lnwallet/size: correct commit to-local and 2nd stage script sizes

In this commit, we correct our size estimates for to-local scripts,
which are used on the commitment transaction and the htlc
success/timeout transactions. There have been observed cases of
transactions getting stuck because our estimates were too low, and cause
the transactions to not be relayed.

Our previous estimate for the commitment to-local script was derived
from an older version of the script. Though the estimate is greater than
the actual size, this has been updated with the current estimate of 79
bytes.

This estimates makes the assumption that CSV delays will be at most
4 bytes when serialized. Since this value is expressed in relative block
heights, this should be more than sufficient for our needs, even though
the maximum possible size for the little-endian int64 is 9 bytes (plus
an OP_DATA).

The other correction is to use the ToLocalScriptSize as our estimate for
htlc timeout/success scripts, as they are the same script. Previously,
our estimate was derived from the proper script, though we were 6 bytes
shy of the new to-local estimate, since we counted the csv_delay as 1
byte, and missed some other OP_DATAs.

All derived estimates have been updating depending on the new and
improved ToLocalScriptSize estimate, and fix some estimates that did not
include the witness length in the estimate.

Finally, we correct some weight miscalculations in:
 - AcceptedHtlcTimeoutWitnessSize: missing data push lengths
 - OfferedHtlcSuccessWitnessSize: extra 73 byte sig, missing data push lengths
 - OfferedHtlcPenaltyWitnessSize: missing 33 byte pubkey
This commit is contained in:
Conner Fromknecht 2018-07-24 20:30:48 -07:00
parent e0baa49690
commit ee2f2573c1
No known key found for this signature in database
GPG Key ID: E7D737B67FA592C7

