*: add invocations to applicationlog

[ixje]

Problem

neo-project/neo#3386

Solution

Implement as extension. Moved the discussion from Dora's backend PR to here

To do

• copy arguments to avoid modifications
• limit the total number of argument stack items in a single transaction (for safety)
• make this a configurable feature
• include native contract calls

Do we want to limit the stack item depth (think MaxJSONDepth) or are we content with just limiting the total stack arguments?

[AnnaShaleva]

A good prototype, but I have several design questions that we should solve before review.

[AnnaShaleva]

@roman-khimov, I think we need some third opinion on these topics.

[roman-khimov]

How about System.Runtime.LoadScript calls, btw?

[AnnaShaleva]

How about System.Runtime.LoadScript calls

It leads to new execution context creation, thus it's a valid part of invocation tree. But is this information useful in practice? Dynamic invocations are identified by hash160 of the loaded script, as a result user can't get this script because he knows only its hash. But still we may include dynamic invocations into the resulting Invocations tree with some special field like isContractCall: false.

[ixje]

Picking this up again. I rebased the branch onto latest master and processed some of the feedback. In particular

• use stackitem.Serialize instead of deepcopy and re-use the results when storing the data
• make the behaviour configurable through a SaveInvocations config option

Note; It was unclear to me based on #3569 (comment) if I should have made it a tree or keep it flat. I kept it flat for now.

If the feature is enabled the applicationlog output looks as follows

"invocations": [
                    {
                        "contract_hash": "0xd2a4cff31913016155e38e474a2c06d08be276cf",
                        "method": "transfer",
                        "arguments": {
                            "type": "Array",
                            "value": [
                                {
                                    "type": "ByteString",
                                    "value": "krOcd6pg8ptXwXPO2Rfxf9Mhpus="
                                },
                                {
                                    "type": "ByteString",
                                    "value": "AZelPVEEY0csq+FRLl/HJ9cW+Qs="
                                },
                                {
                                    "type": "Integer",
                                    "value": "1000000000000"
                                },
                                {
                                    "type": "Any"
                                }
                            ]
                        },
                        "arguments_count": 4,
                        "is_valid": true
                    }
                ]

and in disabled state it returns

"invocations": []

I'm looking for feedback on the above before taking care of covering System.Runtime.LoadScript calls

[ixje]

@AnnaShaleva can this PR also get some review love please

[roman-khimov]

I don't see any limits for the overall size of saved data. While the feature is optional we still need to protect node from abuse.

[ixje]

ping

[ixje]

I feel there is a lot of resistance against this PR, but I can't really tell why. Other PRs I opened (later than this one, like #3674 and #3677) were swiftly reviewed (multiple times). This one however takes 2-3 weeks per update to get another response despite multiple pings.

Can any of you @AnnaShaleva @roman-khimov elaborate please? If I understand where this resistance is coming from I can perhaps do something about it.

[roman-khimov]

@ixje, zero resistance. Sorry, it's just that there are too many things to handle at once. @AnnaShaleva will get back to it soon.

[AnnaShaleva]

@ixje sorry for the delay. Actually, when we don't need #3569 (comment) and #3569 (comment) to be fixed, there are only a couple of non-critical issues left to be fixed, so the PR is almost ready and looks good.

[ixje]

@AnnaShaleva some RPC server tests and TestNEO_CommitteeEvents are failing due to changes requested by you in this comment. If I do write this 1 byte for the length then they pass (with some small updates where necessary).

I've spend some time trying to understand why TestNEO_CommitteeEvents is failing and for some reason the data fetched from the dao does contain the execution events, despite the body of this logic never being called (as per breakpoints not hitting in the debugger)

	if invocLen := len(aer.Invocations); invocLen > 0 {
		w.WriteVarUint(uint64(invocLen))
		for i := range aer.Invocations {
			aer.Invocations[i].EncodeBinaryWithContext(w, sc)
		}
	}

Putting a breakpoint in EncodeBinaryWithContext of ContractInvocation is also not hit. I'm not sure yet what/where I'm overlooking something. Any help/insight there is appreciated.

