feat(utxo-swap): add utxo burn output for non-kmd taker fee #2112
Conversation
* dev: docs(README): remove outdated information from the README (#2097) fix(sia): fix sia compilation after hd wallet PR merge (#2103) feat(hd_wallet): utxo and evm hd wallet and trezor (#1962) feat(sia): initial Sia integration (#2086) fix(BCH): deserialize BCH header that uses KAWPOW version correctly (#2099) fix(eth_tests): remove ETH_DEV_NODE from tests (#2101)
fix is_kmd in TestCoin
dimxy
changed the title
* dev: feat(tendermint): pubkey-only activation and unsigned tx (#2088) fix(tests): set txfee for some tbtc tests (#2116) fix(eth): remove my_address from sign_and_send_transaction_with_keypair (#2115) fix(utxo-swap): apply events occurred while taker down (#2114) refactor(memory): memory usage improvements (#2098) feat(app-dir): implement root application dir `.kdf` (#2102) fix tendermint fee calculation (#2106) update dockerfile (#2104)
fix zhtlc send and spend tests
add should_burn_dex_fee method to indicate which coin has burn output
* dev: fix(indexeddb): window usage in worker env (#2131) feat(tx-history): handle encoded transaction values (#2133) fix(core): tendermint withdraws on hd accounts (#2130) fix(core): improve validation rules for table names (#2123) fix(test): improve log wait condition to fix taker restart test (#2125)
…er test add timeout in wait for fee in qrc20 docker test
… docker test failed due to different dex fee values if trait default impl was used)
use same ovk for dex fee and burn outputs
add sanity check for dex_fee in calc_burn_amount_for_op_return
| #[cfg(feature = "for-tests")] | ||
| pub static mut TEST_BURN_ADDR_RAW_PUBKEY: Option<Vec<u8>> = None; | ||
|
|
There was a problem hiding this comment.
please can you move this down to where all const are declared? to avoid having declaration before import statements.
Q: TEST_BURN_ADDR_RAW_PUBKEY is read with run-docker-tests and for-tests features
why not initialize TEST_BURN_ADDR_RAW_PUBKEY with lazy_static once with docker-test and for-tests feature directives to avoid doing something like mutating/writing unsafe
There was a problem hiding this comment.
I need this var initialised only for couple of tests (testing cases when taker is also a burn pubkey), that's why I have to init it with a env var.
mm2src/coins/lp_coins.rs
Outdated
| MmCoinEnum::SlpToken(ref c) => c.as_ref().rpc_client.is_native(), | ||
| #[cfg(all(not(target_arch = "wasm32"), feature = "zhtlc"))] | ||
| // TODO: we do not have such feature = "zhtlc" in toml. Remove this cfg part? |
There was a problem hiding this comment.
Yes, I believe it can be removed.
#[cfg(not(target_arch = "wasm32"))] should be enough
| let activated_priv_key = if let Ok(activated_priv_key) = self.activation_policy.activated_key_or_err() { | ||
| activated_priv_key | ||
| } else { |
There was a problem hiding this comment.
Yeah, I had to change this because this code did not build when mockable attr was added.
| let priv_key = if let Some(priv_key) = priv_key { | ||
| priv_key | ||
| } else { |
There was a problem hiding this comment.
same, did not compile with mockable attr
| let account_prefix = self.account_prefix.clone(); | ||
| let base_account = match BaseAccount::decode(account.value.as_slice()) { | ||
| Ok(account) => account, | ||
| Err(err) if &self.account_prefix == "iaa" => { | ||
| Err(err) if account_prefix.as_str() == "iaa" => { |
There was a problem hiding this comment.
bcz did not compile with mocktopus added (seems some issues with code processing in their macro)
|
|
||
| pub const PROXY_REQUEST_EXPIRATION_SEC: i64 = 15; | ||
|
|
||
| lazy_static! { | ||
| pub static ref DEX_FEE_ADDR_RAW_PUBKEY: Vec<u8> = | ||
| hex::decode(DEX_FEE_ADDR_PUBKEY).expect("DEX_FEE_ADDR_PUBKEY is expected to be a hexadecimal string"); | ||
| pub static ref DEX_BURN_ADDR_RAW_PUBKEY: Vec<u8> = | ||
| hex::decode(DEX_BURN_ADDR_PUBKEY).expect("DEX_BURN_ADDR_PUBKEY is expected to be a hexadecimal string"); | ||
| } |
There was a problem hiding this comment.
I believe TEST_DEX_BURN_ADDR_RAW_PUBKEY belongs here...
