[WIP] Payjoin receiver

[benalleng]

This adds support for payjoin receive in liana.

This is currently WIP and has the following TODOs

• Move bip21 to be created at runtime instead of at the time of receiver creation in lianad allowing us to not need to store bip21
• Ensure that the expiry is properly handled as it currently panics when an incomplete session expires

[xstoicunicornx]

I know this is still a WIP and my comments may be a bit premature but just wanted to brain dump some of the notes I took as part of the BOSS Payjoin Showcase session.

Some additional general comments:

• should amount be added to URI?
• should adjusting expiration will be added to settings?
• when I ran this PR Liana panicked with this error when I tried to send a payjoin to the receiver:2026-04-09T16:19:40.194941Z ERROR liana_gui:82: panic occurred at line 508 of file lianad/src/database/sqlite/mod.rs: Some("database must be available: SqliteFailure(Error { code: Unknown, extended_code: 1 }, Some(\"table payjoin_outpoints has no column named added_at\"))") 0: backtrace::backtrace::libunwind::trace
• in the GUI when payjoin is listed under previously generated addresses it shows the address rather than URI (I'm guessing this is related to this comment)

[xstoicunicornx]

Should this be the payjoin directory url instead? Aren't OHttpKeys specific to a payjoin directory, not relay?

If sopayjoin_save_ohttp_keys and payjoin_get_ohttp_keys also would need to be updated.

[xstoicunicornx]

Bumping this, aren't the ohttp keys specific to the payjoin directory?

[xstoicunicornx]

Is it possible to reuse PDK's implementation of fetch_ohttp_keys?

[benalleng]

Yes, but the current PDK impl is async so we would need to add some blocking capability and without it the async stuff would cascade. So i think its best to keep it manually re-implemented. though It might be nice to add sync versions for situations like this

[xstoicunicornx]

No fee range actually being applied.

[benalleng]

Thanks for the feedback,

Regarding the UI notes.

should amount be added to URI?

Since it is not a mandatory addition in the payjoin spec I thought that for a desktop on-chain only wallet the UX of adding an amount on the receive side is sort of unfamiliar, especially given the current liana receiver UI

should adjusting expiration will be added to settings?

I think again perhaps this is worth some user research but with the ability to do a fallback tx at any point I am not sure that extending the expiration as an option is great to put in the user's direct control

in the GUI when payjoin is listed under previously generated addresses it shows the address rather than URI (I'm guessing this is related to this comment)

This was something we landed on due wanting to discourage reuse of payjoin sessions. I could share this bip21 with as many people as I want similar to address reuse but instead of just bad privacy you would get a bunch of payjoin failures

The method again is a holdout as the last time I gave this some serious focus I transitioned from storing the bip21 to the session ID directly and I previously wanted to have access to the bip21 in the db where I just generate it in the gui now and don't store it directly

[benalleng]

when I ran this PR Liana panicked with this error when I tried to send a payjoin to the receiver:2026-04-09T16:19:40.194941Z ERROR liana_gui:82: panic occurred at line 508 of file lianad/src/database/sqlite/mod.rs: Some("database must be available: SqliteFailure(Error { code: Unknown, extended_code: 1 }, Some("table payjoin_outpoints has no column named added_at"))") 0: backtrace::backtrace::libunwind::trace

This is definitely an artifact of me playing in the database between naming the timestamp added_at vs created_at https://github.com/wizardsardine/liana/pull/2011/changes#diff-4f33457fe83ad075401f91984457b7503d757068fcb26def0e090c584fd8439dR1146

[yashrajd]

should amount be added to URI?

Since it is not a mandatory addition in the payjoin spec I thought that for a desktop on-chain only wallet the UX of adding an amount on the receive side is sort of unfamiliar, especially given the current liana receiver UI

Familiarity might not be an issue IMO, since Liana users presumably also use other (esp mobile) wallets that have this. IMO it's more about the use case or user type: how often do they want to receive an specific exact amount? That said, this seems like a reasonable starting point.

should adjusting expiration will be added to settings?

I think again perhaps this is worth some user research but with the ability to do a fallback tx at any point I am not sure that extending the expiration as an option is great to put in the user's direct control

My hunch is, Liana users are likely to be sophisticated enough to use such a feature properly. Perhaps there could be appropriate messaging/guidance about using the feature.
From user research side, I'd say we have zero/little data to go on with, but you can always survey users to know their preferences (albeit with the "faster horse-carriages" caveat) (again without existing user base it is hard to rely on stated user preferences).

