Track cached async receive offers in OffersMessageFlow

In future commits, as part of being an async recipient, we will interactively
build offers and static invoices with an always-online node that will serve
static invoices on our behalf.

Once an offer is built and we've requested persistence of the corresponding
invoice from the server, we will use the new offer cache added here to save the
invoice metadata and the offer in ChannelManager, though the OffersMessageFlow
is responsible for keeping the cache updated.

We want to cache and persist these offers so we always have them at the ready,
we don't want to begin the process of interactively building an offer the
moment it is needed. The offers are likely to be long-lived so caching them
avoids having to keep interactively rebuilding them after every restart.

Author: valentinewallace

lightning/src/ln/channelmanager.rs

@@ -86,6 +86,7 @@ use crate::ln::outbound_payment::{
 	StaleExpiration,
 };
 use crate::ln::types::ChannelId;
+use crate::offers::async_receive_offer_cache::AsyncReceiveOfferCache;
 use crate::offers::flow::OffersMessageFlow;
 use crate::offers::invoice::{
 	Bolt12Invoice, DerivedSigningPubkey, InvoiceBuilder, DEFAULT_RELATIVE_EXPIRY,
@@ -14264,6 +14265,7 @@ where
 			(15, self.inbound_payment_id_secret, required),
 			(17, in_flight_monitor_updates, option),
 			(19, peer_storage_dir, optional_vec),
+			(21, self.flow.writeable_async_receive_offer_cache(), required),
 		});
 
 		Ok(())
@@ -14843,6 +14845,7 @@ where
 		let mut decode_update_add_htlcs: Option<HashMap<u64, Vec<msgs::UpdateAddHTLC>>> = None;
 		let mut inbound_payment_id_secret = None;
 		let mut peer_storage_dir: Option<Vec<(PublicKey, Vec<u8>)>> = None;
+		let mut async_receive_offer_cache: AsyncReceiveOfferCache = AsyncReceiveOfferCache::new();
 		read_tlv_fields!(reader, {
 			(1, pending_outbound_payments_no_retry, option),
 			(2, pending_intercepted_htlcs, option),
@@ -14860,6 +14863,7 @@ where
 			(15, inbound_payment_id_secret, option),
 			(17, in_flight_monitor_updates, option),
 			(19, peer_storage_dir, optional_vec),
+			(21, async_receive_offer_cache, (default_value, async_receive_offer_cache)),
 		});
 		let mut decode_update_add_htlcs = decode_update_add_htlcs.unwrap_or_else(|| new_hash_map());
 		let peer_storage_dir: Vec<(PublicKey, Vec<u8>)> = peer_storage_dir.unwrap_or_else(Vec::new);
@@ -15546,7 +15550,7 @@ where
 			chain_hash, best_block, our_network_pubkey,
 			highest_seen_timestamp, expanded_inbound_key,
 			secp_ctx.clone(), args.message_router
-		);
+		).with_async_payments_offers_cache(async_receive_offer_cache);
 
