feat: replaced HbarLimit module with the new HbarLimitService class

[quiet-node]

Description:

• This PR replaces all usages of the HbarLimit module with the new HbarLimitService class in the SdkClient and MetricService classes.
• Removes the HbarLimit module from the codebase.
• The addExpense logic in the new HbarLimitService has been updated to accept a nullable ethAddress value. Certain queries, such as getAccountInfo, getBalanceInfo, FileContentsQuery, etc., also add expenses to remainingBalance but don’t always require an originalCaller (ethAddress). Therefore, addExpense can now handle a nullable ethAddress value. If either ethAddress or ipAddress is valid, the spendingPlan logic is applied. Otherwise, it is skipped entirely.
• Moved the preemptive rate limit logic to the sdkClient.createFile() method.
• Related tests have been updated to align with the new HbarLimitService class.
• Updated log messages accordingly.

Related issue(s):

Fixes #2896

Notes for reviewer:

Checklist

• Documented (Code comments, README, etc.)
• Tested (unit, integration, etc.)

[github-actions]

Tests

       3 files     397 suites   18s ⏱️
1 412 tests 1 411 ✔️ 1 💤 0 ❌
1 421 runs  1 420 ✔️ 1 💤 0 ❌

Results for commit d846e4d.

♻️ This comment has been updated with latest results.

[github-actions]

Acceptance Tests

  21 files  327 suites   32m 54s ⏱️
607 tests 585 ✔️ 4 💤 18 ❌
812 runs  788 ✔️ 4 💤 20 ❌

Results for commit d846e4d.

♻️ This comment has been updated with latest results.

[victor-yanev]

Please, avoid introducing unnecessary changes unrelated to what is asked from the issue:

• it makes the PR harder to review, because it is cluttered with too many empty / unrelated changes
• makes it easier to slip in bugs, because reviewers might overlook an important change among all the "empty" changes which surround it
• wastes other people's time because it creates unnecessary conflicts with other PRs

[victor-yanev]

Suggested change

	`${requestIdPrefix} Daily HBAR rate limit incoming call: remainingBudget=${this.remainingBudget}, totalBudget=${
	`${requestIdPrefix} HBAR limit reached: remainingBudget=${this.remainingBudget}, totalBudget=${

[quiet-node]

explained in this #3024 (comment)

[victor-yanev]

As explained in my previous comment, daily should be removed everywhere from the logs, as the limit duration will be flexible and is no longer going to be on a daily basis:

Suggested change

	`${requestIdPrefix} Daily HBAR rate limit incoming call: remainingBudget=${this.remainingBudget}, totalBudget=${
	`${requestIdPrefix} Total HBAR rate limit reached: remainingBudget=${this.remainingBudget}, totalBudget=${

[quiet-node]

updated.

[victor-yanev]

It should NEVER be possible to call this method without arguments, please revert this change.

[quiet-node]

If the statement is definitive, then there is a conflict in the implementation of the method itself. If the method is not supposed to be callable without arguments, doesn’t the return false statement contradict your assertion? Returning false implies that both arguments, ethAddress and ipAddress, are invalid, leading to a null return.

Regard to the update, this change altered the validity of the ethAddress as it can potentially be read as null in cases where it is used for helper queries that do not necessarily involve originalCallerAddress, as explained in the PR's description.

[victor-yanev]

Let’s move the logic which is related only to the totalLimit/remainingLimit and doesn’t require IP/ETH addresses into a separate shouldLimit method that accepts no arguments, we can call this method in those situations and the current shouldLimit would still be calling it from its implementation, but would extend its logic and require ETH and IP address to be passed to it.

[quiet-node]

This change doesn't affect the implementation of shouldLimit(), but rather impacts addExpense(). Additionally, introducing another method would result in repetitive code and an additional instance to maintain.

I've pushed a fix that reverts ethAddress back to a required parameter for both getSpendingPlan() and createBasicSpendingPlan(). As a result, in the executeQuery, originalCaller is turned into an empty string if it's undefined before passing it as a parameter to addExpense(). Look into this comment for more details: 5066ec9.

[victor-yanev]

Same here, we don't EVER want to create a spending plan without a linked ETH/IP address to it

[quiet-node]

This change has altered the validity of the ethAddress, as it can potentially be read as null in cases where it is used for helper queries that do not necessarily involve originalCallerAddress, as explained in the PR's description.

The fallback logic for cases where neither ethAddress nor ipAddress is valid is handled within the first block of the method:

if (!ethAddress && !ipAddress) {
      throw new Error('Cannot create a spending plan without an associated eth address or ip address');
}

[victor-yanev]

Still, we don’t ever expect createBasicPlan to be called in those situations, if no IP/ETH address is passed to shouldLimit we want to check only against the totalLimit of the HBAR limiter and we don’t include the logic with the spending plans. Creating an empty spending plan without an IP/ETH address linked to it would only fill the memory in cache with unnecessary entries which will be used only once (for the request in which they were created) and don’t really provide any additional value.

Please, revert this change.

[quiet-node]

Creating an empty spending plan without an IP/ETH address linked to it would only fill the memory in cache with unnecessary entries which will be used only once (for the request in which they were created) and don’t really provide any additional value.

Again, in cases where both ethAddress and ipAddress are undefined, the program will throw the "Cannot create a spending plan without an associated eth address or ip address" error.

if (!ethAddress && !ipAddress) {
    throw new Error('Cannot create a spending plan without an associated eth address or ip address');
}

As a result, the program cannot create an empty spending plan on its own under these conditions.

