This repository has been archived by the owner on Nov 15, 2023. It is now read-only.
Make contract a separate runtime module #345
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sorpaas
reviewed
Jul 25, 2018
| dest: T::AccountId, | ||
| value: T::Balance, | ||
| gas_meter: &mut GasMeter<T>, | ||
| _data: Vec<u8>, |
There was a problem hiding this comment.
If I understood this, we don't pass _data to vm::execute or Ext yet because it's unimplemented, right?
And just a note on quadratic attacks -- it looks like we decide to put callstack directly on program stack, so in the future, using &[u8] might be more efficient and lifetime should work.
There was a problem hiding this comment.
Yeah, exactly, it is untackled issue right now. And I didn't delve into it.
And yes, in theory, we can directly read from/write to the caller memory.
But there is a complication with writing though. Maybe we will have to make a temporary copy. The reason for that is caller can't know the size of the return buffer before calling the callee, and thus, might want to allocate space after the return data size is known. This is an open research question right now.
| endowment: T::Balance, | ||
| gas_meter: &mut GasMeter<T>, | ||
| ctor: &[u8], | ||
| _data: &[u8], |
There was a problem hiding this comment.
We're already using &[u8] here. So I think it may be better to change above L51 to use &[u8] as well to keep it consistent.
There was a problem hiding this comment.
Also possibly:
- L237 and L250.
substrate/runtime/contract/src/lib.rs: L120, L128 and L217.substrate/runtime/contract/src/vm.rs: L65.
| ).map_err(|_| "vm execute returned error while create")? | ||
| }; | ||
|
|
||
| nested.overlay.set_code(&dest, exec_result.return_data().to_vec()); |
There was a problem hiding this comment.
In runtime/consensus/src/lib.rs:89, we can change set_code to take only &[u8]. This will avoid the to_vec copy here. Or a temporary solution before we properly fix quadratic attacks -- use exec_result.return_data directly because we don't need exec_result after this point.
| } | ||
|
|
||
| let to_balance = overlay.get_balance(dest); | ||
| if to_balance + value <= to_balance { |
There was a problem hiding this comment.
Just a possible confusion here: it looks like we define staking::Trait::Balance to be wrapping (non-panic), but we're using std traits Add/Sub etc, which by default is non-wrapping (panic). So if someone accidentally set staking::Trait::Balance to be, for example, usize. The code would panic.
Maybe it's worth considering to define another trait (like WrappingAdd?).
There was a problem hiding this comment.
You're right! Will use checked_add here and in the staking module.
substrate/runtime/contract/src/vm.rs
Outdated
| /// to just terminate quickly in some cases. | ||
| enum SpecialTrap { | ||
| /// Signals that trap was generated in response to call `ext_return` host function. | ||
| Return(Vec<u8>), |
There was a problem hiding this comment.
Just a note: we might want to avoid the extra copying here in the future. One way I can think of is to change this enum point to a region of the memory, and then like we do in parity-ethereum, directly wrap that memory as the return data.
There was a problem hiding this comment.
Yeah, I will add TODO about this!
substrate/runtime/contract/src/vm.rs
Outdated
| runtime: Runtime<T, E>, | ||
| run_err: Option<sandbox::Error>, | ||
| ) -> Result<ExecutionResult, Error> { | ||
| let mut return_data = Vec::new(); |
There was a problem hiding this comment.
Just a small grumble -- we can change this to:
let return_data = match (run_err, runtime.special_trap) {
(None, None) => Vec::new(),
(Some(sandbox::Error::Execution), Some(SpecialTrap::Return(rd))) => rd,
...
}
This avoids the mut and an extra stack item.
There was a problem hiding this comment.
Sure! The current construction used to make sense, but now direct assignemnt is a way to go.
|
@sorpaas thanks for your valuable feedback! @gavofyork Also unfortunately my paritytech/polkadot#345 (comment) was hidden but still might be relevant. |
# Conflicts: # demo/runtime/wasm/target/wasm32-unknown-unknown/release/demo_runtime.compact.wasm # demo/runtime/wasm/target/wasm32-unknown-unknown/release/demo_runtime.wasm # polkadot/runtime/wasm/target/wasm32-unknown-unknown/release/polkadot_runtime.compact.wasm # polkadot/runtime/wasm/target/wasm32-unknown-unknown/release/polkadot_runtime.wasm # substrate/executor/wasm/target/wasm32-unknown-unknown/release/runtime_test.compact.wasm # substrate/executor/wasm/target/wasm32-unknown-unknown/release/runtime_test.wasm # substrate/test-runtime/wasm/target/wasm32-unknown-unknown/release/substrate_test_runtime.compact.wasm # substrate/test-runtime/wasm/target/wasm32-unknown-unknown/release/substrate_test_runtime.wasm
gavofyork
approved these changes
Jul 29, 2018
|
On ice until we have runtime version incremented. #450 |
dvdplm
added a commit
that referenced
this pull request
Jul 30, 2018
* master: (86 commits) Make contract a separate runtime module (#345) Version bump (#450) DB-based blockchain data cache for light nodes (#251) Update libp2p again (#445) Update version on git head change (#444) Fix the public key of bootnode 3 (#441) Update libp2p (#442) Switch to the master branch of libp2p (#427) Export ws port 9944 and add doc (#440) Iterate over overlay to decide which keys to purge (#436) Exit signal gets its own trait (#433) Add docker image (#375) Reset peers.json if the content is not loadable (#405) Limit number of incoming connections (#391) Fix memory leaks in libp2p (#432) Do not queue empty blocks set for import (#431) 5 random fixes (#1) (#435) Chore: fix typo (#434) Prevent building invalid blocks (#430) Better logging for public key mismatch (#429) ...
