Add Limit to Tranasctional Layers #10808
Conversation
|
Hey, is anyone still working on this? Due to the inactivity this issue has been automatically marked as stale. It will be closed if no further activity occurs. Thank you for your contributions. |
stale
bot
added
the
A5-stale
stale
bot
removed
the
A5-stale
shawntabrizi
added
E5-breaksapi
C1-low
Co-authored-by: Alexander Theißen <[email protected]>
kianenigma
force-pushed
the
shawntabrizi-transactional-rework2
branch
from
30d1e5c
to
73d2f4c
Compare
|
sorry I had to force push because I pushed to commits here by mistake, and if I would only revert them, then the diff of any branch on top of this branch would have been messed up. |
|
This might be totally naive but couldn't we create something like this for use within the runtime where we know hat we are single threaded? use core::cell::RefCell;
struct RuntimeMutex<T>(RefCell<T>);
unsafe impl<T> Sync for RuntimeMutex<T>;
impl Deref<T> for RuntimeMutex<T> {
type Target = RefCell<T>;
fn deref(&self) -> &Self::Target {
&self.0
}
} |
Co-authored-by: Alexander Theißen <[email protected]>
frame/support/src/storage/mod.rs
Outdated
| thread_local! { | ||
| static TRANSACTION_LEVEL: RefCell<u32> = RefCell::new(0); | ||
| pub fn get_transaction_level() -> Layer { | ||
| crate::storage::unhashed::get_or_default::<Layer>(TRANSACTION_LEVEL_KEY) |
There was a problem hiding this comment.
can we use a global variable, well, for a non persistent global variable?
There was a problem hiding this comment.
You mean something like this? master...kiz-shawntabrizi-transactional-rework2
There was a problem hiding this comment.
I think environmental is very cumbersome in this case. Using storage is clearly not the right way to do it but it works for now. In this case (simple counter) we could just use atomics which compile into plain arithmetic for wasm.
There was a problem hiding this comment.
LGTM. I explored using environmental (akin to thread_local! globals) a bit instead of temp storage, but it seemed to imply that we have to wrap the outermost dispatch call, somewhere in executive, with a function to bring the global reference into scope, and this seemed like a bad design choice to me. The nice thing about using a temp storage is that it need not expose this detail to executive, and the existence of the transactional layer is only contained in frame-support and storage crates.
I think using the environmental might become more and more sensible over time if we have more global variable that we want to exist in scope inside the runtime. So, instead of environmental!(transaction_layers: u32), we would have environmental!(temp_storage: BTreeMap<Vec<u8>, Vec<u8>>), and this environmental reference is initialized in executive, and can store any temporary data that the runtime needs only within a single invocation.
Alternatively, I wonder if it is too much of a bad pattern to make the assumption that a FRAME runtime will always be single-threaded, thus we can create a global static mut variable and mutate it on the fly. Of course, this will be unsafe.
|
I don't really think we are going to have multi threaded execution within a single WASM runtime? I do agree we need some global variable solution here as we already have many cases are using storage for exact that purpose and I will assume simple in memory global variable will be faster than the in memory change overlay by avoiding the ecode/decode and hashes. |
I agree. The only mechanism that exists constitutes a pure function (no shared memory with the spawner). Apart from that the current thinking is that parallelism happens on the validator level (validating multiple shards at once) rather than per runtime.
I think this is a fair assumption. Still need to care for re-entry, though. This is why we can't just unsafely access mutable globals but must use |
|
I pushed a change that uses atomics to implement the counter. They compile to just basic arithmetic in wasm. Native runtime will still use the more expensive synchronization instructions but we shouldn't optimize for this case. The proper solution would probably be having Just revert my commit if you don't like it. |
|
Thank you @athei |
|
bot merge |
|
Error: Approval criteria was not satisfied in paritytech/polkadot#5232. The following errors might have affected the outcome of this attempt: Merge failed. Check out the criteria for merge. If you're not meeting the approval count, check if the approvers are team members of substrateteamleads or core-devs. |
|
bot merge |
| use core::sync::atomic::{AtomicU32, Ordering}; | ||
|
|
||
| type Layer = u32; | ||
| static NUM_LEVELS: AtomicU32 = AtomicU32::new(0); |
There was a problem hiding this comment.
The native runtime can be executed from multiple threads....
Why don't we just have used the environmental crate then?
There was a problem hiding this comment.
It is hard to do here because there is no easy common function where to place it. Shawn tried that.
There was a problem hiding this comment.
@kianenigma had a solution that looked reasonable to me.
|
fixed up in #11163 (comment) |
jakoblell
added
D1-audited 👍
* introduce hard limit to transactional * add single layer transactional * remove single_transactional * Update mod.rs * add tests * maybe fix contracts cc @athei * fmt * fix contract logic * Update frame/contracts/src/exec.rs Co-authored-by: Alexander Theißen <[email protected]> * Update exec.rs * add unchecked and custom errors * Update lib.rs * Apply suggestions from code review Co-authored-by: Alexander Theißen <[email protected]> * Replace storage access by atomics Co-authored-by: Alexander Theißen <[email protected]>
* introduce hard limit to transactional * add single layer transactional * remove single_transactional * Update mod.rs * add tests * maybe fix contracts cc @athei * fmt * fix contract logic * Update frame/contracts/src/exec.rs Co-authored-by: Alexander Theißen <[email protected]> * Update exec.rs * add unchecked and custom errors * Update lib.rs * Apply suggestions from code review Co-authored-by: Alexander Theißen <[email protected]> * Replace storage access by atomics Co-authored-by: Alexander Theißen <[email protected]>
Breaking down: #10744
This PR simply adds a limit to the number of tranactional layers allowed within FRAME.
It sets the limit to 255.
It requires that all uses of
with_transactionalcan return aResultwhere the error can be mapped toDispatchError.We also provide a
with_transactional_uncheckedwhich is has the same behavior as before, and can be used (hopefully only temporarily), where it is not easy to update to the new required signature.polkadot companion: paritytech/polkadot#5232