Gracefully handle payload not available error

Author: dhaidashenko

core/capabilities/remote/executable/request/client_request.go

@@ -35,19 +35,20 @@ type clientResponse struct {
 }
 
 type ClientRequest struct {
-	id                  string
-	cancelFn            context.CancelFunc
-	responseCh          chan clientResponse
-	createdAt           time.Time
-	responseIDCount     map[[32]byte]int
-	meteringResponses   map[[32]byte][]commoncap.MeteringNodeDetail
-	errorCount          map[string]int
-	totalErrorCount     int
-	responseReceived    map[p2ptypes.PeerID]bool
-	lggr                logger.Logger
-	ocr3Configs         map[string]ocrtypes.ContractConfig
-	workflowExecutionID string
-	referenceID         string
+	id                       string
+	cancelFn                 context.CancelFunc
+	responseCh               chan clientResponse
+	createdAt                time.Time
+	responseIDCount          map[[32]byte]int
+	meteringResponses        map[[32]byte][]commoncap.MeteringNodeDetail
+	errorCount               map[string]int
+	totalErrorCount          int
+	payloadNotAvailableCount int
+	responseReceived         map[p2ptypes.PeerID]bool
+	lggr                     logger.Logger
+	ocr3Configs              map[string]ocrtypes.ContractConfig
+	workflowExecutionID      string
+	referenceID              string
 
 	requiredIdenticalResponses int
 	remoteNodeCount            int
@@ -386,6 +387,16 @@ func (c *ClientRequest) OnMessage(_ context.Context, msg *types.MessageBody) err
 			c.lggr.Warn("received multiple different errors for the same request, number of different errors received: %d", len(c.errorCount))
 		}
 
+		if commoncap.ErrResponsePayloadNotAvailable.Is(errors.New(msg.ErrorMsg)) {
+			c.payloadNotAvailableCount++
+			if c.payloadNotAvailableCount == c.remoteNodeCount-c.requiredIdenticalResponses+1 {
+				// return an error to indicate unexpected state, but do not send an error as we might still receive a response with valid attestation.
+				return fmt.Errorf("unexpected state: received %d payload not available responses, while max allowed is %d. This means a bug in the code, please investigate",
+					c.payloadNotAvailableCount, c.remoteNodeCount-c.requiredIdenticalResponses)
+			}
+			return nil
+		}
+
 		if c.errorCount[msg.ErrorMsg] == c.requiredIdenticalResponses {
 			c.sendResponse(clientResponse{Err: fmt.Errorf("%s : %s", msg.Error, msg.ErrorMsg)})
 		} else if c.totalErrorCount == c.remoteNodeCount-c.requiredIdenticalResponses+1 {
@@ -421,7 +432,7 @@ func (c *ClientRequest) verifyAttestation(resp commoncap.CapabilityResponse, met
 	}
 
 	reportData := commoncap.ResponseToReportData(c.workflowExecutionID, c.referenceID, resp.Payload.Value, metering.SpendUnit, metering.SpendValue)
-	sigData := ocr2key.ReportToSigData3(attestation.ConfigDigest, attestation.SequenceNumber, reportData)
+	sigData := ocr2key.ReportToSigData3(attestation.ConfigDigest, attestation.SequenceNumber, reportData[:])
 	signed := make([]bool, len(cfg.Signers))
 	for _, sig := range attestation.Sigs {
 		if int(sig.Signer) > len(cfg.Signers) {

core/capabilities/remote/executable/request/client_request_internal_test.go

@@ -38,9 +38,9 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 
 	reportData := commoncap.ResponseToReportData(workflowExecutionID, referenceID, valueBytes, spendUnit, spendValue)
 
-	sig1, err := kb1.Sign3(configDigest, seqNr, reportData)
+	sig1, err := kb1.Sign3(configDigest, seqNr, reportData[:])
 	require.NoError(t, err)
-	sig2, err := kb2.Sign3(configDigest, seqNr, reportData)
+	sig2, err := kb2.Sign3(configDigest, seqNr, reportData[:])
 	require.NoError(t, err)
 
 	ocr3Configs := map[string]ocrtypes.ContractConfig{
@@ -77,7 +77,7 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 
 	t.Run("nil ocr3Configs returns error", func(t *testing.T) {
 		cNil := &ClientRequest{workflowExecutionID: workflowExecutionID, referenceID: referenceID, lggr: logger.Test(t), ocr3Configs: nil}
-		err := cNil.verifyAttestation(validResp)
+		err := cNil.verifyAttestation(validResp, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "OCR3 configs not provided")
 	})
@@ -89,7 +89,7 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			lggr:                logger.Test(t),
 			ocr3Configs:         map[string]ocrtypes.ContractConfig{},
 		}
-		err := cBad.verifyAttestation(validResp)
+		err := cBad.verifyAttestation(validResp, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "not found")
 	})
@@ -106,34 +106,11 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			},
 			Payload: &anypb.Any{TypeUrl: "type.googleapis.com/values.v1.Map", Value: valueBytes},
 		}
-		err := c.verifyAttestation(respFewSigs)
+		err := c.verifyAttestation(respFewSigs, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "not enough signatures")
 	})
 
