Unconditionalize 2017 amendments

[scottschurr]

Amendments that were enabled in 2017 have now been on the books and active for over two years. Once an amendment is enabled it cannot be revoked. So the only situations where these amendments are disabled is when replaying ledgers (and their contained transactions) from before 2018.

It is uncommon, but not unheard of, to want to replay ledgers that are more than two years old. If these changes are accepted into the code base then a user wanting to replay a ledger from before 2018 will need to build an old version of the rippled code. This requirement is reinforced by a message that the rippled software generates if it is asked to replay a ledger from before 2018.

This pull request consists of a collection of small commits. Each commit unconditionalizes one specific amendment. Each commit is, to all intents and purposes, standalone. Reviewing the commits one at a time may make the review process easier. My intention is that these separate commits will not be squashed before merging. That way, in case one of the commits has an error, identifying the problem using a binary search will be easier.

[nbougalis]

Looks good. Left a couple of comments, most of which are at your discretion. Please remove the dead code I pointed out; once that's done, this is a 👍 from me.

[nbougalis]

I think that with this change, useRoundedCloseTime will only ever be true, in which case this member (and the conditionals it control) can be removed. Please double-check if that's the case.

[nbougalis]

I think that this can be moved inside the try. I don't know that it matters much, but just pointing it out.

[nbougalis]

Out of curiosity, what do others think about code clarity? Are the two forms identical or am I missing something?

if (auto const optPage = (*slep)[~sfDestinationNode]; optPage))

vs.

if (auto const optPage = (*slep)[~sfDestinationNode])

[scottschurr]

The two forms have identical results. I'm happy to change. The second form is more in keeping with the rest of the code base.

[nbougalis]

Now that we unconditionalized this amendment, the code from here on down and until the end of the function—about 100 lines worth—is unreachable and can simply be eliminated.

[scottschurr]

Good catch! I was not paying close enough attention. Thanks.

[nbougalis]

I think it makes sense to group the unconditionalized amendments together at the bottom, with a comment explaining that they are amendments that have been activated and are live and the "pre-amendment" code has been removed.

[scottschurr]

@nbougalis, thanks for the review comments. I believe all your comments have been addressed. If I missed anything please let me know.

BTW, despite how Github displays them, the [FOLD] commits are actually placed immediately adjacent to their target in the commit stack. I dunno why Github shows them in time order not in commit order, but here we are...

[pwang200]

I just have a question, actually in previously merged code. Sorry I did not review that PR, nor the spec. About the warning in ApplicationImp::loadOldLedger(), when an really old ledger is replayed, the code logs a warning message and continues. What are the possible outcomes? I mean, will unrecognized data be ignored? Or will data be handled differently which could result in some different states, but no long term effect because later ledgers will be correctly replayed, or something else? Will the expected behavior be tested?

[scottschurr]

Hi @pwang200, thanks for the review.

About the warning in ApplicationImp::loadOldLedger(), when an really old ledger is replayed, the code logs a warning message and continues. What are the possible outcomes?

First, it's important to know that the warning is associated with replaying ledgers more than two years old. Replaying a ledger is a debugging technique that must be actively requested by someone using rippled. And ledger replay happens on a stand-alone rippled instance; it never happens on the live network.

With that background, let me get back to your original question. There are three possible outcomes. From most likely to least likely they are:

1. The ledger replays exactly like it did the first time it ran on the network. Most amendments affect bugs in corner cases or enable new features. Most transactions don't live in the corner cases and old (validated) transactions can't use features that were enabled after the transaction was validated.

2. All transactions in the replayed ledger are replayed, but the outcomes of some of the transactions are different from the outcomes when the ledger was originally produced. The difference in outcomes can be seen by comparing the metadata. This would happen because amendments that were not in force at the time the original transaction was validated are now unconditionally in force. So a transaction that was working in one of those amendment-affected corner cases would exhibit the new behavior.

3. The server could crash or show some other undesirable behavior. I'm only including this case to be complete. We don't currently know of any way to cause this, but it can't be ruled out. The server might crash because the old ledger contains some data configuration that is no longer allowed and is not present in current ledgers. The ledger is robust to most unexpected data configurations, but there is no way to guarantee that it can correctly handle all unexpected data configurations.