@ -143,8 +143,8 @@ const (
WitnessHeaderSize = 1 + 1 WitnessHeaderSize = 1 + 1
// BaseTxSize 8 bytes // BaseTxSize 8 bytes
// - Version: 4 bytes // - Version: 4 bytes
// - LockTime: 4 bytes // - LockTime: 4 bytes
BaseTxSize = 4 + 4 BaseTxSize = 4 + 4
// BaseCommitmentTxSize 125 + 43 * num-htlc-outputs bytes // BaseCommitmentTxSize 125 + 43 * num-htlc-outputs bytes
@ -186,67 +186,38 @@ const (
// weight limits. // weight limits.
MaxHTLCNumber = 966 MaxHTLCNumber = 966
// ToLocalScriptSize 83 bytes // ToLocalScriptSize 79 bytes
// - OP_IF: 1 byte
// - OP_DATA: 1 byte (revocationkey length)
// - revocationkey: 33 bytes
// - OP_CHECKSIG: 1 byte
// - OP_ELSE: 1 byte
// - OP_DATA: 1 byte (localkey length)
// - local_delay_key: 33 bytes
// - OP_CHECKSIG_VERIFY: 1 byte
// - OP_DATA: 1 byte (delay length)
// - delay: 8 bytes
// -OP_CHECKSEQUENCEVERIFY: 1 byte
// - OP_ENDIF: 1 byte
ToLocalScriptSize = 1 + 1 + 33 + 1 + 1 + 1 + 33 + 1 + 1 + 8 + 1 + 1
// ToLocalTimeoutWitnessSize x bytes
// - number_of_witness_elements: 1 byte
// - local_delay_sig_length: 1 byte
// - local_delay_sig: 73 bytes
// - zero_length: 1 byte
// - witness_script_length: 1 byte
// - witness_script (to_local_script)
ToLocalTimeoutWitnessSize = 1 + 1 + 73 + 1 + 1 + ToLocalScriptSize
// ToLocalPenaltyWitnessSize 160 bytes
// - number_of_witness_elements: 1 byte
// - revocation_sig_length: 1 byte
// - revocation_sig: 73 bytes
// - one_length: 1 byte
// - witness_script_length: 1 byte
// - witness_script (to_local_script)
ToLocalPenaltyWitnessSize = 1 + 1 + 73 + 1 + 1 + ToLocalScriptSize
// SecondLevelHtlcScriptSize 73 bytes
// - OP_IF: 1 byte // - OP_IF: 1 byte
// - OP_DATA: 1 byte // - OP_DATA: 1 byte
// - revoke_key: 33 bytes // - revoke_key: 33 bytes
// - OP_ELSE: 1 byte // - OP_ELSE: 1 byte
// - csv_delay: 1 byte // - OP_DATA: 1 byte
// - csv_delay: 4 bytes
// - OP_CHECKSEQUENCEVERIFY: 1 byte // - OP_CHECKSEQUENCEVERIFY: 1 byte
// - OP_DROP: 1 byte // - OP_DROP: 1 byte
// - OP_DATA: 1 byte
// - delay_key: 33 bytes // - delay_key: 33 bytes
// - OP_ENDIF: 1 byte // - OP_ENDIF: 1 byte
// - OP_CHECKSIG: 1 byte // - OP_CHECKSIG: 1 byte
SecondLevelHtlcScriptSize = 73 ToLocalScriptSize = 1 + 1 + 33 + 1 + 1 + 4 + 1 + 1 + 1 + 33 + 1 + 1
// SecondLevelHtlcPenaltyWitnessSize 149 bytes // ToLocalTimeoutWitnessSize 156 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - revoke_sig_length: 1 byte // - local_delay_sig_length: 1 byte
// - revoke_sig: 73 bytes // - local_delay_sig: 73 bytes
// - OP_TRUE: 1 byte // - zero_length: 1 byte
// - witness_script (second_level_script_size) // - witness_script_length: 1 byte
SecondLevelHtlcPenaltyWitnessSize = 1 + 1 + 73 + 1 + SecondLevelHtlcScriptSize // - witness_script (to_local_script)
ToLocalTimeoutWitnessSize = 1 + 1 + 73 + 1 + 1 + ToLocalScriptSize
// SecondLevelHtlcSuccessWitnessSize 149 bytes // ToLocalPenaltyWitnessSize 156 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - success_sig_length: 1 byte // - revocation_sig_length: 1 byte
// - success_sig: 73 bytes // - revocation_sig: 73 bytes
// - nil_length: 1 byte // - OP_TRUE: 1 byte
// - witness_script (second_level_script_size) // - witness_script_length: 1 byte
SecondLevelHtlcSuccessWitnessSize = 1 + 1 + 73 + 1 + SecondLevelHtlcScriptSize // - witness_script (to_local_script)
ToLocalPenaltyWitnessSize = 1 + 1 + 73 + 1 + 1 + ToLocalScriptSize
// AcceptedHtlcScriptSize 139 bytes // AcceptedHtlcScriptSize 139 bytes
// - OP_DUP: 1 byte // - OP_DUP: 1 byte
@ -286,34 +257,36 @@ const (
AcceptedHtlcScriptSize = 3*1 + 20 + 5*1 + 33 + 7*1 + 20 + 4*1 + AcceptedHtlcScriptSize = 3*1 + 20 + 5*1 + 33 + 7*1 + 20 + 4*1 +
33 + 5*1 + 4 + 5*1 33 + 5*1 + 4 + 5*1
// AcceptedHtlcTimeoutWitnessSize 214 // AcceptedHtlcTimeoutWitnessSize 216
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - sender_sig: 73 bytes // - sender_sig_length: 1 byte
// - nil_length: 1 byte // - sender_sig: 73 bytes
// - witness_script: (accepted_htlc_script) // - nil_length: 1 byte
AcceptedHtlcTimeoutWitnessSize = 1 + 73 + 1 + AcceptedHtlcScriptSize // - witness_script_length: 1 byte
// - witness_script: (accepted_htlc_script)
