From 974723f7163132c0aa81ac97a183646b512a55fc Mon Sep 17 00:00:00 2001
From: Andrew Cann <shum@canndrew.org>
Date: Tue, 2 Jun 2020 18:44:16 +0800
Subject: [PATCH] Add and switch to new types for revocation

Add the UInt48, RevocationKey, CommitmentPubKey, CommitmentSeed and
RevocationSet types.

A RevocationKey is a secret key that can be used to revoke a
transaction. It's shared in the revoke_and_ack message and stored in the
user's wallet in a RevocationSet. A CommitmentPubKey is the public key
of a RevocationKey, also known as a "per commitment point". A
CommitmentSeed is the master revocation key for a side of a channel and
can be used to derive all the revocation keys for that side of that
channel.

A RevocationSet stores a set of revocation keys in a compact form
specified in BOLT #3 which allows earlier keys to be derived from later
keys.
---
 .../Chain/KeysInterface.fs                    |   6 +-
 src/DotNetLightning.Core/Channel/Channel.fs   |  81 ++---
 .../Channel/ChannelTypes.fs                   |   4 +-
 .../Channel/ChannelUtils.fs                   |  20 --
 .../Channel/ChannelValidation.fs              |  20 +-
 .../Channel/Commitments.fs                    |  20 +-
 .../Channel/CommitmentsModule.fs              | 100 ++++---
 .../Crypto/RevocationSet.fs                   |  73 +++++
 .../DotNetLightning.Core.fsproj               |   9 +-
 .../Serialize/LightningStream.fs              |   8 +
 .../Serialize/Msgs/Msgs.fs                    |  44 +--
 .../Transactions/Transactions.fs              |  59 ++--
 src/DotNetLightning.Core/Utils/ChannelId.fs   |   9 +
 src/DotNetLightning.Core/Utils/Extensions.fs  |  18 ++
 .../Utils/NBitcoinExtensions.fs               |   9 +
 src/DotNetLightning.Core/Utils/Primitives.fs  | 166 ++++++++++-
 src/DotNetLightning.Core/Utils/TxId.fs        |   9 +
 src/DotNetLightning.Core/Utils/UInt48.fs      |  86 ++++++
 .../ActorManagers/ChannelManager.fs           |   1 +
 .../Interfaces/IChainWatcher.fs               |   1 +
 .../Services/BitcoinRPCPollingChainWatcher.fs |   1 +
 .../Services/BroadCaster.fs                   |   2 +
 .../Services/ChainWatcher.fs                  |   1 +
 .../DotNetLightning.Core.Tests.fsproj         |   1 +
 .../Generators/Msgs.fs                        |  18 +-
 .../Generators/Primitives.fs                  |  19 +-
 .../KeyRepositoryTests.fs                     |   4 +-
 .../RevocationSetTests.fs                     | 276 ++++++++++++++++++
 .../Serialization.fs                          |  22 +-
 .../TransactionBolt3TestVectorTests.fs        |  27 +-
 30 files changed, 889 insertions(+), 225 deletions(-)
 delete mode 100644 src/DotNetLightning.Core/Channel/ChannelUtils.fs
 create mode 100644 src/DotNetLightning.Core/Crypto/RevocationSet.fs
 create mode 100644 src/DotNetLightning.Core/Utils/ChannelId.fs
 create mode 100644 src/DotNetLightning.Core/Utils/TxId.fs
 create mode 100644 src/DotNetLightning.Core/Utils/UInt48.fs
 create mode 100644 tests/DotNetLightning.Core.Tests/RevocationSetTests.fs

diff --git a/src/DotNetLightning.Core/Chain/KeysInterface.fs b/src/DotNetLightning.Core/Chain/KeysInterface.fs
index 97a14f392..2e87ebb7b 100644
--- a/src/DotNetLightning.Core/Chain/KeysInterface.fs
+++ b/src/DotNetLightning.Core/Chain/KeysInterface.fs
@@ -54,7 +54,7 @@ type ChannelKeys = {
     PaymentBaseKey: Key
     DelayedPaymentBaseKey: Key
     HTLCBaseKey: Key
-    CommitmentSeed: uint256
+    CommitmentSeed: CommitmentSeed
 }
 
     with
@@ -65,7 +65,6 @@ type ChannelKeys = {
                 PaymentBasePubKey = this.PaymentBaseKey.PubKey
                 DelayedPaymentBasePubKey = this.DelayedPaymentBaseKey.PubKey
                 HTLCBasePubKey = this.HTLCBaseKey.PubKey
-                CommitmentSeed = this.CommitmentSeed
             }
 
 /// In usual operation we should not hold secrets on memory. So only hold pubkey
@@ -75,7 +74,6 @@ and ChannelPubKeys =  {
     PaymentBasePubKey: PubKey
     DelayedPaymentBasePubKey: PubKey
     HTLCBasePubKey: PubKey
-    CommitmentSeed: uint256
 }
 
 
@@ -108,7 +106,7 @@ type DefaultKeyRepository(nodeSecret: ExtKey, channelIndex: int) =
 
     let destinationKey = channelMasterKey.Derive(1, true).PrivateKey
     let shutdownKey = channelMasterKey.Derive(2, true).PrivateKey
-    let commitmentSeed = channelMasterKey.Derive(3, true).PrivateKey.ToBytes() |> uint256
+    let commitmentSeed = channelMasterKey.Derive(3, true).PrivateKey |> CommitmentSeed
 
     let fundingKey = channelMasterKey.Derive(4, true).PrivateKey
     let fundingPubKey = fundingKey.PubKey
diff --git a/src/DotNetLightning.Core/Channel/Channel.fs b/src/DotNetLightning.Core/Channel/Channel.fs
index 24baaa2cd..978149bca 100644
--- a/src/DotNetLightning.Core/Channel/Channel.fs
+++ b/src/DotNetLightning.Core/Channel/Channel.fs
@@ -99,25 +99,34 @@ module Channel =
             [ MutualClosePerformed nextData ]
             |> Ok
 
-        let claimCurrentLocalCommitTxOutputs (_keyRepo: IKeysRepository, channelPubKeys: ChannelPubKeys, commitments: Commitments, commitTx: CommitTx) =
+        let claimCurrentLocalCommitTxOutputs (keyRepo: IKeysRepository, channelPubKeys: ChannelPubKeys, commitments: Commitments, commitTx: CommitTx) =
             result {
+                let chanPrivateKeys = keyRepo.GetChannelKeys commitments.LocalParams.IsFunder
+                let commitmentSeed = chanPrivateKeys.CommitmentSeed
                 do! check (commitments.LocalCommit.PublishableTxs.CommitTx.Value.GetTxId()) (=) (commitTx.Value.GetTxId()) "txid mismatch. provided txid (%A) does not match current local commit tx (%A)"
-                let _localPerCommitmentPoint = ChannelUtils.buildCommitmentPoint (channelPubKeys.CommitmentSeed, commitments.LocalCommit.Index)
+                let _localPerCommitmentPoint =
+                    commitmentSeed.DeriveCommitmentPubKey commitments.LocalCommit.Index
                 let _localRevocationPubKey = Generators.revocationPubKey
                 failwith "TODO"
             }
 
-    let makeChannelReestablish (data: Data.IHasCommitments): Result<ChannelEvent list, ChannelError> =
-        let commitmentSeed = data.Commitments.LocalParams.ChannelPubKeys.CommitmentSeed
+    let makeChannelReestablish (keyRepo: IKeysRepository)
+                               (data: Data.IHasCommitments)
+                                   : Result<ChannelEvent list, ChannelError> =
+        let chanPrivateKeys = keyRepo.GetChannelKeys data.Commitments.LocalParams.IsFunder
+        let commitmentSeed = chanPrivateKeys.CommitmentSeed
         let ourChannelReestablish =
             {
                 ChannelId = data.ChannelId
                 NextLocalCommitmentNumber = 1UL
                 NextRemoteCommitmentNumber = 0UL
-                DataLossProtect = OptionalField.Some({
-                                      YourLastPerCommitmentSecret = PaymentPreimage.Create([|for _ in 0..31 -> 0uy|])
-                                      MyCurrentPerCommitmentPoint = ChannelUtils.buildCommitmentPoint(commitmentSeed, 0UL)
-                                  })
+                DataLossProtect = OptionalField.Some <| {
+                    YourLastPerCommitmentSecret =
+                        RevocationKey.FromBytes [|for _ in 0..31 -> 0uy|]
+                    MyCurrentPerCommitmentPoint =
+                        let revocationKey = commitmentSeed.DeriveRevocationKey CommitmentNumber.LastCommitment
+                        revocationKey.CommitmentPubKey
+                }
             }
         [ WeSentChannelReestablish ourChannelReestablish ] |> Ok
 
@@ -143,7 +152,7 @@ module Channel =
                 PaymentBasepoint = inputInitFunder.ChannelKeys.PaymentBaseKey.PubKey
                 DelayedPaymentBasepoint = inputInitFunder.ChannelKeys.DelayedPaymentBaseKey.PubKey
                 HTLCBasepoint = inputInitFunder.ChannelKeys.HTLCBaseKey.PubKey
-                FirstPerCommitmentPoint =  ChannelUtils.buildCommitmentPoint(inputInitFunder.ChannelKeys.CommitmentSeed, 0UL)
+                FirstPerCommitmentPoint = inputInitFunder.ChannelKeys.CommitmentSeed.DeriveCommitmentPubKey CommitmentNumber.FirstCommitment
                 ChannelFlags = inputInitFunder.ChannelFlags
                 ShutdownScriptPubKey = cs.Config.ChannelOptions.ShutdownScriptPubKey
             }
@@ -177,7 +186,7 @@ module Channel =
                                                state.LastSent.FeeRatePerKw
                                                outIndex
                                                (fundingTx.Value.GetHash() |> TxId)
-                                               (ChannelUtils.buildCommitmentPoint(commitmentSeed, 0UL))
+                                               (commitmentSeed.DeriveCommitmentPubKey CommitmentNumber.FirstCommitment)
                                                msg.FirstPerCommitmentPoint
                                                cs.Secp256k1Context
                                                cs.Network
@@ -194,7 +203,7 @@ module Channel =
                              Data.WaitForFundingSignedData.FundingTx = fundingTx
                              Data.WaitForFundingSignedData.LocalSpec = commitmentSpec
                              LocalCommitTx = localCommitTx
-                             RemoteCommit = { RemoteCommit.Index = 0UL;
+                             RemoteCommit = { RemoteCommit.Index = CommitmentNumber.FirstCommitment
                                               Spec = remoteSpec
                                               TxId = remoteCommitTx.Value.GetGlobalTransaction().GetTxId()
                                               RemotePerCommitmentPoint = msg.FirstPerCommitmentPoint }
@@ -221,7 +230,7 @@ module Channel =
                                                                 state.LastSent.FundingTxId
                                                                 state.LastSent.FundingOutputIndex
                                                                 amount
-                                    LocalCommit = { Index = 0UL;
+                                    LocalCommit = { Index = CommitmentNumber.FirstCommitment;
                                                     Spec = state.LocalSpec;
                                                     PublishableTxs = { PublishableTxs.CommitTx = finalizedLocalCommitTx
                                                                        HTLCTxs = [] }
@@ -233,8 +242,8 @@ module Channel =
                                     RemoteNextHTLCId = HTLCId.Zero
                                     OriginChannels = Map.empty
                                     // we will receive their next per-commitment point in the next msg, so we temporarily put a random byte array
-                                    RemoteNextCommitInfo = DataEncoders.HexEncoder() .DecodeData("0101010101010101010101010101010101010101010101010101010101010101") |> Key |> fun k -> k.PubKey |> RemoteNextCommitInfo.Revoked
-                                    RemotePerCommitmentSecrets = ShaChain.Zero
+                                    RemoteNextCommitInfo = DataEncoders.HexEncoder().DecodeData("0101010101010101010101010101010101010101010101010101010101010101") |> Key |> fun k -> k.PubKey |> CommitmentPubKey |> RemoteNextCommitInfo.Revoked
+                                    RemotePerCommitmentSecrets = RevocationSet()
                                     ChannelId =
                                         msg.ChannelId }
                 let nextState = { WaitForFundingConfirmedData.Commitments = commitments
@@ -249,15 +258,15 @@ module Channel =
             [ NewInboundChannelStarted({ InitFundee = inputInitFundee }) ] |> Ok
 
