fuzz: Add cross-version ChannelMonitor roundtrip coverage

[Atishyy27]

Addresses #4452.

This extends chanmon_consistency with optional cross-version
ChannelMonitor deserialize/reserialize roundtrip coverage during
reload flows.

When selected by the fuzz input, serialized monitor bytes are:

1. Deserialized using lightning_0_2
2. Re-serialized using lightning_0_2
3. Reloaded using the current version

This exercises cross-version monitor persistence/reload paths during
fuzzing while keeping version-specific runtime types isolated.

While developing this path, fuzzing also reproduced the
persistence/reload asymmetry behavior tracked in #4518 and fixed in
#4520.

This builds on the upgrade/downgrade fuzzing direction discussed in
#4452.

[ldk-reviews-bot]

👋 Thanks for assigning @ldk-claude-review-bot as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

[ldk-claude-review-bot]

Bug: The use_old_mons /= 3; line that was here before was deleted and not re-added. This line is essential — it shifts the base-3 value so that when node B has two monitors (one for the A-B channel, one for the B-C channel), each monitor can use a different reload strategy.

Without this line, every iteration of the for (channel_id, mut prev_state) in old_monitors.drain() loop uses the same use_old_mons % 3 value, so both monitors always get the same treatment. This is a regression in fuzz coverage.

The comment at lines 972-973 still describes the intended behavior ("shifting use_old_mons one in base-3") but the actual shift was removed.

Suggested change

	let mut monitor_bytes = serialized_mon.clone();
	if use_old_mons % 3 == 2 {
	let keys_manager_0_2 = lightning_0_2::sign::KeysManager::new(&[0u8; 32], 0, 0, false);
	let read_res: Result<(
	bitcoin::BlockHash,
	lightning_0_2::chain::channelmonitor::ChannelMonitor<lightning_0_2::sign::InMemorySigner>
	), _> = lightning_0_2::util::ser::ReadableArgs::read(
	&mut &monitor_bytes[..],
	(&keys_manager_0_2, &keys_manager_0_2)
	);
	if let Ok((block_hash_0_2, old_monitor)) = read_res {
	let mut reserialized = Vec::new();
	lightning_0_2::util::ser::Writeable::write(&(block_hash_0_2, &old_monitor), &mut reserialized).unwrap();
	monitor_bytes = reserialized;
	}
	}
	let mut monitor_bytes = serialized_mon.clone();
	if use_old_mons % 3 == 2 {
	let keys_manager_0_2 = lightning_0_2::sign::KeysManager::new(&[0u8; 32], 0, 0, false);
	let read_res: Result<(
	bitcoin::BlockHash,
	lightning_0_2::chain::channelmonitor::ChannelMonitor<lightning_0_2::sign::InMemorySigner>
	), _> = lightning_0_2::util::ser::ReadableArgs::read(
	&mut &monitor_bytes[..],
	(&keys_manager_0_2, &keys_manager_0_2)
	);
	if let Ok((block_hash_0_2, old_monitor)) = read_res {
	let mut reserialized = Vec::new();
	lightning_0_2::util::ser::Writeable::write(&(block_hash_0_2, &old_monitor), &mut reserialized).unwrap();
	monitor_bytes = reserialized;
	}
	}
	use_old_mons /= 3;

[ldk-claude-review-bot]

The KeysManager is initialized with an all-zero seed [0u8; 32], while the actual node uses a KeyProvider with secret key [0..0, 1, node_id]. Since read_chan_signer reads the signer data from the serialized bytes this likely works, but it would be more correct to derive the seed from the node context (or at minimum add a comment explaining why all-zeros is acceptable here).

[ldk-claude-review-bot]

Adding lightning v0.2.0 from crates.io as a dependency with the _test_utils feature. Be aware that _test_utils is a semver-exempt internal feature — if it changes or is removed in a point release, this will break. Also, pulling a published crate alongside the local path version of the same crate may cause type/trait incompatibilities (e.g., bitcoin::BlockHash from the crates.io dependency's transitive deps vs. the workspace's bitcoin). Please verify that the bitcoin types from both dependency trees are the same version and actually unify.

[ldk-claude-review-bot]

After thorough re-review of the entire diff, I find that the issues raised in my prior review have been addressed by the current code:

• Prior "critical bug" about missing /= 3 was incorrect. The diff clearly includes use_old_mons /= 6; at line 983, which correctly replaces the old /= 3 shift for the new base-6 encoding. Both of node B's monitors can select independent strategies. I apologize for the false positive.

• Prior "design concern" about coupling was addressed by the base-6 approach. The encoding correctly represents all 6 combinations: % 3 selects the monitor (0=oldest, 1=second-oldest, 2=newest), while % 6 >= 3 independently controls the cross-version roundtrip. All paths are reachable.

The remaining concerns from my prior review (all-zero KeysManager seed, _test_utils semver-exempt feature, indentation style) are already posted as inline comments and still apply as minor/informational items.

No new issues found beyond what was already flagged.