gavofyork
pushed a commit
that referenced
this pull request
Jul 31, 2018
* decl_module and extract runtime mod
* Invert dependency staking←→contract
* Remove CodeOf
* Remove StorageOf and move double_map
* Comment staking test
* Clean
* Add gas_price and gas_limit
* Commit.
* Renames
* Params
* WIP
* Rename transfer to call
* WIP
* Rebuild binaries.
* WIP
* Backport ctro changes
* Call wiring
* Commit overlay.
* Rename merge → commit, into_state → ..._change_set
* WIP
* Contract creation routines
* Set code of the created account.
* Fix the ID of `create` Call
* Fix most of the warning.
* Add the simplest test in the contract crate
* Transfers work!
* Add contract_create test.
* Clean
* Add top-level create test
* Clean a bit.
* Pass gas_limit and data via create.
* Introduce OnAccountKill callback in staking
* Hook up OnAccountKill
* Comments
* Pay for gas.
* Refund unused gas in call
* Tests for zero call and zero endownment.
* Add todo about rewriting docs
* Pay for gas in create transactions
* Fix refunds
* Clean unrelevant comments
* fixup! Fix refunds
* fixup! Clean unrelevant comments
* Move DetermineContractAddress to contract
Also restore account removal test
* fixup! Clean unrelevant comments
* Inline effect_transfer, remove effect_create
Remove account_db!
* Use own new_test_ext.
* Don't account for liability
* Add some docs
* Move contract_fee into contract module
* Take GasMeter in vm::execute
* Use GasMeter throughout contract module for meter
* gas module refactoring
* Clean
* Add base call fee
* note about gas price should be taken from storage
* Add base fee for create
* Rename send → call
* Clean
* Take fee expressed in dots in gas
* Add Checked{Add,Sub,Mul,Div} to SimpleArithmetic
* Make Gas generic
* Store {call,create}_base_fee in storage
* Clean
* Rename buy_gas
* Store gas_price in the storage
* Remove unneeded comment.
* Bail out if contract already has code.
* Todos
* Refund even if top-level contract fails.
* Fix error msg
* Fix caller issue
* Extract tests module
* Add max_depth var in storage
* Remove left over gas_left
* Refactor exec
* Add test oog test.
* set_free_balance_creating
* Docs and comments.
* Update storage roots because of ContractFee move
* Rebuild binaries.
* Simplify vm code.
* Wrapping.
* Refactor a bit.
* Typo
* UpdateBalanceOutcome enum
* Style grumbles.
* Rebuild binaries.
* Always consume the given amount of gas.
* [skip ci] endownment → endowment
* Rename `AccountId` generic in on_account_kill
* Fix Cargo.lock
* Refine docs for gas meter.
* [skip ci] Add comments for gas module
* Directly assign to `return_data` at declaration
* Use slices instead of vecs to pass the input data
* Add todo about passing return data without copy
* Use checked_add instead of add with overflow
* Use return_data directly.
* Rebuild binaries.
* Rebuild binaries.
