Make Map trait private

[tcharding]

The Map method insert_pair is never called for PartiallySignedTransaction. Separate the method into its own trait (Insert) and delete dead code. The dead code contains the alleged bug in #576.

• Patch 1: Preparatory cleanup
• Patch 2: Preparatory refactor
• Patch 3 and 4: Improve docs in the module that this PR touches
• Patch 5: Make Map trait private to the psbt module
• Patch 6: Make concensus_decode_global method into a function
• Patch 7 6: Pull insert_pair method out of Map trait into newly create Insert trait

Resolves: #576

(Title of PR is Make Map trait private because that is the API break.)

[Kixunil]

Not knowledgeable about the topic, structure of the code looks fine. Tests (as a separate commit) would be really helpful.

[apoelstra]

ACK 3582f69bfe8432d7c7976af7a9acd681e9e35dac

concept ACK making this an error. I'm not sure if there are any scenarios where the user might want to remove or replace keys in this map (IIRC the combine logic has some interesting stuff here where if it sees two different paths in one spot, it will always use the longer of the two), but the current "silently replace" behavior is surprising and inconsistent with how we handle e.g. proprietary keys.

I really like the structure of this PR. These cleanups are great. Thanks!

[tcharding]

I really like the structure of this PR. These cleanups are great. Thanks!

I tried something new; after your comment @apoelstra over here I've been thinking how to best get docs fixes in in the least invasive manner. I added a couple of patches to the PR that do docs improvements to the code already being touched by the PR.

[tcharding]

Tests (as a separate commit) would be really helpful

@Kixunil I can't really work out what needs testing here. The new logic in this PR is trivial, instead of putting foo in one map put it in another one - no point testing that really. Is there something specific you had in mind.

Now whether the logic is correct or not is another matter :)

[Kixunil]

My understanding was that it was previously wrong behavior and now it's fixed so write a test that fails for previous code and doesn't for the fixed version. This would make it less likely that future changes break it again.

[apoelstra]

Lol! So, there was not actually a behavioural bug at all then. (Indeed, the existing consensus_decode_global does the right thing.) It took me a few reads of the new code trying to figure out "where does the behavior change?" before I finally read your updated PR description.

ACK this PR even though it is now purely a cleanup/refactoring PR.

[apoelstra]

ACK 4158b2359391ea6200caf0dc56c909b4090099e2

[apoelstra]

Can you change the PR title to reflect its current contents?

[dpc]

I don't understand this comment, therefore I suspect it could be made more clear. Please remember that it's more necessary and helpful for people who do not understand what is going on, than to people that already do.

I understand that you figured out that this is never used, but I just don't understand why it is never used. And (often recrusive) "why" is the most important question to answer. Is it some accident, or are there deeper fundamental reasons behind it?

BTW. Implementation of a trait(interface) method that returns a "not implemented/needed" error is often a sign that the interface is incorrect. Possibly trait Map should be split into trait Map and trait MapMut : Map or something (named like DerefMut)

[apoelstra]

I suspect the reason is, as you say, that this Map trait tries to generalize over the different PSBT components but actually they have different logic.

[tcharding]

Thanks for your comments @dpc, I'll have a bit more of a play with this and see what I can come up with.

[tcharding]

ACK this PR even though it is now purely a cleanup/refactoring PR

Changing the Map trait to private is an API breaking change I believe.

[tcharding]

@dpc is totally correct, returning unreachable! is bad form. Sorry lads, sloppy work by me on this one. I have now separated the insert_pair method out into a separate trait and then removed the code entirely for the original implementation of it on PartiallySignedTransaction.

First 4 patches were untouched, please re-review @apoelstra at your leisure since this is not a bug anymore (label can probably be removed from #576).

[dpc]

Not strong feelings about it, but having two names so different does not seem idiomatic (in a sense the e.g. standard library doesn't do that, AFAICT).

https://doc.rust-lang.org/std/ops/trait.DerefMut.html is a best example, but not exactly like what is happening here.

At very least it seems MapInsert+ Map seems to tie the two together.

Also, unless there's a good use-case for maps one can insert to but not get, trait MapInsert : Map would help the code using these, as T : MapInsert will imply T: Map which will save some typing when both reading and writing is used.

[tcharding]

Thanks for your input @dpc, I ended up going with @apoelstra's suggestion below and making insert_pair into functions.

