha256::Hash as Sha256;
16 use bitcoin::secp256k1::{self, PublicKey, Scalar, Secp256k1, SecretKey};
18 use crate::blinded_path::BlindedPath;
19 use crate::blinded_path::message::{advance_path_by_one, ForwardTlvs, ReceiveTlvs};
20 use crate::blinded_path::utils;
21 use crate::sign::{EntropySource, KeysManager, NodeSigner, Recipient};
22 use crate::events::OnionMessageProvider;
23 use crate::ln::features::{InitFeatures, NodeFeatures};
24 use crate::ln::msgs::{self, OnionMessageHandler};
25 use crate::ln::onion_utils;
26 use crate::ln::peer_handler::IgnoringMessageHandler;
27 pub use super::packet::{CustomOnionMessageContents, OnionMessageContents};
28 use super::offers::OffersMessageHandler;
29 use super::packet::{BIG_PACKET_HOP_DATA_LEN, ForwardControlTlvs, Packet, Payload, ReceiveControlTlvs, SMALL_PACKET_HOP_DATA_LEN};
30 use crate::util::logger::Logger;
31 use crate::util::ser::Writeable;
35 use crate::sync::{Arc, Mutex};
36 use crate::prelude::*;
38 /// A sender, receiver and forwarder of [`OnionMessage`]s.
40 /// # Handling Messages
42 /// `OnionMessenger` implements [`OnionMessageHandler`], making it responsible for either forwarding
43 /// messages to peers or delegating to the appropriate handler for the message type. Currently, the
44 /// available handlers are:
45 /// * [`OffersMessageHandler`], for responding to [`InvoiceRequest`]s and paying [`Bolt12Invoice`]s
46 /// * [`CustomOnionMessageHandler`], for handling user-defined message types
48 /// # Sending Messages
50 /// [`OnionMessage`]s are sent initially using [`OnionMessenger::send_onion_message`]. When handling
51 /// a message, the matched handler may return a response message which `OnionMessenger` will send
57 /// # extern crate bitcoin;
58 /// # use bitcoin::hashes::_export::_core::time::Duration;
59 /// # use bitcoin::secp256k1::{PublicKey, Secp256k1, SecretKey};
60 /// # use lightning::blinded_path::BlindedPath;
61 /// # use lightning::sign::KeysManager;
62 /// # use lightning::ln::peer_handler::IgnoringMessageHandler;
63 /// # use lightning::onion_message::{CustomOnionMessageContents, Destination, MessageRouter, OnionMessageContents, OnionMessagePath, OnionMessenger};
64 /// # use lightning::util::logger::{Logger, Record};
65 /// # use lightning::util::ser::{Writeable, Writer};
66 /// # use lightning::io;
67 /// # use std::sync::Arc;
68 /// # struct FakeLogger;
69 /// # impl Logger for FakeLogger {
70 /// # fn log(&self, record: &Record) { unimplemented!() }
72 /// # struct FakeMessageRouter {}
73 /// # impl MessageRouter for FakeMessageRouter {
74 /// # fn find_path(&self, sender: PublicKey, peers: Vec<PublicKey>, destination: Destination) -> Result<OnionMessagePath, ()> {
75 /// # unimplemented!()
78 /// # let seed = [42u8; 32];
79 /// # let time = Duration::from_secs(123456);
80 /// # let keys_manager = KeysManager::new(&seed, time.as_secs(), time.subsec_nanos());
81 /// # let logger = Arc::new(FakeLogger {});
82 /// # let node_secret = SecretKey::from_slice(&hex::decode("0101010101010101010101010101010101010101010101010101010101010101").unwrap()[..]).unwrap();
83 /// # let secp_ctx = Secp256k1::new();
84 /// # let hop_node_id1 = PublicKey::from_secret_key(&secp_ctx, &node_secret);
85 /// # let (hop_node_id2, hop_node_id3, hop_node_id4) = (hop_node_id1, hop_node_id1, hop_node_id1);
86 /// # let destination_node_id = hop_node_id1;
87 /// # let message_router = Arc::new(FakeMessageRouter {});
88 /// # let custom_message_handler = IgnoringMessageHandler {};
89 /// # let offers_message_handler = IgnoringMessageHandler {};
90 /// // Create the onion messenger. This must use the same `keys_manager` as is passed to your
91 /// // ChannelManager.
