feat: enable random anti-fee sniping

[aagbotemi]

This PR implements Anti-Fee-Sniping with randomization as discussed in issue #4

Notes to the reviewers

The implementation adds randomization to anti-fee-sniping behavior:

1. Uses a 50/50 chance to choose between nLockTime and nSequence (when possible)
2. Adds a 10% chance to set either value further back in time (by a random value between 0-99)
3. Detects taproot inputs and their confirmation status

• I've signed all my commits
• I ran cargo fmt and cargo clippy before committing
• I've added docs for the new feature

Closes #4

[ValuedMammal]

Thanks @aagbotemi I'm still in the process of reviewing. I agree it would be nice to resolve the clippy error - my other suggestion would be to globally allow the lints in lib.rs for now and open an issue to fix them in a future PR, but in general I agree with your approach to simply Box the large enum variants.

[aagbotemi]

Thanks @aagbotemi I'm still in the process of reviewing.

Thank you @ValuedMammal. Clippy error and large enum variant error in the CI build has been fixed. For subsequent ones(if there is), I'll open another for it.

[ValuedMammal]

I have some review notes

• For imports, prefer alloc over std. This way we can actually support no-std.
• I want to see a test of some kind that creates a PSBT with enable_anti_fee_sniping and checks the expected values of the locktime and/or sequence.

[aagbotemi]

I have some review notes

Noted.
alloc is now preferred over std.
adding test to check enable_anti_fee_sniping

[ValuedMammal]

We should also be able to remove the clippy allow attributes in lib.rs.

[aagbotemi]

We should also be able to remove the clippy allow attributes in lib.rs.

Alright, I will remove the clippy allow attributes in lib.rs

[ValuedMammal]

I'm still in favor of using Box on PlanOrPsbtInput and ScriptSource::Descriptor.

[aagbotemi]

I'm still in favor of using Box on PlanOrPsbtInput and ScriptSource::Descriptor.

Fixed! I've updated the code to use Box.

[ValuedMammal]

In general I think the git history would be cleaner if we didn't merge with merge commits but instead rebase the commits in this PR.

[aagbotemi]

In general I think the git history would be cleaner if we didn't merge with merge commits but instead rebase the commits in this PR.

Alright, I've done the cleanup

[ValuedMammal]

Approach ACK.

[nymius]

I would add a comment explaining why we are using these functions and not rand::random_bool.

[aagbotemi]

The anti fee sniping implementation started from here. So, I have been using rand_core for the implementation since then. I can change to rand if we agree to use that.

cc: @ValuedMammal, we have access to using Rng trait using rand

[nymius]

Same here for rand::random_range. Also, I would mention here we are using unbiased methods to pick from the range.

[nymius]

nit: remove these comments.

[nymius]

nit: remove this comment

[nymius]

To make the example more dynamic I would set up all the conditions to make the example dependent of this 50/50 coin flip. Because I'm never hitting the sequence anti fee sniping branch below.

[aagbotemi]

Okay. I have fixed it.

[nymius]

Is this line reachable? I guess you want to show the feature is working, but if anti fee sniping works as intended, this is not going to ever happen. This isn't a test. Maybe showing the nLockTime or nSequence in a meaningful way is a better approach for the example.

[aagbotemi]

Thank you for the review. I have fixed it.

[nymius]

nit: this isn't providing new information, I recommend to remove it

[nymius]

@aagbotemi sorry for the confusion here, but I was just referring to line 149 here, 147 and 148 were good

[aagbotemi]

Alright.

[nymius]

@ValuedMammal what do you think about rand as additional dependency? I don't want to fall in the slippery slope of adding new dependencies with each feature, but I wouldn't implement anti-fee sniping without rand, so, is anti-fee sniping something bdk-tx should ship by default? Should we consider adding it as a feature dependency?

[ValuedMammal]

Ideally we want to support no-std, so my question is how are we providing a source of randomness for no-std environments.

[ValuedMammal]

The approach we took for bdk_wallet is to depend on rand_core in order to have RngCore trait and essentially split the interface based on whether std feature is enabled. If std, then we have access to rand via bitcoin::secp256k1::rand. If no-std then the user can pass in something that implements RngCore.

/// Create PSBT.
#[cfg(feature = "std")]
pub fn create_psbt(&self, params: PsbtParams) -> Result<bitcoin::Psbt, CreatePsbtError> {
    self.create_psbt_with_rng(params, &mut rand::thread_rng())
}

/// Create PSBT with `rng`.
pub fn create_psbt_with_rng(&self, params: PsbtParams, rng: &mut impl RngCore) -> Result<bitcoin::Psbt, CreatePsbtError> { ... }

The other option is to feature-gate the enable_anti_fee_sniping option entirely but that seems a bit less useful.

[nymius]

@aagbotemi could you adapt your code here and the current state of the PR to the above solution? Using feature gates

[aagbotemi]

Alright, will do that.

[nymius]

I think you are missing the std implementation using rand full features.

[nymius]

Looks good overall, not sure if any review comments are still unresolved.

@ValuedMammal I'm not sure we have fulfilled this requirement yet. Do you think we should roll a custom random range even if the user has std available?

[ValuedMammal]

Sorry about the merge conflict.

[aagbotemi]

Sorry about the merge conflict.

Alright. I will rebase to resolve the conflict.

[aagbotemi]

Currently running cargo build​ is throwing error

error[E0433]: failed to resolve: could not find `rand` in `key`
   --> src/selection.rs:201:74
    |
201 | ...::bitcoin::key::rand::thread_rng())
    |                    ^^^^ could not find `rand` in `key`
    |
note: found an item that was configured out
   --> /home/abiodun/.cargo/registry/src/index.crates.io-1949cf8c6b5b557f/bitcoin-0.32.7/src/crypto/key.rs:29:20
    |
29  | pub use secp256k1::rand;
    |                    ^^^^
note: the item is gated behind the `rand-std` feature
   --> /home/abiodun/.cargo/registry/src/index.crates.io-1949cf8c6b5b557f/bitcoin-0.32.7/src/crypto/key.rs:28:7
    |
28  | #[cfg(feature = "rand-std")]
    |       ^^^^^^^^^^^^^^^^^^^^

For more information about this error, try `rustc --explain E0433`.
error: could not compile `bdk_tx` (lib) due to 1 previous error

The solution I could think of is moving bitcoin from dev-dependencies​ to dependencies​. But it's a very big dependency.

EDIT: another solution is to add the rand crate, which is better (I would like to know if it's okay we want to add a new dependency)

[ValuedMammal]

Looks good overall, not sure if any review comments are still unresolved.