RPC: Fix fund transaction crash when at 0-value, 0-fee #27271
Conversation
|
The following sections might be updated with supplementary metadata relevant to reviewers and maintainers. ReviewsSee the guideline for information on the review process.
If your review is incorrectly listed, please react with 👎 to this comment and the bot will ignore it on the next update. |
There was a problem hiding this comment.
ACK d7cc503
Left a small grammar nit for the comment. Also, it would be really nice to have the src/wallet/spend.cpp change in one commit and the functional test change in a separate commit. Makes it much easier to verify that the functional test actually catches the bug, although not really a big deal here since the change is so small.
To test, I deleted your change to src/wallet/spend.cpp and verified that the functional test does fail.
| // This can only happen if feerate is 0, and requested destinations are value of 0 (e.g. OP_RETURN) | ||
| // and no pre-selected inputs. This will result in 0-input transaction, which is consensus-invalid anyways |
There was a problem hiding this comment.
grammar nit:
| // This can only happen if feerate is 0, and requested destinations are value of 0 (e.g. OP_RETURN) | |
| // and no pre-selected inputs. This will result in 0-input transaction, which is consensus-invalid anyways | |
| // This can only happen if the feerate is 0, the requested destinations are value of 0 (e.g OP_RETURN), | |
| // and there are no pre-selected inputs. This will result in a 0-input transaction, which is consensus-invalid |
|
Does this need backport? |
I think it's not-super-required but could be nice if we do. |
There was a problem hiding this comment.
Good catch.
I agree to fail when the user disallowed automatic coin selection (add_inputs=false) but not seeing why we should fail when it's enabled. The wallet can craft the tx by selecting any available coin.
Coin selection wise, when target=0, bnb fails, knapsack should return the first UTXO above the target (so the smallest one in the wallet) and SRD pick a random one.
The problem is that knapsack has a bug, and it returns an empty selection (while it thinks that is a valid one..), so then the process crashes at waste calculation because there are no inputs on an apparent valid selection result.
Happily, 187ce36 indirectly fixes part of it too (which is being introduced in #26720).
In the future, with that bugfix, plus a little change in SeletCoins to not return an empty selection when there are no preset inputs, we can enable automatic coin selection for 0 target lookups (which I think that is the right path to follow as Coin Selection must never return an invalid selection while it thinks that is a valid one; worst case scenario should be fail with an error message).
Also, the crash can happen without customizing the feerate, when there is only an OP_RETURN output with SFFO enabled.
e.g.
walletcreatefundedpsbt(inputs=[],
outputs=[{"data": "deadbeef"}],
locktime=0,
options={"subtractFeeFromOutputs": [0]})To summarize:
What I would say to do here is fix and test that we don't crash when add_inputs=false for feerate=0 and SFFO (in order to do this, could squash furszy@0745191), then fix the cases when add_inputs=true post #26720 when knapsack will no longer return an empty selection as a valid result.
What do you think?
What scenario are you envisioning where we have a I agree with the points you raised as other areas we can improve the wallet (i.e Knapsack bug, SelectCoins not returning empty sets), but I think this error check is still necessary even with those other changes. If the selection target is zero, the fee rate is zero, and there are no preset inputs, I'd prefer to NOT run
this feels like a separate bug that we should catch waaaay before calling |
That is the "little change" that needs to be done that I mentioned above. The simplest scenario is what is currently being tested here. Single op_return output, automatic coin selection enabled. The wallet just need to select an UTXO to craft the tx. |
ah, I think I see your point. In the case of a 0-valued OP_RETURN, and fee rate of 0, and automatic coin-selection enabled, you would want the wallet to pick a single UTXO (which gets sent entirely to the change output). Given that there are a few moving pieces to enable the use case you are talking about (fixing Knapsack, SelectCoins, etc), I'd recommend we merge this change now and once the other changes are complete, we can update this check to something like: |
Yep, re-check the "To Summarize" part of my first message :) #27271 (review). |
We are proposing different things: I am saying don't add the check for With what you are proposing in furszy@0745191, the node will still crash after this PR is merged if someone passes |
|
k sure. I didn't suggest that because the error message will make people select the input/s manually etc. Which, I'm not so sure that it's better than a crash (at least the crash prevent them from making mistakes). But.. I'm not that strong over that point. So, all good, either way works for me. The coin selection fixes are already up anyway, matter of continue moving forward until all the problems are corrected, so this can be enabled. |
|
@furszy is that an ACK? :) I don't think crashing is acceptable. Let's fix the coin selection functionality later, and make sure we're not crashing LN nodes or whatever. |
|
ACK d7cc503 |
… 0-fee d7cc503 Fix fund transaction case at 0-value, 0-fee (Greg Sanders) Pull request description: and when no inputs are pre-selected. triggered via: walletcreatefundedpsbt '[]' '[{"data": "deadbeef"}]' 0 '{"fee_rate": "0"}' ACKs for top commit: achow101: ACK d7cc503 josibake: ACK bitcoin@d7cc503 furszy: Crashes sucks code ACK d7cc503 Tree-SHA512: 3f5e10875666aaf52c11d6a38b951aa75d0cbe684cc7f904e199f7a864923bf31d03a654687f8b746cae0eebb886a799bff2c6d200699438480d4c0ff8785f3a
and when no inputs are pre-selected.
triggered via:
walletcreatefundedpsbt '[]' '[{"data": "deadbeef"}]' 0 '{"fee_rate": "0"}'