92 /// let onion_messenger = OnionMessenger::new(
93 /// &keys_manager, &keys_manager, logger, message_router, &offers_message_handler,
94 /// &custom_message_handler
97 /// # struct YourCustomMessage {}
98 /// impl Writeable for YourCustomMessage {
99 /// fn write<W: Writer>(&self, w: &mut W) -> Result<(), io::Error> {
101 /// // Write your custom onion message to `w`
104 /// impl CustomOnionMessageContents for YourCustomMessage {
105 /// fn tlv_type(&self) -> u64 {
106 /// # let your_custom_message_type = 42;
107 /// your_custom_message_type
110 /// // Send a custom onion message to a node id.
111 /// let path = OnionMessagePath {
112 /// intermediate_nodes: vec![hop_node_id1, hop_node_id2],
113 /// destination: Destination::Node(destination_node_id),
115 /// let reply_path = None;
116 /// # let your_custom_message = YourCustomMessage {};
117 /// let message = OnionMessageContents::Custom(your_custom_message);
118 /// onion_messenger.send_onion_message(path, message, reply_path);
120 /// // Create a blinded path to yourself, for someone to send an onion message to.
121 /// # let your_node_id = hop_node_id1;
122 /// let hops = [hop_node_id3, hop_node_id4, your_node_id];
123 /// let blinded_path = BlindedPath::new_for_message(&hops, &keys_manager, &secp_ctx).unwrap();
125 /// // Send a custom onion message to a blinded path.
126 /// let path = OnionMessagePath {
127 /// intermediate_nodes: vec![hop_node_id1, hop_node_id2],
128 /// destination: Destination::BlindedPath(blinded_path),
130 /// let reply_path = None;
131 /// # let your_custom_message = YourCustomMessage {};
132 /// let message = OnionMessageContents::Custom(your_custom_message);
133 /// onion_messenger.send_onion_message(path, message, reply_path);
136 /// [`OnionMessage`]: crate::ln::msgs::OnionMessage
137 /// [`InvoiceRequest`]: crate::offers::invoice_request::InvoiceRequest
138 /// [`Bolt12Invoice`]: crate::offers::invoice::Bolt12Invoice
139 pub struct OnionMessenger<ES: Deref, NS: Deref, L: Deref, MR: Deref, OMH: Deref, CMH: Deref>
141 ES::Target: EntropySource,
142 NS::Target: NodeSigner,
144 MR::Target: MessageRouter,
145 OMH::Target: OffersMessageHandler,
146 CMH:: Target: CustomOnionMessageHandler,
151 pending_messages: Mutex<HashMap<PublicKey, VecDeque<msgs::OnionMessage>>>,
152 secp_ctx: Secp256k1<secp256k1::All>,
158 /// A trait defining behavior for routing an [`OnionMessage`].
160 /// [`OnionMessage`]: msgs::OnionMessage
161 pub trait MessageRouter {
162 /// Returns a route for sending an [`OnionMessage`] to the given [`Destination`].
164 /// [`OnionMessage`]: msgs::OnionMessage
166 &self, sender: PublicKey, peers: Vec<PublicKey>, destination: Destination
167 ) -> Result<OnionMessagePath, ()>;
170 /// A [`MessageRouter`] that always fails.
171 pub struct DefaultMessageRouter;
173 impl MessageRouter for DefaultMessageRouter {
175 &self, _sender: PublicKey, _peers: Vec<PublicKey>, _destination: Destination
176 ) -> Result<OnionMessagePath, ()> {
181 /// A path for sending an [`msgs::OnionMessage`].
183 pub struct OnionMessagePath {
184 /// Nodes on the path between the sender and the destination.
185 pub intermediate_nodes: Vec<PublicKey>,
187 /// The recipient of the message.
188 pub destination: Destination,
191 /// The destination of an onion message.
193 pub enum Destination {
194 /// We're sending this onion message to a node.
