Reject conflicting mempool transactions

[jvff]

Motivation

The mempool should ideally provide a set of transactions that can be included in a block to be mined. This means that it should not contain any conflicting transactions, i.e., transactions that spend the same UTXOs or reveal the same nullifiers.

This closes #2682.

Specifications

Solution

Change the mempool::Storage to check if transactions to be included don't conflict with any existing transactions. Reject transactions that conflict with any existing transactions in the mempool.

Review

Reviewer Checklist

• Code implements Specs and Designs
• Tests for Expected Behaviour
• Tests for Errors

Follow Up Work

• Consider replacing existing transactions in the mempool with a transaction that has conflicts but has a higher fee?

[conradoplg]

I posted this on Discord, but for the record:

1. I think you need to check if transactions have the same input, not the same output
2. Terminology seems correct to me
3. Maybe it's a bit convoluted, but it's easy to understand what is going on since the code is so small. It seems better than having four separate functions... (It's also a bit unfortunate that it needs so many explicit lifetimes, but removing them leads to the error you posted, right?)

[teor2345]

This PR looks good.

There's a non-blocking performance issue that we will probably want to fix later, once more mempool components are in place.

I'm looking forward to seeing some tests, when the testing framework all comes together.

[teor2345]

I missed some Conflict to SpendConflict tweaks.

[jvff]

Updated. Changes can be seen here.

[teor2345]

Looks great, just one documentation clarification

[teor2345]

This looks great!

I opened #2787 to check for duplicate spends within the same mempool transaction.
(Currently, that consensus rule is checked in zebra-state, so it doesn't apply to mempool transactions.)

[jvff]

I've implemented a test case, but it's currently blocked by depending on #2771. If that gets merged, I can update this PR and remove the draft status. In the meantime, here's the test code in case you want to take an initial look.

I thought about implementing the same test case using nullifiers for the different pools, but I'm not 100% sure how to create mock transactions with them 😅

[teor2345]

I thought about implementing the same test case using nullifiers for the different pools, but I'm not 100% sure how to create mock transactions with them 😅

It's so complicated, and it works differently for every shielded pool.
So I just used the Arbitrary impl to do it:

zebra/zebra-state/src/service/check/tests/nullifier.rs

Lines 460 to 475 in e2cc6e1

	#[test]
	fn reject_duplicate_sapling_nullifiers_in_block(
	spend1 in TypeNameToDebug::<sapling::Spend<PerSpendAnchor>>::arbitrary(),
	mut spend2 in TypeNameToDebug::<sapling::Spend<PerSpendAnchor>>::arbitrary(),
	sapling_shielded_data1 in TypeNameToDebug::<sapling::ShieldedData<PerSpendAnchor>>::arbitrary(),
	sapling_shielded_data2 in TypeNameToDebug::<sapling::ShieldedData<PerSpendAnchor>>::arbitrary(),
	) {
	zebra_test::init();
	let mut block1 = zebra_test::vectors::BLOCK_MAINNET_1_BYTES
	.zcash_deserialize_into::<Block>()
	.expect("block should deserialize");
	// create a double-spend across two transactions
	let duplicate_nullifier = spend1.nullifier;
	spend2.nullifier = duplicate_nullifier;

Feel free to copy and paste the 3 similar tests for each pool.

[teor2345]

Looks good, feel free to merge once you've resolved the conflicts.

(As long as the tests run for a reasonable amount of time.)

[jvff]

I've updated the PR to fix the merge conflict, fix a clippy lint and add some more documentation. I know you said I could merge this, but I thought the documentation might want another quick round of check. Feel free to change anything and merge it afterwards 👍

The isolated changes can be seen here.

[teor2345]

Looks good to me, I just removed an outdated TODO comment