docs: adr-070 unordered transactions refactor #23974
Conversation
| // Manager contains the tx hash dictionary for duplicates checking, and expire | ||
| // them when block production progresses. | ||
| type Manager struct { | ||
| kvStore store.KVStoreService | ||
| } |
There was a problem hiding this comment.
What module do we want to have this in? All KV store keys need a module. x/auth seems the most logical, but we could also have a small dedicated x/auth/unordered module.
Also, I think we can just use collections.Set to deal with state here.
There was a problem hiding this comment.
What module do we want to have this in?
are there tradeoffs between doing one or the other?
Also, I think we can just use collections.Set to deal with state here.
i was toying around with this, but was having trouble figuring out how to iterate from nil to a partial value of <block_time/.
There was a problem hiding this comment.
x/auth means one less module to wire up in app.go, but maybe more tie in to x/auth long term. This is maybe a longer discussion. But for easy upgrades in 0.53, I would say x/auth and we expose a simple, well defined interface for it.
Collections isn't essential here I think, just thought it might be easier.
There was a problem hiding this comment.
i have a PoC where i've made unordered sequences managed directly by x/auth store/keeper. you can check it out here: #24010
i also switched to using collections after playing with the API more.
There was a problem hiding this comment.
This looks generally good, but as a practice for ADR I don't find it particularly useful to have this level of detail around code implementation (I realize the previous iteration had a lot of detail too). The more important thing IMHO is the conceptual flow, i.e. pseudo-code - what happens in each phase, what properties of security, performance, etc. does the code have
There was a problem hiding this comment.
makes sense - i did find it cumbersome going back and forth between this and the draft. throwing some simple python in here would be easier to deal with
Co-authored-by: Alex | Interchain Labs <[email protected]>
…smos/cosmos-sdk into technicallyty/new-unordered-adr
| * Jan 30, 2024: Include section on deterministic transaction encoding | ||
| - Dec 4, 2023: Initial Draft (@yihuang, @tac0turtle, @alexanderbez) | ||
| - Jan 30, 2024: Include section on deterministic transaction encoding | ||
| - Mar 12, 2025: Revise implementation to use Cosmos SDK KV Store and require unique timeouts per-address (@technicallyty) |
There was a problem hiding this comment.
Update date whenever we merge
|
|
||
| ## Status | ||
|
|
||
| ACCEPTED | ||
| Draft |
There was a problem hiding this comment.
Update to accpeted whenever we merge
There was a problem hiding this comment.
So if we're following PROCESS.md, this should probably be ACCEPTED Not Implemented
| and limit the size of the dictionary. | ||
| When an unordered transaction is included in a block, a concatenation of the `timeout_timestamp` and sender’s bech32 address | ||
| will be recorded to state (i.e. `542939323/cosmos1v1234567890AbcDeF`). In cases of multi-party signing, we will use a | ||
| comma-separated list of the addresses that signed the transaction (i.e. `5532231/cosmosv11,cosmosv12,cosmosv13`) |
There was a problem hiding this comment.
we should specify that this is sorted (and implement it as sorted)
There was a problem hiding this comment.
theoretically you could submit two Tx with the same timestamp with with A, B, C signers and B, A, C signers right?
These are effectively the same Tx but in the store (if not sorted) would be considered two separate
| return nil | ||
| ```go | ||
| func (am AppModule) PreBlock(ctx context.Context) (appmodule.ResponsePreBlock, error) { | ||
| err := am.accountKeeper.GetUnorderedTxManager().RemoveExpired(sdk.UnwrapSDKContext(ctx)) |
There was a problem hiding this comment.
we should have NPE protection on this for when users do not use this
There was a problem hiding this comment.
the account keeper currently always has this instantiated, so it wouldn't NPE
you can specify to enable the unordered ante in the ante options, but we'd need another option if we want to enable/disable constructing this field in the account keeper, replacing it with a no-op impl maybe.. might be awkward UX to specify this in two different places though. probably best to walk through this on a call
There was a problem hiding this comment.
Yeah I see your point - lets just be aware of it when we do code reviews for this. I think you're right about how it is awkward if users have to set in multiple places
There was a problem hiding this comment.