-	t.Run("unexpected number of metering records returns error", func(t *testing.T) {
-		respBadMetering := commoncap.CapabilityResponse{
-			Metadata: commoncap.ResponseMetadata{
-				Metering: []commoncap.MeteringNodeDetail{
-					{SpendUnit: spendUnit, SpendValue: spendValue},
-					{SpendUnit: "other", SpendValue: "99"},
-				},
-				OCRAttestation: &commoncap.ResponseOCRAttestation{
-					ConfigDigest:   configDigest,
-					SequenceNumber: seqNr,
-					Sigs: []commoncap.AttributedSignature{
-						{Signer: 0, Signature: sig1},
-						{Signer: 1, Signature: sig2},
-					},
-				},
-			},
-			Payload: &anypb.Any{TypeUrl: "type.googleapis.com/values.v1.Map", Value: valueBytes},
-		}
-		err := c.verifyAttestation(respBadMetering)
-		require.Error(t, err)
-		require.Contains(t, err.Error(), "unexpected number of metering records")
-	})
-
 	t.Run("invalid signer index returns error", func(t *testing.T) {
 		respBadSigner := commoncap.CapabilityResponse{
 			Metadata: commoncap.ResponseMetadata{
@@ -149,7 +126,7 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			},
 			Payload: &anypb.Any{TypeUrl: "type.googleapis.com/values.v1.Map", Value: valueBytes},
 		}
-		err := c.verifyAttestation(respBadSigner)
+		err := c.verifyAttestation(respBadSigner, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "invalid signer index")
 	})
@@ -169,7 +146,7 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			},
 			Payload: &anypb.Any{TypeUrl: "type.googleapis.com/values.v1.Map", Value: valueBytes},
 		}
-		err := c.verifyAttestation(respDupSig)
+		err := c.verifyAttestation(respDupSig, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "duplicate signature")
 	})
@@ -192,7 +169,7 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			},
 			Payload: &anypb.Any{TypeUrl: "type.googleapis.com/values.v1.Map", Value: valueBytes},
 		}
-		err = c.verifyAttestation(respBadSig)
+		err = c.verifyAttestation(respBadSig, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "invalid signature")
 	})
@@ -213,13 +190,13 @@ func Test_ClientRequest_VerifyAttestation(t *testing.T) {
 			},
 			Payload: &anypb.Any{TypeUrl: "x", Value: wrongBytes},
 		}
-		err := c.verifyAttestation(respWrongPayload)
+		err := c.verifyAttestation(respWrongPayload, validResp.Metadata.Metering[0])
 		require.Error(t, err)
 		require.Contains(t, err.Error(), "invalid signature")
 	})
 
 	t.Run("valid attestation succeeds", func(t *testing.T) {
-		err := c.verifyAttestation(validResp)
+		err := c.verifyAttestation(validResp, validResp.Metadata.Metering[0])
 		require.NoError(t, err)
 	})
 }

core/capabilities/remote/executable/request/client_request_test.go

@@ -336,29 +336,15 @@ func Test_ClientRequest_MessageValidation(t *testing.T) {
 		assert.Equal(t, resp, values.NewString("response1"))
 	})
 	t.Run("Execute Request With Valid Attestation", func(t *testing.T) {
-		ctx := t.Context()
-		capabilityPeers, capDonInfo, capInfo := capabilityDon(t, 4, 1)
+		const F = 1
+		const N = 3*F + 1
+		capabilityPeers, capDonInfo, capInfo := capabilityDon(t, N, F)
 
 		configDigest := ocrtypes.ConfigDigest{1, 2, 3, 4, 5}
 		kb1, err := ocr2key.New(corekeys.EVM)
 		require.NoError(t, err)
 		kb2, err := ocr2key.New(corekeys.EVM)
 		require.NoError(t, err)
-		dispatcher := &clientRequestTestDispatcher{msgs: make(chan *types.MessageBody, 100)}
-		req, err := request.NewClientExecuteRequest(ctx, logger.Test(t), capabilityRequest, capInfo,
-			workflowDonInfo, dispatcher, 10*time.Minute, nil, "", map[string]ocrtypes.ContractConfig{
-				pb.OCR3ConfigDefaultKey: {
-					ConfigDigest: configDigest,
-					Signers:      []ocrtypes.OnchainPublicKey{kb1.PublicKey(), kb2.PublicKey()},
-					F:            1,
-				},
-			})
-		require.NoError(t, err)
-		defer req.Cancel(errors.New("test end"))
-
-		<-dispatcher.msgs
-		<-dispatcher.msgs
-		assert.Empty(t, dispatcher.msgs)
 
 		seqNr := uint64(100)
 