196 /// We're sending this onion message to a blinded path.
197 BlindedPath(BlindedPath),
201 pub(super) fn num_hops(&self) -> usize {
203 Destination::Node(_) => 1,
204 Destination::BlindedPath(BlindedPath { blinded_hops, .. }) => blinded_hops.len(),
209 /// Errors that may occur when [sending an onion message].
211 /// [sending an onion message]: OnionMessenger::send_onion_message
212 #[derive(Debug, PartialEq, Eq)]
214 /// Errored computing onion message packet keys.
215 Secp256k1(secp256k1::Error),
216 /// Because implementations such as Eclair will drop onion messages where the message packet
217 /// exceeds 32834 bytes, we refuse to send messages where the packet exceeds this size.
219 /// The provided [`Destination`] was an invalid [`BlindedPath`], due to having fewer than two
222 /// Our next-hop peer was offline or does not support onion message forwarding.
224 /// Onion message contents must have a TLV type >= 64.
226 /// Our next-hop peer's buffer was full or our total outbound buffer was full.
228 /// Failed to retrieve our node id from the provided [`NodeSigner`].
230 /// [`NodeSigner`]: crate::sign::NodeSigner
232 /// We attempted to send to a blinded path where we are the introduction node, and failed to
233 /// advance the blinded path to make the second hop the new introduction node. Either
234 /// [`NodeSigner::ecdh`] failed, we failed to tweak the current blinding point to get the
235 /// new blinding point, or we were attempting to send to ourselves.
236 BlindedPathAdvanceFailed,
239 /// Handler for custom onion messages. If you are using [`SimpleArcOnionMessenger`],
240 /// [`SimpleRefOnionMessenger`], or prefer to ignore inbound custom onion messages,
241 /// [`IgnoringMessageHandler`] must be provided to [`OnionMessenger::new`]. Otherwise, a custom
242 /// implementation of this trait must be provided, with [`CustomMessage`] specifying the supported
245 /// See [`OnionMessenger`] for example usage.
247 /// [`IgnoringMessageHandler`]: crate::ln::peer_handler::IgnoringMessageHandler
248 /// [`CustomMessage`]: Self::CustomMessage
249 pub trait CustomOnionMessageHandler {
250 /// The message known to the handler. To support multiple message types, you may want to make this
251 /// an enum with a variant for each supported message.
252 type CustomMessage: CustomOnionMessageContents;
254 /// Called with the custom message that was received, returning a response to send, if any.
255 fn handle_custom_message(&self, msg: Self::CustomMessage) -> Option<Self::CustomMessage>;
257 /// Read a custom message of type `message_type` from `buffer`, returning `Ok(None)` if the
258 /// message type is unknown.
259 fn read_custom_message<R: io::Read>(&self, message_type: u64, buffer: &mut R) -> Result<Option<Self::CustomMessage>, msgs::DecodeError>;
262 /// A processed incoming onion message, containing either a Forward (another onion message)
263 /// or a Receive payload with decrypted contents.
264 pub enum PeeledOnion<CM: CustomOnionMessageContents> {
265 /// Forwarded onion, with the next node id and a new onion
266 Forward(PublicKey, msgs::OnionMessage),
267 /// Received onion message, with decrypted contents, path_id, and reply path
268 Receive(OnionMessageContents<CM>, Option<[u8; 32]>, Option<BlindedPath>)
271 /// Create an onion message with contents `message` to the destination of `path`.
272 /// Returns (introduction_node_id, onion_msg)
273 pub fn create_onion_message<ES: Deref, NS: Deref, T: CustomOnionMessageContents>(
274 entropy_source: &ES, node_signer: &NS, secp_ctx: &Secp256k1<secp256k1::All>,
275 path: OnionMessagePath, message: OnionMessageContents<T>, reply_path: Option<BlindedPath>,
276 ) -> Result<(PublicKey, msgs::OnionMessage), SendError>
278 ES::Target: EntropySource,
279 NS::Target: NodeSigner,
281 let OnionMessagePath { intermediate_nodes, mut destination } = path;
282 if let Destination::BlindedPath(BlindedPath { ref blinded_hops, .. }) = destination {
283 if blinded_hops.len() < 2 {
284 return Err(SendError::TooFewBlindedHops);
288 if message.tlv_type() < 64 { return Err(SendError::InvalidMessage) }
290 // If we are sending straight to a blinded path and we are the introduction node, we need to
291 // advance the blinded path by 1 hop so the second hop is the new introduction node.
