Make set_contract_storage fallible
#1740
Conversation
Signed-off-by: xermicus <[email protected]>
xermicus
added
A-ink_env
|
@ascjones @SkymanOne WDYT? |
with #1869 it is now possible for a contract to encode data using a larger buffer size, and then replace its code hash with a smaller buffer size and then fail. This can also pop up during cross-contract execution. So we need the same check for decoding. |
| @@ -20,6 +20,8 @@ use ink_primitives::Key; | |||
| /// [`scale::Codec`] are storable by default and transferable between contracts. | |||
| /// But not each storable type is transferable. | |||
| pub trait Storable: Sized { | |||
| fn size_hint(&self) -> usize; | |||
There was a problem hiding this comment.
size_estimate perhaps is a better name?
There was a problem hiding this comment.
Look like a good start I would personally add try_set_contract_storage() to avoid breaking changes and be as close to Rust interface (e.g. from() and try_from()) as possible.
I would also like to hear more how this work would lead to the implementation of StorageVec as you mentioned it as a related issue.
|
Thanks @SkymanOne for your comments, good points. I'll pick it up again. |
Ah, so the problem this PR solves is more that currently there is no way to probe whether setting the storage will fail because of the encoded data size, |
|
Closing in favor of #1910 |
Related issue #1682
This is a very naive approach to the problem: If
set_contract_storagecan fail because the data does no longer fit into the encoding buffer, contract authors can account for that possibility. I don't think we need this for decoding because I don't see how something would fit in the buffer while encoding but no longer while decoding it.A less invasive way would be to just add a
try_setmethod toLazy, but I thought this might be useful to have generally available. We also could introducetry_set_contract_storageinto the API instead so we don't break the existing API. WDYT? Was there was an explicit reasonset_contract_storagedoes not return aResult?This is an early WIP. Todo:
Error::Unknown, might need a new oneResultwe could as well do something about it other than panic