6678 assetRegistry through walletFactory upgrade #7111
Conversation
turadg
force-pushed
the
6678-walletFactory-assetRegistry
branch
from
8c12623 to
71a1db7
Compare
Datadog ReportBranch report: ✅ |
turadg
changed the title
turadg
force-pushed
the
6678-walletFactory-assetRegistry
branch
from
71a1db7 to
e4c984b
Compare
| await tryBody().catch(err => handleError(err)); | ||
| await tryBody().catch(err => { | ||
| handleError(err); | ||
| // propagate to caller |
There was a problem hiding this comment.
If the caller is a bridge handler, I'm not sure throwing is allowed. Is there something higher up that deals with that?
| want: {}, | ||
| }, | ||
| }); | ||
| await t.throwsAsync( |
| }, | ||
| proposal: {}, | ||
| }), | ||
| { message: '"nameKey" not found: "not-present"' }, |
There was a problem hiding this comment.
nameKey here should be instance, I think. (orthogonal to this PR)
There was a problem hiding this comment.
I think it comes from NameHub https://github.com/Agoric/agoric-sdk/blob/master/packages/vats/src/nameHub.js#L23
| proposal: {}, | ||
| }), | ||
| { | ||
| message: 'target has no method "makeGiveMintedInvitation ", has []', |
There was a problem hiding this comment.
the has [] is likely to change when #6570 is fixed.
| * Make a registry for use by the wallet instances. | ||
| * | ||
| * This doesn't need to persist durably because the `assetPublisher` has a | ||
| * "pinned" topic and call togetAssetSubscription gets a fresh stream of all the |
There was a problem hiding this comment.
| * "pinned" topic and call togetAssetSubscription gets a fresh stream of all the | |
| * "pinned" topic and call to getAssetSubscription gets a fresh stream of all the |
|
|
||
| ({ bank } = makeFakeBankKit([])); | ||
| ); | ||
| zoePK.resolve(zoeService); |
|
|
||
| return true; | ||
| }, | ||
|
|
||
| testOfferV1: async () => { | ||
| // If this doesn't throw, the offer succeeded. | ||
| // I tried to also check vstorage but it doesn't always update in time. |
There was a problem hiding this comment.
yeah... lack of a return promise from setValue makes coordinating that sort of thing nearly impossible.
| @@ -72,8 +71,11 @@ test('bridge handler', async t => { | |||
| ), | |||
| blockTime: 0, | |||
| blockHeight: 0, | |||
| }; | |||
| assert(t.context.sendToBridge); | |||
| await t.throwsAsync(t.context.sendToBridge(validMsg), { | |||
There was a problem hiding this comment.
again, I'd like to be sure the bridge protocol doesn't do something drastic like crashing the kernel when a bridge call throws / rejects.
There was a problem hiding this comment.
ok... found it. Nothing drastic. Just an unhandled rejection.
agoric-sdk/packages/vats/src/bridge.js
Line 40 in 748d52c
There was a problem hiding this comment.
The upgrade test changes look fine to me. The rest of it flew right past me.
@dckc do you know what it's about?
| want: {}, | ||
| }, | ||
| }); | ||
| await t.throwsAsync( |
There was a problem hiding this comment.
Why are some of the t.throwsAsync() calls missing a message to match?
There was a problem hiding this comment.
I started adding them after a bit. The errors messages are tested by the vstorage check.
If we commit to this throing from executeOffer, I can take out the redundant vstorage checks and have a test focused on vstorage writing out when there's an error. The different errors needn't all be checked in vstorage.
| */ | ||
| handleBridgeAction(actionCapData, canSpend = false) { | ||
| const { publicMarshaller } = shared; | ||
|
|
||
| const { offers } = this.facets; | ||
|
|
||
| return E.when( | ||
| E.when( |
| @@ -171,7 +175,7 @@ export const prepare = async (zcf, privateArgs, baggage) => { | |||
| const wallet = walletsByAddress.get(obj.owner); // or throw | |||
|
|
|||
| console.log('walletFactory:', { wallet, actionCapData }); | |||
| return E(wallet).handleBridgeAction(actionCapData, canSpend); | |||
| E(wallet).handleBridgeAction(actionCapData, canSpend); | |||
There was a problem hiding this comment.
Surprised this doesn't need a void prefix, E(foo).bar() will always return a promise.
There was a problem hiding this comment.
Doesn't affect runtime and doesn't affect CI unless AGORIC_ESLINT_TYPES is enabled. But it's not #5788
You're right it would be better and I ran locally with that enabled to catch these:
Amending and force pushing now.
| @@ -171,7 +175,7 @@ export const prepare = async (zcf, privateArgs, baggage) => { | |||
| const wallet = walletsByAddress.get(obj.owner); // or throw | |||
|
|
|||
| console.log('walletFactory:', { wallet, actionCapData }); | |||
| return E(wallet).handleBridgeAction(actionCapData, canSpend); | |||
| E(wallet).handleBridgeAction(actionCapData, canSpend); | |||
| * { updated: 'balance'; currentAmount: Amount } | ||
| * @typedef {{ updated: 'offerStatus', status: import('./offers.js').OfferStatus } | ||
| * | { updated: 'balance'; currentAmount: Amount } | ||
| * | { updated: 'bridgeStatus'; status: { error: string } } |
There was a problem hiding this comment.
This seem like an abstraction leak to mention "bridge"
There was a problem hiding this comment.
how so? the smartWallet contract relies on a Cosmos bridge. we've even considered renaming this contract to have bridge in the name.
is there something else you'd suggest?
There was a problem hiding this comment.
I mean that if this is a value that is exposed to the Wallet UI app, does it make sense for it to be aware that the implementation on chain uses something called a "bridge". The way I see it, it should just know it's sending a "wallet spend action", and how that's routed internally is not its concern. This effectively reifies that implementation detail.
There was a problem hiding this comment.
Does executeOffer update offerStatus in all cases of rejections? If so, I'd be willing to leave the unhandled rejection for the default case (unknown method).
turadg
force-pushed
the
6678-walletFactory-assetRegistry
branch
from
37e0d49 to
a5664b7
Compare
turadg
force-pushed
the
6678-walletFactory-assetRegistry
branch
from
a5664b7 to
770b2bf
Compare
turadg
added
the
automerge:no-update
closes: #6878
Description
6878 issue said,
This doesn't do that but it adds a test to verify that it isn't necessary. A Bank's
getAssetSubscriptioncomes from aSubscriptionKitwhich uses a pinnedHistoryTopic which is prefix lossy.agoric-sdk/packages/notifier/src/subscriber.js
Lines 57 to 60 in 71a1db7
So each time an
observeIterationis started with it, all the values will be consumed. Therefore the contract doesn't need to keep a history of them. On upgrade it reconstructs its non-durable maps using the stream.To test this I tried to check use vstorage to confirm the offers execute, but the "secondOffer" one wasn't showing up. I don't know why and didn't want to spend too much time down that rabbit hole. Instead I made
executeOfferthrow its exceptions after trying to recover from it. (I think we had a handler to ensure there was always cleanup but it also swallowed the error unnecessarily.)This uncovered a bug in the runUtils with calls after a rejection. This fixes that as well.
Security Considerations
--
Scaling Considerations
If there are many kinds of assets, walletFactory upgrade will triggeer iterating over all of them. I expect it to be order 10 until this contract is upgraded.
Documentation Considerations
--
Testing Considerations
New test