AcceptedHtlcTimeoutWitnessSize = 1 + 1 + 73 + 1 + 1 + AcceptedHtlcScriptSize
// AcceptedHtlcSuccessWitnessSize 325 bytes // AcceptedHtlcSuccessWitnessSize 322 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - nil_length: 1 byte // - nil_length: 1 byte
// - sig_alice_length: 1 byte // - sig_alice_length: 1 byte
// - sig_alice: 73 bytes // - sig_alice: 73 bytes
// - sig_bob_length: 1 byte // - sig_bob_length: 1 byte
// - sig_bob: 73 bytes // - sig_bob: 73 bytes
// - preimage_length: 1 byte // - preimage_length: 1 byte
// - preimage: 32 bytes // - preimage: 32 bytes
// - witness_script_length: 1 byte // - witness_script_length: 1 byte
// - witness_script (accepted_htlc_script) // - witness_script (accepted_htlc_script)
AcceptedHtlcSuccessWitnessSize = 1 + 1 + 73 + 1 + 73 + 1 + 32 + 1 + AcceptedHtlcScriptSize AcceptedHtlcSuccessWitnessSize = 1 + 1 + 73 + 1 + 73 + 1 + 32 + 1 + AcceptedHtlcScriptSize
// AcceptedHtlcPenaltyWitnessSize 249 bytes // AcceptedHtlcPenaltyWitnessSize 249 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - revocation_sig_length: 1 byte // - revocation_sig_length: 1 byte
// - revocation_sig: 73 bytes // - revocation_sig: 73 bytes
// - revocation_key_length: 1 byte // - revocation_key_length: 1 byte
// - revocation_key: 33 bytes // - revocation_key: 33 bytes
// - witness_script_length: 1 byte // - witness_script_length: 1 byte
// - witness_script (accepted_htlc_script) // - witness_script (accepted_htlc_script)
AcceptedHtlcPenaltyWitnessSize = 1 + 1 + 73 + 1 + 33 + 1 + AcceptedHtlcScriptSize AcceptedHtlcPenaltyWitnessSize = 1 + 1 + 73 + 1 + 33 + 1 + AcceptedHtlcScriptSize
// OfferedHtlcScriptSize 133 bytes // OfferedHtlcScriptSize 133 bytes
@ -351,26 +324,29 @@ const (
OfferedHtlcScriptSize = 3*1 + 20 + 5*1 + 33 + 10*1 + 33 + 5*1 + 20 + 4*1 OfferedHtlcScriptSize = 3*1 + 20 + 5*1 + 33 + 10*1 + 33 + 5*1 + 20 + 4*1
// OfferedHtlcTimeoutWitnessSize 285 bytes // OfferedHtlcTimeoutWitnessSize 285 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - nil_length: 1 byte // - nil_length: 1 byte
// - sig_alice_length: 1 byte // - sig_alice_length: 1 byte
// - sig_alice: 73 bytes // - sig_alice: 73 bytes
// - sig_bob_length: 1 byte // - sig_bob_length: 1 byte
// - sig_bob: 73 bytes // - sig_bob: 73 bytes
// - nil_length: 1 byte // - nil_length: 1 byte
// - witness_script_length: 1 byte // - witness_script_length: 1 byte
// - witness_script (offered_htlc_script) // - witness_script (offered_htlc_script)
OfferedHtlcTimeoutWitnessSize = 1 + 1 + 1 + 73 + 1 + 73 + 1 + 1 + OfferedHtlcScriptSize OfferedHtlcTimeoutWitnessSize = 1 + 1 + 1 + 73 + 1 + 73 + 1 + 1 + OfferedHtlcScriptSize
// OfferedHtlcSuccessWitnessSize 283 bytes // OfferedHtlcSuccessWitnessSize 317 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
// - nil_length: 1 byte // - nil_length: 1 byte
// - receiver_sig: 73 bytes // - receiver_sig_length: 1 byte
// - sender_sigs: 73 bytes // - receiver_sig: 73 bytes
// - payment_preimage: 32 bytes // - sender_sig_length: 1 byte
// - witness_script_length: 1 byte // - sender_sig: 73 bytes
// - witness_script (offered_htlc_script) // - payment_preimage_length: 1 byte
OfferedHtlcSuccessWitnessSize = 1 + 1 + 73 + 73 + 73 + 32 + 1 + OfferedHtlcScriptSize // - payment_preimage: 32 bytes
// - witness_script_length: 1 byte
// - witness_script (offered_htlc_script)
OfferedHtlcSuccessWitnessSize = 1 + 1 + 1 + 73 + 1 + 73 + 1 + 32 + 1 + OfferedHtlcScriptSize
// OfferedHtlcPenaltyWitnessSize 243 bytes // OfferedHtlcPenaltyWitnessSize 243 bytes
// - number_of_witness_elements: 1 byte // - number_of_witness_elements: 1 byte
@ -380,7 +356,7 @@ const (
// - revocation_key: 33 bytes // - revocation_key: 33 bytes
// - witness_script_length: 1 byte // - witness_script_length: 1 byte
// - witness_script (offered_htlc_script) // - witness_script (offered_htlc_script)
OfferedHtlcPenaltyWitnessSize = 1 + 1 + 73 + 1 + 1 + OfferedHtlcScriptSize OfferedHtlcPenaltyWitnessSize = 1 + 1 + 73 + 1 + 33 + 1 + OfferedHtlcScriptSize
) )
// estimateCommitTxWeight estimate commitment transaction weight depending on // estimateCommitTxWeight estimate commitment transaction weight depending on