292 if intermediate_nodes.len() == 0 {
293 if let Destination::BlindedPath(ref mut blinded_path) = destination {
294 let our_node_id = node_signer.get_node_id(Recipient::Node)
295 .map_err(|()| SendError::GetNodeIdFailed)?;
296 if blinded_path.introduction_node_id == our_node_id {
297 advance_path_by_one(blinded_path, node_signer, &secp_ctx)
298 .map_err(|()| SendError::BlindedPathAdvanceFailed)?;
303 let blinding_secret_bytes = entropy_source.get_secure_random_bytes();
304 let blinding_secret = SecretKey::from_slice(&blinding_secret_bytes[..]).expect("RNG is busted");
305 let (introduction_node_id, blinding_point) = if intermediate_nodes.len() != 0 {
306 (intermediate_nodes[0], PublicKey::from_secret_key(&secp_ctx, &blinding_secret))
309 Destination::Node(pk) => (pk, PublicKey::from_secret_key(&secp_ctx, &blinding_secret)),
310 Destination::BlindedPath(BlindedPath { introduction_node_id, blinding_point, .. }) =>
311 (introduction_node_id, blinding_point),
314 let (packet_payloads, packet_keys) = packet_payloads_and_keys(
315 &secp_ctx, &intermediate_nodes, destination, message, reply_path, &blinding_secret)
316 .map_err(|e| SendError::Secp256k1(e))?;
318 let prng_seed = entropy_source.get_secure_random_bytes();
319 let onion_routing_packet = construct_onion_message_packet(
320 packet_payloads, packet_keys, prng_seed).map_err(|()| SendError::TooBigPacket)?;
322 Ok((introduction_node_id, msgs::OnionMessage {
328 /// Decode one layer of an incoming onion message
329 /// Returns either a Forward (another onion message), or Receive (decrypted content)
330 pub fn peel_onion<NS: Deref, L: Deref, CMH: Deref>(
331 node_signer: NS, secp_ctx: &Secp256k1<secp256k1::All>, logger: L, custom_handler: CMH,
332 msg: &msgs::OnionMessage,
333 ) -> Result<PeeledOnion<<<CMH>::Target as CustomOnionMessageHandler>::CustomMessage>, ()>
335 NS::Target: NodeSigner,
337 CMH::Target: CustomOnionMessageHandler,
339 let control_tlvs_ss = match node_signer.ecdh(Recipient::Node, &msg.blinding_point, None) {
342 log_error!(logger, "Failed to retrieve node secret: {:?}", e);
346 let onion_decode_ss = {
347 let blinding_factor = {
348 let mut hmac = HmacEngine::<Sha256>::new(b"blinded_node_id");
349 hmac.input(control_tlvs_ss.as_ref());
350 Hmac::from_engine(hmac).into_inner()
352 match node_signer.ecdh(Recipient::Node, &msg.onion_routing_packet.public_key,
353 Some(&Scalar::from_be_bytes(blinding_factor).unwrap()))
355 Ok(ss) => ss.secret_bytes(),
357 log_trace!(logger, "Failed to compute onion packet shared secret");
362 match onion_utils::decode_next_untagged_hop(
363 onion_decode_ss, &msg.onion_routing_packet.hop_data[..], msg.onion_routing_packet.hmac,
364 (control_tlvs_ss, custom_handler.deref(), logger.deref())
366 Ok((Payload::Receive::<<<CMH as Deref>::Target as CustomOnionMessageHandler>::CustomMessage> {
367 message, control_tlvs: ReceiveControlTlvs::Unblinded(ReceiveTlvs { path_id }), reply_path,
369 Ok(PeeledOnion::Receive(message, path_id, reply_path))
371 Ok((Payload::Forward(ForwardControlTlvs::Unblinded(ForwardTlvs {
372 next_node_id, next_blinding_override
373 })), Some((next_hop_hmac, new_packet_bytes)))) => {
374 // TODO: we need to check whether `next_node_id` is our node, in which case this is a dummy
375 // blinded hop and this onion message is destined for us. In this situation, we should keep
376 // unwrapping the onion layers to get to the final payload. Since we don't have the option
377 // of creating blinded paths with dummy hops currently, we should be ok to not handle this
379 let new_pubkey = match onion_utils::next_hop_pubkey(&secp_ctx, msg.onion_routing_packet.public_key, &onion_decode_ss) {
382 log_trace!(logger, "Failed to compute next hop packet pubkey: {}", e);