There was a problem hiding this comment.
TEST_DEX_BURN_ADDR_RAW_PUBKEY was fixed to actual DEX_BURN_ADDR_PUBKEY
| use common::executor::Timer; | ||
| use common::log::{debug, error, info, warn}; | ||
| use common::{bits256, now_ms, now_sec, wait_until_sec, DEX_FEE_ADDR_RAW_PUBKEY}; | ||
| use common::{bits256, env_var_as_bool, now_ms, now_sec, wait_until_sec}; |
mm2src/mm2_main/src/lp_swap.rs
Outdated
| /// NegotiationDataMsg with version | ||
| #[derive(Clone, Debug, Eq, Deserialize, PartialEq, Serialize)] | ||
| pub struct NegotiationDataMsgVersion { | ||
| version: u16, | ||
| msg: NegotiationDataMsg, | ||
| } |
There was a problem hiding this comment.
| /// NegotiationDataMsg with version | |
| #[derive(Clone, Debug, Eq, Deserialize, PartialEq, Serialize)] | |
| pub struct NegotiationDataMsgVersion { | |
| version: u16, | |
| msg: NegotiationDataMsg, | |
| } | |
| /// NegotiationDataMsg with version | |
| #[derive(Clone, Debug, Eq, Deserialize, PartialEq, Serialize)] | |
| pub struct NegotiationDataMsgWithVersion { | |
| version: u16, | |
| msg: NegotiationDataMsg, | |
| } |
NegotiationDataMsgWithVersion is a better name
There was a problem hiding this comment.
removed version support for now
mm2src/mm2_main/src/lp_swap.rs
Outdated
| impl NegotiationDataMsgVersion { | ||
| pub fn version(&self) -> u16 { self.version } | ||
|
|
||
| pub fn started_at(&self) -> u64 { self.msg.started_at() } | ||
|
|
||
| pub fn payment_locktime(&self) -> u64 { self.msg.payment_locktime() } | ||
|
|
||
| pub fn secret_hash(&self) -> &[u8] { self.msg.secret_hash() } | ||
|
|
||
| pub fn maker_coin_htlc_pub(&self) -> &[u8] { self.msg.maker_coin_htlc_pub() } | ||
|
|
||
| pub fn taker_coin_htlc_pub(&self) -> &[u8] { self.msg.taker_coin_htlc_pub() } | ||
|
|
||
| pub fn maker_coin_swap_contract(&self) -> Option<&[u8]> { self.msg.maker_coin_swap_contract() } | ||
|
|
||
| pub fn taker_coin_swap_contract(&self) -> Option<&[u8]> { self.msg.taker_coin_swap_contract() } | ||
| } |
There was a problem hiding this comment.
these are redundancy, we should remove or is there a reason why we can't make msg and version pub?
There was a problem hiding this comment.
removed this version related code
| #[cfg(feature = "run-docker-tests")] | ||
| let version = if !env_var_as_bool("USE_OLD_VERSION_MAKER") { | ||
| LEGACY_SWAP_MSG_VERSION | ||
| } else { | ||
| 0 // use old version for tests | ||
| }; | ||
|
|
||
| #[cfg(not(feature = "run-docker-tests"))] | ||
| let version = LEGACY_SWAP_MSG_VERSION; |
There was a problem hiding this comment.
can this be extracted to a separate inline function and reuse in taker_swap too?
There was a problem hiding this comment.
removed this code (with version support removal in favour of versions in order matching)
mm2src/mm2_main/src/lp_swap.rs
Outdated
| /// NegotiationDataMsg with version | ||
| #[derive(Clone, Debug, Eq, Deserialize, PartialEq, Serialize)] | ||
| pub struct NegotiationDataMsgVersion { | ||
| version: u16, |
There was a problem hiding this comment.
As our discussion about versioning is inclining to put maker and taker version into orders, maybe we don't need this version field.
There was a problem hiding this comment.
As our discussion about versioning is inclining to put maker and taker version into orders, maybe we don't need this version field.
I believe if we currently don’t require such feature, it’s better to leave it out for now. We can always introduce it later when we are sure that negotiation version support is necessary. This helps keep things simpler and avoids adding unused fields/types.
There was a problem hiding this comment.
removed version from negotiation e4e8de0
| /// Swap message exchange version supported by remote taker peer. Optional because it is found at negotiation | ||
| pub taker_version: Option<u16>, |
There was a problem hiding this comment.
Why you didnt use skip_serializing_if annotation? Not sure its safe to not to use it, please re check it.
Also Its better to rename field to taker_negotiation_msg_v. It is clearer.
