lightninglabs · May 27, 2025
diff --git a/‎session/sql_migration.go
Lines changed: 348 additions & 0 deletions b/‎session/sql_migration.go
Lines changed: 348 additions & 0 deletions
diff --git a/‎session/sql_migration_test.go
Lines changed: 368 additions & 0 deletions b/‎session/sql_migration_test.go
Lines changed: 368 additions & 0 deletions
@@ -0,0 +1,348 @@
+package session
+
+import (
+	"context"
+	"database/sql"
+	"errors"
+	"fmt"
+	"reflect"
+	"time"
+
+	"github.com/davecgh/go-spew/spew"
+	"github.com/lightninglabs/lightning-terminal/accounts"
+	"github.com/lightninglabs/lightning-terminal/db/sqlc"
+	"github.com/pmezard/go-difflib/difflib"
+)
+
+var (
+	// ErrMigrationMismatch is returned when the migrated session does not
+	// match the original session.
+	ErrMigrationMismatch = fmt.Errorf("migrated session does not match " +
+		"original session")
+)
+
+// MigrateSessionStoreToSQL runs the migration of all sessions from the KV
+// database to the SQL database. The migration is done in a single transaction
+// to ensure that all sessions are migrated or none at all.
+//
+// NOTE: As sessions may contain linked accounts, the accounts sql migration
+// MUST be run prior to this migration.
+func MigrateSessionStoreToSQL(ctx context.Context, kvStore *BoltStore,
+	tx SQLQueries) error {
+
+	log.Infof("Starting migration of the KV sessions store to SQL")
+
+	kvSessions, err := kvStore.ListAllSessions(ctx)
+	if err != nil {
+		return err
+	}
+
+	// If sessions are linked to a group, we must insert the initial session
+	// of each group before the other sessions in that group. This ensures
+	// we can retrieve the SQL group ID when inserting the remaining
+	// sessions. Therefore, we first insert all initial group sessions,
+	// allowing us to fetch the group IDs and insert the rest of the
+	// sessions afterward.
+	// We therefore filter out the initial sessions first, and then migrate
+	// them prior to the rest of the sessions.
+	var (
+		initialGroupSessions []*Session
+		linkedSessions       []*Session
+	)
+
+	for _, kvSession := range kvSessions {
+		if kvSession.GroupID == kvSession.ID {
+			initialGroupSessions = append(
+				initialGroupSessions, kvSession,
+			)
+		} else {
+			linkedSessions = append(linkedSessions, kvSession)
+		}
+	}
+
+	err = migrateSessionsToSQLAndValidate(ctx, tx, initialGroupSessions)
+	if err != nil {
+		return fmt.Errorf("migration of non-linked session failed: %w",
+			err)
+	}
+
+	err = migrateSessionsToSQLAndValidate(ctx, tx, linkedSessions)
+	if err != nil {
+		return fmt.Errorf("migration of linked session failed: %w", err)
+	}
+
+	total := len(initialGroupSessions) + len(linkedSessions)
+	log.Infof("All sessions migrated from KV to SQL. Total number of "+
+		"sessions migrated: %d", total)
+
+	return nil
+}
+
+// migrateSessionsToSQLAndValidate runs the migration for the passed sessions
+// from the KV database to the SQL database, and validates that the migrated
+// sessions match the original sessions.
+func migrateSessionsToSQLAndValidate(ctx context.Context,
+	tx SQLQueries, kvSessions []*Session) error {
+
+	for _, kvSession := range kvSessions {
+		err := migrateSingleSessionToSQL(ctx, tx, kvSession)
+		if err != nil {
+			return fmt.Errorf("unable to migrate session(%v): %w",
+				kvSession.ID, err)
+		}
+
+		// Validate that the session was correctly migrated and matches
+		// the original session in the kv store.