 		let channel_manager = ChannelManager {
 			chain_hash,

lightning/src/offers/async_receive_offer_cache.rs

@@ -0,0 +1,166 @@
+// This file is Copyright its original authors, visible in version control
+// history.
+//
+// This file is licensed under the Apache License, Version 2.0 <LICENSE-APACHE
+// or http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
+// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your option.
+// You may not use this file except in accordance with one or both of these
+// licenses.
+
+//! Data structures and methods for caching offers that we interactively build with a static invoice
+//! server as an async recipient. The static invoice server will serve the resulting invoices to
+//! payers on our behalf when we're offline.
+
+use crate::blinded_path::message::BlindedMessagePath;
+use crate::io;
+use crate::io::Read;
+use crate::ln::msgs::DecodeError;
+use crate::offers::nonce::Nonce;
+use crate::offers::offer::Offer;
+use crate::onion_message::messenger::Responder;
+use crate::prelude::*;
+use crate::util::ser::{Readable, Writeable, Writer};
+use core::time::Duration;
+
+/// The status of this offer in the cache.
+enum OfferStatus {
+	/// This offer has been returned to the user from the cache, so it needs to be stored until it
+	/// expires and its invoice needs to be kept updated.
+	Used,
+	/// This offer has not yet been returned to the user, and is safe to replace to ensure we always
+	/// have a maximally fresh offer. We always want to have at least 1 offer in this state,
+	/// preferably a few so we can respond to user requests for new offers without returning the same
+	/// one multiple times. Returning a new offer each time is better for privacy.
+	Ready {
+		/// If this offer's invoice has been persisted for some time, it's safe to replace to ensure we
+		/// always have the freshest possible offer available when the user goes to pull an offer from
+		/// the cache.
+		invoice_confirmed_persisted_at: Duration,
+	},
+	/// This offer's invoice is not yet confirmed as persisted by the static invoice server, so it is
+	/// not yet ready to receive payments.
+	Pending,
+}
+
+struct AsyncReceiveOffer {
+	offer: Offer,
+	/// Whether this offer is used, ready for use, or pending invoice persistence with the static
+	/// invoice server.
+	status: OfferStatus,
+
+	/// The below fields are used to generate and persist a new static invoice with the invoice
+	/// server. We support automatically rotating the invoice for long-lived offers so users don't
+	/// have to update the offer they've posted on e.g. their website if fees change or the invoices'
+	/// payment paths become otherwise outdated.
+	offer_nonce: Nonce,
+	update_static_invoice_path: Responder,
+}
+
+impl_writeable_tlv_based_enum!(OfferStatus,
+	(0, Used) => {},
+	(1, Ready) => {
+		(0, invoice_confirmed_persisted_at, required),
+	},
+	(2, Pending) => {},
+);
+
+impl_writeable_tlv_based!(AsyncReceiveOffer, {
+	(0, offer, required),
+	(2, offer_nonce, required),
+	(4, status, required),
+	(6, update_static_invoice_path, required),
+});
+
+/// If we are an often-offline recipient, we'll want to interactively build offers and static
+/// invoices with an always-online node that will serve those static invoices to payers on our
+/// behalf when we are offline.
+///
+/// This struct is used to cache those interactively built offers, and should be passed into
+/// [`OffersMessageFlow`] on startup as well as persisted whenever an offer or invoice is updated.
+///
+/// ## Lifecycle of a cached offer
+///
+/// 1. On initial startup, recipients will request offer paths from the static invoice server
+/// 2. Once a set of offer paths is received, recipients will build an offer and corresponding
+///    static invoice, cache the offer as pending, and send the invoice to the server for
+///    persistence
+/// 3. Once the invoice is confirmed as persisted by the server, the recipient will mark the
+///    corresponding offer as ready to receive payments
+/// 4. If the offer is later returned to the user, it will be kept cached and its invoice will be
+///    kept up-to-date until the offer expires
+/// 5. If the offer does not get returned to the user within a certain timeframe, it will be
+///    replaced with a new one using fresh offer paths requested from the static invoice server
+///
+/// ## Staying in sync with the Static Invoice Server
+///
+/// * Pending offers: for a given cached offer where a corresponding invoice is not yet confirmed as
+/// persisted by the static invoice server, we will retry persisting an invoice for that offer until
+/// it succeeds, once per timer tick
+/// * Confirmed offers that have not yet been returned to the user: we will periodically replace an
+/// unused confirmed offer with a new one, to try to always have a fresh offer available. We wait
+/// several hours in between replacements to ensure the new offer replacement doesn't conflict with
+/// the old one
+/// * Confirmed offers that have been returned to the user: we will send the server a fresh invoice
+/// corresponding to each used offer once per timer tick until the offer expires
+///
+/// [`OffersMessageFlow`]: crate::offers::flow::OffersMessageFlow
+pub struct AsyncReceiveOfferCache {
+	/// The cache is allocated up-front with a fixed number of slots for offers, where each slot is
+	/// filled in with an AsyncReceiveOffer as they are interactively built.
+	///
+	/// We only want to store a limited number of static invoices with the server, and those stored
+	/// invoices need to regularly be replaced with new ones. When sending a replacement invoice to
+	/// the server, we indicate which invoice is being replaced by the invoice's "slot number",
+	/// see [`ServeStaticInvoice::invoice_slot`]. So rather than internally tracking which cached
+	/// offer corresponds to what invoice slot number on the server's end, we always set the slot
+	/// number to the index of the offer in the cache.
+	///
+	/// [`ServeStaticInvoice::invoice_slot`]: crate::onion_message::async_payments::ServeStaticInvoice
+	offers: Vec<Option<AsyncReceiveOffer>>,
+	/// Used to limit the number of times we request paths for our offer from the static invoice
+	/// server.
+	#[allow(unused)] // TODO: remove when we get rid of async payments cfg flag
+	offer_paths_request_attempts: u8,
+	/// Blinded paths used to request offer paths from the static invoice server.
+	#[allow(unused)] // TODO: remove when we get rid of async payments cfg flag
+	paths_to_static_invoice_server: Vec<BlindedMessagePath>,
+}
+
+impl AsyncReceiveOfferCache {
+	/// Creates an empty [`AsyncReceiveOfferCache`] to be passed into [`OffersMessageFlow`].
+	///
+	/// [`OffersMessageFlow`]: crate::offers::flow::OffersMessageFlow
+	pub fn new() -> Self {
+		Self {
+			offers: Vec::new(),
+			offer_paths_request_attempts: 0,
+			paths_to_static_invoice_server: Vec::new(),
+		}
+	}
+
+	pub(super) fn paths_to_static_invoice_server(&self) -> Vec<BlindedMessagePath> {
+		self.paths_to_static_invoice_server.clone()
+	}
+}
+
+impl Writeable for AsyncReceiveOfferCache {
+	fn write<W: Writer>(&self, w: &mut W) -> Result<(), io::Error> {
+		write_tlv_fields!(w, {
+			(0, self.offers, required_vec),
+			(2, self.paths_to_static_invoice_server, required_vec),
+			// offer paths request retry info always resets on restart
+		});
+		Ok(())
+	}
+}
+
+impl Readable for AsyncReceiveOfferCache {
+	fn read<R: Read>(r: &mut R) -> Result<Self, DecodeError> {
+		_init_and_read_len_prefixed_tlv_fields!(r, {
+			(0, offers, required_vec),
+			(2, paths_to_static_invoice_server, required_vec),
+		});
+		let offers: Vec<Option<AsyncReceiveOffer>> = offers;
+		Ok(Self { offers, offer_paths_request_attempts: 0, paths_to_static_invoice_server })
+	}
+}

