Rename Offer::signing_pubkey to Offer::issuer_id

[jkczyz]

The spec was recently changed to use offer_issuer_id instead of offer_node_id. LDK always used signing_pubkey to avoid confusion with a node_id. Rename it to issuer_id now that the spec is cleared up. Continue to use signing_pubkey in signing contexts.

Also, add issuer_id methods to invoice structs. Update test vectors from earlier spec changes.

[codecov]

Codecov Report

Attention: Patch coverage is 93.59606% with 13 lines in your changes missing coverage. Please review.

Project coverage is 89.62%. Comparing base (6662c5c) to head (e11025f).
Report is 8 commits behind head on main.

Files with missing lines	Patch %	Lines
lightning/src/offers/invoice.rs	70.96%	9 Missing ⚠️
lightning/src/ln/channelmanager.rs	71.42%	1 Missing and 1 partial ⚠️
lightning/src/offers/invoice_request.rs	96.42%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3218      +/-   ##
==========================================
- Coverage   89.65%   89.62%   -0.04%     
==========================================
  Files         126      126              
  Lines      102546   102564      +18     
  Branches   102546   102564      +18     
==========================================
- Hits        91935    91918      -17     
- Misses       7890     7916      +26     
- Partials     2721     2730       +9     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[valentinewallace]

rustfmt check is failing

[vincenzopalazzo]

LGTM, modulo CI.

[vincenzopalazzo]

I assume that this is a would-like-to-have review on Bolts lightning/bolts#798 (comment) ?

Anyway, I like the bolt idea invoice_signing_pubkey to make all less confusing.

[jkczyz]

Yeah, though we already use signing_pubkey in LDK. Updating the spec would just mean we update the name in InvoiceTlvStream and InvoiceTlvStreamRef.

[TheBlueMatt]

Needs rebase.

[TheBlueMatt]

Feel free to squash.

[TheBlueMatt]

I strongly prefer the signing_pubkey term, as issuer_id implies some kind of persistent ID and this absolutely should not be persistent. I don't think we should change it in the public API.

[jkczyz]

Don't we have the same problem with payer_id?

[TheBlueMatt]

Yea, and we should probably rename that IMO :).

[jkczyz]

Hmm... I thought the reason the spec was changed from node_id to issuer_id was because node_id implied it was some persistent id. Maybe issuer_signing_pubkey and payer_signing_pubkey?

[TheBlueMatt]

Hmm... I thought the reason the spec was changed from node_id to issuer_id was because node_id implied it was some persistent id.

Right, which is why we never did node_id :) But IMO _id is also a problem.

Maybe issuer_signing_pubkey and payer_signing_pubkey?

Or invoice_signing_pubkey and invreq_signing_pubkey to indicate that these are keys specific to this inv/req, and not specific to the issuer/payer.

[jkczyz]

Or invoice_signing_pubkey and invreq_signing_pubkey to indicate that these are keys specific to this inv/req, and not specific to the issuer/payer.

I'm not so keen on those. InvoiceRequest::invreq_signing_pubkey is redundant and Offer::invoice_signing_pubkey would make it such that we have both Bolt12Invoice::invoice_signing_pubkey -- also redundant and unclear where it is coming from -- and Bolt12Invoice::signing_pubkey.

Using "issuer" and "payer" is clearer, IMO. It's not that the signing pubkey is specific to the issuer/payer but rather belongs to them.

Or thought of another way, it is specific to the issuer/payer and thus it actually is an id. It's just that they can have multiple identities -- and thus ids -- that cannot be correlated. But happy to use issuer_signing_pubkey and payer_signing_pubkey if you prefer to not use "id".

[TheBlueMatt]

Sure, lets just do *_signing_pubkey. I think the "its an ID but they have multiple" is the wrong thing we should be communicating - we really need to communicate clearly and repeatedly that these are keys that sign the objects and no other objects, cause we've already seen lots of confusion on this.

[jkczyz]

PTAL, the latest push renamed both issuer_id and payer_id in the public API.

[shaavan]

Looks good to me, with just a few suggestions!

[shaavan]

Maybe we can reword it a little bit to make it more clear. How about?

Suggested change

	/// The public key used by the recipient to sign invoices.
	///
	/// From [`Offer::issuer_signing_pubkey`] and may be `None`; also `None` if the invoice was
	/// created in response to a [`Refund`].
	///
	/// [`Offer::issuer_signing_pubkey`]: crate::offers::offer::Offer::issuer_signing_pubkey
	/// Returns the public key used by the recipient to sign invoices.
	/// The returned value varies based on the context in which the invoice was created:
	/// If the invoice was created in response to an [`Offer`] then it returns the [`Offer::issuer_signing_pubkey`]
	/// If the invoice was created in response to a [`Refund`] then it returns `None`.
	///
	/// [`Offer::issuer_signing_pubkey`]: crate::offers::offer::Offer::issuer_signing_pubkey

[jkczyz]

This isn't correct. It may return None when created in response to an Offer as detailed in Offer::issuer_signing_pubkey. Rather than repeat those docs, I'd rather just link to them. Added some clarification in those docs for when it is None, though.

[shaavan]

Slight improvement suggestion.