+		sqlSess, err := tx.GetSessionByAlias(ctx, kvSession.ID[:])
+		if err != nil {
+			if errors.Is(err, sql.ErrNoRows) {
+				err = ErrSessionNotFound
+			}
+			return fmt.Errorf("unable to get migrated session "+
+				"from sql store: %w", err)
+		}
+
+		migratedSession, err := unmarshalSession(ctx, tx, sqlSess)
+		if err != nil {
+			return fmt.Errorf("unable to unmarshal migrated "+
+				"session: %w", err)
+		}
+
+		overrideSessionTimeZone(kvSession)
+		overrideSessionTimeZone(migratedSession)
+
+		if !reflect.DeepEqual(kvSession, migratedSession) {
+			diff := difflib.UnifiedDiff{
+				A: difflib.SplitLines(
+					spew.Sdump(kvSession),
+				),
+				B: difflib.SplitLines(
+					spew.Sdump(migratedSession),
+				),
+				FromFile: "Expected",
+				FromDate: "",
+				ToFile:   "Actual",
+				ToDate:   "",
+				Context:  3,
+			}
+			diffText, _ := difflib.GetUnifiedDiffString(diff)
+
+			return fmt.Errorf("%w: %v.\n%v", ErrMigrationMismatch,
+				kvSession.ID, diffText)
+		}
+	}
+
+	return nil
+}
+
+// migrateSingleSessionToSQL runs the migration for a single session from the
+// KV database to the SQL database. Note that if the session links to an
+// account, the linked accounts store MUST have been migrated before that
+// session is migrated.
+func migrateSingleSessionToSQL(ctx context.Context,
+	tx SQLQueries, session *Session) error {
+
+	var (
+		acctID       sql.NullInt64
+		err          error
+		remotePubKey []byte
+	)
+
+	session.AccountID.WhenSome(func(alias accounts.AccountID) {
+		// Check that the account exists in the SQL store, before
+		// linking it.
+		var acctAlias int64
+		acctAlias, err = alias.ToInt64()
+		if err != nil {
+			return
+		}
+
+		var acctDBID int64
+		acctDBID, err = tx.GetAccountIDByAlias(ctx, acctAlias)
+		if errors.Is(err, sql.ErrNoRows) {
+			err = accounts.ErrAccNotFound
+			return
+		} else if err != nil {
+			return
+		}
+
+		acctID = sql.NullInt64{
+			Int64: acctDBID,
+			Valid: true,
+		}
+	})
+	if err != nil {
+		return err
+	}
+
+	// The remote public key is currently only set for autopilot sessions,
+	// else it's a nil byte array.
+	if session.RemotePublicKey != nil {
+		remotePubKey = session.RemotePublicKey.SerializeCompressed()
+	}
+
+	// Proceed to insert the session into the sql db.
+	insertSessionParams := sqlc.InsertSessionParams{
+		Alias:           session.ID[:],
+		Label:           session.Label,
+		State:           int16(session.State),
+		Type:            int16(session.Type),
+		Expiry:          session.Expiry.UTC(),
+		CreatedAt:       session.CreatedAt.UTC(),
+		ServerAddress:   session.ServerAddr,
+		DevServer:       session.DevServer,
+		MacaroonRootKey: int64(session.MacaroonRootKey),
+		PairingSecret:   session.PairingSecret[:],
+		LocalPrivateKey: session.LocalPrivateKey.Serialize(),
+		LocalPublicKey:  session.LocalPublicKey.SerializeCompressed(),
+		RemotePublicKey: remotePubKey,
+		Privacy:         session.WithPrivacyMapper,
+		AccountID:       acctID,
+	}
+
+	sqlId, err := tx.InsertSession(ctx, insertSessionParams)
+	if err != nil {
+		return err
+	}
+
+	// Since the InsertSession query doesn't support that we set the revoked
+	// field during the insert, we need to set the field after the session
+	// has been created.
+	if !session.RevokedAt.IsZero() {
+		setSessionRevokedParams := sqlc.SetSessionRevokedAtParams{
+			ID: sqlId,
+			RevokedAt: sql.NullTime{
+				Time:  session.RevokedAt.UTC(),
+				Valid: true,
+			},
+		}
+
+		err = tx.SetSessionRevokedAt(ctx, setSessionRevokedParams)
+		if err != nil {
+			return err
+		}
+	}
+
+	// After the session has been inserted, we need to update the session
+	// with the group ID if it is linked to a group. We need to do this
+	// after the session has been inserted, because the group ID can be the
+	// session itself, and therefore the SQL id for the session won't exist
+	// prior to inserting the session.