lightning/src/offers/flow.rs

@@ -36,6 +36,7 @@ use crate::ln::channelmanager::{
 	Verification, {PaymentId, CLTV_FAR_FAR_AWAY, MAX_SHORT_LIVED_RELATIVE_EXPIRY},
 };
 use crate::ln::inbound_payment;
+use crate::offers::async_receive_offer_cache::AsyncReceiveOfferCache;
 use crate::offers::invoice::{
 	Bolt12Invoice, DerivedSigningPubkey, ExplicitSigningPubkey, InvoiceBuilder,
 	UnsignedBolt12Invoice, DEFAULT_RELATIVE_EXPIRY,
@@ -56,6 +57,7 @@ use crate::routing::router::Router;
 use crate::sign::{EntropySource, NodeSigner};
 use crate::sync::{Mutex, RwLock};
 use crate::types::payment::{PaymentHash, PaymentSecret};
+use crate::util::ser::Writeable;
 
 #[cfg(async_payments)]
 use {
@@ -98,6 +100,10 @@ where
 	pub(crate) pending_offers_messages: Mutex<Vec<(OffersMessage, MessageSendInstructions)>>,
 
 	pending_async_payments_messages: Mutex<Vec<(AsyncPaymentsMessage, MessageSendInstructions)>>,
+	async_receive_offer_cache: Mutex<AsyncReceiveOfferCache>,
+	/// Blinded paths used to request offer paths from the static invoice server, if we are an async
+	/// recipient.
+	paths_to_static_invoice_server: Mutex<Vec<BlindedMessagePath>>,
 
 	#[cfg(feature = "dnssec")]
 	pub(crate) hrn_resolver: OMNameResolver,
@@ -133,9 +139,25 @@ where
 			hrn_resolver: OMNameResolver::new(current_timestamp, best_block.height),
 			#[cfg(feature = "dnssec")]
 			pending_dns_onion_messages: Mutex::new(Vec::new()),
+
+			async_receive_offer_cache: Mutex::new(AsyncReceiveOfferCache::new()),
+			paths_to_static_invoice_server: Mutex::new(Vec::new()),
 		}
 	}
 
+	/// If we are an async recipient, on startup we'll interactively build offers and static invoices
+	/// with an always-online node that will serve static invoices on our behalf. Once the offer is
+	/// built and the static invoice is confirmed as persisted by the server, the underlying
+	/// [`AsyncReceiveOfferCache`] should be persisted so we remember the offers we've built.
+	pub(crate) fn with_async_payments_offers_cache(
+		mut self, async_receive_offer_cache: AsyncReceiveOfferCache,
+	) -> Self {
+		self.paths_to_static_invoice_server =
+			Mutex::new(async_receive_offer_cache.paths_to_static_invoice_server());
+		self.async_receive_offer_cache = Mutex::new(async_receive_offer_cache);
+		self
+	}
+
 	/// Gets the node_id held by this [`OffersMessageFlow`]`
 	fn get_our_node_id(&self) -> PublicKey {
 		self.our_network_pubkey
@@ -1082,4 +1104,9 @@ where
 	) -> Vec<(DNSResolverMessage, MessageSendInstructions)> {
 		core::mem::take(&mut self.pending_dns_onion_messages.lock().unwrap())
 	}
+
+	/// Get the `AsyncReceiveOfferCache` for persistence.
+	pub(crate) fn writeable_async_receive_offer_cache(&self) -> impl Writeable + '_ {
+		&self.async_receive_offer_cache
+	}
 }

lightning/src/offers/mod.rs

@@ -16,6 +16,7 @@
 pub mod offer;
 pub mod flow;
 
+pub(crate) mod async_receive_offer_cache;
 pub mod invoice;
 pub mod invoice_error;
 mod invoice_macros;