wallet: Error with "Transaction too large" if the funded tx will end up being too large after signing #20536
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Our max weight check in CreateTransaction only worked if the transaction was fully signed. However if we are funding a transaction, it is possible that the tx weight will be too large for a standard tx. In that case, we should also fail. So we use the tx weight returned by CalculateMaximumSignedTxSize and check against the limit for those transactions.
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ConflictsReviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
This was referenced Dec 1, 2020
|
Concept ACK |
|
Concept ACK, thanks for adding a test. |
instagibbs
reviewed
Dec 24, 2020
| @@ -3068,7 +3068,8 @@ bool CWallet::CreateTransactionInternal( | |||
| tx = MakeTransactionRef(std::move(txNew)); | |||
|
|
|||
| // Limit size | |||
| if (GetTransactionWeight(*tx) > MAX_STANDARD_TX_WEIGHT) | |||
| if ((sign && GetTransactionWeight(*tx) > MAX_STANDARD_TX_WEIGHT) || | |||
| (!sign && tx_sizes.second > MAX_STANDARD_TX_WEIGHT)) | |||
There was a problem hiding this comment.
do we need both the checks because this could end up being -1?
There was a problem hiding this comment.
I have both checks here because the estimate is an overestimate, so I would prefer to use the accurate weight when possible, i.e. when the transaction is signed.
instagibbs
reviewed
Dec 24, 2020
instagibbs
reviewed
Dec 24, 2020
If BnB is used, the test will fail because the transaction is too large.
achow101
force-pushed
the
fundtx-error-large-tx
branch
from
3201572
to
48a0319
Compare
|
Seems strictly better, simple, plus test coverage. ACK 48a0319 |
This was referenced Feb 17, 2021
| @@ -1594,14 +1594,15 @@ bool CWallet::ImportScriptPubKeys(const std::string& label, const std::set<CScri | |||
| return true; | |||
| } | |||
|
|
|||
| int64_t CalculateMaximumSignedTxSize(const CTransaction &tx, const CWallet *wallet, bool use_max_sig) | |||
| // Returns pair of vsize and weight | |||
| std::pair<int64_t, int64_t> CalculateMaximumSignedTxSize(const CTransaction &tx, const CWallet *wallet, bool use_max_sig) | |||
There was a problem hiding this comment.
I have noticed that this codebase often uses unnamed fields in a specific order rather than named fields. Wouldn't it be advantageous to define transfer objects that have named fields to be more explicit in what is retrieved from response objects?
There was a problem hiding this comment.
For something like this, I feel like it is overkill to introduce a struct or class for these, especially since it is used in only one place.
| @@ -1610,13 +1611,16 @@ int64_t CalculateMaximumSignedTxSize(const CTransaction &tx, const CWallet *wall | |||
| } | |||
|
|
|||
| // txouts needs to be in the order of tx.vin | |||
| int64_t CalculateMaximumSignedTxSize(const CTransaction &tx, const CWallet *wallet, const std::vector<CTxOut>& txouts, bool use_max_sig) | |||
| std::pair<int64_t, int64_t> CalculateMaximumSignedTxSize(const CTransaction &tx, const CWallet *wallet, const std::vector<CTxOut>& txouts, bool use_max_sig) | |||
There was a problem hiding this comment.
I'd find it more intuitive if this were two separate methods to get vsize and weight rather than the unnamed pair of values.
There was a problem hiding this comment.
I did these as a single function because it's the same calculation.
sidhujag
pushed a commit
to syscoin/syscoin
that referenced
this pull request
Mar 8, 2021
…e funded tx will end up being too large after signing 48a0319 Add a test that selects too large if BnB is used (Andrew Chow) 3e69939 Fail if maximum weight is too large (Andrew Chow) 51e2cd3 Have CalculateMaximumSignedTxSize also compute tx weight (Andrew Chow) Pull request description: Currently the `Transaction too large` is calculated on the transaction that is returned from `CreateTransaction`. This does not make sense for when `CreateTransaction` is being used for `fundrawtransaction` as no signing occurs so the final returned transaction is missing signatures. Thus users may successfully fund a transaction but fail to broadcast it after it has been fully signed. So instead we should figure out whether the transaction we are funding will be too large after it is signed. We can do this by having `CalculateMaximumSignedTxSize` also return the transaction weight and then comparing that weight against the maximum weight. ACKs for top commit: instagibbs: ACK bitcoin@48a0319 meshcollider: utACK 48a0319 Xekyo: utACK with nits 48a0319 Tree-SHA512: 1700c60b07f67e2d5c591c5ccd131ac9f1861fab3def961c3c9c4b3281ec1063fe8e4f0f7f1038cac72692340856406bcee8fb45c8104d2ad34357a0ec878ac7
This was referenced Mar 10, 2021
maflcko
pushed a commit
that referenced
this pull request
Mar 16, 2021
…on_too_large d09120b test: give fundraw more time for test_transaction_too_large (Jon Atack) Pull request description: to hopefully fix timeouts from a new test added in 48a0319 of #20536 merged March 8, 2021 seen locally when running via the test runner ``` File "/home/jon/projects/bitcoin/bitcoin/test/functional/rpc_fundrawtransaction.py", line 927, in test_transaction_too_large raise JSONRPCException({ test_framework.authproxy.JSONRPCException: 'generatetoaddress' RPC took longer than 30.000000 seconds. Consider using larger timeout for calls that take longer to return. (-344) ``` and in the CI like https://bitcoinbuilds.org/index.php?ansilog=28537952-2c92-46f2-9871-8918e5ba2738.log#l2398 ``` File "/home/ubuntu/src/test/functional/rpc_fundrawtransaction.py", line 927, in test_transaction_too_large test_framework.authproxy.JSONRPCException: 'generatetoaddress' RPC took longer than 240.000000 seconds. Consider using larger timeout for calls that take longer to return. (-344) ``` Top commit has no ACKs. Tree-SHA512: f11c923439014fe12420f986c640fd301a26282eb41516957d73b9c751087cbae3d0e316f9ccb49bcb424f488540266f70d3f97948633e77c62bd7935df90452
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Currently the
Transaction too largeis calculated on the transaction that is returned fromCreateTransaction. This does not make sense for whenCreateTransactionis being used forfundrawtransactionas no signing occurs so the final returned transaction is missing signatures. Thus users may successfully fund a transaction but fail to broadcast it after it has been fully signed.So instead we should figure out whether the transaction we are funding will be too large after it is signed. We can do this by having
CalculateMaximumSignedTxSizealso return the transaction weight and then comparing that weight against the maximum weight.