         | WaitForFundingConfirmed state, CreateChannelReestablish ->
-            makeChannelReestablish state
+            makeChannelReestablish cs.KeysRepository state
         | ChannelState.Normal state, CreateChannelReestablish ->
-            makeChannelReestablish state
+            makeChannelReestablish cs.KeysRepository state
         | WaitForOpenChannel state, ApplyOpenChannel msg ->
             result {
                 do! Validation.checkOpenChannelMsgAcceptable (cs.FeeEstimator) (cs.Config) msg
                 let localParams = state.InitFundee.LocalParams
                 let channelKeys = state.InitFundee.ChannelKeys
-                let localCommitmentSecret = ChannelUtils.buildCommitmentSecret (channelKeys.CommitmentSeed, 0UL)
+                let localCommitmentPubKey = channelKeys.CommitmentSeed.DeriveCommitmentPubKey CommitmentNumber.FirstCommitment
                 let acceptChannelMsg: AcceptChannelMsg = {
                     TemporaryChannelId = msg.TemporaryChannelId
                     DustLimitSatoshis = localParams.DustLimitSatoshis
@@ -272,7 +281,7 @@ module Channel =
                     PaymentBasepoint = channelKeys.PaymentBaseKey.PubKey
                     DelayedPaymentBasepoint = channelKeys.DelayedPaymentBaseKey.PubKey
                     HTLCBasepoint = channelKeys.HTLCBaseKey.PubKey
-                    FirstPerCommitmentPoint = localCommitmentSecret.PubKey
+                    FirstPerCommitmentPoint = localCommitmentPubKey
                     ShutdownScriptPubKey = cs.Config.ChannelOptions.ShutdownScriptPubKey
                 }
                 let remoteParams = RemoteParams.FromOpenChannel cs.RemoteNodeId state.InitFundee.RemoteInit msg cs.Config.ChannelHandshakeConfig
@@ -313,12 +322,12 @@ module Channel =
                                     RemoteParams = state.RemoteParams
                                     ChannelFlags = state.ChannelFlags
                                     FundingScriptCoin = ChannelHelpers.getFundingScriptCoin state.LocalParams.ChannelPubKeys state.RemoteParams.FundingPubKey msg.FundingTxId msg.FundingOutputIndex state.FundingSatoshis
-                                    LocalCommit = { LocalCommit.Index = 0UL;
+                                    LocalCommit = { LocalCommit.Index = CommitmentNumber.FirstCommitment
                                                     Spec = localSpec
                                                     PublishableTxs = { PublishableTxs.CommitTx = finalizedCommitTx;
                                                                        HTLCTxs = [] }
                                                     PendingHTLCSuccessTxs = [] }
-                                    RemoteCommit = { RemoteCommit.Index = 0UL;
+                                    RemoteCommit = { RemoteCommit.Index = CommitmentNumber.FirstCommitment
                                                      Spec = remoteSpec
                                                      TxId = remoteCommitTx.Value.GetGlobalTransaction().GetTxId()
                                                      RemotePerCommitmentPoint = state.RemoteFirstPerCommitmentPoint }
@@ -327,8 +336,8 @@ module Channel =
                                     LocalNextHTLCId = HTLCId.Zero
                                     RemoteNextHTLCId = HTLCId.Zero
                                     OriginChannels = Map.empty
-                                    RemoteNextCommitInfo = DataEncoders.HexEncoder() .DecodeData("0101010101010101010101010101010101010101010101010101010101010101") |> Key |> fun k -> k.PubKey |> RemoteNextCommitInfo.Revoked
-                                    RemotePerCommitmentSecrets = ShaChain.Zero
+                                    RemoteNextCommitInfo = DataEncoders.HexEncoder().DecodeData("0101010101010101010101010101010101010101010101010101010101010101") |> Key |> fun k -> k.PubKey |> CommitmentPubKey |> RemoteNextCommitInfo.Revoked
+                                    RemotePerCommitmentSecrets = RevocationSet()
                                     ChannelId = channelId }
                 let nextState = { WaitForFundingConfirmedData.Commitments = commitments
                                   Deferred = None
@@ -343,8 +352,9 @@ module Channel =
             if state.Commitments.RemoteParams.MinimumDepth > depth then
                 [] |> Ok
             else
+                let chanPrivateKeys = cs.KeysRepository.GetChannelKeys state.Commitments.LocalParams.IsFunder
                 let nextPerCommitmentPoint =
-                    ChannelUtils.buildCommitmentPoint (state.Commitments.LocalParams.ChannelPubKeys.CommitmentSeed, 1UL)
+                    chanPrivateKeys.CommitmentSeed.DeriveCommitmentPubKey CommitmentNumber.FirstCommitment.NextCommitment
                 let msgToSend: FundingLockedMsg = { ChannelId = state.Commitments.ChannelId; NextPerCommitmentPoint = nextPerCommitmentPoint }
 
                 // This is temporary channel id that we will use in our channel_update message, the goal is to be able to use our channel
@@ -485,22 +495,27 @@ module Channel =
         | ChannelState.Normal state, ApplyRevokeAndACK msg ->
             let cm = state.Commitments
             match cm.RemoteNextCommitInfo with
-            | RemoteNextCommitInfo.Waiting _ when (msg.PerCommitmentSecret.ToPubKey() <> cm.RemoteCommit.RemotePerCommitmentPoint) ->
+            | RemoteNextCommitInfo.Waiting _ when (msg.PerCommitmentSecret.CommitmentPubKey <> cm.RemoteCommit.RemotePerCommitmentPoint) ->
                 let errorMsg = sprintf "Invalid revoke_and_ack %A; must be %A" msg.PerCommitmentSecret cm.RemoteCommit.RemotePerCommitmentPoint
                 invalidRevokeAndACK msg errorMsg
             | RemoteNextCommitInfo.Revoked _ ->
                 let errorMsg = sprintf "Unexpected revocation"
                 invalidRevokeAndACK msg errorMsg
             | RemoteNextCommitInfo.Waiting({ NextRemoteCommit = theirNextCommit }) ->
-                let commitments1 = { cm with LocalChanges = { cm.LocalChanges with Signed = []; ACKed = cm.LocalChanges.ACKed @ cm.LocalChanges.Signed }
-                                             RemoteChanges = { cm.RemoteChanges with Signed = [] }
-                                             RemoteCommit = theirNextCommit
-                                             RemoteNextCommitInfo = RemoteNextCommitInfo.Revoked(msg.NextPerCommitmentPoint)
-                                             RemotePerCommitmentSecrets = cm.RemotePerCommitmentSecrets.AddHash (msg.PerCommitmentSecret.ToByteArray(), 0xffffffffffffUL - cm.RemoteCommit.Index) }
-                let result = [ WeAcceptedRevokeAndACK(commitments1) ]
-                result |> Ok
-                failwith "needs update"
-
+                let remotePerCommitmentSecretsOpt =
+                    cm.RemotePerCommitmentSecrets.InsertRevocationKey
+                        cm.RemoteCommit.Index
+                        msg.PerCommitmentSecret
+                match remotePerCommitmentSecretsOpt with
+                | Error err -> invalidRevokeAndACK msg err.Message
+                | Ok remotePerCommitmentSecrets ->
+                    let commitments1 = { cm with LocalChanges = { cm.LocalChanges with Signed = []; ACKed = cm.LocalChanges.ACKed @ cm.LocalChanges.Signed }
+                                                 RemoteChanges = { cm.RemoteChanges with Signed = [] }
+                                                 RemoteCommit = theirNextCommit
+                                                 RemoteNextCommitInfo = RemoteNextCommitInfo.Revoked msg.NextPerCommitmentPoint
+                                                 RemotePerCommitmentSecrets = remotePerCommitmentSecrets }
+                    let result = Ok [ WeAcceptedRevokeAndACK(commitments1) ]
+                    failwith "needs update"
 
         | ChannelState.Normal state, ChannelCommand.Close cmd ->
             let localSPK = cmd.ScriptPubKey |> Option.defaultValue (state.Commitments.LocalParams.DefaultFinalScriptPubKey)
diff --git a/src/DotNetLightning.Core/Channel/ChannelTypes.fs b/src/DotNetLightning.Core/Channel/ChannelTypes.fs
index e77f1b0bd..db389291d 100644
--- a/src/DotNetLightning.Core/Channel/ChannelTypes.fs
+++ b/src/DotNetLightning.Core/Channel/ChannelTypes.fs
@@ -76,7 +76,7 @@ module Data =
                                             FundingSatoshis: Money
                                             PushMsat: LNMoney
                                             InitialFeeRatePerKw: FeeRatePerKw
-                                            RemoteFirstPerCommitmentPoint: PubKey
+                                            RemoteFirstPerCommitmentPoint: CommitmentPubKey
                                             LastSent: OpenChannelMsg
                                         }
         with interface IChannelStateData
@@ -88,7 +88,7 @@ module Data =
                                             FundingSatoshis: Money
                                             PushMSat: LNMoney
                                             InitialFeeRatePerKw: FeeRatePerKw
-                                            RemoteFirstPerCommitmentPoint: PubKey
+                                            RemoteFirstPerCommitmentPoint: CommitmentPubKey
                                             ChannelFlags: uint8
                                             LastSent: AcceptChannelMsg
                                       }
diff --git a/src/DotNetLightning.Core/Channel/ChannelUtils.fs b/src/DotNetLightning.Core/Channel/ChannelUtils.fs
deleted file mode 100644
index d95f47721..000000000
--- a/src/DotNetLightning.Core/Channel/ChannelUtils.fs
+++ /dev/null
@@ -1,20 +0,0 @@
-namespace DotNetLightning.Channel
-
-open NBitcoin
-open NBitcoin.Crypto
-
-module ChannelUtils =
-    
-    /// Various functions for key derivation and tx creation for use within channels. Primarily used in Channel
-    let buildCommitmentSecret (commitmentSeed: uint256, index: uint64): Key =
-        let mutable res = commitmentSeed.ToBytes()
-        for i in 0..47 do
-            let bitpos = 47 - i
-            if index &&& (1UL <<< bitpos) = (1UL <<< bitpos) then
-                res.[bitpos / 8] <- (res.[bitpos / 8] ^^^ (1uy <<< (7 &&& bitpos)))
-                res <- Hashes.SHA256(res)
-        res |> Key
-    
-    let buildCommitmentPoint(seed: uint256, index: uint64) =
-        buildCommitmentSecret(seed, index) |> fun k -> k.PubKey
-
diff --git a/src/DotNetLightning.Core/Channel/ChannelValidation.fs b/src/DotNetLightning.Core/Channel/ChannelValidation.fs
index e98b2de6e..4626db3a2 100644
--- a/src/DotNetLightning.Core/Channel/ChannelValidation.fs
+++ b/src/DotNetLightning.Core/Channel/ChannelValidation.fs
@@ -73,8 +73,8 @@ module internal ChannelHelpers =
                           (initialFeeRatePerKw: FeeRatePerKw)
                           (fundingOutputIndex: TxOutIndex)
                           (fundingTxId: TxId)
-                          (localPerCommitmentPoint: PubKey)
-                          (remotePerCommitmentPoint: PubKey)
+                          (localPerCommitmentPoint: CommitmentPubKey)
+                          (remotePerCommitmentPoint: CommitmentPubKey)
                           (secpContext: ISecp256k1)
                           (n: Network): Result<CommitmentSpec * CommitTx * CommitmentSpec * CommitTx, ChannelError> =
         let toLocal = if (localParams.IsFunder) then fundingSatoshis.ToLNMoney() - pushMSat else pushMSat
@@ -95,12 +95,12 @@ module internal ChannelHelpers =
                                                   fundingTxId
                                                   fundingOutputIndex
                                                   fundingSatoshis
-            let revPubKeyForLocal = Generators.revocationPubKey secpContext remoteParams.RevocationBasePoint localPerCommitmentPoint
-            let delayedPubKeyForLocal = Generators.derivePubKey secpContext localParams.ChannelPubKeys.DelayedPaymentBasePubKey localPerCommitmentPoint
-            let paymentPubKeyForLocal = Generators.derivePubKey secpContext remoteParams.PaymentBasePoint localPerCommitmentPoint
+            let revPubKeyForLocal = Generators.revocationPubKey secpContext remoteParams.RevocationBasePoint localPerCommitmentPoint.PubKey
+            let delayedPubKeyForLocal = Generators.derivePubKey secpContext localParams.ChannelPubKeys.DelayedPaymentBasePubKey localPerCommitmentPoint.PubKey
+            let paymentPubKeyForLocal = Generators.derivePubKey secpContext remoteParams.PaymentBasePoint localPerCommitmentPoint.PubKey
             let localCommitTx =
                 Transactions.makeCommitTx scriptCoin
-                                          0UL
+                                          CommitmentNumber.FirstCommitment
                                           localParams.ChannelPubKeys.PaymentBasePubKey
                                           remoteParams.PaymentBasePoint
                                           localParams.IsFunder
@@ -113,12 +113,12 @@ module internal ChannelHelpers =
                                           (remoteParams.HTLCBasePoint)
                                           localSpec
                                           n
-            let revPubKeyForRemote = Generators.revocationPubKey secpContext localParams.ChannelPubKeys.RevocationBasePubKey remotePerCommitmentPoint
-            let delayedPubKeyForRemote = Generators.derivePubKey secpContext remoteParams.DelayedPaymentBasePoint remotePerCommitmentPoint
-            let paymentPubKeyForRemote = Generators.derivePubKey secpContext localParams.ChannelPubKeys.PaymentBasePubKey remotePerCommitmentPoint
+            let revPubKeyForRemote = Generators.revocationPubKey secpContext localParams.ChannelPubKeys.RevocationBasePubKey remotePerCommitmentPoint.PubKey
+            let delayedPubKeyForRemote = Generators.derivePubKey secpContext remoteParams.DelayedPaymentBasePoint remotePerCommitmentPoint.PubKey
+            let paymentPubKeyForRemote = Generators.derivePubKey secpContext localParams.ChannelPubKeys.PaymentBasePubKey remotePerCommitmentPoint.PubKey
             let remoteCommitTx =
                 Transactions.makeCommitTx scriptCoin
-                                          0UL
+                                          CommitmentNumber.FirstCommitment
                                           remoteParams.PaymentBasePoint
                                           localParams.ChannelPubKeys.PaymentBasePubKey
                                           (not localParams.IsFunder)
diff --git a/src/DotNetLightning.Core/Channel/Commitments.fs b/src/DotNetLightning.Core/Channel/Commitments.fs
index 1f26ebfbd..da1109687 100644
--- a/src/DotNetLightning.Core/Channel/Commitments.fs
+++ b/src/DotNetLightning.Core/Channel/Commitments.fs
@@ -60,23 +60,23 @@ type PublishableTxs = {
 }
 
 type LocalCommit = {
-    Index: uint64
+    Index: CommitmentNumber
     Spec: CommitmentSpec
     PublishableTxs: PublishableTxs
     /// These are not redeemable on-chain until we get a corresponding preimage.
     PendingHTLCSuccessTxs: HTLCSuccessTx list
 }
 type RemoteCommit = {
-    Index: uint64
+    Index: CommitmentNumber
     Spec: CommitmentSpec
     TxId: TxId
-    RemotePerCommitmentPoint: PubKey
+    RemotePerCommitmentPoint: CommitmentPubKey
 }
 
 type WaitingForRevocation = {
     NextRemoteCommit: RemoteCommit
     Sent: CommitmentSignedMsg
-    SentAfterLocalCommitmentIndex: uint64
+    SentAfterLocalCommitmentIndex: CommitmentNumber
     ReSignASAP: bool
 }
     with
@@ -90,7 +90,7 @@ type WaitingForRevocation = {
 
 type RemoteNextCommitInfo =
     | Waiting of WaitingForRevocation
-    | Revoked of PubKey
+    | Revoked of CommitmentPubKey
     with
         static member Waiting_: Prism<RemoteNextCommitInfo, WaitingForRevocation> =
             (fun remoteNextCommitInfo ->
@@ -102,15 +102,15 @@ type RemoteNextCommitInfo =
                 | Waiting _ -> Waiting waitingForRevocation
                 | Revoked _ -> remoteNextCommitInfo)
 
-        static member Revoked_: Prism<RemoteNextCommitInfo, PubKey> =
+        static member Revoked_: Prism<RemoteNextCommitInfo, CommitmentPubKey> =
             (fun remoteNextCommitInfo ->
                 match remoteNextCommitInfo with
                 | Waiting _ -> None
-                | Revoked pubKey -> Some pubKey),
-            (fun pubKey remoteNextCommitInfo ->
+                | Revoked commitmentPubKey -> Some commitmentPubKey),
+            (fun commitmentPubKey remoteNextCommitInfo ->
                 match remoteNextCommitInfo with
                 | Waiting _ -> remoteNextCommitInfo
-                | Revoked pubKey -> Revoked pubKey)
+                | Revoked commitmentPubKecommitmentPubKey -> Revoked commitmentPubKey)
 
 type Commitments = {
     LocalParams: LocalParams
@@ -125,7 +125,7 @@ type Commitments = {
     RemoteNextHTLCId: HTLCId
     OriginChannels: Map<HTLCId, HTLCSource>
     RemoteNextCommitInfo: RemoteNextCommitInfo
-    RemotePerCommitmentSecrets: ShaChain
+    RemotePerCommitmentSecrets: RevocationSet
     ChannelId: ChannelId
 }
     with
diff --git a/src/DotNetLightning.Core/Channel/CommitmentsModule.fs b/src/DotNetLightning.Core/Channel/CommitmentsModule.fs
index d6f3adc00..2673742fd 100644
--- a/src/DotNetLightning.Core/Channel/CommitmentsModule.fs
+++ b/src/DotNetLightning.Core/Channel/CommitmentsModule.fs
@@ -23,25 +23,25 @@ module internal Commitments =
 
         let makeRemoteTxs
             (ctx: ISecp256k1)
-            (channelKeys: ChannelKeys)
-            (commitTxNumber: uint64)
+            (commitTxNumber: CommitmentNumber)
             (localParams: LocalParams)
             (remoteParams: RemoteParams)
             (commitmentInput: ScriptCoin)
-            (remotePerCommitmentPoint: PubKey)
+            (remotePerCommitmentPoint: CommitmentPubKey)
             (spec) (n) =
-            let pkGen = Generators.derivePubKey ctx remotePerCommitmentPoint
-            let localPaymentPK = pkGen (channelKeys.PaymentBaseKey.PubKey)
-            let localHTLCPK = pkGen channelKeys.HTLCBaseKey.PubKey
-            let remotePaymentPK = pkGen (remoteParams.PaymentBasePoint)
-            let remoteDelayedPaymentPK = pkGen (remoteParams.DelayedPaymentBasePoint)
-            let remoteHTLCPK = pkGen (remoteParams.HTLCBasePoint)
-            let remoteRevocationPK = pkGen (channelKeys.RevocationBaseKey.PubKey)
+            let channelKeys = localParams.ChannelPubKeys
+            let pkGen = Generators.derivePubKey ctx remotePerCommitmentPoint.PubKey
+            let localPaymentPK = pkGen channelKeys.PaymentBasePubKey
+            let localHTLCPK = pkGen channelKeys.HTLCBasePubKey
+            let remotePaymentPK = pkGen remoteParams.PaymentBasePoint
+            let remoteDelayedPaymentPK = pkGen remoteParams.DelayedPaymentBasePoint
+            let remoteHTLCPK = pkGen remoteParams.HTLCBasePoint
+            let remoteRevocationPK = pkGen channelKeys.RevocationBasePubKey
             let commitTx =
                 Transactions.makeCommitTx commitmentInput 
                                           commitTxNumber
                                           remoteParams.PaymentBasePoint
-                                          channelKeys.PaymentBaseKey.PubKey
+                                          channelKeys.PaymentBasePubKey
                                           (not localParams.IsFunder)
                                           (remoteParams.DustLimitSatoshis)
                                           (remoteRevocationPK)
@@ -68,15 +68,15 @@ module internal Commitments =
 
         let makeLocalTXs
             (ctx: ISecp256k1)
-            (channelKeys: ChannelPubKeys)
-            (commitTxNumber: uint64)
+            (commitTxNumber: CommitmentNumber)
             (localParams: LocalParams)
             (remoteParams: RemoteParams)
             (commitmentInput: ScriptCoin)
-            (localPerCommitmentPoint: PubKey)
+            (localPerCommitmentPoint: CommitmentPubKey)
             (spec: CommitmentSpec)
             n: Result<(CommitTx * HTLCTimeoutTx list * HTLCSuccessTx list), _> =
-            let pkGen = Generators.derivePubKey ctx localPerCommitmentPoint
+            let channelKeys = localParams.ChannelPubKeys
+            let pkGen = Generators.derivePubKey ctx localPerCommitmentPoint.PubKey
             let localPaymentPK = pkGen channelKeys.PaymentBasePubKey
             let localDelayedPaymentPK = pkGen channelKeys.DelayedPaymentBasePubKey
             let localHTLCPK = pkGen channelKeys.HTLCBasePubKey
@@ -277,11 +277,9 @@ module internal Commitments =
             result {
                 // remote commitment will include all local changes + remote acked changes
                 let! spec = cm.RemoteCommit.Spec.Reduce(cm.RemoteChanges.ACKed, cm.LocalChanges.Proposed) |> expectTransactionError
-                let localKeys = keyRepo.GetChannelKeys(not cm.LocalParams.IsFunder)
                 let! (remoteCommitTx, htlcTimeoutTxs, htlcSuccessTxs) =
                     Helpers.makeRemoteTxs (ctx)
-                                          (localKeys)
-                                          (cm.RemoteCommit.Index + 1UL)
+                                          cm.RemoteCommit.Index.NextCommitment
                                           (cm.LocalParams)
                                           (cm.RemoteParams)
                                           (cm.FundingScriptCoin)
@@ -292,7 +290,7 @@ module internal Commitments =
                 let htlcSigs =
                     sortedHTLCTXs
                     |> List.map(
-                            (fun htlc -> keyRepo.GenerateKeyFromBasePointAndSign(htlc.Value, cm.LocalParams.ChannelPubKeys.HTLCBasePubKey, remoteNextPerCommitmentPoint))
+                            (fun htlc -> keyRepo.GenerateKeyFromBasePointAndSign(htlc.Value, cm.LocalParams.ChannelPubKeys.HTLCBasePubKey, remoteNextPerCommitmentPoint.PubKey))
                             >> fst
                             >> (fun txSig -> txSig.Signature)
                             )
@@ -300,17 +298,19 @@ module internal Commitments =
                             Signature = !> signature.Signature
                             HTLCSignatures = htlcSigs |> List.map (!>) }
                 let nextCommitments =
-                    let nextRemoteCommitInfo = { WaitingForRevocation.NextRemoteCommit =
-                                                    { cm.RemoteCommit
-                                                        with
-                                                            Index = cm.RemoteCommit.Index + 1UL;
-                                                            Spec = spec;
-                                                            RemotePerCommitmentPoint = remoteNextPerCommitmentPoint
-                                                            TxId = remoteCommitTx.GetTxId() }
-                                                 Sent = msg
-                                                 SentAfterLocalCommitmentIndex = cm.LocalCommit.Index
-                                                 ReSignASAP = false }
-
+                    let nextRemoteCommitInfo = {
+                        WaitingForRevocation.NextRemoteCommit = {
+                            cm.RemoteCommit
+                            with
+                                Index = cm.RemoteCommit.Index.NextCommitment
+                                Spec = spec
+                                RemotePerCommitmentPoint = remoteNextPerCommitmentPoint
+                                TxId = remoteCommitTx.GetTxId()
+                        }
+                        Sent = msg
+                        SentAfterLocalCommitmentIndex = cm.LocalCommit.Index
+                        ReSignASAP = false
+                    }
                     { cm with RemoteNextCommitInfo = RemoteNextCommitInfo.Waiting(nextRemoteCommitInfo)
                               LocalChanges = { cm.LocalChanges with Proposed = []; Signed = cm.LocalChanges.Proposed }
                               RemoteChanges = { cm.RemoteChanges with ACKed = []; Signed = cm.RemoteChanges.ACKed } }
@@ -328,13 +328,15 @@ module internal Commitments =
         if cm.RemoteHasChanges() |> not then
             ReceivedCommitmentSignedWhenWeHaveNoPendingChanges |> Error
         else
+            let chanPrivateKeys = keyRepo.GetChannelKeys cm.LocalParams.IsFunder
+            let commitmentSeed = chanPrivateKeys.CommitmentSeed
             let chanKeys = cm.LocalParams.ChannelPubKeys
-            let nextI = cm.LocalCommit.Index + 1UL
+            let nextI = cm.LocalCommit.Index.NextCommitment
             result {
                 let! spec = cm.LocalCommit.Spec.Reduce(cm.LocalChanges.ACKed, cm.RemoteChanges.Proposed) |> expectTransactionError
-                let localPerCommitmentPoint = ChannelUtils.buildCommitmentPoint (chanKeys.CommitmentSeed, nextI)
+                let localPerCommitmentPoint = commitmentSeed.DeriveCommitmentPubKey nextI
                 let! (localCommitTx, htlcTimeoutTxs, htlcSuccessTxs) =
-                    Helpers.makeLocalTXs (ctx) chanKeys (nextI) (cm.LocalParams) (cm.RemoteParams) (cm.FundingScriptCoin) (localPerCommitmentPoint) spec n
+                    Helpers.makeLocalTXs (ctx) (nextI) (cm.LocalParams) (cm.RemoteParams) (cm.FundingScriptCoin) (localPerCommitmentPoint) spec n
                     |> expectTransactionErrors
                 let signature, signedCommitTx = keyRepo.GetSignatureFor (localCommitTx.Value, chanKeys.FundingPubKey)
 
@@ -350,10 +352,13 @@ module internal Commitments =
                 do! checkSignatureCountMismatch sortedHTLCTXs msg
                 
                 let _localHTLCSigs, sortedHTLCTXs =
-                    let localHtlcSigsAndHTLCTxs = sortedHTLCTXs |> List.map(fun htlc -> keyRepo.GenerateKeyFromBasePointAndSign(htlc.Value, cm.LocalParams.ChannelPubKeys.HTLCBasePubKey, localPerCommitmentPoint))
+                    let localHtlcSigsAndHTLCTxs =
+                        sortedHTLCTXs |> List.map(fun htlc ->
+                            keyRepo.GenerateKeyFromBasePointAndSign(htlc.Value, cm.LocalParams.ChannelPubKeys.HTLCBasePubKey, localPerCommitmentPoint.PubKey)
+                        )
                     localHtlcSigsAndHTLCTxs |> List.map(fst), localHtlcSigsAndHTLCTxs |> List.map(snd) |> Seq.cast<IHTLCTx> |> List.ofSeq
 
