htlcswitch: relax timelock verification in middle link to allow for shadow routes

In this commit, we relax the time lock verification when we realize we’re an intermediate hop. We no longer directly assert that the time lock we receive is _identical_, instead we allow slow slack and will reject iff, the incoming timelock minus the outgoing time lock doesn’t meet our delta requirements.
2017-10-18 22:20:47 -07:00 · 2017-10-18 22:20:47 -07:00 · 6a255fb588
commit 6a255fb588
parent bdc4d09b25
1 changed files with 8 additions and 7 deletions
--- a/htlcswitch/link.go
+++ b/htlcswitch/link.go
@ -1294,9 +1294,9 @@ func (l *channelLink) processLockedInHtlcs(
 				timeDelta := l.cfg.FwrdingPolicy.TimeLockDelta
 				if pd.Timeout-timeDelta <= heightNow {
 					log.Errorf("htlc(%x) has an expiry "+
-						"that's too soon: expiry=%v, "+
+						"that's too soon: outgoing_expiry=%v, "+
 						"best_height=%v", pd.RHash[:],
-						pd.Timeout, heightNow)
+						pd.Timeout-timeDelta, heightNow)

 					var failure lnwire.FailureMessage
 					update, err := l.cfg.GetLastChannelUpdate()
@ -1387,12 +1387,13 @@ func (l *channelLink) processLockedInHtlcs(
 				// time lock. Otherwise, whether the sender
 				// messed up, or an intermediate node tampered
 				// with the HTLC.
-				if pd.Timeout-timeDelta != fwdInfo.OutgoingCTLV {
+				if pd.Timeout-timeDelta < fwdInfo.OutgoingCTLV {
 					log.Errorf("Incoming htlc(%x) has "+
-						"incorrect time-lock value: expected "+
-						"%v blocks, got %v blocks",
-						pd.RHash[:], pd.Timeout-timeDelta,
-						fwdInfo.OutgoingCTLV)
+						"incorrect time-lock value: "+
+						"expected at least %v block delta, "+
+						"got %v block delta", pd.RHash[:],
+						timeDelta,
+						pd.Timeout-fwdInfo.OutgoingCTLV)

 					// Grab the latest routing policy so
 					// the sending node is up to date with