386 let outgoing_packet = Packet {
388 public_key: new_pubkey,
389 hop_data: new_packet_bytes,
392 let onion_message = msgs::OnionMessage {
393 blinding_point: match next_blinding_override {
394 Some(blinding_point) => blinding_point,
396 match onion_utils::next_hop_pubkey(
397 &secp_ctx, msg.blinding_point, control_tlvs_ss.as_ref()
401 log_trace!(logger, "Failed to compute next blinding point: {}", e);
407 onion_routing_packet: outgoing_packet,
410 Ok(PeeledOnion::Forward(next_node_id, onion_message))
413 log_trace!(logger, "Errored decoding onion message packet: {:?}", e);
417 log_trace!(logger, "Received bogus onion message packet, either the sender encoded a final hop as a forwarding hop or vice versa");
423 impl<ES: Deref, NS: Deref, L: Deref, MR: Deref, OMH: Deref, CMH: Deref>
424 OnionMessenger<ES, NS, L, MR, OMH, CMH>
426 ES::Target: EntropySource,
427 NS::Target: NodeSigner,
429 MR::Target: MessageRouter,
430 OMH::Target: OffersMessageHandler,
431 CMH::Target: CustomOnionMessageHandler,
433 /// Constructs a new `OnionMessenger` to send, forward, and delegate received onion messages to
434 /// their respective handlers.
436 entropy_source: ES, node_signer: NS, logger: L, message_router: MR, offers_handler: OMH,
439 let mut secp_ctx = Secp256k1::new();
440 secp_ctx.seeded_randomize(&entropy_source.get_secure_random_bytes());
444 pending_messages: Mutex::new(HashMap::new()),
453 /// Send an onion message with contents `message` to the destination of `path`.
455 /// See [`OnionMessenger`] for example usage.
456 pub fn send_onion_message<T: CustomOnionMessageContents>(
457 &self, path: OnionMessagePath, message: OnionMessageContents<T>,
458 reply_path: Option<BlindedPath>
459 ) -> Result<(), SendError> {
460 let (introduction_node_id, onion_msg) = create_onion_message(
461 &self.entropy_source, &self.node_signer, &self.secp_ctx,
462 path, message, reply_path
465 let mut pending_per_peer_msgs = self.pending_messages.lock().unwrap();
466 if outbound_buffer_full(&introduction_node_id, &pending_per_peer_msgs) { return Err(SendError::BufferFull) }
467 match pending_per_peer_msgs.entry(introduction_node_id) {
468 hash_map::Entry::Vacant(_) => Err(SendError::InvalidFirstHop),
469 hash_map::Entry::Occupied(mut e) => {
470 e.get_mut().push_back(onion_msg);
476 fn respond_with_onion_message<T: CustomOnionMessageContents>(
477 &self, response: OnionMessageContents<T>, path_id: Option<[u8; 32]>,
478 reply_path: Option<BlindedPath>
480 let sender = match self.node_signer.get_node_id(Recipient::Node) {
481 Ok(node_id) => node_id,
484 self.logger, "Unable to retrieve node id when responding to onion message with \
485 path_id {:02x?}", path_id
491 let peers = self.pending_messages.lock().unwrap().keys().copied().collect();
493 let destination = match reply_path {
494 Some(reply_path) => Destination::BlindedPath(reply_path),
497 self.logger, "Missing reply path when responding to onion message with path_id \
504 let path = match self.message_router.find_path(sender, peers, destination) {
508 self.logger, "Failed to find path when responding to onion message with \
509 path_id {:02x?}", path_id
515 log_trace!(self.logger, "Responding to onion message with path_id {:02x?}", path_id);
517 if let Err(e) = self.send_onion_message(path, response, None) {
519 self.logger, "Failed responding to onion message with path_id {:02x?}: {:?}",
527 pub(super) fn release_pending_msgs(&self) -> HashMap<PublicKey, VecDeque<msgs::OnionMessage>> {
528 let mut pending_msgs = self.pending_messages.lock().unwrap();
529 let mut msgs = HashMap::new();
530 // We don't want to disconnect the peers by removing them entirely from the original map, so we
531 // swap the pending message buffers individually.