+	groupID, err := tx.GetSessionIDByAlias(ctx, session.GroupID[:])
+	if errors.Is(err, sql.ErrNoRows) {
+		return ErrUnknownGroup
+	} else if err != nil {
+		return fmt.Errorf("unable to fetch group(%x): %w",
+			session.GroupID[:], err)
+	}
+
+	// Now lets set the group ID for the session.
+	err = tx.SetSessionGroupID(ctx, sqlc.SetSessionGroupIDParams{
+		ID: sqlId,
+		GroupID: sql.NullInt64{
+			Int64: groupID,
+			Valid: true,
+		},
+	})
+	if err != nil {
+		return fmt.Errorf("unable to set group Alias: %w", err)
+	}
+
+	// Once we have the sqlID for the session, we can proceed to insert rows
+	// into the linked child tables.
+	if session.MacaroonRecipe != nil {
+		// We start by inserting the macaroon permissions.
+		for _, sessionPerm := range session.MacaroonRecipe.Permissions {
+			permParam := sqlc.InsertSessionMacaroonPermissionParams{
+				SessionID: sqlId,
+				Entity:    sessionPerm.Entity,
+				Action:    sessionPerm.Action,
+			}
+
+			err = tx.InsertSessionMacaroonPermission(
+				ctx, permParam,
+			)
+			if err != nil {
+				return err
+			}
+		}
+
+		// Next we insert the macaroon caveats.
+		for _, sessCaveat := range session.MacaroonRecipe.Caveats {
+			caveatParams := sqlc.InsertSessionMacaroonCaveatParams{
+				SessionID:      sqlId,
+				CaveatID:       sessCaveat.Id,
+				VerificationID: sessCaveat.VerificationId,
+				Location: sql.NullString{
+					String: sessCaveat.Location,
+					Valid:  sessCaveat.Location != "",
+				},
+			}
+
+			err = tx.InsertSessionMacaroonCaveat(
+				ctx, caveatParams,
+			)
+			if err != nil {
+				return err
+			}
+		}
+	}
+
+	// That's followed by the feature config.
+	if session.FeatureConfig != nil {
+		for featureName, config := range *session.FeatureConfig {
+			fConfParams := sqlc.InsertSessionFeatureConfigParams{
+				SessionID:   sqlId,
+				FeatureName: featureName,
+				Config:      config,
+			}
+
+			err = tx.InsertSessionFeatureConfig(ctx, fConfParams)
+			if err != nil {
+				return err
+			}
+		}
+	}
+
+	// Finally we insert the privacy flags.
+	for _, privacyFlag := range session.PrivacyFlags {
+		privacyFlagParams := sqlc.InsertSessionPrivacyFlagParams{
+			SessionID: sqlId,
+			Flag:      int32(privacyFlag),
+		}
+
+		err = tx.InsertSessionPrivacyFlag(
+			ctx, privacyFlagParams,
+		)
+		if err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// overrideSessionTimeZone overrides the time zone of the session to the local
+// time zone and chops off the nanosecond part for comparison. This is needed
+// because KV database stores times as-is which as an unwanted side effect would
+// fail migration due to time comparison expecting both the original and
+// migrated sessions to be in the same local time zone and in microsecond
+// precision. Note that PostgresSQL stores times in microsecond precision while
+// SQLite can store times in nanosecond precision if using TEXT storage class.
+func overrideSessionTimeZone(session *Session) {
+	fixTime := func(t time.Time) time.Time {
+		return t.In(time.Local).Truncate(time.Microsecond)
+	}
+
+	if !session.Expiry.IsZero() {
+		session.Expiry = fixTime(session.Expiry)
+	}
+
+	if !session.CreatedAt.IsZero() {
+		session.CreatedAt = fixTime(session.CreatedAt)
+	}
+
+	if !session.RevokedAt.IsZero() {
+		session.RevokedAt = fixTime(session.RevokedAt)
+	}
+}
@@ -0,0 +1,368 @@
+package session
+
+import (
+	"context"
+	"database/sql"
+	"fmt"
+	"testing"
+	"time"
+
+	"github.com/lightninglabs/lightning-terminal/accounts"
+	"github.com/lightninglabs/lightning-terminal/db"
+	"github.com/lightningnetwork/lnd/clock"
+	"github.com/lightningnetwork/lnd/macaroons"
+	"github.com/lightningnetwork/lnd/sqldb"
+	"github.com/stretchr/testify/require"
+	"gopkg.in/macaroon-bakery.v2/bakery/checkers"
+	"gopkg.in/macaroon.v2"
+)
+
+// TestSessionsStoreMigration tests the migration of session store from a bolt
+// backed to a SQL database. Note that this test does not attempt to be a
+// complete migration test.
