fix: on nullifier collision during insertion of revertibles from private, app logic should fail gracefully and proceed to teardown #12422
+68
−20
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ate, app logic should fail gracefully and proceed to tairdown
dbanks12
requested review from
sirasistant and
fcarreiro
and removed request for
sirasistant
dbanks12
commented
Mar 3, 2025
Comment on lines
38
to
41
| await expect( | ||
| votingContract.methods.cast_vote(candidate).send({ skipPublicSimulation: true }).wait(), | ||
| ).rejects.toThrow('Reason: Tx dropped by P2P node.'); | ||
| ).rejects.toThrow(TxStatus.APP_LOGIC_REVERTED); | ||
| }); |
There was a problem hiding this comment.
TxReceipt doesn't have an applogic-revert error message and it doesn't seem trivial to add it unfortunately.
dbanks12
commented
Mar 3, 2025
Comment on lines
103
to
118
| const revertStart = process.hrtime.bigint(); | ||
| // FIXME(#12375): TX shouldn't die if revertible insertions fail. Should just revert to snapshot. | ||
| await this.insertRevertiblesFromPrivate(context); | ||
| // add new contracts to the contracts db so that their functions may be found and called | ||
| await this.worldStateDB.addNewRevertibleContracts(tx); | ||
| const revertEnd = process.hrtime.bigint(); | ||
| this.metrics.recordPrivateEffectsInsertion(Number(revertEnd - revertStart) / 1_000, 'revertible'); | ||
|
|
||
| if (context.hasPhase(TxExecutionPhase.APP_LOGIC)) { | ||
| const appLogicResult: ProcessedPhase = await this.simulateAppLogicPhase(context); | ||
| processedPhases.push(appLogicResult); | ||
| const success = await this.insertRevertiblesFromPrivate(context); | ||
| if (success) { | ||
| // add new contracts to the contracts db so that their functions may be found and called | ||
| await this.worldStateDB.addNewRevertibleContracts(tx); | ||
| const revertEnd = process.hrtime.bigint(); | ||
| this.metrics.recordPrivateEffectsInsertion(Number(revertEnd - revertStart) / 1_000, 'revertible'); | ||
|
|
||
| // Only proceed with app logic if there was no revert during revertible insertion | ||
| if (context.hasPhase(TxExecutionPhase.APP_LOGIC)) { | ||
| const appLogicResult: ProcessedPhase = await this.simulateAppLogicPhase(context); | ||
| processedPhases.push(appLogicResult); | ||
| } | ||
| } else { | ||
| this.log.debug(`Revertible insertions failed. Skipping app logic.`); | ||
| } |
There was a problem hiding this comment.
Only proceed to app logic if inserting revertibles succeeds.
dbanks12
commented
Mar 3, 2025
Comment on lines
-408
to
433
| public async insertRevertiblesFromPrivate(context: PublicTxContext) { | ||
| public async insertRevertiblesFromPrivate(context: PublicTxContext): /*success=*/ Promise<boolean> { | ||
| // Fork the state manager so we can rollback to end of setup if app logic reverts. | ||
| await context.state.fork(); | ||
| const stateManager = context.state.getActiveStateManager(); | ||
| try { | ||
| await stateManager.writeSiloedNullifiersFromPrivate(context.revertibleAccumulatedDataFromPrivate.nullifiers); | ||
| } catch (e) { | ||
| if (e instanceof NullifierCollisionError) { | ||
| // FIXME(#12375): simulator should be able to recover from this and just revert to snapshot. | ||
| throw new NullifierCollisionError( | ||
| `Nullifier collision encountered when inserting revertible nullifiers from private. Details:\n${e.message}\n.Stack:${e.stack}`, | ||
| // Instead of throwing, revert the app_logic phase | ||
| context.revert( | ||
| TxExecutionPhase.APP_LOGIC, | ||
| new SimulationError( | ||
| `Nullifier collision encountered when inserting revertible nullifiers from private\nDetails: ${e.message}\nError stack: ${e.stack}`, | ||
| [], | ||
| ), | ||
| /*culprit=*/ 'insertRevertiblesFromPrivate', | ||
| ); | ||
| return /*success=*/ false; | ||
| } else { | ||
| throw e; | ||
| } | ||
| } |
There was a problem hiding this comment.
Only rethrow if the error is NOT the known nullifier collision. Otherwise just revert app logic with the error and return success=false.
dbanks12
changed the title
fcarreiro
approved these changes
Mar 3, 2025
| }); | ||
|
|
||
| // Mock the writeSiloedNullifiersFromPrivate method to throw a NullifierCollisionError | ||
| (AvmPersistableStateManager.prototype as any).writeSiloedNullifiersFromPrivate = jest |
There was a problem hiding this comment.
Ugh, can't we mock it in a... saner way? 🙃
There was a problem hiding this comment.
😅 I think maybe it shouldn't be mocked. I could craft a real-ish test of this instead.
Issue with mocking this function here is that it isn't an arg to PublicTxSimulator but is crafted inside. (this is probably something that could be solved by better dependency injection?)
Comment on lines
+1002
to
+1005
| expect(txResult.processedPhases.length).toBe(2); | ||
| expect(txResult.processedPhases[0].phase).toBe(TxExecutionPhase.SETUP); | ||
| expect(txResult.processedPhases[1].phase).toBe(TxExecutionPhase.TEARDOWN); | ||
|
|
There was a problem hiding this comment.
Why not expect(txResult.?processedPhases).toBe([TxExecutionPhase.SETUP, TxExecutionPhase.TEARDOWN]) ? (or toequals)
There was a problem hiding this comment.
I think I copied other tests, but I agree this is nicer!
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.