Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: make crosschain-call with invalid withdraw revert #3321

Merged
merged 14 commits into from
Jan 6, 2025

Conversation

lumtis
Copy link
Member

@lumtis lumtis commented Dec 20, 2024

Description

Solves #3308

If a crosschain call initiate an invalid withdraw (example dust amount for Bitcoin withdraw) makes the CCXT reverts

Solution

In HandleEVMCall where crosschain calls are handled, when ProcessLogs logs fails, we consider that the crosschain call reverts because the withdraw initiated in this call can't be processed, we therefore returns contractReverted == true so it enters the revert workflow.

Since in this case the deposit contract call was successful and there is an effective state transition in the EVM, we now use tmpCtx, we only commit it if the contract has a regular revert or the call is sucessful and ProcessLogs doesn't fail.

The E2E test checks that the BTC balance remains 0 after the calls, this means the EVM state transition has not been processed.

Summary by CodeRabbit

Release Notes

  • New Features

    • Introduced a new telemetry endpoint /systemtime in the application.
    • Added a crosschain-call feature to handle invalid withdraw reverts.
    • New simulation tests for custom zetachain modules and performance tests for Solana E2E.
  • Bug Fixes

    • Fixed issues with unsupported Solana transaction versions and inbound vote message validations.
    • Updated handling of pending nonces during transaction abortion.
  • Documentation

    • Updated changelog to reflect new features, tests, and fixes.
  • Tests

    • Added a new test for Bitcoin deposit and withdrawal operations involving dust amounts.

Copy link
Contributor

coderabbitai bot commented Dec 20, 2024

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

📝 Walkthrough
📝 Walkthrough
📝 Walkthrough
📝 Walkthrough

Walkthrough

This pull request introduces comprehensive updates across the ZetaChain ecosystem, focusing on cross-chain functionality, testing frameworks, and contract interactions. The changes span multiple components, including new telemetry endpoints, enhanced Bitcoin and Solana transaction handling, and the introduction of a new Withdrawer smart contract designed to manage cross-chain withdrawals with improved error handling and state management.

Changes

File Change Summary
changelog.md Updated with new features, tests, and fixes across various versions
cmd/zetae2e/local/local.go Added Bitcoin deposit test with dust name handling
e2e/contracts/withdrawer/* New Solidity contract and Go bindings for cross-chain withdrawals
e2e/e2etests/e2etests.go Added new Bitcoin deposit test constant
x/crosschain/keeper/evm_deposit.go Enhanced deposit handling with temporary context
x/crosschain/keeper/evm_hooks.go Improved log processing and error handling

Sequence Diagram

sequenceDiagram
    participant User
    participant Withdrawer
    participant ZetaChain
    participant SourceChain

    User->>Withdrawer: Initiate Withdrawal
    Withdrawer->>ZetaChain: onCrossChainCall
    ZetaChain->>SourceChain: Validate Withdrawal
    alt Withdrawal Valid
        SourceChain-->>ZetaChain: Approve Transaction
        ZetaChain-->>Withdrawer: Process Withdrawal
    else Withdrawal Invalid
        ZetaChain-->>Withdrawer: Abort Transaction
        Withdrawer-->>User: Revert Notification
    end
Loading

Possibly Related PRs

Suggested Labels

no-changelog, chain:bitcoin, chain:solana, SOLANA_TESTS, breaking:proto

Suggested Reviewers

  • fbac
  • skosito
  • kingpinXD
  • brewmaster012
  • swift1337
  • ws4charlie

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Generate unit testing code for this file.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@lumtis lumtis linked an issue Dec 20, 2024 that may be closed by this pull request
@lumtis lumtis changed the title refactor: make crosschain-call with invalid withdraw revert fix: make crosschain-call with invalid withdraw revert Dec 20, 2024
Copy link

codecov bot commented Dec 20, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 61.93%. Comparing base (80ca921) to head (3e0d25d).
Report is 1 commits behind head on develop.

Additional details and impacted files

Impacted file tree graph

@@           Coverage Diff            @@
##           develop    #3321   +/-   ##
========================================
  Coverage    61.92%   61.93%           
========================================
  Files          444      444           
  Lines        31449    31457    +8     
========================================
+ Hits         19476    19484    +8     
  Misses       11104    11104           
  Partials       869      869           
Files with missing lines Coverage Δ
x/crosschain/keeper/evm_deposit.go 87.70% <100.00%> (+0.86%) ⬆️
x/crosschain/keeper/evm_hooks.go 82.93% <100.00%> (ø)

@lumtis lumtis marked this pull request as ready for review December 20, 2024 15:32
@lumtis lumtis requested a review from a team as a code owner December 20, 2024 15:32
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🧹 Nitpick comments (11)
x/crosschain/keeper/evm_deposit.go (7)

103-105: Ensure consistent handling of temporary context.

