refactor: use BlockInfo in TransactionRecord#580
Closed
xdustinface wants to merge 1 commit intov0.42-devfrom
Closed
refactor: use BlockInfo in TransactionRecord#580xdustinface wants to merge 1 commit intov0.42-devfrom
BlockInfo in TransactionRecord#580xdustinface wants to merge 1 commit intov0.42-devfrom
Conversation
Replace three separate block-related fields with a single `block_info: Option<BlockInfo>` in `TransactionRecord`, simplify `mark_confirmed` to accept `BlockInfo` directly, and introduce `FFIBlockInfo` struct to replace scattered height/hash/timestamp parameters across all FFI boundaries (`FFITransactionRecord`, `FFITransactionContextDetails`, `wallet_check_transaction`, `managed_wallet_check_transaction`).
Contributor
📝 WalkthroughWalkthroughThis PR consolidates block metadata parameters across FFI and core wallet layers by replacing separate Changes
Estimated code review effort🎯 3 (Moderate) | ⏱️ ~25 minutes Possibly related PRs
Suggested labels
Suggested reviewers
Poem
🚥 Pre-merge checks | ✅ 3✅ Passed checks (3 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches📝 Generate docstrings
🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## v0.42-dev #580 +/- ##
=============================================
+ Coverage 66.73% 66.84% +0.10%
=============================================
Files 313 313
Lines 64948 64922 -26
=============================================
+ Hits 43346 43398 +52
+ Misses 21602 21524 -78
|
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Actionable comments posted: 2
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (2)
key-wallet-ffi/src/managed_account.rs (1)
663-670:⚠️ Potential issue | 🟠 MajorVersion this exported FFI record change.
Lines 669-670 move three public members under
block_info, so downstream bindings that currently readrecord.height,record.block_hash, orrecord.timestampnow need a coordinated contract change. Please keep the legacy shape for one compatibility window or introduce a versionedFFITransactionRecordV2/managed_core_account_get_transactions_v2instead of mutating the existing exported type in place.
As per coding guidelines, "Handle memory safety carefully at FFI boundaries".🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@key-wallet-ffi/src/managed_account.rs` around lines 663 - 670, The FFI struct layout was changed by moving height/block_hash/timestamp under block_info, which breaks existing consumers; restore backward compatibility by retaining the original exported layout or introduce a versioned type and API: create FFITransactionRecordV2 (with block_info) and a new accessor function managed_core_account_get_transactions_v2 that returns V2 while keeping the existing FFITransactionRecord and managed_core_account_get_transactions unchanged for one compatibility window; update any internal conversion code to populate both shapes and document the new symbol names (FFITransactionRecord, FFITransactionRecordV2, block_info, managed_core_account_get_transactions_v2) so downstream bindings can migrate safely and memory safety at the FFI boundary is preserved.key-wallet-ffi/FFI_API.md (1)
852-862:⚠️ Potential issue | 🟠 MajorRegenerate the FFI docs from the new API contract.
Lines 1306-1310 still describe the removed
inputs_spent_out/addresses_used_out/new_balance_out/new_address_*outputs, and neither section explains the newcontext_type+block_info+update_statecontract or theFFIBlockInfolayout. For a public FFI surface, that leaves callers without the safety guidance they need to construct these arguments correctly. Because this file is auto-generated, the fix likely belongs in the Rust doc comments/generator rather than here.Also applies to: 1300-1310
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@key-wallet-ffi/FFI_API.md` around lines 852 - 862, The generated FFI docs still mention removed outputs (inputs_spent_out, addresses_used_out, new_balance_out, new_address_*) and lack the new parameter contract for managed_wallet_check_transaction; update the Rust doc comments/generator to regenerate FFI_API.md so the managed_wallet_check_transaction entry documents the new parameters (FFITransactionContext `context_type`, the full FFIBlockInfo layout and field meanings, and the `update_state` semantics) and remove references to the deleted outputs, and ensure safety guidance mentions how to construct/validate `tx_bytes`, `result_out` and `error` and that the affected_accounts array must be freed via transaction_check_result_free.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In `@key-wallet-ffi/src/managed_account.rs`:
- Around line 728-730: Add a unit test that calls
managed_core_account_get_transactions and asserts the FFIBlockInfo behavior for
mempool vs confirmed records: create or mock one mempool transaction record and
one confirmed transaction record, call managed_core_account_get_transactions (or
the helper that produces ffi Record structs), and assert that the mempool
record's block_info equals FFIBlockInfo::empty() while the confirmed record's
block_info equals FFIBlockInfo::from(...) with the expected populated fields;
place the test in managed_account.rs alongside other tests to lock down the new
boundary behavior.