That said, I acknowledge your concern and it is a valid point. A fix has been pushed to revert ethAddress back to be required parameter, rather than optional. The fix is found here: 5066ec9.

[victor-yanev]

QQ: When is this going to be undefined?

[quiet-node]

When requests are made through queries that do not always involve originalCaller, as explained in the PR's description.

[victor-yanev]

Is this used only for logs?

[quiet-node]

No it's the actual ethAddress we use for the spanding plans

[victor-yanev]

I was thinking, instead of tracking the remaining total budget in-memory inside HbarLimitService (we would have to divide it by the number of Kubernetes instances, etc - it is creating unnecessary complexity in the configurations), we could create a new subscription tier (OPERATOR) and add a pre-configured spending plan which links the ETH address of the relay operator account to it.

In this way we can only specify the total limit for the OPERATOR tier and it will be shared by all instances of the relay.

What do you think?

Ofc, this could be handled in a separate PR as an improvement. We can discuss it today in the parking lot of the daily meeting.

[victor-yanev]

Also, here we would be passing the ETH address of the operator account instead of undefined for these queries executed by the operator.

[ebadiere]

Nice.

[github-actions]

🚨 Memory Leak Detected 🚨

A potential memory leak has been detected in the test titled validates enforcement of request id. This may impact the application's performance and stability.

Details

📊 Memory Leak Detection Report 📊

GC Type: MarkSweepCompact
Cost: 26,464 ms

Heap Statistics (before vs after executing the test):

• Total Heap Size: increased with 1.46 MB
• Total Heap Size Executable: no changes
• Total Physical Size: decreased with 348.16 KB
• Total Available Size: decreased with 12.74 MB
• Total Global Handles Size: no changes
• Used Global Handles Size: decreased with 64.00 bytes
• Used Heap Size: decreased with 3.42 MB
• Heap Size Limit: no changes
• Malloced Memory: no changes
• External Memory: no changes
• Peak Malloced Memory: no changes

Heap Space Statistics (before vs after executing the test):

• Old Space:

  • Space Size: increased with 1.84 MB
  • Space Used Size: increased with 2.09 MB
  • Space Available Size: decreased with 15.63 MB
  • Physical Space Size: increased with 1.84 MB

• Large Object Space:

  • Space Size: increased with 835.58 KB
  • Space Used Size: increased with 813.50 KB
  • Space Available Size: no changes
  • Physical Space Size: increased with 835.58 KB

Recommendations

Please investigate the memory allocations in this test, focusing on objects that are not being properly deallocated.

[konstantinabl]

LGTM! Good job!

[victor-yanev]

LGTM, just a few small things

[victor-yanev]

Please, revert this change - we don't want to be logging the IP address anywhere.

[victor-yanev]

Also, rate limited is not really the correct term here, as we previously discussed.

[quiet-node]

Also, rate limited is not really the correct term here, as we previously discussed.

hmm good catch and sorry I know we've had this conversation couple of times and I've fixed it. Well must've slipped back in during fixing merge conflicts. Updated.

[victor-yanev]

isDailyBudgetExceeded -> isTotalBudgetExceeded

[quiet-node]

udpated.

[victor-yanev]

I was thinking, instead of tracking the remaining total budget in-memory inside HbarLimitService (we would have to divide it by the number of Kubernetes instances, etc - it is creating unnecessary complexity in the configurations), we could create a new subscription tier (OPERATOR) and add a pre-configured spending plan which links the ETH address of the relay operator account to it.

In this way we can only specify the total limit for the OPERATOR tier and it will be shared by all instances of the relay.

What do you think?

Ofc, this could be handled in a separate PR as an improvement. We can discuss it today in the parking lot of the daily meeting.

[victor-yanev]

QQ: instead of returning a flat number here, wouldn't it be better if we returned an Hbar object here?

Suggested change

	): number {
	): Hbar {

[victor-yanev]

Suggested change

	const estimatedTxFee = Math.round(
	(totalTxFeeInCents / currentNetworkExchangeRateInCents) * constants.HBAR_TO_TINYBAR_COEF,
	);
	const estimatedTxFee = Hbar.fromTinybars(Math.round(
	(totalTxFeeInCents / currentNetworkExchangeRateInCents) * constants.HBAR_TO_TINYBAR_COEF,
	));

[quiet-node]

That's a valid point. However, after trying it out, I found that it doesn't seem to provide much benefit and only adds complexity. Since estimatedTxFee is primarily used in two places—comparing it against the remaining budget and comparing it against spendingPlan.amountSpent—both deal with numbers. So, we would eventually need to convert it back to tinybars anyway.

- const exceedsLimit = ... spendingLimit.lt(spendingPlan.amountSpent + estimatedTxFee);
+ const exceedsLimit = ... spendingLimit.lt(spendingPlan.amountSpent + estimatedTxFee.toTinybars().toNumber());

- if (... this.remainingBudget.toTinybars().sub(estimatedTxFee).lt(0))
+ if (... this.remainingBudget.toTinybars().sub(estimatedTxFee.toTinybars()).lt(0))

Additionally, all the log statements would require conversions as well:

- this.logger.trace(`... estimatedTxFee=${estimatedTxFee}, ...`)
+ this.logger.trace(`... estimatedTxFee=${estimatedTxFee.toTinybars().toNumber()}, ...`)

So, for simplicity's sake, I believe keeping it as a number for now would be more efficient.

[sonarcloud]

Quality Gate failed

Failed conditions
C Reliability Rating on New Code (required ≥ A)

See analysis details on SonarCloud

Catch issues before they fail your Quality Gate with our IDE extension SonarLint