Creating a temporary context using CacheContext is appropriate for rollback purposes, but ensure that any logs or events written during partial failures are properly accounted for. Consider adding structured error logs for better observability in production.


107-107: Add logging for deposit call details.

When calling ZRC20DepositAndCallContract, log relevant parameters (e.g., 'to', 'message', etc.) within this block. Detailed logs facilitate debugging in cross-chain flows.


123-123: Consider error classification.

When returning err here, ensure it is classified differently from revert-inducing errors. This helps with better error propagation and improved instrumentation for cross-chain debugging.


132-132: Clarify the meaning of InCCTXIndexKey.

Make sure this key is well-documented. If it is widely used across modules, consider extracting it as a constant in a shared package and providing descriptive commentary.


138-139: Validate logs prior to processing.

Before calling ProcessLogs, consider verifying the structure and type of each log to ensure robust error handling if logs have unexpected formats.


141-144: Refine revert handling.

While skipping commit() ensures no partial state is persisted, you might wish to emit an event or log the reason for the revert for better traceability and to facilitate postmortem analyses.


146-146: Broaden event metadata.

The event includes minimal attributes. Consider adding inbound/outbound chain details, block height, or user references for improved on-chain analytics.

e2e/contracts/withdrawer/Withdrawer.sol (1)

34-35: Avoid repeating approval logic.

Because both onCrossChainCall and onCall repeat the same approval logic, consider refactoring into a private helper method if you foresee more logic being added in the future.

e2e/e2etests/test_bitcoin_deposit_and_withdraw_with_dust.go (2)

17-17: Ensure robust coverage with additional test scenarios.

Testing a dust amount is beneficial, but consider adding scenarios with random dust-like values or boundary conditions (e.g., exactly 1000 satoshis) to ensure consistent handling.


50-51: Revisit error message matching.

Matching the exact string from crosschaintypes.ErrCannotProcessWithdrawal could become brittle if the error message changes. Consider matching on a stable error code or type instead.

changelog.md (1)

32-32: Consider enhancing the changelog entry description.

The current entry could be more descriptive to better reflect the changes implemented in PR #3321. Consider expanding it to:

-* [3321](https://github.com/zeta-chain/node/pull/3321) - make crosschain-call with invalid withdraw revert
+* [3321](https://github.com/zeta-chain/node/pull/3321) - fix crosschain-call behavior to properly revert when processing invalid withdrawals (e.g., Bitcoin dust amounts)

This provides more context about the specific scenario being addressed and the intended behavior.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between faf1f79 and fc3dd9b.

⛔ Files ignored due to path filters (1)
  • e2e/contracts/withdrawer/Withdrawer.bin is excluded by !**/*.bin
📒 Files selected for processing (13)
  • changelog.md (1 hunks)
  • cmd/zetae2e/local/local.go (1 hunks)
  • e2e/contracts/withdrawer/Withdrawer.abi (1 hunks)
  • e2e/contracts/withdrawer/Withdrawer.go (1 hunks)
  • e2e/contracts/withdrawer/Withdrawer.json (1 hunks)
  • e2e/contracts/withdrawer/Withdrawer.sol (1 hunks)
  • e2e/contracts/withdrawer/bindings.go (1 hunks)
  • e2e/e2etests/e2etests.go (2 hunks)
  • e2e/e2etests/test_bitcoin_deposit_and_withdraw_with_dust.go (1 hunks)
  • x/crosschain/keeper/evm_deposit.go (4 hunks)
  • x/crosschain/keeper/evm_deposit_test.go (11 hunks)
  • x/crosschain/keeper/evm_hooks.go (2 hunks)
  • x/crosschain/keeper/evm_hooks_test.go (6 hunks)
✅ Files skipped from review due to trivial changes (2)
  • e2e/contracts/withdrawer/bindings.go
  • e2e/contracts/withdrawer/Withdrawer.go
👮 Files not reviewed due to content moderation or server errors (2)
  • x/crosschain/keeper/evm_deposit_test.go
  • x/crosschain/keeper/evm_hooks_test.go
🧰 Additional context used
📓 Path-based instructions (7)
cmd/zetae2e/local/local.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

x/crosschain/keeper/evm_deposit_test.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

e2e/e2etests/test_bitcoin_deposit_and_withdraw_with_dust.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

x/crosschain/keeper/evm_deposit.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

x/crosschain/keeper/evm_hooks_test.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

e2e/e2etests/e2etests.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

x/crosschain/keeper/evm_hooks.go (1)