Same for LEGACY_SWAP_MSG_VERSION. Its about negotiation msg version, not all swap p2p messages. Should be LEGACY_SWAP_NEGOTIATION_MSG_V
There was a problem hiding this comment.
Its about negotiation msg version, not all swap p2p messages.
Not quite: it's about the swap message version supported by a party. I meant it for the whole message set used in the swap, not only negotiation
There was a problem hiding this comment.
Why you didnt use skip_serializing_if annotation?
skip_serializing_if does not matter for rmp (checked with a test sample).
There is also the same var in the MakerSwapData struct. Not sure it's worth adding skip_serializing_if there: IMO it's easier to analyse swap jsons if "taker_version": null present, don't you think?
There was a problem hiding this comment.
There was a problem hiding this comment.
Its about negotiation msg version, not all swap p2p messages.
Not quite: it's about the swap message version supported by a party. I meant it for the whole message set used in the swap, not only negotiation
I think then it doesnt make sense, p2p message versions (I mean all topic related messages) are handled in process_p2p_message. If you change p2p msg version it means user should be subscribed to another topic version
komodo-defi-framework/mm2src/mm2_main/src/lp_network.rs
Lines 144 to 168 in 897aa4d
You added version field in Negotiation msg of legacy swap topic, which belongs to SWAP_PREFIX.
But when we change all p2p messages version, it means we need to create a new topic, what we actually did for SWAP_V2_PREFIX
I dont get why we would need version inside the "swap" msg topic. to be able to version this specific topic?
There was a problem hiding this comment.
At first place, I needed anything like 'remote peer version' to activate features like 'eip1559 tx' or 'burn non-kmd output' (we need to know if the remote swap party has sufficient version to support such features)
There was a problem hiding this comment.
removed version from negotiation e4e8de0
mm2src/coins/utxo/utxo_common.rs
Outdated
| - tx_fee; | ||
| // taker also adds maker output as we can't use SIGHASH_SINGLE with two outputs, dex fee and burn, | ||
| // and both the maker and taker sign all outputs: | ||
| outputs.push(TransactionOutput { |
There was a problem hiding this comment.
i think then we should do the same for the standard non-burn case for simplicity.
im opening a discussion here but this could be done later in another PR ofc.
P.S.: and we don't have to use SIGHASH_ALL for NoFee case. We can actually do SIGHASH_NONE.
There was a problem hiding this comment.
I would agree that it's better to do all cases identically (standard will be eliminated eventually though).
Not sure about SIGHASH_NONE: this actually contradict the first idea - do all cases same way
mm2src/coins/lp_coins.rs
Outdated
| /// Calculates DEX fee with a threshold based on min tx amount of the taker coin. | ||
| /// preburn_account_active param indicates that swap nodes version supports burning dex fee for non kmd coins. | ||
| /// It could be None if dex fee is needed only to get total dex fee amount | ||
| /// taker_pubkey also may be optional if it is not known yet but we need total dex fee amount | ||
| pub fn dex_fee_from_taker_coin( | ||
| taker_coin: &dyn MmCoin, | ||
| maker_coin: &str, | ||
| trade_amount: &MmNumber, | ||
| taker_pubkey: Option<&[u8]>, | ||
| preburn_account_active: Option<bool>, | ||
| ) -> DexFee { | ||
| DexFee::new_from_taker_coin( | ||
| taker_coin.deref(), | ||
| maker_coin, | ||
| trade_amount, | ||
| taker_pubkey, | ||
| preburn_account_active, | ||
| ) | ||
| } |
There was a problem hiding this comment.
i see in eth we have fn should_burn_dex_fee(&self) -> bool { false } which is false i think because we don't maintain an eth burn account, no?
if so, the param preburn_account_active is confusing as it describes the same thing. i think it should be swap_supports_burning or something, as this is how it's used.
another thing: Option<bool> almost certainly could always be reduced to bool with defaulting the None case to either true or false. If the None case is needed here we can turn this Option<bool> into an enum instead.
