chore: add more validation to MsgRun & MsgAddPackage

[leohhhn]

Description

This PR adds more validation to MsgRun & MsgAddPkg. It does this by adding a few checks to MemPackage's Validate(), and then incorporating checks on MemPackage within MsgRun & MsgAddPkg.

Contributors' checklist...

• Added new tests, or not needed, or not feasible
• Provided an example (e.g. screenshot) to aid review or the PR is self-explanatory
• Updated the official documentation or not needed
• No breaking changes were made, or a BREAKING CHANGE: xxx message was included in the description
• Added references to related issues and PRs
• Provided any useful hints for running manual tests
• Added new benchmarks to generated graphs, if any. More info here.

[codecov]

Codecov Report

Attention: 15 lines in your changes are missing coverage. Please review.

Comparison is base (9734695) 56.25% compared to head (3276888) 56.11%.

Files	Patch %	Lines
gno.land/pkg/sdk/vm/msgs.go	0.00%	6 Missing ⚠️
tm2/pkg/std/memfile.go	0.00%	4 Missing and 2 partials ⚠️
gno.land/pkg/sdk/vm/errors.go	0.00%	3 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #1646      +/-   ##
==========================================
- Coverage   56.25%   56.11%   -0.15%     
==========================================
  Files         425      439      +14     
  Lines       64408    66194    +1786     
==========================================
+ Hits        36235    37147     +912     
- Misses      25351    26155     +804     
- Partials     2822     2892      +70     

Flag	Coverage Δ
go-1.21.x	∅ <ø> (∅)
misc	∅ <ø> (∅)
misc-_test.genstd	∅ <ø> (∅)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[zivkovicmilos]

Please give me a minute to review this, I'm sensing it's a touchy PR 🙏

[thehowl]

cc/ @jaekwon, from review meeting:

Is there any reason why ValidateBasic is called basic? Should the checks perform within it be very fast, "basic" or whatever? Can we add the mempkg check in there, or would it create problems?

[zivkovicmilos]

Why would you move the Package validation outside the keeper methods, that validate it upon execution, and into ValidateBasic, which should be a quick sanity check for validity?

We use Package.Validate and ValidateBasic in the same sense how we use CheckTx and DeliverTx - one is a quick sanity check, and the other is detailed validation (VM processing).

We execute ValidateBasic for top-level validations (ex. when the node receives a tx message from gossip), and do additional validations (execution validations) when the node actually commits it to the VM.

I am not convinced this change is valid

[zivkovicmilos]

You should format errors with fmt.Errorf.

Looking at this again, you don't even format an error here, this entire call is useless - define it as a package-level error

[zivkovicmilos]

You should format errors with fmt.Errorf

[zivkovicmilos]

Please add unit tests for MemPackage validation

[zivkovicmilos]

Where is this covered?

[zivkovicmilos]

Where is this covered?

[zivkovicmilos]

Please add a documentation reference in this PR as to what is a "valid package" 🙏

[zivkovicmilos]

@leohhhn what's the status on this PR?

cc @Kouteki

[leohhhn]

@zivkovicmilos

This has been hanging mainly because I assume I will spend too much time due to my lack of knowledge on how the keeper works - I will give it a shot this week and try to incorporate the change you requested. Will ping you when I'm done 👍

EDIT: I asked for your opinion on this privately but received no reply. I'm focusing on other priorities so I will not work on this now.