In `@key-wallet-ffi/src/types.rs`:
- Around line 48-60: The current transaction_context_from_ffi function
constructs confirmed contexts from a zeroed FFIBlockInfo, which can create
invalid BlockInfo; change transaction_context_from_ffi(signature) to return a
Result<TransactionContext, <appropriate error type>> and validate that for
FFITransactionContext::InBlock and ::InChainLockedBlock the provided block_info
is not the placeholder (use FFIBlockInfo::empty() or equivalent check); if it is
empty return an error instead of creating
TransactionContext::InBlock/::InChainLockedBlock with a fake block, and update
all callers to propagate or handle the Result accordingly to avoid silently
accepting zeroed block metadata at the FFI boundary.
---
Outside diff comments:
In `@key-wallet-ffi/FFI_API.md`:
- Around line 852-862: The generated FFI docs still mention removed outputs
(inputs_spent_out, addresses_used_out, new_balance_out, new_address_*) and lack
the new parameter contract for managed_wallet_check_transaction; update the Rust
doc comments/generator to regenerate FFI_API.md so the
managed_wallet_check_transaction entry documents the new parameters
(FFITransactionContext `context_type`, the full FFIBlockInfo layout and field
meanings, and the `update_state` semantics) and remove references to the deleted
outputs, and ensure safety guidance mentions how to construct/validate
`tx_bytes`, `result_out` and `error` and that the affected_accounts array must
be freed via transaction_check_result_free.
In `@key-wallet-ffi/src/managed_account.rs`:
- Around line 663-670: The FFI struct layout was changed by moving
height/block_hash/timestamp under block_info, which breaks existing consumers;
restore backward compatibility by retaining the original exported layout or
introduce a versioned type and API: create FFITransactionRecordV2 (with
block_info) and a new accessor function managed_core_account_get_transactions_v2
that returns V2 while keeping the existing FFITransactionRecord and
managed_core_account_get_transactions unchanged for one compatibility window;
update any internal conversion code to populate both shapes and document the new
symbol names (FFITransactionRecord, FFITransactionRecordV2, block_info,
managed_core_account_get_transactions_v2) so downstream bindings can migrate
safely and memory safety at the FFI boundary is preserved.
ℹ️ Review info
⚙️ Run configuration
Configuration used: Path: .coderabbit.yaml
Review profile: CHILL
Plan: Pro
Run ID: 1a80e8b1-64d3-440a-8e3b-9158b0dc18b0
📒 Files selected for processing (13)
key-wallet-ffi/FFI_API.mdkey-wallet-ffi/src/managed_account.rskey-wallet-ffi/src/transaction.rskey-wallet-ffi/src/transaction_checking.rskey-wallet-ffi/src/types.rskey-wallet-ffi/src/wallet_manager_tests.rskey-wallet/src/managed_account/mod.rskey-wallet/src/managed_account/transaction_record.rskey-wallet/src/tests/spent_outpoints_tests.rskey-wallet/src/transaction_checking/transaction_router/tests/helpers.rskey-wallet/src/transaction_checking/transaction_router/tests/identity_transactions.rskey-wallet/src/transaction_checking/transaction_router/tests/routing.rskey-wallet/src/transaction_checking/wallet_checker.rs
Comment on lines
+728
to
+730
| // Copy block info | ||
| ffi_record.block_info = | ||
| record.block_info.map(FFIBlockInfo::from).unwrap_or_else(FFIBlockInfo::empty); |
Contributor
There was a problem hiding this comment.
