Add util fn for creating a Transaction from spendable outputs

[TheBlueMatt]

Based on #786, This adds a utility method, KeysManager::spend_spendable_outputs,
which constructs a Transaction from a given set of
SpendableOutputDescriptors, deriving relevant keys as needed.

It also adds methods which can sign individual inputs where
channel-specific key derivation is required to
InMemoryChannelKeys, making it easy to sign transaction inputs
when a custom KeysInterface is used with InMemoryChannelKeys.

[codecov]

Codecov Report

Merging #789 (95d0fe9) into main (2088f4b) will increase coverage by 0.01%.
The diff coverage is 95.66%.

@@            Coverage Diff             @@
##             main     #789      +/-   ##
==========================================
+ Coverage   90.75%   90.77%   +0.01%     
==========================================
  Files          44       44              
  Lines       24075    24282     +207     
==========================================
+ Hits        21849    22041     +192     
- Misses       2226     2241      +15     

Impacted Files	Coverage Δ
lightning/src/chain/channelmonitor.rs	95.68% <66.66%> (ø)
lightning/src/chain/keysinterface.rs	93.36% <95.20%> (+0.80%)	⬆️
lightning/src/util/transaction_utils.rs	98.06% <96.29%> (-1.94%)	⬇️
lightning/src/ln/chan_utils.rs	97.34% <100.00%> (+<0.01%)	⬆️
lightning/src/ln/functional_tests.rs	96.95% <100.00%> (-0.03%)	⬇️
lightning/src/util/macro_logger.rs	88.33% <100.00%> (ø)
lightning/src/util/test_utils.rs	83.16% <100.00%> (-1.66%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 2088f4b...95d0fe9. Read the comment docs.

[devrandom]

Probably not for this PR, but maybe this can be DelayedPaymentFromHolderOutput and the one below can be StaticPaymentFromCounterpartyOutput?

[TheBlueMatt]

Right, there are a few things in keysinterface that could use renaming, so maybe we can do it as a follow up - I'd like to rename ChanKeys to ChannelSigner (and a bunch of things downstream that use similar naming) as well.

[TheBlueMatt]

Went ahead and did this since Val had a further naming comment.

[devrandom]

it would be good to have the derivation path here (and maybe channel ID - see comment nearby), even if it's not used, just so that the user / KeysManager implementation can keep track of which channel is being swept

[TheBlueMatt]

Note this is really in #786. It would feel awkward to tie the scripts to a channel without moving the functions to get them to the ChannelSigner? I dont really want to do that, though, as the current setup is great in that the KeysInterface implementation is trivial and gives you direct control over all the entropy used and keys used directly (that aren't fixed by the lightning protocol), and the ChannelSigner implementation is all about the lightning protocol details.

I guess we could maybe pass the channel information to the functions in KeysInterface to get the fields as a middle ground, but ultimately a user probably would just want some kind of integer id to figure out what HD derivation path they used, not channel information, and I'm not really sure how to capture that easily.

[devrandom]

Oh, this wasn't about the scripts at all. It's about this struct (StaticOutput), which is constructed in ChannelMonitor when sweeping a payment to us. I'm just saying it would be good for the KeysManager to know which channel is being swept for housekeeping / policy controls. ChannelMonitor has the derivation ID handy, so it's easy to populate such a field in this struct.

[TheBlueMatt]

Right, it just felt awkward that we pass an id referencing the derivation id when the script/output itself isn't in any way related to a given derivation, the KeysManager returns them directly. Best would be to pass in the derivation info to the keysmanager when we get those scripts, I think, but we don't have it yet at that point, afair.

[devrandom]

OK, there's no rush to get into this in this PR.

[devrandom]

isn't this available from ChannelKeys, so doesn't need to be replicated here?

[TheBlueMatt]

No, this is the revocation point for the broadcast commitment transaction. I'll clarify the docs.

[devrandom]

Ah, we can't re-derive the revocation_pubkey, because that would require the counterparty's revocation base, which we don't have because we rederived ChannelKeys from scratch and therefore it doesn't have the counterparty's pubkeys.

However, we could still make it work if we looked up the populated ChannelKeys instead of re-deriving them.

So this brings up the question - why are we using derive_channel_keys instead of looking up the existing ChannelKeys in some index?

[TheBlueMatt]

Right. Depending on the specific KeysInterface implementation we could look up a globally-cached remote public keys object. However we should try to be as implementation-agnostic as possible, so in this case I'm not sure it's ideal. We could provide the raw data to re-derive in the event, but I'm not sure what that protects against - if they even is bogus no funds loss can occur, the client may just create an invalid transaction.

[devrandom]

It's pretty minor, just felt a bit more "normalized" to provide just the minimum set of fields.

[TheBlueMatt]

Rebased and squashed after dependent-PR merge with no other changes.

[valentinewallace]

Super useful utility! Seems like a big win for users.

[valentinewallace]

nit: this could be renamed to be uniform to DynamicOutputP2WSH: i.e., rename to DynamicOutputP2WSHDescriptor (or vice versa)

[TheBlueMatt]

Did something more akin to devrandom's suggestion above #789 (comment)

[valentinewallace]

New naming + typo fixes LGTM