fix(evm-swapv2): no mempool inclusion required for maker payment validation

[shamardy]

Problem

Taker-side validation failed when the maker broadcasted via private/MEV-protected relays (e.g., Polygon protect RPC), because the tx wasn’t visible on public RPCs. This caused false negatives and unnecessary refunds.

What this PR changes

Validate maker payment from the signed tx bytes (offline), without requiring mempool presence, while deferring on-chain visibility to the existing confirmation step.

Why this isn’t a complete solution

Offline checks don’t prove the maker actually broadcasted the tx. If the maker never submits the tx (and taker doesn’t rebroadcast it), the taker still waits until the maker-payment confirmation timeout before switching to the “immediate refund” path (refund via taker’s secret). This fixes the false‑negatives, but the drawback is that fast‑fail isn’t kept. The taker now may wait until the timeout if the maker never broadcasts.

Future Work

• If this approach is accepted, apply it to other swap steps as needed:
  • validate_taker_funding_impl: Only a brief visibility delay is needed to find the transaction, since there’s no confirmation step yet (we may need to add one). Note: there is no need for a fast-fail for this step as the maker’s payment hasn’t been broadcast.
• Add taker rebroadcast fallback after a short pre-wait if the maker’s tx isn’t visible
• Treat rebroadcast as success only if:
  • send_raw_transaction returns the expected tx hash, or
  • Error explicitly indicates “already known” / “already imported” / “known transaction”
• Do not treat “nonce too low” or “replacement underpriced” as success; instead:
  • Immediately query eth_getTransactionByHash and proceed only if the hash is visible (pending or included)

[dimxy]

Why not make a function similar to the validate_from_to_addresses fn to validate to and from?

Or, we could even reuse validate_from_to_addresses fn if we change it to accept SignedEthTx:
https://github.com/KomodoPlatform/komodo-defi-framework/compare/fix/eth-swapv2-offline-maker-payment-validation...dimxy:komodo-defi-framework:validate-from-reuse-suggestion?expand=1

[shamardy]

Thanks for the suggestion and the detailed code changes. Fixed here c13654b

[onur-ozkan]

LGTM

[shamardy]

Was planning to work on the todo in #2618 (comment) but since I already got an approval, I will do it in another PR.

[onur-ozkan]

Was planning to work on the todo in #2618 (comment) but since I already got an approval, I will do it in another PR.

I thought the PR was ready for merge as it's not in a draft mode.

[shamardy]

I thought the PR was ready for merge as it's not in a draft mode.

It's totally fine, I think it's better to keep it short :)

[mariocynicys]

but in validate_taker_funding_impl and validate_nft_maker_payment_v2_impl we still require querying the tx from rpc? wouldn't these tx broadcasts suffer from the same issue? (and we already wait for their confs? not sure)

[shamardy]

but in validate_taker_funding_impl and validate_nft_maker_payment_v2_impl we still require querying the tx from rpc? wouldn't these tx broadcasts suffer from the same issue? (and we already wait for their confs? not sure)

There is a todo in the opening comment about validate_taker_funding_impl and this #2618 (comment)

As for validate_nft_maker_payment_v2_impl, I was still thinking about it since there is no state machine implementation for NFTs yet, it's not needed but good to do it for future coverage (I think I will just leave a todo inside the function)

[dimxy]

LGTM.

Validate maker payment from the signed tx bytes (offline), without requiring mempool presence, while deferring on-chain visibility to the existing confirmation step.

Agree that we should not rely on tx presence in mempool, we need at least one confirmation