Report the sending peer in Event::OnionMessageIntercepted

[jkczyz]

When the OnionMessenger intercepts a message bound for an offline peer, it now reports which peer sent us the message to forward via a new prev_node_id field, so handlers can apply source-based policy when deciding whether to forward. The existing destination field is renamed peer_node_id -> next_node_id so the two node ids are unambiguous.

prev_node_id is None when the forward is enqueued by a message handler (the BOLT 12 static-invoice-server flow), which isn't given the sending node; otherwise it is the node we received the message from.

[ldk-reviews-bot]

👋 Thanks for assigning @tnull as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

[ldk-claude-review-bot]

Found one issue.

lightning/src/onion_message/messenger.rs:1739 — In the offline-peer interception path, the event reuses next_hop verbatim. When the next hop was a ShortChannelId that successfully resolved to next_node_id (a known-but-offline peer), the emitted event carries a ShortChannelId next hop even though intercept_for_unknown_scids is disabled. This contradicts the documented invariant (events/mod.rs:1844), breaks the documented LDK 0.2 downgrade safety (the PR's own test_onion_message_intercepted_scid_downgrade_to_0_2 proves 0.2 cannot decode a ShortChannelId variant), and deprives the handler of the resolved node id it needs to wake the peer. Should report NextMessageHop::NodeId(next_node_id) instead.

The serialization/TLV compatibility logic (field 0 legacy peer_node_id, field 1 next_hop, field 3 prev_hop, with the read-side .or() fallback) is otherwise correct and the call sites are consistent.

[TheBlueMatt]

thanks. hate changing the api at this point but backporting to 0.3 probably should happen cause its trivial

[ldk-reviews-bot]

👋 The first review has been submitted!

Do you think this PR is ready for a second reviewer? If so, click here to assign a second reviewer.

[tnull]

Hmm, this seems to conflict with the first commit on #4463. Do you maybe want to pull that commit here to do it in one go?

[jkczyz]

Hmm, this seems to conflict with the first commit on #4463. Do you maybe want to pull that commit here to do it in one go?

Good idea! Done, but needed to rebase.

[ldk-claude-review-bot]

In the offline-peer interception path the event reuses next_hop verbatim. But this branch is reached even when next_hop was a ShortChannelId that was successfully resolved to next_node_id by node_id_lookup (line 1681) — i.e. a known-but-offline peer. In that case the emitted event carries next_hop: ShortChannelId(..) despite intercept_for_unknown_scids being disabled.

This has three consequences:

1. It contradicts the doc on OnionMessageIntercepted ("The ShortChannelId variant is only generated if intercept_for_unknown_scids was set").
2. It breaks the documented LDK 0.2 downgrade safety — test_onion_message_intercepted_scid_downgrade_to_0_2 shows 0.2 cannot decode a ShortChannelId variant, yet this path can produce one for users who only enabled offline-peer interception.
3. The handler is supposed to wake the offline peer, but it now receives an SCID instead of the next_node_id we already resolved.

This branch should report the resolved node id:

Suggested change

	self.enqueue_intercepted_event(Event::OnionMessageIntercepted {
	peer_node_id: next_node_id,
	prev_hop,
	next_hop,
	message: onion_message,
	});
	self.enqueue_intercepted_event(Event::OnionMessageIntercepted {
	prev_hop,
	next_hop: NextMessageHop::NodeId(next_node_id),
	message: onion_message,
	});
	Ok(())