🛠️ Refactor suggestion | 🟠 Major
Add a direct test for managed_core_account_get_transactions block export.
This function now emits FFIBlockInfo::empty() for mempool records and a populated FFIBlockInfo for confirmed ones, but this file still does not assert either behavior. A small unit test here would lock down the new boundary behavior.
As per coding guidelines, "Write unit tests for new functionality in Rust code".
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In `@key-wallet-ffi/src/managed_account.rs` around lines 728 - 730, Add a unit
test that calls managed_core_account_get_transactions and asserts the
FFIBlockInfo behavior for mempool vs confirmed records: create or mock one
mempool transaction record and one confirmed transaction record, call
managed_core_account_get_transactions (or the helper that produces ffi Record
structs), and assert that the mempool record's block_info equals
FFIBlockInfo::empty() while the confirmed record's block_info equals
FFIBlockInfo::from(...) with the expected populated fields; place the test in
managed_account.rs alongside other tests to lock down the new boundary behavior.
Comment on lines
+48
to
+60
| /// Convert an `FFIBlockInfo` and context type to a native `TransactionContext`. | ||
| pub(crate) fn transaction_context_from_ffi( | ||
| context_type: FFITransactionContext, | ||
| block_info: &FFIBlockInfo, | ||
| ) -> TransactionContext { | ||
| match context_type { | ||
| FFITransactionContext::Mempool => TransactionContext::Mempool, | ||
| FFITransactionContext::InstantSend => TransactionContext::InstantSend, | ||
| FFITransactionContext::InBlock => TransactionContext::InBlock(block_info.to_block_info()), | ||
| FFITransactionContext::InChainLockedBlock => { | ||
| TransactionContext::InChainLockedBlock(block_info.to_block_info()) | ||
| } | ||
| } |
Contributor
There was a problem hiding this comment.
Reject the zero placeholder for confirmed contexts.
FFIBlockInfo::empty() is the documented placeholder for mempool/instant-send, but transaction_context_from_ffi() will currently accept that same zeroed struct for InBlock / InChainLockedBlock and build a fake BlockInfo at height 0 with an all-zero hash. One bad FFI call can then mark a transaction as confirmed with invalid block metadata and corrupt wallet state. Returning an error here instead of an infallible TransactionContext is probably the cleanest fix.
As per coding guidelines, **/*-ffi/**/*.rs: Handle memory safety carefully at FFI boundaries.
Also applies to: 793-827
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In `@key-wallet-ffi/src/types.rs` around lines 48 - 60, The current
transaction_context_from_ffi function constructs confirmed contexts from a
zeroed FFIBlockInfo, which can create invalid BlockInfo; change
transaction_context_from_ffi(signature) to return a Result<TransactionContext,
<appropriate error type>> and validate that for FFITransactionContext::InBlock
and ::InChainLockedBlock the provided block_info is not the placeholder (use
FFIBlockInfo::empty() or equivalent check); if it is empty return an error
instead of creating TransactionContext::InBlock/::InChainLockedBlock with a fake
block, and update all callers to propagate or handle the Result accordingly to
avoid silently accepting zeroed block metadata at the FFI boundary.
Collaborator
Author
|
Replaced by #582 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Replace three separate block-related fields with a single
block_info: Option<BlockInfo>inTransactionRecord, simplifymark_confirmedto acceptBlockInfodirectly, and introduceFFIBlockInfostruct to replace scattered height/hash/timestamp parameters across all FFI boundaries (FFITransactionRecord,FFITransactionContextDetails,wallet_check_transaction,managed_wallet_check_transaction).Summary by CodeRabbit