There was a problem hiding this comment.
preburn_account_active is removed (it was meant to denote that version is high enough to activate the burn feature)
| println!("ZOMBIE_wallet.db will be synch'ed with the chain, this may take a while for the first time."); | ||
| println!("You may also run prepare_zombie_sapling_cache test to update ZOMBIE_wallet.db before running tests."); |
There was a problem hiding this comment.
let's use our logging system here
There was a problem hiding this comment.
well it's a hint for the user that this test may take some time (logs may be captured and not being watched atm)
It's meant to be read from console.
| let mut fee_output_valid = false; | ||
| let mut burn_output_valid = false; | ||
| for shielded_out in z_tx.shielded_outputs.iter() { | ||
| if let Some((note, address, memo)) = | ||
| try_sapling_output_recovery(self.consensus_params_ref(), block_height, &DEX_FEE_OVK, shielded_out) | ||
| if self | ||
| .validate_dex_fee_output( | ||
| shielded_out, | ||
| &DEX_FEE_OVK, | ||
| &self.z_fields.dex_fee_addr, | ||
| block_height, | ||
| fee_amount_sat, | ||
| &expected_memo, | ||
| ) | ||
| .map_err(|err| { | ||
| MmError::new(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Bad dex fee output: {}", | ||
| err | ||
| ))) | ||
| })? | ||
| { | ||
| if address != self.z_fields.dex_fee_addr { | ||
| let encoded = encode_payment_address(z_mainnet_constants::HRP_SAPLING_PAYMENT_ADDRESS, &address); | ||
| let expected = encode_payment_address( | ||
| z_mainnet_constants::HRP_SAPLING_PAYMENT_ADDRESS, | ||
| &self.z_fields.dex_fee_addr, | ||
| ); | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee was sent to the invalid address {}, expected {}", | ||
| encoded, expected | ||
| ))); | ||
| } | ||
|
|
||
| if note.value != amount_sat { | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee has invalid amount {}, expected {}", | ||
| note.value, amount_sat | ||
| ))); | ||
| } | ||
|
|
||
| if memo != expected_memo { | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee has invalid memo {:?}, expected {:?}", | ||
| memo, expected_memo | ||
| ))); | ||
| fee_output_valid = true; | ||
| } | ||
| if let Some(burn_amount_sat) = burn_amount_sat { | ||
| if self | ||
| .validate_dex_fee_output( | ||
| shielded_out, | ||
| &DEX_FEE_OVK, | ||
| &self.z_fields.dex_burn_addr, | ||
| block_height, | ||
| burn_amount_sat, | ||
| &expected_memo, | ||
| ) | ||
| .map_err(|err| { | ||
| MmError::new(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Bad burn output: {}", | ||
| err | ||
| ))) | ||
| })? | ||
| { | ||
| burn_output_valid = true; |
There was a problem hiding this comment.
are we doing this loop and true/false flags because we don't know which order the outputs are? like which is the dex fee and which is the burn?
There was a problem hiding this comment.
yes, I believe such code looks more universal than simply rely on the output order
mm2src/mm2_main/src/lp_network.rs
Outdated
| @@ -39,7 +39,8 @@ use mm2_metrics::{mm_label, mm_timing}; | |||
| use serde::de; | |||
| use std::net::ToSocketAddrs; | |||
|
|
|||
| use crate::{lp_healthcheck, lp_ordermatch, lp_stats, lp_swap}; | |||
| use crate::{lp_healthcheck, lp_ordermatch, lp_stats, | |||
| lp_swap::{self}}; | |||
There was a problem hiding this comment.
no need for self, lp_swap is enough
There was a problem hiding this comment.
fixed in latest commits
| /// Add refund fee to calculate maximum available balance for a swap (including possible refund) | ||
| pub(crate) const INCLUDE_REFUND_FEE: bool = true; | ||
|
|
||
| /// Do not add refund fee to calculate fee needed only to make a successful swap | ||
| pub(crate) const NO_REFUND_FEE: bool = false; |
There was a problem hiding this comment.
Q, when are each used and why?
There was a problem hiding this comment.
Both are part of same entity, meaning to include or not the refund fee into the return value.
Does it look confusing?
Idea was to use a named const instead of just true or false.
There was a problem hiding this comment.
nah, that's not what I meant.
I just ran out of time and decided to ask when each case is used instead of digging in the code 😂
I'm asking here when do we use the fee calcs with refund in mind and when do we use it without considering a possible refund. and why would we use each in such cases.
There was a problem hiding this comment.
nah, that's not what I meant.
I just ran out of time and decided to ask when each case is used instead of digging in the code 😂
I'm asking here when do we use the fee calcs with refund in mind and when do we use it without considering a possible refund. and why would we use each in such cases.
There was a problem hiding this comment.