Suggested change

	/// The public key corresponding to the key used to sign the invoice.
	///
	/// This will be:
	/// - [`Offer::issuer_signing_pubkey`] if `Some`, otherwise
	/// - the final blinded node id from a [`BlindedPath`] in [`Offer::paths`] if `None`.
	///
	/// [`Offer::issuer_signing_pubkey`]: crate::offers::offer::Offer::issuer_signing_pubkey
	/// [`Offer::paths`]: crate::offers::offer::Offer::paths
	/// The public key corresponding to the key used to sign the invoice.
	///
	/// - If the invoice was created in response to an [`Offer`]:
	/// - The public key will be [`Offer::issuer_signing_pubkey`] if it is `Some`.
	/// - If [`Offer::issuer_signing_pubkey`] is `None`, the key will be the final
	/// blinded node ID from a [`BlindedPath`] in [`Offer::paths`].
	///
	/// [`Offer`]: crate::offers::offer::Offer
	/// [`Offer::issuer_signing_pubkey`]: crate::offers::offer::Offer::issuer_signing_pubkey
	/// [`Offer::paths`]: crate::offers::offer::Offer::paths

[jkczyz]

This is always in response to an offer, so no need to have a leading statement here. Re-worded slightly for clarity.

[shaavan]

We have separated the macros for invoice, and static invoice. However, the macro name, structure, docs, and variable names are identical. Maybe we can update their docs the have information specific to each type?

[jkczyz]

These macros are private to the module, so I think it is fine to keep them as is.

[TheBlueMatt]

Needs rebase :/

[jkczyz]

Needs rebase :/

Rebased 😮‍💨

[TheBlueMatt]

LGTM, basically, feel free to squash. I do find the issuer terminology to be super confusing, though - after this PR I can do InvoiceRequest.issuer_signing_pubkey() and get back a pubkey for the Offer, not the issuer of the InvoiceRequest as the method seems to imply (and before this PR there's still InvoiceRequest.issuer() itself).

[jkczyz]

LGTM, basically, feel free to squash. I do find the issuer terminology to be super confusing, though - after this PR I can do InvoiceRequest.issuer_signing_pubkey() and get back a pubkey for the Offer, not the issuer of the InvoiceRequest as the method seems to imply (and before this PR there's still InvoiceRequest.issuer() itself).

We could introduce an OfferRef<'a> type (wrapping a reference to the InvoiceRequest, actually) and have those methods on it instead. Then we can still define them with the macro. Caller would do something like invoice_request.offer().signing_pubkey(). Would such a type be a problem for bindings?

[TheBlueMatt]

Why not just use method names that make sense in both contexts? That seems like a bunch of effort to avoid picking a more descriptive name :).

[jkczyz]

Why not just use method names that make sense in both contexts? That seems like a bunch of effort to avoid picking a more descriptive name :).

Some reason given in #3218 (comment). It's also inconsistent with other offer field names. Could use an offer_ and invreq_ prefixes everywhere, but arguably having a different code separator between a logical "struct" and "field" is more readable than smashing everything together with underscores. The former is also more difficult to do with macros without leaving the separator on where it isn't need (e.g., Offer::offer_issuer_id).

[TheBlueMatt]

Some reason given in #3218 (comment).

I agree with the comments there, but I don't think it specifically argues for "issuer".

It's also inconsistent with other offer field names. Could use an offer_ and invreq_ prefixes everywhere, but arguably having a different code separator between a logical "struct" and "field" is more readable than smashing everything together with underscores. The former is also more difficult to do with macros without leaving the separator on where it isn't need (e.g., Offer::offer_issuer_id).

I agree with this, but to be clear my main complaint isn't that we need Offer-issuer, but rather that issuer is ambiguous in a general sense. Using "payer" for the entity paying makes sense, but "issuer" isn't the opposite of that (I know we probably don't want to use "payee" cause that confuses things for Refunds), but there should be something better, IMO.

[TheBlueMatt]

To be clear, we also don't necessarily need to figure it out now - we already use "issuer" to describe the Offer creator, so using it again is fine, I just think we should stop using it :)

[valentinewallace]

2c -- I agree that InvoiceRequest::issuer_signing_pubkey is a bit confusing. Tbh, I don't see an issue with using payee or recipient terminology, if we want to stick to just renames and not go for Jeff's invoice_request.offer().offer_field() solution. But I don't think it's too critical to figure out right now so fine to ACK to unblock the follow-ups if Matt is on board.

[jkczyz]

2c -- I agree that InvoiceRequest::issuer_signing_pubkey is a bit confusing. Tbh, I don't see an issue with using payee or recipient terminology, if we want to stick to just renames and not go for Jeff's invoice_request.offer().offer_field() solution. But I don't think it's too critical to figure out right now so fine to ACK to unblock the follow-ups if Matt is on board.

FWIW, the offer issuer may not be the payment recipient.

[valentinewallace]

2c -- I agree that InvoiceRequest::issuer_signing_pubkey is a bit confusing. Tbh, I don't see an issue with using payee or recipient terminology, if we want to stick to just renames and not go for Jeff's invoice_request.offer().offer_field() solution. But I don't think it's too critical to figure out right now so fine to ACK to unblock the follow-ups if Matt is on board.

FWIW, the offer issuer may not be the payment recipient.

Ah, okay. Is this the payment notifications case?

[jkczyz]

Ah, okay. Is this the payment notifications case?

Yup, that's what I had in mind.

[TheBlueMatt]

Needs rebase.