-                let remoteHTLCPubKey = Generators.derivePubKey ctx (cm.RemoteParams.HTLCBasePoint) (localPerCommitmentPoint)
+                let remoteHTLCPubKey = Generators.derivePubKey ctx (cm.RemoteParams.HTLCBasePoint) localPerCommitmentPoint.PubKey
 
                 let checkHTLCSig (htlc: IHTLCTx, remoteECDSASig: LNECDSASignature): Result<_, _> =
                     let remoteS = TransactionSignature(remoteECDSASig.Value, SigHash.All)
@@ -372,19 +377,32 @@ module internal Commitments =
                     |> List.map(checkHTLCSig)
                     |> List.sequenceResultA
                     |> expectTransactionErrors
-                let successTxs = txList |> List.choose(fun o -> match o with | :? HTLCSuccessTx as tx -> Some tx | _ -> None)
-                let finalizedTxs = txList |> List.choose(fun o -> match o with | :? FinalizedTx as tx -> Some tx | _ -> None)
+                let successTxs =
+                    txList |> List.choose(fun o ->
+                        match o with
+                        | :? HTLCSuccessTx as tx -> Some tx
+                        | _ -> None
+                    )
+                let finalizedTxs =
+                    txList |> List.choose(fun o ->
+                        match o with
+                        | :? FinalizedTx as tx -> Some tx
+                        | _ -> None
+                    )
                 let localPerCommitmentSecret =
-                    ChannelUtils.buildCommitmentSecret(cm.LocalParams.ChannelPubKeys.CommitmentSeed, cm.LocalCommit.Index)
+                    chanPrivateKeys.CommitmentSeed.DeriveRevocationKey cm.LocalCommit.Index
                 let localNextPerCommitmentPoint =
-                    ChannelUtils.buildCommitmentPoint(cm.LocalParams.ChannelPubKeys.CommitmentSeed, cm.LocalCommit.Index + 2UL)
+                    let revocationKey =
+                        chanPrivateKeys.CommitmentSeed.DeriveRevocationKey
+                            cm.LocalCommit.Index.NextCommitment.NextCommitment
+                    revocationKey.CommitmentPubKey
 
                 let nextMsg = { RevokeAndACKMsg.ChannelId = cm.ChannelId
-                                PerCommitmentSecret = localPerCommitmentSecret.ToBytes() |> PaymentPreimage.Create
+                                PerCommitmentSecret = localPerCommitmentSecret
                                 NextPerCommitmentPoint = localNextPerCommitmentPoint }
                 
                 let nextCommitments =
-                    let localCommit1 = { LocalCommit.Index = cm.LocalCommit.Index + 1UL
+                    let localCommit1 = { LocalCommit.Index = cm.LocalCommit.Index.NextCommitment
                                          Spec = spec
                                          PublishableTxs = { PublishableTxs.CommitTx = finalizedCommitTx
                                                             HTLCTxs = finalizedTxs }
diff --git a/src/DotNetLightning.Core/Crypto/RevocationSet.fs b/src/DotNetLightning.Core/Crypto/RevocationSet.fs
new file mode 100644
index 000000000..cf71b9db9
--- /dev/null
+++ b/src/DotNetLightning.Core/Crypto/RevocationSet.fs
@@ -0,0 +1,73 @@
+namespace DotNetLightning.Crypto
+
+open NBitcoin
+open NBitcoin.Crypto
+open DotNetLightning.Utils
+
+type InsertRevocationKeyError =
+    | UnexpectedCommitmentNumber of got: CommitmentNumber * expected: CommitmentNumber
+    | KeyMismatch of previousCommitmentNumber: CommitmentNumber * newCommitmentNumber: CommitmentNumber
+    with
+        member this.Message: string =
+            match this with
+            | UnexpectedCommitmentNumber(got, expected) ->
+                sprintf
+                    "Unexpected commitment number. Got %s, expected %s"
+                    (got.ToString())
+                    (expected.ToString())
+            | KeyMismatch(previousCommitmentNumber, newCommitmentNumber) ->
+                sprintf
+                    "Revocation key for commitment %s derives a key for commitment %s which does \
+                    not match the recorded key"
+                    (newCommitmentNumber.ToString())
+                    (previousCommitmentNumber.ToString())
+
+type RevocationSet private (keys: list<CommitmentNumber * RevocationKey>) =
+    new() = RevocationSet(List.empty)
+
+    member private this.Keys = keys
+
+    member this.NextCommitmentNumber: CommitmentNumber =
+        if this.Keys.IsEmpty then
+            CommitmentNumber.FirstCommitment
+        else
+            let prevCommitmentNumber, _ = this.Keys.Head
+            prevCommitmentNumber.NextCommitment
+
+    member this.InsertRevocationKey (commitmentNumber: CommitmentNumber)
+                                    (revocationKey: RevocationKey)
+                                        : Result<RevocationSet, InsertRevocationKeyError> =
+        let nextCommitmentNumber = this.NextCommitmentNumber
+        if commitmentNumber <> nextCommitmentNumber then
+            Error <| UnexpectedCommitmentNumber (commitmentNumber, nextCommitmentNumber)
+        else
+            let rec fold (keys: list<CommitmentNumber * RevocationKey>)
+                             : Result<RevocationSet, InsertRevocationKeyError> =
+                if keys.IsEmpty then
+                    let res = [commitmentNumber, revocationKey]
+                    Ok <| RevocationSet res
+                else
+                    let storedCommitmentNumber, storedRevocationKey = keys.Head
+                    match revocationKey.DeriveChild commitmentNumber storedCommitmentNumber with
+                    | Some derivedRevocationKey ->
+                        if derivedRevocationKey <> storedRevocationKey then
+                            Error <| KeyMismatch (storedCommitmentNumber, commitmentNumber)
+                        else
+                            fold keys.Tail
+                    | None ->
+                        let res = (commitmentNumber, revocationKey) :: keys
+                        Ok <| RevocationSet res
+            fold this.Keys
+
+    member this.GetRevocationKey (commitmentNumber: CommitmentNumber)
+                                     : Option<RevocationKey> =
+        let rec fold (keys: list<CommitmentNumber * RevocationKey>) =
+            if keys.IsEmpty then
+                None
+            else
+                let storedCommitmentNumber, storedRevocationKey = keys.Head
+                match storedRevocationKey.DeriveChild storedCommitmentNumber commitmentNumber with
+                | Some revocationKey -> Some revocationKey
+                | None -> fold keys.Tail
+        fold this.Keys
+
diff --git a/src/DotNetLightning.Core/DotNetLightning.Core.fsproj b/src/DotNetLightning.Core/DotNetLightning.Core.fsproj
index a4b75c443..9cb5650ce 100644
--- a/src/DotNetLightning.Core/DotNetLightning.Core.fsproj
+++ b/src/DotNetLightning.Core/DotNetLightning.Core.fsproj
@@ -26,10 +26,13 @@
   </ItemGroup>
   <ItemGroup>
     <Compile Include="AssemblyInfo.fs" />
-    <Compile Include="Utils/Primitives.fs" />
     <Compile Include="Utils/LNMoney.fs" />
-    <Compile Include="Utils/NBitcoinExtensions.fs" />
     <Compile Include="Utils\Extensions.fs" />
+    <Compile Include="Utils/UInt48.fs" />
+    <Compile Include="Utils/TxId.fs" />
+    <Compile Include="Utils/ChannelId.fs" />
+    <Compile Include="Utils/NBitcoinExtensions.fs" />
+    <Compile Include="Utils/Primitives.fs" />
     <Compile Include="Utils/Utils.fs" />
     <Compile Include="Utils/Aether.fs" />
     <Compile Include="Utils/Config.fs" />
@@ -47,6 +50,7 @@
     <Compile Include="Serialize/Msgs/Msgs.fs" />
     <Compile Include="DomainUtils/Types.fs" />
     <Compile Include="Crypto/CryptoUtils.fs" />
+    <Compile Include="Crypto/RevocationSet.fs" />
     <Compile Include="Crypto/ShaChain.fs" />
     <Compile Include="Crypto/Sphinx.fs" />
     <Compile Include="Crypto/Generators.fs" />
@@ -60,7 +64,6 @@
     <Compile Include="Peer\PeerChannelEncryptor.fs" />
     <Compile Include="Peer\PeerTypes.fs" />
     <Compile Include="Peer\Peer.fs" />
-    <Compile Include="Channel\ChannelUtils.fs" />
     <Compile Include="Channel\HTLCChannelType.fs" />
     <Compile Include="Channel\ChannelConstants.fs" />
     <Compile Include="Channel\ChannelOperations.fs" />
diff --git a/src/DotNetLightning.Core/Serialize/LightningStream.fs b/src/DotNetLightning.Core/Serialize/LightningStream.fs
index 0af468094..e9b095b11 100644
--- a/src/DotNetLightning.Core/Serialize/LightningStream.fs
+++ b/src/DotNetLightning.Core/Serialize/LightningStream.fs
@@ -328,6 +328,14 @@ type LightningReaderStream(inner: Stream) =
         else
             raise (FormatException("Invalid Pubkey encoding"))
 
+    member this.ReadRevocationKey() =
+        let bytes = this.ReadBytes RevocationKey.BytesLength
+        RevocationKey.FromBytes bytes
+
+    member this.ReadCommitmentPubKey() =
+        let bytes = this.ReadBytes CommitmentPubKey.BytesLength
+        CommitmentPubKey.FromBytes bytes
+
     member this.ReadECDSACompact() =
         let data = this.ReadBytes(64)
         LNECDSASignature.FromBytesCompact(data)
diff --git a/src/DotNetLightning.Core/Serialize/Msgs/Msgs.fs b/src/DotNetLightning.Core/Serialize/Msgs/Msgs.fs
index 051629dde..b56cfd7d5 100644
--- a/src/DotNetLightning.Core/Serialize/Msgs/Msgs.fs
+++ b/src/DotNetLightning.Core/Serialize/Msgs/Msgs.fs
@@ -507,7 +507,7 @@ type OpenChannelMsg = {
     mutable PaymentBasepoint: PubKey
     mutable DelayedPaymentBasepoint: PubKey
     mutable HTLCBasepoint: PubKey
-    mutable FirstPerCommitmentPoint: PubKey
+    mutable FirstPerCommitmentPoint: CommitmentPubKey
     mutable ChannelFlags: uint8
     mutable ShutdownScriptPubKey: OptionalField<Script>
 }
@@ -531,7 +531,7 @@ with
             this.PaymentBasepoint <- ls.ReadPubKey()
             this.DelayedPaymentBasepoint <- ls.ReadPubKey()
             this.HTLCBasepoint <- ls.ReadPubKey()
-            this.FirstPerCommitmentPoint <- ls.ReadPubKey()
+            this.FirstPerCommitmentPoint <- ls.ReadCommitmentPubKey()
             this.ChannelFlags <- ls.ReadUInt8()
             this.ShutdownScriptPubKey <-
                 if (ls.Position = ls.Length) then None else
@@ -553,7 +553,7 @@ with
             ls.Write(this.PaymentBasepoint.ToBytes())
             ls.Write(this.DelayedPaymentBasepoint.ToBytes())
             ls.Write(this.HTLCBasepoint.ToBytes())
-            ls.Write(this.FirstPerCommitmentPoint.ToBytes())
+            ls.Write(this.FirstPerCommitmentPoint.ToByteArray())
             ls.Write(this.ChannelFlags)
             ls.WriteWithLen(this.ShutdownScriptPubKey |> Option.map(fun x -> x.ToBytes()))
 
@@ -572,7 +572,7 @@ type AcceptChannelMsg = {
     mutable PaymentBasepoint: PubKey
     mutable DelayedPaymentBasepoint: PubKey
     mutable HTLCBasepoint: PubKey
-    mutable FirstPerCommitmentPoint: PubKey
+    mutable FirstPerCommitmentPoint: CommitmentPubKey
     mutable ShutdownScriptPubKey: OptionalField<Script>
 }
 with
@@ -592,7 +592,7 @@ with
             this.PaymentBasepoint <- ls.ReadPubKey()
             this.DelayedPaymentBasepoint <- ls.ReadPubKey()
             this.HTLCBasepoint <- ls.ReadPubKey()
-            this.FirstPerCommitmentPoint <- ls.ReadPubKey()
+            this.FirstPerCommitmentPoint <- ls.ReadCommitmentPubKey()
             this.ShutdownScriptPubKey <-
                 if (ls.Position = ls.Length) then None else
                 ls.ReadWithLen() |> Script |> Some
@@ -610,7 +610,7 @@ with
             ls.Write(this.PaymentBasepoint.ToBytes())
             ls.Write(this.DelayedPaymentBasepoint.ToBytes())
             ls.Write(this.HTLCBasepoint.ToBytes())
-            ls.Write(this.FirstPerCommitmentPoint.ToBytes())
+            ls.Write(this.FirstPerCommitmentPoint.ToByteArray())
             ls.WriteWithLen(this.ShutdownScriptPubKey |> Option.map(fun x -> x.ToBytes()))
 
 [<CLIMutable>]
@@ -652,17 +652,17 @@ with
 [<CLIMutable>]
 type FundingLockedMsg = {
     mutable ChannelId: ChannelId
-    mutable NextPerCommitmentPoint: PubKey
+    mutable NextPerCommitmentPoint: CommitmentPubKey
 }
 with
     interface IChannelMsg
     interface ILightningSerializable<FundingLockedMsg> with
         member this.Deserialize(ls) =
             this.ChannelId <- ls.ReadUInt256(true) |> ChannelId
-            this.NextPerCommitmentPoint <- ls.ReadPubKey()
+            this.NextPerCommitmentPoint <- ls.ReadCommitmentPubKey()
         member this.Serialize(ls) =
             ls.Write(this.ChannelId.Value.ToBytes())
-            ls.Write(this.NextPerCommitmentPoint.ToBytes())
+            ls.Write(this.NextPerCommitmentPoint.ToByteArray())
 