Ah I see,
true is when we calc max amount avail for swap (with fees required for the worst case of refund)
false - when we show to user required fees (considering swap will be successful and we won't need refund)
| if self | ||
| .validate_dex_fee_output( | ||
| shielded_out, | ||
| &DEX_FEE_OVK, | ||
| &self.z_fields.dex_fee_addr, | ||
| block_height, | ||
| fee_amount_sat, | ||
| &expected_memo, | ||
| ) | ||
| .map_err(|err| { | ||
| MmError::new(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Bad dex fee output: {}", | ||
| err | ||
| ))) | ||
| })? | ||
| { | ||
| if address != self.z_fields.dex_fee_addr { | ||
| let encoded = encode_payment_address(z_mainnet_constants::HRP_SAPLING_PAYMENT_ADDRESS, &address); | ||
| let expected = encode_payment_address( | ||
| z_mainnet_constants::HRP_SAPLING_PAYMENT_ADDRESS, | ||
| &self.z_fields.dex_fee_addr, | ||
| ); | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee was sent to the invalid address {}, expected {}", | ||
| encoded, expected | ||
| ))); | ||
| } | ||
|
|
||
| if note.value != amount_sat { | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee has invalid amount {}, expected {}", | ||
| note.value, amount_sat | ||
| ))); | ||
| } | ||
|
|
||
| if memo != expected_memo { | ||
| return MmError::err(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Dex fee has invalid memo {:?}, expected {:?}", | ||
| memo, expected_memo | ||
| ))); | ||
| fee_output_valid = true; | ||
| } | ||
| if let Some(burn_amount_sat) = burn_amount_sat { | ||
| if self | ||
| .validate_dex_fee_output( | ||
| shielded_out, | ||
| &DEX_FEE_OVK, | ||
| &self.z_fields.dex_burn_addr, | ||
| block_height, | ||
| burn_amount_sat, | ||
| &expected_memo, | ||
| ) | ||
| .map_err(|err| { | ||
| MmError::new(ValidatePaymentError::WrongPaymentTx(format!( | ||
| "Bad burn output: {}", | ||
| err | ||
| ))) | ||
| })? | ||
| { | ||
| burn_output_valid = true; |
There was a problem hiding this comment.
I think if statement is not need just assign directly e.g
fee_output_valid = self
.validate_dex_fee_output(
shielded_out,
&DEX_FEE_OVK,
&self.z_fields.dex_fee_addr,
block_height,
fee_amount_sat,
&expected_memo,
)
.map_err(|err| {
MmError::new(ValidatePaymentError::WrongPaymentTx(format!(
"Bad dex fee output: {}",
err
)))
})?;same with burn_output_valid
There was a problem hiding this comment.
I re-worked validate_fee for z_coin: eliminated loop and used fixed 0 and 1 positions for dexfee and burn outputs (like in utxo)
There was a problem hiding this comment.
Sorry returned the loop back :-)
Forgot we can't assume zcoin outputs ordering - they are shuffled
@borngraced
| let fee_amount_sat = validate_fee_args.dex_fee.fee_amount_as_u64(self.utxo_arc.decimals)?; | ||
| let burn_amount_sat = validate_fee_args.dex_fee.burn_amount_as_u64(self.utxo_arc.decimals)?; | ||
| let expected_memo = MemoBytes::from_bytes(validate_fee_args.uuid).expect("Uuid length < 512"); |
There was a problem hiding this comment.
Can we check if z_tx.shielded_outputs.is_empty() and return early error before performing these operations.
There was a problem hiding this comment.
Do we really need this?
If there is no shielded_outputs or less than expected, we would have one of fee_output_valid or burn_output_valid false. Looks like an extra check for me
|
@dimxy pr started to have conflicts. pinging you just to be sure |
* dev: fix(hash-types): remove panic, enforce fixed-size arrays (#2279) fix(ARRR): store unconfirmed change output (#2276) feat(tendermint): staking/delegation (#2322) chore(deps): `timed-map` migration (#2247) fix(mem-leak): `running_swap` never shrinks (#2301) chore(dep-bump): libp2p (#2326) refactor(build script): rewrite the main build script (#2319)
|
Plz note: some zcoin tests (zombie_coin_send_dex_fee) fail until #2331 merged |
Adds a burn output sending 25% of the taker utxo DEX fee to a dedicated pre-burn address. Funds collected on the pre-burn address will be traded for KMD to burn them (thus additionally burning KMD supply).
This PR partially closes #2010
The requirements for this PR: #2269
In this PR:
NOTE: As mocktopus now is marked 'optional = true' in coins Cargo.toml and activated from the mm2_main crate by adding features = ["mocktopus"] in [dev-dependencies] section, you also need to mark your mockable code, called from other crates, this way:
#[cfg_attr(feature = "mocktopus", mockable)], otherwise mocks won't work (see samples in code)TODO: