Introduce CommitOnly variant of Inputs

[antiochp]

This PR bumps the node protocol version to to 3.

Inputs in both transactions and blocks are serialized as follows -

(Commitment)

Previously in protocol version 2 they were serialized as -

(Features || Commitment)

Note that the sorting of inputs is affected by this also.

Inputs are now sorted using the following sort key -

Hash(Commitment)

Previously they were sorted with the key -

Hash(Features || Commitment)

This affects the serialization of lists of inputs, not just individual inputs themselves. Inputs are not stored on-chain so this is not a consensus breaking change.
Outputs are unaffected by this change.

Full support for protocol version 2 peers is maintained via the existing version negotiation scheme.

Locally we store full blocks in the db in v3 format. These are converted to v2 before broadcasting to v2 peers as necessary.

Transactions are stored in the txpool (and stempool) in v2 format. This is to allow broadcast and relay with v2 peers in a convenient way. It is non-trivial to convert transactions v3->v2 due to possibility of one transaction spending unconfirmed outputs from another transaction in the txpool. To simplify transaction handling we maintain them in v2 format.
This will be revisited once we have wide support for v3 across the network.

Care has been taken not to introduce malleability here with backward support. Blocks and transactions in v2 format must have a valid and correct features byte.

---

Why Make This Change?

Uniqueness is enforced across the current utxo set.
It is not valid to have two unspent outputs with the same commitment.
Spending an output is done solely by output commitment. The features bytes is entirely redundant.
Internally we want to simplify the spending logic by removing any reference to the redundant input features byte.

This is one of the outstanding wrinkles in the p2p msg format that we wish to resolve prior to the final scheduled hardfork.
This leaves open the possibility of taking advantage of the final HF to break backward compatibility, simplifying a lot of internal version handling implementation details.

---

• Introduce CommitOnly variant of Inputs
• Introduce CommitWrapper to wrap "commit only" inputs so we can sort them correctly (by hash).
• v3 -> v2 conversion (need to lookup outputs being spent) for backward compatibility with v2 peers

TODO -

• v2/v3 serialization for the two Inputs variants.
  • write "commit only" for v3
  • convert "features and commit" to "commit only" for v3
  • write "features and commit" for v2
  • compatibility error if attempt to write "commit only" for v2
  • write provided data for hash serialization mode
• v2/v3 deserialization for two Inputs variants
  • read "features and commit" for v2
  • read "commit only" for v3
• test coverage for v2/v3 serialization and deserialization
• consider cost of maintaining backward compatibility here
  • store in v3 in local db
  • convert to v2 "on demand" if relaying full block to v2 peer?
• bump default protocol version to 3

---

• Resolves Transaction (and block) inputs need only include the commitment #3378
• Related verify_cut_through and test coverage #3424

---

TODO -

• grin-wallet needs some rework to support this (handle transaction inputs correctly grin-wallet#512)

[quentinlesceller]

Wow took me a while to review. Looking good. Few comments below. Also ran it locally for 24 hours without issues.

[quentinlesceller]

Any reason why don't need a lexical scope anymore?

[antiochp]

It was purely for visual/readability purposes before. It was not needed at the code level.

[quentinlesceller]

I would find it easier to ready if inputs was named unspent_outputs.

[quentinlesceller]

Wondering if is it any better to change the function signature to:

pub fn verify_coinbase_maturity(&self, inputs: &Inputs) -> Result<(), Error> {

In the current case Rust makes a copy of the Input no?

[antiochp]

👍 I think this makes sense. Same for verify_inputs().

[quentinlesceller]

So is this check redundant based on what we have at line 128-136 or the OutputFeatures feature check is important (for Inputs::FeaturesAndCommit variant only)?

[antiochp]

Yes, the latter. We need to ensure that if the features are passed in that they are correct.
For CommitOnly variant we can safely skip this.

This is to maintain existing behavior and to avoid introducing malleability with the features being effectively ignored.