[apoelstra]

I'm alright with 68dc0b1bd8c650dd5c2fa0fcded7eda9e16a43ed but I'm not convinced that the Insert trait is worth including, rather than just having one-off methods. I agree with @dpc that its name is counterintuitive given that it's something of an extension of Map.

My feeling is that Map exists purely for code-reuse reasons (so that we can implement consensus_encode in the same way for global/input/output maps). Maybe Carl originally intended that we could do decoding as well through this trait, but that was obviously not to be, because the different maps have different weird decoding rules and different fixed types for known fields. He might've also intended that this trait be an easy way for some kinds of users to interact with PSBT maps generically, but since we decided to make this trait private, that's no longer a goal. (I also think that it wasn't ever going to work so well.)

GIven that consensus_encode, as written, depends only on get_pairs, I think that we should drop both insert_pairs and merge from the trait, and rather than re-instantiating them in a new trait, just let them be standalone methods.

[tcharding]

Will work in the comments above and re-spin.

[tcharding]

re-based on master

[apoelstra]

ACK 6041461e26d2c954b14a32b0c1c68d1e1b19676b

Looks like a pretty annoying rebase lol.

[sanket1729]

This is going to conflict with other massive refactor PRs again like #757 and #762

[sanket1729]

Why remove the pub(crate) visibilty? This is a now public function inside a private mod.
Would it be better to have a pub(crate) or pub(in Path)? I don't know if pub(in path) is supported in MSRV.

[tcharding]

Fair point, I tried with pub(in path). Seems my new shell function to build with 1.29 doesn't work today so I'm relying on CI to see if it works.

[dr-orlovsky]

The first time in my rust experience I finally see the case for this strange in path visibility. Usually you need a cross-mod visibility and in path is not applicable there...

[tcharding]

Please merge all the others first, I'm happy to rebase this one.

[tcharding]

I don't know whats going on with CI, error for dead_code but the methods are public on a type that is public (private module but a public re-export)?

[apoelstra]

ACK eccb549efccf186eab793074b89279a0c6f2eb46

[dr-orlovsky]

Several questions/issues - pls see comments

[dr-orlovsky]

nit: very unusual formatting not used elsewhere in this library. I will argue to keep the original one in this variant

[tcharding]

Ha! Yes this is indeed strange syntax, it was here before me, I also had to look at it twice. Now it has caught you also I'll change them all. FTR the reason is so that the match arm does not return anything, this cannot be done on a single line without this strange usage of braces.

[dr-orlovsky]

The first time in my rust experience I finally see the case for this strange in path visibility. Usually you need a cross-mod visibility and in path is not applicable there...

[dr-orlovsky]

I will argue not to change the function into a global one (even with limited visibility).

The whole concept of associated methods not taking self is about namespacing - and I do not see a reason to introduce a large BLOB of consensus-critical code change just to reformat things and have a namespace as a part of a function name and not struct abstraction.

[tcharding]

Fair point, thanks. I've removed the patch that made this change. That also requires removing the in path patch also (FTR its the first time I've ever seen it either, I had to look up how to do it :)

[apoelstra]

PSBT is not consensus code.

[tcharding]

Dropped two patches from this PR and force pushed. I'll have to ask you to re-ack please @apoelstra (gee that's the fifth one for you now, sorry about that).

[apoelstra]

ACK bf09d75443130f59067b27f9273b80e48533d146

[dr-orlovsky]

Needs rebase again :(

[tcharding]

ca22374 Refactor match arms now contains changes requested by @dr-orlovsky (re: strange syntax.

Apart from that just rebased on master. Please re-ack @apoelstra and accept my nomination for PR with the most re-acks :)

[tcharding]

Fixed error I introduced while re-basing (PsbtSigHashType import). Soon I'll run contrib/test.sh or all patch sets before pushing :(

[dr-orlovsky]

ACK dfd8924

[dr-orlovsky]

nit: AFAIR it is usually named "Returns"

[tcharding]

doh, you got me! I'm going to leave it as is for 2 reasons

• Constant docs fixes are high on my priority list while I'm finding my feet in this project, so this will get done
• This PR has been doing cycling for ages and now has 2 acks, I'll do a follow up

[dr-orlovsky]

no, for sure do not update it discarding reviews

[tcharding]

Cheers

[apoelstra]

ACK dfd8924

(6 commits, for future reference ... range-diff is easier to run if you know this value)