Skip to content

Reject invalid parameters instead of silently dropping them#182

Open
benthecarman wants to merge 2 commits intolightningdevkit:mainfrom
benthecarman:cli-silent
Open

Reject invalid parameters instead of silently dropping them#182
benthecarman wants to merge 2 commits intolightningdevkit:mainfrom
benthecarman:cli-silent

Conversation

@benthecarman
Copy link
Copy Markdown
Collaborator

@benthecarman benthecarman commented Apr 7, 2026

Previously, onchain_send silently fell back to the node's default fee estimation when given an invalid fee_rate_sat_per_vb (e.g., overflows), and bolt12_receive silently dropped the quantity parameter when amount_msat was not set. Both cases now return an error instead.

Matching CLI-side validation added for both cases.

@ldk-reviews-bot
Copy link
Copy Markdown

ldk-reviews-bot commented Apr 7, 2026
edited
Loading

👋 Thanks for assigning @tnull as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

@benthecarman benthecarman requested a review from tnull April 7, 2026 20:43
tnull
tnull reviewed Apr 8, 2026
View reviewed changes
Comment thread ldk-server-cli/src/main.rs Outdated
},
Commands::OnchainSend { address, amount, send_all, fee_rate_sat_per_vb } => {
if let Some(rate) = fee_rate_sat_per_vb {
// Mirrors FeeRate::from_sat_per_vb: sat/vb * 1000/4 = sat/kwu
Copy link
Copy Markdown
Collaborator

@tnull tnull Apr 8, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If we get into that territory, let's just take a dependency on bitcoin and use bitcoin::FeeRate?

Copy link
Copy Markdown
Collaborator Author

@benthecarman benthecarman Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just removed the cli side validation. Too hit this would have to enter something greater than u64::MAX / 250 which is super unlikely a user enters anyways and don't want to add the whole rust-bitcoin dep tree to the cli just for that.

Comment thread ldk-server-cli/src/main.rs
Commands::Bolt12Receive { description, amount, expiry_secs, quantity } => {
if quantity.is_some() && amount.is_none() {
handle_error_msg(
"quantity can only be set for fixed-amount offers (amount must be provided)",
Copy link
Copy Markdown
Collaborator

@tnull tnull Apr 8, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Debatable, @TheBlueMatt previously wanted to drop quantity from the LDK Node API (lightningdevkit/ldk-node#642, but was closed as abandoned). Matt, do you still think we should?

benthecarman and others added 2 commits April 15, 2026 12:44
@benthecarman @claude
Return error for invalid onchain send fee rate
734358b 
Previously, an invalid fee_rate_sat_per_vb (overflows) was silently
collapsed into None via .and_then(), causing the node to substitute
its default fee estimation without informing the user. Now the server
returns an InvalidRequestError if the fee rate overflows.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@benthecarman @claude
Error when quantity set without amount in bolt12_receive
d9b4876 
Previously, setting quantity without amount_msat silently produced a
variable-amount offer with no quantity constraint. Now both the server
and CLI reject this misconfiguration with a clear error message.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tnull tnull tnull left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@benthecarman @ldk-reviews-bot @tnull