Even in the crashing case nothing bad happens to the network, since the replay is done on a stand-alone instance

If someone wants to understand why an old transaction originally played the way it did, and they run across case 2 or 3, then they would need to build an old version of the server from source and use it for the replay. That's also the advice that the warning provides.

[pwang200]

Thanks for the explanation of my question. It is very clear.

[miguelportilla]

I noticed no rule enabled calls were removed. I assume the amendment was never proposed?

[scottschurr]

I'm not entirely sure about the history. Apparently the amendment was already unconditionalized before I got here. It looks like it had to do with SusPay, which was never enabled (https://xrpl.org/known-amendments.html#cryptoconditions). But the CryptoConditions amendment is live and on the ledger.

[miguelportilla]

I am guessing a retired tick size is full :)

[miguelportilla]

Excellent comment!

[miguelportilla]

Great reduction in unnecessary code!

[miguelportilla]

Consider eliminating the else statement

[miguelportilla]

Ah never mind, I see you did that in a later commit.

[miguelportilla]

Nit: beyond 80 cols, consider removing one tab indentation.

[miguelportilla]

Great job giving these names.

[miguelportilla]

I think transferRate or rate might be an improvement over tr.

[miguelportilla]

Considering the runTest lambda is now only called from here, why not just move the code inside the loop?

[miguelportilla]

Excellent comments!

[miguelportilla]

Consider renaming tr to transferRate or rate.

[miguelportilla]

Should the rate be set here to tr?

[scottschurr]

We wish to use use transferRate, but transferRate is currently invalid. So we hack the invalid value into the ledger a few lines down. I'm adding the following comment to justify the 2.0:

            // We'd like to use transferRate here, but the transactor
            // blocks transfer rates that large.  So we use an acceptable
            // transfer rate here and later hack the ledger to replace
            // the acceptable value with an out-of-bounds value.

[scottschurr]

@miguelportilla, thanks for the great review. I think I've addressed all your comments. At your convenience let me know if I missed anything. Thanks.

[scottschurr]

We wish to use use transferRate, but transferRate is currently invalid. So we hack the invalid value into the ledger a few lines down. I'm adding the following comment to justify the 2.0:

            // We'd like to use transferRate here, but the transactor
            // blocks transfer rates that large.  So we use an acceptable
            // transfer rate here and later hack the ledger to replace
            // the acceptable value with an out-of-bounds value.

[codecov-io]

Codecov Report

Merging #3292 into develop will decrease coverage by 0.07%.
The diff coverage is 97.14%.

@@             Coverage Diff             @@
##           develop    #3292      +/-   ##
===========================================
- Coverage    70.61%   70.54%   -0.08%     
===========================================
  Files          676      676              
  Lines        54339    54112     -227     
===========================================
- Hits         38374    38173     -201     
+ Misses       15965    15939      -26     

Impacted Files	Coverage Δ
src/ripple/app/consensus/RCLConsensus.cpp	59.22% <ø> (+0.04%)	⬆️
src/ripple/app/tx/impl/PayChan.cpp	90.12% <ø> (+1.00%)	⬆️
src/ripple/consensus/ConsensusParms.h	100.00% <ø> (ø)
src/ripple/protocol/Feature.h	100.00% <ø> (ø)
src/ripple/protocol/impl/Feature.cpp	91.66% <ø> (ø)
src/ripple/app/tx/impl/Escrow.cpp	84.91% <90.90%> (-0.98%)	⬇️
src/ripple/app/paths/impl/BookStep.cpp	84.76% <100.00%> (-0.04%)	⬇️
src/ripple/app/paths/impl/PaySteps.cpp	80.49% <100.00%> (+5.61%)	⬆️
src/ripple/app/tx/impl/ApplyContext.cpp	100.00% <100.00%> (ø)
src/ripple/app/tx/impl/SetAccount.cpp	98.11% <100.00%> (-0.02%)	⬇️
... and 10 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update f00f263...a90f5ee. Read the comment docs.

[miguelportilla]

👍

[scottschurr]

Squashed all fixes into their appropriate commits and rebased to 1.6.0-b1.