fix(proxyd): separate context for tx validation middleware (#567)

charlesma4 · web-flow · commit 10ba4dd73d44 · 2026-03-12T23:37:36.000+05:30
* fix(proxyd): separate context for tx validation  middleware

* update comment

* Remove stale test

* Readd test to check that context is NOT canceled
diff --git a/proxyd/tx_validation_middleware.go b/proxyd/tx_validation_middleware.go
@@ -80,7 +80,9 @@ func NewTxValidationClient(timeoutSeconds int) *TxValidationClient {
 // Validate performs the HTTP request to the validation middleware service.
 // Returns a map of tx hashes to unauthorized status.
 func (c *TxValidationClient) Validate(ctx context.Context, endpoint string, payload []byte) (map[string]bool, error) {
-	ctx, cancel := context.WithTimeout(ctx, c.timeout)
+	// Detach from the request context so that client disconnects don't cancel
+	// the middleware request, allowing transactions to bypass validation when failing open.
+	ctx, cancel := context.WithTimeout(context.WithoutCancel(ctx), c.timeout)
 	defer cancel()
 
 	req, err := http.NewRequestWithContext(ctx, "POST", endpoint, bytes.NewBuffer(payload))
diff --git a/proxyd/tx_validation_middleware_test.go b/proxyd/tx_validation_middleware_test.go
@@ -293,6 +293,33 @@ func TestTxValidationClient_ErrorResponse(t *testing.T) {
 	require.Equal(t, ErrInternal, err)
 }
 
+func TestTxValidationClient_CanceledParentContextStillValidates(t *testing.T) {
+	requestReachedServer := make(chan struct{}, 1)
+
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		requestReachedServer <- struct{}{}
+		time.Sleep(50 * time.Millisecond)
+		w.Header().Set("Content-Type", "application/json")
+		w.WriteHeader(http.StatusOK)
+		_, _ = w.Write([]byte(`{"unauthorized": {}}`))
+	}))
+	defer server.Close()
+
+	ctx, cancel := context.WithCancel(context.Background())
+	cancel() // Cancel parent request context before validation call
+
+	client := NewTxValidationClient(5)
+	unauthorized, err := client.Validate(ctx, server.URL, []byte(`{}`))
+	require.NoError(t, err)
+	require.Empty(t, unauthorized)
+
+	select {
+	case <-requestReachedServer:
+	case <-time.After(500 * time.Millisecond):
+		t.Fatal("validation request did not reach server")
+	}
+}
+
 func TestDecodeSignedTx(t *testing.T) {
 	tx := createSignedTestTransaction(t)
 	txBytes, err := tx.MarshalBinary()
@@ -322,24 +349,6 @@ func TestDecodeSignedTx_Missing0xPrefix(t *testing.T) {
 	require.Error(t, err)
 }
 
-func TestTxValidationClient_CanceledContext(t *testing.T) {
-	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		time.Sleep(100 * time.Millisecond)
-		w.Header().Set("Content-Type", "application/json")
-		w.WriteHeader(http.StatusOK)
-		_, _ = w.Write([]byte(`{"unauthorized": {}}`))
-	}))
-	defer server.Close()
-
-	ctx, cancel := context.WithCancel(context.Background())
-	cancel() // Cancel immediately
-
-	client := NewTxValidationClient(5)
-	_, err := client.Validate(ctx, server.URL, []byte(`{}`))
-	require.Error(t, err)
-	require.True(t, errors.Is(err, context.Canceled))
-}
-
 func TestValidateTransactions_CanceledContext(t *testing.T) {
 	tx := createSignedTestTransaction(t)
 