 [<CLIMutable>]
 type ShutdownMsg = {
@@ -809,20 +809,20 @@ with
 [<CLIMutable>]
 type RevokeAndACKMsg = {
     mutable ChannelId: ChannelId
-    mutable PerCommitmentSecret: PaymentPreimage
-    mutable NextPerCommitmentPoint: PubKey
+    mutable PerCommitmentSecret: RevocationKey
+    mutable NextPerCommitmentPoint: CommitmentPubKey
 }
 with
     interface IHTLCMsg
     interface ILightningSerializable<RevokeAndACKMsg> with
         member this.Deserialize(ls) =
             this.ChannelId <- ls.ReadUInt256(true) |> ChannelId
-            this.PerCommitmentSecret <- ls.ReadBytes PaymentPreimage.LENGTH |> PaymentPreimage.Create
-            this.NextPerCommitmentPoint <- ls.ReadPubKey()
+            this.PerCommitmentSecret <- ls.ReadRevocationKey()
+            this.NextPerCommitmentPoint <- ls.ReadCommitmentPubKey()
         member this.Serialize(ls) =
             ls.Write(this.ChannelId.Value.ToBytes())
             ls.Write(this.PerCommitmentSecret.ToByteArray())
-            ls.Write(this.NextPerCommitmentPoint.ToBytes())
+            ls.Write(this.NextPerCommitmentPoint.ToByteArray())
 
 [<CLIMutable>]
 type UpdateFeeMsg = {
@@ -842,17 +842,17 @@ with
 
 [<CLIMutable>]
 type DataLossProtect = {
-    mutable YourLastPerCommitmentSecret: PaymentPreimage
-    mutable MyCurrentPerCommitmentPoint: PubKey
+    mutable YourLastPerCommitmentSecret: RevocationKey
+    mutable MyCurrentPerCommitmentPoint: CommitmentPubKey
 }
     with
         interface ILightningSerializable<DataLossProtect> with
             member this.Deserialize(ls: LightningReaderStream) =
-                this.YourLastPerCommitmentSecret <- ls.ReadBytes PaymentPreimage.LENGTH |> PaymentPreimage.Create
-                this.MyCurrentPerCommitmentPoint <- ls.ReadPubKey()
+                this.YourLastPerCommitmentSecret <- ls.ReadRevocationKey()
+                this.MyCurrentPerCommitmentPoint <- ls.ReadCommitmentPubKey()
             member this.Serialize(ls: LightningWriterStream): unit = 
                 ls.Write(this.YourLastPerCommitmentSecret.ToByteArray())
-                ls.Write(this.MyCurrentPerCommitmentPoint)
+                ls.Write(this.MyCurrentPerCommitmentPoint.ToByteArray())
 
 
 [<CLIMutable>]
@@ -875,7 +875,7 @@ with
             ls.Write(Utils.ToBytes(this.NextLocalCommitmentNumber, false))
             ls.Write(Utils.ToBytes(this.NextRemoteCommitmentNumber, false))
             ls.Write(this.DataLossProtect |> Option.map(fun x -> x.YourLastPerCommitmentSecret.ToByteArray()))
-            ls.Write(this.DataLossProtect |> Option.map(fun x -> x.MyCurrentPerCommitmentPoint.ToBytes()))
+            ls.Write(this.DataLossProtect |> Option.map(fun x -> x.MyCurrentPerCommitmentPoint.ToByteArray()))
 
 [<CLIMutable>]
 type AnnouncementSignaturesMsg = {
@@ -1350,11 +1350,11 @@ type ErrorMsg =
                 | id when id = uint256.Zero ->
                     this.ChannelId <- All
                 | id ->
-                    this.ChannelId <- SpecificChannel(Primitives.ChannelId(id))
+                    this.ChannelId <- SpecificChannel(ChannelId id)
                 this.Data <- ls.ReadWithLen()
             member this.Serialize(ls) =
                 match this.ChannelId with
-                | SpecificChannel (Primitives.ChannelId id) -> ls.Write(id.ToBytes())
+                | SpecificChannel (ChannelId id) -> ls.Write(id.ToBytes())
                 | All -> ls.Write(Array.zeroCreate 32)
                 ls.WriteWithLen(this.Data)
 
diff --git a/src/DotNetLightning.Core/Transactions/Transactions.fs b/src/DotNetLightning.Core/Transactions/Transactions.fs
index 19a29922c..6a07c8562 100644
--- a/src/DotNetLightning.Core/Transactions/Transactions.fs
+++ b/src/DotNetLightning.Core/Transactions/Transactions.fs
@@ -322,36 +322,22 @@ module Transactions =
         let weight = COMMIT_WEIGHT + 172UL * (uint64 trimmedOfferedHTLCs.Length + uint64 trimmedReceivedHTLCs.Length)
         spec.FeeRatePerKw.ToFee(weight)
 
-    let internal getCommitmentTxNumberObscureFactor (isFunder: bool) (localPaymentBasePoint: PubKey) (remotePaymentBasePoint: PubKey) =
-        let res =
-            if (isFunder) then
-                Hashes.SHA256(Array.concat[| localPaymentBasePoint.ToBytes(); remotePaymentBasePoint.ToBytes() |])
-            else
-                Hashes.SHA256(Array.concat[| remotePaymentBasePoint.ToBytes(); localPaymentBasePoint.ToBytes() |])
-        res.[26..]
-    let obscuredCommitTxNumber (commitTxNumber: uint64) (isFunder) (localPaymentBasePoint) (remotePaymentBasePoint) =
-        let obs = getCommitmentTxNumberObscureFactor isFunder localPaymentBasePoint remotePaymentBasePoint
-        let numData = commitTxNumber.GetBytesBigEndian().[2..]
-        
-        let res = Array.zeroCreate (obs.Length + 2)
-        obs |> Array.iteri(fun i ob ->
-            res.[i + 2] <- ob ^^^ numData.[i]
-            )
-        let resSpanBigE = ReadOnlySpan(res |> Array.rev)
-        BitConverter.ToUInt64(resSpanBigE.ToArray(), 0)
-
-    let private encodeTxNumber (txNumber): (_ * _) =
-        if (txNumber > 0xffffffffffffUL) then raise <| ArgumentException("tx number must be lesser than 48 bits long")
-        (0x80000000UL ||| (txNumber >>> 24)) |> uint32, ((txNumber &&& 0xffffffUL) ||| 0x20000000UL) |> uint32
-
-    let private decodeTxNumber (sequence: uint32) (lockTime: uint32) =
-        ((uint64 sequence) &&& 0xffffffUL <<< 24) + ((uint64 lockTime) &&& 0xffffffUL)
-
-    /// unblind commit tx number
-    let getCommitTxNumber(commitTx: Transaction) (isFunder: bool) (localPaymentBasePoint: PubKey) (remotePaymentBasePoint) =
-        let blind =  obscuredCommitTxNumber (0UL) isFunder localPaymentBasePoint remotePaymentBasePoint
-        let obscured = decodeTxNumber (!> commitTx.Inputs.[0].Sequence) (!> commitTx.LockTime)
-        obscured ^^^ blind
+    let getCommitTxNumber (commitTx: Transaction)
+                          (isFunder: bool)
+                          (localPaymentBasePoint: PubKey)
+                          (remotePaymentBasePoint: PubKey)
+                              : Option<CommitmentNumber> =
+        let obscuredCommitmentNumberOpt =
+            ObscuredCommitmentNumber.TryFromLockTimeAndSequence
+                commitTx.LockTime
+                commitTx.Inputs.[0].Sequence
+        match obscuredCommitmentNumberOpt with
+        | None -> None
+        | Some obscuredCommitmentNumber ->
+            Some <| obscuredCommitmentNumber.Unobscure
+                isFunder
+                localPaymentBasePoint
+                remotePaymentBasePoint
 
     /// Sort by BOLT 3: Compliant way (i.e. BIP69 + CLTV order)
     let sortTxOut (txOutsWithMeta: (TxOut * _) list) =
@@ -360,7 +346,7 @@ module Transactions =
         |> List.map(fst)
 
     let makeCommitTx (inputInfo: ScriptCoin)
-                     (commitTxNumber)
+                     (commitmentNumber: CommitmentNumber)
                      (localPaymentBasePoint: PubKey)
                      (remotePaymentBasePoint: PubKey)
                      (localIsFunder: bool)
@@ -402,21 +388,23 @@ module Transactions =
                     let redeem = Scripts.htlcReceived (localHTLCPubKey) (remoteHTLCPubkey) (localRevocationPubKey) (htlc.Add.PaymentHash) (htlc.Add.CLTVExpiry.Value)
                     TxOut(htlc.Add.Amount.ToMoney(), redeem.WitHash.ScriptPubKey), Some htlc.Add)
         
-        let txNumber = obscuredCommitTxNumber commitTxNumber localIsFunder localPaymentBasePoint remotePaymentBasePoint
-        let (sequence, lockTime) = encodeTxNumber(txNumber)
+        let obscuredCommitmentNumber =
+            commitmentNumber.Obscure localIsFunder localPaymentBasePoint remotePaymentBasePoint
+        let sequence = obscuredCommitmentNumber.Sequence
+        let lockTime = obscuredCommitmentNumber.LockTime
 
         let tx =
             let tx = n.CreateTransaction()
             tx.Version <- 2u
             let txin = TxIn(inputInfo.Outpoint)
-            txin.Sequence <- Sequence(sequence)
+            txin.Sequence <- sequence
             tx.Inputs.Add(txin) |> ignore
             let txOuts =
                 ([toLocalDelayedOutput_opt; toRemoteOutput_opt;] |> List.choose id |> List.map(fun x -> x, None))
                 @ (htlcOfferedOutputsWithMetadata)
                 @ htlcReceivedOutputsWithMetadata
             tx.Outputs.AddRange(txOuts |> sortTxOut)
-            tx.LockTime <- !> lockTime
+            tx.LockTime <- lockTime
             tx
         let psbt =
             let p = PSBT.FromTransaction(tx, n)
@@ -753,4 +741,3 @@ module Transactions =
                     .AddCoins(commitTxInput)
             psbt |> ClosingTx |> Ok
 
-
diff --git a/src/DotNetLightning.Core/Utils/ChannelId.fs b/src/DotNetLightning.Core/Utils/ChannelId.fs
new file mode 100644
index 000000000..707789dc7
--- /dev/null
+++ b/src/DotNetLightning.Core/Utils/ChannelId.fs
@@ -0,0 +1,9 @@
+namespace DotNetLightning.Utils
+
+open NBitcoin
+
+type ChannelId = | ChannelId of uint256 with
+    member x.Value = let (ChannelId v) = x in v
+
+    static member Zero = uint256.Zero |> ChannelId
+
diff --git a/src/DotNetLightning.Core/Utils/Extensions.fs b/src/DotNetLightning.Core/Utils/Extensions.fs
index d8aa42e14..ed6750019 100644
--- a/src/DotNetLightning.Core/Utils/Extensions.fs
+++ b/src/DotNetLightning.Core/Utils/Extensions.fs
@@ -17,6 +17,15 @@ type System.UInt64 with
     member this.GetBytesBigEndian() =
         let d = BitConverter.GetBytes(this)
         if BitConverter.IsLittleEndian then (d |> Array.rev) else d
+
+    static member FromBytesBigEndian(bytes8: array<byte>): uint64 =
+        let bytes =
+            if BitConverter.IsLittleEndian then
+                Array.rev bytes8
+            else
+                bytes8
+        BitConverter.ToUInt64(bytes, 0)
+
     member x.ToVarInt() =
         if x < 0xfdUL then
             [|uint8 x|]
@@ -51,6 +60,15 @@ type System.UInt32 with
     member this.GetBytesBigEndian() =
         let d = BitConverter.GetBytes(this)
         if BitConverter.IsLittleEndian then (d |> Array.rev) else d
+
+    static member FromBytesBigEndian(bytes4: array<byte>): uint32 =
+        let bytes =
+            if BitConverter.IsLittleEndian then
+                Array.rev bytes4
+            else
+                bytes4
+        BitConverter.ToUInt32(bytes, 0)
+
 type System.UInt16 with
     member this.GetBytesBigEndian() =
         let d = BitConverter.GetBytes(this)
diff --git a/src/DotNetLightning.Core/Utils/NBitcoinExtensions.fs b/src/DotNetLightning.Core/Utils/NBitcoinExtensions.fs
index ac65d8c71..38d9e2793 100644
--- a/src/DotNetLightning.Core/Utils/NBitcoinExtensions.fs
+++ b/src/DotNetLightning.Core/Utils/NBitcoinExtensions.fs
@@ -1,7 +1,9 @@
 namespace DotNetLightning.Utils
 
+open System.IO
 open NBitcoin
 
+[<AutoOpen>]
 module NBitcoinExtensions =
     module FeeRate =
         let FeePerKWeight (feeRate: FeeRate) =
@@ -35,3 +37,10 @@ module NBitcoinExtensions =
 
         member this.GetTxId() =
             this.GetGlobalTransaction().GetTxId()
+
+    type Key with
+        static member BytesLength: int = 32
+
+    type PubKey with
+        static member BytesLength: int = 33
+
diff --git a/src/DotNetLightning.Core/Utils/Primitives.fs b/src/DotNetLightning.Core/Utils/Primitives.fs
index 218a2ebbe..49c612df2 100644
--- a/src/DotNetLightning.Core/Utils/Primitives.fs
+++ b/src/DotNetLightning.Core/Utils/Primitives.fs
@@ -4,9 +4,11 @@ open NBitcoin
 open NBitcoin.Crypto
 
 open System
+open System.IO
 open System.Net
 open System.Linq
 
+open DotNetLightning.Core.Utils.Extensions
 open ResultUtils
 
 [<AutoOpen>]
@@ -216,11 +218,6 @@ module Primitives =
         match x with
         | PaymentPreimage x -> x
         
-    type ChannelId = | ChannelId of uint256 with
-        member x.Value = let (ChannelId v) = x in v
-
-        static member Zero = uint256.Zero |> ChannelId
-
     type ConnectionId = ConnectionId of Guid
     [<CustomEquality;CustomComparison>]
     type PeerId = PeerId of EndPoint
@@ -276,11 +273,6 @@ module Primitives =
         override this.GetHashCode() =
             this.Value.GetHashCode()
 
-    [<StructuralComparison;StructuralEquality>]
-    type TxId = | TxId of uint256 with
-        member x.Value = let (TxId v) = x in v
-        static member Zero = uint256.Zero |> TxId
-        
     /// Small wrapper for NBitcoin's OutPoint type
     /// So that it supports comparison and equality constraints
     [<CustomComparison;CustomEquality>]
@@ -421,3 +413,157 @@ module Primitives =
         | SortedPlain = 0uy
         | ZLib = 1uy
     
+    [<StructAttribute>]
+    type CommitmentNumber(index: UInt48) =
+        member this.Index = index
+
+        override this.ToString() =
+            sprintf "%012x (#%i)" this.Index.UInt64 (UInt48.MaxValue - this.Index).UInt64
+
+        static member LastCommitment: CommitmentNumber =
+            CommitmentNumber UInt48.Zero
+
+        static member FirstCommitment: CommitmentNumber =
+            CommitmentNumber UInt48.MaxValue
+
+        static member ObscureFactor (isFunder: bool)
+                                    (localPaymentBasePoint: PubKey)
+                                    (remotePaymentBasePoint: PubKey)
+                                        : UInt48 =
+            let pubKeysHash =
+                if isFunder then
+                    Hashes.SHA256 <| Array.concat
+                        [| localPaymentBasePoint.ToBytes(); remotePaymentBasePoint.ToBytes() |]
+                else
+                    Hashes.SHA256 <| Array.concat
+                        [| remotePaymentBasePoint.ToBytes(); localPaymentBasePoint.ToBytes() |]
+            UInt48.FromBytesBigEndian pubKeysHash.[26..]
+
+        member this.PreviousCommitment: CommitmentNumber =
+            CommitmentNumber(this.Index + UInt48.One)
+
+        member this.NextCommitment: CommitmentNumber =
+            CommitmentNumber(this.Index - UInt48.One)
+
+        member this.Subsumes(other: CommitmentNumber): bool =
+            let trailingZeros = this.Index.TrailingZeros
+            (this.Index >>> trailingZeros) = (other.Index >>> trailingZeros)
+
+        member this.Obscure (isFunder: bool)
+                            (localPaymentBasePoint: PubKey)
+                            (remotePaymentBasePoint: PubKey)
+                                : ObscuredCommitmentNumber =
+            let obscureFactor =
+                CommitmentNumber.ObscureFactor
+                    isFunder
+                    localPaymentBasePoint
+                    remotePaymentBasePoint
+            ObscuredCommitmentNumber(this.Index ^^^ obscureFactor)
+
+    and [<StructAttribute>] ObscuredCommitmentNumber(obscuredIndex: UInt48) =
+        member this.ObscuredIndex: UInt48 = obscuredIndex
+
+        override this.ToString() =
+            sprintf "%012x" this.ObscuredIndex.UInt64
+
+        member this.LockTime: LockTime =
+            Array.concat [| [| 0x20uy |]; this.ObscuredIndex.GetBytesBigEndian().[3..] |]
+            |> System.UInt32.FromBytesBigEndian
+            |> LockTime
+
+        member this.Sequence: Sequence =
+            Array.concat [| [| 0x80uy |]; this.ObscuredIndex.GetBytesBigEndian().[..2] |]
+            |> System.UInt32.FromBytesBigEndian
+            |> Sequence
+
+        static member TryFromLockTimeAndSequence (lockTime: LockTime)
+                                                 (sequence: Sequence)
+                                                     : Option<ObscuredCommitmentNumber> =
+            let lockTimeBytes = lockTime.Value.GetBytesBigEndian()
+            let sequenceBytes = sequence.Value.GetBytesBigEndian()
+            if lockTimeBytes.[0] <> 0x20uy || sequenceBytes.[0] <> 0x80uy then
+                None
+            else
+                Array.concat [| sequenceBytes.[1..]; lockTimeBytes.[1..] |]
+                |> UInt48.FromBytesBigEndian
+                |> ObscuredCommitmentNumber
+                |> Some
+
+        member this.Unobscure (isFunder: bool)
+                              (localPaymentBasePoint: PubKey)
+                              (remotePaymentBasePoint: PubKey)
+                                  : CommitmentNumber =
+            let obscureFactor =
+                CommitmentNumber.ObscureFactor
+                    isFunder
+                    localPaymentBasePoint
+                    remotePaymentBasePoint
+            CommitmentNumber(this.ObscuredIndex ^^^ obscureFactor)
+
+    [<StructAttribute>]
+    type RevocationKey(key: Key) =
+        member this.Key = key
+
+        static member BytesLength: int = Key.BytesLength
+
+        static member FromBytes(bytes: array<byte>): RevocationKey =
+            RevocationKey <| Key bytes
+
+        member this.ToByteArray(): array<byte> =
+            this.Key.ToBytes()
+
+        member this.DeriveChild (thisCommitmentNumber: CommitmentNumber)
+                                (childCommitmentNumber: CommitmentNumber)
+                                    : Option<RevocationKey> =
+            if thisCommitmentNumber.Subsumes childCommitmentNumber then
+                let commonBits = thisCommitmentNumber.Index.TrailingZeros
+                let index = childCommitmentNumber.Index
+                let mutable secret = this.ToByteArray()
+                for bit in (commonBits - 1) .. -1 .. 0 do
+                    if (index >>> bit) &&& UInt48.One = UInt48.One then
+                        let byteIndex = bit / 8
+                        let bitIndex = bit % 8
+                        secret.[byteIndex] <- secret.[byteIndex] ^^^ (1uy <<< bitIndex)
+                        secret <- Hashes.SHA256 secret
+                Some <| RevocationKey(Key secret)
+            else
+                None
+
+        member this.CommitmentPubKey: CommitmentPubKey =
+            CommitmentPubKey this.Key.PubKey
+
+    and [<StructAttribute>] CommitmentPubKey(pubKey: PubKey) =
+        member this.PubKey = pubKey
+
+        static member BytesLength: int = PubKey.BytesLength
+
+        static member FromBytes(bytes: array<byte>): CommitmentPubKey =
+            CommitmentPubKey <| PubKey bytes
+
+        member this.ToByteArray(): array<byte> =
+            this.PubKey.ToBytes()
+
+
+    [<StructAttribute>]
+    type CommitmentSeed(masterRevocationKey: RevocationKey) =
+        new(key: Key) =
+            CommitmentSeed(RevocationKey key)
+
+        member this.MasterRevocationKey = masterRevocationKey
+
+        member this.DeriveRevocationKey (commitmentNumber: CommitmentNumber): RevocationKey =
+            let res =
+                this.MasterRevocationKey.DeriveChild
+                    CommitmentNumber.LastCommitment
+                    commitmentNumber
+            match res with
+            | Some revocationKey -> revocationKey
+            | None ->
+                failwith
+                    "The master revocation key should be able to derive the revocation key for \
+                    all commitments. This is a bug."
+
+        member this.DeriveCommitmentPubKey (commitmentNumber: CommitmentNumber): CommitmentPubKey =
+            let revocationKey = this.DeriveRevocationKey commitmentNumber
+            revocationKey.CommitmentPubKey
+
diff --git a/src/DotNetLightning.Core/Utils/TxId.fs b/src/DotNetLightning.Core/Utils/TxId.fs
new file mode 100644
index 000000000..ebe13c89b
--- /dev/null
+++ b/src/DotNetLightning.Core/Utils/TxId.fs
@@ -0,0 +1,9 @@
+namespace DotNetLightning.Utils
+
+open NBitcoin
+
+[<StructuralComparison;StructuralEquality>]
+type TxId = | TxId of uint256 with
+    member x.Value = let (TxId v) = x in v
+    static member Zero = uint256.Zero |> TxId
+
diff --git a/src/DotNetLightning.Core/Utils/UInt48.fs b/src/DotNetLightning.Core/Utils/UInt48.fs
new file mode 100644
index 000000000..661c5a06b
--- /dev/null
+++ b/src/DotNetLightning.Core/Utils/UInt48.fs
@@ -0,0 +1,86 @@
+namespace DotNetLightning.Utils
+
+open System
+open DotNetLightning.Core.Utils.Extensions
+
+[<Struct>]
+type UInt48 = {
+    UInt64: uint64
+} with
+    static member private BitMask: uint64 = 0x0000ffffffffffffUL
+
+    static member Zero: UInt48 = {
+        UInt64 = 0UL
+    }
+
+    static member One: UInt48 = {
+        UInt64 = 1UL
+    }
+
+    static member MaxValue: UInt48 = {
+        UInt64 = UInt48.BitMask
+    }
+
+    static member FromUInt64(x: uint64): UInt48 =
+        if x > UInt48.BitMask then
+            raise <| ArgumentOutOfRangeException("x", "value is out of range for a UInt48")
+        else
+            { UInt64 = x }
+
+    override this.ToString() =
+        this.UInt64.ToString()
+
+    member this.GetBytesBigEndian(): array<byte> =
+        this.UInt64.GetBytesBigEndian().[2..]
+
+    static member FromBytesBigEndian(bytes6: array<byte>) =
+        if bytes6.Length <> 6 then
+            failwith "UInt48.FromBytesBigEndian expects a 6 byte array"
+        else
+            let bytes8 = Array.concat [| [| 0uy; 0uy |]; bytes6 |]
+            { UInt64 = System.UInt64.FromBytesBigEndian bytes8 }
+
+    static member (+) (a: UInt48, b: UInt48): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 8) + (b.UInt64 <<< 8)) >>> 8
+    }
+    
+    static member (+) (a: UInt48, b: uint32): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 8) + ((uint64 b) <<< 8)) >>> 8
+    }
+
+    static member (-) (a: UInt48, b: UInt48): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 8) - (b.UInt64 <<< 8)) >>> 8
+    }
+    
+    static member (-) (a: UInt48, b: uint32): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 8) - ((uint64 b) <<< 8)) >>> 8
+    }
+
+    static member (*) (a: UInt48, b: UInt48): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 4) * (b.UInt64 <<< 4)) >>> 8
+    }
+
+    static member (*) (a: UInt48, b: uint32): UInt48 = {
+        UInt64 = ((a.UInt64 <<< 4) * ((uint64 b) <<< 4)) >>> 8
+    }
+
+    static member (&&&) (a: UInt48, b: UInt48): UInt48 = {
+        UInt64 = a.UInt64 &&& b.UInt64
+    }
+
+    static member (^^^) (a: UInt48, b: UInt48): UInt48 = {
+        UInt64 = a.UInt64 ^^^ b.UInt64
+    }
+
+    static member (>>>) (a: UInt48, b: int): UInt48 = {
+        UInt64 = (a.UInt64 >>> b) &&& UInt48.BitMask
+    }
+
+    member this.TrailingZeros: int =
+        let rec count (acc: int) (x: uint64): int =
+            if acc = 48 || x &&& 1UL = 1UL then
+                acc
+            else
+                count (acc + 1) (x >>> 1)
+        count 0 this.UInt64
+
diff --git a/src/DotNetLightning.Infrastructure/ActorManagers/ChannelManager.fs b/src/DotNetLightning.Infrastructure/ActorManagers/ChannelManager.fs
index cdc364f43..e5274da43 100644
--- a/src/DotNetLightning.Infrastructure/ActorManagers/ChannelManager.fs
+++ b/src/DotNetLightning.Infrastructure/ActorManagers/ChannelManager.fs
@@ -6,6 +6,7 @@ open System.Threading.Tasks
 open FSharp.Control.Tasks
 open FSharp.Control.Reactive
 
+open DotNetLightning.Utils
 open DotNetLightning.Utils.NBitcoinExtensions
 open DotNetLightning.Utils.Primitives
 open DotNetLightning.Serialize.Msgs
diff --git a/src/DotNetLightning.Infrastructure/Interfaces/IChainWatcher.fs b/src/DotNetLightning.Infrastructure/Interfaces/IChainWatcher.fs
index ad2b3d3b4..5877824f7 100644
--- a/src/DotNetLightning.Infrastructure/Interfaces/IChainWatcher.fs
+++ b/src/DotNetLightning.Infrastructure/Interfaces/IChainWatcher.fs
@@ -4,6 +4,7 @@ open System
 
 open NBitcoin
 
+open DotNetLightning.Utils
 open DotNetLightning.Utils.Primitives
 open DotNetLightning.Chain
 open DotNetLightning.Infrastructure
diff --git a/src/DotNetLightning.Infrastructure/Services/BitcoinRPCPollingChainWatcher.fs b/src/DotNetLightning.Infrastructure/Services/BitcoinRPCPollingChainWatcher.fs
index edb816e1a..8856479f6 100644
--- a/src/DotNetLightning.Infrastructure/Services/BitcoinRPCPollingChainWatcher.fs
+++ b/src/DotNetLightning.Infrastructure/Services/BitcoinRPCPollingChainWatcher.fs
@@ -8,6 +8,7 @@ open System.Threading.Tasks
 open DotNetLightning.Chain
 open DotNetLightning.Infrastructure
 open DotNetLightning.Infrastructure.Interfaces
+open DotNetLightning.Utils
 open DotNetLightning.Utils.Primitives
 open Microsoft.Extensions.Hosting
 open NBitcoin
diff --git a/src/DotNetLightning.Infrastructure/Services/BroadCaster.fs b/src/DotNetLightning.Infrastructure/Services/BroadCaster.fs
index 11e337105..bbda84540 100644
--- a/src/DotNetLightning.Infrastructure/Services/BroadCaster.fs
+++ b/src/DotNetLightning.Infrastructure/Services/BroadCaster.fs
@@ -1,5 +1,7 @@
 namespace DotNetLightning.Infrastructure
+
 open DotNetLightning.Chain
+open DotNetLightning.Utils
 open DotNetLightning.Utils.Primitives
 open NBitcoin.RPC
 
diff --git a/src/DotNetLightning.Infrastructure/Services/ChainWatcher.fs b/src/DotNetLightning.Infrastructure/Services/ChainWatcher.fs
index 236c5e1f9..3595d51bf 100644
--- a/src/DotNetLightning.Infrastructure/Services/ChainWatcher.fs
+++ b/src/DotNetLightning.Infrastructure/Services/ChainWatcher.fs
@@ -2,6 +2,7 @@ namespace DotNetLightning.Infrastructure.Services
 
 open System
 open NBitcoin
+open DotNetLightning.Utils
 open DotNetLightning.Utils.Primitives
 
 /// Utility for tracking registered txn/outpoints and checking for matches
diff --git a/tests/DotNetLightning.Core.Tests/DotNetLightning.Core.Tests.fsproj b/tests/DotNetLightning.Core.Tests/DotNetLightning.Core.Tests.fsproj
index 221c117e2..e414664d1 100644
--- a/tests/DotNetLightning.Core.Tests/DotNetLightning.Core.Tests.fsproj
+++ b/tests/DotNetLightning.Core.Tests/DotNetLightning.Core.Tests.fsproj
@@ -22,6 +22,7 @@
     <Compile Include="SphinxTests.fs" />
     <Compile Include="GeneratorsTests.fs" />
     <Compile Include="GraphTests.fs" />
+    <Compile Include="RevocationSetTests.fs" />
     <Compile Include="RouteCalculationTests.fs" />
     <Compile Include="TransactionBolt3TestVectorTests.fs" />
     <Compile Include="ClaimReceivedHTLCTests.fs" />
diff --git a/tests/DotNetLightning.Core.Tests/Generators/Msgs.fs b/tests/DotNetLightning.Core.Tests/Generators/Msgs.fs
index 29cf2f2a5..8a48fcdd1 100644
--- a/tests/DotNetLightning.Core.Tests/Generators/Msgs.fs
+++ b/tests/DotNetLightning.Core.Tests/Generators/Msgs.fs
@@ -96,7 +96,7 @@ let openChannelGen =
         <*> pubKeyGen
         <*> pubKeyGen
         <*> pubKeyGen
-        <*> pubKeyGen
+        <*> commitmentPubKeyGen
         <*> Arb.generate<uint8>
         <*> (Gen.optionOf pushScriptGen)
 
@@ -134,7 +134,7 @@ let acceptChannelGen =
         <*> pubKeyGen
         <*> pubKeyGen
         <*> pubKeyGen
-        <*> pubKeyGen
+        <*> commitmentPubKeyGen
         <*> (Gen.optionOf pushScriptGen)
 
 let fundingCreatedGen =
@@ -163,7 +163,7 @@ let fundingSignedGen = gen {
 
 let fundingLockedGen = gen {
     let! c = ChannelId <!> uint256Gen
-    let! pk = pubKeyGen
+    let! pk = commitmentPubKeyGen
     return {ChannelId = c; NextPerCommitmentPoint = pk}
 }
 
@@ -251,11 +251,11 @@ let commitmentSignedGen = gen {
 
 let revokeAndACKGen = gen {
     let! c = ChannelId <!> uint256Gen
-    let! paymentPreimage = PaymentPreimage.Create <!> bytesOfNGen PaymentPreimage.LENGTH
-    let! pk = pubKeyGen 
+    let! revocationKey = revocationKeyGen
+    let! pk = commitmentPubKeyGen 
     return {
         ChannelId = c
-        PerCommitmentSecret = paymentPreimage
+        PerCommitmentSecret = revocationKey
         NextPerCommitmentPoint = pk
     }
 }
@@ -269,10 +269,10 @@ let updateFeeGen = gen {
 }
 
 let private dataLossProtectGen = gen {
-    let! paymentPreimage = PaymentPreimage.Create <!> bytesOfNGen PaymentPreimage.LENGTH
-    let! pk = pubKeyGen
+    let! revocationKey = revocationKeyGen
+    let! pk = commitmentPubKeyGen
     return {
-        YourLastPerCommitmentSecret = paymentPreimage
+        YourLastPerCommitmentSecret = revocationKey
         MyCurrentPerCommitmentPoint = pk
     }
 }
diff --git a/tests/DotNetLightning.Core.Tests/Generators/Primitives.fs b/tests/DotNetLightning.Core.Tests/Generators/Primitives.fs
index 6032518d8..4d26c7701 100644
--- a/tests/DotNetLightning.Core.Tests/Generators/Primitives.fs
+++ b/tests/DotNetLightning.Core.Tests/Generators/Primitives.fs
@@ -17,7 +17,22 @@ let shortChannelIdsGen = Arb.generate<uint64> |> Gen.map(ShortChannelId.FromUInt
 // crypto stuffs
 
 let keyGen = Gen.fresh (fun () -> Key())
-let pubKeyGen = keyGen |> Gen.map(fun k -> k.PubKey)
+
+let pubKeyGen = gen {
+    let! key = keyGen
+    return key.PubKey
+}
+
+let revocationKeyGen = gen {
+    let! key = keyGen
+    return RevocationKey key
+}
+
+let commitmentPubKeyGen = gen {
+    let! pubKey = pubKeyGen
+    return CommitmentPubKey pubKey
+}
+
 let signatureGen: Gen<LNECDSASignature> = gen {
     let! h = uint256Gen
     let! k = keyGen
@@ -29,4 +44,4 @@ let signatureGen: Gen<LNECDSASignature> = gen {
 let pushOnlyOpcodeGen = bytesOfNGen(4) |> Gen.map(Op.GetPushOp)
 let pushOnlyOpcodesGen = Gen.listOf pushOnlyOpcodeGen
 
