Skip to content

Add support for zero-fee commitment format #3192

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Add support for zero-fee commitment format #3192

wants to merge 5 commits into from

Conversation

@t-bast
Copy link
Member

@t-bast t-bast commented Oct 20, 2025
edited
Loading

We add support for the zero-fee commitment format specified in lightning/bolts#1228.

Channels using this commitment format benefit from better protection against pinning attacks (thanks to TRUC/v3 transactions), don't need the update_fee mechanism, have less dust exposure risk, and use an overall simpler state machine.

If our peer publishes their commitment transaction, we use our main output to CPFP it (by also spending the ephemeral anchor), which provides a very efficient way (no additional wallet inputs involved) to force-close a channel.

In the future, we may want to use the ReplaceableTxPublisher for all force-close transactions, and use any transaction available to pay the commit fees directly from channel funds. This would make our codebase more consistent, but is a bigger change.

@t-bast t-bast force-pushed the zero-fee-commitments branch 3 times, most recently from 107182e to 03d3ac3 Compare October 27, 2025 15:15
@codecov-commenter
Copy link

codecov-commenter commented Oct 28, 2025

⚠️ Please install the 'codecov app svg image' to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

❌ Patch coverage is 94.23077% with 6 lines in your changes missing coverage. Please review.
✅ Project coverage is 88.95%. Comparing base (f93d02f) to head (7532699).
⚠️ Report is 45 commits behind head on master.

Files with missing lines Patch % Lines
...la/fr/acinq/eclair/transactions/Transactions.scala 89.28% 6 Missing ⚠️
❗ Your organization needs to install the Codecov GitHub app to enable full functionality.
Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #3192      +/-   ##
==========================================
+ Coverage   86.43%   88.95%   +2.51%     
==========================================
  Files         242      218      -24     
  Lines       22607    20538    -2069     
  Branches      832      810      -22     
==========================================
- Hits        19541    18270    -1271     
+ Misses       3066     2268     -798
Files with missing lines Coverage Δ
...core/src/main/scala/fr/acinq/eclair/Features.scala 100.00% <100.00%> (ø)
...re/src/main/scala/fr/acinq/eclair/NodeParams.scala 92.54% <100.00%> (+0.27%) ⬆️
...r/acinq/eclair/blockchain/fee/OnChainFeeConf.scala 100.00% <100.00%> (ø)
...cala/fr/acinq/eclair/channel/ChannelFeatures.scala 98.36% <100.00%> (-1.64%) ⬇️
...in/scala/fr/acinq/eclair/channel/Commitments.scala 95.30% <100.00%> (-0.63%) ⬇️
...c/main/scala/fr/acinq/eclair/channel/Helpers.scala 92.86% <100.00%> (+0.22%) ⬆️
...in/scala/fr/acinq/eclair/channel/fsm/Channel.scala 84.04% <100.00%> (-0.27%) ⬇️
...q/eclair/channel/fsm/ChannelOpenSingleFunded.scala 91.75% <100.00%> (-0.42%) ⬇️
...inq/eclair/channel/fsm/CommonFundingHandlers.scala 93.10% <ø> (ø)
...a/fr/acinq/eclair/channel/fsm/CommonHandlers.scala 90.38% <ø> (ø)
... and 5 more

... and 11 files with indirect coverage changes

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@t-bast t-bast force-pushed the zero-fee-commitments branch from 7532699 to 169c7a6 Compare November 3, 2025 08:34
@t-bast t-bast force-pushed the zero-fee-commitments branch 2 times, most recently from de9520c to b13e59b Compare November 12, 2025 11:53
pm47
pm47 reviewed Nov 12, 2025
View reviewed changes
Copy link
Member

@pm47 pm47 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, didn't review the publishing/funding logic.

@t-bast t-bast marked this pull request as ready for review November 12, 2025 16:13
@t-bast t-bast mentioned this pull request Nov 18, 2025
Open
@t-bast
Add support for zero-fee commitment format
59222b5 
We add support for the zero-fee commitment format specified in
lightning/bolts#1228.

Channels using this commitment format benefit from better protection
against pinning attacks (thanks to TRUC/v3 transactions), don't need
the `update_fee` mechanism, have less dust exposure risk, and use an
overall simpler state machine.

In this commit, we simply introduce the commitment format and create
the corresponding transactions.
@t-bast
Rename ClaimRemoteDelayedOutputTx
d88d9e7 
It isn't delayed anymore for v3 transactions. We could use static wallet
public key, but in most cases it wouldn't work and adds extra complexity
so we don't do it. We add a comment in the documentation of this class
to explain why we're always making a 2nd-stage transaction.
@t-bast
Validate channel parameters
5b128a4 
We apply slightly different validation for zero-fee commitments:

- the commit feerate must be `0 sat/byte`
- the max number of accepted HTLCs must be at most 114
- `update_fee` cannot be used

We verify those requirements during channel creation and add tests
for normal channel operation.
@t-bast
Handle force-closing zero-fee channels
ca06f72 
We add support for force-close zero-fee channels. When publishing the
local commit, this works mostly the same way as other channel types.
The only difference is that we don't even attempt to publish the commit
tx individually: we always bundle it with the anchor transaction.

When we detect the remote commit though, we're able to introduce some
new behavior:

- if we have a large enough main output, we use that to pay the fees
  of the remote commit tx (unless it is already confirmed), which avoids
  using a wallet input
- otherwise, we spend the anchor output, which competes with the remote
  peer package

Since we're only using the anchor transaction or our main output to
spend the ephemeral anchor, we cannot publish HTLC txs until the
commit tx is confirmed. We will in the future make *all* transactions
go through the `ReplaceableTxPublisher`, and at the point we'll be able
to simplify this, but it's too early for this refactoring, so for now
we simply wait for the commit tx to be confirmed before publishing
HTLC txs.
@t-bast
Don't force-close on remote error
00eb098 
When using zero-fee commitments, we don't force-close when receiving an
`error` from our peer: if they want to force-close the channel, they can
publish their commitment instead of forcing us to publish ours. It is
especially true when the commit tx doesn't pay any fees, because the
publisher will pay the entire fees for the force-close.

Note that for wallet peers, we could introduce a mechanism where they
send us their signed commit tx in the error message if they don't have
any wallet input to pay the fees, and we could be nice and publish it
while paying the fees from our main output (which isn't delayed since
it is the remote commit from our point of view).
@t-bast t-bast force-pushed the zero-fee-commitments branch from 1e7b755 to 00eb098 Compare November 19, 2025 10:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pm47 pm47 pm47 left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

Optech Make Me Famous!

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@t-bast @codecov-commenter @pm47