+func TestSessionsStoreMigration(t *testing.T) {
+	t.Parallel()
+
+	ctx := context.Background()
+	clock := clock.NewTestClock(time.Now())
+
+	// When using build tags that creates a kvdb store for NewTestDB, we
+	// skip this test as it is only applicable for postgres and sqlite tags.
+	store := NewTestDB(t, clock)
+	if _, ok := store.(*BoltStore); ok {
+		t.Skipf("Skipping session store migration test for kvdb build")
+	}
+
+	makeSQLDB := func(t *testing.T, acctStore accounts.Store) (*SQLStore,
+		*db.TransactionExecutor[SQLQueries]) {
+
+		// Create a sql store with a linked account store.
+		testDBStore := NewTestDBWithAccounts(t, clock, acctStore)
+		t.Cleanup(func() {
+			require.NoError(t, testDBStore.Close())
+		})
+
+		store, ok := testDBStore.(*SQLStore)
+		require.True(t, ok)
+
+		baseDB := store.BaseDB
+
+		genericExecutor := db.NewTransactionExecutor(
+			baseDB, func(tx *sql.Tx) SQLQueries {
+				return baseDB.WithTx(tx)
+			},
+		)
+
+		return store, genericExecutor
+	}
+
+	// assertMigrationResults asserts that the sql store contains the
+	// same sessions as the passed kv store sessions. This is intended to be
+	// run after the migration.
+	assertMigrationResults := func(t *testing.T, sqlStore *SQLStore,
+		kvSessions []*Session) {
+
+		for _, kvSession := range kvSessions {
+			// Fetch the migrated session from the sql store.
+			sqlSession, err := sqlStore.GetSession(
+				ctx, kvSession.ID,
+			)
+			require.NoError(t, err)
+
+			assertEqualSessions(t, kvSession, sqlSession)
+		}
+
+		// Finally we ensure that the sql store doesn't contain more
+		// sessions than the kv store.
+		sqlSessions, err := sqlStore.ListAllSessions(ctx)
+		require.NoError(t, err)
+		require.Equal(t, len(kvSessions), len(sqlSessions))
+	}
+
+	tests := []struct {
+		name       string
+		populateDB func(
+			t *testing.T, kvStore *BoltStore,
+			accountStore accounts.Store,
+		)
+	}{
+		{
+			name: "empty",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				// Don't populate the DB.
+			},
+		},
+		{
+			name: "one session no options",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "multiple sessions no options",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				_, err := store.NewSession(
+					ctx, "session1", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+				)
+				require.NoError(t, err)
+
+				_, err = store.NewSession(
+					ctx, "session2", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+				)
+				require.NoError(t, err)
+
+				_, err = store.NewSession(
+					ctx, "session3", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with one privacy flag",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+					WithPrivacy(PrivacyFlags{ClearPubkeys}),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with multiple privacy flags",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+					WithPrivacy(PrivacyFlags{
+						ClearChanInitiator, ClearHTLCs,
+						ClearClosingTxIds,
+					}),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with a feature config",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				featureConfig := map[string][]byte{
+					"AutoFees":      {1, 2, 3, 4},
+					"AutoSomething": {4, 3, 4, 5, 6, 6},
+				}
+
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+					WithFeatureConfig(featureConfig),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with dev server",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+					WithDevServer(),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with macaroon recipe",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				// this test uses caveats & perms from the
+				// tlv_test.go
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "foo.bar.baz:1234",
+					WithMacaroonRecipe(caveats, perms),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with macaroon recipe nil caveats",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				// this test uses perms from the tlv_test.go
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "foo.bar.baz:1234",
+					WithMacaroonRecipe(nil, perms),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with macaroon recipe nil perms",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				// this test uses caveats from the tlv_test.go
+				_, err := store.NewSession(
+					ctx, "test", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "foo.bar.baz:1234",
+					WithMacaroonRecipe(caveats, nil),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "one session with a linked account",
+			populateDB: func(t *testing.T, store *BoltStore,
+				acctStore accounts.Store) {
+
+				// Create an account with balance
+				acct, err := acctStore.NewAccount(
+					ctx, 1234, time.Now().Add(time.Hour),
+					"",
+				)
+				require.NoError(t, err)
+				require.False(t, acct.HasExpired())
+
+				// For now, we manually add the account caveat
+				// for bbolt compatibility.
