Disallow holders from selecting 0-reserve in legacy channels

[tankyleo]

We still allow counterparties to set 0-reserve legacy channels, as in prior releases.

[ldk-reviews-bot]

👋 Thanks for assigning @wpaulino as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

[ldk-claude-review-bot]

Nit: PaymentHash is imported from bolt11_invoice which re-exports it from lightning_types::payment. Every other file in this crate imports it from crate::types::payment::PaymentHash. Consider keeping it consistent:

Suggested change

	use crate::types::payment::PaymentPreimage;
	use crate::types::payment::{PaymentHash, PaymentPreimage};

(and removing the bolt11_invoice::PaymentHash import on line 30)

[ldk-claude-review-bot]

Nit: This can be simplified to chan_type != ChanType::Legacy (which also explains why PartialEq was derived above).

[ldk-claude-review-bot]

The comments on lines 2090-2091 and 2095-2096 still describe channel 2/3/4/5 as having 0-reserve unconditionally, but that's no longer the case for ChanType::Legacy. Consider qualifying these with "if non-legacy" or restructuring the comments to be accurate for both code paths.

[ldk-claude-review-bot]

Good — confirmed that spiked_feerate (via local_max_commit_tx_fee_sat and local_min_commit_tx_fee_sat) is only consumed inside the if is_outbound_from_holder block and in get_next_splice_out_maximum_sat (also guarded by is_outbound_from_holder). The removal of the is_outbound_from_holder guard on the spiked_feerate computation doesn't change behavior.

I've now reviewed every file and every hunk in the diff. The prior review comments already covered all the nits I found. No bugs, security issues, or logic errors beyond those nits.

Review Summary

No bugs or security issues found. The three nits from my prior review remain the only findings:

1. lightning/src/ln/htlc_reserve_unit_tests.rs:26 — PaymentHash imported from bolt11_invoice instead of crate::types::payment, inconsistent with the rest of the crate
2. fuzz/src/chanmon_consistency.rs:2085 — if chan_type == ChanType::Legacy { false } else { true } can be simplified to chan_type != ChanType::Legacy
3. fuzz/src/chanmon_consistency.rs:2090-2091 — Channel comments describe 0-reserve unconditionally but that's no longer true for Legacy

All enforcement points (outbound creation, inbound acceptance, accept-channel validation, channel-type downgrade) are correctly implemented. The relaxation of get_available_balances from spiked to current feerate for the no-output boundary checks is safe because get_next_commitment_stats still hard-checks at the spiked feerate. The spiked_feerate condition change (removing is_outbound_from_holder) in get_available_balances has no behavioral impact since it's only consumed in outbound-guarded paths.

No new issues to report.

[codecov]

Codecov Report

❌ Patch coverage is 94.54545% with 3 lines in your changes missing coverage. Please review.
✅ Project coverage is 86.40%. Comparing base (b8118e3) to head (96a9e7b).

Files with missing lines	Patch %	Lines
lightning/src/ln/channel.rs	90.32%	3 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #4613      +/-   ##
==========================================
- Coverage   86.40%   86.40%   -0.01%     
==========================================
  Files         158      158              
  Lines      109293   109294       +1     
  Branches   109293   109294       +1     
==========================================
- Hits        94439    94432       -7     
- Misses      12309    12313       +4     
- Partials     2545     2549       +4     

Flag	Coverage Δ
fuzzing-fake-hashes	5.08% <0.00%> (-0.01%)	⬇️
fuzzing-real-hashes	22.77% <60.00%> (-0.02%)	⬇️
tests	86.13% <94.54%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[TheBlueMatt]

LGTM, but please reorder the commits so that the "remove tests of legacy + 0-reserve" change happens before we remove the legacy reserve change, that way at each commit tests pass.

[tankyleo]

Thank you done, no other changes

[TheBlueMatt]

Why are we dropping is_outbound_from_holder?

[tankyleo]

Would rather have the variable spiked_feerate be solely based on whether we are in a legacy channel or not.

No functional change, all the dependents on this variable are only used if is_outbound_from_holder is true.