package htlcswitch import ( "errors" "sync" "github.com/lightningnetwork/lnd/channeldb" "github.com/lightningnetwork/lnd/lnwire" ) var ( // ErrAlreadyPaid signals we have already paid this payment hash. ErrAlreadyPaid = errors.New("invoice is already paid") // ErrPaymentInFlight signals that payment for this payment hash is // already "in flight" on the network. ErrPaymentInFlight = errors.New("payment is in transition") // ErrPaymentNotInitiated is returned if payment wasn't initiated in // switch. ErrPaymentNotInitiated = errors.New("payment isn't initiated") // ErrPaymentAlreadyCompleted is returned in the event we attempt to // recomplete a completed payment. ErrPaymentAlreadyCompleted = errors.New("payment is already completed") // ErrUnknownPaymentStatus is returned when we do not recognize the // existing state of a payment. ErrUnknownPaymentStatus = errors.New("unknown payment status") ) // ControlTower tracks all outgoing payments made by the switch, whose primary // purpose is to prevent duplicate payments to the same payment hash. In // production, a persistent implementation is preferred so that tracking can // survive across restarts. Payments are transition through various payment // states, and the ControlTower interface provides access to driving the state // transitions. type ControlTower interface { // ClearForTakeoff atomically checks that no inflight or completed // payments exist for this payment hash. If none are found, this method // atomically transitions the status for this payment hash as InFlight. ClearForTakeoff(htlc *lnwire.UpdateAddHTLC) error // Success transitions an InFlight payment into a Completed payment. // After invoking this method, ClearForTakeoff should always return an // error to prevent us from making duplicate payments to the same // payment hash. Success(paymentHash [32]byte) error // Fail transitions an InFlight payment into a Grounded Payment. After // invoking this method, ClearForTakeoff should return nil on its next // call for this payment hash, allowing the switch to make a subsequent // payment. Fail(paymentHash [32]byte) error } // paymentControl is persistent implementation of ControlTower to restrict // double payment sending. type paymentControl struct { strict bool mx sync.Mutex db *channeldb.DB } // NewPaymentControl creates a new instance of the paymentControl. func NewPaymentControl(strict bool, db *channeldb.DB) ControlTower { return &paymentControl{ strict: strict, db: db, } } // ClearForTakeoff checks that we don't already have an InFlight or Completed // payment identified by the same payment hash. func (p *paymentControl) ClearForTakeoff(htlc *lnwire.UpdateAddHTLC) error { p.mx.Lock() defer p.mx.Unlock() // Retrieve current status of payment from local database. paymentStatus, err := p.db.FetchPaymentStatus(htlc.PaymentHash) if err != nil { return err } switch paymentStatus { case channeldb.StatusGrounded: // It is safe to reattempt a payment if we know that we haven't // left one in flight. Since this one is grounded, Transition // the payment status to InFlight to prevent others. return p.db.UpdatePaymentStatus(htlc.PaymentHash, channeldb.StatusInFlight) case channeldb.StatusInFlight: // We already have an InFlight payment on the network. We will // disallow any more payment until a response is received. return ErrPaymentInFlight case channeldb.StatusCompleted: // We've already completed a payment to this payment hash, // forbid the switch from sending another. return ErrAlreadyPaid default: return ErrUnknownPaymentStatus } } // Success transitions an InFlight payment to Completed, otherwise it returns an // error. After calling Success, ClearForTakeoff should prevent any further // attempts for the same payment hash. func (p *paymentControl) Success(paymentHash [32]byte) error { p.mx.Lock() defer p.mx.Unlock() paymentStatus, err := p.db.FetchPaymentStatus(paymentHash) if err != nil { return err } switch { case paymentStatus == channeldb.StatusGrounded && p.strict: // Our records show the payment as still being grounded, meaning // it never should have left the switch. return ErrPaymentNotInitiated case paymentStatus == channeldb.StatusGrounded && !p.strict: // Our records show the payment as still being grounded, meaning // it never should have left the switch. fallthrough case paymentStatus == channeldb.StatusInFlight: // A successful response was received for an InFlight payment, // mark it as completed to prevent sending to this payment hash // again. return p.db.UpdatePaymentStatus(paymentHash, channeldb.StatusCompleted) case paymentStatus == channeldb.StatusCompleted: // The payment was completed previously, alert the caller that // this may be a duplicate call. return ErrPaymentAlreadyCompleted default: return ErrUnknownPaymentStatus } } // Fail transitions an InFlight payment to Grounded, otherwise it returns an // error. After calling Fail, ClearForTakeoff should fail any further attempts // for the same payment hash. func (p *paymentControl) Fail(paymentHash [32]byte) error { p.mx.Lock() defer p.mx.Unlock() paymentStatus, err := p.db.FetchPaymentStatus(paymentHash) if err != nil { return err } switch { case paymentStatus == channeldb.StatusGrounded && p.strict: // Our records show the payment as still being grounded, meaning // it never should have left the switch. return ErrPaymentNotInitiated case paymentStatus == channeldb.StatusGrounded && !p.strict: // Our records show the payment as still being grounded, meaning // it never should have left the switch. fallthrough case paymentStatus == channeldb.StatusInFlight: // A failed response was received for an InFlight payment, mark // it as Grounded again to allow subsequent attempts. return p.db.UpdatePaymentStatus(paymentHash, channeldb.StatusGrounded) case paymentStatus == channeldb.StatusCompleted: // The payment was completed previously, and we are now // reporting that it has failed. Leave the status as completed, // but alert the user that something is wrong. return ErrPaymentAlreadyCompleted default: return ErrUnknownPaymentStatus } }