Open shortthefomo opened 1 year ago
intelliot
commented
1 year ago Personally, I don't think the transaction-breaking flag is worth doing. The restriction on the submit RPC command should be fine if it returns a very helpful error message, and the cap is configurable. I think it's technically an API breaking change, but I think it's a rare enough edge case that it's OK not to bump the api version.
WietseWind
commented
1 year ago I think the submit command should protect against this but allow for opting out with an option for the submit command, just like the fail_hard option.
E.g. fee cap = 2x account reserve, but if you really want to see the world (your account) burn, you can submit with no_fee_protection or something like that.
intelliot
commented
1 year ago high_fee: true
WietseWind
commented
1 year ago @intelliot I don't think high_fee describes what the option will allow. This suggests it'll add/set/... a high fee. I think it makes sense to name the property in a way where someone can explicitly realize they opt out of something (protection against failure).
MarkusTeufelberger
commented
1 year ago force: true?
Summary
rippleitinNZ provided a very insightful thread around some very unfortunate transactions on the XRPL.
Highlighting that there are many cases where by transactions are consuming excessive fees, the ledger provides no upper bound validation. So these often poorly coded transaction go though.
Motivation
The ledger provides many safety gates to protect its self from spam, usually via fee escalation. We should extend at very least some basic protections to the user as well.
@WietseWind pointed out that there are several lib, wallet and cluster fixes already implemented by many of the network operators already. Thank you every one for this.
However not everyone will use these services, and with no cap/error/warning/confirmation at ledger level this is still more than possible today.
Solution
Two viable solution have been covered already via @mvadari and @WietseWind