[AnnaShaleva]

You need to handle the case of invalid type ([]byte(fmt.Sprintf("error: %v", err)) set in the marshaller). Try to unmarshal aux.Arguments into string and continue execution flow if unmarshalling is successful (exactly like for state.Execution unmarshalling. Let's add Encode -> Decode -> marshal JSON -> unmarshal JSON unittest for ConstructIvocation structure for the case when argumentsBytes is nil.

[ixje]

I'm starting to wonder if this

if err != nil {
		item = []byte(fmt.Sprintf(`"error: %v"`, err))
	}

in MarhshallJSON() is ever not nil. I'm sure I initially copied it from how NotificationEvent is working. But looking at it now the stackitem.Deserialize(ci.argumentsBytes) call above it uses a deserialization context with allowInvalid: false therefore FromJSONWithTypes should never fail. That logic does not exist for the NotificationEvent MarshallJSON() function.

-edit-
The testcases prove this is unreachable

[ixje]

I've found that argBytes gets modified by the time EncodeBinaryWithContext of ContractInvocation is called (when persisting to storage). Specifically, the type changes from an Array to a Struct.

If I replace ic.DAO.GetItemCtx() with stackitem.NewSerializationContext() the content of argBytes is preserved. I'm not sure what the implications of this are but wanted to point this out as I find this somewhat worrisome. @AnnaShaleva @roman-khimov

I found this out by a type assertion failure in MarshallJSON() of ContractInvocation, specifically at this line

item, err = stackitem.ToJSONWithTypes(si.(*stackitem.Array))

[AnnaShaleva]

It's an unexpected behaviour, let me check.

[ixje]

I found this specifically happens when trying to read the following T5 log (it's in block 2872 iirc so you don't have to sync much for it)

curl --location 'http://127.0.0.1:20332' \
--header 'Content-Type: text/plain' \
--data '{
  "jsonrpc": "2.0",
  "method": "getapplicationlog",
  "params": ["0x2f7b0f78df942212334c0b6c03239a1afc4518aeb4461cb5b77b31aaa9e0c1a5"],
  "id": 1
}
'

[AnnaShaleva]

Ref. #3569 (comment).

[codecov]

Codecov Report

Attention: Patch coverage is 62.39316% with 44 lines in your changes missing coverage. Please review.

Project coverage is 83.02%. Comparing base (e8b8c1a) to head (fa29376).
Report is 216 commits behind head on master.

Files with missing lines	Patch %	Lines
pkg/core/state/contract_invocation.go	76.92%	10 Missing and 5 partials ⚠️
pkg/core/state/notification_event.go	20.00%	9 Missing and 3 partials ⚠️
pkg/core/interop/contract/call.go	9.09%	9 Missing and 1 partial ⚠️
pkg/core/blockchain.go	33.33%	3 Missing and 1 partial ⚠️
pkg/core/dao/dao.go	25.00%	2 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #3569      +/-   ##
==========================================
- Coverage   83.20%   83.02%   -0.18%     
==========================================
  Files         334      336       +2     
  Lines       46488    47005     +517     
==========================================
+ Hits        38681    39028     +347     
- Misses       6234     6378     +144     
- Partials     1573     1599      +26     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[AnnaShaleva]

if ci.Arguments == nil && ci.argumentsBytes != nil

[AnnaShaleva]

Add ci.Arguments = aux.Arguments.

[ixje]

I explicitly removed this because otherwise MarshalJSON and UnmarshalJSON are not symmetrical. Is that really what we want?

[AnnaShaleva]

Yes. Because the common usage scenario is constructing response to getapplicationlog which means: decode binary from the DB, marshal it to JSON o nthe server side, then unmarshal from JSON on the client side. Client needs only ci.Arguments, it's not interested in ci.argumentsBytes, so I consider it useless to spend time serializing ci.Arguments in UnmarshalJSON.

[AnnaShaleva]

And reuse this constant here.

[ixje]

👀

neo-go/pkg/encoding/bigint/bigint.go

Line 31 in 673b26f

isNeg := data[size-1]&0x80 != 0

neo-go/pkg/vm/emit/emit.go

Line 57 in 673b26f

if buf[l-1]&0x80 != 0 {

[AnnaShaleva]

I'm not a fan of this solution, it's harder to maintain. And I treat the case of VM state as kind of special, because originally it's not designed to store additional information in the MSB (and strictly speaking, it can even be any other free bit).

[roman-khimov]

VM and bigint cases are about negative/MSB, it's more obvious from the purpose of this code (especially in the bigint case). This 0x80 however is pure magic and it can be 0x20 or whatever else. Compatibility kludge in its best, we need to remember it. If we're to ever change the DB scheme this will be removed for sure.

[AnnaShaleva]

Yes. Because the common usage scenario is constructing response to getapplicationlog which means: decode binary from the DB, marshal it to JSON o nthe server side, then unmarshal from JSON on the client side. Client needs only ci.Arguments, it's not interested in ci.argumentsBytes, so I consider it useless to spend time serializing ci.Arguments in UnmarshalJSON.

[AnnaShaleva]

Make them unexported, add documentation.

[AnnaShaleva]

Merge these two tests into one TestContractInvocation_MarshalUnmarshalJSON, create two sub-tests (t.Run), use testserdes.MarshalUnmarshalJSON for non-error case.

[AnnaShaleva]

Ditto for these two, and we have testserdes.EncodeDecodeBinary.

[AnnaShaleva]

And move this declaration to the top of the file, place it under ContractInvocation declaration. Usually all strucrtures are declared in the start of the file, then methods/functions follow.

[AnnaShaleva]

Move it under types declaration.

[AnnaShaleva]

OK, then I have even better suggestion: in EncodeBinary write ci.Truncated firstly, then write ci.Arguments only if !ci.Truncated. In DecodeBinary read ci.Truncated firstly, then use ci.argumentsBytes = r.ReadVarBytes() only if !ci.Truncated.

[AnnaShaleva]

Regarding this: #3569 (comment)

This behaviour is likely caused by the behaviour of (e Element) Array(): args is an underlying content of either VM Array or VM Struct:

neo-go/pkg/vm/stack.go

Lines 96 to 101 in 673b26f

	func (e Element) Array() []stackitem.Item {
	switch t := e.value.(type) {
	case *stackitem.Array:
	return t.Value().([]stackitem.Item)
	case *stackitem.Struct:
	return t.Value().([]stackitem.Item)

When serializing it, you enforce args to be wrapped into array irrespectively of the original type. However, if the old serialization context is used, the information about slice type is stored in the context, hence we've got a struct. The correct behaviour is to preserve the original type of arguments. To solve this problem we need:

argsItm := ic.VM.Estack().Pop()
args := argsItm.Array()
...
ic.DAO.GetItemCtx().Serialize(argsItm, false); err != nil {
...

[ixje]

It still fails after changing to this

argsItm := ic.VM.Estack().Pop()
args := argsItm.Array()

I tried the old one with the

ic.DAO.GetItemCtx().Serialize(stackitem.NewArray(args), false)

and with

ic.DAO.GetItemCtx().Serialize(argsItem.Itm(), false)

In both cases the underlying type changes from Array to Struct

[AnnaShaleva]

Everything is almost done, so once finished, please, format commits according to https://github.com/nspcc-dev/.github/blob/master/git.md#commits and add a proper signoff to the commit messages.

[ixje]

Everything is almost done, so once finished, please, format commits according to https://github.com/nspcc-dev/.github/blob/master/git.md#commits and add a proper signoff to the commit messages.

I'll wait with the squashing and signoff until everything is really approved. I thought I was close a couple of times before and then the next review requests changes over parts that 'passed' the previous reviews.