[xstoicunicornx]

I didn't re-review the code yet, just tried to complete receiving a payjoin and was still not completing successfully. See details below.

[xstoicunicornx]

I couldn't quite figure out what the intention was here with is_signed, however during my testing is_signed never gets set to true and the proposal never gets finalized. Can you explain what validation is being done here?

Also, when I replaced |_| with |psbt| in the finalize_psbt closure it was still possible to clone as mut, whats the rationale for calling psbt_to_sign outside of this closure?

Something else that may be related is that currently psbt_to_sign doesn't return a psbt with sender sigs removed, this is something I am fixing in payjoin/rust-payjoin#1446. Let me know if it would good for me to create a separate smaller PR for this just to get this fixed sooner.

I did also try hardcoding is_signed to true so the receiver does send out a psbt proposal, but its then erroring on the sender side during validation. So the finalize_psbt isn't quite working right, but that may be because the psbt thats being finalized has the leftover sender sigs still.

Apologies this was due to my incomplete understanding of the PSBT signing workflow

[xstoicunicornx]

Just started looking at this again. Good job with the broadcast fallback tx button, I like it. Couple quick notes about it:

• broadcast fallback button should be available prior to signing so that its not necessary to sign to in order to broadcast
• when I try to use the broadcast fallback button I am getting an error (unfortunately not copy/pasteable so just attaching screenshot)

[benalleng]

I think I will want to try and use the latest commit for rust-payjoiin that includes payjoin/rust-payjoin#1470 so that I can just have broadcast_fallback send a cancel() and then send the fallback_tx it returns, It seems cleaner to do it this way as a native API call plus it leaves us with a nice cleanup of the payjoin session.

[DanGould]

sure we'll cut another release that includes the new function asap

[xstoicunicornx]

Looking much better :)

General feedback:

• The Broadcast fallback button should be available prior to signing PSBT
• Still getting error when broadcasting fallback transaction (maybe related to this comment?)
• Should user be allowed to specify multiple relays?
• Transactions display for payjoin receive tx should be more aligned with existing Liana receive txs (example screenshots below):
  • it is classified as outgoing transaction
  • only our coins should show as spent (right now includes senders coins)
  • our received payment output should be classified as payment output (right now it shows as change)
  • senders change output should show as external output
• If we only show the bip21 initially when clicking Receive Payjoin does it need to be stored as part of gui app receive state?
• Somewhat related and contradictory to last point, should bip21 be displayed until expiry?
• Lots of unimplemented!s in liana-gui/src/app/state/receive.rs
• Should we pro-actively validate that key's can be fetched from payjoin directory when it is updated in settings? Not sure how feasible that is with this UI framework

Questions:

• I couldn't follow the purpose of changing the descs: &[descriptors::SinglePathLianaDesc] parameters to desc: &descriptors::LianaDescriptor in the poller, can you help me follow why this was needed?

Edit: Broadcast fallback is working appropriately - I neglected to build on latest commit when testing sorry.

Regular receive tx:

Payjoin receive tx:

[xstoicunicornx]

Is there possibility that ohttp_keys on payjoin directory have been rotated more recently than the 7 days for which the ohttp keys have been stored here? If so there probably needs to be handling for this.

Some options:

• Maybe don't store ohttp keys at all? Fetching shouldn't be happening that frequently and would simplify code
• Try refetching keys if RecieverBuilder::new() returns error

Also mapping the error to a CommandError::IntoUrlError by default feels weird since the pj directory url ideally should have already been validated upstream.

[xstoicunicornx]

Is empty impl block needed?

[xstoicunicornx]

Is empty impl block needed?

[xstoicunicornx]

Why are we touching broadcast_spend? I don't think there is a payjoin flow that requires this?

Broadcasting the fallback transaction shouldn't require finalizing the inputs, and it would probably be cleaner to implement separate broadcast_payjoin_fallback if necessary.

[benalleng]

Good point, I was hoping that I could tie into some existing logic. but you're probably right these are best kept separate.

[xstoicunicornx]

Does this need to part of receive payjoin pr?