@@ -372,9 +358,9 @@ func Test_ClientRequest_MessageValidation(t *testing.T) {
 		spendUnit, spendValue := "testunit", "42"
 		reportData := commoncap.ResponseToReportData(capabilityRequest.Metadata.WorkflowExecutionID, capabilityRequest.Metadata.ReferenceID, payloadAsAny.Value, spendUnit, spendValue)
 
-		sig1, err := kb1.Sign3(configDigest, seqNr, reportData)
+		sig1, err := kb1.Sign3(configDigest, seqNr, reportData[:])
 		require.NoError(t, err)
-		sig2, err := kb2.Sign3(configDigest, seqNr, reportData)
+		sig2, err := kb2.Sign3(configDigest, seqNr, reportData[:])
 		require.NoError(t, err)
 
 		rawResponseWithAttestation, err := pb.MarshalCapabilityResponse(commoncap.CapabilityResponse{
@@ -395,31 +381,135 @@ func Test_ClientRequest_MessageValidation(t *testing.T) {
 		})
 		require.NoError(t, err)
 
-		msg := &types.MessageBody{
-			CapabilityId:    capInfo.ID,
-			CapabilityDonId: capDonInfo.ID,
-			CallerDonId:     workflowDonInfo.ID,
-			Method:          types.MethodExecute,
-			Payload:         rawResponseWithAttestation,
-			MessageId:       []byte("messageID"),
+		ocrConfigs := map[string]ocrtypes.ContractConfig{
+			pb.OCR3ConfigDefaultKey: {
+				ConfigDigest: configDigest,
+				Signers:      []ocrtypes.OnchainPublicKey{kb1.PublicKey(), kb2.PublicKey()},
+				F:            F,
+			},
 		}
-		msg.Sender = capabilityPeers[0][:]
-		err = req.OnMessage(ctx, msg)
-		require.NoError(t, err)
 
-		response := <-req.ResponseChan()
-		capResponse, err := pb.UnmarshalCapabilityResponse(response.Result)
-		require.NoError(t, err)
+		assertValidResponse := func(t *testing.T, result []byte) {
+			capResponse, err := pb.UnmarshalCapabilityResponse(result)
+			require.NoError(t, err)
 
-		var pbValue pbvalues.Value
-		require.NoError(t, capResponse.Payload.UnmarshalTo(&pbValue))
-		receivedValue, err := values.FromProto(&pbValue)
-		require.NoError(t, err)
+			var pbValue pbvalues.Value
+			require.NoError(t, capResponse.Payload.UnmarshalTo(&pbValue))
+			receivedValue, err := values.FromProto(&pbValue)
+			require.NoError(t, err)
+
+			var receivedMap map[string]int
+			require.NoError(t, receivedValue.UnwrapTo(&receivedMap))
+
+			assert.Equal(t, 42, receivedMap["number"])
+		}
 
-		var receivedMap map[string]int
-		require.NoError(t, receivedValue.UnwrapTo(&receivedMap))
+		t.Run("succeeds on first peer with valid attestation", func(t *testing.T) {
+			ctx := t.Context()
 
