Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix internal error in get_module #1380

Closed
wants to merge 1 commit into from
Closed

Fix internal error in get_module #1380

wants to merge 1 commit into from

Conversation

sisuresh
Copy link
Contributor

@sisuresh sisuresh commented Apr 3, 2024
edited
Loading

What

get_module assumes the wasm blob was added to the module cache when it iterated over storage, but the wasm blob could be missing from storage if it wasn't included in the footprint. Return the same error we return today when the wasm blob is missing.

@graydon graydon enabled auto-merge April 3, 2024 23:39
dmkozh
dmkozh reviewed Apr 3, 2024
View reviewed changes
soroban-env-host/src/vm/module_cache.rs
ScErrorCode::InternalError,
"module cache missing contract",
&[],
Err(host.decorate_contract_code_storage_error(
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What happens if a Wasm key is in the footprint, but the entry itself does not exist? IIUC we would still end up here and return the footprint error, which is not correct. The most comprehensive way to report an error here would probably be to do a storage lookup. If the Wasm is in the footprint, but storage returns None, then we can state that non-existent Wasm has been accessed. Otherwise, we can state that an entry outside of the footprint is being accessed. It's a bit of additional metered work, but since it only happens on the error path, I don't think it's an issue.

Copy link
Contributor

@dmkozh dmkozh Apr 3, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually there is yet another scenario, where Wasm was uploaded after cache has been created. @graydon will look into that as well. Probably we should wait with this PR until then, because I'm not sure what the error logic should be.

@graydon graydon mentioned this pull request Apr 4, 2024
Merged
@graydon graydon disabled auto-merge April 4, 2024 06:22
@graydon
Copy link
Contributor

graydon commented Apr 4, 2024

Added PR #1382 which covers this more thoroughly. Closing in favor of it -- reopen if you disagree!

@graydon graydon closed this Apr 4, 2024
github-merge-queue bot pushed a commit that referenced this pull request Apr 4, 2024
@graydon
Module cache upload and run (#1382)
48f9dff 
This covers a two cases I failed to cover in #1375 that @dmkozh and
@sisuresh have identified:

- User calls contract without putting wasm for call in footprint or
storage
- User calls `upload_contract` (or its equivalent,
`update_current_contract_wasm`) mid-execution and then calls the
updated-or-new contract

As well as a third case that is, as far as I know, not possible; but it
seems to me it doesn't hurt to be defensive since someone could make it
possible in the future fairly easily and forget to cover this case in
the cache code:

  - User deletes wasm in transaction, and then tries to call it.

As always, there is probably room for a bit more testing here, but I
wanted to get these cases covered and fixed asap.

This should make-redundant PR #1380
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dmkozh dmkozh dmkozh left review comments

@graydon graydon graydon approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@sisuresh @graydon @dmkozh