Pattern **/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

🔇 Additional comments (11)
x/crosschain/keeper/evm_deposit.go (3)

119-120: Validate necessity of committing on revert.

Currently, commit() is invoked during contract reverts to save logs. Confirm that partial and potentially invalid states aren't mistakenly being recorded in the keeper store. Consider storing only relevant event logs without finalizing other potentially problematic state changes.


158-159: Review commit logic ordering.

If multiple calls to the keeper occur before commit(), ensure that all temporary changes remain consistent. Test with concurrency or repeated calls to detect possible race conditions.


161-161: Validate final error handling path.

After the function returns, confirm that any leftover or uncommitted states do not cause partial side effects or leak into subsequent calls or transactions.

e2e/e2etests/test_bitcoin_deposit_and_withdraw_with_dust.go (2)

26-27: Confirm dust threshold across different chain configurations.

Different chain setups may apply different dust thresholds. Validate that 100 satoshis is relevant for all environments. Provide clarifying comments or constants for improved maintainability.


53-57: Add checks for partial withdrawals.

Currently, you verify zero BTC balance. Consider also ensuring no partial balances remain if a withdrawal partially succeeded. This helps confirm the revert logic is fully effective.

e2e/contracts/withdrawer/Withdrawer.abi (1)

1-116: Confirm ABI alignment with contract code.

The ABI definitions match the constructor and two functions in Withdrawer.sol. Ensure any future changes to the contract are mirrored here, or consider an automated ABI generation approach to avoid manual drift.

e2e/contracts/withdrawer/Withdrawer.json (1)

1-119: LGTM! Well-structured ABI definition.

The ABI definition follows best practices with:

  • Clear function signatures and parameter types
  • Appropriate state mutability modifiers
  • Well-structured Context type definition
  • Consistent naming conventions
x/crosschain/keeper/evm_hooks.go (2)

136-136: LGTM! Consistent naming convention.

The function call has been updated to use the consistent ZRC20 naming convention.


306-308: LGTM! Function name follows naming convention.

The function name has been updated to maintain consistency with the ZRC20 naming pattern across the codebase.

cmd/zetae2e/local/local.go (1)

306-306: LGTM! Enhanced test coverage for Bitcoin dust transactions.

The addition of TestBitcoinDepositAndWithdrawWithDustName to advanced Bitcoin deposit tests appropriately covers the edge case of handling dust amounts in Bitcoin transactions.

e2e/e2etests/e2etests.go (1)

590-591: LGTM: Well-structured test additions.

The new test definitions and description updates maintain consistency with the existing test structure and naming conventions.

Also applies to: 598-599, 602-607

e2e/contracts/withdrawer/Withdrawer.sol Show resolved Hide resolved
x/crosschain/keeper/evm_deposit.go Outdated Show resolved Hide resolved
Copy link
Contributor

@kingpinXD kingpinXD left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great catch , PR looks good to me

Copy link
Contributor

@ws4charlie ws4charlie left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@lumtis
Copy link
Member Author

lumtis commented Jan 6, 2025

Received a security review

@lumtis lumtis added this pull request to the merge queue Jan 6, 2025
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Jan 6, 2025
@lumtis lumtis added the CONSENSUS_BREAKING_ACK Acknowledge a consensus breaking change label Jan 6, 2025
@lumtis lumtis added this pull request to the merge queue Jan 6, 2025
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Jan 6, 2025
@lumtis lumtis enabled auto-merge January 6, 2025 09:05
@lumtis lumtis added this pull request to the merge queue Jan 6, 2025
Merged via the queue into develop with commit ef4c1d4 Jan 6, 2025
41 checks passed
@lumtis lumtis deleted the blocked-inbound-dust branch January 6, 2025 09:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
breaking:cli CONSENSUS_BREAKING_ACK Acknowledge a consensus breaking change
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Potentially missed observation from Polygon
4 participants