-		assert.Equal(t, 42, receivedMap["number"])
+			dispatcher := &clientRequestTestDispatcher{msgs: make(chan *types.MessageBody, 100)}
+			req, err := request.NewClientExecuteRequest(ctx, logger.Test(t), capabilityRequest, capInfo,
+				workflowDonInfo, dispatcher, 10*time.Minute, nil, "", ocrConfigs)
+			require.NoError(t, err)
+			defer req.Cancel(errors.New("test end"))
+
+			for range N {
+				<-dispatcher.msgs
+			}
+
+			assert.Empty(t, dispatcher.msgs)
+
+			msg := &types.MessageBody{
+				CapabilityId:    capInfo.ID,
+				CapabilityDonId: capDonInfo.ID,
+				CallerDonId:     workflowDonInfo.ID,
+				Method:          types.MethodExecute,
+				Payload:         rawResponseWithAttestation,
+				MessageId:       []byte("messageID"),
+			}
+			msg.Sender = capabilityPeers[0][:]
+			err = req.OnMessage(ctx, msg)
+			require.NoError(t, err)
+
+			response := <-req.ResponseChan()
+			assertValidResponse(t, response.Result)
+		})
+
+		t.Run("2F peers return ErrResponsePayloadNotAvailable then success", func(t *testing.T) {
+			ctx := t.Context()
+			dispatcher := &clientRequestTestDispatcher{msgs: make(chan *types.MessageBody, 100)}
+			req, err := request.NewClientExecuteRequest(ctx, logger.Test(t), capabilityRequest, capInfo,
+				workflowDonInfo, dispatcher, 10*time.Minute, nil, "", ocrConfigs)
+			require.NoError(t, err)
+			defer req.Cancel(errors.New("test end"))
+
+			for range N {
+				<-dispatcher.msgs
+			}
+
+			assert.Empty(t, dispatcher.msgs)
+
+			for i := range 2 * F {
+				msgNA := &types.MessageBody{
+					CapabilityId:    capInfo.ID,
+					CapabilityDonId: capDonInfo.ID,
+					CallerDonId:     workflowDonInfo.ID,
+					Method:          types.MethodExecute,
+					MessageId:       []byte("messageID"),
+					Error:           types.Error_INTERNAL_ERROR,
+					ErrorMsg:        commoncap.ErrResponsePayloadNotAvailable.Error(),
+				}
+				msgNA.Sender = capabilityPeers[i][:]
+				require.NoError(t, req.OnMessage(ctx, msgNA))
+			}
+
+			msgOK := &types.MessageBody{
+				CapabilityId:    capInfo.ID,
+				CapabilityDonId: capDonInfo.ID,
+				CallerDonId:     workflowDonInfo.ID,
+				Method:          types.MethodExecute,
+				Payload:         rawResponseWithAttestation,
+				MessageId:       []byte("messageID"),
+			}
+			msgOK.Sender = capabilityPeers[2*F][:]
+			require.NoError(t, req.OnMessage(ctx, msgOK))
+
+			response := <-req.ResponseChan()
+			assertValidResponse(t, response.Result)
+		})
+
+		t.Run("2F+1 peers return ErrResponsePayloadNotAvailable", func(t *testing.T) {
+			ctx := t.Context()
+			dispatcher := &clientRequestTestDispatcher{msgs: make(chan *types.MessageBody, 100)}
+			req, err := request.NewClientExecuteRequest(ctx, logger.Test(t), capabilityRequest, capInfo,
+				workflowDonInfo, dispatcher, 10*time.Minute, nil, "", ocrConfigs)
+			require.NoError(t, err)
+			defer req.Cancel(errors.New("test end"))
+
+			for range N {
+				<-dispatcher.msgs
+			}
+
+			assert.Empty(t, dispatcher.msgs)
+
+			noPayloadMsg := types.MessageBody{
+				CapabilityId:    capInfo.ID,
+				CapabilityDonId: capDonInfo.ID,
+				CallerDonId:     workflowDonInfo.ID,
+				Method:          types.MethodExecute,
+				MessageId:       []byte("messageID"),
+				Error:           types.Error_INTERNAL_ERROR,
+				ErrorMsg:        commoncap.ErrResponsePayloadNotAvailable.Error(),
+			}
+
+			for i := range 2 * F {
+				noPayloadMsg.Sender = capabilityPeers[i][:]
+				require.NoError(t, req.OnMessage(ctx, &noPayloadMsg))
+			}
+
+			noPayloadMsg.Sender = capabilityPeers[2*F][:]
+			require.Error(t, req.OnMessage(ctx, &noPayloadMsg))
+		})
 	})
 
 	t.Run("Executes full schedule", func(t *testing.T) {

core/scripts/go.mod

@@ -46,8 +46,8 @@ require (
 	github.com/shopspring/decimal v1.4.0
 	github.com/smartcontractkit/chainlink-automation v0.8.1
 	github.com/smartcontractkit/chainlink-ccip v0.1.1-solana.0.20260317185256-d5f7db87ae70
-	github.com/smartcontractkit/chainlink-common v0.10.1-0.20260319170028-82a189c9c1bc
-	github.com/smartcontractkit/chainlink-common/keystore v1.0.3-0.20260319170028-82a189c9c1bc
+	github.com/smartcontractkit/chainlink-common v0.10.1-0.20260325173120-bbf92524d041
+	github.com/smartcontractkit/chainlink-common/keystore v1.0.3-0.20260319174204-76aac329aab9
 	github.com/smartcontractkit/chainlink-data-streams v0.1.12
 	github.com/smartcontractkit/chainlink-deployments-framework v0.86.3
 	github.com/smartcontractkit/chainlink-evm v0.3.4-0.20260318010722-59d4165024f1