Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check recovered sender address before including txs in the TransactionsByPriceAndNonce list #667

Merged
merged 2 commits into from
Apr 3, 2019
Merged

Check recovered sender address before including txs in the TransactionsByPriceAndNonce list #667

merged 2 commits into from
Apr 3, 2019

Conversation

jimthematrix
Copy link
Contributor

This fixes a panic error that can happen when externally signed EIP155 transactions are submitted before the EIP155 block according to the chain config.

The panic of the minter:

panic: runtime error: index out of range

goroutine 723 [running]:
github.com/ethereum/go-ethereum/core/types.NewTransactionsByPriceAndNonce(0x4e6a8e0, 0x57a41e8, 0xc42407ad80, 0x57a41e8)
	/Users/jimzhang/workspace/src/github.com/kaleido-io/quorum/build/_workspace/src/github.com/ethereum/go-ethereum/core/types/transaction.go:407 +0x823
github.com/ethereum/go-ethereum/raft.(*minter).getTransactions(0xc420404500, 0xc42407ad20)
	/Users/jimzhang/workspace/src/github.com/kaleido-io/quorum/build/_workspace/src/github.com/ethereum/go-ethereum/raft/minter.go:291 +0x1cf
github.com/ethereum/go-ethereum/raft.(*minter).mintNewBlock(0xc420404500)
	/Users/jimzhang/workspace/src/github.com/kaleido-io/quorum/build/_workspace/src/github.com/ethereum/go-ethereum/raft/minter.go:314 +0xad
github.com/ethereum/go-ethereum/raft.(*minter).mintingLoop.func1()
	/Users/jimzhang/workspace/src/github.com/kaleido-io/quorum/build/_workspace/src/github.com/ethereum/go-ethereum/raft/minter.go:234 +0x3c
created by github.com/ethereum/go-ethereum/raft.throttle.func1
	/Users/jimzhang/workspace/src/github.com/kaleido-io/quorum/build/_workspace/src/github.com/ethereum/go-ethereum/raft/minter.go:216 +0xc0

For RAFT there is a very good chance that Quorum chains may be set up either without EIP155 configuration or EIP155 block is set to a number higher than 1, such that an externally signed transactions with EIP155 signer can cause the chain to be broken forever. there's no recovery from this state as far as we are aware.

The fix is to check the returned error by Sender() method and exclude the offending transaction list from the TransactionsByPriceAndNonce list used by the minter. The tx will be stuck in the txpool but future transactions, non EIP155 txs on any block or EIP155 txs after the EIP155 blocks, will get minted properly

@jpmsam jpmsam requested a review from jbhurat March 29, 2019 18:18
@jbhurat
Copy link
Contributor

jbhurat commented Mar 29, 2019
edited
Loading

Hi @jimthematrix, I did some testing after applying the fix, and the changes look good when config.eip155Block is set in genesis json. However, when config.eip155Block is missing from genesis json, submitting externally eip155 signed transaction, the other nodes no longer panics, but all the subsequent transactions whether or not eip155 signed, go to pending queue on that node.

@jimthematrix
Copy link
Contributor Author

jimthematrix commented Apr 2, 2019
edited
Loading

@jbhurat thanks for the feedback, my understanding is that the panic should still happen on the minter node (raft leader) if EIP155 is not configured. the pending queue is most likely due to a failing tx from the previous tx (since an EIP155 signed tx can't pass pre-check validation on a non-EIP155 chain due to signature containing the chainId), meaning to recover you would have to send in a new tx with the same nonce and higher gas price.

@jbhurat
Copy link
Contributor

jbhurat commented Apr 2, 2019

When EIP155 configuration is missing I no longer see the panic on the minter node, instead if EIP155 signed transaction is submitted on minter, the transaction is lost. Subsequent non-EIP155 signed transaction work fine. On verifier nodes, EIP155 signed transactions and any subsequent non-EIP155 signed transaction stuck in pending queue. I am going to open a new issue on how to handle missing EIP155 configuration

@jpmsam
Copy link
Contributor

jpmsam commented Apr 2, 2019

@jimthematrix thanks for your PR!

my understanding is that the panic should still happen on the minter node (raft leader) if EIP155 is not configured

The leader node shouldn't panic regardless of the type of the transaction.

@jbhurat

However, when config.eip155Block is missing from genesis json, submitting externally eip155 signed transaction, the other nodes no longer panics, but all the subsequent transactions whether or not eip155 signed, go to pending queue on that node.

Can we add a validation so that the transaction fails and it isn't stuck in the pending queue on the originating node ?

@jbhurat jbhurat mentioned this pull request Apr 2, 2019
Closed
@jimthematrix
Copy link
Contributor Author

@jbhurat @jpmsam thanks for the details, I realized my comment could be misleading, I meant to say that without the fix the minter should still panic on an EIP155 signed tx submission, if EIP155 is not configured in the genesis block at all. with the fix that definitely should not happen any longer. sorry about the confusion.

thanks for identifying issue #672, I agree that should be a good enhancement

jimthematrix added a commit to kaleido-io/quorum that referenced this pull request Apr 3, 2019
@jimthematrix
backport Consensys#667
bf25b28
@jpmsam jpmsam merged commit a5021ac into Consensys:master Apr 3, 2019
vdamle added a commit to kaleido-io/quorum that referenced this pull request Apr 3, 2019
@vdamle
Merge pull request #20 from kaleido-io/eip155
c2e27b2 
backport Consensys#667
@vdamle vdamle deleted the raft-fix-master branch April 4, 2019 18:06
vdamle pushed a commit to kaleido-io/quorum that referenced this pull request May 14, 2019
@jpmsam
Merge pull request Consensys#667 from kaleido-io/raft-fix-master
e6d7619 
Check recovered sender address before including txs in the TransactionsByPriceAndNonce list
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jpmsam jpmsam jpmsam approved these changes

@jbhurat jbhurat jbhurat approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jimthematrix @jbhurat @jpmsam