[RFC] Remove SetFeesMode instruction #57
Conversation
|
Great. For compatibility reason, maybe we should propose a noop instruction to avoid breaking change? Or it doesn't matter because it is not used? |
|
I don't think it's being used that much, but if it is, this should anyway go in a new version. |
|
XCM programs logic will change, so I would not remove it or make it a noop because existing programs in the ecosystem will break. We should deprecate it in v5 (but still respect its contract), then remove it in v6. |
This is true but is very unfortunate. Since we have different versions, we should be able to break stuff in a new version. The reason why we can't is because we always convert incoming messages to the latest version. We should instead handle them separately. If we receive an XCMv3, we should send it over to an executor that uses that version. That way versions actually give us flexibility to break stuff. |
|
We should NOT break XCM programs running on supported versions. "breaking" changes need to come with backwards compatible migration to the new version, or if not possible (like this case), go through deprecation + remove mechanism.
This doesn't scale and adds a lot of complexity and attack surface (mixing multiple executors at once). For removing functionality the golden standard is to deprecate it, allow time to move away from it to replacements, then remove it. |
|
When I think of XCM versions, having an executor for each version is the simplest way to know that a supported version will never be broken. Otherwise we are just converting that version to the latest version, and we deprecate between versions, which is weird to see. We should deprecate versions, not have deprecated instructions in multiple versions. The attack surface only increases because of patches to executors that don't affect the XCM ABI. Without multiple executors, we restrict what we can do in new versions, complicate the code, and increase the risk of old supported versions failing. Since the older versions jump through more hoops before being executed. We risk having bugs in there. We increase the bug surface. |
|
I agree having multiple versioned executors is the "cleanest", but not sure if it's tractable. This needs more thought, and is worth its own separate discussion/issue/thread IMO. Regardless of how we implement it, the conclusion on |
Agreed, for now I'll follow the deprecation route, but I'm heavily leaning towards having multiple executors in the future. |
I was thinking more about this and after zooming out I realised it’s not really possible. Since translating v5<>v4 would not be possible, we wouldn’t just need different executors, but different “pallet-XYZ” versions for pallets sending XCM messages around (pallet-xcm, xtokens, treasury, coretime, identity, etc). Furthermore, the message originator would have to know the versions supported by every hop that message goes through - which is yet another complex on-chain system to build. So, def not realistic. Looks like instead we need be able to upgrade/downgrade v4<>v5. |
|
Closing in favor of polkadot-fellows/RFCs#106 |
The
SetFeesModeinstruction and thefees_moderegister allow for the existence of JIT withdrawal.This mode complicates the fee mechanism and leads to bugs.
The proposal is to remove said functionality.
This RFC doesn't require RFC#58 but it works alongside it to simplify fee handling.