I think it's just simpler to add these methods directly to the account keeper expected interface. There's not much advantage to needed to get an unordered tx manager from the account keeper IMHO. Simpler just to have something like:
type AccountKeeper interface {
...
TryAddUnorderedNonce(context,Context, timestamp Timestamp, address []byte) error
CleanupUnorderedNonces(context.Context)
}
There was a problem hiding this comment.
Any thoughts here? Looks like this was marked as resolved
| safety, we should limit the range of `timeout_timestamp` to prevent very long expiration, | ||
| and limit the size of the dictionary. | ||
| When an unordered transaction is included in a block, a concatenation of the `timeout_timestamp` and sender’s bech32 address | ||
| will be recorded to state (i.e. `542939323/cosmos1v1234567890AbcDeF`). In cases of multi-party signing, we will use a sorted, |
There was a problem hiding this comment.
Why bech32 encoded? Shouldn't we just use the binary address bytes?
There was a problem hiding this comment.
i'll change it to bytes. the PoC used the pubkey.address.string() but i can just use bytes
There was a problem hiding this comment.
actually, this complicates the impl a bit, since i was using the concat of pubkey address strings. lmk what you think
There was a problem hiding this comment.
since the update to one entry per signer, i have changed it to just use the pubkey bytes.
There was a problem hiding this comment.
So we want to use the address, not the pubkey bytes which could depend on how the pubkey is serialized. As an alternative to the address that may be even better is just using the account number which is just a uint64
| return nil | ||
| ```go | ||
| func (am AppModule) PreBlock(ctx context.Context) (appmodule.ResponsePreBlock, error) { | ||
| err := am.accountKeeper.GetUnorderedTxManager().RemoveExpired(sdk.UnwrapSDKContext(ctx)) |
There was a problem hiding this comment.
I think it's just simpler to add these methods directly to the account keeper expected interface. There's not much advantage to needed to get an unordered tx manager from the account keeper IMHO. Simpler just to have something like:
type AccountKeeper interface {
...
TryAddUnorderedNonce(context,Context, timestamp Timestamp, address []byte) error
CleanupUnorderedNonces(context.Context)
}
| // Manager contains the tx hash dictionary for duplicates checking, and expire | ||
| // them when block production progresses. | ||
| type Manager struct { | ||
| kvStore store.KVStoreService | ||
| } |
There was a problem hiding this comment.
This looks generally good, but as a practice for ADR I don't find it particularly useful to have this level of detail around code implementation (I realize the previous iteration had a lot of detail too). The more important thing IMHO is the conceptual flow, i.e. pseudo-code - what happens in each phase, what properties of security, performance, etc. does the code have
|
…ad of separate manager struct
GOBIN=/home/runner/work/cosmos-sdk/cosmos-sdk/build go install golang.org/x/vuln/cmd/govulncheck@latest Vulnerability #1: GO-2025-3443 Your code is affected by 1 vulnerability from 1 module. |
| func (m *AccountKeeper) Contains(ctx sdk.Context, sender []byte, timestamp uint64) (bool, error) { | ||
| return m.unorderedSequences.Has(ctx, collections.Join(timestamp, sender)) | ||
| } | ||
|
|
||
| func (m *UnorderedTxManager) Add(ctx sdk.Context, sender []byte, timestamp uint64) error { | ||
| func (m *AccountKeeper) Add(ctx sdk.Context, sender []byte, timestamp uint64) error { | ||
| return m.unorderedSequences.Set(ctx, collections.Join(timestamp, sender)) | ||
| } | ||
|
|
||
| func (m *UnorderedTxManager) RemoveExpired(ctx sdk.Context) error { | ||
| func (m *AccountKeeper) RemoveExpired(ctx sdk.Context) error { |
There was a problem hiding this comment.
I would just suggest something a little more detailed than simply Contains, Add, etc. that mentions unordered
GOBIN=/home/runner/work/cosmos-sdk/cosmos-sdk/build go install golang.org/x/vuln/cmd/govulncheck@latest Vulnerability #1: GO-2025-3443 Your code is affected by 1 vulnerability from 1 module. |
Description
new way of doing unordered txs
Author Checklist
All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.
I have...
!in the type prefix if API or client breaking changeCHANGELOG.mdReviewers Checklist
All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.
Please see Pull Request Reviewer section in the contributing guide for more information on how to review a pull request.
I have...