532 for (peer_node_id, pending_messages) in &mut *pending_msgs {
533 msgs.insert(*peer_node_id, core::mem::take(pending_messages));
539 fn outbound_buffer_full(peer_node_id: &PublicKey, buffer: &HashMap<PublicKey, VecDeque<msgs::OnionMessage>>) -> bool {
540 const MAX_TOTAL_BUFFER_SIZE: usize = (1 << 20) * 128;
541 const MAX_PER_PEER_BUFFER_SIZE: usize = (1 << 10) * 256;
542 let mut total_buffered_bytes = 0;
543 let mut peer_buffered_bytes = 0;
544 for (pk, peer_buf) in buffer {
546 let om_len = om.serialized_length();
547 if pk == peer_node_id {
548 peer_buffered_bytes += om_len;
550 total_buffered_bytes += om_len;
552 if total_buffered_bytes >= MAX_TOTAL_BUFFER_SIZE ||
553 peer_buffered_bytes >= MAX_PER_PEER_BUFFER_SIZE
562 impl<ES: Deref, NS: Deref, L: Deref, MR: Deref, OMH: Deref, CMH: Deref> OnionMessageHandler
563 for OnionMessenger<ES, NS, L, MR, OMH, CMH>
565 ES::Target: EntropySource,
566 NS::Target: NodeSigner,
568 MR::Target: MessageRouter,
569 OMH::Target: OffersMessageHandler,
570 CMH::Target: CustomOnionMessageHandler,
572 /// Handle an incoming onion message. Currently, if a message was destined for us we will log, but
573 /// soon we'll delegate the onion message to a handler that can generate invoices or send
575 fn handle_onion_message(&self, _peer_node_id: &PublicKey, msg: &msgs::OnionMessage) {
577 &*self.node_signer, &self.secp_ctx, &*self.logger, &*self.custom_handler, msg
579 Ok(PeeledOnion::Receive(message, path_id, reply_path)) => {
580 log_trace!(self.logger,
581 "Received an onion message with path_id {:02x?} and {} reply_path",
582 path_id, if reply_path.is_some() { "a" } else { "no" });
583 let response = match message {
584 OnionMessageContents::Offers(msg) => {
585 self.offers_handler.handle_message(msg)
586 .map(|msg| OnionMessageContents::Offers(msg))
588 OnionMessageContents::Custom(msg) => {
589 self.custom_handler.handle_custom_message(msg)
590 .map(|msg| OnionMessageContents::Custom(msg))
593 if let Some(response) = response {
594 self.respond_with_onion_message(response, path_id, reply_path);
597 Ok(PeeledOnion::Forward(next_node_id, onion_message)) => {
598 let mut pending_per_peer_msgs = self.pending_messages.lock().unwrap();
599 if outbound_buffer_full(&next_node_id, &pending_per_peer_msgs) {
600 log_trace!(self.logger, "Dropping forwarded onion message to peer {:?}: outbound buffer full", next_node_id);
605 pending_per_peer_msgs.entry(next_node_id).or_insert_with(VecDeque::new);
607 match pending_per_peer_msgs.entry(next_node_id) {
608 hash_map::Entry::Vacant(_) => {
609 log_trace!(self.logger, "Dropping forwarded onion message to disconnected peer {:?}", next_node_id);
612 hash_map::Entry::Occupied(mut e) => {
613 e.get_mut().push_back(onion_message);
614 log_trace!(self.logger, "Forwarding an onion message to peer {}", next_node_id);
619 log_error!(self.logger, "Failed to process onion message {:?}", e);
624 fn peer_connected(&self, their_node_id: &PublicKey, init: &msgs::Init, _inbound: bool) -> Result<(), ()> {
625 if init.features.supports_onion_messages() {
626 let mut peers = self.pending_messages.lock().unwrap();
627 peers.insert(their_node_id.clone(), VecDeque::new());
632 fn peer_disconnected(&self, their_node_id: &PublicKey) {
633 let mut pending_msgs = self.pending_messages.lock().unwrap();
634 pending_msgs.remove(their_node_id);
637 fn provided_node_features(&self) -> NodeFeatures {
638 let mut features = NodeFeatures::empty();
639 features.set_onion_messages_optional();
643 fn provided_init_features(&self, _their_node_id: &PublicKey) -> InitFeatures {
644 let mut features = InitFeatures::empty();
645 features.set_onion_messages_optional();
650 impl<ES: Deref, NS: Deref, L: Deref, MR: Deref, OMH: Deref, CMH: Deref> OnionMessageProvider
651 for OnionMessenger<ES, NS, L, MR, OMH, CMH>
653 ES::Target: EntropySource,
654 NS::Target: NodeSigner,
656 MR::Target: MessageRouter,
657 OMH::Target: OffersMessageHandler,
658 CMH::Target: CustomOnionMessageHandler,
660 fn next_onion_message_for_peer(&self, peer_node_id: PublicKey) -> Option<msgs::OnionMessage> {
661 let mut pending_msgs = self.pending_messages.lock().unwrap();
662 if let Some(msgs) = pending_msgs.get_mut(&peer_node_id) {
663 return msgs.pop_front()
669 // TODO: parameterize the below Simple* types with OnionMessenger and handle the messages it
671 /// Useful for simplifying the parameters of [`SimpleArcChannelManager`] and
672 /// [`SimpleArcPeerManager`]. See their docs for more details.
674 /// This is not exported to bindings users as `Arc`s don't make sense in bindings.
676 /// [`SimpleArcChannelManager`]: crate::ln::channelmanager::SimpleArcChannelManager
677 /// [`SimpleArcPeerManager`]: crate::ln::peer_handler::SimpleArcPeerManager
678 pub type SimpleArcOnionMessenger<L> = OnionMessenger<
682 Arc<DefaultMessageRouter>,
683 IgnoringMessageHandler,
684 IgnoringMessageHandler
687 /// Useful for simplifying the parameters of [`SimpleRefChannelManager`] and
688 /// [`SimpleRefPeerManager`]. See their docs for more details.
690 /// This is not exported to bindings users as general type aliases don't make sense in bindings.
692 /// [`SimpleRefChannelManager`]: crate::ln::channelmanager::SimpleRefChannelManager
693 /// [`SimpleRefPeerManager`]: crate::ln::peer_handler::SimpleRefPeerManager
694 pub type SimpleRefOnionMessenger<'a, 'b, 'c, L> = OnionMessenger<
698 &'c DefaultMessageRouter,
699 IgnoringMessageHandler,
700 IgnoringMessageHandler
703 /// Construct onion packet payloads and keys for sending an onion message along the given
704 /// `unblinded_path` to the given `destination`.