-let pushScriptGen = Gen.nonEmptyListOf pushOnlyOpcodeGen |> Gen.map(fun ops -> Script(ops))
\ No newline at end of file
+let pushScriptGen = Gen.nonEmptyListOf pushOnlyOpcodeGen |> Gen.map(fun ops -> Script(ops))
diff --git a/tests/DotNetLightning.Core.Tests/KeyRepositoryTests.fs b/tests/DotNetLightning.Core.Tests/KeyRepositoryTests.fs
index 452856086..6f8c19722 100644
--- a/tests/DotNetLightning.Core.Tests/KeyRepositoryTests.fs
+++ b/tests/DotNetLightning.Core.Tests/KeyRepositoryTests.fs
@@ -98,7 +98,7 @@ let tests =
                              ToLocal = LNMoney.MilliSatoshis(6988000000L); ToRemote =  3000000000L |> LNMoney.MilliSatoshis}
             let commitTx =
                 Transactions.makeCommitTx fundingScriptCoin
-                                          0UL
+                                          CommitmentNumber.FirstCommitment
                                           (localPubKeys.PaymentBasePubKey)
                                           (remotePubKeys.PaymentBasePubKey)
                                           (true)
@@ -120,7 +120,7 @@ let tests =
             let remoteDelay = 160us |> BlockHeightOffset16
             let remoteCommitTx =
                 Transactions.makeCommitTx fundingScriptCoin
-                                          0UL
+                                          CommitmentNumber.FirstCommitment
                                           remotePubKeys.PaymentBasePubKey
                                           localPubKeys.PaymentBasePubKey
                                           false
diff --git a/tests/DotNetLightning.Core.Tests/RevocationSetTests.fs b/tests/DotNetLightning.Core.Tests/RevocationSetTests.fs
new file mode 100644
index 000000000..a0c74f845
--- /dev/null
+++ b/tests/DotNetLightning.Core.Tests/RevocationSetTests.fs
@@ -0,0 +1,276 @@
+module RevocationSetTests
+
+open NBitcoin
+open Expecto
+open ResultUtils
+open DotNetLightning.Utils
+open DotNetLightning.Crypto
+
+[<Tests>]
+let tests =
+    let insert (commitmentNumber: uint64)
+               (key: string)
+               (revocationSet: RevocationSet)
+                   : Result<RevocationSet, InsertRevocationKeyError> =
+        let hex = NBitcoin.DataEncoders.HexEncoder()
+        let commitmentNumber = CommitmentNumber <| UInt48.FromUInt64 commitmentNumber
+        let key = key |> hex.DecodeData |> Key |> RevocationKey
+        revocationSet.InsertRevocationKey commitmentNumber key
+
+    let insertUnwrap (commitmentNumber: uint64)
+                     (key: string)
+                     (revocationSet: RevocationSet)
+                         : RevocationSet =
+        Result.deref <| insert commitmentNumber key revocationSet
+
+    testList "Revocation tests" [
+        testCase "insert secret correct sequence" <| fun _ ->
+            let _revocationSet: RevocationSet =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insertUnwrap
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+                |> insertUnwrap
+                    281474976710651UL
+                    "c65716add7aa98ba7acb236352d665cab17345fe45b55fb879ff80e6bd0c41dd"
+                |> insertUnwrap
+                    281474976710650UL
+                    "969660042a28f32d9be17344e09374b379962d03db1574df5a8a5a47e19ce3f2"
+                |> insertUnwrap
+                    281474976710649UL
+                    "a5a64476122ca0925fb344bdc1854c1c0a59fc614298e50a33e331980a220f32"
+                |> insertUnwrap
+                    281474976710648UL
+                    "05cde6323d949933f7f7b78776bcc1ea6d9b31447732e3802e1f7ac44b650e17"
+            ()
+
+        testCase "insert secret 1 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "02a40c85b6f28da08dfdbe0926c53fab2de6d28c10301f8f7c4073d5e42e3148"
+                |> insert
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710655UL && current.Index.UInt64 = 281474976710654UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 2 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "02a40c85b6f28da08dfdbe0926c53fab2de6d28c10301f8f7c4073d5e42e3148"
+                |> insertUnwrap
+                    281474976710654UL
+                    "dddc3a8d14fddf2b68fa8c7fbad2748274937479dd0f8930d5ebb4ab6bd866a3"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insert
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710654UL && current.Index.UInt64 = 281474976710652UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 3 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "c51a18b13e8527e579ec56365482c62f180b7d5760b46e9477dae59e87ed423a"
+                |> insert
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710653UL && current.Index.UInt64 = 281474976710652UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+                
+        testCase "insert secret 4 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "02a40c85b6f28da08dfdbe0926c53fab2de6d28c10301f8f7c4073d5e42e3148"
+                |> insertUnwrap
+                    281474976710654UL
+                    "dddc3a8d14fddf2b68fa8c7fbad2748274937479dd0f8930d5ebb4ab6bd866a3"
+                |> insertUnwrap
+                    281474976710653UL
+                    "c51a18b13e8527e579ec56365482c62f180b7d5760b46e9477dae59e87ed423a"
+                |> insertUnwrap
+                    281474976710652UL
+                    "ba65d7b0ef55a3ba300d4e87af29868f394f8f138d78a7011669c79b37b936f4"
+                |> insertUnwrap
+                    281474976710651UL
+                    "c65716add7aa98ba7acb236352d665cab17345fe45b55fb879ff80e6bd0c41dd"
+                |> insertUnwrap
+                    281474976710650UL
+                    "969660042a28f32d9be17344e09374b379962d03db1574df5a8a5a47e19ce3f2"
+                |> insertUnwrap
+                    281474976710649UL
+                    "a5a64476122ca0925fb344bdc1854c1c0a59fc614298e50a33e331980a220f32"
+                |> insert
+                    281474976710648UL
+                    "05cde6323d949933f7f7b78776bcc1ea6d9b31447732e3802e1f7ac44b650e17"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when (
+                        previous.Index.UInt64 = 281474976710654UL ||
+                        previous.Index.UInt64 = 281474976710653UL ||
+                        previous.Index.UInt64 = 281474976710652UL
+                    ) && current.Index.UInt64 = 281474976710648UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 5 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insertUnwrap
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+                |> insertUnwrap
+                    281474976710651UL
+                    "631373ad5f9ef654bb3dade742d09504c567edd24320d2fcd68e3cc47e2ff6a6"
+                |> insert
+                    281474976710650UL
+                    "969660042a28f32d9be17344e09374b379962d03db1574df5a8a5a47e19ce3f2"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710651UL && current.Index.UInt64 = 281474976710650UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 6 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insertUnwrap
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+                |> insertUnwrap
+                    281474976710651UL
+                    "631373ad5f9ef654bb3dade742d09504c567edd24320d2fcd68e3cc47e2ff6a6"
+                |> insertUnwrap
+                    281474976710650UL
+                    "b7e76a83668bde38b373970155c868a653304308f9896692f904a23731224bb1"
+                |> insertUnwrap
+                    281474976710649UL
+                    "a5a64476122ca0925fb344bdc1854c1c0a59fc614298e50a33e331980a220f32"
+                |> insert
+                    281474976710648UL
+                    "05cde6323d949933f7f7b78776bcc1ea6d9b31447732e3802e1f7ac44b650e17"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710650UL && current.Index.UInt64 = 281474976710648UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 7 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insertUnwrap
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+                |> insertUnwrap
+                    281474976710651UL
+                    "c65716add7aa98ba7acb236352d665cab17345fe45b55fb879ff80e6bd0c41dd"
+                |> insertUnwrap
+                    281474976710650UL
+                    "969660042a28f32d9be17344e09374b379962d03db1574df5a8a5a47e19ce3f2"
+                |> insertUnwrap
+                    281474976710649UL
+                    "e7971de736e01da8ed58b94c2fc216cb1dca9e326f3a96e7194fe8ea8af6c0a3"
+                |> insert
+                    281474976710648UL
+                    "05cde6323d949933f7f7b78776bcc1ea6d9b31447732e3802e1f7ac44b650e17"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710649UL && current.Index.UInt64 = 281474976710648UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+
+        testCase "insert secret 8 incorrect" <| fun _ ->
+            let res =
+                RevocationSet()
+                |> insertUnwrap
+                    281474976710655UL
+                    "7cc854b54e3e0dcdb010d7a3fee464a9687be6e8db3be6854c475621e007a5dc"
+                |> insertUnwrap
+                    281474976710654UL
+                    "c7518c8ae4660ed02894df8976fa1a3659c1a8b4b5bec0c4b872abeba4cb8964"
+                |> insertUnwrap
+                    281474976710653UL
+                    "2273e227a5b7449b6e70f1fb4652864038b1cbf9cd7c043a7d6456b7fc275ad8"
+                |> insertUnwrap
+                    281474976710652UL
+                    "27cddaa5624534cb6cb9d7da077cf2b22ab21e9b506fd4998a51d54502e99116"
+                |> insertUnwrap
+                    281474976710651UL
+                    "c65716add7aa98ba7acb236352d665cab17345fe45b55fb879ff80e6bd0c41dd"
+                |> insertUnwrap
+                    281474976710650UL
+                    "969660042a28f32d9be17344e09374b379962d03db1574df5a8a5a47e19ce3f2"
+                |> insertUnwrap
+                    281474976710649UL
+                    "a5a64476122ca0925fb344bdc1854c1c0a59fc614298e50a33e331980a220f32"
+                |> insert
+                    281474976710648UL
+                    "a7efbc61aac46d34f77778bac22c8a20c6a46ca460addc49009bda875ec88fa4"
+            match res with
+            | Error(KeyMismatch(previous, current))
+                when previous.Index.UInt64 = 281474976710649UL && current.Index.UInt64 = 281474976710648UL
+                -> ()
+            | _ -> failwith <| sprintf "unexpected result: %A" res
+    ]
+
diff --git a/tests/DotNetLightning.Core.Tests/Serialization.fs b/tests/DotNetLightning.Core.Tests/Serialization.fs
index 6e2d4216e..a84d3f0ed 100644
--- a/tests/DotNetLightning.Core.Tests/Serialization.fs
+++ b/tests/DotNetLightning.Core.Tests/Serialization.fs
@@ -80,10 +80,12 @@ module SerializationTest =
                     ChannelId = ChannelId(uint256([|4; 0; 0; 0; 0; 0; 0; 0; 5; 0; 0; 0; 0; 0; 0; 0; 6; 0; 0; 0; 0; 0; 0; 0; 7; 0; 0; 0; 0; 0; 0; 0 |] |> Array.map(uint8)))
                     NextLocalCommitmentNumber = 3UL
                     NextRemoteCommitmentNumber = 4UL
-                    DataLossProtect = OptionalField.Some({
-                                          YourLastPerCommitmentSecret = PaymentPreimage.Create([|for _ in 0..(PaymentPreimage.LENGTH - 1) -> 9uy|])
-                                          MyCurrentPerCommitmentPoint = pubkey1
-                                      })
+                    DataLossProtect = OptionalField.Some <| {
+                        YourLastPerCommitmentSecret = 
+                            RevocationKey.FromBytes
+                                [| for _ in 0..(RevocationKey.BytesLength - 1) -> 9uy |]
+                        MyCurrentPerCommitmentPoint = CommitmentPubKey pubkey1
+                    }
                 }
                 let expected = [|4; 0; 0; 0; 0; 0; 0; 0; 5; 0; 0; 0; 0; 0; 0; 0; 6; 0; 0; 0; 0; 0; 0; 0; 7; 0; 0; 0; 0; 0; 0; 0; 0; 0; 0; 0; 0; 0; 0; 3; 0; 0; 0; 0; 0; 0; 0; 4; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 9; 3; 27; 132; 197; 86; 123; 18; 100; 64; 153; 93; 62; 213; 170; 186; 5; 101; 215; 30; 24; 52; 96; 72; 25; 255; 156; 23; 245; 233; 213; 221; 7; 143 |] |> Array.map (byte)
                 Expect.equal (channelReestablishMsg.ToBytes()) expected ""
@@ -477,7 +479,7 @@ module SerializationTest =
                         PaymentBasepoint = pubkey3
                         DelayedPaymentBasepoint = pubkey4
                         HTLCBasepoint = pubkey5
-                        FirstPerCommitmentPoint = pubkey6
+                        FirstPerCommitmentPoint = CommitmentPubKey pubkey6
                         ChannelFlags = if randomBit then 1uy <<< 5 else 0uy
                         ShutdownScriptPubKey = if shutdown then Some (pubkey1.Hash.ScriptPubKey) else None
                     }
@@ -517,7 +519,7 @@ module SerializationTest =
                         PaymentBasepoint = pubkey3
                         DelayedPaymentBasepoint = pubkey4
                         HTLCBasepoint = pubkey5
-                        FirstPerCommitmentPoint = pubkey6
+                        FirstPerCommitmentPoint = CommitmentPubKey pubkey6
                         ShutdownScriptPubKey = if shutdown then Some(pubkey1.Hash.ScriptPubKey) else None
                     }
                     let actual = acceptChannelMsg.ToBytes()
@@ -553,7 +555,7 @@ module SerializationTest =
             testCase "funding_locked" <| fun _ ->
                 let fundingLockedMsg = {
                     FundingLockedMsg.ChannelId = ChannelId(uint256[| for _ in 0..31 -> 2uy|])
-                    NextPerCommitmentPoint = pubkey1
+                    NextPerCommitmentPoint = CommitmentPubKey pubkey1
                 }
                 let expected = hex.DecodeData("0202020202020202020202020202020202020202020202020202020202020202031b84c5567b126440995d3ed5aaba0565d71e1834604819ff9c17f5e9d5dd078f")
                 CheckArrayEqual (fundingLockedMsg.ToBytes()) expected
@@ -656,8 +658,10 @@ module SerializationTest =
             testCase "revoke_and_ack" <| fun _ ->
                 let revokeAndACKMsg = {
                     ChannelId = ChannelId(uint256([| for _ in 0..31 -> 2uy |]))
-                    PerCommitmentSecret = PaymentPreimage.Create([| for _ in 0..(PaymentPreimage.LENGTH - 1) -> 1uy |])
-                    NextPerCommitmentPoint = pubkey1
+                    PerCommitmentSecret =
+                        RevocationKey.FromBytes
+                            [| for _ in 0..(PaymentPreimage.LENGTH - 1) -> 1uy |]
+                    NextPerCommitmentPoint = CommitmentPubKey pubkey1
                 }
                 let expected = hex.DecodeData("02020202020202020202020202020202020202020202020202020202020202020101010101010101010101010101010101010101010101010101010101010101031b84c5567b126440995d3ed5aaba0565d71e1834604819ff9c17f5e9d5dd078f")
                 CheckArrayEqual (revokeAndACKMsg.ToBytes()) expected
diff --git a/tests/DotNetLightning.Core.Tests/TransactionBolt3TestVectorTests.fs b/tests/DotNetLightning.Core.Tests/TransactionBolt3TestVectorTests.fs
index cc5fdd2fa..56736e5df 100644
--- a/tests/DotNetLightning.Core.Tests/TransactionBolt3TestVectorTests.fs
+++ b/tests/DotNetLightning.Core.Tests/TransactionBolt3TestVectorTests.fs
@@ -31,7 +31,7 @@ let data1 = dataPath1 |> File.ReadAllText |> JsonDocument.Parse
 let localPerCommitmentPoint = PubKey("025f7117a78150fe2ef97db7cfc83bd57b2e2c0d0dd25eaf467a4a1c2a45ce1486")
 type LocalConfig = {
     Ctx: ISecp256k1
-    CommitTxNumber: uint64
+    CommitTxNumber: CommitmentNumber
     ToSelfDelay: BlockHeightOffset16
     DustLimit: Money
     PaymentBasePointSecret: Key
@@ -53,7 +53,7 @@ let getLocal(): LocalConfig =
     let delayedPaymentBasePointSecret = "3333333333333333333333333333333333333333333333333333333333333333" |> hex.DecodeData |> Key
     {
       Ctx = ctx
-      CommitTxNumber = 42UL
+      CommitTxNumber = CommitmentNumber(UInt48.FromUInt64 42UL)
       ToSelfDelay = 144us |> BlockHeightOffset16
       DustLimit = Money.Satoshis(546L)
       PaymentBasePointSecret = paymentBasePointSecret
@@ -71,7 +71,7 @@ let getLocal(): LocalConfig =
 
 type RemoteConfig = {
     Ctx: ISecp256k1
-    CommitTxNumber: uint64
+    CommitTxNumber: CommitmentNumber
     ToSelfDelay: BlockHeightOffset16
     DustLimit: Money
     PaymentBasePointSecret: Key
@@ -90,7 +90,7 @@ let getRemote(): RemoteConfig =
     let revocationBasePoint = revocationBasePointSecret.PubKey
     {
       Ctx = ctx
-      CommitTxNumber = 42UL
+      CommitTxNumber = CommitmentNumber(UInt48.FromUInt64 42UL)
       ToSelfDelay = 144us |> BlockHeightOffset16
       DustLimit = Money.Satoshis(546L)
       PaymentBasePointSecret = paymentBasePointSecret
@@ -122,8 +122,10 @@ let commitmentInputScriptCoin =
 
 log (sprintf "local payment basepoint is %A" local.PaymentBasePoint)
 log (sprintf "remote payment basepoint is %A" remote.PaymentBasePoint)
-let obscuredTxNumber = Transactions.obscuredCommitTxNumber 42UL true local.PaymentBasePoint remote.PaymentBasePoint
-Expect.equal obscuredTxNumber (0x2bb038521914UL ^^^ 42UL) ""
+let obscuredTxNumber =
+    let commitmentNumber = CommitmentNumber(UInt48.FromUInt64 42UL)
+    commitmentNumber.Obscure true local.PaymentBasePoint remote.PaymentBasePoint
+Expect.equal obscuredTxNumber (0x2bb038521914UL ^^^ 42UL |> UInt48.FromUInt64 |> ObscuredCommitmentNumber) ""
 
 sprintf "local_payment_basepoint: %A " local.PaymentBasePoint |> log
 sprintf "remote_payment_basepoint: %A" remote.PaymentBasePoint |> log
@@ -257,13 +259,14 @@ let run (spec: CommitmentSpec): (Transaction * _) =
                                           (sprintf "to-local amount %A \n to-local wscript (%A)" txOut.Value htlcScripts.[i])
                                           |> log
                                   | x -> failwithf "unexpected scriptPubKey length %A" x)
-    let actualCommitTxNum = Transactions.getCommitTxNumber
-                                (commitTx.Value.GetGlobalTransaction())
-                                (true)
-                                (local.PaymentBasePoint)
-                                (remote.PaymentBasePoint)
+    let actualCommitTxNumOpt =
+        Transactions.getCommitTxNumber
+            (commitTx.Value.GetGlobalTransaction())
+            (true)
+            (local.PaymentBasePoint)
+            (remote.PaymentBasePoint)
     let expectedCommitTxNumber = local.CommitTxNumber
-    Expect.equal (actualCommitTxNum) (expectedCommitTxNumber) ""
+    Expect.equal actualCommitTxNumOpt.Value (expectedCommitTxNumber) ""
     commitTx.Value.Finalize() |> ignore
     Expect.isTrue (commitTx.Value.CanExtractTransaction()) ""
     sprintf "output commit_tx %A" commitTx.Value |> log