+				accountCaveat := checkers.Condition(
+					macaroons.CondLndCustom,
+					fmt.Sprintf("%s %x",
+						accounts.CondAccount,
+						acct.ID[:],
+					),
+				)
+
+				sessCaveats := []macaroon.Caveat{
+					{
+						Id: []byte(accountCaveat),
+					},
+				}
+
+				_, err = store.NewSession(
+					ctx, "test", TypeMacaroonAccount,
+					time.Unix(1000, 0), "",
+					WithAccount(acct.ID),
+					WithMacaroonRecipe(sessCaveats, nil),
+				)
+				require.NoError(t, err)
+			},
+		},
+		{
+			name: "linked session",
+			populateDB: func(t *testing.T, store *BoltStore,
+				_ accounts.Store) {
+
+				// First create the initial session for the
+				// group.
+				sess1, err := store.NewSession(
+					ctx, "initSession", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+				)
+				require.NoError(t, err)
+
+				// As the store won't allow us to link a
+				// session before all sessions in the group have
+				// been revoked, we revoke the session before
+				// creating a new session that links to the
+				// initial session.
+				err = store.ShiftState(
+					ctx, sess1.ID, StateCreated,
+				)
+				require.NoError(t, err)
+
+				err = store.ShiftState(
+					ctx, sess1.ID, StateRevoked,
+				)
+				require.NoError(t, err)
+
+				_, err = store.NewSession(
+					ctx, "linkedSession", TypeMacaroonAdmin,
+					time.Unix(1000, 0), "",
+					WithLinkedGroupID(&sess1.ID),
+				)
+				require.NoError(t, err)
+			},
+		},
+	}
+
+	for _, test := range tests {
+		t.Run(test.name, func(t *testing.T) {
+			t.Parallel()
+
+			// First let's create an account store to link to in
+			// the sessions store. Note that this is will be a sql
+			// store due to the build tags enabled when running this
+			// test, which means that we won't need to migrate the
+			// account store in this test.
+			accountStore := accounts.NewTestDB(t, clock)
+			t.Cleanup(func() {
+				require.NoError(t, accountStore.Close())
+			})
+
+			kvStore, err := NewDB(
+				t.TempDir(), DBFilename, clock, accountStore,
+			)
+			require.NoError(t, err)
+
+			t.Cleanup(func() {
+				require.NoError(t, kvStore.Close())
+			})
+
+			// populate the kvStore with the test data, in
+			// preparation for the test.
+			test.populateDB(t, kvStore, accountStore)
+
+			// Before we migrate the sessions, we fetch all sessions
+			// from the kv store, to ensure that the migration
+			// function doesn't mutate the bbolt store sessions.
+			// We can then compare them to the sql sessions after
+			// the migration has been executed.
+			kvSessions, err := kvStore.ListAllSessions(ctx)
+			require.NoError(t, err)
+
+			// Proceed to create the sql store and execute the
+			// migration.
+			sqlStore, txEx := makeSQLDB(t, accountStore)
+
+			var opts sqldb.MigrationTxOptions
+			err = txEx.ExecTx(
+				ctx, &opts, func(tx SQLQueries) error {
+					return MigrateSessionStoreToSQL(
+						ctx, kvStore, tx,
+					)
+				},
+			)
+			require.NoError(t, err)
+
+			// The migration function will check if the inserted
+			// sessions equals the migrated ones, but as a sanity
+			// check we'll also fetch migrated sessions from the sql
+			// store and compare them to the original.
+			assertMigrationResults(t, sqlStore, kvSessions)
+		})
+	}
+}