-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Transaction Hash Mismatch when deploying contract using Open Zeppelin Upgrades #9839
Comments
Is hardhat trying to use legacy transactions? Or is it falling back on them because we're missing something?
I believe the issue is that we use the FVM message CID as the transaction hash to avoid having to keep a separate index. Some tools use the hash returned by the client, but apparently hardhat does not... Unfortunately, there's no great solution here. We might just need to bite the bullet and keep an index, but that discussion will have to involve the lotus team. |
It does look like the message was broadcast, just that ethers barfed because the transaction hash differed. Based on the block explorer, I cannot see if the deployment was successful, or not: |
It was trying to use a legacy format, but I've since fixed that issue by forcing the gas parameters. There was a note here: https://github.com/filecoin-project/FEVM-Hardhat-Kit/blob/main/deploy/00_deploy.js#L79 That lead me to fix that issue. The contract looks like it deploys, but it returns a different hash than what ethers is expecting. You can see in the link above that the EVM transaction hash is correct: "0xb5df9c57a34a2807171473190d212f4f7db04da110d64d3534f6dca04d782fc2". This matches what is in the block explorer: https://explorer.glif.io/tx/0xb5df9c57a34a2807171473190d212f4f7db04da110d64d3534f6dca04d782fc2/?network=wallabynet However, the expected hash on my client is: "0xf8888767ae4f58c6c6650b48ad28f7aa6b7390e13c033d541c8949cfaee2cd1d" So my intuition is that, somewhere in the FEVM, they are doing something different that changes the hash. Maybe it is using the CID, or the "t-address" of t410fjzozl4ot2gy7wsqwsvkknp7r7ulevsrmdvea6pq to hash instead of the EVM address 0x4E5d95F1D3d1b1FB4a169554A6bff1fD164ACa2c. On the client side, the "t-address" was not visible, as the wallet was derived directly from the private key. I'm wondering if the "from" address is using t410fiz... on the node, and 0x4E5.... on the client, thus the mismatch. In either case, the hash is coming back different and preventing my deployment script from finishing (for instance, its not even clear to me if the proxy was properly initialized). |
Before dragging in Lotus and signing up for an index, is there any help you can provide me in helping determine why the hash is different? If it is indeed due to CID, then we can work through that. It may just require some extension of ethers.js, but I can't be sure. |
Basically, when we get an ethereum transaction, we have to reformat it into a "filecoin" message. Then we get a filecoin CID. We then return the filecoin message CID's digest as the "tx hash". See Line 516 in f681a35
|
Ideally, eithers would use the txn hash lotus returns and just emit a warning if it doesn't match. |
Thanks, I can see where the CID is basically used to produce the new filecoin hash. Problem is, out of the box, ethers doesn't use the lotus hash, and right now its not entirely possible to simply ignore the mismatch. ethers throws an exception, and the script can't get the deployed contract's address to do anything with. Because of this, I'm not certain that the proxy deployment ever truly finishes. This behavior is likely to break any ethereum client-side implementations that do not anticipate a new type of transaction hash logic outside of the standard EVM. I'm not certain how to use existing ethereum toolchains to develop and deploy upgradeable contracts. Not being able to use ethers for FVM client-side development is going to limit developer portability from the Ethereum ecosystem. Are upgradeable contracts in scope for the first release? Are they scoped into a subsequent release? |
Do we know why we return the hash of the CID for FEVM, versus just the Ethereum transaction hash? |
Most tools will use the hash as returned by
If we just hashed the transaction, we'd have no way to look it up without an index. |
Or, at least, remix and metamask appear to work. |
I'm not sure I understand why there would need to be an index. The block explorer seems capable of displaying both the CID, and the ethereum transaction hash. How does glif get the ethereum transaction hash? I'm also unsure why we have to return the CID hashed - what "breaks" if we return what ethereum would have in that scenario? |
In looking at this line here: Line 516 in f681a35
That this line was touched 26 days ago trivially: #9631 But the real introduction was in response to FIP-422. I think I'm grokking why the transaction is returning a hash of a CID (a CID being something standard EVM-based tools know nothing about) based on the implications in your comment here. Interface-wise, on the toolchain side the caller should be able to anticipate the resulting transaction hash. I'm going to keep digging to ensure I'm not missing something in my transaction signature or doing something weird. |
After hacking in ethers.js for a while, I've had to:
As far as I can tell, FEVM returns its own transaction hash schema and is generally incompatible with the way ether.js does some sendTransactions, because it produces the hash on the client side and expects the node to return the same (as a security measure, I would imagine). |
having the hash match sounds really crucial - it's a common eth coding paradigm to make a tx then poll for it to be confirmed Is this how to go from a fil cid to an eth tx hash? Line 415 in f681a35
it makes a lot of sense to me to have the eth RPC return the eth tx hash |
@snissn that method is actually used to return an "eth-like" transaction hash. You can see where it is used here: Line 516 in f681a35
However, it looks like a keccak256 hash of the resulting CID. While the hash "looks" like an ethereum hash, it is not the ethereum hash that uses the same hashing algorithm to produce the transaction hash from the payload. The transaction hash generated by that method using the Filecoin CID, which, by its nature, will always result in a different transaction hash. More importantly, existing ethereum client-side toolchains (like ethers), won't be able to derive the CID to anticipate the hash without non-trivial toolchain development specific for FEVM. If we want robust compatibility between ecosystems, we should produce a transaction hash the same way the standard EVM chains do. |
