Tx expiration
#1123
Tx expiration
#1123
Conversation
|
pls update wasm |
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
ffde19d to
9cfb5cf
Compare
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
9cfb5cf to
7545109
Compare
| @@ -129,6 +132,11 @@ pub enum ErrorCodes { | |||
| InvalidOrder = 4, | |||
| ExtraTxs = 5, | |||
| Undecryptable = 6, | |||
| ReplayTx = 7, | |||
There was a problem hiding this comment.
This is unfortunately not documented in main, but the idea of these numbers is that past a certain threshold, we reject the block. In this branch, those are error codes >=4. However, we can't reject an entire block if we get the InvalidDecryptedChainId error since we have to include all decrypted txs in order. So its number should be lowered below the critical threshold
There was a problem hiding this comment.
I think the same is also true of ExpiredDecryptedTx
| status: if tx_results.iter().any(|res| res.code > 3) { | ||
| ProposalStatus::Reject as i32 | ||
| } else { | ||
| status: if tx_results.iter().all(|res| { |
There was a problem hiding this comment.
Ah here. If the ordering of the errors is fixed, we just need to change the 3 to a 5 in the old code
There was a problem hiding this comment.
I think I'm missing something, what do you mean when you say "in the old code"?
There was a problem hiding this comment.
status: if tx_results.iter().any(|res| res.code > 3) {
ProposalStatus::Reject as i32
} else {
```
There was a problem hiding this comment.
Ah, I think I see what you mean. I've changed that code to use the enum variants because I was struggling to keep track of the error codes and thought that using the variants was more readable. Would you prefer to revert to using the codes instead?
There was a problem hiding this comment.
We rely on it heaving in eth-bridge-integration, so I thinks it's easier for you to make this change than us.
There was a problem hiding this comment.
We also document it a lot better and add helper functions, so it's not such a secret design choice anymore.
There was a problem hiding this comment.
Actually, in this PR I've also changed process_proposal to reject the block in more cases: in particular to reject a block even in case of an InvalidTx or InvalidSig which we were not doing before. Does this look ok to you? In theory, the block proposer should be able to verify these at block construction time. So in essence the threshold could stay at 3 like before if I reorder the variants correctly in the enum
| code: ErrorCodes::ExpiredDecryptedTx | ||
| .into(), | ||
| info: format!( | ||
| "Dercrypted tx expired at {:#?}, block time: {:#?}", |
There was a problem hiding this comment.
Oh god. What did fmt do here??
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
135f68c to
29d953d
Compare
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
29d953d to
283868c
Compare
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
283868c to
0e5e6f0
Compare
grarco
force-pushed
the
grarco/tx-lifetime
branch
from
0e5e6f0 to
76ad54b
Compare
* grarco/tx-lifetime: changelog: add #1123 [ci] wasm checksums update Misc adjustments Refactors `prepare_proposal` tx validation Refactors block time retrieval Clippy + fmt Tx expiration check in `prepare_proposal`. Unit test Improves tx expiration checks. Adds unit tests Tx expiration validation Updates client for tx expiration Adds `expiration` field to `Tx` Wrapper `epoch` in replay protection specs
Closes #1009
Based on #1106
Adds an optional
expirationfield to structTxto prevent transactions from being applied indefinitely.expirationfield to structTxmempool_validatecheck against last committed block timeprocess_proposalcheck against the proposed block time or, if missing, the last committed block timeprepare_proposalcheck against the proposed block time (if missing accept txs as assumed to have been checked bymempool_validate)expirationoptional arg