gavofyork
added a commit
that referenced
this pull request
Jul 31, 2018
* Fix up session phase. * Version bump. * Version fix * Fix session rotation properly and add test * Make contract a separate runtime module (#345) * decl_module and extract runtime mod * Invert dependency staking←→contract * Remove CodeOf * Remove StorageOf and move double_map * Comment staking test * Clean * Add gas_price and gas_limit * Commit. * Renames * Params * WIP * Rename transfer to call * WIP * Rebuild binaries. * WIP * Backport ctro changes * Call wiring * Commit overlay. * Rename merge → commit, into_state → ..._change_set * WIP * Contract creation routines * Set code of the created account. * Fix the ID of `create` Call * Fix most of the warning. * Add the simplest test in the contract crate * Transfers work! * Add contract_create test. * Clean * Add top-level create test * Clean a bit. * Pass gas_limit and data via create. * Introduce OnAccountKill callback in staking * Hook up OnAccountKill * Comments * Pay for gas. * Refund unused gas in call * Tests for zero call and zero endownment. * Add todo about rewriting docs * Pay for gas in create transactions * Fix refunds * Clean unrelevant comments * fixup! Fix refunds * fixup! Clean unrelevant comments * Move DetermineContractAddress to contract Also restore account removal test * fixup! Clean unrelevant comments * Inline effect_transfer, remove effect_create Remove account_db! * Use own new_test_ext. * Don't account for liability * Add some docs * Move contract_fee into contract module * Take GasMeter in vm::execute * Use GasMeter throughout contract module for meter * gas module refactoring * Clean * Add base call fee * note about gas price should be taken from storage * Add base fee for create * Rename send → call * Clean * Take fee expressed in dots in gas * Add Checked{Add,Sub,Mul,Div} to SimpleArithmetic * Make Gas generic * Store {call,create}_base_fee in storage * Clean * Rename buy_gas * Store gas_price in the storage * Remove unneeded comment. * Bail out if contract already has code. * Todos * Refund even if top-level contract fails. * Fix error msg * Fix caller issue * Extract tests module * Add max_depth var in storage * Remove left over gas_left * Refactor exec * Add test oog test. * set_free_balance_creating * Docs and comments. * Update storage roots because of ContractFee move * Rebuild binaries. * Simplify vm code. * Wrapping. * Refactor a bit. * Typo * UpdateBalanceOutcome enum * Style grumbles. * Rebuild binaries. * Always consume the given amount of gas. * [skip ci] endownment → endowment * Rename `AccountId` generic in on_account_kill * Fix Cargo.lock * Refine docs for gas meter. * [skip ci] Add comments for gas module * Directly assign to `return_data` at declaration * Use slices instead of vecs to pass the input data * Add todo about passing return data without copy * Use checked_add instead of add with overflow * Use return_data directly. * Rebuild binaries. * Rebuild binaries. * Docs
lamafab
pushed a commit
to lamafab/substrate
that referenced
this pull request
Jun 16, 2020
* Erasure encoding availability initial commit * Modifications to availability store to keep chunks as well as reconstructed blocks and extrinsics. * Gossip messages containig signed erasure chunks. * Requesting eraure chunks with polkadot-specific messages. * Validation of erasure chunk messages. * Apply suggestions from code review Co-Authored-By: Luke Schoen <ltfschoen@users.noreply.github.com> * Fix build after a merge * Gossip erasure chunk messages under their own topic * erasure_chunks should use the appropriate topic * Updates Cargo.lock * Fixes after merge * Removes a couple of leftover pieces of code * Fixes simple stuff from review * Updates erasure and storage for more flexible logic * Changes validation and candidate receipt production. * Adds add_erasure_chunks method * Fixes most of the nits * Better validate_collation and validate_receipt functions * Fixes the tests * Apply suggestions from code review Co-Authored-By: Robert Habermeier <rphmeier@gmail.com> * Removes unwrap() calls * Removes ErasureChunks primitive * Removes redundant fields from ErasureChunk struct * AvailabilityStore should store CandidateReceipt * Changes the way chunk messages are imported and validated. * Availability store now stores a validator_index and n_validators for each relay_parent. * Availability store now also stores candidate receipts. * Removes importing chunks in the table and moves it into network gossip validation. * Validation of erasure messages id done against receipts that are stored in the availability store. * Correctly compute topics for erasure messages * Removes an unused parameter * Refactors availability db querying into a helper * Adds the apis described in the writeup * Adds a runtime api to extract erasure roots form raw extrinsics. * Adds a barebone BlockImport impl for avalability store * Adds the implementation of the availability worker * Fix build after the merge with master. * Make availability store API async * Bring back the default wasmtime feature * Lines width * Bump runtime version * Formatting and dead code elimination * some style nits (#1) * More nits and api cleanup * Disable wasm CI for availability-store * Another nit * Formatting
liuchengxu
added a commit
to chainx-org/substrate
that referenced
this pull request
Aug 23, 2021
* Add script for generating the keys for genesis validators * Regenerate genesis validators keys * Split out genesis assets module * Rename to genesis_assets() * Add vesting key * Add mainnet genesis * Deduct the genesis endowed from vesting account * . * . * . . * Add FIXME * .
liuchengxu
pushed a commit
to autonomys/substrate
that referenced
this pull request
Jun 3, 2022
Documentation updates, primarily around consensus
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The main theme of this PR is extracting contract module from staking module, and lifting it to a standalone module which has it's own entrypoints:
callandcreate.Now, the module relations are inverted: now
contractmodule usesstakingmodule only for transfers. This is in contrast how it was before:stakinginvokedcontractmodule whenever there is a code in account to whichtransferis happening. This change allows us to avoid pollutingstakingmodule with contract concepts (such as gas limits, etc).There are however a few complications:
stakingcan kill accounts, we need to provide a way for notifying other modules of such kills. For that reasonOnAccountKillis added tostaking::Trait.contractcrate. However, we still need to have an ability to issue ephemeral (which can be reverted) transfers on the ephemeral storage. For that reasoneffect_transfer/effect_createlogic is duplicated in the contract module.Along with that numerous changes were made, such as:
However, I would say there are still areas to improve, including:
I'm planning to address these issues in the following PRs. This PR already got pretty big.