the tx hash on ethereum fortunately is simple it's just the keccak 256 hash of the raw tx The gist code ends up throwing an exception with reason: 'Transaction hash mismatch from Provider.sendTransaction.', the expected return from the wallaby rpc is the keccak 256 hash of the signedTx. because the rpc endoint returns the hash of the cid (not the hash of the raw tx) I think if it doesn't break everything, and my assumption about the data / code is correct having EthSendRawTransaction return the hash(rawTx) (rawTx the input of the fn you linked to) may/should give us the result we need. however i don't know what depdendences exist on that endpoint |
Fully aligned @snissn. Let's see what @Stebalien thinks, as I think he has visibility into use cases that might make those more difficult - but we'll need to consider impacts and trade-offs. |
Filecoin's Eth-style JSON-RPC relies on Cid to retrieve the objects such as blocks or txs, and it simply wraps a hash into a Cid or unwraps a Cid to a hash. If we want to generate the hash in an Ethereum-compatible way now, the endpoint would not be able to get the correct Cid and will not be able to retrieve the objects from the blockstore (see here). I agree that it's important to generate the hash in an Ethereum-compatible way, and we may have to maintain an index. @arajasek do you think this is the best way to move forward? |
We do return an Eth looking transaction hash. This is the hex encoding of the rightmost 32 bytes of the multihash hash within the message CID. Lotus computes the message CID off the message that has been pushed to the mempool, which is the Filecoin delegated-signature message in this case (not of the original Eth transaction bytes!). This uses neither the preimage expected by Eth clients, nor the hash function (keccak256 vs blake2b). This is where the mismatch lies. Tools and libraries like ethers.js probably calculate the hash of the transaction to avoid placing trust at the endpoint. If they blindly used the hash returned by Unfortunately, I can't think of a reasonable way of solving this problem without an index. The other solution I could come up with highly depends on the final shape of account abstraction. Particularly, whether we embed or not the original tx bytes in the delegated-signature message. If we did, we could add the original Eth tx to the blockstore with a keccak256 multihash, and have the delegated-signature message link to the Eth tx block by CID, instead of inlining it. However, that would solve one problem (returning the right tx hash), but lookups would still be unsolved unless we store some other metadata, i.e. how do we go from an Eth tx hash to the Filecoin message, for tracking purposes? Alternatively we could advocate for having all incompatible Eth libraries and tools adapted so we could plug in the message hash calculation logic (and we'd have to produce plugins for each to integrate our logic). But this sounds frankly unrealistic. |
Thanks @raulk for the insight. I figured the mapping of the eth hash to the Filecoin blockstore was likely the reason - and the current hashing scheme allows for a two way street from hash to CID. The clients, as you've also stated, likely pre-compute the hash to ensure that RPC endpoints don't have to be trusted. This is a good design. I agree that it looks like some mapping, or index, might needed to solve it, unless Filecoin can somehow find a way to have both types of hashes, although I'd imagine this would make things much more complex within the node implementations themselves, if feasible at all. I also consider the need for every toolchain in the Ethereum development environment to adapt to the way Filecoin does hashing to be unrealistic. It also is likely a game of catch-up, every time a new tool is built for Ethereum its likely not to support FEVM in this way, and it becomes a game of whack-a-mole. Considering the purpose of the FEVM is to capture interest of Ethereum Solidity developers and provide a familiar experience, allowing them to use Ethers.js, Web3.js, and other clients to interact with the blockchain are a huge win for developer on-boarding. I'll let @arajasek chime in as well. Thanks for explaining some of the details I only partially understood. |
I am moving this issue to lotus as this touches client more than ref-fvm. We will create an new issue if account abstraction impl update is needed. Whoever is creating the FRC for the eth_rpc client support should capture this, so that other implementations(venus and forest) can also mitigate this. |
@jennijuju hm, please discuss issue management with @maciejwitowski. We track all FVM items in ref-fvm even if they solely impact the client. |
@raulk we have identified this as a gap and have started to move client issues to its right home. With this, two teams should also talk to each other more often on over all nv18 (which include not only ref-fvm but also client- lotus) progress, which was missing earlier. |
@jennijuju what are the implications of not having/storing this index by default? Does this mean that solidity/EVM developers would need to either run, or find, a node that supports proper ethereum transaction hashes? If a developer deploys a contract to a node that doesn't have this index, do they still get a proper eth transaction back? If so, can they not poll against the receipt on the same node? What about block explorers? |
Edited by @jennijuju
To mitigate this issue, we will expand the existing scope of the sqlite DB that is introduced for events indexing to cover the etherum tx id <> filecoin message CID mapping. We should introduce a configurable variable for node operators to choose if they wanna store this mapping or not, it should be disabled by default.
For the mapping, when we get an ethereum transaction, we reformat it into a "filecoin" message and get a filecoin CID. We need to keep that tx id <> Filecoin CID mapping.
I am trying to deploy an OpenZeppelin ERC1155 contract to FEVM wallaby using the UUPSUpgradeable proxy pattern, and Hardhat upgrades plugin. The code looks as follows:
I've had to override the provider to manually set the gas prices to prevent a legacy transaction error:
However, upon deployment I get an error around mismatch expected transaction hash. The hash that comes back is different than the one expected. I'm not certain if this is a post-deployment issue, and the contract is fine, or if this prevented the deployment altogether. It's worth noting that I am using a private key from ethereum, and not certain if that would cause a hash difference. In either case, this is currently blocking FEVM users from using deployable contracts like they would on ethereum, as far as I can tell,
The text was updated successfully, but these errors were encountered: