cosmic-cinder 0.1.13

Rust terminal UI for Phoenix perpetuals on Solana
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290

//! Transaction compile/sign/broadcast pipeline — builds a
//! `VersionedTransaction` from a recent blockhash, broadcasts it, and waits
//! for confirmation via the `signatureSubscribe` WebSocket feed.

use std::sync::Arc;
use std::time::Duration;

use futures_util::StreamExt;
use solana_commitment_config::{CommitmentConfig, CommitmentLevel};
use solana_keypair::Keypair;
use solana_pubsub_client::nonblocking::pubsub_client::PubsubClient;
use solana_rpc_client_types::config::{RpcSendTransactionConfig, RpcSignatureSubscribeConfig};
use solana_rpc_client_types::response::{ProcessedSignatureResult, Response, RpcSignatureResult};
use solana_signature::Signature;
use solana_signer::Signer;

use super::context::TxContext;
use crate::tui::config::current_user_config;

/// Build the per-send RPC config, honoring the user's `skip_preflight` toggle.
/// Read fresh on each send so toggling the config takes effect on the next tx.
fn send_cfg() -> RpcSendTransactionConfig {
    RpcSendTransactionConfig {
        skip_preflight: current_user_config().skip_preflight,
        preflight_commitment: Some(CommitmentLevel::Processed),
        encoding: None,
        max_retries: Some(2),
        min_context_slot: None,
    }
}

/// Hard ceiling on how long the RPC send may block.
pub(super) const SEND_TIMEOUT: Duration = Duration::from_secs(8);

/// How long to wait for `processed` commitment after the transaction is sent.
pub(super) const CONFIRM_TIMEOUT: Duration = Duration::from_secs(8);

/// Bound signature WebSocket connection and subscription setup.
const SIGNATURE_SUBSCRIBE_TIMEOUT: Duration = Duration::from_secs(5);

/// Fallback interval between HTTP `get_signature_status` polls while confirming
/// (WSS path races this loop).
const SIGNATURE_HTTP_POLL_INTERVAL: Duration = Duration::from_millis(350);

/// Cadence at which the same signed transaction is re-broadcast while we
/// wait on confirmation. Solana validators dedupe by signature, so duplicate
/// sends are cheap on-network; the cost is just one extra RPC call per tick.
/// Reduces drop-related "lost" transactions when a primary RPC silently
/// fails to forward to the leader.
const REBROADCAST_INTERVAL: Duration = Duration::from_millis(300);

/// Per-send timeout used inside the rebroadcast loop. Shorter than the
/// initial-send timeout because we don't care about the result and don't want
/// a stalled RPC to block the next tick.
const REBROADCAST_SEND_TIMEOUT: Duration = Duration::from_secs(1);

/// Compiles a versioned v0 transaction from `ixs` and signs it with `keypair`.
/// Returns the signed transaction and its signature so callers can subscribe
/// to confirmation *before* broadcasting.
pub(super) async fn compile_and_sign(
    ctx: &TxContext,
    keypair: &Keypair,
    ixs: &[solana_instruction::Instruction],
) -> Result<
    (
        solana_transaction::versioned::VersionedTransaction,
        Signature,
    ),
    String,
> {
    use solana_message::{v0, VersionedMessage};
    use solana_transaction::versioned::VersionedTransaction;

    let blockhash = ctx.pop_blockhash().await?;
    let message = v0::Message::try_compile(&keypair.pubkey(), ixs, &[], blockhash)
        .map_err(|e| format!("{}", e))?;
    let tx = VersionedTransaction::try_new(VersionedMessage::V0(message), &[keypair])
        .map_err(|e| format!("{}", e))?;
    let sig = tx.signatures[0];
    Ok((tx, sig))
}

/// Distinguishes between RPC rejection and on-chain confirmation failure.
pub(super) enum ConfirmError {
    /// The RPC refused the transaction (or we failed to subscribe/connect).
    Rejected(String),
    /// The transaction was broadcast but its final status is still unknown to
    /// this client. It may still land; callers should show the signature and
    /// avoid implying failure.
    NotConfirmed(String),
}

/// Returns the shared `PubsubClient`, creating or reconnecting as needed.
/// The returned `Arc` keeps the client alive even if a later caller replaces
/// it.
pub(super) async fn get_or_connect_sig_pubsub(
    ctx: &TxContext,
) -> Result<Arc<PubsubClient>, String> {
    let mut guard = ctx.sig_pubsub.lock().await;
    if let Some(ref client) = *guard {
        return Ok(Arc::clone(client));
    }
    let client = tokio::time::timeout(SIGNATURE_SUBSCRIBE_TIMEOUT, PubsubClient::new(&ctx.ws_url))
        .await
        .map_err(|_| "signature WSS connect timed out after 5s".to_string())?
        .map_err(|e| format!("signature WSS connect: {}", e))?;
    let client = Arc::new(client);
    *guard = Some(Arc::clone(&client));
    Ok(client)
}

/// Sends the pre-signed transaction and waits for `processed` confirmation,
/// racing a WSS subscription stream against HTTP `get_signature_status` polls.
/// Whichever source responds first wins; the other is abandoned.
pub(super) async fn send_and_confirm_on_stream(
    ctx: &TxContext,
    tx: &solana_transaction::versioned::VersionedTransaction,
    sig: &Signature,
    stream: &mut (impl futures_util::Stream<Item = Response<RpcSignatureResult>> + Unpin),
) -> Result<(), ConfirmError> {
    // --- send ---------------------------------------------------------------
    // Fire-and-forget fan-out to the public mainnet-beta RPC (if distinct from
    // the primary). We don't await or propagate its result — the primary RPC
    // remains authoritative for send success and confirmation.
    if let Some(secondary) = ctx.secondary_send_rpc.as_ref() {
        let secondary = Arc::clone(secondary);
        let tx_clone = tx.clone();
        let cfg = send_cfg();
        tokio::spawn(async move {
            let _ = tokio::time::timeout(
                SEND_TIMEOUT,
                secondary.send_transaction_with_config(&tx_clone, cfg),
            )
            .await;
        });
    }

    let send_result = tokio::time::timeout(SEND_TIMEOUT, {
        ctx.rpc_client.send_transaction_with_config(tx, send_cfg())
    })
    .await;

    match send_result {
        Err(_) => {
            return Err(ConfirmError::Rejected(
                "Transaction timed out — RPC did not respond within 8s".into(),
            ));
        }
        Ok(Err(e)) => {
            return Err(ConfirmError::Rejected(format!("{:#?}", e)));
        }
        Ok(Ok(_)) => {}
    }

    // --- confirm: race WSS stream vs HTTP polling, while a sibling task
    // re-broadcasts the same signed tx every REBROADCAST_INTERVAL. -----------
    let confirm = tokio::time::timeout(CONFIRM_TIMEOUT, async {
        let wss = async {
            while let Some(resp) = stream.next().await {
                match resp.value {
                    RpcSignatureResult::ProcessedSignature(ProcessedSignatureResult { err }) => {
                        return if err.is_none() {
                            Ok(())
                        } else {
                            Err(format!("transaction failed: {:?}", err))
                        };
                    }
                    RpcSignatureResult::ReceivedSignature(_) => continue,
                }
            }
            Err("signature subscription closed before confirmation".into())
        };

        let http_poll = async {
            let mut interval = tokio::time::interval(SIGNATURE_HTTP_POLL_INTERVAL);
            interval.set_missed_tick_behavior(tokio::time::MissedTickBehavior::Delay);
            interval.tick().await; // skip the immediate first tick
            loop {
                interval.tick().await;
                match ctx.rpc_client.get_signature_status(sig).await {
                    Ok(Some(Ok(()))) => return Ok(()),
                    Ok(Some(Err(e))) => return Err(format!("transaction failed: {:?}", e)),
                    _ => {} // not yet landed or transient RPC error — keep polling
                }
            }
        };

        tokio::select! {
            r = wss => r,
            r = http_poll => r,
        }
    });

    // Rebroadcasts the *same* signed transaction (same signature, same
    // blockhash) on the same cadence to both the primary and the secondary
    // fan-out RPC. Validators dedupe by signature, so duplicates only cost
    // RPC quota, not on-chain fees. The future never resolves on its own —
    // it's dropped (and the loop torn down) when `confirm` completes via the
    // `select!` below.
    let rebroadcast = async {
        let mut interval = tokio::time::interval(REBROADCAST_INTERVAL);
        interval.set_missed_tick_behavior(tokio::time::MissedTickBehavior::Delay);
        interval.tick().await; // initial tick fires immediately; skip
        loop {
            interval.tick().await;
            let primary = tokio::time::timeout(
                REBROADCAST_SEND_TIMEOUT,
                ctx.rpc_client.send_transaction_with_config(tx, send_cfg()),
            );
            let secondary = async {
                if let Some(secondary) = ctx.secondary_send_rpc.as_ref() {
                    let _ = tokio::time::timeout(
                        REBROADCAST_SEND_TIMEOUT,
                        secondary.send_transaction_with_config(tx, send_cfg()),
                    )
                    .await;
                }
            };
            let _ = tokio::join!(primary, secondary);
        }
        // Unreachable, but type-helps the `select!` below.
        #[allow(unreachable_code)]
        Result::<(), String>::Ok(())
    };

    let result = tokio::select! {
        r = confirm => r,
        // Will not fire under normal operation; only here so the rebroadcast
        // loop is owned by this `select!` and dropped on confirm completion.
        _ = rebroadcast => Ok(Err("rebroadcast loop ended unexpectedly".into())),
    };

    match result {
        Ok(r) => r.map_err(ConfirmError::NotConfirmed),
        Err(_) => Err(ConfirmError::NotConfirmed("confirmation timeout".into())),
    }
}

/// Subscribes to a signature on the shared WebSocket, sends the transaction,
/// then waits for `processed` confirmation on the already-open stream.
///
/// Subscribing *before* sending eliminates the race where a fast validator
/// confirms the transaction before the WebSocket subscription is established.
pub(super) async fn subscribe_send_confirm(
    ctx: &TxContext,
    tx: &solana_transaction::versioned::VersionedTransaction,
    sig: &Signature,
) -> Result<(), ConfirmError> {
    let sub_config = RpcSignatureSubscribeConfig {
        commitment: Some(CommitmentConfig::processed()),
        enable_received_notification: Some(false),
    };

    // --- subscribe first ---------------------------------------------------
    let client = get_or_connect_sig_pubsub(ctx)
        .await
        .map_err(ConfirmError::Rejected)?;

    // Happy path: subscribe succeeds on the current shared connection.
    if let Ok(Ok((mut stream, unsubscribe))) = tokio::time::timeout(
        SIGNATURE_SUBSCRIBE_TIMEOUT,
        client.signature_subscribe(sig, Some(sub_config.clone())),
    )
    .await
    {
        let result = send_and_confirm_on_stream(ctx, tx, sig, &mut stream).await;
        unsubscribe().await;
        return result;
    }

    // Subscribe failed — connection likely stale. Reconnect once.
    drop(client);
    {
        ctx.sig_pubsub.lock().await.take();
    }
    let client = get_or_connect_sig_pubsub(ctx)
        .await
        .map_err(ConfirmError::Rejected)?;
    let (mut stream, unsubscribe) = tokio::time::timeout(
        SIGNATURE_SUBSCRIBE_TIMEOUT,
        client.signature_subscribe(sig, Some(sub_config)),
    )
    .await
    .map_err(|_| ConfirmError::Rejected("signature_subscribe timed out after 5s".to_string()))?
    .map_err(|e| ConfirmError::Rejected(format!("signature_subscribe: {}", e)))?;

    let result = send_and_confirm_on_stream(ctx, tx, sig, &mut stream).await;
    unsubscribe().await;
    result
}