705 fn packet_payloads_and_keys<T: CustomOnionMessageContents, S: secp256k1::Signing + secp256k1::Verification>(
706 secp_ctx: &Secp256k1<S>, unblinded_path: &[PublicKey], destination: Destination,
707 message: OnionMessageContents<T>, mut reply_path: Option<BlindedPath>, session_priv: &SecretKey
708 ) -> Result<(Vec<(Payload<T>, [u8; 32])>, Vec<onion_utils::OnionKeys>), secp256k1::Error> {
709 let num_hops = unblinded_path.len() + destination.num_hops();
710 let mut payloads = Vec::with_capacity(num_hops);
711 let mut onion_packet_keys = Vec::with_capacity(num_hops);
713 let (mut intro_node_id_blinding_pt, num_blinded_hops) = if let Destination::BlindedPath(BlindedPath {
714 introduction_node_id, blinding_point, blinded_hops }) = &destination {
715 (Some((*introduction_node_id, *blinding_point)), blinded_hops.len()) } else { (None, 0) };
716 let num_unblinded_hops = num_hops - num_blinded_hops;
718 let mut unblinded_path_idx = 0;
719 let mut blinded_path_idx = 0;
720 let mut prev_control_tlvs_ss = None;
721 let mut final_control_tlvs = None;
722 utils::construct_keys_callback(secp_ctx, unblinded_path.iter(), Some(destination), session_priv,
723 |_, onion_packet_ss, ephemeral_pubkey, control_tlvs_ss, unblinded_pk_opt, enc_payload_opt| {
724 if num_unblinded_hops != 0 && unblinded_path_idx < num_unblinded_hops {
725 if let Some(ss) = prev_control_tlvs_ss.take() {
726 payloads.push((Payload::Forward(ForwardControlTlvs::Unblinded(
728 next_node_id: unblinded_pk_opt.unwrap(),
729 next_blinding_override: None,
733 prev_control_tlvs_ss = Some(control_tlvs_ss);
734 unblinded_path_idx += 1;
735 } else if let Some((intro_node_id, blinding_pt)) = intro_node_id_blinding_pt.take() {
736 if let Some(control_tlvs_ss) = prev_control_tlvs_ss.take() {
737 payloads.push((Payload::Forward(ForwardControlTlvs::Unblinded(ForwardTlvs {
738 next_node_id: intro_node_id,
739 next_blinding_override: Some(blinding_pt),
740 })), control_tlvs_ss));
743 if blinded_path_idx < num_blinded_hops.saturating_sub(1) && enc_payload_opt.is_some() {
744 payloads.push((Payload::Forward(ForwardControlTlvs::Blinded(enc_payload_opt.unwrap())),
746 blinded_path_idx += 1;
747 } else if let Some(encrypted_payload) = enc_payload_opt {
748 final_control_tlvs = Some(ReceiveControlTlvs::Blinded(encrypted_payload));
749 prev_control_tlvs_ss = Some(control_tlvs_ss);
752 let (rho, mu) = onion_utils::gen_rho_mu_from_shared_secret(onion_packet_ss.as_ref());
753 onion_packet_keys.push(onion_utils::OnionKeys {
755 shared_secret: onion_packet_ss,
757 blinding_factor: [0; 32],
765 if let Some(control_tlvs) = final_control_tlvs {
766 payloads.push((Payload::Receive {
768 reply_path: reply_path.take(),
770 }, prev_control_tlvs_ss.unwrap()));
772 payloads.push((Payload::Receive {
773 control_tlvs: ReceiveControlTlvs::Unblinded(ReceiveTlvs { path_id: None, }),
774 reply_path: reply_path.take(),
776 }, prev_control_tlvs_ss.unwrap()));
779 Ok((payloads, onion_packet_keys))
782 /// Errors if the serialized payload size exceeds onion_message::BIG_PACKET_HOP_DATA_LEN
783 fn construct_onion_message_packet<T: CustomOnionMessageContents>(payloads: Vec<(Payload<T>, [u8; 32])>, onion_keys: Vec<onion_utils::OnionKeys>, prng_seed: [u8; 32]) -> Result<Packet, ()> {
785 // "`len` allows larger messages to be sent than the standard 1300 bytes allowed for an HTLC
786 // onion, but this should be used sparingly as it is reduces anonymity set, hence the
787 // recommendation that it either look like an HTLC onion, or if larger, be a fixed size."
788 let payloads_ser_len = onion_utils::payloads_serialized_length(&payloads);
789 let hop_data_len = if payloads_ser_len <= SMALL_PACKET_HOP_DATA_LEN {
790 SMALL_PACKET_HOP_DATA_LEN
791 } else if payloads_ser_len <= BIG_PACKET_HOP_DATA_LEN {
792 BIG_PACKET_HOP_DATA_LEN
793 } else { return Err(()) };
795 onion_utils::construct_onion_message_packet::<_, _>(
796 payloads, onion_keys, prng_seed, hop_data_len)